You could redirect all traffic from 'unknown' mac addresses to a 'captive' site, and
allow 'known' mac addresses to be routed normaly.
I don't know how you would do this with the equipment you have, but it may give
you an idea.
[EMAIL PROTECTED] wrote:
I am climbing a learning curve at the moment, and intend to provide this sort of functionality.
I am looking at setting up a regional wireless ISP. I am planning on allowing everyone to associate with the wireless APs. When they open up a web browser and try to hit a page, I am going to use squid to redirect them to this "walled garden" page that provides limited free content and instructions on how to subscribe to our services.
Paid subscribers will then be able to login and access the internet. I think there may be a few ways to achieve this, but I have been testing it using PPPoe and a RADIUS server (freeradius).
When they login, a PPP tunnel will be created and routed correctly to the internet (with relevant access controls setup through squid).
If anyone else has any ideas in respect to this sort of setup, I would
welcome suggestions!
Any recommendation on implementing "walled garden" with freeRadius and cisco 1100 APs. The "walled garden" allows wireless user to access some pre-defined websites even BEFORE they login. Has anyone done this before? The idea is to allow user visit our sign-up website and download the certificate (generated with OpenSSL). After the user has installed the certificate, freeRadius will autheticate the user with EAP-TLS and the user can access any websites after that.
Is there any other free software that supports the "walled garden"? Any suggestions or URL refs are appreciate. Richard
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html