On Sat, 2013-06-29 at 20:19 +0200, Jozsef Kadlecsik wrote: > > > * User logs into the website, and provides mac address > > > * We insert the record in the database as an allow rule... > > > * Restart iptables? > > That's pretty similar to a captive portal, which is quite simple to setup: > you need a small webpage written say in PHP (IP and MAC can be gathered > directly if the webserver is on the same LAN) and a bitmap:ip,mac type of > set with timeout, and some static iptables rules. It's almost trivial if > the things run on the gateway. And an example is here: http://www.andybev.com/index.php/Using_iptables_and_PHP_to_create_a_captive_portal Except it does not use ipset, which would be a *much* better way of implementing it ;-) -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
