|
Routing issues with Wireless Router to Linux Server with NoCatSplash
I posted this in Wireless Networking but after seeing this Forum decided it should be here as well.
I am having a problem involving NoCatSplash and routing. First I will explain my network layout and then I'll explain the problems.
I have a wireless router on subnet ip 192.168.1.1. The wireless router is flashed with DD-WRT.
The router is acting as a gateway using 192.168.103.202 as the Internet address with 192.168.103.1 as the gateway and 192.168.101.10 as the DNS server. Wireless clients are issued an IP through DHCP.
Here is the traffic flow that currently works. (Works means the requesting node can browse the web successfully).
192.168.1.XX request a web page
192.168.1.1 redirects that request to 192.168.103.8:8080 (DansGuardian)
Dansguardian on 192.168.103.8 process the request and then
The request is passed through the tunnel to XXX.XXX.97.20:8080
XXX.XXX.97.20:8080 (DansGuardian then passes the request to 127.0.0.1:3128 (Squid)
Squid passes the request to XXX.XXX.97.20's Gateway to the Internet.
All this works fine.
OR This works also...
192.168.1.XX request a web page
192.168.1.1 redirects that request to XXX.XXX.97.20:8080 (DansGuardian)
Dansguardian on XXX.XXX.97.20 process the request and then
The request is passed to 127.0.0.1:3128 (Squid)
Squid passes the request to XXX.XXX.97.20's Gateway to the Internet.
Since the above procedure works and as you will read below I can make the NoCat procedure work from a browser, I know I am close to resolving my problems but frankly I have run out of ideas. I have tried Port forwarding, Static routing and using the HTTP Redirection option on the wireless router without success. I am a novice so I may be doing something incorrectly.
When NoCatSplash is added to the mix, it does not work. The traffic flow below shows what that would look like.
192.168.1.XX request a web page
192.168.1.1 redirects that request to XXX.XXX.97.20 (NO PORT)
The request is automatically routed through the tunnel to the XXX.XXX.97.20 Linus server.
XXX.XXX.97.20 then presents a splash page to the requester (Port 5280) If accepted,the URL requested is passed to XXX.XXX.97.20:8080 (DansGuardian) who then passes the request to 127.0.0.1:3128 (Squid)
Squid passes the request to XXX.XXX.97.20's Gateway to the Internet.
NoCatSplash lives on the XXX.XXX.97.20 linux server and when running intercepts any traffic presenting a splash page on Port 5280 accepting the client if the agree button is clicked.
I can make this work perfectly from my PC or a remote PC eg:192.168.101.10 by using the browser Proxy settings, entering XXX.XXX.97.20 with NO PORT.
All the IPtable redirection needed to make NoCatSplash redirect to DansGuardian is in place and works.
If a port is entered I get the error message on the NoCat Console of:
** WARNING **: File not found: /usr/local/share/NoCatSplash/htdocs/http://###.###.97.20:5280/
I have no idea where NoCat is getting this address.
The second issue I am facing is MAC Addresses are used by NoCatSplash's access.fw configuration. If I am on the same subnet as the XXX.XXX.97.20 Server the Mac Address is passed, otherwise it is not. I have worked around this issue for now by writing a piece of code in the access.fw file to assign the correct Mac Address based on the IP.
All this is complicated by NoCat's logging feature not working.
Here is what I need to be able to resolve.
1. I need to know how to get the Wireless Router to redirect all HTTP traffic to XXX.XXX.97.20 with NO PORT.
2. I need to resolve the Mac Address not being passed to the NoCatSplash access.fw routine.
3. If anyone knows how to bring NoCat Logging to life that would be great.
Any help is appreciated.
Happy Holidays
--Joe
|
