Dejan/Kevin, This will require some tweaking.. We're going with the trunk release of PacketFence 1.10 for our current deployment. I haven't worked with 1.9 .. So this may not be 100% accurate in 1.9 but I'm sure one of the developers can correct me if I'm wrong for 1.9. In /usr/local/pf/lib/vlan/custom.pm you can overwrite the functions that PF uses to determine which vlan to stick a node in.
In theory you can figure out who the node is registered to with pf::node or pf::db (if you want to write the query yourself) from the mac address you get passed in. After that you can pull in an LDAP module and make some queries, apply some logic and then return whatever vlan (name or number) you want and it will be passed along to pfcmd. The Inverse guys are also available to help with stuff like this. I really appreciate all of the work they've done for us and the support they continue to offer this project, so I always recommend them when I can. They are quite reasonable for stuff like this and can get you up and running with what you want quickly. Feel free to reply to the list if you have any other questions :) -Josh -- Josh Ward <[email protected]> Network Security Engineer University of Oregon - Network and Telecommunication Services PGP Fingerprint: CFB6 62C0 370B AD6D BA33 6034 8FFB 4A49 297F 6A4C On 8/6/10 8:49 AM, Kevin Manuel wrote: > I’ll forward this to the packetfence mailing list as somebody there > might be able to get back to you sooner than I am able to. > > > > *From:* [email protected] [mailto:[email protected]] > *Sent:* August-06-10 11:27 AM > *To:* [email protected] > *Subject:* Questions > > > > Hi Kevin > > > I'm totally novice with packetfence and PERL programming so I have > several questions to you. > > First I tried to integrate packetfence (version 1.9.0) with our Windows > domain controller (Windows 2003 server) without success. My idea is to > assign VLAN to node via LDAP search. I need direction how to do this > (the better is some working example with description). After reading > many documentation and forums about this solution I know that I must > customize several PERL modules: vlan.pm or custom.pm for assigning VLAN > id, but how I can connect to the ldap and perform search trough the ldap > structure and read VLAN id. Basic idea is thatVLAN id will be > description of group in LDAP. For example we have group name Accounting > and description is "304" this is VLAN id. > > > Thank you for help > > > > > > > Srdacan pozdrav, Kind Regards, Herzliche Grüsse > > Dejan Ljubanic > > Sistem administrator za LAN i WAN/System Administrator for LAN and WAN > > tel.: +381 (11) 2095-000, > > fax.: +381 (11) 2095-001 > > Zajednicki Informacioni Sistem doo > Ul. Pariske Komune 26/I > 11070 Novi Beograd > Srbija > > www.zis.co.rs > > The exchange of messages with ZIS d.o.o. Belgrade via e-mail is not > binding. Declarations regarding legal transactions must not be exchanged > via this medium.The information contained in this e-mail message is > confidential and intended exclusively for the addressee.Persons > receiving this e-mail message who are not the named addresse (or his/her > co-workers, or persons authorized to take delivery) must not use, > forward or reproduce its contents.If you have received this e-mail > message by mistake, please contact us immediately and delete this e-mail > message beyond retrieval. > > Razmena informacija sa ZIS d.o.o.Beograd putem e-maila je bez garancije. > Zakljucivanje pravnih poslova putem ovog medija nije dozvoljeno. Ovaj > e-mail moze sadrzavati poverljive i/ili povlascene informacije. Ukoliko > ste ovaj e-mail primili greskom, ovim putem vas obavestavamo da je svako > otkrivanje, kopiranje, distribucija ili preduzimanje bilo kakvih > aktivnosti u vezi njegovog sadrzaja strogo zabranjeno i moze biti > nezakonito. Ukoliko ste e-mail primili greskom, molimo Vas da nas odmah > obavestite tako sto cete odgovoriti na ovaj e-mail,a zatim ga izbrisite > iz vaseg sistema. > > > > > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > > > > _______________________________________________ > Packetfence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users ------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
