From: Michelle Konzack <linux4michelle@freenet.de>
To: netfilter@lists.netfilter.org
Subject: Re: Wireless Login Page
Date: Wed, 2 May 2007 19:18:59 +0200 [thread overview]
Message-ID: <20070502171859.GG1894@freenet.de> (raw)
In-Reply-To: <1177785807.3828.227.camel@ws1.walco02.com>
[-- Attachment #1: Type: text/plain, Size: 1858 bytes --]
Hello Kirk and *,
Am 2007-04-28 11:43:27, schrieb Kirk Wallace:
> I was using 192.168.21.2 just to test whether httpd would respond to any
> IP address sent on the 192.168.21.0/24 address space.
>
> I envision that a person would boot their wireless laptop and scan for
> hotspots. They would see my hotspot and connect. Then my DHCP server
> would give the laptop an IP address, subnet mask, gateway address, DNS1
> and DNS2. Then the user would start firefox and try to open a link to
> anywhere.com, but I have FORWARD denied to all but logged in users
> (which have a tunnel IP address on another subnet). At this point, I
> want the anywhere.com request to invoke the httpd on the wireless router
> to reply with a login page. Currently dhcpd, httpd, radiusd and pptpd
> are on the same PC.
This is exactly what I want to do to.
But if the $CLIENT has gotten its DHCP-IP-Addressm then ANY
connections (any Ports except DNS and DHCP) nust be blocked
until the user has once started a Webbrowser and authentificated.
I was thinking, that if the $USER open a connection plus auth,
the connection will be droped for example 5 minutes after the
last traffic going over the Interface with the specified MAC/IP.
I have not found any examples ho to do this.
Would you like to share your config?
And speciay how you have setup your "fist-connect" page to auth?
Greetings
Michelle Konzack
Systemadministrator
Tamay Dogan Network
Debian GNU/Linux Consultant
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSN LinuxMichi
0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
next prev parent reply other threads:[~2007-05-02 17:18 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-04-28 15:03 [Fwd: Re: Wireless Login Page] Kirk Wallace
2007-04-28 17:45 ` Daniel Lopes
2007-04-28 18:43 ` Wireless Login Page Kirk Wallace
2007-05-02 17:18 ` Michelle Konzack [this message]
-- strict thread matches above, loose matches on Subject: below --
2007-05-04 19:35 Kirk Wallace
2007-05-10 5:14 ` Brent Wilkinson
2007-04-26 16:48 Kirk Wallace
2007-04-27 11:41 ` Alex
2007-04-27 15:17 ` Jan Engelhardt
2007-04-28 17:32 ` Alex
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070502171859.GG1894@freenet.de \
--to=linux4michelle@freenet.de \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.