[ previous ] [ next ] [ threads ]
 From:  "Barry Mather" <barry dot mather at dore dot com dot au>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] reverse captive portal
 Date:  Wed, 27 Jul 2005 09:43:10 +1000
Yep, Sonicwall also has this feature built in ... if I wanted to spend
2.5k(au$) then I'd go out and buy one ... but I like m0n0wall and want
to continue to support the m0n0 community 


-----Original Message-----
From: PF: m0n0wall [mailto:m0n0wall at in dash genius dot com] 
Sent: Wednesday, 27 July 2005 12:17 AM
To: m0n0wall at lists dot m0n0 dot ch
Subject: RE: [m0n0wall] reverse captive portal

> What I want is to be able to auth to a radius server when a request
> comes to the f/w from the WAN interface on port 80, if the 
> auth succeeds
> then they get allowed through the rule base to a web server running on
> the LAN interface ....

This sounds similar to Netscreen's WebAuth feature.
With a Netscreen, you can use a HTTPS login to open particular rules for
the user that logged in.  The rules are dynamic and are only open to the
originating IP of the login (NAT on the source end can be an issue.)

I think it would be a nice feature also, but I don't think it really
belongs in m0n0wall.  pfSense would be a better candidate for this


To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch