Network access control system PacketFence 1.8.5 released

PacketFence is a free and open source network access control (NAC) system. PacketFence is actively maintained and has been deployed in numerous large-scale institutions over the past years. It can be used to effectively secure networks – from small to very large heterogeneous networks.

PacketFence 1.8.5 news are included below.

New Features

  • Nessus integration with captive portal for scanning on registration
  • PacketFence is now distributed as a yum repository (avoids having the installer pull a lot of cpan modules and jpgraph)
  • normal/correct VLAN default behaviour changed (see UPGRADE for details)
  • PacketFence is now able to automatically create static routes for routed registration and isolation VLANs
  • significant performance improvement in 802.1X mode (wired and wireless) or in MAC authentication on wireless networks
  • massive documentation update (how to configure hardware, new install method, new support packages and more…)
  • blocking misbehaving user-agents on captive portal (avoid unnecessary load)
  • logging priority (INFO, WARN, ERROR) shown in log files
  • added a few utilities in addons/

Bugfix

  • SECURITY: fixed sensitive information leak in admin login: When password were considered invalid they were displayed
  • removed Hub violation that caused too many false positives
  • whitelisting MAC addresses more consistent across violation types
  • init script more robust
  • using temporary redirects instead of permanent ones

New hardware support

  • Amer SS2R24i switch in linkUp/linkDown mode
  • 3Com Switch 4200G and SuperStack 4500 in port-security mode
  • Enterasys D2, Matrix N3 and SecureStack C3 in linkUp/linkDown and maclock (port-security)
  • Extreme Networks Summit X250e in linkUp/linkDown mode.

Don't miss