[ previous ] [ next ] [ threads ]
 
 From:  Paul Taylor <PaulTaylor at winn dash dixie dot com>
 To:  Paul Taylor <PaulTaylor at winn dash dixie dot com>, m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall-dev] Possible Captive Portal bug?
 Date:  Tue, 16 May 2006 12:59:48 -0400
More information:

Found this on the Captive Portal Log tab:

May 16 11:44:03 	ERROR: unauthenticated, noclientmac, 209.149.153.231

In looking at the code of the index.php page, I see that this is caused by
this code block:

/* find MAC address for client */
$clientmac = arp_get_mac_by_ip($clientip);
if (!$clientmac && $macfilter) {
    /* unable to find MAC address - shouldn't happen! - bail out */
 
captiveportal_logportalauth("unauthenticated","noclientmac",$clientip,"ERROR
");
    exit;
}


So, it can't find the IP Address in the ARP table because it isn't there...
It won't be there because the ARP table will only have the gateway's IP in
it, not the IP Addresses of devices on the other side...  We could make this
work by using Proxy ARP, possibly...  Where the Monowall will be told to get
to subnet X, ARP out your LAN interface.  Then, it would get a proxy ARP
reply from the router (as long as that's enabled) and it would have an ARP
entry...

Any other, perhaps better, ways of solving this?

Thanks,
Paul


-----Original Message-----
From: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com] 
Sent: Tuesday, May 16, 2006 11:54 AM
To: m0n0wall dash dev at lists dot m0n0 dot ch
Subject: [m0n0wall-dev] Possible Captive Portal bug?

	
I have a problem with Captive Portal and I think it may be a bug.  

I have a Monowall with Captive Portal enabled on the LAN segment.  On that
segment, I have a router connecting to another segment with a different
subnet (DHCP for this subnet is served by the router).  I've added static
routes as needed and can get DNS resolution by a client on the other side of
the router, but when attempting to browse the web, I get redirected to the
captive portal login page as expected, with one major difference...  The
captive portal page is completely blank for clients on this new subnet!  (It
just contains some standard HTML tags, and not the captive portal page seen
by other users on the LAN segment...)

Any ideas where I need to start looking in the code?

Thanks,
Paul

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch