Tools

Published on March 4th, 2011 | by NJ Ouchn

0

PacketFence v2.1.0 is out

PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices, integration with the Snort IDS and the Nessus vulnerability scanner; PacketFence can be used to effectively secure networks – from small to very large heterogeneous networks.

Changelog

New Hardware Support:

• Added Avaya as rebranded Nortel’s
• Support for Nortel’s ERS5500 with firmware 6.x
• 802.1X support with or without VoIP for Cisco Catalyst 2950

New Features:

• New configuration validation interface in Web Admin and with “pfcmd checkup”
• javascript-based network access detection (experimental)
• JSON bindings for node information (experimental)

Enhancements:

• Improvements to our Nortel support
• Developer documentation update
• Friendlier startup error messages
• More configuration validation on startup and in ‘pfcmd checkup’ (#1025, #1193)
• Improved support for Desktop Linux clients (#1188)
• New DHCP fingerprints for Cisco, UniData and Nortel IP Phones, Cisco Small Business switch, Netgear router, Generic Linux, Gentoo, Meego, LaCie NAS, Xyratex NAS, iPod/iPad, Samsung, LG, Sony Ericsson and Sharp smartphones,  Samsung, HTC and Pantech Android phones, APC and Tripplite UPS, some Generic Thin Clients, HP, Xerox and Brother printers, Mac OS X and finally last but not least a what-is-believed to be a Palm OS fingerprint!
• Improved test suite
• Miscellaneous code cleanup (#1165)
• Generated configuration files are now in var/… (#1014)
• pid files are now in var/run/
• Module versioning to improve handling of API changes in extension points
• Improvements to Captive Portal library utilities

Bug fixes:

• Fixed an issue where warnings were not sent in Wired MAC Authentication if a device was isolated behind a VoIP phone
• Removed misleading warnings on startup (#767)
• fixed SNMPv3 sample configuration (Thanks to Nate Renbarger)
• Allows apache2 as a valid httpd daemon name (#1185, Thanks to Jesper)
• Violation with action autoreg is only triggered if node is not registered  (#1026)
• Fixed errors when editing a node with an unknown connection type (#1177)
• No more warnings in node lookup (#1173)
• Warning avoidance in pf::vlan doWeActOnThisTrap (#832)
• pfcmd_vlan regressions (#1190)
• Worked around an upstream packaging problem with SOAP::Lite (#1194)
• Fixed a configurator issue that could cause broken configuration files (#776)

Translations:

• New Brazilian Portuguese (pt_BR) translation (Thanks to Brivaldo Junior of Federal University of Mato Grosso do Sul)

Source

RHEL5/CentOS5 RPM

packetfence-2.1.0-1.el5.noarch.rpm
SHA1 sum: 1e60acb020d12303e4ad065adf5f80911e17a38d

Tags: NAC, Nessus, PacketFence, Snort, Wireless Management

About the Author

NJ Ouchn "Passion is needed for any great work, and for the revolution, passion and audacity are required in big doses"

Related Posts

PacketFence v4.5.1 Released →

vFeed Python API v0.5.0 and introduction of the Search module →

vFeed Open Source Aggregated Vulnerability Database v0.4.7 released (support of HP Hotfixes, BID SecurityFocus & New Update method) →

vFeed Open Source Aggregated Vulnerability Database v0.4.5 released (support of CWE 2.5, OWASP Top 2013 & Snort rules) →