[isf-wifidog] Allowing access to specified IP
addresses/domainnames without prompting for login
Peter Abrahamsen
rainhead at gmail.com
Jeu 22 Juin 18:54:59 EDT 2006
A proxy that permits based on hostname(s)?
On Jun 21, 2006, at 4:25 PM, Iurgi Arginzoniz wrote:
> Hi tarken,
>
> It looks like you are trying to whitelist google. Unfortunately
> this task has no easy solution at all.
>
> The problem is the ip pool of google. Google relies it's web access
> on akamay, some kind of a proxying system. The problem is that
> akamay has hundreds of different ips for google. When openwrt
> resolves the ips for google, the dns servers reply with up to 6 of
> the available ips for google, and this are the ones that will have
> open the access to. Unfortunately, when the user trues to go to
> google, it's dns request can get a completely different ip for
> google, and so, iptables does not let the request to progress.
>
> I have some 'dirty' tricks to solve this, that I can share if you
> are interested.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2410 bytes
Desc: not available
Url : http://listes.ilesansfil.org/pipermail/wifidog/attachments/20060622/25f3e98b/smime.bin
Plus d'informations sur la liste de diffusion WiFiDog