[isf-wifidog] IPtables issues
Steve Congrave
steve at congrave.com
Jeu 21 Jan 23:58:48 EST 2010
The problem occurs on multiple routers at random times.
The DNS is always the IP of the router - and opening the web browser to a
URL that has a static route in the firewall works (as configured in
wifidog.conf) even when the firewall blocks access.
Unfortunately the OpenWRT group is not well supported with answers -
problems yes, but not many answers ;)
Steve
-----Original Message-----
From: wifidog-bounces at listes.ilesansfil.org
[mailto:wifidog-bounces at listes.ilesansfil.org] On Behalf Of Marcos Tadeu
Sent: Thursday, January 21, 2010 6:22 PM
To: WiFiDog Captive Portal
Subject: Re: [isf-wifidog] IPtables issues
Jean-Philippe Menil wrote:
> Steve Congrave a écrit :
>> Just wondering if anyone else has come up against a problem that we
>> seem to
>> get on a regular basis.
>>
>> A client connects to the router (Wifidog and OpenWRT) and is sent
>> through to
>> the portal. There they are authenticated and they start to get Internet
>> access.
>>
>> At some random point afterwards, typically within 1-5 hours, all
>> users are
>> denied access although they can see web sites that have specific routes
>> through the firewall. Checking iptables shows all the rules are in
>> place and
>> should be working just fine but the clients web browser just gives a
>> 'Internet explorer cannot display the page' error unless they go to
>> one of
>> the URLs that have specific rules in which case they can see it fine.
>> The
>> auth server is accessible and available when this happens.
>>
>> Rebooting the router restores everything to normal until the next
>> time it
>> happens.
>>
>> Any ideas or pointers?
>>
>> Thanks
>>
>> Steve
>>
>> _______________________________________________
>> WiFiDog mailing list
>> WiFiDog at listes.ilesansfil.org
>> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>>
> Hi,
>
> I've never see this issue with Wifidog under Linux router environment.
> I think it's related to your router.
> Maybe you can ask on OpenWrt mailing?
>
> Regards.
> _______________________________________________
> WiFiDog mailing list
> WiFiDog at listes.ilesansfil.org
> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
Maybe this is a DNS problem. Check the DNS servers that clients receive
from dhcp.
Regards,
--
Marcos Tadeu
_______________________________________________
WiFiDog mailing list
WiFiDog at listes.ilesansfil.org
http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
Plus d'informations sur la liste de diffusion WiFiDog