[isf-wifidog] how to make specific mac address not to have to auth

[kaouete]

Ok, so i did add this :
iptables -t nat -A WiFiDog_AuthServers -m mac --mac-source 00:0d:93:80:20:f7 -j ACCEPT

(at end of WiFiDog_AuthServers because it is just before the
redirect in unknow :)

And it works great :]

And the question that comes to my mind is :
why dont i need to add it to filter too if the authserver are
added to it ?
or :
why the auth server are added to WiFiDog_AuthServers in nat AND
filter ?

Thanks for your help :)

kaouete

On Wed, Jun 29, 2005 at 10:51:17AM -0400, Hayden Myers wrote:
> The easiest way I've found to circumvent the auth server is to insert an
> accept firewall rule to the WiFiDog_Unknown nat table chain.  This is
> where traffic gets redirected to the gateway.  If you insert a rule before
> the rule that sends all traffic to the gateway, you can get around the
> authentication.
> 
> 
> Hayden Myers	
> 
> 
> On Sun, 26 Jun 2005, kaouete wrote:
> 
> > Hi,
> > 
> > I'm trying to make wifidog not redirect to auth nor block a box
> > based on mac address.
> > I tried to add a iptables rules in Wifidog_Global (-m mac
> > --mac-source xx:xx:xx:xx:xx:xx -J ACCEPT) but the redirect on
> > webpage is done anyway :/
> > I tried to add this rules to INPUT before running wifidog but
> > result is the same.
> > 
> > Did i forgot something ? How can i do that ? Will this feature
> > integrated in wifidog later ? Are Cindy and Jack gonna marry ?
> > How is going the traffic shapping ?
> > 
> > Thanks,
> > 
> > kaouete
> > 
> 

> _______________________________________________
> WiFiDog mailing list
> WiFiDog at listes.ilesansfil.org
> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
-------------- section suivante --------------
Une pièce jointe non texte a été nettoyée...
Nom: non disponible
Type: application/pgp-signature
Taille: 189 octets
Desc: Digital signature
Url: http://listes.ilesansfil.org/pipermail/wifidog/attachments/20050629/25e40f76/attachment.pgp