Re: [PacketFence-users] PF 7 routed mode

Fri, 12 May 2017 07:37:24 -0700 

If you add networks in the GUI it will create static routes with the
gateway specified. Or use ospf/bgp like I do and create one aggregate route
on the PD server.  We have an isolation/registration network per building
through mpls.  Nothing touches the Pf servers at l2.

Sent from my iPhone

On May 12, 2017, at 9:48 AM, luca comes <lucaco...@hotmail.it> wrote:

Hi all,

I'm delivering my new PF to test wired 802.1x on my network. I need to work
with routed network because PF is in our datacenter and I need to control
subnets on remote sites. So I've created a local registration/isolation
vlan directly attached to the server and I configured new vlans on the
sites. I then configured PF to know that he is working in routed mode
adding the necessary on conf/networks.conf as said in the admin giude. What
I don't understand is if I need to add remote networks on the routing table
of the server because at the moment the registration/isolation interfaces
are not reachable and if I take a look to the routing table:


[root@pfnac01 ~]# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
0.0.0.0         172.27.17.231   0.0.0.0         UG    0      0        0
ens160
10.255.10.0     0.0.0.0         255.255.255.0   U     0      0        0
ens192.2441
10.255.20.0     0.0.0.0         255.255.255.0   U     0      0        0
ens192.2445
10.255.30.0     0.0.0.0         255.255.255.0   U     0      0        0
ens192.2446
169.254.0.0     0.0.0.0         255.255.255.252 U     0      0        0 DM-b
169.254.0.0     0.0.0.0         255.255.0.0     U     1002   0        0
ens160
169.254.0.0     0.0.0.0         255.255.0.0     U     1003   0        0
ens192
169.254.0.0     0.0.0.0         255.255.0.0     U     1004   0        0
ens192.2441
169.254.0.0     0.0.0.0         255.255.0.0     U     1005   0        0
ens192.2445
169.254.0.0     0.0.0.0         255.255.0.0     U     1006   0        0
ens192.2446
172.27.17.0     0.0.0.0         255.255.255.0   U     0      0        0
ens160


Where 10.255.10.0 is my regular network, 10.255.20.0 is my local
registration, 10.255.30.0 is my local isolation and 172.27.17.0 is the
management. I can't see my remote networks 10.149.105.0 (remote
registration) and 10.148.105.0 (remote isolation).


Any help is appreciated


Thanks


Luca



Inviato da Outlook <http://aka.ms/weboutlook>

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to