14.01.2018 14:24, Victor Sudakov wrote:
>>> Do you know how commercial captive portals handle this problem? Do they
>>> install their own box near every customer's AP?
>>
>> No. For example, UniFi (which is Linux-based AP with iptables/ebtables)
>> keeps table of MAC addresses of customers passed
Eugene Grosbein wrote:
> 14.01.2018 13:31, Victor Sudakov wrote:
>
> > Do you know how commercial captive portals handle this problem? Do they
> > install their own box near every customer's AP?
>
> No. For example, UniFi (which is Linux-based AP with iptables/ebtables)
> keeps table of MAC addre
14.01.2018 13:31, Victor Sudakov wrote:
> Do you know how commercial captive portals handle this problem? Do they
> install their own box near every customer's AP?
No. For example, UniFi (which is Linux-based AP with iptables/ebtables)
keeps table of MAC addresses of customers passed authorizatio
Marek Zarychta wrote:
> On Sat, Jan 13, 2018 at 06:07:39PM +0700, Victor Sudakov wrote:
> > Eitan Adler wrote:
> > > >
> > > >
> > > > Are there any network experts willing to look at the dump of RADIUS
> > > > traffic at http://noc.sibptus.ru/~sudakov/radius.pcap ?
> > >
> > >
> > > >From wiresh
On Sat, Jan 13, 2018 at 06:07:39PM +0700, Victor Sudakov wrote:
> Eitan Adler wrote:
> > On 13 January 2018 at 01:55, Victor Sudakov wrote:
> > >
> > >
> > > Are there any network experts willing to look at the dump of RADIUS
> > > traffic at http://noc.sibptus.ru/~sudakov/radius.pcap ?
> >
> >
Eitan Adler wrote:
> On 13 January 2018 at 01:55, Victor Sudakov wrote:
> >
> >
> > Are there any network experts willing to look at the dump of RADIUS
> > traffic at http://noc.sibptus.ru/~sudakov/radius.pcap ?
>
>
> >From wireshark: PEAP / EAP-MD5-CHALLENGE
Eitan, do you mean it's EAP-MD5 enc
On 13 January 2018 at 01:55, Victor Sudakov wrote:
>
>
> Are there any network experts willing to look at the dump of RADIUS
> traffic at http://noc.sibptus.ru/~sudakov/radius.pcap ?
>From wireshark: PEAP / EAP-MD5-CHALLENGE
Extensible Authentication Protocol
Code: Request (1)
Id: 2
Freddie Cash wrote:
>
> Let me know if you need any other information.
Dear Freddie,
Thanks for the rewrite rules, I've saved them for future reference.
However, I went in a different direction and set up a test
quasi-enterprise network with a TP-Link AP and FreeRADIUS server
(net/freeradius3)
On Mon, Jan 8, 2018 at 10:42 AM, Freddie Cash wrote:
> On Sun, Jan 7, 2018 at 11:20 PM, Victor Sudakov
> wrote:
>
>> Freddie Cash wrote:
>> >
>> > > One trouble I expect here is: if the client goes to https
>> destination, it
>> > > will complain about your local apache certificate, as the clien
On Sun, Jan 7, 2018 at 11:20 PM, Victor Sudakov wrote:
> Freddie Cash wrote:
> >
> > > One trouble I expect here is: if the client goes to https destination,
> it
> > > will complain about your local apache certificate, as the client
> expects
> > > next packet (SSL negotiation) to come from host
Freddie Cash wrote:
>
> > One trouble I expect here is: if the client goes to https destination, it
> > will complain about your local apache certificate, as the client expects
> > next packet (SSL negotiation) to come from host it was going originally
> > to. I've seen quite a few of similar thin
Freddie Cash wrote:
>
>
> Ah, ok, now I see what you mean by "quasi-enterprise WiFi). You are looking
> for a way to create an encrypted wireless connection where a
> username/password combo is used instead of a PSK, using something like (but
> not as heavy as) 802.1x.
I don't even need an *encr
On Sun, January 7, 2018 12:04 pm, Victor Sudakov wrote:
> Freddie Cash wrote:
>> >
>> > I'm trying to setup a quasi-enterprise WiFi network for mobile
>> > devices. This will be a solution for a public library with the only
>> > requirement that gue
On Jan 7, 2018 10:40 AM, "Valeri Galtsev" wrote:
On Sun, January 7, 2018 12:04 pm, Victor Sudakov wrote:
> Freddie Cash wrote:
>> >
>> > I'm trying to setup a quasi-enterprise WiFi network for mobile
>> > devices. This will be a solution for a publi
On Jan 7, 2018 10:04 AM, "Victor Sudakov" wrote:
Freddie Cash wrote:
> >
> > I'm trying to setup a quasi-enterprise WiFi network for mobile
> > devices. This will be a solution for a public library with the only
> > requirement that guest users should get p
Freddie Cash wrote:
> >
> > I'm trying to setup a quasi-enterprise WiFi network for mobile
> > devices. This will be a solution for a public library with the only
> > requirement that guest users should get personal credentials for WiFi
> > access from a libra
Dammit, forgot to include the list again. Resending
-- Forwarded message --
From: fjwc...@gmail.com
Date: Jan 7, 2018 8:58 AM
Subject: Re: Quasi-enterprise WiFi network
To: Victor Sudakov
Cc:
On Jan 7, 2018 6:31 AM, "Victor Sudakov" wrote:
Colleagues,
I'm tr
Colleagues,
I'm trying to setup a quasi-enterprise WiFi network for mobile
devices. This will be a solution for a public library with the only
requirement that guest users should get personal credentials for WiFi
access from a librarian (not a shared PSK for everyone).
The library has a Fr
18 matches
Mail list logo
