search
Login   |   About  |   Contact us  |   Glossary  |   Advertising
« Nokia LifeBlog Turns 1.0
Netgear’s HomePlug Gets G »

Captive Portal & 802.1X

Search results for Wi-Fi captive portal turns up lots of interesting and useful links but David Cook, over at Tom’s Networking, may have the best tutorial: How To: Using m0n0wall to create a Wireless Captive Portal.

The m0n0wall [reviewed here] implementation of a Captive Portal was introduced in one of the early betas of m0n0wall v1.1 earlier this year. This was largely the work of Dinesh Nair with assistance from Manuel Kasper and the other m0n0wall developers.


Basically, the Captive Portal is a web page that users/clients are forced to visit before they are granted access to the Internet. This web page can have a number of purposes, but primarily it allows you to:

  • Notify users of your Acceptable Use Policy (AUP) which they have to agree to before they are granted access to the Internet.
  • Tell users anything else relevant to the access they are being granted, ports and services that are restricted, details of sponsors, who they should buy beer for in thanks :-) etc.

Alternatively, the Captive Portal can configured to authenticate users with a UserID and Password against a RADIUS server before they are granted Internet access. RADIUS is a standard protocol for remote user authentication and accounting used in “enterprise” grade networks and by some ISPs.

This has given rise to widespread support for RADIUS by most Unixes and Unix-like operating systems. MS Windows Server also has an implementation called Internet Authentication Services which authenticates against both local accounts and a centralised NT4 Domain or Active Directory.

User Authentication is of more relevance on a private network as a way of controlling access to the Internet. So for this article, I will concentrate on configuring the Captive Portal for unauthenticated access.

WiFiNetNews also points out an excellent article on Open Source 802.1x Deployment by Matthew Gast who interviews two of the principals of the open-source 802.1X project called Open1X.

Gast, who tests 802.1X systems, is also the author of O Reilly s 802.11 Wireless Networks. He interviews Chris Hessing and Terry Simons about their use of 802.1X at the University of Utah.

Other free 802.1X software is available from Radiuz, which combines WPA security with Free Access 802.1X clients, Funk software clients, Microsoft and others.

In relate news, Extreme Tech explains how to Build a Wi-Fi Antenna Out of a Tin Can.

These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Facebook
  • Google
  • StumbleUpon
  • Technorati

Posted by Sam Churchill on Thursday, September 30th, 2004 at 1:36 am.

Something to say?

You must be logged in to post a comment.