Re: [Packetfence-users] PacketFence "inline" mode

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Inline mode might also be a good way to achieve better VPN coverage
using PF. Perhaps teamed with a fail-open NIC like the portwell
ABN-102 (the 112 and 172 as well) I'm sure there are others tool.
Having CLI, SNMP or even an API into a VPN device or end-point is
another way to have VPN coverage, but seems like inline could also be
a possibility as well. I think you could do a lot of the enforcement,
role based, acl based etc...  using inline mode. IPTables has a lot
more features and capabilities than most VPN's I've encountered as far
as restricting users access via layer 3 and up.
-rich