Date: Fri, 17 Feb 2006 09:55:26 -0800 From: Jon Simola <jon@abccomm.com> To: freebsd-isp@freebsd.org Subject: Re: walled garden concept Message-ID: <8eea04080602170955u6d0875c0n125024190bab1c0@mail.gmail.com> In-Reply-To: <20060217162927.GA23261@ns2.wananchi.com> References: <20060217162927.GA23261@ns2.wananchi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2/17/06, Odhiambo Washington <wash@wananchi.com> wrote:
> Does anyone know of any tutorials for setting up a "walled garden"?
> I work for an ISP and we'd like to allow a specific dialup account
> Free Access via our RADIUS, but we want to limit this user to access
> just three or so urls: Our customer {registration|renewal|webselfcare}
> interfaces only.
Configure RADIUS to assign the account an IP from a private range.
Then you can redirect any/all http requests to wherever you want.
> I am looking for ideas on how this is done. I suppose it's done on the
> NAS, yes?
It could be done in several ways. If your access server supports local
user tables (I've only ever used Livingston/Lucent Portmasters, which
do) then it could all be done on the access server. Otherwise, it's
some minor network glue to make it work between RADIUS, DNS and
webservers.
--
Jon Simola
Systems Administrator
ABC Communications
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8eea04080602170955u6d0875c0n125024190bab1c0>