Re: Packetfence

[Mike Wiseman <mike.wiseman () UTORONTO CA>]

One of the features of PacketFence is the compromise detection and self-remediation. How well does this work in 
practice? ie. do users 'fix' their computers on their own or is a help desk call made?

Mike



Mike Wiseman
Computing and Networking Services
University of Toronto




  

> Shenandoah University is using Packetfence for our residence halls and
> we are very happy with it.
>
> I am running an older version (1.6.2) but am very interested in moving
> to the newest release with VLan switching.
>
> No real horror stories and the very few times I have needed help their
> tech support have been very fast to answer and help resolve the
> problem.
>
> Since I was not sure how much a load PF would put on the desktop
> hardware I had to run it on I configured our set-up with three
> "servers"
> to split the load. The main server that runs PF and snort, the MySQL
> database server and the optional Nessus server, I am not currently
> utilizing the Nessus server.
>
> Currently we have 23344 Nodes (unique MAC addresses) registered in PF.
>
> We have linked PF into Active Directory via LDAP so students register
> their computers using their SU user ID and password.
>
> We do have to manually register game consoles that do not have a web
> browser interface. PF does have the ability to Auto Register devices
> but
> I want to know who the device belongs to so if it generates bad traffic
> we can contact them to resolve it faster.
>
>
>
>
> Danny
>
>
>
> Danny Fox
> Information Security Officer (ISO)
> Shenandoah University
>
> -----Original Message-----
> From: Matthew Gracie [mailto:graciem () CANISIUS EDU]
> Sent: Thursday, April 02, 2009 1:42 PM
> Subject: Packetfence.
>
> We're looking at replacing our current NAC solution in the residence
> halls, and one of the contenders is Packetfence.
>
> 1) Has anyone used Packetfence as a Resnet NAC system? Any tips, horror
> stories, things to watch for?
>
> 2) Has anyone integrated a 4400-based Cisco LWAPP deployment with it?
> The web site says it's supported, but as with most open source
> products,
> the documentation seems a bit lacking.
>
> Thanks for any help,
>
> --Matt
>
> --
> Matt Gracie                       (716) 888-8378
> Information Security Administrator  graciem () canisius edu
> Canisius College ITS              Buffalo, NY
>
>
>
> ____
>
> This e-mail may contain confidential and/or privileged information and
> should not be used by anyone who is not the original intended
> recipient(s) or authorized to receive this message for the original
> intended recipient(s). If you have received this e-mail in error
> please: 1) Inform the sender only, do not "Reply to All." 2) Delete
> this e-mail from your mailbox and any other storage system you may have
> saved or copied it to. 3) Do not print, forward, copy or save this e-
> mail or share its contents with anyone.
>
> The contents of this e-mail do not necessarily represent the views or
> policies of Shenandoah University.
> ____