Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Packetfence

From: "Fox, Danny D." <dfox2 () SU EDU>
Date: Fri, 3 Apr 2009 11:25:45 -0400
Shenandoah University is using Packetfence for our residence halls and
we are very happy with it.

I am running an older version (1.6.2) but am very interested in moving
to the newest release with VLan switching.

No real horror stories and the very few times I have needed help their
tech support have been very fast to answer and help resolve the problem.

Since I was not sure how much a load PF would put on the desktop
hardware I had to run it on I configured our set-up with three "servers"
to split the load. The main server that runs PF and snort, the MySQL
database server and the optional Nessus server, I am not currently
utilizing the Nessus server.

Currently we have 23344 Nodes (unique MAC addresses) registered in PF.

We have linked PF into Active Directory via LDAP so students register
their computers using their SU user ID and password.

We do have to manually register game consoles that do not have a web
browser interface. PF does have the ability to Auto Register devices but
I want to know who the device belongs to so if it generates bad traffic
we can contact them to resolve it faster.




Danny



Danny Fox
Information Security Officer (ISO)
Shenandoah University

-----Original Message-----
From: Matthew Gracie [mailto:graciem () CANISIUS EDU] 
Sent: Thursday, April 02, 2009 1:42 PM
Subject: Packetfence.

We're looking at replacing our current NAC solution in the residence
halls, and one of the contenders is Packetfence.

1) Has anyone used Packetfence as a Resnet NAC system? Any tips, horror
stories, things to watch for?

2) Has anyone integrated a 4400-based Cisco LWAPP deployment with it?
The web site says it's supported, but as with most open source products,
the documentation seems a bit lacking.

Thanks for any help,

--Matt

-- 
Matt Gracie                         (716) 888-8378
Information Security Administrator  graciem () canisius edu
Canisius College ITS                Buffalo, NY



____

This e-mail may contain confidential and/or privileged information and should not be used by anyone who is not the 
original intended recipient(s) or authorized to receive this message for the original intended recipient(s). If you 
have received this e-mail in error please: 1) Inform the sender only, do not "Reply to All." 2) Delete this e-mail from 
your mailbox and any other storage system you may have saved or copied it to. 3) Do not print, forward, copy or save 
this e-mail or share its contents with anyone.

The contents of this e-mail do not necessarily represent the views or policies of Shenandoah University.
____
Previous By Date Next
Previous By Thread Next

Current thread: