In fact you need to restart the portal, haproxy and iptables to make it
available.
Le 2018-02-19 à 03:29, E.P. a écrit :
>
> And my further attempts to put two and two together and look back in
> time into this mailing list showed that Fabrice already answered this
> question before
>
> Yes,
It's like the port is not open on the interface (443)
Le 2018-02-18 à 22:19, E.P. a écrit :
>
> Here it is, Fabrice
>
> 10.0.254.3 is the WiFi client and 172.16.0.222 is PF.
>
> Tcpdump.pcap is attached and it is made right on PF
>
> The second capture is made on the laptop connected to guest
Hello Franklin,
is there any devices associated to this username ?
Regards
Fabrice
Le 2018-06-28 à 06:00, Franklin, Adam via PacketFence-users a écrit :
Hello
Can anyone tell me why when I use the PacketFence GUI to manually
create a user and set an “unregistration date” – the
Hello Ali,
in fact /usr/local/pf/html/pfappserver/lib/pfappserver/Model/Node.pm
bouncePort is made to shut/no shut the port and it use snmp.
What you will need to do is to implement the function
wiredeauthTechniques (for wire) or deauthTechniques (for wireless) in
order to launch the
Hello DIego,
i am working on it and found the issue.
I test the code and it will be soon available in the maintenance branch
(pf-maint.pl).
Regards
Fabrice
Le 18-11-07 à 11 h 20, Diego Lopes da Cruz via PacketFence-users a écrit :
Hi!
Some clients are complaining about browsing problems,
Le 18-11-14 à 02 h 42, Amjad Ali a écrit :
Thank you Fabrice, that clears a lot many things, I just confirmed as
you explained and it works great.
Just to further understand the above config, the PacketFence still
uses the internal radius to communicate all the stuff with switch.
That is,
Hello Will,
i think it's because the username is not stripped on the ntlm_auth call.
Can you strip it in the farn-ct-ac-uk realm config ?
It's like that right now:
realm farn-ct.ac.uk {
nostrip
}
Regards
Fabrice
Le 18-11-14 à 11 h 34, Will Halsall via PacketFence-users a écrit :
In PacketFence 8 there is a way to do it with the API.
cf: https://github.com/inverse-inc/packetfence/tree/devel/go/dhcp
Le 2018-09-28 à 12:58, mj via PacketFence-users a écrit :
For the archives:
we're still o 7.1, and the only way of doing that there, is by editing
*
Hello Will,
i have pushed something in the maintenance branch.
Can you run /usr/local/pf/addons/pf-maint.pl then restart packetfence
and make another try.
Btw let me know if it fix the issue.
Thanks
Fabrice
Le 19-01-16 à 06 h 38, Will Halsall via PacketFence-users a écrit :
Hi Fabrice
Hello Matteo,
check in the file httpd.admin.log, the answer is probably here.
Regards
Fabrice
Le 19-01-16 à 07 h 16, Matteo De Lazzari via PacketFence-users a écrit :
Uhm... Fabrice, I'm sorry again; I can't make it works. I joined the
domain, I created a realm and finally I created an
You can add column or if you want to change the default then you need to
edit the code for that:
https://github.com/inverse-inc/packetfence/blob/devel/html/pfappserver/lib/pfappserver/PacketFence/Controller/Node.pm#L52
Regards
Fabrice
Le 19-01-16 à 05 h 14, Matteo De Lazzari via
Hello Benjamin,
so i think i know what happen, you are using the ldap source just for
authorization and if there is no rules that match then packetfence will
use the role of the device.
Can you try to remove the role of the device and make another try ?
Thanks
Fabrice
Le 19-01-15 à 21 h
Hello Justin,
do you have the source code of the email ?
Regards
Fabrice
Le 19-01-17 à 12 h 29, Justin Hartman via PacketFence-users a écrit :
Hello everyone,
This is my first time posting here and I am hoping someone can shed
some light on an issue I am having. After spending what I
Hello Lindsay,
can you send the file /usr/local/pf/var/conf/iptables.conf and the
result of the command "ip route"
Thanks
Regards
Fabrice
Le 19-01-14 à 10 h 03, Lindsay, Ross M via PacketFence-users a écrit :
Greetings, All!
We’re working on a pilot of PacketFence to replace a
the DEBUG is on now
Thanks
Will
*From:*Fabrice Durand via PacketFence-users
*Sent:* 17 January 2019 15:45
*To:* packetfence-users@lists.sourceforge.net
*Cc:* Fabrice Durand
*Subject:* Re: [PacketFence-users] Packetfence 8.3.0 + Eduroma cannot
set the Role or the Access Duration
No
e that can be applied so that this does not happen in
production, or is there another solution that can be used? It is not desirable
for us to have users potentially be able to login with out-of-scope accounts.
Thank you,
Ben
-Original Message-----
From: Fabrice Durand via PacketFence-users
Sent:
included the radius debug logs and packetfence.log
Thanks
WillH
*From:*Fabrice Durand via PacketFence-users
*Sent:* 16 January 2019 14:40
*To:* packetfence-users@lists.sourceforge.net
*Cc:* Fabrice Durand
*Subject:* Re: [PacketFence-users] Packetfence 8.3.0 + Eduroma cannot
set the Role
Hello Medhi,
if it's on Centos then you need to run pf-maint.pl to fix it (restart
httpd.admin of course) or set you browser in english.
Regards
Fabrice
Le 19-01-17 à 10 h 42, Mehdi-Gabriel Mjahad via PacketFence-users a écrit :
Hello,
I installed Packetfence 8.3 on a fresh CentOS
No, the logs are not in debug.
You can restart httpd.aaa to force it.
Le 19-01-17 à 10 h 11, Will Halsall via PacketFence-users a écrit :
I hope this is correct
Thanks
WillH
*From:*Fabrice Durand via PacketFence-users
*Sent:* 17 January 2019 13:50
*To:* packetfence-users
Hello Enrico,
you need to add manually the ldap server in the freeradius
configuration.
(https://packetfence.org/doc/PacketFence_Installation_Guide.html#_eap_authentication_against_openldap)
Regards
Fabrice
Le 18-12-20 à 10 h 15, Enrico Becchetti via PacketFence-users a écrit :
Hi
Hello Kalcho,
first redefine your switch config it's not [10.20.0.10/24] but it should
be [10.20.0.0/24] or [10.20.0.10].
Then retry.
Regards
Fabrice
Le 18-12-21 à 03 h 24, Kalcho via PacketFence-users a écrit :
Hello all,
I have problem using CoA with Cisco WLC 2500. When I try to
al/pf/raddb/modules/ldap following
this guide: 16.3 EAP Authentication.
but tell more about because this file
/usr/local/pf/raddb/sites-available/packetfence-tunnel
shows nothing about pap.
Is it normal that in this file there are only ldap and eap
authorize module ?
Thanks a lot again !
Hello Kalcho,
first take a look in the radius audit log and see what is the radius
request sent by the WLC.
Also mac filtering is mandatory to do mac auth on an openssid.
So enable it and go back in the radius audit log to see the radius
request and what packetfence answered.
Regards
/usr/local/pf/conf/ssl/server.pem is for haproxy and
/usr/local/pf/conf/httpd.conf.d/ssl-certificates.conf is for the admin
gui and usr/local/pf/conf/radiusd/eap is for radius.
It's 3 different things and not related, so to fix the portal fix
server.pem.
Regards
Fabrice
Le 18-12-21 à 13
Hello,
in fact it work but you need to define another radius port for that and
in the switch config it's not possible.
So yes Murilo is true, you need to wait for the 8.3 release where you
will be able to configure PacketFence as a proxy to the eduroam radius
server.
Regards
Fabrice
Le
Hello Murilo,
it depend of the routing table in the PacketFence server.
Also you can use iproute2 to create dynamic routing based on the source
interface.
Regards
Fabrice
Le 18-11-30 à 07 h 29, Murilo Calegari via PacketFence-users a écrit :
Hi,
We've got two Inline Layers in our
Le 18-12-04 à 11 h 30, Eric Rolleman via PacketFence-users a écrit :
Does packetfence block all outside access to devices behind an inline
configuration until the user has authenticated?
Yes except if you defined passthrough in the configuration.
I know it won’t resolve DNS for anything,
Hello Wifi,
Le 18-12-03 à 09 h 18, Wifi Guy via PacketFence-users a écrit :
Hi All,
I seem to now have this working to a degree.
I have two authentication sources setup. One for servicePrincipalName
and one for sAMAccountName. So if a windows machine is booted up, pre
any login/sign in,
I also did some test and it's possible to configure CoA on the AP itself
by editing the hostapd config:
radius_das_port=3799
radius_das_client=192.168.1.123 bob
but when the configuration is updated from the controller then the
config is removed.
Regards
Fabrice
Le 18-11-30 à 06 h 32,
Hello,
in fact it's an issue with the netdata package, you need to do yum
update netdata
Regards
Fabrice
Le 18-11-29 à 10 h 08, Ludovic Zammit via PacketFence-users a écrit :
Hello,
It’s normal, you will to have some data first to display them.
Try connecting some device and check
Yes or you will finish like Claude Francois.
Le 18-11-23 à 09 h 06, Ludovic Marcotte via PacketFence-users a écrit :
On 2018-11-23 8:30 AM, G PL via PacketFence-users wrote:
I dry a little bit.
Better not use PacketFence when you're all wet.
--
Ludovic Marcotte
lmarco...@inverse.ca ::
ks if I use the
@farn-ct.ac.uk <mailto:samaccountn...@farn-ct.ac.uk>
Can I modify this to use the userPrincipalName (mail address)
w.hals...@farn-ct.ac.uk <mailto:w.hals...@farn-ct.ac.uk> by either
using ldap or using ldap with a filter to retrieve the sAMAccountName
Tha
Hello Benjamin,
can you try that:
https://github.com/inverse-inc/packetfence/compare/fix/unset_role_on_autoreg.diff
Regards
Fabrice
Le 19-01-22 à 09 h 05, Fabrice Durand via PacketFence-users a écrit :
Hello Benjamin,
what i can do is to add an connection profile option that will unset
to do 802.1x authentication, it then fallsback to MAC
address authentication. This may not be possible with my current setup...
Is there something on the PacketFence side that will wait a bit before
sending the request to put the switchport in the registration VLAN?
On Thu, Apr 4, 2019 a
Hello Stuart,
Le 19-04-04 à 13 h 38, Stuart Gendron via PacketFence-users a écrit :
Just getting started with PacketFence and am struggling with something.
So I'm using a Cisco SG300 as my test switch, and it does both 802.1x
and MAC address authentication (MAB).
I'm finding that once I
Hello Felipe,
Le 19-03-25 à 09 h 38, Felipe Rodrigues via PacketFence-users a écrit :
Hi guys!
Can anyone help me to configure EAP Authentication (802.1x) with
OpenLDAP server? I looked the PacketFence manual, chapter 16, about
Advanced Radius Configuration and found the information about
nd
NAME from the ifcfg-eth0 file? I have not been able to find anywhere
in the GUI to add a MAC address.
Is there somewhere I can make a mod to fix this? Not sure if many
people use the "old" way but there are a few benefits in doing so in
certain circumstances.
Maybe this could be added i
Ok just the
docs/PacketFence_Network_Devices_Configuration_Guide.asciidoc file whish
is docimentation.
So go ahead.
Le 19-02-28 à 13 h 23, Truax, Peter via PacketFence-users a écrit :
I tried the dry-run and this was the result. Looks like it failed,
but I am not sure how to fix.
Hello Tony,
you can do that with inline network but there is a limitation.
When a device is in the inline network then it mean that the locationlog
changed to inline and after that there is no way to disconnect the
device from the equipment because PacketFence think that it's inline.
What
Hello saskatooner,
you need to send the dhcp traffic to PacketFence.
https://github.com/inverse-inc/packetfence/blob/devel/docs/PacketFence_Installation_Guide.asciidoc#dhcp-remote-sensor
Regards
Fabrice
Le 19-03-17 à 01 h 58, saskatooner Canada via PacketFence-users a écrit :
Hi everyone
Hello Piotr,
you can try with the accounting, maybe the ip is in the attribute
Framed-IP-Address
Regards
Fabrice
Le 19-03-17 à 08 h 36, Piotr Maczek via PacketFence-users a écrit :
Hi all,
I have running instance of PacketFence with 802.1x protocol (Out-of-band). I also
configured "IP
Hello John,
yes it's possible, you just have to select mandatory fields in the
portal module.
Regards
Fabrice
Le 19-03-12 à 07 h 59, John Sayce via PacketFence-users a écrit :
Is it possible to use password of the day, but also capture names, emails,
phone numbers, etc?
Thanks
John
Hello Sean,
can you try that:
curl http://127.0.0.1:2/api/v1/dhcp/stats/eth0.3 | python -m json.tool
and paste the result.
Regards
Fabrice
Le 19-03-21 à 11 h 32, Seán Mac Lochlainn via PacketFence-users a écrit :
Hi Nicolas,
I created an external DHCP server in Windows Server and
Hello Tony,
Le 19-02-17 à 23 h 22, Tony W via PacketFence-users a écrit :
Hi Fabrice,
Thank you for that.
So for PF, set 1 external interface (WAN) with Internet access (Inline)
No a management one with internet access
Then set at least 1 internal interface (LAN) with VLAN's, say 10 for
Hello Bram,
You probably have unregister on accounting stop enable on your setup.
It's in radius configuration in packetfence admin Gui. (Sorry I don't have the
admin Gui in front of me right now)
Regards
Fabrice
Le Jeudi, Avril 11, 2019 06:29 EDT, Bram Wittendorp via PacketFence-users
a
Hello Craig,
For the connection profile the first match win.
So you need to verify the filter you set for each connection profile.
Also be sure that packetfence is able to extract the ssid and you can also test
with pftest binary.
Regards
Fabrice
Le Jeudi, Avril 11, 2019 03:02 EDT, Craig Strydom
What you can try, even if it's an aruba controller is to use the Aruba
Instant access module instead(we did it because the CoA changed on this
equipment)
curl
https://patch-diff.githubusercontent.com/raw/inverse-inc/packetfence/pull/4211.diff
| patch -p1
Also is it a Aruba COntroller in
Hello Cristian,
first you need to fix your authentication source apra-user-auth-dc01 and
add a authentication rule that return a role and an access duration.
(use: /usr/local/pf/bin/pftest authentication c.mammoli bob
apra-user-auth-dc01)
After that you should be able to see a role
Hello Adrian,
just set the vlan id for the unreg role to -1.
Regards
Fabrice
Le 19-06-11 à 08 h 00, Adrian Dessaigne via PacketFence-users a écrit :
Hello everyone,
PacketFence native configuration always accept MAC Authentication. If
the device is unreg, it's put in Registration VLAN, or
Le 19-06-11 à 10 h 03, Adrian Dessaigne via PacketFence-users a écrit :
Is it in the "Role" tab in the switch configuration ? I only see the
REJECT Role.
And in my role list, I don't see the "unreg" one. Do I have to create
it or it is somewhere else ?
Regards,
Adrian
Mac Auth requests in my source or on the portal and then send a reject.
Or just disable MAB on the switch ;)
Tobias
Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> schrieb am Di., 11.
Juni 2019, 16:25:
Le 19-06-11 à 10 h 03, Adrian Dess
Hello Felipe,
Le 19-06-11 à 13 h 08, Felipe Rodrigues via PacketFence-users a écrit :
Hi guys,
Just help me to clarify one thing:
- The registration interface is isolated in packetfence right? Does
this interface need internet access or need to access the ip adress
configured on the
Hello Roberto,
Le 19-06-12 à 23 h 53, Casagrande Roberto, SEDE CENTRALE - GUBBIO,
Colacem S.p.A. via PacketFence-users a écrit :
Sorry but I don’t find how to create a trunk port to VMware or I don’t know if
I configured well the server PF for work with vlan.
Please can I have a support?
Hello Pro,
are you using packetfence-mariadb service in pcs or just mariadb ?
Regards
Fabrice
Le 19-06-13 à 05 h 23, pro fence via PacketFence-users a écrit :
Hello,
does somebody know why when mariadb is started with pcs cluster it
becomes impossible to connect to mysql directly on the
Hello Steve,
it's already suppose to send the ip address of the device in the radius
accounting packet:
https://github.com/inverse-inc/packetfence/blob/devel/go/firewallsso/checkpoint.go#L45
Regards
Fabrice
Le 19-06-12 à 05 h 06, AOL a écrit :
Thanks Fabrice.
that started the RADIUS
Disconnect-Request:
No answer from 10.20.21.51 on port 3799 at
/usr/local/pf/lib/pf/util/radius.pm <http://radius.pm> line 147.
(pf::Switch::Ruckus::SmartZone::catch {...} )
On Wed, Jun 12, 2019 at 11:20 AM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourcefor
Hello Stuart,
we still working on it: https://github.com/inverse-inc/packetfence/pull/4558
Regards
Fabrice
Le 19-06-12 à 12 h 10, Stuart Gendron via PacketFence-users a écrit :
Playing around with the Node Manager Admin Role to try and lock things
down so the user can only change nodes to
Hello Scott,
i will need to see the content of packetfence.log to see what happen.
Regards
Fabrice
Le 19-06-12 à 12 h 59, Lu, Scott via PacketFence-users a écrit :
Hi,
I have configured PF9 captive-portal for Guest registration and send
email for "Network access activation",
1. Guest
Hello Thomas,
i see what is the issue.
i will patch it and the new binary will be available tomorrow from the
maintenance (pf-maint.pl).
Regards
Fabrice
Le 19-05-23 à 09 h 51, Thomas OLIVIER via PacketFence-users a écrit :
Hi All,
I've got an issue on my PacketFence fresh install on
Hello Stuart,
yes it's possible but when you plug in the port 2 is it the port 50 who
appear in the log ?
Regards
Fabrice
Le 19-05-21 à 11 h 42, Stuart Gendron a écrit :
Logs below:
May 21 11:39:50 youi-packetfence-p1 auth[25948]: rlm_sql (sql):
Closing connection (106): Hit
Hello Kalcho,
it looks to be the static content that is not working.
Can you check if httpd.dispatcher is running correctly ?
Regards
Fabrice
Le 19-05-15 à 03 h 16, Kalcho via PacketFence-users a écrit :
Hello,
I have packetfence 8.1 running on CentOS 7, after last CentOS update, captive
"ip" => $src_ip
});
} else {
call_ipsetd("/ipset/mark_ip_layer2?local=0",{
"network" => $network,
- "role_id" => "&
Hello pro,
you just need to add and additional listening daemon on the management
interface:
https://@mgmt_ip:1443/admin/configuration#configuration/networks/interfaces
Then restart packetfence.
Regards
Fabrice
Le 19-04-29 à 08 h 49, pro fence via PacketFence-users a écrit :
Hi,
thanks
ff.service loaded active running
PacketFence radsniff Service
packetfence-redis-cache.service loaded active running
PacketFence Redis Cache Service
packetfence-redis_queue.service
thanks in advance,
regards
On Mon, 29 Apr 2019 at 15:15, Fabrice Durand via PacketFence-users
<mailto:
It will be in 9.
Le 19-04-29 à 11 h 04, Thomas OLIVIER via PacketFence-users a écrit :
Will PF support Debian 9 in the next minor release or in the next
major 9.0 ?
Thomas.
On 29/04/2019 15:10, Fabrice Durand via PacketFence-users wrote:
Hello Thomas,
i just pushed the patch in devel
Hello Alina,
if the user type his username and password on the portal then you need
to create a radius source.
Regards
Fabrice
Le 19-07-11 à 05 h 10, Alina Haider via PacketFence-users a écrit :
Hi all,
Actually I wanted to integerate external Radius Server with
packetfence. Basically
Hello Chadwick,
you will need to use wmi if it's windows laptop or a MDM for the other
devices.
Regards
Fabrice
Le 19-07-09 à 23 h 55, Chadwick Boseman via PacketFence-users a écrit :
Please help me, I am stuck on this part
On Mon, Jul 8, 2019 at 3:57 PM Chadwick Boseman
Hello BR,
it looks to be slow disk.
Regards
Fabrice
Le 19-07-11 à 12 h 11, Domingos Varela via PacketFence-users a écrit :
Hi,
Please, Can anyone help me understand these events?
Thanks
BR
Cumprimentos,*
Domingos Varela*
Tel. +244 923 229 330 | Luanda - Angola
Domingos Varela
Hello Domingos,
you just need to configure on the f5 the 2 portals (like http://10.0.0.1
and http://10.0.0.2) and terminate the ssl tunnel on the F5.
Be sure to add the X-Forwarder-For attribute in the f5.
Regards
Fabrice
Le 19-07-11 à 12 h 10, Domingos Varela via PacketFence-users a
Hello Mike,
you need to enable lldp on the switch and probably enable lldp-med on
the phone too.
Last think enable voip on the switch configuration (pf side).
Regards
Fabrice
Le 19-07-09 à 03 h 57, Mike McGeer via PacketFence-users a écrit :
Hi all.
We have Packetfence 9.01 implemented
Hello Enrico,
under mac osx you can have a 'system' wireless profile which is a kind
of machine authentication.
https://gist.github.com/bruienne/fa2360146d8cb046ffde
Regards
Fabrice
Le 19-07-09 à 13 h 08, Enrico Pasqualotto via PacketFence-users a écrit :
Hello, I'm searching a solution
Hello,
it's probably because in your authentication source no rules match and
it doesn't return any role and access duration.
use bin/pftest to be sure that your username match with a rule.
Regards
Fabrice
Le 19-07-08 à 23 h 58, esouzabh--- via PacketFence-users a écrit :
I’m facing the
Hello Shirley,
what you can try is to configure a security event with a trigger based
on fingerbank and it's suppose to do the lookup for each devices.
Regards
Fabrice
Le 19-07-09 à 06 h 24, Shirley, Benjamin via PacketFence-users a écrit :
Hi,
it’s not clear to us when Packetfence
Hello,
if the snmptrapd and the pfqueue snmp processes are running then it can
be the community that is wrong.
Also i have already seen this kind of issue because of /etc/host.deny.
Last thing, you can use strace to see why the snmp trap is not received.
Regards
Fabrice
Le 19-07-11 à 09
Hello Cheung,
can you share your wmi.conf file ? (remove sensible information)
Regards
Fabrice
Le 19-07-10 à 22 h 06, Cheung Paul via PacketFence-users a écrit :
Problem 1: Packetfence not show wmi tab on noed wmi rules , it is a
windows os device
Hello Rodrigues,
can you check in the db to see if the encoding is correct ? (table
pf.person)
Regards
Fabrice
Le 19-07-11 à 08 h 03, Felipe Rodrigues via PacketFence-users a écrit :
Any ideia?
Sent from my iPhone
On 8 Jul 2019, at 14:52, Felipe Rodrigues
Hello Davis,
can you post your realm.conf and can you try pfcmd configreload hard
Regards
Fabrice
Le 19-07-08 à 04 h 39, David Ford via PacketFence-users a écrit :
Hello,
We’ve recently upgraded our packetfence setup from 8.0 on Debian
Jessie to 9.0.1 on Debian Stretch, and have applied
Hello,
Try that:
systemctl set-default packetfence-cluster
and check you cluster.conf file if there is no error.
Regards
Fabrice
Le 19-07-03 à 06 h 07, pro fence via PacketFence-users a écrit :
Hi,
i am configuring an active/active 3 mariadb servers cluster.
The proble is that i can't
Hello Leandro,
can you report the bug on github and we will take care of that.
https://github.com/inverse-inc/packetfence/issues/new
Thanks
Fabrice
Le 19-04-24 à 15 h 05, Leandro Ude via PacketFence-users a écrit :
I think i fixed , and it's a bug
Hello Barry,
you have the choice to disable epel repo.
Regards
Fabrice
Le 19-04-24 à 19 h 31, Barry Quiel via PacketFence-users a écrit :
Unfortunately I don't have much of a choice. Because of our patch
policy I disable the PF repo. The manual steps generally required in
a PF update
Hello Jason,
Le 19-04-15 à 23 h 28, Jason Salmans via PacketFence-users a écrit :
Hi all,
I’ve got a Packetfence server set up to evaluate and I’ve got a few
questions. First, a bit about my environment… I’m working with Cisco
WLC with mostly 2700 series APs with a few 702w or 1810w
Hello Thomas,
can you try that:
diff --git a/lib/pf/ipset.pm b/lib/pf/ipset.pm
index 63273f6c45..fcdb41872a 100644
--- a/lib/pf/ipset.pm
+++ b/lib/pf/ipset.pm
@@ -410,13 +410,13 @@ sub update_node {
if ($ConfigNetworks{$network}{'type'} =~
/^$NET_TYPE_INLINE_L3$/i) {
Hello Süleyman
from the packetfence server try to see if you have traffic on the mgmt
interface and check if you are able to ping the default gateway.
Regards
Fabrice
Le 19-07-16 à 08 h 30, Süleyman Gelener via PacketFence-users a écrit :
Dear Subscribers,
I tried to put managment
Hello Chadwick,
Le 19-07-16 à 04 h 59, Chadwick Boseman via PacketFence-users a écrit :
Hi All,
So I have a PF Zen up and running,
I have some questions regarding my understanding of VLAN membership in PF:
1. When a new device (never connect / never register before) is
connected to the
Hello Philippe,
Eduroam will only work for 802.1x not for doing chap/pap.
So in order to make it work you need to have a secure ssid called
eduroam and use the port 11812 for the radius server.
In the eduroam authentication source you also need to define your local
realm (create your realm
mplementation diagram.
Thanks
Regards
Cumprimentos,*
Domingos Varela*
Tel. +244 923 229 330 | Luanda - Angola
Fabrice Durand via PacketFence-users
mailto:packetfence-users@lists.sourceforge.net>> escreveu no
dia
Hello Jon,
it's really simple, you just need to set -1 in the registration role.
Then if a unreg device try to connect then it will be rejected.
Regards
Fabrice
Le 19-08-09 à 11 h 37, Jon Barret via PacketFence-users a écrit :
Hello,
We are currently looking into using Packetfence but are
PacketFence is not able to recognize the OS of the device.
Does Fingerbank is enabled on your system ?
Le 19-08-07 à 06 h 17, Zairy Fajar via PacketFence-users a écrit :
The packetfence.log shows:
pfence pfqueue: pfqueue(7518) WARN: [mac:
11:3j:81:cc:cd:27]
Can't find scan engine for
yes, this is fingerbank that will recognize the os of the device.
Le 19-08-12 à 08 h 50, Fajar Zairy via PacketFence-users a écrit :
No it is not enabled, should I enable it??
On Mon, Aug 12, 2019, 7:49 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.
Hello Benjamin,
i will take a look but we probably need to add a configuration parameter
in the switch config (like enable multihost) and if it's enable then
don't close the previous location log entry.
Only close the locationlog when the device move or when packetfence
receive a
at, I have the “ntPassword” on my sandbox
ldap server. Is that what you’re referring to?
Regards,
On Thu, 5 Sep 2019 at 8:38 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Patrick,
you need to store the password in c
Hello Patrick,
you need to store the password in clear text or nthash format.
Regards
Fabrice
Le 19-09-05 à 03 h 33, Patrick Bituin via PacketFence-users a écrit :
Hello Team,
I've followed what the guide says on this link:
Hello Benjamin,
i did some test and even if i have multiples device on the same switch
port the locationlog is still open (for all of them).
Can you provide me more information about your setup ?
Like the switch module you are using, the log in packetfence.log when
you connect multiples on
Hello Ali,
in fact when you authenticate with 802.1x you authenticate the user and
not the device.
So if you associate the user to a role then the role to an acl it mean
user = ACL.
Also i checked the code of the module and it looks that it doesn't
support dynamic ACL. Btw it looks to use
229 330 | Luanda - Angola
Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> escreveu no dia
terça, 6/08/2019 à(s) 20:27:
Hello Domingos,
if the device receive an ip address from the production vlan then
it mean that there is a net
Hello Fajar,
11:22:33:44:55:66 is the fake mac address when you use the portal preview.
You need to do your test with a real device.
Regards
Fabrice
Le 19-08-05 à 06 h 52, Fajar Zairy via PacketFence-users a écrit :
Hi everyone,
I have pf zen running on vmware with vlan enforcement
I've
Hello Jonathan,
as you say you can use Nessus or OpenVAS or some MDM to check the
compliance.
Regards
Fabrice
Le 19-08-02 à 13 h 14, Jonathan Geyer via PacketFence-users a écrit :
Packet Fence UG/Support,
I’ve been looking into how to perform health checks or statement of
health checks
solution, une autre technique je ne sais
pas.. :/
Cordialement, Julien.
*De :*Fabrice Durand via PacketFence-users
*Envoyé :* jeudi 1 août 2019 15:43
*À :* packetfence-users@lists.sourceforge.net
*Cc :* Fabrice Durand
*Objet :* Re: [PacketFence-users] PacketFence and Wireless Integration
Hello Roger,
try that:
/usr/local/pf/bin/pfcmd configreload hard
and retry
Regards
Fabrice
Le 19-08-01 à 08 h 41, Roger Faria via PacketFence-users a écrit :
Hi Everyone,
Seems like every time I change the redirection delay to anything other
the its default "20s" the captive portal page
the Packetfence server, it shows
"Memory allocation error"..
On Thu, Aug 1, 2019, 8:09 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Zairy,
you need to have an account that able to connect to wmi on the
rem
301 - 400 of 673 matches
Mail list logo