I should state that I'm not using the proxy-bypass, so the squid redirector
configuration was just in case as I couldn't get the passthrough working as per
the FAQs.
From: Morris, Andi [mailto:amor...@cardiffmet.ac.uk]
Sent: 17 January 2012 14:14
To: packetfence-users@lists.sourceforge.net
Subject: [Packetfence-users] Passthrough list not working
Hi again all,
I'm trying to configure a passthrough so that users in the registration vlan
can access a website in order for them to download a tool to configure their
dot1x settings. I have the following in my pf.conf:
[trapping]
#
# trapping.range
#
# Comma-delimited list of address ranges/CIDR blocks that PacketFence will
monitor/detect/trap on. Gateway, network, and
# broadcast addresses are ignored.
range=10.1.4.0/24,10.1.5.0/24,10.2.1.0/24
#
# trapping.detection
#
# Enables snort-based worm detection. If you don't have a span interface
available, don't bother enabling it. If you do,
# you'll most definately want this on.
detection=enabled
registration=enabled
always_use_redirecturl=enabled
passthrough=proxy
[passthroughs]
#test URL for captive portal
test=http://193.62.97.222
This method didn't work on its own, so I figured that something needed changing
in the squid-redirector.pl. That now looks like:
while (<>) {
# parameters provided by Squid
# http://wiki.squid-cache.org/Features/Redirectors
my ($id, $url, $ip_fqdn, $ident, $method, %params) = split;
# if we are already hitting the captive portal, don't do anything
if ($url =~ /$captive_portal/) {
print "$id ";
}
elsif ($url =~ (.*)\.cardiffmet\.ac\.uk(.*)|) {
$url = http://www.cardiffmet.ac.uk;
else {
# in any other case, we redirect to captive portal
print "$id 302:https://$fqdn/captive-portal?destination_url=$url";;
}
# newline returns the response to squid
print "\n";
}
However, still no matter what URL I attempt to go to whilst in the
captive-portal I do not get out.
I will need to add more URLs to the passthrough list, so that users in the
captive portal can access windows update, antivirus/spyware tools etc.
Can anyone offer any advice please?
Cheers,
Andi
________________________________
>From 1st November 2011 UWIC changed its title to Cardiff Metropolitan
>University. From the 6th December, as part of this change, all email addresses
>which included @uwic.ac.uk have changed to @cardiffmet.ac.uk. All emails sent
>from Cardiff Metropolitan University will now be sent from the new
>@cardiffmet.ac.uk address. Please could you ensure that all of your contact
>records and databases are updated to reflect this change. Further information
>can be found on the website
>here.<http://www3.uwic.ac.uk/English/News/Pages/UWIC-Name-Change.aspx>
------------------------------------------------------------------------------
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________
Packetfence-users mailing list
Packetfence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
