How to organize a single point of authentication for wifi users via SMS?

R

RaulDuke2015-08-12 19:40:08

linux

RaulDuke, 2015-08-12 19:40:08

Hello,
some time ago I implemented SMS authorization for a hotel client to access open Wifi. The system is as simple as a bellow and as trouble-free as a Kalashnikov assault rifle: the client connects to the hotspot, when he tries to open any page, he is forwarded to the authorization web face, where he enters his mobile phone. After that, he receives an SMS with a pin, he drives it in and uses it.
As you may have guessed, all the magic here is happening on the gateway, and more specifically in the iptables rules, and even more specifically in the poppies freely walking around the LAN. Now I have received three more similar orders and I am seriously thinking about a single point of authentication without replacing or additional installation of hardware for clients. Do you have any ideas how this can be implemented? If I don’t confuse, did Beeline do something similar in cafes or did they change routers to their own?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

V

Valentine, 2015-08-13
@vvpoloskin

By default, all users on the gateway are redirected to the external server. In the event that the external server on the radius gives the go-ahead "access-accept", the gateway removes the iptables rule with a redirect and gives access to the Internet.
Google towards "Linux ISG"

R

Ruslan Fedoseev, 2015-08-12
@martin74ua

mikrotik hotspot + external radius + external site for registration