What really irritates m eis the fact that the mac filtering in the captive portal works well with wpa_2. Any cohenerce between mac and username auth ?
Any clues for that ? Greets, Martin ! -----Ursprüngliche Nachricht----- Von: Fuchs, Martin [mailto:[EMAIL PROTECTED] Gesendet: Montag, 5. März 2007 21:35 An: [email protected] Betreff: AW: [pfSense Support] Captive Portal Hi, Scott ! Fresh install shows the following, but does not work also :-( 00030 7882 4784874 skipto 50000 ip from any to any in via fxp0 keep-state 00030 1445 1633539 skipto 50000 ip from any to any in via fxp2 keep-state 00030 0 0 skipto 50000 ip from any to any in via fxp1 keep-state 00030 0 0 skipto 50000 ip from any to any in via fxp3 keep-state 00050 0 0 skipto 29900 ip from any to any MAC 00:0e:35:6c:bf:d7 any keep-state 00050 0 0 skipto 29900 ip from any to any MAC any 00:0e:35:6c:bf:d7 keep-state 00050 0 0 skipto 29900 ip from any to any MAC 00:14:6c:6c:f4:58 any keep-state 00050 0 0 skipto 29900 ip from any to any MAC any 00:14:6c:6c:f4:58 keep-state 00050 0 0 skipto 29900 ip from any to any MAC 00:18:de:a0:f7:2e any keep-state 00050 0 0 skipto 29900 ip from any to any MAC any 00:18:de:a0:f7:2e keep-state 00050 0 0 skipto 29900 ip from any to any MAC 00:80:5a:35:4f:7b any keep-state 00050 0 0 skipto 29900 ip from any to any MAC any 00:80:5a:35:4f:7b keep-state 01000 4528 1890097 skipto 50000 ip from any to any not layer2 not via ath0 01001 2595 246062 allow ip from any to any layer2 not via ath0 01100 0 0 allow ip from any to any layer2 mac-type 0x0806 01100 0 0 allow ip from any to any layer2 mac-type 0x888e 01100 0 0 allow ip from any to any layer2 mac-type 0x8863 01100 0 0 allow ip from any to any layer2 mac-type 0x8864 01100 0 0 allow ip from any to any layer2 mac-type 0x8863 01100 0 0 allow ip from any to any layer2 mac-type 0x8864 01100 0 0 allow ip from any to any layer2 mac-type 0x888e 01101 0 0 deny ip from any to any layer2 not mac-type 0x0800 01102 0 0 skipto 20000 ip from any to any layer2 01200 0 0 allow udp from any 68 to 255.255.255.255 dst-port 67 in 01201 0 0 allow udp from any 68 to 10.100.101.1 dst-port 67 in 01202 0 0 allow udp from 10.100.101.1 67 to any dst-port 68 out 01203 0 0 allow icmp from 10.100.101.1 to any out icmptypes 8 01204 0 0 allow icmp from any to 10.100.101.1 in icmptypes 0 01300 0 0 allow udp from any to 10.100.101.1 dst-port 53 in 01301 0 0 allow udp from 10.100.101.1 53 to any out 01302 0 0 allow tcp from any to 10.100.101.1 dst-port 8000 in 01303 0 0 allow tcp from 10.100.101.1 8000 to any out 19902 0 0 fwd 127.0.0.1,8000 tcp from any to any dst-port 80 in 19903 0 0 allow tcp from any 80 to any out 19904 0 0 deny ip from any to any 29900 0 0 allow ip from any to any layer2 65535 13855 8308510 allow ip from any to any -----Ursprüngliche Nachricht----- Von: Fuchs, Martin [mailto:[EMAIL PROTECTED] Gesendet: Montag, 5. März 2007 21:00 An: [email protected] Betreff: AW: [pfSense Support] Captive Portal I'll try to get a fresh install on the same system as soon as possible... -----Ursprüngliche Nachricht----- Von: Scott Ullrich [mailto:[EMAIL PROTECTED] Gesendet: Montag, 5. März 2007 20:52 An: [email protected] Betreff: Re: [pfSense Support] Captive Portal On 3/5/07, Fuchs, Martin <[EMAIL PROTECTED]> wrote: > What should it read on the fresh install ? > It's a productive system... it's hard to reinstall in between... Right, but it must work, correct? :) If you could get a reading from a box that works, it would be most helpful. Scott --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
