From owner-freebsd-questions@FreeBSD.ORG  Mon Aug 11 19:23:46 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id E7FF41065677
	for <questions@freebsd.org>; Mon, 11 Aug 2008 19:23:46 +0000 (UTC)
	(envelope-from cyberleo@cyberleo.net)
Received: from mtumishi.cyberleo.net (mtumishi.cyberleo.net [69.72.129.14])
	by mx1.freebsd.org (Postfix) with ESMTP id C189F8FC0C
	for <questions@freebsd.org>; Mon, 11 Aug 2008 19:23:46 +0000 (UTC)
	(envelope-from cyberleo@cyberleo.net)
Received: from [172.16.44.14] (adsl-75-4-144-171.dsl.emhril.sbcglobal.net
	[75.4.144.171])
	by mtumishi.cyberleo.net (Postfix) with ESMTPSA id 90EEE1166D;
	Mon, 11 Aug 2008 15:05:43 -0400 (EDT)
Message-ID: <48A08D83.2060302@cyberleo.net>
Date: Mon, 11 Aug 2008 14:05:39 -0500
From: CyberLeo Kitsana <cyberleo@cyberleo.net>
User-Agent: Thunderbird 2.0.0.16 (X11/20080726)
MIME-Version: 1.0
To: Svein Halvor Halvorsen <svein.h@lvor.halvorsen.cc>
References: <489D855C.6010903@lvor.halvorsen.cc>
	<878wv6tiry.fsf@kobe.laptop>	<20080809141717.GB12190@rebelion.Sisis.de>
	<489DAB24.2090807@lvor.halvorsen.cc>
In-Reply-To: <489DAB24.2090807@lvor.halvorsen.cc>
X-Enigmail-Version: 0.95.6
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: Giorgos Keramidas <keramida@ceid.upatras.gr>,
	Matthias Apitz <matthias.apitz@oclc.org>, questions@freebsd.org
Subject: Re: Free wireless network (access point, router, transparent HTTP
 proxy setup)
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Aug 2008 19:23:47 -0000

Svein Halvor Halvorsen wrote:
> An alternative to the inserted text in all http traffic (and
> probably easier to implement) is just to divert all unknown traffic
> to an internal ip-adress (using the firewall), and setup a web page
> on that address. Then have people click some button, which will
> rewrite the fw rules for that specific machine (white list).

I set something similar on my roommate's wireless network, and routinely 
use it on another server to inform banned users that they are. It's easy 
to set up for either a whitelist or a blacklist. It utilizes FreeBSD's 
IPFW, but is trivial to implement in PF as well.

http://wiki.cyberleo.net/index.php/FirewallRedirect

-- 
Fuzzy love,
-CyberLeo
Technical Administrator
CyberLeo.Net Webhosting
http://www.CyberLeo.Net
<CyberLeo@CyberLeo.Net>

Furry Peace! - http://wwww.fur.com/peace/