Re: [PacketFence-users] PoC: Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Durand fabrice via PacketFence-users
Ok so you will need to send a copy of the dhcp traffic to the pf server, if you can install the DHCP remote sensor on the dhcp server. Next step will be to have a switch module for the Checkpoint firewall (not a big deal) in order to parse the ip address in the url. Also try first the

Re: [PacketFence-users] PoC: Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Benoît Dubé via PacketFence-users
It's the Checkpoint who does the redirection for URL traffic. The firewall is located at the entrance of the datacenter and every users located in different sites in the province pass through it. Then, it's all layer 3 (IP). There is no MAC address that Checkpoint nor Packetfence can be aware

Re: [PacketFence-users] PoC: Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Durand fabrice via PacketFence-users
Does the redirection contain the mac address of the device, do you have an example of the url with all the parameters ? (any documentation) If there is no mac in the url then you will need to send a copy of the dhcp traffic to PacketFence. Also for social login you will need to allow the

Re: [PacketFence-users] PoC: Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Benoît Dubé via PacketFence-users
With Checkpoint's Identity Awareness, HTTP or HTTPS for unknown users (AD point of view) are redirected to a captive portal URL. Merci Fabrice Envoyé à partir d’Outlook De : Durand fabrice via PacketFence-users

Re: [PacketFence-users] Cluster - Dhcp

2017-12-07 Thread Durand fabrice via PacketFence-users
Yes this is normal, the dhcp scope is divided by 2 so only 2 servers can run dhcpd. Le 2017-12-07 à 18:01, Luís Torres via PacketFence-users a écrit : Hello all, have 3 servers in cluster working now, but I realized that only server1 and 2 as dhcpd active. Is that normal? regards LT

Re: [PacketFence-users] PoC: Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Durand fabrice via PacketFence-users
Hello Benoît, my question is how the Checkpoint firewall will redirect the external devices on the captive portal ? Regards Fabrice Le 2017-12-06 à 11:58, Benoît Dubé via PacketFence-users a écrit : Hi everyone, I need to do a proof of concept to authenticate external users, in a

[PacketFence-users] Cluster - Dhcp

2017-12-07 Thread Luís Torres via PacketFence-users
Hello all, have 3 servers in cluster working now, but I realized that only server1 and 2 as dhcpd active. Is that normal? regards LT -- Check out the vibrant tech community on one of the world's most engaging

Re: [PacketFence-users] Social Login from Captive Portal and Firewall (Checkpoint) Enforcement

2017-12-07 Thread Benoît Dubé via PacketFence-users
Does someone use PacketFence like this (Captive portal and firewall enforcement) ? Envoyé à partir d’Outlook De : Benoît Dubé Envoyé : 6 décembre 2017 11:58 À : packetfence-users@lists.sourceforge.net Objet :

[PacketFence-users] Clustering

2017-12-07 Thread Luís Torres via PacketFence-users
Hi mates, getting this error when I finish config the first node of the cluster with :" /usr/local/pf/bin/pfcmd service pf restart" packetfence.log: " packetfence: FATAL -e(3496): unable to connect to database: Host is not allowed to connect to this MariaDB server at -e line 1." regards