[Lugro-mesh] Fwd: authorization on eth0 in client mode
Marian Labaj
labaj.marian en gmail.com
Vie Feb 5 04:34:01 ART 2010
Hi Julio,
I was wondering about this (authentication access) and the solution
may be to gateway.
In my view, are fully exploit the strong characteristics wifidog when
checked all connections for external interfaces to the router, which
is in gateway mode
Wifidog checked connection via Tokens and works to ensure the best
performance. If he has a connection for his back on the control
interface, it is disoriented. In client mode Wifidog to do mainly
client authentication, but if the gate mode, can do extra work, such a
thing as QoS. In my opinion.
I can be wrong, I respect your work, you inspire me.
Marian
---------- Forwarded message ----------
From: Marian Labaj <labaj.marian at gmail.com>
Date: 2010/2/4
Subject: Re: [Lugro-mesh] authorization on eth0 in client mode
To: lugro-mesh at lugro.org.ar
Hi Julio,
OK, thanks, ssh works
In client mode - authentication page wifidog will not appear when
connecting to eth0, LAN access is not verified,
authentication page is displayed only for ath0 interface - a public AP.
/etc/wifidog.conf:
GatewayID 32789
ExternalInterface bat0
GatewayInterface ath0
GatewayAddress 10.128.21.1
CheckInterval 60
ClientTimeout 5
....
/etc/init.d/nightwing
....
## Set config for WiFiDog
sed -i '
{
/GatewayID/s/GatewayID default/GatewayID '$NODE_ID'/;
s/GatewayAddress/GatewayAddress '$IP_PUBLIC_AP'/;
}' /etc/wifidog.conf
mv /etc/wifidog.conf /etc/wifidog.conf.sample
ln -s $WIFIDOG_CONF /etc/wifidog.conf
....
....
client)
....
# WiFiDog uses Mesh interface
sed -i "s/ExternalInterface .*/ExternalInterface
"$TUNNEL_IFACE"/"
$WIFIDOG_CONF
....
2010/2/4 Julio Cesar Puigpinos <jcpuigpinos at gmail.com>:
> 2010/2/4 Julio Cesar Puigpinos :
>> [..]
>>
>> To allow SSH in the Mesh interface you have to add a line: $IPTABLES
>> -I INPUT -i $MESH_IFACE -p tcp --dport 80 -j ACCEPT in both gateway an
>> client modes.
>> [...]
>
> A typo in the iptables rule :P, it should be --dport 22:
>
> $IPTABLES -I INPUT -i $MESH_IFACE -p tcp --dport 22 -j ACCEPT
>
>
> Saludos, Julio
>
> --
> www.lugro-mesh.org.ar/ Wireless Mesh Networks Group
> www.lugro.org.ar GNU/Linux User Group Rosario, Argentina
> Slackware rulez :P www.slackware.org
> NO A LA MATRICULA!!!: http://noalamatricula.wordpress.com/
> _______________________________________________
> Lugro-mesh mailing list
> Lugro-mesh at lugro.org.ar
> http://lugro.org.ar/mailman/listinfo/lugro-mesh
>
Más información sobre la lista de distribución Lugro-mesh