Tools no image

Published on March 4th, 2011 | by NJ Ouchn


PacketFence v2.1.0 is out

PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices, integration with the Snort IDS and the Nessus vulnerability scanner; PacketFence can be used to effectively secure networks – from small to very large heterogeneous networks.


New Hardware Support:

  • Added Avaya as rebranded Nortel’s
  • Support for Nortel’s ERS5500 with firmware 6.x
  • 802.1X support with or without VoIP for Cisco Catalyst 2950

New Features:

  • New configuration validation interface in Web Admin and with “pfcmd checkup”
  • javascript-based network access detection (experimental)
  • JSON bindings for node information (experimental)


  • Improvements to our Nortel support
  • Developer documentation update
  • Friendlier startup error messages
  • More configuration validation on startup and in ‘pfcmd checkup’ (#1025, #1193)
  • Improved support for Desktop Linux clients (#1188)
  • New DHCP fingerprints for Cisco, UniData and Nortel IP Phones, Cisco Small Business switch, Netgear router, Generic Linux, Gentoo, Meego, LaCie NAS, Xyratex NAS, iPod/iPad, Samsung, LG, Sony Ericsson and Sharp smartphones,  Samsung, HTC and Pantech Android phones, APC and Tripplite UPS, some Generic Thin Clients, HP, Xerox and Brother printers, Mac OS X and finally last but not least a what-is-believed to be a Palm OS fingerprint!
  • Improved test suite
  • Miscellaneous code cleanup (#1165)
  • Generated configuration files are now in var/… (#1014)
  • pid files are now in var/run/
  • Module versioning to improve handling of API changes in extension points
  • Improvements to Captive Portal library utilities

Bug fixes:

  • Fixed an issue where warnings were not sent in Wired MAC Authentication if a device was isolated behind a VoIP phone
  • Removed misleading warnings on startup (#767)
  • fixed SNMPv3 sample configuration (Thanks to Nate Renbarger)
  • Allows apache2 as a valid httpd daemon name (#1185, Thanks to Jesper)
  • Violation with action autoreg is only triggered if node is not registered  (#1026)
  • Fixed errors when editing a node with an unknown connection type (#1177)
  • No more warnings in node lookup (#1173)
  • Warning avoidance in pf::vlan doWeActOnThisTrap (#832)
  • pfcmd_vlan regressions (#1190)
  • Worked around an upstream packaging problem with SOAP::Lite (#1194)
  • Fixed a configurator issue that could cause broken configuration files (#776)


  • New Brazilian Portuguese (pt_BR) translation (Thanks to Brivaldo Junior of Federal University of Mato Grosso do Sul)


Download packetfence-2.1.0.tar.gz
SHA1 sum: c0dfaa76b9e1ff1f907cf89f892862703a8306c5


Download packetfence-2.1.0-1.el5.noarch.rpm
SHA1 sum: 1e60acb020d12303e4ad065adf5f80911e17a38d

Download packetfence-remote-snort-sensor-2.1.0-1.el5.noarch.rpm
SHA1 sum: 99abc7b32c86dc2896276ad05b53bd20382daf81

Tags: , , , ,

About the Author

"Passion is needed for any great work, and for the revolution, passion and audacity are required in big doses"

Back to Top ↑