Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > Two clients with same IP Address behind a captive portal?

Reply
Thread Tools Display Modes

Two clients with same IP Address behind a captive portal?

 
 
M. Simioni
Guest
Posts: n/a

 
      10-02-2006, 02:42 PM
I'm trying to build up a box that acts like a transparent proxy
(similar to SQUID) and a captive portal.

I would like to use a portal like Chilliportal, but i have a question
that i think it's more linux-stack-related than captive-portal related;
the problem is:

I would like that clients with both DHCP IP address and STATIC IP
address can use this system.

So that:
- When a DHCP CLIENT connects:
- He receives the IP ADDRESS
- He tries to connect to "www.google.com"
- The captive portal catch che connection and redirect the user to
an html page for authentication
- and so on...
- When a STATIC IP CLIENT connects:
- My box replies to every ARP REQUEST sent by the client in search
for his gateway
- The client tries to connect to "www.google.com"
- The captive portal catch che connection and redirect the user to
an html page for authentication
- and so on...

But here are the troubles. What happens if two STATIC IP CLIENTS have
the same address?

Let's assume that their own stacks will never collide: i can separate
them with VLAN switches, so there's no problem, they will never see
each other traffic, and they even don't know that there are two
identical IP ADDRESSES on the same network.
The problem is on the linux stack of my box: what happens to the ARP
tables ? The ARP daemon sees two different MAC ADDRESS under the same
IP address. And the NAT daemon will NAT back the connections in the
wrong way.

I was thinking about a solution like this:
There are two different daemons:
- The DHCP daemon: acts like a normal DHCP daemon
- The S(tatic)HCP daemon: when a packet is received from an IP ADDRESS
that is not in the DHCP lease list, the IP SOURCE ADDRESS of the packet
entering the stack is changed, and the box assigns a new address taken
from a "SHCP lease list", assigning him the corresponding MAC ADDRESS.
So that the rest of the chain will never see two address colliding, and
the NAT can work with the new IP address.

What do u think about this? How can this be realized? There is a
simpler way to perform this task?

Thank you in advance,
Marco
 
Reply With Quote
 
 
 
Reply

« 0x800ccc0f Suse 9.3 qmail vpopmail 5.4.17 | VLAN »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Radius or captive portal? nick Wireless Internet 3 10-04-2006 05:08 PM
Implementing a captive portal with iptables. jaXvi Linux Networking 4 06-12-2006 09:08 PM
question on captive portal rhltechie@gmail.com Wireless Internet 4 01-05-2006 08:25 PM
Captive Portal for Windows Peter Phillips Wireless Internet 4 11-09-2004 04:44 PM
WISP / Captive Portal lists Wireless Internet 4 07-14-2004 03:43 AM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11