[ previous ] [ next ] [ threads ]
 
 From:  "Jonathan De Graeve" <Jonathan dot De dot Graeve at imelda dot be>
 To:  "Paul Taylor" <PaulTaylor at winn dash dixie dot com>
 Cc:  <m0n0wall dash dev at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall-dev] Possible Captive Portal bug?
 Date:  Tue, 16 May 2006 23:06:49 +0200
If this would fail I have a solution in the form like this:

route -n get 10.1.0.254 | grep gateway | cut -d : -f 2 | xargs arp -n
? (10.2.0.254) at 00:00:5e:00:01:ff on de0 [ethernet] returning the mac
of the gateway responsable for that specific route ;)

J.

> -----Oorspronkelijk bericht-----
> Van: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> Verzonden: dinsdag 16 mei 2006 21:57
> Aan: Jonathan De Graeve
> Onderwerp: RE: [m0n0wall-dev] Possible Captive Portal bug?
> 
> 
> We're going to enable it tonight...  I'll let you know.
> 
> 
> -----Original Message-----
> From: Jonathan De Graeve [mailto:Jonathan dot De dot Graeve at imelda dot be]
> Sent: Tuesday, May 16, 2006 2:42 PM
> To: Paul Taylor; m0n0wall dash dev at lists dot m0n0 dot ch
> Subject: RE: [m0n0wall-dev] Possible Captive Portal bug?
> 
> Hey Paul,
> 
> I'm curious how the system will react since this feature was never
> tested behind different routers. If you run into problems I will
> certainly fix this with you.
> 
> Greetings,
> 
> Jonathan
> 
> > -----Oorspronkelijk bericht-----
> > Van: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> > Verzonden: dinsdag 16 mei 2006 20:38
> > Aan: Jonathan De Graeve; Paul Taylor; m0n0wall dash dev at lists dot m0n0 dot ch
> > Onderwerp: RE: [m0n0wall-dev] Possible Captive Portal bug?
> >
> > Nope, and I bet that will fix it!...  Thanks!  Just can't knock the
> users
> > offline now to add that option...  Have to do it late this evening,
or
> > early
> > in the morning.
> >
> > Paul
> >
> > -----Original Message-----
> > From: Jonathan De Graeve [mailto:Jonathan dot De dot Graeve at imelda dot be]
> > Sent: Tuesday, May 16, 2006 1:10 PM
> > To: Paul Taylor; m0n0wall dash dev at lists dot m0n0 dot ch
> > Subject: RE: [m0n0wall-dev] Possible Captive Portal bug?
> >
> > Did you enable the '$config['captiveportal']['nomacfilter']);'
option?
> >
> > J.
> >
> > > -----Oorspronkelijk bericht-----
> > > Van: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> > > Verzonden: dinsdag 16 mei 2006 19:00
> > > Aan: Paul Taylor; m0n0wall dash dev at lists dot m0n0 dot ch
> > > Onderwerp: RE: [m0n0wall-dev] Possible Captive Portal bug?
> > >
> > >
> > > More information:
> > >
> > > Found this on the Captive Portal Log tab:
> > >
> > > May 16 11:44:03 	ERROR: unauthenticated, noclientmac,
> > 209.149.153.231
> > >
> > > In looking at the code of the index.php page, I see that this is
> > caused by
> > > this code block:
> > >
> > > /* find MAC address for client */
> > > $clientmac = arp_get_mac_by_ip($clientip);
> > > if (!$clientmac && $macfilter) {
> > >     /* unable to find MAC address - shouldn't happen! - bail out
*/
> > >
> > >
> >
>
captiveportal_logportalauth("unauthenticated","noclientmac",$clientip,"E
> > RR
> > > OR
> > > ");
> > >     exit;
> > > }
> > >
> > >
> > > So, it can't find the IP Address in the ARP table because it isn't
> > > there...
> > > It won't be there because the ARP table will only have the
gateway's
> > IP in
> > > it, not the IP Addresses of devices on the other side...  We could
> > make
> > > this
> > > work by using Proxy ARP, possibly...  Where the Monowall will be
> told
> > to
> > > get
> > > to subnet X, ARP out your LAN interface.  Then, it would get a
proxy
> > ARP
> > > reply from the router (as long as that's enabled) and it would
have
> an
> > ARP
> > > entry...
> > >
> > > Any other, perhaps better, ways of solving this?
> > >
> > > Thanks,
> > > Paul
> > >
> > >
> > > -----Original Message-----
> > > From: Paul Taylor [mailto:PaulTaylor at winn dash dixie dot com]
> > > Sent: Tuesday, May 16, 2006 11:54 AM
> > > To: m0n0wall dash dev at lists dot m0n0 dot ch
> > > Subject: [m0n0wall-dev] Possible Captive Portal bug?
> > >
> > >
> > > I have a problem with Captive Portal and I think it may be a bug.
> > >
> > > I have a Monowall with Captive Portal enabled on the LAN segment.
> On
> > that
> > > segment, I have a router connecting to another segment with a
> > different
> > > subnet (DHCP for this subnet is served by the router).  I've added
> > static
> > > routes as needed and can get DNS resolution by a client on the
other
> > side
> > > of
> > > the router, but when attempting to browse the web, I get
redirected
> to
> > the
> > > captive portal login page as expected, with one major
difference...
> > The
> > > captive portal page is completely blank for clients on this new
> > subnet!
> > > (It
> > > just contains some standard HTML tags, and not the captive portal
> page
> > > seen
> > > by other users on the LAN segment...)
> > >
> > > Any ideas where I need to start looking in the code?
> > >
> > > Thanks,
> > > Paul
> > >
> > >
> ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
> > > For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch
> > >
> > >
> ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
> > > For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch
> > >
> > >
> >
> >
> >
> >
---------------------------------------------------------------------
> > To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch
> >
> 
>