packetfence - a free open-source network access control (NAC) system

packetfence - a free open-source network access control (NAC) system

Open Source
PacketFence is an open-source network access control (NAC) system. Deployed in academic networks around the world, PacketFence is reliable, extremely configurable, and built upon unmodified open-source code (Fedora, LAMP, Perl, and Snort).

Vendor Agnostic
PacketFence is designed to operate in heterogeneous environments and uses vendor-agnostic isolation techniques including DHCP scope changes and ARP cache manipulation ("passive" mode). No Cisco? No problem!

Easily Installed
PacketFence installs quickly and easily on RHEL/Fedora or is available as a virtual appliance. When deployed in passive mode, PacketFence plugs into a switch like any other host - it's not even necessary to change your network configuration. With PacketFence ZEN, our virtual appliance, it's as easy as pushing "play".

Feature Packed
PacketFence was doing NAC before NAC was cool. With over three years of active development, PacketFence is stable and provides many of the features of insanely expensive commercial offerings. Some of the more nifty features are listed below.

• Authenticate users using any authentication Apache supports (even more than one!)
• Registration-based and scheduled vulnerability scans.
• Captive portal-based user registration and remediation.
• Passive operating system fingerprinting using DHCP
• Ban unsupported operating systems (eg. Windows 95/98/ME) or NAT-based routers.
• Automatically register game consoles or VoIP phones.
• Log location-based information using DHCP option-82.
• Protect multiple networks and 802.1q trunks.
• Scrumtrilescent web-based GUI.

Free
Best of all, PacketFence is licensed under the GPL and is totally free!


Download:
Latest Release: 1.6.2 Release Date: 11/02/06
PF ZEN Release: 0.1 Release Date: 03/28/07


Recent News:
PacketFence 1.7 nears release
PacketFence mentioned in Information Security Magazine
PacketFence mentioned in Network World