Wednesday, May 15, 2013

[PacketFence v4.0] Open Source network access control (NAC)

PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices, integration with the Snort IDS and the Nessus vulnerability scanner; PacketFence can be used to effectively secure networks – from small to very large heterogeneous networks.


Packet Fence 4.0 introduces a brand new modern, fast and responsive web administrative interface. It also simplifies the definition of authentication sources in one place and allows dynamic computation of roles. The portal profiles can now be entirely managed from the web interface, simplifying their definitions and eliminating possible configuration mistakes. Using a centralized caching system, configuration is now propagated instantaneously – absolutely no downtime required!

Changelog v4.0


New Features
  • Brand new Perl-based Web administrative interface using the Catalyst framework
  • New violation actions to set the node’s role and deregister it
  • Support for scanning dot1x connections for auto-registration by EAP-Type
  • Support for auto registering dot1x node based of the EAP-Type
  • New searchable MAC Addresses module to query all existing OUI prefixes
  • New advanced search capabilities for nodes and users
  • New memory object caching subsystem for configuration files
  • Ubuntu packages

Enhancements
  • Authentication sources can now be managed directly from the GUI
  • Roles (previously called categories) are now computed dynamically using authentication sources
  • Portal profiles and portal pages are now managed from the GUI
  • Fingerprints and User Agents modules are now searchable
  • Translated all remediation pages to French
  • Updated Brazilian Portuguese and Spanish translations

Full Changelog: here

No comments:

Post a Comment