[ previous ] [ next ] [ threads ]
 
 From:  "Jonathan De Graeve" <Jonathan dot De dot Graeve at imelda dot be>
 To:  "Paul Taylor" <PaulTaylor at winn dash dixie dot com>, <m0n0wall dash dev at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall-dev] Possible Captive Portal bug?
 Date:  Tue, 16 May 2006 19:09:45 +0200
Did you enable the '$config['captiveportal']['nomacfilter']);' option?

J.

> -----Oorspronkelijk bericht-----
> Van: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> Verzonden: dinsdag 16 mei 2006 19:00
> Aan: Paul Taylor; m0n0wall dash dev at lists dot m0n0 dot ch
> Onderwerp: RE: [m0n0wall-dev] Possible Captive Portal bug?
> 
> 
> More information:
> 
> Found this on the Captive Portal Log tab:
> 
> May 16 11:44:03 	ERROR: unauthenticated, noclientmac,
209.149.153.231
> 
> In looking at the code of the index.php page, I see that this is
caused by
> this code block:
> 
> /* find MAC address for client */
> $clientmac = arp_get_mac_by_ip($clientip);
> if (!$clientmac && $macfilter) {
>     /* unable to find MAC address - shouldn't happen! - bail out */
> 
>
captiveportal_logportalauth("unauthenticated","noclientmac",$clientip,"E
RR
> OR
> ");
>     exit;
> }
> 
> 
> So, it can't find the IP Address in the ARP table because it isn't
> there...
> It won't be there because the ARP table will only have the gateway's
IP in
> it, not the IP Addresses of devices on the other side...  We could
make
> this
> work by using Proxy ARP, possibly...  Where the Monowall will be told
to
> get
> to subnet X, ARP out your LAN interface.  Then, it would get a proxy
ARP
> reply from the router (as long as that's enabled) and it would have an
ARP
> entry...
> 
> Any other, perhaps better, ways of solving this?
> 
> Thanks,
> Paul
> 
> 
> -----Original Message-----
> From: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> Sent: Tuesday, May 16, 2006 11:54 AM
> To: m0n0wall dash dev at lists dot m0n0 dot ch
> Subject: [m0n0wall-dev] Possible Captive Portal bug?
> 
> 
> I have a problem with Captive Portal and I think it may be a bug.
> 
> I have a Monowall with Captive Portal enabled on the LAN segment.  On
that
> segment, I have a router connecting to another segment with a
different
> subnet (DHCP for this subnet is served by the router).  I've added
static
> routes as needed and can get DNS resolution by a client on the other
side
> of
> the router, but when attempting to browse the web, I get redirected to
the
> captive portal login page as expected, with one major difference...
The
> captive portal page is completely blank for clients on this new
subnet!
> (It
> just contains some standard HTML tags, and not the captive portal page
> seen
> by other users on the LAN segment...)
> 
> Any ideas where I need to start looking in the code?
> 
> Thanks,
> Paul
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch
> 
>