I have Aruba IAPs which create little clusters with a virtual controller,
the controller has a VPN back to our internal network where Packetfence
sits.
When the IAP connects to the VPN it has a dynamic IP address that as far as
I can tell is not possible to set as static. Because of this I am not
setting the NAS ip on the Aruba side, when this is the case it uses the IP
address of the VPN to get to packet fence and tells PF that VPN address is
the NAS.
I have some internal IAPs that do not need this VPN. These devices DO have
the NAS address assigned.
If a device connects to one of the internal devices I can authenticate and
PF will send a disconnect packet and it works fine.
Later if the device switches to one of the VPN access points, the device
can authenticate, but PF still thinks it is on the internal device without
a VPN, and sends the disconnect packet to that internal switch.
Is there a way to get PF to send the disconnect to the correct AP?
Thanks.
*Adam Smith*
Network Administrator
[image: Inline image 1][image: Inline image 2]
Sundance Institute
O:435.658.3456
E:adam_sm...@sundance.org
www.sundance.org
<http://www.sundance.org>
------------------------------------------------------------------------------
Attend Shape: An AT&T Tech Expo July 15-16. Meet us at AT&T Park in San
Francisco, CA to explore cutting-edge tech and listen to tech luminaries
present their vision of the future. This family event has something for
everyone, including kids. Get more information and register today.
http://sdm.link/attshape
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
