I'm attempting this on Packetfence 7.2 on Cisco switches. Like Derek said I see
in Packetfence when you click on the node it can see that the switchport has
other active devices on the port. Appears the "authentication violation
replace" command that the Packetfence Network guide shows for multiple host
port config on Cisco only supports one mac address at a time on the access
vlan. If I have an unmanaged switch with two devices plugged into it with this
configuration I can watch the terminal flip back and forth between the two mac
addresses it sees on the port. If I have an active ping going on both devices,
I can see they are dropping packets each time this happens. Max did you get
this to work in your environment?
Jeremy Plumley
ITS Network Administrator
Ext 50024
From: Derek Wuelfrath via PacketFence-users
[mailto:packetfence-users@lists.sourceforge.net]
Sent: Tuesday, June 20, 2017 10:34 AM
To: ML PF <packetfence-users@lists.sourceforge.net>
Cc: Derek Wuelfrath <dwuelfr...@inverse.ca>
Subject: Re: [PacketFence-users] Multiple endpoints behind a single switchport
Hey Max,
That means, if per exemple you have a managed switch port with PacketFence
enforcement configured on it, and that you have a small unmanaged desktop
switch plugged into that managed switch port, then you can register /
unregister / apply a violation / close a violation / change the role of all the
devices plugged into that unmanaged desktop switch.
Managing a device from PacketFence that is plugged into that unmanaged desktop
switch will inform you that they are other devices with a locationlog opened on
the same managed switch port and that you can apply the action to all of the
devices or only on the one you are currently editing.
Does that helps ?
Cheers!
-dw
--
Derek Wuelfrath
dwuelfr...@inverse.ca<mailto:dwuelfr...@inverse.ca>
Inverse inc. :: Leaders behind SOGo (www.sogo.nu<https://www.sogo.nu/>),
PacketFence (www.packetfence.org<https://www.packetfence.org/>) and Fingerbank
(www.fingerbank.org<https://www.fingerbank.org>)
On Jun 16, 2017, at 16:14, Max McGrath via PacketFence-users
<packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>>
wrote:
Hello -
I saw in the release notes for version 7.0 a feature which states "Ability to
manage multiple "active" endpoints behind a single switchport (PR#2034)".
What exactly does this mean? Does it mean that PacketFence will now work with
multiple endpoints plugged into a single hub/switch?
I've just tried that and it doesn't seem to function as expected. Perhaps
PR#2034 does something different than I'm reading into it.
Thanks!
Max
--
Max McGrath
[https://static.licdn.com/scds/common/u/img/webpromo/btn_profile_greytxt_80x15.png]
<https://www.linkedin.com/pub/max-mcgrath/1b/3a6/a21>
Network Administrator
Carthage College
262-551-6666
mmcgr...@carthage.edu<mailto:mmcgr...@carthage.edu>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org<http://Slashdot.org>!
http://sdm.link/slashdot_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net<mailto:PacketFence-users@lists.sourceforge.net>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
E-Mail correspondence to and from this address may be subject to the North
Carolina Public Records Law and shall be disclosed to third parties when
required by the statutes (G.S. 132-1.)
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
