Hi! The documentation [1] states that the HPE 5400 series supports "downloadable ACLs". During my tests with an HPE Aruba 5412 zl2 v3 I noticed that the Perl module used (Procurve_5400.pm) neither inherited nor implemented the returnRadiusAccessAccept function.
The function implemented in 2930M.pm should be assignable to the 5400s.
Therefore I copied the function into the Procurve_5400.pm and the ACLs are
transferred correctly.
I noticed two things: First, "HP-Nas-Rules-IPv6" is not transferred and
therefore IPv6 traffic is blocked [2]. If I add
"$radius_reply_ref->{'HP-Nas-Rules-IPv6'} = 1;" to the function right before
assigning the ACLs, IPv6 is blocked anyway, but that could be a bug in the
switch-OS.
Secondly, (and more important ;-)) which services do I need to restart to apply
changes to the Perl files? :-)
Cheers
Helge
[1]
https://packetfence.org/doc/PacketFence_Network_Devices_Configuration_Guide.html
#_hp_procurve
[2]
http://h22208.www2.hpe.com/eginfolib/networking/docs/switches/RA/15-18/5998-8151
_ra_2620_asg/content/ch07s04.html
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
