[CDBUG-talk] [Fwd: Re: Captive portal on different subnet?]
Dave Del Debbio
ddeldebb at gmail.com
Fri Jun 27 12:32:55 EDT 2008
Recently I was investigating doing a transparent proxy with
tinyproxy/dan's gardian or using squid.
Does the list have an opinion of using netcat vs the two other solutions
I mention above? Is anyone using a different application at a school or
for a client?
-------- Original Message --------
Subject: Re: [CDBUG-talk] Captive portal on different subnet?
Date: Thu, 26 Jun 2008 08:14:23 -0400
From: Patrick Muldoon <doon at inoc.net>
To: Jaime <jaime at snowmoon.com>
CC: CDBUG <cdbug-talk at lists.nycbug.org>
References: <5BB8D2D0-8EAA-41B8-90F6-0EB7D43B258E at snowmoon.com>
<A92DCAEB-D9DB-4C67-B40B-EF3DC5A47695 at inoc.net>
<5684CE8C-AE1E-4B29-A3CA-D58D3A6C18EA at snowmoon.com>
On Jun 26, 2008, at 12:26 AM, Jaime wrote:
> On Jun 25, 2008, at 10:55 PM, Patrick Muldoon wrote:
>> What is currently routing the traffic between the subnets?
>
> Cisco brand equipment. A pair of 2600 series routers, a pair of
> Catalyst 3750 series switches, etc. Depends on the subnet in
> question.
>
> Jaime
Ok in re-reading the original message, I don't think the multiple
subnets have anything to do with the problem (but I might be wrong).
assuming you have something like this.
10.5.0.0/24 -> L3 Device -> 10.1.0.0/24 -> Router -> Internet.
and you are trying to limit 10/8 access to the internet (by requiring
them to agree to something (monitoring, no pr0n, etc...)).
So I think the better question is what device connects you to the
internet? Is there a firewall or some other device there?
Basically you will need a point to limit access that all traffic *has*
to pass through.
If it is a *nix box, you can look at something like nocatauth /
nocatsplash (http://nocat.net/) to control the access.
Or they do make devices that will do all the magic for you, etc..
-Patrick
--
Patrick Muldoon
Network/Software Engineer
INOC (http://www.inoc.net)
PGPKEY (http://www.inoc.net/~doon)
Key ID: 0x370D752C
/* Don't meddle in the affairs of sysadmins,
* for they are subtle and quick to anger.
*/
_______________________________________________
CDBUG-talk mailing list
CDBUG-talk at lists.nycbug.org
http://lists.nycbug.org/mailman/listinfo/cdbug-talk
More information about the CDBUG-talk
mailing list