Packetfence¶

Overview¶

PacketFence is a premier open-source Network Access Control (NAC) solution designed to provide total sovereignty over who and what connects to your infrastructure. By offering a centralized platform for device identification and access enforcement, it eliminates the security blind spots inherent in modern, heterogeneous networks.

Self-hosting PacketFence allows your organization to implement a “zero-trust” architecture on your own hardware, ensuring that every connection—whether via wired, wireless, or VPN—is strictly governed by your internal security policies rather than a third-party cloud provider’s limitations.

The platform provides an exhaustive auditing and visibility suite, giving administrators a real-time, high-performance view of every device on the network. Through its advanced fingerprinting engine, PacketFence automatically categorizes devices and monitors their behaviour, maintaining a granular audit trail that is essential for compliance frameworks like SOC2 or HIPAA. This deep level of logging allows you to proactively isolate compromised endpoints or unmanaged “shadow IT” devices, triggering automated remediation actions before a local security event can escalate into a widespread breach.

Beyond simple gatekeeping, PacketFence fosters a secure collaborative environment by streamlining the onboarding process for employees, guests, and IoT devices through its highly customizable captive portal. Its modular design integrates seamlessly with your existing stack—including Active Directory, LDAP, and even CrowdSec for shared threat intelligence—to provide a unified management interface. This versatility ensures that your network remains both accessible to authorized users and resilient against unauthorized intrusions, providing a professional-grade NAC experience without the restrictive per-node licensing of proprietary alternatives.