[isf-wifidog] Walled Garden Solutions

Andrew Niemantsverdriet andrewniemants at gmail.com
Mer 2 Fév 15:56:24 EST 2011


I would like to implement a "walled garden" for use within wifidog. I
have figured out a way to do it currently by adding another iptables
chain:

iptables -t nat -N WalledGarden

and then adding the URL's that I want to allow through via a shell script:

iptables -t nat -I WalledGarden -m state --state
NEW,ESTABLISHED,RELATED,INVALID -d "www.google.com" -j ACCEPT --p tcp
-dport 80

This shell script downloads a listing of accepted sites from the auth
server runs a diff and if different values are found it flushes the
chain and recreates it.

This is not an ideal way to do things but it works for now.

So my question is moving forward what would be a good way to integrate
this better into wifidog? What mechanism should I use to let the
gateway know a change has happened on the list of sites. In other
words how do I propagate the changes to the walled garden site list to
the gateway(s)?

I am open to any suggestions on the best way to implement this.

Thanks,
 _
/-\ ndrew


Plus d'informations sur la liste de diffusion WiFiDog