Ticket #400 (closed Bug report: worksforme)
Blocking via FirewallRuleSet
Reported by: | dondruce@… | Owned by: | |
---|---|---|---|
Priority: | normal | Milestone: | Not yet assigned to a Milestone |
Component: | Auth server, Other | Version: | |
Keywords: | FirewallRule block | Cc: |
Description
On a captive auth-server, I can get to machines on the LAN even with the following rule set - copied from wifidog.conf file.
This was tested on some live MSF sites with the same result.
# Rule Set: global # # Used for rules to be applied to all other rulesets except locked. FirewallRuleSet? global {
## Use the following if you don't want clients to be able to
access machines on
## the private LAN that gives internet access to wifidog. Note
that this is not
## client isolation; The laptops will still be able to talk to
one another, as
## well as to any machine bridged to the wifi of the router. FirewallRule? block to 192.168.0.0/16 FirewallRule? block to 172.16.0.0/12 FirewallRule? block to 10.0.0.0/8