2014-05-01 - Re: [GRASE-Hotspot] router to grase issue…

Header Data

From: Peter Boon <gp***n@gmail.com>
Message Hash: 20538a87433b21b32696459f87d08526e7ecd091b8e3532773eed82dbf410e01
Message ID: <CAEo8sQNYSJwL=BJ8LM6m9d86AHaZOZzhsp2dWYJ=KLyHAHLOUg@mail.gmail.com>
Reply To: <f38522b6-ac3a-4732-9d4f-e5b929681387@grasehotspot.org>
UTC Datetime: 2014-05-01 05:27:45 UTC
Raw Date: Thu, 01 May 2014 14:27:45 +0200

Raw message 

Hi James,



Let me see if I do understand the situation:

Does your users all have fixed ip’s or is there a DHCP server

If the fortigate is the DHCP server for the 192.168.30.1/32 network, I
think you should do Grase the DHCP.



We do have a fortigate 110C having port 2 for the grase network and port
WAN1 for the internet having the following configuration working like a
charm:



Users ßà Router A ßàeth1 – grase               Eth0 – grase ßà port2
fortigate


*Fortigate 110C*

*System / Network /interfaces*

Addressing mode         : manual

Ip/Network Mask           : 10.49.11.253/255.255.255.0

IPv6 Adress                 : ::/0



*Policy / Policy*



Policy Type                  :           Firewall

Policy Subtype             :           Address

Incoming interface        :           Port2

Sourceaddress             :           nw-wireless (
10.49.11.240/255.255.255.255)

Outgoing                      :           wan1 (internet)

Destination Adress       :           any

Service                        :           http / https

Action                          :           accept

Enable NAT



*Grase*

Grase Network Settings

LAN IP Address            : 192.168.30.1

LAN Network Mask       : 255.255.255.0



Lan Network interface   :           eth1


Wan                             :           eth0      (having ipadress
10.49.11.240)



Good luck,



Best regards,

Peter



2014-04-30 21:05 GMT+02:00 James C. <to***n@gmail.com>:

>
> <https://lh3.googleusercontent.com/-zYEzONpCX6U/U2FIIjpvo7I/AAAAAAAAAsg/84NrDUUzbnA/s1600/killmenow.bmp>
> Folks,
>
> I have people on the lan side with ips of 192.168.30.1-254 my WAN port is
> 192.168.10.9.
> PC LAN 192.168.10.8
>       WAN public IP
>
> Now my issue I get to grase and login monitoring users says
>
> 192.168.10.9 and mac of the router.
>
> Once I login EVERYONE doesn't need to.  I am guessing that is I set the
> router without NAT it would have unique IPs and I would be fine?
>
> Unfortunately, the Fortigate only does two things NAT or transparent.  How
> would you solve it?
>
>  --
> This mailing list is for the Grase Hotspot Project http://grasehotspot.org
> ---
> You received this message because you are subscribed to the Google Groups
> "Grase Hotspot" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to gr***e@grasehotspot.org.
> To post to this group, send email to gr***t@grasehotspot.org.
> Visit this group at
> http://groups.google.com/a/grasehotspot.org/group/grase-hotspot/.
> To view this discussion on the web visit
> https://groups.google.com/a/grasehotspot.org/d/msgid/grase-hotspot/f38522b6-ac3a-4732-9d4f-e5b929681387%40grasehotspot.org<https://groups.google.com/a/grasehotspot.org/d/msgid/grase-hotspot/f38522b6-ac3a-4732-9d4f-e5b929681387%40grasehotspot.org?utm_medium=email&utm_source=footer>
> .
>

Thread