RE: Public WiFi Access Authentication

To: <linux4michelle@freenet.de>, <debian-firewall@lists.debian.org>
Subject: RE: Public WiFi Access Authentication
From: "Felix Windt" <fwmailinglists@gmail.com>
Date: Thu, 3 May 2007 20:26:38 -0700
Message-id: <05fd01c78dfc$07684f20$3338000a@tehgeek>
In-reply-to: <20070502171906.GH1894@freenet.de>

I am not quite sure from your details whether this is for private or for
business use.

Though this may offend some open source purists, for business use you may
also want to look into ready made, supported solutions. They range from
fairly cheap to fairly expensive. The advantage obviously is paid for, fast
support in case revenue gets lost with every minute of downtime.

Some solutions I've had good experience with are

MikroTik RouterOS - you can buy the OS (runs on standard Linux hardware) or
an appliance from them. Quite a large, helpful user base.
Nomadix - mid-range solution, often used in hotels to provide internet
services in the rooms.
BlueSocket - heavy duty, enterprise class appliance. Based on Linux,
administrated through an extensive web interface or via an XML-RPC API.
Their high end boxes support literally thousands of concurrent users.

HTH,

Felix

-----Original Message-----
From: Michelle Konzack [mailto:linux4michelle@freenet.de] 
Sent: Wednesday, May 02, 2007 10:19 AM
To: debian-firewall
Subject: Public WiFi Access Authentication

Hello,

I have some 802.11a Access Point (privately) in Strasbourg and want to
open it public.  The solutions I have found are not suitable and some
are realy strange.

What I have:

|
|
|     802.11a     Auth-Router       Main 
+---- Access ----   (Etch)    ---> Router <----> Internet
      Point          DHCP          

I want, that the Auth-Router block ANY traffic until the $CLIENT which
connect over the Access-Point call ANY http-URL and autentificate.

Then the $CLIENT is allowed to use the connection until the last traffic
was on its MAC/IP for, e.g. 5 minutes, then the $CLIENT is required to
re-authenticate.

Also I need to prohibit that sevewral Clients use my Access-Point as
free bridge for there traffic.

I was searching the Net for a sample config how to do this but failed.

So, I want to install the authentication website directly on the Auth-
Router.

Does anyone has done this before and how must I make the iptables setup
to let this work?

Thanks, Greetings and nice Day
    Michelle Konzack
    Systemadministrator
    Tamay Dogan Network
    Debian GNU/Linux Consultant


-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack   Apt. 917                  ICQ #328449886
                   50, rue de Soultz         MSN LinuxMichi
0033/6/61925193    67100 Strasbourg/France   IRC #Debian (irc.icq.com)

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply to:

References:
- Public WiFi Access Authentication
  - From: Michelle Konzack <linux4michelle@freenet.de>

Prev by Date: Mac + IP Forwarding filter
Next by Date: Re: Public WiFi Access Authentication
Previous by thread: Re: Public WiFi Access Authentication
Next by thread: Re: Public WiFi Access Authentication
Index(es):
- Date
- Thread