News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Firewall/NAT
linktree Topic: Opening all ports
Pages: [1]
Topic: Opening all ports  (Read 3530 times)
« on: June 16, 2010, 04:34:26 »
xyb3r_5urf3r *
Posts: 4
Greetings to everyone!

I just started using m0n0wall for its captive portal feature.

Can i ask how would I open up all the ports so as to allow any connection in and out of it?

I just want to use it as a captive portal while still allowing my users unrestricted connection.


Thank you in advance!
« Reply #1 on: June 16, 2010, 15:32:01 »
iridris ***
Posts: 145
The default monowall config will allow any outgoing connection, and block incoming connections (as any firewall should do).  Do you really want to allow all ports through on the WAN side?
« Reply #2 on: June 16, 2010, 15:50:08 »
xyb3r_5urf3r *
Posts: 4
We installed m0n0wall on one of the pc as a DHCP server and captive portal.

The captive portal is setup without any authentication. Just a welcome page where we could put announcements and redirect our users to our website.

Our users wanted a connection without restriction. Meaning they can use softwares where the ports it uses are open. Our users also use internet phones. To make everything simple, any form of security measures has been disregarded. The users are responsible for their own personal computers security.

That is the reason why im asking for assistance on how to open up all ports in m0n0wall.

Thank you in advance!
« Reply #3 on: June 16, 2010, 17:24:41 »
rpsmith ***
Posts: 113
m0n0wall isn't going to work for you based on all your requirements.  if all their programs support UPNP, you might give pfSense a try.

Roy...
« Reply #4 on: June 16, 2010, 19:10:05 »
xyb3r_5urf3r *
Posts: 4
One feature that m0n0wall have that we like is the VOUCHER for captive portal users.

Unfortunately pfSense has yet to implement that on v2.

Is there really no way to 'disable' the firewall feature of m0n0wall and let it function as a DHCP Server and Captive Portal?
« Reply #5 on: June 16, 2010, 20:41:53 »
rpsmith ***
Posts: 113
I think you might be able to get it to work if you had a enough public IPs.  i.e. One for the WAN interface and one for every LAN user.  You might be able to do a 1:1 NAT for every Private LAN IP and add a Pass any WAN rule for every Private LAN IP. But I don't know for sure.

BTW, are you sure that pfSense doesn't support Vouchers?

http://69.64.6.24/index.php/Captive_Portal_Vouchers

Roy...
« Last Edit: June 16, 2010, 21:18:31 by rpsmith »
« Reply #6 on: June 23, 2010, 07:12:05 »
xyb3r_5urf3r *
Posts: 4
Unfortunately, we only have a couple of static ip address and more that 50 users.

We were using endian firewall before but since the captive portal feature is not included on the community edition we resorted to m0n0wall.

With the endian firewall we were able to disable the firewall feature and just use it as a DHCP server. Our users were able to use their VoIP phones and was able to access secured websites without having to specify which port to open.

But we want to do away with endian firewall and just use m0n0wall instead.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines