[ previous ] [ next ] [ threads ]
 
 From:  "Barry Mather" <barry dot mather at dore dot com dot au>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] reverse captive portal
 Date:  Wed, 27 Jul 2005 09:42:00 +1000
Unfortunatly this would mean I would have to run apache, I write all my
code in asp and .net

I'm also not a fan of leaving auth to web servers only, I want a method
whereby that cant even touch the server without authing first ...

Cheers


-----Original Message-----
From: A dot L dot M dot Buxey at lboro dot ac dot uk [mailto:A dot L dot M dot Buxey at lboro dot ac dot uk] 
Sent: Tuesday, 26 July 2005 5:55 PM
To: Barry Mather
Cc: m0n0wall at lists dot m0n0 dot ch
Subject: Re: [m0n0wall] reverse captive portal

Hi,

> I'm looking for a way to run captive portal on the WAN interface ...
not
> having much luck so far ...
> 
>  
> 
> What I want is to be able to auth to a radius server when a request
> comes to the f/w from the WAN interface on port 80, if the auth
succeeds
> then they get allowed through the rule base to a web server running on
> the LAN interface ....

erm, why not run the RADIUS authentication on your web server itself -
since that is what you are 
putting them through to and requiring the authentication for  ?

Apache does have a RADIUS authentication module:

http://www.wede.de/sw/mod_auth_radius.html


very easy to use - and wouldnt cause the sort of issues you might have
trying to do the way
you are doing

alan