How do I use Squid to harden my Public Wi-fi?
Hi Experts,
I have been asked to setup 2 public wifi access points for my company both are unsecured their idea not mine! Anyways was trying to develop some thing that could be used to stop 95% of people logging onto the network. The public wifi is on it's own private range and is firewalled by an IPcop. Have been playing around with squid and I beleive something like the following would suffice:
I need squid to forward all web requests unless authenticated to a web page
This web page will consist of a login page for use with the public wifi which users will use the username and password supplied by myself which will then give them Internet access. Ideally logging client MAC address so streamlining future connections, but probably beyond my expertise.
Have taken some principles from the Upsidedownternet (http://ex-parrot.com/~pete/upside-down-ternet.html) as a form of trial and error
Very new to IPtables, Squid and Perl so any help is appreciated
Also IPcop is different in the way it uses its proxy (I cant seem to find the squid.conf file to make changes)
Many Thanks
I have been asked to setup 2 public wifi access points for my company both are unsecured their idea not mine! Anyways was trying to develop some thing that could be used to stop 95% of people logging onto the network. The public wifi is on it's own private range and is firewalled by an IPcop. Have been playing around with squid and I beleive something like the following would suffice:
I need squid to forward all web requests unless authenticated to a web page
This web page will consist of a login page for use with the public wifi which users will use the username and password supplied by myself which will then give them Internet access. Ideally logging client MAC address so streamlining future connections, but probably beyond my expertise.
Have taken some principles from the Upsidedownternet (http://ex-parrot.com/~pete/upside-down-ternet.html) as a form of trial and error
Very new to IPtables, Squid and Perl so any help is appreciated
Also IPcop is different in the way it uses its proxy (I cant seem to find the squid.conf file to make changes)
Many Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Johnjces
I wish I could type... form := from
You could try something like the CopSpot Addon for IPCOP. Its an addon to add captive portal functionallity to the IPCOP Box.
http://www.ban-solms.de/t/IPCop-copspot.html
http://www.ban-solms.de/t/IPCop-copspot.html