2014-12-02 - Re: Grase Hotspot working with DD-WRT routers in remote locations.

Header Data

From: António Chimuzu <ch***u@gmail.com>
Message Hash: 32bcee358b1760861f6af9a1eb6a560a134f08cf38996b146895793efff86042
Message ID: <c36d2e76-109d-401f-a8fa-f11ce7b974a8@grasehotspot.org>
Reply To: <fdecd37a-fa21-4d62-a6b5-50601889ecb6@grasehotspot.org>
UTC Datetime: 2014-12-02 16:19:52 UTC
Raw Date: Tue, 02 Dec 2014 15:19:52 -0800

Raw message

Norberto
You are a genius. I suck at fidling with any of this stuff but if you can 
make that work please share.
Im willing to have a setup like this:
remote router 1 (dd-wrt / tomato, etc) --\
                                                                \
                                                                  \
                                                                     - - - 
- - - - grase (on cloud virtualbox server)
                                                                 /
remote router 2 (same setup) -------------/

Cheers

On Tuesday, December 2, 2014 9:38:54 PM UTC+2, Norberto Esteves wrote:
>
> Hi all,
>
> I managed to get this configuration working.
>
> Basically I have the Grase Hotspot installed in a machine (shuttle XPC 
> DS6) in the office and one router (D-Link DIR-615) with DD-WRT in my house 
> for testing.
> The remote site (D-Link Router) uses the Coova Chilli included with the 
> DD-WRT firmware to redirect users to the Grase authentication Portal, after 
> that, the username, password, and other attributes are checked with the 
> radius server. If the authentication is successful then the user is allowed 
> to use the Internet and DD-WRT Coova Chilli takes care of the session even 
> if the main site (Grase) goes down. DD-WRT Coova Chilli also sends 
> periodical data (every 5 minutes) to Radius server to keep information up 
> to date. 
>
> So far I had to change a few things in the follwing files:
> hotspot.php, nojsstatus.php, /includes/site.inc.php
>
> I do not use VPN, so, there is a few ports that need forwarding:
> In the main site: Radius (1812, 1813, 1814), UAM (3990) and HTTP (80) 
> ports forward to Grase Hotspot machine.
> The remote site only needs port forwarding for COA port 3779 if you are 
> going to use the radclient to disconnect users.
>
> Freeradius also needs to allow remote site to connect, to do this you need 
> to add remote client to clients.conf, or use nas table.
>   
> So far I'am still testing and correcting some "bugs" i found.
>
> The bad new is that this setup don't work with Javascript login, I did 
> some tests and I think DD-WRT is not able to use the JSON interface for 
> Coova Chilli. So if you want to use DD-WRT, Java script login should be 
> disabled.
>
> If anyone is interested in multi-location setup using DD-WRT I can make a 
> document and share with the community.
>
> Regards,
>
> Norberto Esteves
>
>
>

Thread