Louis Munro
2015-05-26 20:53:23 UTC
Announcement: PacketFence 5.1.0
The Inverse team is pleased to announce the immediate availability of PacketFence 5.1.0. This is a major release with new features, enhancements and important bug fixes. This release is considered ready for production use and upgrading from previous versions is strongly advised.
What is PacketFence ?
PacketFence is a fully supported, trusted, Free and Open Source Network Access Control (NAC) solution. Boasting an impressive feature set, PacketFence can be used to effectively secure small to very large heterogeneous networks.
Among the features provided by PacketFence, there are:
powerful BYOD (Bring Your Own Device) capabilities
state-of-the art devices fingerprinting with Fingerbank
multiple enforcement methods including Role-Based Access Control (RBAC) and hotspot-style
compliance checks for endpoints present on your network
integration with various vulnerability scanners, intrusion detection solutions, security agents and firewalls
bandwidth accounting for all devices
A complete overview of the solution is available from the official website: http://www.packetfence.org/about/overview.html
Changes Since Previous Release
New Features
New activation_domain feature allowing to expose a different domain than PacketFence's name in email templates
Added Windows Management Instrumentation (WMI) as a scan engine
Multiple scan engine definitions based on the OS type and role
Scan definition based on portal profiles
New external command action in violation
New API methods for adding, viewing or modifying a person
New performance dashboard based on Graphite allows tracking of core performance metrics such as number and latency of RADIUS requests, number of httpd processes and authorization latency
Define range of network switches (CIDR) in switch configuration
Module for Cisco Aironet 1600
Added ability to join an Active Directory domain directly from the administration interface
Added the ability to join multiple Active Directory domains for EAP-PEAP authentication
Enhancements
Verify if the database schema matches the current version of PacketFence
Removed the unnecessary "Upstream" listing from the "Combination" menu item of Fingerbank section
Ability to search in Fingerbank "Local" "Devices" listing
Allow rules to match on both source and action
pfsetvlan and snmptrapd are now stopped by default as most users no longer require them
Improve the end process redirection on the captive portal
Refactor mandatory fields to be dynamic and update the person table with them
Moved raddb/sites-enabled/packetfence and raddb/sites-enabled/packetfence-tunnel in conf/radiusd
pfcmd can now validate that certificates used by Apache and FreeRADIUS are still valid
Added new SMS carrier for Switzerland
Ability to fix Fingerbank files permissions from pfcmd fixpermissions
Bug Fixes
Fixes tables displaying bugs in Fingerbank menu items
Fixed search values not being preserved in some cases
Fixed switch access list field turning into an object reference
Fixed bad redirection to the portal at the end of the registration process
Better handling of Fingerbank errors
See https://github.com/inverse-inc/packetfence/commits/packetfence-5.1.0 for the complete change log.
See the UPGRADE file for notes about upgrading: https://github.com/inverse-inc/packetfence/tree/packetfence-5.1.0/UPGRADE.asciidoc
Getting PacketFence
PacketFence is free software and is distributed under the GNU GPL. As such, you are free to download and try it by either getting the new release or by getting the sources: http://www.packetfence.org/development/sourcecode.html
Documentation about the installation and configuration of PacketFence is also available: http://www.packetfence.org/documentation/
How Can I Help ?
PacketFence is a collaborative effort in order to create the best Free and Open Source NAC solution. There are multiple ways you can contribute to the project:
Documentation reviews, enhancements and translations
Feature requests or by sharing your ideas
Participate in the discussion on mailing lists (http://www.packetfence.org/support/community.html)
Patches for bugs or enhancements
Provide new translations of remediation pages
Getting Support
For any questions, do not hesitate to contact us by writing to ***@inverse.ca
You can also fill our online form (http://www.inverse.ca/#contact) and a representative from Inverse will contact you.
Inverse offers professional services to organizations willing to secure their wired and wireless networks with the PacketFence solution.
--
Louis Munro
***@inverse.ca :: www.inverse.ca
+1.514.447.4918 x125 :: +1 (866) 353-6153 x125
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org)
The Inverse team is pleased to announce the immediate availability of PacketFence 5.1.0. This is a major release with new features, enhancements and important bug fixes. This release is considered ready for production use and upgrading from previous versions is strongly advised.
What is PacketFence ?
PacketFence is a fully supported, trusted, Free and Open Source Network Access Control (NAC) solution. Boasting an impressive feature set, PacketFence can be used to effectively secure small to very large heterogeneous networks.
Among the features provided by PacketFence, there are:
powerful BYOD (Bring Your Own Device) capabilities
state-of-the art devices fingerprinting with Fingerbank
multiple enforcement methods including Role-Based Access Control (RBAC) and hotspot-style
compliance checks for endpoints present on your network
integration with various vulnerability scanners, intrusion detection solutions, security agents and firewalls
bandwidth accounting for all devices
A complete overview of the solution is available from the official website: http://www.packetfence.org/about/overview.html
Changes Since Previous Release
New Features
New activation_domain feature allowing to expose a different domain than PacketFence's name in email templates
Added Windows Management Instrumentation (WMI) as a scan engine
Multiple scan engine definitions based on the OS type and role
Scan definition based on portal profiles
New external command action in violation
New API methods for adding, viewing or modifying a person
New performance dashboard based on Graphite allows tracking of core performance metrics such as number and latency of RADIUS requests, number of httpd processes and authorization latency
Define range of network switches (CIDR) in switch configuration
Module for Cisco Aironet 1600
Added ability to join an Active Directory domain directly from the administration interface
Added the ability to join multiple Active Directory domains for EAP-PEAP authentication
Enhancements
Verify if the database schema matches the current version of PacketFence
Removed the unnecessary "Upstream" listing from the "Combination" menu item of Fingerbank section
Ability to search in Fingerbank "Local" "Devices" listing
Allow rules to match on both source and action
pfsetvlan and snmptrapd are now stopped by default as most users no longer require them
Improve the end process redirection on the captive portal
Refactor mandatory fields to be dynamic and update the person table with them
Moved raddb/sites-enabled/packetfence and raddb/sites-enabled/packetfence-tunnel in conf/radiusd
pfcmd can now validate that certificates used by Apache and FreeRADIUS are still valid
Added new SMS carrier for Switzerland
Ability to fix Fingerbank files permissions from pfcmd fixpermissions
Bug Fixes
Fixes tables displaying bugs in Fingerbank menu items
Fixed search values not being preserved in some cases
Fixed switch access list field turning into an object reference
Fixed bad redirection to the portal at the end of the registration process
Better handling of Fingerbank errors
See https://github.com/inverse-inc/packetfence/commits/packetfence-5.1.0 for the complete change log.
See the UPGRADE file for notes about upgrading: https://github.com/inverse-inc/packetfence/tree/packetfence-5.1.0/UPGRADE.asciidoc
Getting PacketFence
PacketFence is free software and is distributed under the GNU GPL. As such, you are free to download and try it by either getting the new release or by getting the sources: http://www.packetfence.org/development/sourcecode.html
Documentation about the installation and configuration of PacketFence is also available: http://www.packetfence.org/documentation/
How Can I Help ?
PacketFence is a collaborative effort in order to create the best Free and Open Source NAC solution. There are multiple ways you can contribute to the project:
Documentation reviews, enhancements and translations
Feature requests or by sharing your ideas
Participate in the discussion on mailing lists (http://www.packetfence.org/support/community.html)
Patches for bugs or enhancements
Provide new translations of remediation pages
Getting Support
For any questions, do not hesitate to contact us by writing to ***@inverse.ca
You can also fill our online form (http://www.inverse.ca/#contact) and a representative from Inverse will contact you.
Inverse offers professional services to organizations willing to secure their wired and wireless networks with the PacketFence solution.
--
Louis Munro
***@inverse.ca :: www.inverse.ca
+1.514.447.4918 x125 :: +1 (866) 353-6153 x125
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org)