root/trunk/wifidog/contrib/build-openwrt-whiterussianipk/wifidog/files/wifidog.conf @ 1340

Revision 1189, 4.5 KB (checked in by benoitg, 6 years ago)
  • contrib/ Add contrib dir to collect the scripts and other code distributed with, but not really part of wifidog.
  • Include the scripts used to build a ipkg on Openwrt RC6 and 0.9
  • Modify the build system to finally be able to build wifidog directly from the wifidog directory using the same files

used to make the official .ipk, without having to copy ANYTHNG to the openwrt SDK.
At last, there is now a new target: make ipk make ipk OPENWRTSDK=path_to_openwrt_sdk

  • ipk/ Removed the obsolete OpenWRT RC4 scripts
  • README.openwrt: Update
  • scripts/openwrt/ remove obsolete dir.
Line 
1# $Id: wifidog.conf 1162 2007-01-06 23:51:02Z benoitg $
2# WiFiDog Configuration file
3
4# Parameter: GatewayID
5# Default: default
6# Optional
7#
8# Set this to the node ID on the auth server
9# this is used to give a customized login page to the clients and for
10# monitoring/statistics purpose
11# If none is supplied, the mac address of the GatewayInterface interface will be used,
12# without the : separators
13
14# GatewayID default
15
16# Parameter: ExternalInterface
17# Default: NONE
18# Optional
19#
20# Set this to the external interface.  Typically vlan1 for OpenWrt, and eth0 or ppp0 otherwise,
21# Normally autodetected
22
23# ExternalInterface eth0
24
25# Parameter: GatewayInterface
26# Default: NONE
27# Mandatory
28#
29# Set this to the internal interface.    Typically br0 for OpenWrt, and eth1 otherwise
30
31GatewayInterface br0
32
33# Parameter: GatewayAddress
34# Default: Find it from GatewayInterface
35# Optional
36#
37# Set this to the internal IP address of the gateway
38
39# GatewayAddress 192.168.1.1
40
41# Parameter: AuthServer
42# Default: NONE
43# Mandatory, repeatable
44#
45# This allows you to configure your auth server(s).  Each one will be tried in order, untill one responds.
46# Set this to the hostname or IP of your auth server(s), the path where
47# WiFiDog-auth resides in and the port it listens on.
48#AuthServer {
49#       Hostname      (Mandatory; Default: NONE)
50#       SSLAvailable  (Optional; Default: no; Possible values: yes, no)
51#       SSLPort 443   (Optional; Default: 443)
52#       HTTPPort 80   (Optional; Default: 80)
53#       Path wifidog/ (Optional; Default: /wifidog/ Note:  The path must be both prefixed and suffixed by /.  Use a single / for server root.)
54#}
55
56#AuthServer {
57#    Hostname auth.ilesansfil.org
58#    SSLAvailable yes
59#    Path /
60#}
61
62#AuthServer {
63#    Hostname auth2.ilesansfil.org
64#    SSLAvailable yes
65#    Path /
66#}
67
68# Parameter: Portal
69# Default: none
70# Optional
71#
72# Set this to a URL for your portal, if you run without an auth server
73# Portal http://www.ilesansfil.org/
74
75# Parameter: Daemon
76# Default: 1
77# Optional
78#
79# Set this to true if you want to run as a daemon
80# Daemon 1
81
82# Parameter: GatewayPort
83# Default: 2060
84# Optional
85#
86# Listen on this port
87# GatewayPort 2060
88
89# Parameter: HTTPDName
90# Default: WiFiDog
91# Optional
92#
93# Define what name the HTTPD server will respond
94# HTTPDName WiFiDog
95
96# Parameter: HTTPDMaxConn
97# Default: 10
98# Optional
99#
100# How many sockets to listen to
101# HTTPDMaxConn 10
102
103# Parameter: CheckInterval
104# Default: 60
105# Optional
106#
107# How many seconds should we wait between timeout checks.  This is also
108# how often the gateway will ping the auth server and how often it will
109# update the traffic counters on the auth server.  Setting this too low
110# wastes bandwidth, setting this too high will cause the gateway to take
111# a long time to switch to it's backup auth server(s).
112
113# CheckInterval 60
114
115# Parameter: ClientTimeout
116# Default: 5
117# Optional
118#
119# Set this to the desired of number of CheckInterval of inactivity before a client is logged out
120# The timeout will be INTERVAL * TIMEOUT
121ClientTimeout 5
122
123# Parameter: TrustedMACList
124# Default: none
125# Optional
126#
127# Comma separated list of MAC addresses who are allowed to pass
128# through without authentication
129#TrustedMACList 00:00:DE:AD:BE:AF,00:00:C0:1D:F0:0D
130
131# Parameter: FirewallRuleSet
132# Default: none
133# Mandatory
134#
135# Groups a number of FirewallRule statements together.
136
137# Parameter: FirewallRule
138# Default: none
139#
140# Define one firewall rule in a rule set.
141
142# Rule Set: global
143#
144# Used for rules to be applied to all other rulesets except locked.
145FirewallRuleSet global {
146    # This is the default config for the Teliphone service.
147    #FirewallRule allow udp to 69.90.89.192/27
148    #FirewallRule allow udp to 69.90.85.0/27
149    #FirewallRule allow tcp port 80 to 69.90.89.205
150    # To block SMTP out, as it's a tech support nightmare, and a legal liability
151    #FirewallRule block tcp port 25
152}
153
154# Rule Set: validating-users
155#
156# Used for new users validating their account
157FirewallRuleSet validating-users {
158    FirewallRule allow to 0.0.0.0/0
159}
160
161# Rule Set: known-users
162#
163# Used for normal validated users.
164FirewallRuleSet known-users {
165    FirewallRule allow to 0.0.0.0/0
166}
167
168# Rule Set: unknown-users
169#
170# Used for unvalidated users, this is the ruleset that gets redirected.
171#
172# XXX The redirect code adds the Default DROP clause.
173FirewallRuleSet unknown-users {
174    FirewallRule allow udp port 53
175    FirewallRule allow tcp port 53
176    FirewallRule allow udp port 67
177    FirewallRule allow tcp port 67
178}
179
180# Rule Set: locked-users
181#
182# Used for users that have been locked out.
183FirewallRuleSet locked-users {
184    FirewallRule block to 0.0.0.0/0
185}
Note: See TracBrowser for help on using the browser.