|
Last change
on this file since 10419 was 10419, checked in by rick, 13 years ago |
|
Rewrote Captive Portal to use Packet Filter (pf) instead. This is much robuster and better administrable then ipfw.
Also cleaned out most of the ugly looking
|
|
File size:
575 bytes
|
| Line | |
|---|
| 1 | # Table used to authorized hosts
|
|---|
| 2 | table <wlportal> persist counters
|
|---|
| 3 |
|
|---|
| 4 | # Always be nice, and return the fact we are blocking the packets
|
|---|
| 5 | set block-policy return
|
|---|
| 6 |
|
|---|
| 7 | # Localhost is considered safe and should thus not be filtered
|
|---|
| 8 | set skip on lo0
|
|---|
| 9 |
|
|---|
| 10 | wl_net="172.16.0.0/12"
|
|---|
| 11 | #captive_ifs="vr0,vr1,vr2,ue0"
|
|---|
| 12 |
|
|---|
| 13 | # Redirect user to captive portal they have not clicked OK yet.
|
|---|
| 14 | no rdr on { $captive_portal_interfaces } proto tcp from <wlportal> to !$wl_net port 80
|
|---|
| 15 | rdr on { $captive_portal_interfaces } proto tcp from $wl_net to !$wl_net port 80 -> 127.0.0.1 port 8082
|
|---|
| 16 |
|
|---|
| 17 | # Default allow
|
|---|
| 18 | pass all
|
|---|
Note:
See
TracBrowser
for help on using the repository browser.
