Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: daley on August 13, 2005, 10:13:30 AM

Title: Wirelsss client needs auth via smeserver
Post by: daley on August 13, 2005, 10:13:30 AM

Hey,

Is it a possible to setup the wireless client to request auth to access internet/intranet via the smeserver?

Pls advise.

Daley

Title: Wirelsss client needs auth via smeserver
Post by: gregswallow on August 14, 2005, 07:08:16 AM

Do you have a wireless router or access point?  I think what you're asking is if you can allow only certain people to access the internet/intranet, right?  I think most access points or routers have as part of the ir security settings, the ability to allow only certain mac addresses to connect (my US Robotics wireless router does anyways).  That's pretty secure I think.

Title: Wirelsss client needs auth via smeserver
Post by: lguzman on August 15, 2005, 03:05:39 AM

I’m also interested in software able to authenticated wireless client with user and password to get the connection. In the area that I get hotspot they use nomadix but this is a hardware auth and I searching for something that can be integrated with SME. There still much that I want to do with SME but I’ll keep open individual Post. Daley I hope some one answers soon.

Title: Wirelsss client needs auth via smeserver
Post by: gregswallow on August 15, 2005, 06:41:45 PM

What you're looking for is called a 'captive portal'.  Search contribs.org and you'll find earlier discussion about it.

Here is a captive portal software that could probably be installed on SME called NoCatAuth:
http://nocat.net/

This also look cool, as an alternative to installing it on SME:
http://www.publicip.net/

Title: Wirelsss client needs auth via smeserver
Post by: lguzman on August 15, 2005, 09:51:12 PM

gregswallow
Excellent I’ll try it today and I’ll post the results.

Title: Wirelsss client needs auth via smeserver
Post by: dhardy on August 16, 2005, 07:46:28 AM

m0n0wall is excellent -

http://m0n0.ch/wall

We are using m0n0wall on 11 sites to provide wifi to laptop users and visitors. Its using passthrough to allow access to our website and mail server without authentication. The captive portal and RADIUS control access to the wider web. The way I have it setup there is no direct access to the LAN from the wifi subnets.

(http://www.millfarm.net/m0n0wall-layout.gif)

We are using FWAP-3680 (http://www.wordsworth.co.uk/site/pages/products.php?pid=84 url) 1U server units and netgear 54g access points.

m0n0wall is a FreeBSD distro that is configured (like SME) via a browser. We have had issues with multiple pptp passthrough - one client can passthrough without problems, 2 clients won't work. Its easy to solve though, you just configure m0n0wall as a pptp server and spoof the 'normal' pptp server's dns name. Dead easy to setup, PM me if you need more info.

HTH

David.

Title: Wirelsss client needs auth via smeserver
Post by: shanen on August 16, 2005, 11:28:20 AM

Here are a couple more.
Chillispot
MikroTik
Some Ap's use radius for auth.

If you install the radius contrib, you can use SME's user database to auth your clients.
http://sme.swerts-knudsen.com/downloads/Radius/