monowall and captive portal
DESCRIPTION
Monowall and Captive Portal. Timothy Meade Eric Stolten. What Is Monowall?. Embedded firewall software package m0n0wall is based on a bare-bones version of FreeBSD, along with a web server, PHP and a few other utilities. The entire system configuration is stored in one single XML text file. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/1.jpg)
Monowall and Captive Portal
Timothy MeadeEric Stolten
![Page 2: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/2.jpg)
What Is Monowall?
Embedded firewall software package m0n0wall is based on a bare-bones version
of FreeBSD, along with a web server, PHP and a few other utilities.
The entire system configuration is stored in one single XML text file.
![Page 3: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/3.jpg)
What Is a Captive Portal?
The captive portal is a web page that users/clients are forced to visit before they are granted access to the internet.
At this page they are asked to enter there user name and password.
This username and password are passed along to the RADIUS server
![Page 4: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/4.jpg)
The flow of data
Wireless User
AP
Monowall w/ DHCP
Radius
NIS Server
![Page 5: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/5.jpg)
How to Build a Monowall System Basic things you need:
Null modem cable Compact Flash media 8 meg+ Embedded PC system
Soekris (who we used) PC engines
Access point for wireless
![Page 6: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/6.jpg)
Creating monowall
The first thing you need to do is download an image of monowall and burn it onto your CF card with physdiskwrite.Exe.
![Page 7: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/7.jpg)
![Page 8: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/8.jpg)
First Boot
For the first boot. Connect the null modem cable to the soekris box and power it on.
Once fully booted connect the lan interface to the switch. Load a web browser and input http://192.168.1.1 to login to the web GUI of monowall.
The Login/password originally was admin/mono.
![Page 9: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/9.jpg)
Wan Configuration
![Page 10: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/10.jpg)
![Page 11: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/11.jpg)
Lan Configuration
![Page 12: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/12.jpg)
![Page 13: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/13.jpg)
Captive Portal configuration
![Page 14: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/14.jpg)
![Page 15: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/15.jpg)
DHCP Setup
![Page 16: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/16.jpg)
D-link Router/AP Configuration Assigned the IP 192.168.0.2 Disabled DHCP Changed SSID (service set identifier) to
“354AP” Password for admin and user changed to
mono354
![Page 17: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/17.jpg)
![Page 18: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/18.jpg)
Physical Connection to the Network.
Monowall
Lab 1DHCP
Lab2 NIS
Gateway Lab 3Lab 4RADIUS
311 311 311 311
Switches
AP Wireless userLan port
WAN port
![Page 19: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/19.jpg)
Why It Took So Long Almost every time you mess up the
configuration you have to reload the configuration file.
Not using an AP Cant bridge lan/opt1 interfaces and run captive
portal Misuse of the AP
From monowall a connection was made to the WAN port of the AP it should have been on the switch side.
![Page 20: Monowall and Captive Portal](https://reader035.vdocuments.mx/reader035/viewer/2022081503/5681602c550346895dcf3848/html5/thumbnails/20.jpg)
Other Plans?
Changing the DHCP pool from 192.168.X.X to a range within our subnet.