[isf-wifidog] Client captured but no access to login page.

Ven 25 Fév 11:47:20 EST 2005

> > 
> > 2. Hopefully you're using the code of our authentication server, even
> > though there's no tarball release yet (our mistake)?
> > 
> 
> Yes, got it from cvs.  The biggest problem i had was figuringout
> postgresql... i'm a mysql guy ;-)

MySQL is supposed to be supported too but it's not advertised too
much.

> > 3. Is your webserver listening on port 443 (HTTPS)? otherwise HTTPS has to
> > be disabled in the wifidog config for the AuthServer entry.
> > 
> 
> No, i have it listening on port 80...  I have the server configured as
> "SSLAvailable no" in wifidog.conf... see complete wifidog.conf below.

I don't think we've ever tested "SSLAvailable no".

Perhaps you could install a "self-signed certificate", it'd help
us knowing that it's a bug and it'd help you a lot too :)

> > 4. Make sure the GatewayInterface + GatewayAddress and ExternalInterface
> > are right. This leads to weird issues (like the one you're having).
> 
> Everythng looks good here...  eth0, eth1 and 10.10.10.1 is my internal
> ip.  again see below...

Ok. Of course there's no way for me to know if what you use is right
or not :) Try latest CVS and we'll see, but I'd bet that you hit a bug
and the "SSLAvailable no" doesn't work.

If anybody on the list have tried it and can confirm that it works, or
can try it now and confirm, speak up!

So let me know if it's possible for you to try a self signed
certificate. If you can't, I'll test SSLAvailable no for you, but I'll
only be able to do it this weekend...

> Thanks phillipe i will try the latest cvs...  and let you know how
> that goes.  I have pasted the contents of my wifidog.conf file
> below.... let me know if anything looks wrong.
> 
> Scott
> 
> 
> # $Header: /cvsroot/wifidog/wifidog/wifidog.conf,
> # WiFiDog Configuration file
> 
> # Parm: GatewayID
> # Default: default
> # Optional but essential for monitoring purposes
> #
> # Set this to the template ID on the auth server
> # this is used to give a customized login page to
> # If none is supplied, the default login page wil
> 
> GatewayID default
> 
> # Parm: ExternalInterface
> # Default: NONE
> # Mandatory
> #
> # Set this to the external interface.  Typically 
> 
> ExternalInterface eth0
> 
> # Parm: GatewayInterface
> # Default: NONE
> # Mandatory
> #
> # Set this to the internal interface.    Typicall
> 
> GatewayInterface eth1
> 
> # Parm: GatewayAddress
> # Default: NONE
> # Mandatory
> #
> # Set this to the internal IP address of the gate
> 
> GatewayAddress 10.10.10.1
> 
> # Parm: AuthServMaxTries
> # Default: 1
> # Optional
> #
> # Sets the number of auth servers the gateway wil
> # this number should be equal to the number of Au
> # configuration but it should probably not exceed
> 
> # AuthServMaxTries 3
> 
> # Parm: AuthServer
> # Default: NONE
> # Mandatory
> #
> # Set this to the hostname or IP of your auth ser
> # WiFiDog-auth resides  and optionally as a secon
> # listens on.
> #AuthServer {
> #	Hostname      (Mandatory; Default: NONE)
> #	SSLAvailable  (Optional; Default: no; Pos
> #	SSLPort 443   (Optional; Default: 443)
> #	HTTPPort 80   (Optional; Default: 80)
> #	Path wifidog/ (Optional; Default: /wifido
> #}
> 
> AuthServer {
> 	Hostname 192.168.1.76
> 	SSLAvailable no
> 	Path /wifidog/
> }
> 
> #AuthServer {
> #	Hostname auth2.ilesansfil.org
> #	SSLAvailable yes
> #	Path /
> #}
> #
> #AuthServer {
> #	Hostname auth3.ilesansfil.org
> #	SSLAvailable yes
> #	Path /
> #}
> 
> # Parm: Daemon
> # Default: 1
> # Optional
> #
> # Set this to true if you want to run as a daemon
> # Daemon 1
> 
> # Parm: GatewayPort
> # Default: 2060
> # Optional
> #
> # Listen on this port
> # GatewayPort 2060
> 
> # Parm: HTTPDName
> # Default: WiFiDog
> # Optional
> #
> # Define what name the HTTPD server will respond
> # HTTPDName WiFiDog
> 
> # Parm: HTTPDMaxConn
> # Default: 10
> # Optional
> #
> # How many sockets to listen to
> # HTTPDMaxConn 10
> 
> # Parm: CheckInterval
> # Default: 60
> # Optional
> #
> # How many seconds should we wait between timeout
> CheckInterval 60
> 
> # Parm: ClientTimeout
> # Default: 5
> # Optional
> #
> # Set this to the desired of number of CheckInter
> # The timeout will be INTERVAL * TIMEOUT
> ClientTimeout 5
> 

-- 
Philippe April
GnuPG: http://key.philippeapril.com/
Skype ID: mousetrap