Project

General

Profile

Actions

Bug #566

closed

captive portal IP bypass issues

Added by Chris Buechler over 14 years ago. Updated over 14 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Captive Portal
Target version:
Start date:
05/02/2010
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0
Affected Architecture:

Description

A few issues here.

1) It no longer works. Adding a rule with keep-state fixes it, such as:
allow ip from any to table(1) keep-state

the actual tables are correct.

2) The to/from needs to be brought back, that allows functionality that isn't possible without it, and that people currently rely on with 1.2.x. Also "both" should be an allowed option. The ipfw rules should be:
allow ip from table(1) to any keep-state
allow ip from any to table(2) keep-state

where table 1 is the "From" table, table 2 is the "To" table, and "Both" adds the IP to both tables.

Actions

Also available in: Atom PDF