Menu
▾
▴
Re: [Packetfence-users] Captive portal for WiFi
|
From: Chun \(Andrew\) X. <cx...@un...> - 2010-01-26 16:29:16
|
Hi Olivier Which network mode in pf.conf should be applied to integrate PF and FR? I am using arp mode in my lab, but iptables gives me a trouble. Any changes I made in iptables.conf would be overwritten by PF. What I did like the following. 1. Run service packetfence stop. 2. Add a few rules in iptables.conf. 3. Run service packetfence start. 4. Run service iptables status. In the output, the changes I made were gone. Should I change the network mode to vlan? Thanks! Chun (Andrew) Xu Data Communications Analyst Integrated Technology Services (ITS) University of New Brunswick, Saint John campus Tel: (506) 648-5983 -----Original Message----- From: Olivier Bilodeau [mailto:obi...@in...] Sent: January 26, 2010 11:21 AM To: pac...@li... Subject: Re: [Packetfence-users] Captive portal for WiFi Hi Jake, Sallee, Stephen (Jake) wrote: > Can anyone tell me if Packet fence can be used to set up a wifi captive > portal? If so, can you point me to some docs that explain how? > Yes, it can act as a captive portal but that's only a subset of what it can do! :) You want to setup your AP / Controller to do mac authentication through radius. The AAA server will be PacketFence. Activate VLAN assignation by AAA Server (sometimes called AAA Override) on your controller. Install freeradius on PacketFence (we recommend 1.08 from source) and setup the authorize section to use rlm_perl_packetfence.pl (provided in addons/802.1X/..) Then each new device will have to be authorized by PacketFence which will set it's vlan and register the mac address in it's database. After that you can do pretty much what you want. Usual workflow is to force a registration through a captive portal. Once that is done, pf will disconnect the user and upon reconnection the user will be recognized as registered and put into a vlan that can go out to the Net. -- Olivier Bilodeau obi...@in... :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.scalableogo.org) and PacketFence (www.packetfence.org) ---------------------------------------------------------------------------- -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com _______________________________________________ Packetfence-users mailing list Pac...@li... https://lists.sourceforge.net/lists/listinfo/packetfence-users |