On 08/28/2012 12:06 AM, Thomas Stuyvesant wrote: > Currently I am using untangle, but I've been looking for something > better. I came across PF and thinking it may work well as a captive > portal for my public wifi. My setup right now is a WRT54GL(Tomato > firmware) that goes to the untangle box that has a second nic wiht an > external IP. I was wondering if I purchase a cheaper smart switch such > as the Linksys SRW224G4 that is on the supported list (or maybe a D-Link > DES3526) would that be all I need to make PF work? My guess is then the > setup would be the WRT54GL connected to the supported switch, with the > PF box connected to the same switch, and then a second nic in the PF box > that routes to the external IP. Does this work?
VLAN enforcement absolutely needs to be on the edge of your network to work properly. So the Tomato would need to support RADIUS AAA, VLANs and offer a means for PacketFence to de-authenticate a client based on its MAC. Inline would work fine even w/o the smart switch. There's an open ticket on it right now but it should be fixed soon. -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
