[ previous ] [ next ] [ threads ]
 
 From:  Michael Sierchio <kudzu at tenebras dot com>
 To:  "m0n0wall at lists dot m0n0 dot ch" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] IE 7 OCSP request breaks captive portals
 Date:  Mon, 30 Oct 2006 12:41:56 -0800
Manuel Kasper wrote:

> However, if this is really causing you problems, then try adding the
> IP address(es) of the server(s) that the CRL/OCSP URLs in your HTTPS
> certificate point to to the list of "Allowed IP addresses" in
> m0n0wall's captive portal. That should do the trick. And of course,
> once the user has logged in, no connections will be intercepted by
> the captive portal anymore and there shouldn't be any problems with
> checking other certificates for revocation.

The problem is that these URLs have FQDNs and not fixed IP addresses