PacketFence - BTS - PacketFence
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0001325PacketFencecorepublic2011-11-03 16:362011-11-21 12:05
Reporterfgaudreault 
Assigned Toobilodeau 
PriorityurgentSeveritymajorReproducibilityalways
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version3.0.2 
Target Version3.0.3Fixed in Version3.0.3 
fixed in git revision
fixed in mtn revision8fe3b7595228b02936da511c75f238bb65a1a71e
Summary0001325: inline mode is not working, vlan re-evaluation fails
DescriptionSee the flow below :
Nov 03 17:58:19 pfdhcplistener(2789) INFO: DHCPACK from 192.168.200.1 (00:50:56:9d:00:1a) to host f0:4d:a2:cb:d9:c5 (192.168.200.10) (main::listen_dhcp)
Nov 03 17:58:33 redir.cgi(0) INFO: f0:4d:a2:cb:d9:c5 being redirected (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2dportal_redir_2ecgi::handler)
Nov 03 17:58:33 redir.cgi(0) INFO: Updating node f0:4d:a2:cb:d9:c5 user_agent with useragent: 'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1' (pf::web::web_node_record_user_agent)
Nov 03 17:58:33 redir.cgi(0) INFO: Static User-Agent lookup data initialized (pf::useragent::_init)
Nov 03 17:58:33 redir.cgi(0) INFO: f0:4d:a2:cb:d9:c5 redirected to authentication page (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2dportal_redir_2ecgi::handler)
Nov 03 17:58:40 register.cgi(0) INFO: 192.168.200.10 - f0:4d:a2:cb:d9:c5 (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2dportal_register_2ecgi::handler)
Nov 03 17:58:40 register.cgi(0) INFO: calling /usr/local/pf/bin/pfcmd 'manage register f0:4d:a2:cb:d9:c5 "demouser" pid="1",user_agent="Mozilla 5.0 Windows NT 6.1; WOW64; rv:7.0.1 Gecko 20100101 Firefox 7.0.1"' (pf::web::_sanitize_and_register)
Nov 03 17:58:40 pfcmd(2840) INFO: creating person demouser because it doesn't exist (pf::node::node_register)
Nov 03 17:58:40 pfcmd(2840) INFO: person demouser added (pf::person::person_add)
Nov 03 17:58:40 pfcmd(2840) INFO: re-evaluating access for node f0:4d:a2:cb:d9:c5 (manage_register called) (pf::enforcement::reevaluate_access)
Steps To Reproduce
Additional Information
TagsNo tags attached.
Relationships
related to 0001336closed obilodeau VLAN encapsulation information messes up pfdhcplistener 
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2011-11-03 16:36fgaudreaultNew Issue
2011-11-03 18:00fgaudreaultDescription Updated
2011-11-03 18:01fgaudreaultNote Added: 0002425
2011-11-03 18:01fgaudreaultNote Edited: 0002425
2011-11-08 09:31obilodeauNote Added: 0002429
2011-11-08 09:35fgaudreaultNote Added: 0002431
2011-11-08 09:37obilodeauNote Added: 0002432
2011-11-15 14:54obilodeauNote Added: 0002444
2011-11-15 14:55obilodeauStatusnew => assigned
2011-11-15 14:55obilodeauAssigned To => obilodeau
2011-11-15 15:03obilodeauRelationship addedrelated to 0001336
2011-11-15 15:14obilodeaumtn revision => 8fe3b7595228b02936da511c75f238bb65a1a71e
2011-11-15 15:14obilodeauNote Added: 0002445
2011-11-15 15:14obilodeauStatusassigned => resolved
2011-11-15 15:14obilodeauFixed in Version => +1
2011-11-15 15:14obilodeauResolutionopen => fixed
2011-11-21 12:04obilodeauNote Added: 0002454
2011-11-21 12:04obilodeauTarget Version => 3.0.3
2011-11-21 12:05obilodeauStatusresolved => closed
2011-11-21 12:05obilodeauFixed in Version+1 => 3.0.3

Notes
(0002425)
fgaudreault   
2011-11-03 18:01   
Updated the ticket with the proper flow.
(0002429)
obilodeau   
2011-11-08 09:31   
I don't understand. There's no error.
(0002431)
fgaudreault   
2011-11-08 09:35   
No error doesn't mean it works :P The IPTables are not being updated.
(0002432)
obilodeau   
2011-11-08 09:37   
I was afraid you were gonna say something like that.. :(
(0002444)
obilodeau   
2011-11-15 14:54   
After some extensive research, I confirmed that on CentOS 6 we have VLAN encapsulation information by default. This messes up with our dhcp detector which can't decode the DHCPREQUEST packet and maintain the locationlog in inline mode.

Also, there's an additional problem related to the fact that we don't run pfsetvlan or snmptrapd if we don't have vlan mode enabled. Doh!
(0002445)
obilodeau   
2011-11-15 15:14   
DHCP portion filed separately in 0001336.

pfsetvlan and snmptrapd made mandatory in the current fix.

Chances are we will have a stable release with this in pretty soon.
(0002454)
obilodeau   
2011-11-21 12:04   
Fixed released in 3.0.3 today.