From owner-freebsd-pf@FreeBSD.ORG Fri May 26 18:24:03 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B7CD916AC69 for ; Fri, 26 May 2006 18:24:03 +0000 (UTC) (envelope-from peter@pean.org) Received: from mxfep02.bredband.com (mxfep02.bredband.com [195.54.107.73]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7E6CE43D7E for ; Fri, 26 May 2006 18:23:56 +0000 (GMT) (envelope-from peter@pean.org) Received: from [192.168.1.24] ([213.114.218.56] [213.114.218.56]) by mxfep02.bredband.com with ESMTP id <20060526182355.HDQ16183.mxfep02.bredband.com@[192.168.1.24]>; Fri, 26 May 2006 20:23:55 +0200 Message-ID: <447747B2.9060404@pean.org> Date: Fri, 26 May 2006 20:23:46 +0200 From: =?ISO-8859-1?Q?Peter_Ankerst=E5l?= User-Agent: Mozilla Thunderbird 1.0.7 (X11/20060103) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Kian Mohageri References: <44771631.6050901@pean.org> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: freebsd-pf@freebsd.org Subject: Re: authpf. X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 May 2006 18:24:10 -0000 Kian Mohageri wrote: > Authpf puts authenticated users in a table. You can then handle all > of that traffic to your liking. TYou can have a rule which redirects > only certain HTTP connections to your web server. > > rdr pass on $wi_if inet proto tcp from ! to any port > www -> ($wi_if) > > That should get you started. Keep in mind your wireless clients might > not be able to resolve the addresses of any of those in the first > place. If they can't resolve the names to addresses, they'll just > fail without being redirected to your web server. > > Kian > > On 5/26/06, *Peter Ankerstål* > > wrote: > > I am using authpf for my wifi-network. But I want to redirect all > of the > http-traffic to a webserver to show a "error message" when not > authenticated via authpf. But how to "remove" this rule when I > authenticate? As far as I know authpf just adds rules to the ruleset. > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to > "freebsd-pf-unsubscribe@freebsd.org > " > > This worked perfectly, thank you!