I'm currently setting up Packetfence v3.2 in conjunction with a Cisco 6509
running 12.2(33)SXI7. Two issues so far that I've run into.
1) Although the v3.2 admin guide (and network config guide) states that
the correct switchport config on a 6500 should look something like:
switchport access vlan xxx
switchport mode access
switchport voice vlan xxx
switchport port-security maximum 2
switchport port-security maximum 1 vlan access
switchport port-security
switchport port-security violation restrict
switchport port-security mac-address 0200.0001.0096
spanning-tree portfast
... the "switchport port-security maximum 1 vlan access" command is not
supported on the 6509. In fact, from an open Cisco support case, as well as
Cisco documentation online, the only time that "vlan access" would work is if
the switch port is configured as a trunk port. That can easily be done by me,
however, it seems like there is no other posting that would make me believe
this would work for packetfence. Any suggestions?
2) Secondly, when I ignore this issue and simply set the maximum to 1
without the "vlan access" line (assuming that, I'll only have a phone connected
into a switchport), I can connect a computer device and things seem to work
appropriately, however if I connect a VOIP device, such as a Cisco 7975 IP
Phone, I get the following error in the packetfence.log:
Mar 13 21:46:52 pfsetvlan(19) WARN: SNMP error tyring to remove or add secure
rows to ifIndex 96 in port-security table. This could be normal. Error message:
Received inconsistentValue(12) error-status at error-index 1
(pf::SNMP::Cisco::Catalyst_6500::authorizeMAC)
And nothing seems to happen, which makes me think this isn't going to work.
Looking at past articles, I only see one other instance of this happening to a
person using a 2960, which needed to just upgrade his IOS version to a newer
one.
I am totally opened to upgrading to v15 IOS, or another train altogether, as
long as I know what to upgrade to. Does anyone have any suggestions or any
experience getting packetfence to work correctly with a Cisco Catalyst 6500
series switch?
**********************************************
Email Disclaimer:
This email, including attachments, may contain
proprietary, confidential or privileged information. If you
are not the intended recipient, please (i) do not use,
disclose, save or retransmit this message or any
attachments, (ii) alert the sender by reply email and (iii)
destroy or delete this message and any attachments.
Delivery of this email to a person other than the intended
recipient(s) shall not constitute a waiver of privilege or
confidentiality.
CP Investments, member FINRA and SIPC, serves as
placement agent for investment products advised by
Canyon Capital Advisors LLC. This email is not intended to
be an offer to sell or a solicitation of an offer to buy any
security in any jurisdiction. We review and retain
electronic communications traveling through our network.
**********************************************
------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
Packetfence-users mailing list
Packetfence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
