[isf-wifidog] Help: cannot redirect to auth server
Kiswono Prayogo
chosenperfect at yahoo.com
Mer 27 Aou 07:01:30 EDT 2008
* Hello my name is kiswono,
i'm currently trying to install wifidog,
the auth server and the gateway server was installed successfully,
but i think that gateway server not configured correctly because i don't know the correct configuration..
-----------
* the auth server using debian with this network configuration:
auto eth0
iface eth0 inet static
address 192.168.1.130
netmask 255.255.255.0
network 192.168.1.0
broadcast 192.168.1.255
gateway 192.168.1.254
---------
* the gateway server using debian with this network configuration:
auto eth0
iface eth0 inet static
address 192.168.1.254
netmask 255.255.0.0
network 192.168.0.0
broadcast 192.168.255.255
auto eth0:1
iface eth0:1 inet static
address 192.168.1.91
netmask 255.255.255.0
network 192.168.1.0
broadcast 192.168.1.255
auto eth1
iface eth1 inet static
address 202.x.y.z
netmask 255.255.255.248
network 202.x.y.z
broadcast 202.x.y.z
gateway 202.x.y.z
auto eth1:1
iface eth1:1 inet static
address 202.137.7.235
netmask 255.255.255.248
network 202.137.7.232
broadcast 202.137.7.239
post-up route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.240 dev eth0
... and many more ...
post-up route add -net 192.168.21.0 netmask 255.255.255.0 gw 192.168.1.240 dev eth0
post-up route add -net 192.168.100.0 netmask 255.255.255.0 gw 192.168.1.240 dev eth0
post-up route add -net 10.10.1.0 netmask 255.255.255.0 gw 192.168.1.240 dev eth0
... and many more ...
post-up route add -net 10.10.11.0 netmask 255.255.255.0 gw 192.168.1.240 dev eth0
----------
* and there is L3Switch that using IP 192.168.1.240, that become VLAN to another subnets
----------
* all connection working correctly using this configuration, but every time i started the wifidog using this configuration, all network stop working, and cannot redirect to the auth server, i wonder why.. i think that my gateway server configuration is wrong, because if i stop the wifidog gateway, the auth server page is displayed.
---------
* my wifidog configuration :
ExternalInterface eth1
GatewayInterface eth0
AuthServer {
Hostname 192.168.1.130
SSLAvailable yes
Path /wifi/
}
FirewallRuleSet global {
FirewallRule allow tcp port 443 to 192.168.1.0/24
FirewallRule allow tcp port 80 to 192.168.1.0/24
}
FirewallRuleSet validating-users {
FirewallRule allow tcp port 80 to 192.168.1.0/24
FirewallRule allow tcp port 443 to 192.168.1.0/24
}
FirewallRuleSet known-users {
FirewallRule allow to 0.0.0.0/0
}
FirewallRuleSet unknown-users {
FirewallRule allow udp port 53
FirewallRule allow tcp port 53
FirewallRule allow udp port 67
FirewallRule allow tcp port 67
}
FirewallRuleSet locked-users {
FirewallRule block to 0.0.0.0/0
}
--------
* thank you in advance, hopefully someone there wan't to help me ^^ thank you..
Kiswono P.
GB
Plus d'informations sur la liste de diffusion WiFiDog