[ previous ] [ next ] [ threads ]
 From:  Chris Alavoine <chris dot alavoine at imagination dot com>
 To:  Monowall Mailing list <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Captive Portal fw rules not working
 Date:  Tue, 17 Oct 2006 12:37:03 +0100
Hi all,

Version: 1.22
Platform: wrap

I have the following rules applied to my Captive Portal Interface (OPT1):

Proto	Source	   Port	  Destination	Port	Description			[block]	
TCP/UDP PORTAL net  * 	       * 	135 	NetBIOS Block 			[block]	
TCP/UDP PORTAL net  * 	       * 	137-139 NetBIOS Block 			[block]	
TCP/UDP PORTAL net  * 	       * 	445 	NetBIOS Block 			[block]
TCP 	PORTAL net  * 	       * 	25  	SMTP Block 			[block]	
TCP 	PORTAL net  * 	    PORTAL net 	80      Web Admin Block 		[block]		
TCP 	PORTAL net  * 	    WAN address 80  	WAN subnet HTTP Block 		[pass]		
TCP 	PORTAL net  * 	    10.2.1.x 	80  	Allow HTTP to s-20078-0 
[pass]	 	 	 	 	 	 	 			* 	PORTAL net  * 	    ! LAN net 	* 	PORTAL -> Any 
other than LAN 		

Everything seems to work fine apart from the Web Admin Block rule. This 
should be blocking traffic to my Cisco AP (aironet 1100) but I can 
access it fine whether I have authenticated on Captive portal or not. 
I've tried changing the order of these rules but nothing seems to work. 
All the other rules seem to work fine.

Any help would be much appreciated.



  Imagination Ltd
  25 Store Street South Crescent, London WC1E 7BL, England
  Tel +44 (0)20 7323 3300  Fax +44 (0)20 7323 5801

  This email contains privileged and confidential information, and is
  intended only for the addressee. If you are not the named addressee
  you should not disseminate, distribute or copy this email.  Please
  notify the sender immediately by email if you have received this
  email by mistake and please delete it from your system.