All, I am a newbie attempting config PF 11.0.0 for our purposes.
Our design is as follows: - router handles the VLANs (agnostic to server or end points) - domain is pf.forkeddeerconnect.com - subnet range for pfdhcp is 147.159.8.0/22 - entry into the VLAN determined by not paying bill (package management puts user into server) - all DNS queries need to redirect to internal httpd index.xhtml webpage for single direction: PAY YOUR BILL! * Bill portal address is 208.72.73.60. * This addr needs to be only address to allow out of this "isolation environment." I have the PF server up and functional. Reached some limitations in getting this moving forward. I have one device [linux laptop] connected directly to the server for testing. I have installed isc-dns-bind9 and isc-dhcp-server for address pools and resolution. But this may be overkill. I am unsure at this point. I do not think authentication of anyone/device is necessary. If a user ends up in this environment, they are supposed to pay their bill to get out. I do not believe I need any authentication of hardware, but may be incorrect in my view on this point. This is a designed isolation environment established to redirect all dns requests to the internal webserver and singular index.xhtml page...and allow them to their manage account portal. Any help is welcome. R, John Network Engineer, FDC/FDEC john.gam...@forkeddeer.com John Gammon Network Engineer Office 731-903-4282 john.gam...@forkeddeer.com<mailto:%20john.gam...@forkeddeer.com> [fdec logo] 1135 North Church Street PO Box 67 Halls, TN 38040 www.forkeddeer.com _______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
