Hi again!
I'm investigating some latency issues with RADIUS being a bit lumpy and
noticed that the number of open IPv4 sockets was incredibly high.
Checking on netstat -anp showed a vast number of pfstats -> LDAP:636
conencitnos (and yes I use LDAP as a portal auth source). The drop off is
afte
Detail I should have included: pf 8.1.0 on Debian
Detail I have since seen (IPs remove/swapped out for IPSCRUBBED):
Aug 10 12:23:37 pf pfstats[26534]: t=2018-08-10T12:23:37+0100 lvl=info
msg="Calling Unified API on uri:
https://127.0.0.1:/api/v1/dhcp/stats/eth1/IPSCRUBBED"; pid=26534
Aug 10 1
David,
Not sure what is causing your latency problem, but your socket graph looks like
ours. We have really good performance at 1258.2 sockets open at this moment.
What specs of the server you are using for pf? We have 8 core xeon, with 32 GB
of ram. Our processor never runs beyond 40% utilizat
Hello -
We have configured a passthrough domain to our password changer. This is
so when people are registering their devices at the captive portal, but
can't register due to a forgotten password, they might have a chance to
reset their password and successfully register.
However, our password c
Hello Kelly,
take a look in /etc/sysconfig/network-script to see if you still have
the old interfaces and in pf.conf too.
Regards
Fabrice
Le 2018-08-08 à 03:26, d_s_kelly--- via PacketFence-users a écrit :
We are finding that when our packetfence appliance vm is rebooted,
often settings a
Hello Geert,
you need to check the pf_version table to see if one version is no missing.
If yes then take a look at the file upgrade-*-missing-version.sql where
missing-version is the release number.
And replay just the part where it insert in the pf_version table.
Regards
Fabrice
Le 201
Hello Etienne,
i will need some log when it happen, do:
tail -f packetfence.log | grep @mac
and send the log.
Regards
Fabrice
Le 2018-08-09 à 07:30, Etienne Vella via PacketFence-users a écrit :
Hi,
We are experiencing a very strange issue with 802.1x. The user is
authenticating successf
Hello John,
in the packetfence.log file you will be able to see which source the
username match.
Also you can use pftest authentication bob "" to test the rules.
If you want you can send me the authentication.conf (remove confidential
data), profiles.conf file and i will probably what is the
Hello Franklin,
it looks that the device has never been registered and has been inserted
in the db because packetfence saw dhcp traffic for this device. (regdate
is not set)
So if you can do ipset -L ,to see if the mac appear in a set of ipset
and check if the name of the set.
Also if you
Hello David,
maybe you can take a pcap to see if you see some errors.
Is it ldaps ?
Also pfstats crashed when it tried to fetch the eduroam config and i am
not sure that it's related.
Regards
Fabrice
Le 2018-08-10 à 10:16, David Harvey via PacketFence-users a écrit :
Detail I should have inc
Hello Max,
it's a https url so proxy passthrough will not work.
Did you tried with dns passthrough ?
Regards
Fabrice
Le 2018-08-10 à 17:54, Max McGrath via PacketFence-users a écrit :
Hello -
We have configured a passthrough domain to our password changer. This
is so when people are reg
11 matches
Mail list logo