PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans. License: GNU General Public License (GPL) Changes:
This release fixes an iptables issue with the iptables.post file and adds authentication module error messages and several database optimizations. It also uses Net::Pcap instead of Net::RawIP in the dhcplistener to enhance its stability. Finally, the integration of the VLAN isolation has been taken one step further: PacketFence now automatically starts snmptrapd and pfsetvlan (and opens the necessary ports in iptables) when VLAN isolation is specified in pf.conf.

More...