Ticket #400 (closed Bug report: worksforme)

Opened 7 years ago

Last modified 7 years ago

Blocking via FirewallRuleSet

Reported by: dondruce@… Owned by:
Priority: normal Milestone: Not yet assigned to a Milestone
Component: Auth server, Other Version:
Keywords: FirewallRule block Cc:

Description

On a captive auth-server, I can get to machines on the LAN even with the following rule set - copied from wifidog.conf file.

This was tested on some live MSF sites with the same result.

# Rule Set: global # # Used for rules to be applied to all other rulesets except locked. FirewallRuleSet? global {

## Use the following if you don't want clients to be able to

access machines on

## the private LAN that gives internet access to wifidog. Note

that this is not

## client isolation; The laptops will still be able to talk to

one another, as

## well as to any machine bridged to the wifi of the router. FirewallRule? block to 192.168.0.0/16 FirewallRule? block to 172.16.0.0/12 FirewallRule? block to 10.0.0.0/8

Change History

Changed 7 years ago by benoitg

What version of the gateway is this?

Changed 7 years ago by dondruce@…

WiFiDog 1.1.3_beta2 as recommended by CQSF

At MSF, we are confused as to what the latest release is. We cannot find 1.1.3-1 and we find 1.1.4 on sourceforge only. We would like to test these, but have not proceeded as we are confused - so we are sticking with the Beta version.

Changed 7 years ago by benoitg

  • status changed from new to closed
  • resolution set to worksforme

Well, as I said on the mailing list you are running a beta version, since which there have been 5 new releases, including two stables, 1.1.4 being current. They are all on sourceforge.

There is no point in reporting problems with a two year old release obsoleted by five versions, especially if you are unwilling to upgrade.

Closing ticket as worksforme, there is no reason to believe such a problem exists with current versions.

Changed 7 years ago by dondruce@…

Closing ticket at my end - unresolved.

RE: Fwd: Re Nov 13 meeting Info 15/11/2007 11:14 AM

Salut Jeff:

On utilise encore les mêmes versions des gateways.

Je t'ai mis les fichiers requis (ceux qu'on utilise) ici, si jamais ils ne sont plus accessibles sur internet:

 http://auth.centreduquebecsansfil.org/gateway/

Le fichier texte "Fichiers.txt" donne une déscription des fichiers disponibles.

Changed 7 years ago by dondruce@…

Wrote my own procedure, used WiFidog? 1.1.4-1 and flashed a new router. Enabled the block class C address line.

Problem solved.

Ticket closed and resolved at my end.

Note: See TracTickets for help on using tickets.