Jump to content
Калькуляторы

Проблема при создании hotspot Помогите настроить chili.conf

Есть роутер Dir 320 (прошивка OpenWrt Kamikaze - With X-Wrt Extensions 8.09). Установлен модуль chilispot (config файл настроен через dhotspot.com). Исходники файла chilli.conf (см. ниже)....

 

Проблема в следующем роутер не идет через страничку авторизации, а просто отправляет всех желающих в инет :(

 

Настройки котрые необходимо внести в файл (с сайта hotspot ):

 

 

Chillispot: enable

Seperate Wifi from the LAN Bridge: enable

Primary Radius Server IP/DNS: host.dhotspot.com

Backup Radius Server IP/DNS: backup.dhotspot.com

DNS IP: Your ISP DNS Address Details

Remote Network: 192.168.182.0/24

Redirect URL: http://www.dhotspot.com/member/index.php/DH75003/

Shared Key: testing123

DHCP Interface: WLAN

Radius NAS ID: DH75003

UAM Secret: DH75003

UAM Any DNS

UAM Allowed: dhotspot.com

MACAuth disable

 

 

 

Непосредственно сам файл:

 

 

 

##############################################################################

#

# Sample ChilliSpot configuration file

#

##############################################################################

 

# TAG: fg

# Include this flag if process is to run in the foreground

#fg

 

# TAG: debug

# Include this flag to include debug information.

#debug

 

# TAG: interval

# Re-read configuration file at this interval. Will also cause new domain

# name lookups to be performed. Value is given in seconds.

#interval 3600

 

# TAG: pidfile

# File to store information about the process id of the program.

# The program must have write access to this file/directory.

#pidfile /var/run/chilli.pid

 

# TAG: statedir

# Directory to use for nonvolatile storage.

# The program must have write access to this directory.

# This tag is currently ignored

#statedir ./

 

 

# TUN parameters

 

# TAG: net

# IP network address of external packet data network

# Used to allocate dynamic IP addresses and set up routing.

# Normally you do not need to uncomment this tag.

#net 192.168.182.0/24

 

# TAG: dynip

# Dynamic IP address pool

# Used to allocate dynamic IP addresses to clients.

# If not set it defaults to the net tag.

# Do not uncomment this tag unless you are an experienced user!

dynip 192.168.182.0/24

 

# TAG: statip

# Static IP address pool

# Used to allocate static IP addresses to clients.

# Do not uncomment this tag unless you are an experienced user!

#statip 192.168.182.0/24

 

 

# TAG: dns1

# Primary DNS server.

# Will be suggested to the client.

# If omitted the system default will be used.

# Normally you do not need to uncomment this tag.

#dns1 172.16.0.5

 

# TAG: dns2

# Secondary DNS server.

# Will be suggested to the client.

# If omitted the system default will be used.

# Normally you do not need to uncomment this tag.

#dns2 172.16.0.6

 

# TAG: domain

# Domain name

# Will be suggested to the client.

# Normally you do not need to uncomment this tag.

#domain key.chillispot.org

 

# TAG: ipup

# Script executed after network interface has been brought up.

# Executed with the following parameters: <devicename> <ip address>

# <mask>

# Normally you do not need to uncomment this tag.

#ipup /etc/chilli.ipup

 

# TAG: ipdown

# Script executed after network interface has been taken down.

# Executed with the following parameters: <devicename> <ip address>

# <mask>

# Normally you do not need to uncomment this tag.

#ipdown /etc/chilli.ipdown

 

# TAG: conup

# Script executed after a user has been authenticated.

# Executed with the following parameters: <devicename> <ip address>

# <mask> <user ip address> <user mac address> <filter ID>

# Normally you do not need to uncomment this tag.

#conup /etc/chilli.conup

 

# TAG: conup

# Script executed after a user has disconnected.

# Executed with the following parameters: <devicename> <ip address>

# <mask> <user ip address> <user mac address> <filter ID>

# Normally you do not need to uncomment this tag.

#conup /etc/chilli.condown

 

 

# Radius parameters

 

# TAG: radiuslisten

# IP address to listen to

# Normally you do not need to uncomment this tag.

#radiuslisten 127.0.0.1

 

# TAG: radiusserver1

# IP address of radius server 1

# For most installations you need to modify this tag.

radiusserver1 host.dhotspot.com

 

# TAG: radiusserver2

# IP address of radius server 2

# If you have only one radius server you should set radiusserver2 to the

# same value as radiusserver1.

# For most installations you need to modify this tag.

radiusserver2 backup.dhotspot.com

 

# TAG: radiusauthport

# Radius authentication port

# The UDP port number to use for radius authentication requests.

# The same port number is used for both radiusserver1 and radiusserver2.

# Normally you do not need to uncomment this tag.

#radiusauthport 1812

 

# TAG: radiusacctport

# Radius accounting port

# The UDP port number to use for radius accounting requests.

# The same port number is used for both radiusserver1 and radiusserver2.

# Normally you do not need to uncomment this tag.

#radiusacctport 1813

 

# TAG: radiussecret

# Radius shared secret for both servers

# For all installations you should modify this tag.

radiussecret testing123

 

# TAG: radiusnasid

# Radius NAS-Identifier

# Normally you do not need to uncomment this tag.

#radiusnasid nas01

 

# TAG: radiusnasip

# Radius NAS-IP-Address

# Normally you do not need to uncomment this tag.

#radiusnasip 127.0.0.1

 

# TAG: radiuscalled

# Radius Called-Station-ID

# Normally you do not need to uncomment this tag.

#radiuscalled 00133300

 

# TAG: radiuslocationid

# WISPr Location ID. Should be in the format: isocc=<ISO_Country_Code>,

# cc=<E.164_Country_Code>,ac=<E.164_Area_Code>,network=<ssid/ZONE>

# Normally you do not need to uncomment this tag.

#radiuslocationid isocc=us,cc=1,ac=408,network=ACMEWISP_NewarkAirport

 

# TAG: radiuslocationname

# WISPr Location Name. Should be in the format:

# <HOTSPOT_OPERATOR_NAME>,<LOCATION>

# Normally you do not need to uncomment this tag.

#radiuslocationname ACMEWISP,Gate_14_Terminal_C_of_Newark_Airport

 

 

# Radius proxy parameters

 

# TAG: proxylisten

# IP address to listen to

# Normally you do not need to uncomment this tag.

#proxylisten 10.0.0.1

 

# TAG: proxyport

# UDP port to listen to.

# If not specified a port will be selected by the system

# Normally you do not need to uncomment this tag.

#proxyport 1645

 

# TAG: proxyclient

# Client(s) from which we accept radius requests

# Normally you do not need to uncomment this tag.

#proxyclient 10.0.0.1/24

 

# TAG: proxysecret

# Radius proxy shared secret for all clients

# If not specified defaults to radiussecret

# Normally you do not need to uncomment this tag.

#proxysecret testing123

 

 

# Remote configuration management

 

# TAG: confusername

# If confusername is specified together with confpassword chillispot

# will at regular intervals specified by the interval option query the

# radius server for configuration information.

# Normally you do not need to uncomment this tag.

#confusername conf

 

# TAG: confpassword

# If confusername is specified together with confpassword chillispot

# will at regular intervals specified by the interval option query the

# radius server for configuration information.

# Normally you do not need to uncomment this tag.

#confpassword secret

 

 

# DHCP Parameters

 

# TAG: dhcpif

# Ethernet interface to listen to.

# This is the network interface which is connected to the access points.

# In a typical configuration this tag should be set to eth1.

dhcpif wl0

 

# TAG: dhcpmac

# Use specified MAC address.

# An address in the range 00:00:5E:00:02:00 - 00:00:5E:FF:FF:FF falls

# within the IANA range of addresses and is not allocated for other

# purposes.

# Normally you do not need to uncomment this tag.

#dhcpmac 00:00:5E:00:02:00

 

# TAG: lease

# Time before DHCP lease expires

# Normally you do not need to uncomment this tag.

#lease 600

 

 

# Universal access method (UAM) parameters

 

# TAG: uamserver

# URL of web server handling authentication.

uamserver dhotspot.com

 

# TAG: uamhomepage

# URL of welcome homepage.

# Unauthenticated users will be redirected to this URL. If not specified

# users will be redirected to the uamserver instead.

# Normally you do not need to uncomment this tag.

uamhomepage http://www.dhotspot.com/member/index.php/DH75003/

 

# TAG: uamsecret

# Shared between chilli and authentication web server

uamsecret DH75003

 

# TAG: uamlisten

# IP address to listen to for authentication requests

# Do not uncomment this tag unless you are an experienced user!

#uamlisten 192.168.182.1

 

# TAG: uamport

# TCP port to listen to for authentication requests

# Do not uncomment this tag unless you are an experienced user!

#uamport 3990

 

# TAG: uamallowed

# Comma separated list of domain names, IP addresses or network segments

# the client can access without first authenticating.

# It is possible to specify this tag multiple times.

# Normally you do not need to uncomment this tag.

uamallowed 192.168.182.0/24

 

# TAG: uamanydns

# If this flag is given unauthenticated users are allowed to use

# any DNS server.

# Normally you do not need to uncomment this tag.

#uamanydns

 

 

# MAC authentication

 

# TAG: macauth

# If this flag is given users will be authenticated only on their MAC

# address.

# Normally you do not need to uncomment this tag.

#macauth

 

# TAG: macallowed

# List of MAC addresses.

# The MAC addresses specified in this list will be authenticated only on

# their MAC address.

# This tag is ignored if the macauth tag is given.

# It is possible to specify this tag multiple times.

# Normally you do not need to uncomment this tag.

#macallowed 00-0A-5E-AC-BE-51,00-30-1B-3C-32-E9

 

# TAG: macpasswd

# Password to use for MAC authentication.

# Normally you do not need to uncomment this tag.

#macpasswd password

 

# TAG: macsuffix

# Suffix to add to MAC address in order to form the username.

# Normally you do not need to uncomment this tag.

#macsuffix suffix

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this