Hello, everybody.
We have problems letting packetfence work with a primary Layer 3 switch
connected with secondary Layer 2 switches. Please help us! Thanks!
We areusing packetfence 11.2 in VLAN enforcement mode so that we can
register devices through the registration page. We have four VLANs: user VLAN
100, mac detection VLAN 101, registration VLAN 102, and isolation VLAN 103. The
switch configured in packetfence is a Huawei S5700 switch. It works well when
we directly connect devices to that switch.
However, a problem occurs when we connect a secondary Layer 2 switch to a port
of the primary switch (the Huawei S5700 mentioned above) and connect devices to
the secondary switch. At first, we register devices as normal. But, when we
unregister devices through the status page, the devices are still in the user
VLAN and can access the resources.
We then checked the "locationlog" table in the database of packetfence. Through
testing, we find when a new device connects to the secondary switch, the
"end_time" fields of all registered devices under the secondary switch will be
overwritten by the start time of the new device. It causes "open locationlog
entry was found" when unregistering those registered devices.
The reason for this overwriting seems that the devices under the same secondary
Layer 2 switch have the same port in the "locationlog" table. We have no idea
how to solve this problem. Could somebody help us? How does packetfence work
when devices are under a secondary Layer 2 switch connected to the primary
Layer 3 switch?
Thanks!
Bowen Zhang___
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
