> From: Fabrice Durand
> Subject: Re: [PacketFence-users] Hint needed for configuring LDAP/AD
> Hello Daniel,
> First try with the cli pftest executable to be sure that your user match a
> rule.
> Regards
>
[Daniel V Muller]
Thanks that helped I have it working now!
Hello I have AD configured as a "Source" and the test works.
I configured a rule on the authentication source that grants web admin roles to
these users.
Still cannot authenticate to the admin console with my AD users.
I'm not finding great instructions in the PDF "Administration Guide" or nor
> Just a question: why do you use port security instead of a more recent
> method such as radius?
>
> RADIUS scales better, is easier to debug and just works better in general than
> any SNMP based method.
>
> --
Inertia and competing priorities; we've had so many changes in the environment
ove
> I hate to repeat myself, but...
>
> Can you share your switches.conf?
>
> Also, please paste the output of these two commands (scrub the
> passwords):
>
> # perl /usr/local/pf/addons/dev-helpers/dump.pl switches # perl
> /usr/local/pf/addons/dev-helpers/dump.pl config
>
>
Certainly; no probl
We enabled pfsetvlan trace logging using the example found here:
http://fossies.org/linux/packetfence/conf/log.conf.d/pfsetvlan.conf.example
I reproduced our event that apparently sends pfsetvlan into a loop and
collected the trace:
[root@nupf pf]# tail -f logs/pfsetvlan.log
Apr 28 10:46:38 pfse
We do still see the issue we just noticed if we restart pfsetvlan it will not
enter the seemingly endless loop until it encounters a new trap.
I performed a test on a fresh v5.0.1 installation configure a single Cisco
Catalyst switch to report port-security traps to PacketFence.
We see the tra
[Daniel V Muller]
Thanks for the tip about packetfence-config
I have my configuration pared down to something very minimal that triggers this
issue but I still can't tell if it is something in PF, the Cisco configuration
or out on the router.
I can walk the switch from PF.
PF is receiving th
>
> Daniel,
> Let?s consider the problems one at a time.
>
> Temporarily shut down or kill pfmon.
> See if that fixes the deadlock issue.
>
> pfmon is responsible for purging old entries from the database when they
> expire.
> If there is too much to purge the table may be locked for a long time
n; charset="windows-1252"
>
>
> On Apr 27, 2015, at 8:47 , Muller, Daniel (HEALTH)
> wrote:
>
> > Currently I see incoming traps logged in snmptrapd.log, no action from
> pfsetvlan which still is running about 100% of one CPU.
>
> What is strace reporting for t
--
Message: 3
Date: Fri, 24 Apr 2015 14:05:59 -0400
From: Louis Munro
Subject: Re: [PacketFence-users] pfsetvlan high cpu, innodb deadlocks
To: packetfence-users@lists.sourceforge.net
Message-ID: <24c19159-93cd-4b57-b59e-b6d6226d5...@inverse.ca>
Content-Type: text/pla
en replying, please edit your Subject line so it is more specific than "Re:
Contents of PacketFence-users digest..."
Today's Topics:
1. pfsetvlan high cpu, innodb deadlocks no outgoing switch
management evident (Muller, Daniel (HEALTH))
2.
> Allow me to ask a seemingly dumb question:
>
> Did you reboot after restoring the snapshot?
Not dumb at all; I'm currently using a snapshot without memory so when reverted
the system boots.
Troubleshooting it this morning I rebooted it about twice before I had the
network configuration sort
.sourceforge.net
You can reach the person managing the list at
packetfence-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific than "Re:
Contents of PacketFence-users digest..."
Today's Topics:
1. pfsetvlan high cpu
This is PacketFence 4.5.1, centos-release-6-6.el6.centos.12.2.x86_64 (perl
5.10, mysql 5.1) VMware ESX.
I had a working out-of-band installation with 213 switches, mix of HP Procurve
& Cisco Catalyst.
I attempted an upgrade to 5.0 last week and then attempted to abandon this
effort by rolling
14 matches
Mail list logo