Re: [PacketFence-users] Firewall question

Hello, you can try this: in /usr/local/pf/conf/iptables.conf change: :forward-internal-inline-if - [0:0] %%filter_forward_inline%% to: :forward-internal-inline-if - [0:0] -A forward-internal-inline-if --match mark --mark 0x1 -d 10.255.60.0/24 --jump DROP %%filter_forward_inline%% Then

Re: [PacketFence-users] Packetfence server loses ip address information whenever services are stopped or started

Le 20-09-08 à 09 h 16, Steve Pfister via PacketFence-users a écrit : We've been using packetfence successfully for quite some time. Recently, we moved all of our servers over to a new data center. Since then, whenever the services on our packetfence server are stopped or started, the ip

Re: [PacketFence-users] PacketFence Cluster

Hello Jeff, Le 20-09-08 à 10 h 21, Jeff Linden via PacketFence-users a écrit : Hello, Is it reasonable to think I can have a 3 node cluster where all 3 nodes are on separate, routed, networks? Yes it's possible but the configuration will be more complicate. (on the pf side and on the

Re: [PacketFence-users] Constant ping to Windows Server

Hello Neal, just uncheck monitor in the authentication source and it will stop to ping. Regards Fabrice Le 20-09-08 à 08 h 56, 'van Rooij Neal' via PacketFence-users a écrit : Hello, I opened WireShark to check if i was properly receiving my DHCP request on a Windows Server, and noticed

[PacketFence-users] Packetfence server loses ip address information whenever services are stopped or started

We've been using packetfence successfully for quite some time. Recently, we moved all of our servers over to a new data center. Since then, whenever the services on our packetfence server are stopped or started, the ip address information disappears and the service is no longer reachable.

[PacketFence-users] PacketFence Cluster

Hello, Is it reasonable to think I can have a 3 node cluster where all 3 nodes are on separate, routed, networks? I see there is support for adding cluster nodes across routed networks, but the example is for a 5 node cluster where only 2 of the nodes are routed. Is there any specific

Re: [PacketFence-users] Constant ping to Windows Server

Hello, Uncheck “Monitor” on your ldap source and restart packetfence-pfstats and packetfence-netdata. thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo

[PacketFence-users] Constant ping to Windows Server

Hello, I opened WireShark to check if i was properly receiving my DHCP request on a Windows Server, and noticed my PacketFence was constantly sending some ICMP requests to my Windows Server.  I tried shutting both of them down, but it was still there after a reboot.  Does anybody know

Re: [PacketFence-users] Fingerbank is not starting

Hello Ludovic, Can we change how often the internal check is running, something like every 5 minutes instead of the current 10 seconds ? Sep  8 16:19:44 packetfence packetfence_httpd.portal: httpd.portal(31206) INFO: [mac:00:11:22:33:44:55] Instantiate profile default

Re: [PacketFence-users] Console logins after Switch configuration

Hello, PF detects device on the same network as him natively based on DHCP. If the packetfence server does not receive DHCP traffic it can’t do profiling. Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca

Re: [PacketFence-users] Fingerbank is not starting

Hello Andrea, It’s an internal check, your are correct. Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu ) and PacketFence

Re: [PacketFence-users] Console logins after Switch configuration

Hi again, I managed to find some information about it in the Network Devices Configuration Guide. There is a warning saying : "Make sur that you have a local account, because enabling 802.1X or MAB will ask for a username and password on the next login." And then, I understood

Re: [PacketFence-users] Fingerbank is not starting

Hi, the errors and warnings in the log were fixed in issue #5768. I still have an issue: haproxy keep trying to connect httpd.portal every few seconds (and spam info logs). We did a reboot of the system and also disabled the interfaces but connection attempt are still going, so