Security

 View Only

  • 1.  Client can't get ip after using PEF license

    Posted Sep 30, 2025 06:07 AM

    I used to use AP-315 and Controller 7205 without PEF license.

    but I need to set QOS per client. so I applied PEF license on controller 7205.

    now client can't get ip. I don't know what is the reason.



    -------------------------------------------


  • 2.  RE: Client can't get ip after using PEF license

    Posted Sep 30, 2025 07:32 AM

    Hi,

    You are most likely experiencing this issue because:  When you enabled PEF (Policy Enforcement Firewall), the session rules in the user roles may have blocked DHCP. While there is a loose behavior like "allowall" when PEF is not present, with PEF enabled, if there are no svc-dhcp permissions in the ACL within the initial role (logon) and/or authenticated role, the client cannot obtain an IP address.

    Please check if there is a policy for the following rules:
    svc-dhcp
    svc-dns

    -------------------------------------------



  • 3.  RE: Client can't get ip after using PEF license

    Posted Oct 01, 2025 08:41 PM

    Sorry, to be precise... Client can get ip. It says "You have to login this wi-fi". 

    -------------------------------------------

    Original Message


  • 4.  RE: Client can't get ip after using PEF license

    Posted Oct 02, 2025 05:51 AM

    Looks like you have a captive portal enabled on this SSID.

    Best, Gorazd



    ------------------------------
    Gorazd Kikelj
    MVP Guru 2025
    ------------------------------

    Original Message


Related Content