Download Packetfence 1.7.1

A nac system can be used, among other things, to secure a network environment. This allows you to automatically block network devices when an undesirable situation occurs according to preset policies. Think of unknown network devices of visitors, a worm that tries to spread or even an authorized device that has been provided with a different operating system via a bootflop or live CD. Packetfence is one such nac system with support for 802.1x and recently too vlan isolation, which allows a network device to be placed in the correct vlan after an analysis. The developers released version 1.7.1 of Packetfence a few days ago and provided the following announcement:

PacketFence 1.7.1 released

The Inverse Team is pleased to announce the release of PacketFence 1.7.1. This is a maintenance release of the 1.7 branch of PacketFence.

changes:

• fixed various issues with service_watcher
• added VLAN isolation template
• encourage usage of Net::RawIP version 0.2
• prohibit node deletion of connected nodes in VLAN isolation
• show ‘reg/unreg’ choices in node/add.php
• more precise trap parsing
• fixed iptables issue with iptables.post file
• added better log messages on violation close
• tests look in the wrong directory for pid files
• issues stopping processes
• iptables save/restore
• authentication module error messages
• Net::Pcap instead of Net::RawIP in dhcplistener
• new RADIUS authentication template
• database optimisation
• SQL queries and active/inactive nodes
• optimized oui_to_vendor
• don’t automatically daemonize pfsetvlan
• pfsetvlan should clean its PID file
• pfsetvlan: A thread exited while 26 threads were running
• start pfsetvlan when network.vlan=enabled
• start snmptrapd when network.vlan=enabled
• automatically open UDP port 162 during VLAN isolation