[CDBUG-talk] [Fwd: Re: Captive portal on different subnet?]

Dave Del Debbio ddeldebb at gmail.com
Fri Jun 27 12:32:55 EDT 2008

Recently I was investigating doing a transparent proxy with 
tinyproxy/dan's gardian or using squid.

Does the list have an opinion of using netcat vs the two other solutions 
I mention above?  Is anyone using a different application at a school or 
for a client?

-------- Original Message --------
Subject: Re: [CDBUG-talk] Captive portal on different subnet?
Date: Thu, 26 Jun 2008 08:14:23 -0400
From: Patrick Muldoon <doon at inoc.net>
To: Jaime <jaime at snowmoon.com>
CC: CDBUG <cdbug-talk at lists.nycbug.org>
References: <5BB8D2D0-8EAA-41B8-90F6-0EB7D43B258E at snowmoon.com> 
<A92DCAEB-D9DB-4C67-B40B-EF3DC5A47695 at inoc.net> 
<5684CE8C-AE1E-4B29-A3CA-D58D3A6C18EA at snowmoon.com>

On Jun 26, 2008, at 12:26 AM, Jaime wrote:

> On Jun 25, 2008, at 10:55 PM, Patrick Muldoon wrote:
>> What is currently routing the traffic between the subnets?
> 	Cisco brand equipment.  A pair of 2600 series routers, a pair of  
> Catalyst 3750 series switches, etc.  Depends on the subnet in  
> question.
> 							Jaime

Ok in re-reading the original message, I don't think the multiple
subnets have anything to do with the problem (but I might be wrong).

assuming you have something like this. -> L3 Device -> -> Router ->   Internet.

and you are trying to limit 10/8 access to the internet (by requiring
them to agree to something  (monitoring, no pr0n, etc...)).

So I think the better question is what device connects you to the
internet? Is there a firewall or some other device there?

Basically you will need a point to limit access that all traffic *has*
to pass through.

If it is a *nix box, you can look at something like nocatauth /
nocatsplash (http://nocat.net/)  to control the access.

Or they do make devices that will do all the magic for you, etc..


Patrick Muldoon
Network/Software Engineer
INOC (http://www.inoc.net)
PGPKEY (http://www.inoc.net/~doon)
Key ID: 0x370D752C

/* Don't meddle in the affairs of sysadmins,
* for they are subtle and quick to anger.

CDBUG-talk mailing list
CDBUG-talk at lists.nycbug.org

More information about the CDBUG-talk mailing list