From owner-freebsd-isp@FreeBSD.ORG Fri Feb 17 21:41:27 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5907E16A420 for ; Fri, 17 Feb 2006 21:41:27 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from ns2.wananchi.com (mail.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 06D6543D45 for ; Fri, 17 Feb 2006 21:41:25 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.60 #0 (FreeBSD 4.11-STABLE)) id 1FADLv-000Jac-JN by authid for ; Sat, 18 Feb 2006 00:41:23 +0300 Date: Sat, 18 Feb 2006 00:41:23 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20060217214123.GG10377@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20060217162927.GA23261@ns2.wananchi.com> <20060217211117.449dc50a.lists@yazzy.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060217211117.449dc50a.lists@yazzy.org> X-Disclaimer: Any views expressed in this message, where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.11 (2005-09-15) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.11 Subject: Re: walled garden concept X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Feb 2006 21:41:27 -0000 * On 17/02/06 21:11 +0000, Marcin Jessa wrote: > On Fri, 17 Feb 2006 19:29:27 +0300 > Odhiambo Washington wrote: > > > Hiya, > > > > Does anyone know of any tutorials for setting up a "walled garden"? > > I work for an ISP and we'd like to allow a specific dialup account > > Free Access via our RADIUS, but we want to limit this user to access > > just three or so urls: Our customer {registration|renewal|webselfcare} > > interfaces only. > > > > I am looking for ideas on how this is done. I suppose it's done on the > > NAS, yes? > > How will the users connect? Using DHCP to get their IPs or PPPoE ? I will let them use just a single username to connect. This username is allowed concurrent connections though. > You may take a look at pfsense.com which is free and has a wallen garden solution I have played just a bit with pfsense, but my cards gave me headache. I'll look again just for the ideas. > or www.mikrotik.com which is not free but has a pretty damn good implementation We have Mikrotik hardware/software. I had mentioned this to our network engineers, but I guess they just decided to be lazy then, no? > of what you want pluss commercial atheros drivers and much more. I want a simple Open Source implementation. Thanks. Ideas have been coming at a very goof pace. I am grateful to this list! -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ Malek's Law: Any simple idea will be worded in the most complicated way.