PacketFence is a fully supported, trusted, free and open source network access control (NAC) system.
Boasting a feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices, integration with Snort and Nessus, PacketFence can be used to effectively secure networks – from small to very large heterogeneous networks.
PacketFence is an unobtrusive solution that works with equipment from many vendors (wired or wireless) such as Cisco, Aruba, ExtremeNetworks, Juniper Networks, Nortel/Avaya, Hewlett-Packard, Meru Networks, Foundry/Brocade, Enterasys, Accton/Edge-corE/SMC, 3Com, D-Link, Intel, Dell, Aerohive, Motorola and many more.
New features in 3.1.0
- Statement of Health (SoH) support for reliable client-side policy compliance through 802.1X
- MAC violation triggers allowing to isolate a single device
- Detection of rogue DHCP Servers even behind relays
- RFC3576 (RADIUS Change of Authorization / Disconnect) support added
- Preview support for wired port-bounce on Cisco through CoA (RFC3576). Disabled by default.
- Wireless profile provisioning for iPhone, iPod, and iPad devices
- SNMP traps rate-limiting mechanism
- New graphs in the web admin UI
Read more about how PacketFence works in issue 32 of (IN)SECURE Magazine, it’s a free download.