[Chilli] small project im working on SESSION management for iptables

David Bird david at coova.com
Sat Apr 21 05:09:01 UTC 2012


Not sure I understand. You want to enforce restrictions on an 802.1x network? Chilli can already do that when using it to proxy hostapd RADIUS (and controlling a bridge that includes the 1x network) .

-------- Original message --------
Subject: [Chilli] small project im working on SESSION management for iptables 
From: Gregory Nietsky <gregory at distrotech.co.za> 
To: chilli at coova.org 
CC:  

Hi all

we have been shipping chilli with our distro for a while now not 
something that is a core feature till
now there is a demand from one customer for multi site hotspots..

for this its awesome.

there is one other application that leans towards something else that 
chilli overlaps that is authorised
access based on 802.1x [hostapd in our case] where users are not allowed 
ip till authorized this is
possible on some higher end switches.

i have been putting a iptables target together SESSION that will allow 
traffic based on session paramaters
time/idle/packets/bytes[i+o] a session is crearted by opening and 
writing to a /dev/file all sessions can be
displayed via a /proc/net file.

once done the idea will be to have the session read from the dev file 
for accounting purposes.

i may patch chilli to use this and will publish this if there is any 
intrest.

Greg

--
This message has been scanned for viruses and
dangerous content by Distrotech Solutions, 
it is believed to be clean.

http://www.distrotech.co.za

_______________________________________________
Chilli mailing list
Chilli at coova.org
http://lists.coova.org/cgi-bin/mailman/listinfo/chilli
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.coova.org/pipermail/chilli/attachments/20120421/53b5d899/attachment.html>


More information about the Chilli mailing list