[ previous ] [ next ] [ threads ]
 
 From:  "Lee Sharp" <leesharp at hal dash pc dot org>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Using Captive Portal offline?
 Date:  Fri, 19 Jan 2007 17:21:01 -0600 
From: "Nate Osborne" <nosborne at purchasingpower dot com>

> Thanks, but it looks like the FW rules are applied before it hits the 
> CP --
> so unless the client gets a valid DNS for the URL they type in ~and~ has
> permission to access that URL, the request never hits the captive portal.

There is an old NAT rule to redirect SMTP.

 <nat>
 <rule>
  <protocol>tcp</protocol>
  <external-port>25</external-port>
  <target>192.168.1.5</target>
  <local-port>25</local-port>
  <interface>lan</interface>
  <descr>redirect SMTP to LAN SMTP server</descr>
 </rule>
 </nat>


Have it redirect 80 to your web server on another interface.  It will 
trigger the CP, and still not allow outbound web.  Moreover, all outbound 
web that tries will go to your web server.