I was actually doing some more reading and found a way to set up a "capture portal" that uses IP tables and a simple php site. Basically the linux's server is connected to the local lan via eth0. Then VPN Server is Lan port is connected to the Linux's servers eth1. The the routing was setup in each device to go to where it should.
Though I'm struggling with the IPtables forwarding. Here is the iptables commands that were run.
Code:
iptables -N internet -t mangle
iptables -t mangle -A PREROUTING -j internet
iptables -t mangle -A internet -i eth0 -j RETURN
iptables -t mangle -A internet -i lo -j RETURN
iptables -t mangle -A internet -m mac --mac-source D8:D3:85:E1:61:90 -j RETURN
iptables -t mangle -A internet -m mac --mac-source D8:D3:85:E1:61:92 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:03:A0:89:CA:D6 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:26:CB:7E:CC:B6 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:26:CB:7E:CC:B2 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:26:CB:7E:CC:B8 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:26:CB:7E:CC:B9 -j RETURN
iptables -t mangle -A internet -m mac --mac-source 00:26:CB:7E:CC:BA -j RETURN
iptables -t mangle -A internet -j MARK --set-mark 99
iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination 192.168.9.205
iptables -A FORWARD -p udp --dport 53 -j ACCEPT
iptables -t filter -A FORWARD -m mark --mark 99 -j DROP
iptables -t filter -A INPUT -p tcp --dport 443 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -p udp --dport 68 -j ACCEPT
iptables -t filter -A INPUT -p udp --dport 67 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -m mark --mark 99 -j DROP
iptables -A FORWARD -i eth1 -o eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
Then i fired off
Code:
echo "1" > /proc/sys/net/ipv4/ip_forward
but the linux box is not forwarding the traffic as it should.