I am trying to make a closed system, 1 wifi router, one server. All clients on the wifi should only be able to go to one domain/IP, and all requests for anything else should redirect them to this one domain.
I am using a combination of NoCatSplash with iptables atm which mostly works, but is very inelegant. So far I can't actually redirect domains to my main one this way, I can only block them (just dropping all port 80 traffic, but allowing my one domain) and then have a low timeout on NoCat (plus a web exception for my domain so they don't keep getting bugged) which sends them back to my splash page which then forwards them to my domain. Essentially it is a captive portal I want, but not to allow internet access, instead to force them only to stay on one domain and that is it. This is all on a WRT (dd-wrt atm, but can go openwrt no prob) router. Tools at my disposal are dnsmasq, iptables plus whatever else is available on WRT. I would think this could all be done in DNS and FW, but sadly I am unable to think of how. I am not against running more services on server to make this possible. I am thinking squid could perhaps help, lots of info on how to forward everything to a proxy... Ideas? Jeremy _______________________________________________ mlug mailing list [email protected] https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
