Developers guide
Chapter 7
Copyright © 2008-2013 Inverse inc.
Optional components 47
trap
Isolate the host and place them in violation. It opens a violation
and leaves it open. If trap is not there, a violation is opened
and then automatically closed.
winpopup
send a windows popup message. You need to configure
[alerting].winserver, [alerting].netbiosname in
pf.conf when using this option.
external
execute an external command, specified in
[paths].externalapi.
close
close the violation ID specified in the vclose field.
role
change the node’s role to the one specified in the
target_category field.
autoreg
register the node.
unreg
deregister the node.
vlan
Destination VLAN where PacketFence should put the client when a violation of this type
is open. The VLAN value can be:
isolationVlan
Isolation VLAN as specified in
switches.conf. This is the recommended
value for most violation types.
registrationVlan
Registration VLAN as specified in
switches.conf.
normalVlan
Normal VLAN as specified in
switches.conf. Note: It is preferable not
to trap than to trap and put in normal VLAN.
Make sure you understand what you are
doing.
whitelisted_categoriesNodes in a category listed in whitelisted_categories won’t be affected by a violation
of this type. Format is a comma separated list of category names.
Also included in violations.conf is the defaults section. The defaults section will set a default value
for every violation in the configuration. If a configuration value is not specified in the specific ID, the
default will be used: