Setup guide

ManualsBrandsD-Link ManualsComputer equipmentDWL-500 - 11Mb Wireless LAN PCI Network Card

261

262

263

264

265

266

267

268

269

270

information about HotSpot service provider or billing options.

Property Description

dst-host (text; default: "") - domain name of the destination web server (this is regular expression)

dst-port (integer; default: "") - the TCP port a client has send the request to

path (text; default: "") - the path of the request (this is regular expression)

action (allow | deny; default: allow) - action to undertake if a packet matches the rule:

• allow - allow the access to the without prior authorization

• deny - the authorization is required to access this page

Notes

Currently you can not place HTTPS servers inside the Walled Garden. However, there is a

workaround on this. You can add a mangle rule that allows you to pass traffic to an IP address of

secure web server, exempli gratia:

/ip firewall mangle add dst-address=159.148.108.1/32 mark-flow=hs-auth

Example

To allow unauthorized requests to the www.example.com domain's /paynow.html page:

[admin@Wandy] ip hotspot walled-garden> add path="^/paynow\\.html$" \

\... dst-host="^www\\.example\\.com$"

[admin@Wandy] ip hotspot walled-garden> print

Flags: X - disabled

# DST-HOST DST-PORT PATH ACTION

0 ^www\.example\.com$ ^/paynow\.html$ allow

[admin@Wandy] ip hotspot walled-garden>

Notes:

• \\ symbol sequence is used to enter \ character

• \. pattern means . only (in regular expressions single dot in pattern means any symbol)

• to show that no symbols are allowed before the given pattern, we use ^ symbol at the

beginning of the pattern

• to specify that no symbols are allowed after the given pattern, we use $ symbol at the end of

the pattern

Customizing HotSpot Servlet

Description

Servlet Pages

The HotSpot servlet recognizes 5 different request types:

1. request for a remote host

• if user is logged in, the requested is served

• if user is not logged in, but the destination host is allowed by walled garden, then the

request is also served

• if user is not logged in, and the destination host is disallowed by walled garden,

rlogin.html is displayed; if rlogin.html is not found, redirect.html is used to redirect to