| Anonymous | Login | 2024-07-22 13:23 EDT |  |
| Main | My View | View Issues | Change Log | Roadmap |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | |||
| 0001070 | PacketFence | refactoring | public | 2010-09-16 13:40 | 2015-02-13 15:24 | |||
| Reporter | obilodeau | |||||||
| Assigned To | obilodeau | |||||||
| Priority | normal | Severity | major | Reproducibility | N/A | |||
| Status | closed | Resolution | open | |||||
| Platform | OS | OS Version | ||||||
| Product Version | ||||||||
| Target Version | Fixed in Version | |||||||
| Summary | 0001070: Fake MACs (02:00:00...), authorizeMAC(..) and SNMP interface evolution | |||||||
| Description | On Cisco, port-security implies a limit of 1 MAC per port dynamically learned. For packetfence to work reliably, we configure a fake MAC so that new activity triggers a security violation. But, the above limitation is not found on all hardware anymore... which means that we register 02:00:00... and ask them to configure them in the admin guide for no valid reason. So, we need to refactor our code so that this decision is pushed out of pfsetvlan and into specific switch modules. Modules that don't require a 02:00... MAC: - Extreme - at least one of the HPs - all Nortel - ThreeCom::SS4500 Maybe? - Enterasys - Foundry - SMCs Need to think about and test VoIP aspect also. Tasks: - no more generateFakeMac() in pfsetvlan - switch that requires a fake mac generate it when they deauth a MAC (if they don't auth) - remove isFakeMac() in switches that didn't require a fakeMac - change admin guide so we no longer put a fake MAC in switches which no longer requires a fake MAC | |||||||
| Tags | No tags attached. | |||||||
| fixed in git revision | ||||||||
| fixed in mtn revision | ||||||||
| Attached Files | ||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
|
(0001679) obilodeau (reporter) 2010-09-21 11:34 |
SMC doesn't need a fake MAC entry, it's confirmed. |
|
(0003668) lmunro (administrator) 2015-02-13 15:24 |
These issues are too old to still be relevant. Let's start anew. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2010-09-16 13:40 | obilodeau | New Issue | |
| 2010-09-16 13:40 | obilodeau | Status | new => assigned |
| 2010-09-16 13:40 | obilodeau | Assigned To | => obilodeau |
| 2010-09-21 11:34 | obilodeau | Note Added: 0001679 | |
| 2010-11-19 14:25 | obilodeau | Target Version | 1.10.0 => 2.0.0 |
| 2011-01-18 09:47 | obilodeau | Target Version | 2.0.0 => 2.1.0 |
| 2011-03-03 15:15 | obilodeau | Target Version | 2.1.0 => +1 |
| 2011-03-03 15:18 | obilodeau | Target Version | +1 => +2 |
| 2015-02-13 15:24 | lmunro | Note Added: 0003668 | |
| 2015-02-13 15:24 | lmunro | Status | assigned => closed |
|
Issue History |
| Copyright © 2000 - 2012 MantisBT Group |
 |