Educause Security Discussion mailing list archives
Re: Packetfence
From: "Fox, Danny D." <dfox2 () SU EDU>
Date: Fri, 3 Apr 2009 11:25:45 -0400
Shenandoah University is using Packetfence for our residence halls and we are very happy with it. I am running an older version (1.6.2) but am very interested in moving to the newest release with VLan switching. No real horror stories and the very few times I have needed help their tech support have been very fast to answer and help resolve the problem. Since I was not sure how much a load PF would put on the desktop hardware I had to run it on I configured our set-up with three "servers" to split the load. The main server that runs PF and snort, the MySQL database server and the optional Nessus server, I am not currently utilizing the Nessus server. Currently we have 23344 Nodes (unique MAC addresses) registered in PF. We have linked PF into Active Directory via LDAP so students register their computers using their SU user ID and password. We do have to manually register game consoles that do not have a web browser interface. PF does have the ability to Auto Register devices but I want to know who the device belongs to so if it generates bad traffic we can contact them to resolve it faster. Danny Danny Fox Information Security Officer (ISO) Shenandoah University -----Original Message----- From: Matthew Gracie [mailto:graciem () CANISIUS EDU] Sent: Thursday, April 02, 2009 1:42 PM Subject: Packetfence. We're looking at replacing our current NAC solution in the residence halls, and one of the contenders is Packetfence. 1) Has anyone used Packetfence as a Resnet NAC system? Any tips, horror stories, things to watch for? 2) Has anyone integrated a 4400-based Cisco LWAPP deployment with it? The web site says it's supported, but as with most open source products, the documentation seems a bit lacking. Thanks for any help, --Matt -- Matt Gracie (716) 888-8378 Information Security Administrator graciem () canisius edu Canisius College ITS Buffalo, NY ____ This e-mail may contain confidential and/or privileged information and should not be used by anyone who is not the original intended recipient(s) or authorized to receive this message for the original intended recipient(s). If you have received this e-mail in error please: 1) Inform the sender only, do not "Reply to All." 2) Delete this e-mail from your mailbox and any other storage system you may have saved or copied it to. 3) Do not print, forward, copy or save this e-mail or share its contents with anyone. The contents of this e-mail do not necessarily represent the views or policies of Shenandoah University. ____
Current thread:
- Re: Packetfence Fox, Danny D. (Apr 03)
- <Possible follow-ups>
- Re: Packetfence Mike Wiseman (Apr 03)