[MLB-WIRELESS] HotSpot Setup

Craig Sanders cas at taz.net.au
Mon Apr 16 16:04:13 EST 2007 

On Wed, Apr 11, 2007 at 03:39:35PM +1000, gregsonm at aanet.com.au wrote:
> I am interested in setting up a hotspot that is easy to setup and uses off
> the shelf hardware/software.
> 
> The HotSpot must have security so that people must have authorisation to
> use it, either via a ticket/token or password.
> 
> Does anyone out there have any suggestions on how this can be done?

haven't used it myself yet (am planning to trial it this weekend if i get
time), but you might want to have a look at chillispot.

http://www.chillispot.org/

from the web site:

    "ChilliSpot is an open source captive portal or wireless LAN access
     point controller. It is used for authenticating users of a wireless
     LAN. It supports web based login which is today's standard for
     public HotSpots. Authentication, authorization and accounting (AAA)
     is handled by your favorite radius server.

     Binary downloads are available for Redhat, Febora, Debian, Mandrake
     and OpenWRT. ChilliSpot is an ebuild in Gentoo and compiles under
     FreeBSD. Source code under GPL is available for other platforms.

     To build your own HotSpot you need the following items:

         * Internet connection
         * Wireless LAN access point
         * ChilliSpot software for your PC
         * Radius server
         * Web server"

and:

     "It supports two authentication methods:

         * Universal Access Method (UAM)
         * Wireless Protected Access (WPA)

     With UAM the wireless client requests an IP address, and is
     allocated a an IP address by Chilli. When the user starts a web
     browser chilli will capture the tcp connection and redirect to
     browser to an authentication web server. The web server queries the
     user for his username and password. The password is encrypted and
     sent back to chilli.

     With WPA authentication is handled by the access point, and
     subsequently forwarded from the access point to chilli.  If WPA
     is used the connection between the access point and the client is
     encrypted.

     For both UAM and WPA chilli forwards the authentication request to
     a radius server. The radius server sends an access-accept message
     back to chilli if authentication was successful. Otherwise an
     access-reject is sent back."




my wireless AP is a laptop running debian (linux 2.6.20 with hostap
drivers, senao 200mW card connected to an 8dbi omni on a 12m mast on
roof), so getting it all working should be fairly easy.

craig

-- 
craig sanders <cas at taz.net.au>

ps: anyone in inner-north region who can see my node
(cja.wireless.org.au) is welcome to use my debian 'sid' mirror. see
http://surya.taz.net.au/ for more info. mirror is updated daily
direct from ftp.us.debian.org, which is better than you can say for
other australian mirrors, including ftp.au.debian.org

unfortunately, i'm at the bottom of the Merri Creek valley (Coburg, nr
cnr of Bell St & Nicholson St), so even with a 12m mast on my roof, it's
difficult for anyone to see my node.


BOFH excuse #188:

..disk or the processor is on fire.

More information about the Melbwireless mailing list