George Vieira <georgev@xxxxxxxxxxxxxxxxxxxxxx> wrote:
Do what I do and write a special php script which they authenticate and it places entries into the database.Then have a "root" process which continously runs (like a service) and scans the database for flagged entries which represent new authenticated users and it resets the flag and create a rule for them.Then the rest is up to you how you want to keep/remove the rules.. ie. have the websession refresh every 30 seconds and it deletes the rules if they close the browser etc..etc..this is handy for wireless folks who don't really give a damn about mac/ip spoofing but don't want ANYONE to just hop on easily...Thanks,
George Vieira
Citadel Computer Systems Pty Ltd-----Original Message-----
From: Ashraf Zia [mailto:ashrafszia@xxxxxxxxx]
Sent: Monday, August 18, 2003 10:13 AM
To: netfilter@xxxxxxxxxxxxxxxxxxx
Subject: NAT + Web based authentication ?HI everybody,
I am new to iptables. Need to figure out a solution.
- Want to create an authentication based NAT.
- Have the gateway machine running DHCP server on eth1 that gives up 192.168.1.x ip addresses.
- eth0 on the gateway has a real ip.
- I have an web based authentication working at lets say www.abc.com on a remote web server.
- Now I have the Masquerading working at the gateway machine but I need to restrict the internet access to ip addresses who can authenticate themselves at www.abc.com. How do I interface authentication from web server with Iptables NAT and what rules do I use to get this done.
- Also I need that any port 80 request from address 192.168.1.x by defaults goes to www.abc.com
I think it can be done using script, but I am not sure how to use iptables for this.
Thanks in advance.
Zia
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
