[isf-wifidog] regarding an ubuntu gateway

Reggie Griffin reggie_griffin at hotmail.com
Lun 15 Déc 16:29:21 EST 2008


Mine is this:

GatewayID wireless
ExternalInterface eth0
GatewayInterface eth2

AuthServer {
    Hostname wireless.host.name
    SSLAvailable yes
    SSLPort 443
    Path /
}

It's been a while, but I believe I experienced some problems when I had the GatewayAddress uncommented. I just let
wifidog pick it up from the interface name.

-Reggie

"If you ever find yourself on the side of the majority, it is time to pause, and reflect." -- Mark Twain 



> Date: Mon, 15 Dec 2008 16:10:54 -0500
> From: osvaldo.baires at gmail.com
> To: wifidog at listes.ilesansfil.org
> Subject: Re: [isf-wifidog] regarding an ubuntu gateway
> 
> Hi:
> > On my system, the wifidog.conf is located here:
> >
> > /usr/local/etc/wifidog.conf
> Yes, i did the same thing.
> 
> > In this file, there is an option:
> >
> > GatewayInterface
> >
> > You might want to change this to whatever you virtualbox interface is and
> > restart the service.
> I did it also.
> The following is from the /usr/local/etc/wifidog.conf file:
> 
> GatewayID 0
> GatewayInterface br1
> GatewayAddress 192.168.1.1
> AuthServer {
>     Hostname wifidog.localhost
>     SSLAvailable no
>     Path /
> }
> 
> 
> brctl show
> bridge name	bridge id		STP enabled	interfaces
> br0		8000.001fe182dc1a	no		eth1
> br1		8000.00ff59e6bc17	no		tap0
> 							tap3
> 
> I'm using a wireless connection (eth1). I created a second brigde for
> the virtual interfaces. tap0 is my gateway ip and tap3 is the
> interface from the virtual machine:
> 							
> root at vostro:/usr/local/etc# ifconfig
> br0       Link encap:Ethernet  HWaddr 00:1f:e1:82:dc:1a
>           inet addr:192.168.0.216  Bcast:192.168.0.255  Mask:255.255.255.0
> br1       Link encap:Ethernet  HWaddr 00:ff:59:e6:bc:17
> eth0      Link encap:Ethernet  HWaddr 00:1c:23:5a:c9:0a
> eth1      Link encap:Ethernet  HWaddr 00:1f:e1:82:dc:1a
> tap0      Link encap:Ethernet  HWaddr 00:ff:dc:ef:0b:44
>           inet addr:192.168.1.1  Bcast:0.0.0.0  Mask:255.255.255.255
> tap3      Link encap:Ethernet  HWaddr 00:ff:74:1c:d7:0d
> 
> The only two interfaces with IP address are br0 (on behalf of eth1)
> and tap0, my gateway for the virtual machine network.
> The routes are:
> 
> ip route ls
> 192.168.1.0/24 dev br1  scope link
> 192.168.1.0/24 dev tap0  scope link
> 192.168.0.0/24 dev br0  proto kernel  scope link  src 192.168.0.216
> default via 192.168.0.1 dev br0  metric 100
> 
> 
> 
> /etc/hosts
> 127.0.0.1	localhost
> 192.168.1.1	wifidog.localhost wifidog
> 
> > Also, try changing the error reporting set by Wifidog.
> > This was set in a lot of the PHP files under /var/www/wifidog-auth/
> > error_reporting(E_ALL);
> > We changed it to:
> > error_reporting(E_ALL ^E_NOTICE);
> I'm trying that right now, I'll let you know if I find something.
> Regards,
> Osvaldo
> 
> >
> >> Date: Mon, 15 Dec 2008 13:38:42 -0500
> >> From: osvaldo.baires at gmail.com
> >> To: wifidog at listes.ilesansfil.org
> >> Subject: Re: [isf-wifidog] regarding an ubuntu gateway
> >>
> >> Hi:
> >> > I made some notes here:
> >> > http://justuber.com/publicwifi:public_wireless_internet_access
> >> >
> >> > These are from a year or two ago when I was setting up Wifidog on Ubuntu
> >> > and
> >> > Debian machines. Feel free to have a read and see if anything is of use
> >> > to
> >> > you.
> >> I had followed the same steps that are shown in that guide. The
> >> proxy.sh script is working ok (prevents the client machine from
> >> connecting to port 22 of the gateway).
> >>
> >> Now the wididog daemon is preventing the client machine to access the
> >> Internet, but then, it's not doing the redirection of port 80.
> >>
> >> The rule is there:
> >>
> >> iptables -nL -t nat | grep 80
> >> REDIRECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
> >> dpt:80 redir ports 2060
> >>
> >> but it does nothing, if I try to surf, the browser just keeps on
> >> trying to connect to the remote server but don't go to the
> >> authenticacion server page.
> >>
> >> Regards,
> >> Osvaldo
> >>
> >>
> >> On Mon, Dec 15, 2008 at 1:01 PM, Chris Rowson
> >> <christopherrowson at gmail.com> wrote:
> >> > Hi:
> >> >>
> >> >> I just setup wifidog on an ubuntu 8.04 machine. There I setup both,
> >> >> the gateway and the auth-server.
> >> >> Then, I setup a virtualbox virtual machine which is supposed to use
> >> >> the wifidog gateway in order to gain access to Internet.
> >> >> The problem is that wifidog starts, setup the iptables rules, but the
> >> >> virtual machine keeps on having access to Intenet.
> >> >> The setup is something like this:
> >> >> <internet> - <ubuntu-gw> - <ubuntu-virtual interface> -
> >> >> <virtual-machine interface> - <virtual machine>
> >> >> Without wifidog, the virtual machine is able to surf the Internet
> >> >> thanks to an iptables MASQUERADE command. As soon as the wifidog is
> >> >> started, I asumed the conection between the virtual machine and
> >> >> Internet should be interrupted but that's not happening.
> >> >> Could anyone point me on what i'm doing wrong?
> >> >> I installed wifidog using the cvs version and setup the validation
> >> >> grace period to 2 seconds.
> >> >> Regards,
> >> >> Osvaldo
> >> >> _______________________________________________
> >> >
> >> >
> >> > Chris
> >> > _______________________________________________
> >> > WiFiDog mailing list
> >> > WiFiDog at listes.ilesansfil.org
> >> > http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
> >> >
> >> _______________________________________________
> >> WiFiDog mailing list
> >> WiFiDog at listes.ilesansfil.org
> >> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
> >
> > ________________________________
> > Send e-mail faster without improving your typing skills. Get your Hotmail(R)
> > account.
> > _______________________________________________
> > WiFiDog mailing list
> > WiFiDog at listes.ilesansfil.org
> > http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
> >
> _______________________________________________
> WiFiDog mailing list
> WiFiDog at listes.ilesansfil.org
> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog

_________________________________________________________________
You live life online. So we put Windows on the web. 
http://clk.atdmt.com/MRT/go/127032869/direct/01/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listes.ilesansfil.org/pipermail/wifidog/attachments/20081215/61e2585a/attachment.htm 


Plus d'informations sur la liste de diffusion WiFiDog