IPFW + Portforwarding
John Hay
jhay at meraka.org.za
Tue Oct 21 04:03:53 UTC 2008
On Mon, Oct 20, 2008 at 11:19:22PM +0200, Leander S. wrote:
> Hi,
>
> I'm trying to set up something like a HotSpot. Goal is it to force
> unregistred users to get redirected to the Captive Portalsite where
> they'll be able to agree my licence therms and get some information ...
> etc. ...
>
> So fact is I need an IPFW rule which forwards Port 80,443,8080 Traffic
> to another Port i.e. 8080 --> where my Apache will already wait for
> serving the Captive Portalsite back to the request.
>
> So I did read the man and saw something like the fwd rule and the Kernel
> Option for it - so I added the option - rcompiled the Kernel and gave my
> Firewall the following fwd rule in an extra script:
>
> ${fwcmd} add 01100 fwd ${LAN_IP},8080 tcp from ${LAN} to any
> 80,443,8080 in via ${LAN_if}
You have to catch it where it is going out and not in. Fwd only works
when packets are out bound.
John
--
John Hay -- John.Hay at meraka.csir.co.za / jhay at FreeBSD.org
More information about the freebsd-ipfw
mailing list