Hi Adrián I have a group of unifi APs doing radius packetfence magic vía L2TP/IPSEC tunnel. No issues so far.
Maybe I can help you, it's your routing ok? any NAT between your APs and packetfence management address? Where is your UNIFI controller located? I'm not really a fragmentation/MTU expert, why do you think this is causing problems? Enrique El mar, 22 de mar. de 2022 17:26, Adrian Damaschek via PacketFence-users < packetfence-users@lists.sourceforge.net> escribió: > Hello Everyone, > > I started this topic in my previous thred, but since its now a different > issue and more specific I decided to split it off. (the issue with SECP > Certs got fixed fo thanks everyone) > > Following problem. I got packetfence installed in my main Datacenter, now > I would like to have a central NAC for all my wifi, I use Unifi Access > point and the problem is that it seems not to work over VPN connections > > From all I could find its related to Fragmentation and MTU. Its suggested > to set the atribute of FramedMTU to something like 1300 or lower. To tell > the client as the MTU needs to be lower. > People seem to say that you set this on the radius server, and it tells > the client to use a lower frameMTU. Not a expert on radius so I don’t know. > > Anyone managed to get unifi APs to work with radius from offsite ? > > I would not want to deal with having to have a NAC per site. A radius > proxy fowarding the requests might be a option but I prefer to use that as > a last resort > > Thanks for any responses > > Adrian > > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users