wifidog 配置文件

最新推荐文章于 2024-05-19 10:00:27 发布
最新推荐文章于 2024-05-19 10:00:27 发布
阅读量3.4k 收藏 1
点赞数
分类专栏: WrtNode/openwrt开发

下面回到路由器,编辑wifidog.conf,一般情况下,我们之后配置ExternalInterfaceGatewayInterfaceAuthServer这三项就可以,其他默认。下面是我的配置:

opk安装包:luci-app-wifidog-all.ipk

链接:http://pan.baidu.com/s/1dFfD4M9 密码:qgoo



还有安装完插件后会在/etc/文件目录下释放一个wifidog.conf.example文件!用这个文件替换安装wifidog在/etc/目录下释放出来的wifidog.conf文件!
说明!wifidog.conf配置文件会有这几个接口配置:ExternalInterface、GatewayInterface、GatewayAddress 其中ExternalInterface是你的外网接口!EP:如果你是你是pppoe接入的就填入pppoe-wan ,若是DHCP的话就选择你的网卡定义 eth.x;GatewayInterface是你的内网接口,通常情况下都是填br-lan;GatewayAddress是你的LAN IP这个在上文中已经提到了,这里不做任何的阐述了!

接下来就是配置wifidong登陆的认证账号密码,安装该插件的时候会在/etc/目录下释放wifidog.auth文件!这里就是存放账号密码的地方!里面有一组默认的账号密码!如果想添加就按照上面的格式添加就可以了!

如果你有HTML+CSS甚至是DIV+CSS编程基础和经验,你可以自定义登录认证页面,其htm页面位于/usr/lib/lua/luci/view/wifidog/文件夹下,CSS等资源文件位于/www/wifidog/文件夹下。
注意!

1.密码不要设置过于简单!
2.此插件或多或少有bug,不能用于商业用途!
3.此插件仅测试用




/etc/wifidog.conf

# $Id$
# WiFiDog Configuration file

# Parameter: GatewayID
# Default: default
# Optional
#
# Set this to the node ID on the auth server
# This is used to give a customized login page to the clients and for
# monitoring/statistics purpose. If you run multiple gateways on the same
# machine each gateway needs to have a different gateway id.
# If none is supplied, the mac address of the GatewayInterface interface will be used,
# without the : separators

# GatewayID default

# Parameter: ExternalInterface
# Default: NONE
# Optional
#
# Set this to the external interface (the one going out to the Inernet or your larger LAN).  
# Typically vlan1 for OpenWrt, and eth0 or ppp0 otherwise,
# Normally autodetected

ExternalInterface eth1

# Parameter: GatewayInterface
# Default: NONE
# Mandatory
#
# Set this to the internal interface (typically your wifi interface).    
# Typically br-lan for Openwrt (by default the wifi interface is bridged with wired lan in openwrt)
# and eth1, wlan0, ath0, etc. otherwise
# You can get this interface with the ifconfig command and finding your wifi interface

GatewayInterface br-lan

# Parameter: GatewayAddress
# Default: Find it from GatewayInterface
# Optional
#
# Set this to the internal IP address of the gateway.  Not normally required.

GatewayAddress 192.168.1.1

# Parameter: HtmlMessageFile
# Default: wifidog-msg.html
# Optional
#
# This allows you to specify a custome HTML file which will be used for
# system errors by the gateway. Any $title, $message and $node variables
# used inside the file will be replaced.
#
# HtmlMessageFile /opt/wifidog/etc/wifidog-.html

# Parameter: AuthServer
# Default: NONE
# Mandatory, repeatable
#
# This allows you to configure your auth server(s).  Each one will be tried in order, untill one responds.
# Set this to the hostname or IP of your auth server(s), the path where
# WiFiDog-auth resides in and the port it listens on.
#AuthServer {
#	Hostname                 (Mandatory; Default: NONE)
#	SSLAvailable             (Optional; Default: no; Possible values: yes, no)
#	SSLPort                  (Optional; Default: 443)
#	HTTPPort                 (Optional; Default: 80)
#	Path                     (Optional; Default: /wifidog/ Note:  The path must be both prefixed and suffixed by /.  Use a single / for server root.)
#   LoginScriptPathFragment  (Optional; Default: login/? Note:  This is the script the user will be sent to for login.)
#   PortalScriptPathFragment (Optional; Default: portal/? Note:  This is the script the user will be sent to after a successfull login.)
#   MsgScriptPathFragment    (Optional; Default: gw_message.php? Note:  This is the script the user will be sent to upon error to read a readable message.)
#   PingScriptPathFragment    (Optional; Default: ping/? Note:  This is the script the user will be sent to upon error to read a readable message.)
#   AuthScriptPathFragment    (Optional; Default: auth/? Note:  This is the script the user will be sent to upon error to read a readable message.)
#}
AuthServer {
	Hostname 192.168.1.1
	SSLAvailable no
	HTTPPort 80
	Path /cgi-bin/luci/
	LoginScriptPathFragment login/?
	PortalScriptPathFragment portal/?
	MsgScriptPathFragment msg/?
	PingScriptPathFragment ping/?
	AuthScriptPathFragment auth/?
}

#AuthServer {
#    Hostname auth.ilesansfil.org
#    SSLAvailable yes
#    Path /
#}

#AuthServer {
#    Hostname auth2.ilesansfil.org
#    SSLAvailable yes
#    Path /
#}

# Parameter: Daemon
# Default: 1
# Optional
#
# Set this to true if you want to run as a daemon
# Daemon 1

# Parameter: GatewayPort
# Default: 2060
# Optional
#
# Listen on this port
# GatewayPort 2060

# Parameter: ProxyPort
# Default: 0 (disable)
# Optional
#
# Redirect http traffic of knowns & probations users
# to a local transparent proxy listening on ProxyPort port
# ProxyPort 0

# Parameter: HTTPDName
# Default: WiFiDog
# Optional
#
# Define what name the HTTPD server will respond
# HTTPDName WiFiDog

# Parameter: HTTPDMaxConn
# Default: 10
# Optional
#
# How many sockets to listen to
# HTTPDMaxConn 10

# Parameter: HTTPDRealm
# Default: WiFiDog
# Optional
#
# The name of the HTTP authentication realm. This only used when a user
# tries to access a protected WiFiDog internal page. See HTTPUserName.
# HTTPDRealm WiFiDog

# Parameter: HTTPDUserName / HTTPDPassword
# Default: unset
# Optional
#
# The gateway exposes some information such as the status page through its web
# interface. This information can be protected with a username and password,
# which can be set through the HTTPDUserName and HTTPDPassword parameters.
# HTTPDUserName admin
# HTTPDPassword secret

# Parameter: CheckInterval
# Default: 60
# Optional
#
# How many seconds should we wait between timeout checks.  This is also
# how often the gateway will ping the auth server and how often it will
# update the traffic counters on the auth server.  Setting this too low
# wastes bandwidth, setting this too high will cause the gateway to take 
# a long time to switch to it's backup auth server(s).

# CheckInterval 60

# Parameter: ClientTimeout
# Default: 5
# Optional
#
# Set this to the desired of number of CheckInterval of inactivity before a client is logged out
# The timeout will be INTERVAL * TIMEOUT
ClientTimeout 5

# Parameter: TrustedMACList
# Default: none
# Optional
#
# Comma separated list of MAC addresses who are allowed to pass
# through without authentication
#TrustedMACList 00:00:DE:AD:BE:AF,00:00:C0:1D:F0:0D

# Parameter: FirewallRuleSet
# Default: none
# Mandatory
#
# Groups a number of FirewallRule statements together.

# Parameter: FirewallRule
# Default: none
# 
# Define one firewall rule in a rule set.

# Rule Set: global
# 
# Used for rules to be applied to all other rulesets except locked.
FirewallRuleSet global {

    # FirewallRule syntax:
    # FirewallRule (block|drop|allow|log|ulog) [(tcp|udp|icmp) [port X]] [to IP/CIDR]

    ## To block SMTP out, as it's a tech support nightmare, and a legal liability
    #FirewallRule block tcp port 25
    
    ## Use the following if you don't want clients to be able to access machines on 
    ## the private LAN that gives internet access to wifidog.  Note that this is not
    ## client isolation;  The laptops will still be able to talk to one another, as
    ## well as to any machine bridged to the wifi of the router.
    # FirewallRule block to 192.168.0.0/16
    # FirewallRule block to 172.16.0.0/12
    # FirewallRule block to 10.0.0.0/8
    
    ## This is an example ruleset for the Teliphone service.
    #FirewallRule allow udp to 69.90.89.192/27
    #FirewallRule allow udp to 69.90.85.0/27
    #FirewallRule allow tcp port 80 to 69.90.89.205

    ## Use the following to log or ulog the traffic you want to allow or block.
    # For OPENWRT: use of these feature requires modules ipt_LOG or ipt_ULOG present in dependencies
    # iptables-mod-extra and iptables-mod-ulog (to adapt it to the linux distribution). 
    # Note: the log or ulog rule must be passed before, the rule you want to match.
    # for openwrt: use of these feature requires modules ipt_LOG or ipt_ULOG present in dependencies
    # iptables-mod-extra and iptables-mod-ulog
    # For example, you want to log (ulog works the same way) the traffic allowed on port 80 to the ip 69.90.89.205:
    #FirewallRule log tcp port 80 to 69.90.89.205
    #FirewallRule allow tcp port 80 to 69.90.89.205
    # And you want to know, who matche your block rule:
    #FirewallRule log to 0.0.0.0/0
    #FirewallRule block to 0.0.0.0/0
}

# Rule Set: validating-users
#
# Used for new users validating their account
FirewallRuleSet validating-users {
    FirewallRule allow to 0.0.0.0/0
}

# Rule Set: known-users
#
# Used for normal validated users.
FirewallRuleSet known-users {
    FirewallRule allow to 0.0.0.0/0
}

# Rule Set: unknown-users
#
# Used for unvalidated users, this is the ruleset that gets redirected.
#
# XXX The redirect code adds the Default DROP clause.
FirewallRuleSet unknown-users {
    FirewallRule allow udp port 53
    FirewallRule allow tcp port 53
    FirewallRule allow udp port 67
    FirewallRule allow tcp port 67
}

# Rule Set: locked-users
#
# Not currently used
FirewallRuleSet locked-users {
    FirewallRule block to 0.0.0.0/0
}
然后直接运行 

/etc/init.d/wifidog enable

/etc/init.d/wifidog start

wifidog

具体配置


欢迎关注并加入物联网行业联盟,积累行业人脉和资源。


镖叔
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
wifidog.conf配置文件
07-27
wifidog.conf配置文件,没有OPENWRT的WIFIDOG的图形,可以下载这个文件,上传到/ETC/文件下面就可以认证了
wifidog配置文件详解
Web_My_Dream的博客
04-17 1668
1. 在这个配置文件里面第一格不能是空格,否则就会出错。 2. GatewayAddress  192.168.1.1 //路由器地址 3. GatewayID 123456789 //与服务器authpuppy中对应 4. ExternalInterface eth0.2  //外网接口,这个是wan口,连接到Internet的接口 5. GatewayInterface  br-lan...
探索ApFree WiFiDog:打造高效的HTTP(s)无线网络准入控制方案
最新发布
gitblog_00070的博客
05-19 572
探索ApFree WiFiDog:打造高效的HTTP(s)无线网络准入控制方案 项目地址:https://gitcode.com/liudf0716/apfree-wifidog 项目介绍 ApFree WiFiDog是一款基于OpenWrt平台的高性能HTTP(s)准入控制系统。这个开源项目旨在帮助管理员实现高并发、高流量环境下的无线网络用户认证,支持HTTP和HTTPS协议。通过...
wifidog 配置中文说明
weixin_30859423的博客
07-06 311
#网关IDGatewayID default#外部网卡ExternalInterface eth0#无线网卡GatewayInterface eth0#无线IPGatewayAddress 192.168.1.1#路由状态HTMLHtmlMessageFile wifidog-msg.html #验证服务器#AuthServer {# Hostname (Ma...
wifidog认证
caoshunxin01的专栏
02-23 512
首先简单介绍一下什么是Portal认证,Portal认证,通常也会叫Web认证,未认证用户上网时,设备强制用户登录到特定站点,用户可以免费访问其中的服务。当用户需要使用互联网中的其它信息时,必须在门户网站进行认证,只有认证通过后才可以使用互联网资源。现金很多中国移动CMCC、中国联通、中国电信ChinaNet的WIFI都使用这种认证接入方式。 在OpenWRT上实现Portal认证,实际上
openwrt下的wifidog安装及web认证界面设置
01-21
1、因手头有一个7620N芯片的大功率无线路由器(万兴达WR5508商用路由),由于要使用无线广告营销功能,但在网上搜寻了很久,都没找到合适的固件。 2、可能有人会说支持7620方案的广告营销固件多的是,但这款路由器是大功率的,500mW,刷了海蜘蛛、RippleOS以及其他有wifidog功能的固件,无线超过3-5米就没有信号了。只有刷了openwrt和PandoraBox固件,无线信号超级强大,达到26db。 3、因此,只能使用openwrt和PandoraBox固件,查询了多种方法,都是需要对固件进行编译的,由于小弟不懂编程,只有通过网友们的安装配置经验进行参考,在刷好的固件基础上安装wifidogLuci界面的配置,如果哪位高手能将Luci-wifidog源码打包成ipk安装包,小弟万分感谢!此方法仅供想玩wifidog的朋友参考,编程高手勿拍砖就行了! 方法: 1、安装wifidog(前提是路由器必须接入互联网) [root@PandoraBox:/root]#opkg update [root@PandoraBox:/root]#opkg install wifidog [root@PandoraBox:/root]#/etc/init.d/wifidog enable [root@PandoraBox:/root]#/etc/init.d/wifidog start 备注:安装wifidog可能需要依赖包 libc iptables-mod-extra iptables-mod-ipopt iptables-mod-nat-extra libpthread 2、安装配置luci-wifidogluci-wifidog源码是在网上找的,别人已经设置好了的,如果不喜欢,自行到官网下) (1)使用winscp把源码controller文件夹下的内容复制到/usr/lib/lua/luci里目录的controller下,model放到model下 (2)源码root文件夹下的内容复制到root/etc下各自相应的目录下 (3)源码ipkg文件夹下的内容复制到/usr/lib/opkg目录下 (4)源码makefile文件复制到/etc下并给xxx权限 (5)最后重启路由器。
wifidog实例
01-03
接着,配置wifidog配置文件,指定认证服务器、接口设置、日志文件等。最后,启动wifidog服务并测试连接。 **5. 学习要点** 学习wifidog实例,你可以了解以下几点: - **网络访问控制机制**:理解wifidog如何拦截...
wifidog_authserver_demo-wifidog_v1.zip
09-30
wifidog_authserver_demo-wifidog_v1.zip中,我们可以找到以下关键组件和配置文件: 1. **Wi-FiDog Gateway**:这是部署在无线网络接入点或路由器上的组件,负责拦截和重定向未认证的网络请求,并与认证服务器...
上网认证配置文件
03-07
上网认证wifidog配置文件,简单修改后即可使用
OpenWrt中wifidog的配置及各节点页面参数【转】
shareinfo2018
09-05 2035
来自:http://www.cnblogs.com/milton/p/6335414.html 修改/etc/wifidog.conf, 只需要修改文件的前半部分, 其他都保持默认 GatewayID default GatewayInterface br-lan GatewayAddress 192.168.1.1 AuthServer { Hostname au
luci-app-wifidog:这个包包含 wifidogLuCI 配置页面
06-27
luci-app-wifidog 这个包包含 wifidogLuCI 配置页面。 特征 wifidogLuci配置页面 带有 lighttp 和 php5 的内置本地身份验证服务器 与远程服务器同步 安装 Git 在你的package目录中克隆这个存储库。 make menuconfig并在 LUCI 类别中选择 luci-app-wifidog 并保存。 使用单个包make luci-app-wifidog/compile 。
搭建wifidog认证平台v0.1.pdf
01-10
集客云搭建wifidog的文档后台编程案例代码,集客云平台是一个智能路由器营销平台,可以自行定制云端后台效果
apfree_wifidog:高性能,轻量级的HTTP强制门户门户解决方案
05-02
ApFree WiFiDog:一种用于HTTP的高性能强制门户解决方案 ApFree WiFiDog是用于HTTP的高性能强制门户解决方案,主要用于平台。 apfree-wifidog的增强 实际上,标题应该是我们选择apfree-wifidog的原因,原因如下: 稳定的 apfree-wifidog被广泛应用于商业场景中的数以万计的openwrt设备中。 为了提高其稳定性,我们用api而不是fork调用重写了所有iptables规则,这很容易在多线程前叉运行环境中导致死锁。 我们还重新编写了代码,并用libevent2替换了libhttpd(多年以来一直未使用过) 表现 因为libevent2支持epoll,所以apfree-wifidog的性能要比原始wifidog更好,基准目录中有一些基准数据可以证明这一点 HTTP重定向 apfree-wifidog支持https重定向,在当前
openwrt包 iptables-mod-extra_
05-20
openwrt中安装wifidog的先决条件
wifidog认证php,wifidog 认证服务器如何授权和使用用户配置文件
weixin_31347649的博客
03-11 180
创建配置文件1.创建必要的内容类型过滤器这些数据类型在配置文件中可能会用到。每个内容类型过滤器的格式是标准陈列:在内容类型执行的一组函数。格式是array(array(callback_funct, array(callback_funct_parameters))注意的是callback_funct表示对象已被验证,所以它没有静态的classname。例如:获取文档子类别的Simple内容类型,...
wifidog 认证服务器如何授权和使用用户配置文件
ahxxx2的专栏
03-25 662
创建配置文件 1.创建必要的内容类型过滤器 这些数据类型在配置文件中可能会用到。 每个内容类型过滤器的格式是标准陈列:在内容类型执行的一组函数。格式是array(array(callback_funct, array(callback_funct_parameters)) 注意的是callback_funct表示对象已被验证,所以它没有静态的classname。 例如
wifidog java_wifidog 配置中文说明
weixin_33923059的博客
02-21 119
#网关IDGatewayID default#外部网卡ExternalInterface eth0#无线网卡GatewayInterface eth0#无线IPGatewayAddress 192.168.1.1#路由状态HTMLHtmlMessageFile wifidog-msg.html#验证服务器#AuthServer {# Hostname (Man...
手工添加的LUCI WIFIDOG能保存UCI配置,但是不启动wifidog,问题出在init.d下的wifidog未enable
idjoy的专栏
01-10 2423
/etc/init.d/wifidog enable 即可
openwrt配置wifidog
09-17
对于OpenWrt配置wifidog,您可以按照以下步骤进行操作: 1. 首先,确保已经安装了OpenWrt固件并正确连接到网络。 2. 使用SSH登录到OpenWrt的终端。 3. 在终端中运行以下命令安装wifidog: ``` opkg update opkg install wifidog ``` 4. 安装完成后,编辑wifidog配置文件`/etc/config/wifidog`,可以使用vi或其他文本编辑器打开该文件: ``` vi /etc/config/wifidog ``` 5. 在配置文件中,您需要设置一些参数,包括: - `interface`:指定用于认证的网络接口。 - `gateway_interface`:指定路由器的网关接口。 - `auth_server`:指定认证服务器的地址。 - `auth_server_port`:指定认证服务器的端口号。 - `auth_server_shared_secret`:指定与认证服务器共享的密钥。 根据您的网络环境和需求,适当地修改这些参数。 6. 保存并关闭配置文件。 7. 启动wifidog服务: ``` /etc/init.d/wifidog start ``` 8. 确保wifidog服务在系统启动时自动启动: ``` /etc/init.d/wifidog enable ``` 现在,您已经成功配置了OpenWrt的wifidog。当用户连接到您的无线网络时,他们将被重定向到认证页面进行身份验证。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值