[isf-wifidog] How to configure access out to internet, protecting local lan

Dana Spiegel dana at nycwireless.net
Jeu 11 Jan 22:25:29 EST 2007 

This is really a matter of unbridging the interfaces and setting up  
iptables rules to prevent certain network routing.

Coova is just a nice interface on top of OpenWRT. You can check out  
the OpenWRT wiki, which should have plenty of information on this  
subject. Or just google for it, since lots of people have written  
about lots of network configurations for OpenWRT.

Be aware that you likely have to login via ssh to the device, but it  
sounds like you aren't afraid of that, so it shouldn't be a big problem.

-- 
Dana Spiegel
Executive Director
NYCwireless
dana at NYCwireless.net
www.NYCwireless.net
+1 917 402 0422

Read the Wireless Community blog: http://www.wirelesscommunity.info

On Jan 11, 2007, at 4:46 PM, John Boushall wrote:

> I have contacted the coova group, which was no help.   I would like  
> to modify the iptables settings to prevent wifi users from  
> connecting to the lan subnet, but not prevent them from accessing  
> the gateway to the internet.
>
> Do you have any suggestions for changes to the iptables commands to  
> permit this access scheme?
>
> John Boushall
>
> Benoit Grégoire <bock at step.polymtl.ca> wrote:
> On Wednesday 10 January 2007 10:30, John Boushall wrote:
> > I would like to exclude access to the local lan that the gateway is
> > connected to, with the exception of the authentication server and  
> the
> > gateway out to the internet.
> >
> > I have tried to configure the exclusions, but it results in  
> excluding
> > access to all of the lan.
> >
> > I am using the CoovaAP firmware (will be upgrading to 1.0 beta 3
> > shortly.)
> >
> > Thank you for your help.
>
> You should probably ask on a Coova list, this has little to do with  
> wifidog.
> -- 
> Benoit Grégoire
> Technologies Coeus inc.
>
>
> Access over 1 million songs - Yahoo! Music Unlimited.
> _______________________________________________
> WiFiDog mailing list
> WiFiDog at listes.ilesansfil.org
> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listes.ilesansfil.org/pipermail/wifidog/attachments/20070111/2d7545ff/attachment.html

Plus d'informations sur la liste de diffusion WiFiDog