Re: [squid-users] SQUID to run a splash page before port 80 network access? from Andrew Farr on 2002-04-07 (squid-users)

From: Andrew Farr <A.Farr@dont-contact.us>
Date: Sun, 7 Apr 2002 20:29:37 +0100

Hi,

There is an article in the March (Volume 11, Number 3) edition of Sys Admin
(http://www.sysadminmag.com/) that covers a way of doing what you want. They
go a lot further, but the basic idea is covered in the following paragraph:

"To lock down the network for unregistered users, we configured DHCP so that
it hands out IP addresses to unknown clients in a specific range. This IP
range is then "wounded", using Access Control Lists on our router and a
process we call "DNS spoofing" so that they can only access our Autoreg
server (the machine running DHCP and supporting applications). To register
clients, we exposed CGI scripts (I'm calling them scripts, but they're
actually compiled C++ executables) via an Apache Web server
(http://www.apache.org) running on our Autoreg server. These scripts
authenticate users and then move them to an unrestricted IP address by
placing a static host entry for that machine in the ISC DHCP configuration
file (dhcpd.conf) and restarting the DHCP daemon. This approach not only
leaves ISC's code completely intact, but allows us to create an entire Web
interface for the system by relying on CGI scripts."

I'll send more info by private email, rather than sending large documents to
the whole list.

Andy.
----- Original Message -----
From: "Ethan" <telmnstr@757.org>
To: <squid-users@squid-cache.org>
Sent: Sunday, April 07, 2002 7:26 PM
Subject: [squid-users] SQUID to run a splash page before port 80 network
access?

> Hello...
>
> I was wondering if anyone is using Squid for this... odd application.
>
> We are looking into setting up free 802.11b wireless access at a few
> sites, and would like to drive a "splash" page. That is, after someone
> DHCPs an IP address and tries to access a web page, SQUID drives a
> splash page that displays what can be done with the free
> access, and who contributed. Then I'm looking to have an "OK LET ME GO"
> button that adds the client's IP to the ACL list (a cron would clean
> them out 1 hour later).
>
> I was thinking maybe it would be possible to change the denied error to
> the welcome page, but the OK button to add the IP to an ACL? Hmmmp.
>
> Some hotels have a similar system, only it wants money instead of the
> user just clicking OK.
>
> Thanks in advance for any suggestions.
>
> -- Ethan
Received on Sun Apr 07 2002 - 13:29:44 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:29 MST