Line 96: |
Line 96: |
| *'''net''': the network range to use. The server uses the first IP available from the network (and thus default 10.1.0.1) and provide clients with addresses in this range. | | *'''net''': the network range to use. The server uses the first IP available from the network (and thus default 10.1.0.1) and provide clients with addresses in this range. |
| | | |
− | *'''status''': there's no trap that defined the state of service, and whether it should be started when the server boots up. | + | *'''status''': there's no trap, this key defines the state of service, and whether it should be started when the server boots up. |
| | | |
| *'''tundev''': defines the tun interface to use (chilli mask the real interface eth2 and the system sees the traffic as comming from a tun interface). | | *'''tundev''': defines the tun interface to use (chilli mask the real interface eth2 and the system sees the traffic as comming from a tun interface). |
| By default, tun0, you can change if tun0 is already used for a VPN for example. | | By default, tun0, you can change if tun0 is already used for a VPN for example. |
| + | |
| + | *'''uamhomepage''': URL of homepage to redirect unauthenticated users to. If not specified this defaults to the login page |
| | | |
| *'''uamallowed''': A list of host that will be accessible before authentication. It can be a simple list of host, or a list of the form host:port, or protocol:host, or protocol:host:port | | *'''uamallowed''': A list of host that will be accessible before authentication. It can be a simple list of host, or a list of the form host:port, or protocol:host, or protocol:host:port |
Line 123: |
Line 125: |
| | | |
| *'''noc2c''': can be enabled or disabled (default is enabled). If enabled, clients will get a /32 netmask, and a special route will be added so they can contact the gateway. This prevent direct client to client communication. Note that it's a layer 3 isolation, a better way to prevent client to client is a layer 2 isolation, some AP and switch provides this. | | *'''noc2c''': can be enabled or disabled (default is enabled). If enabled, clients will get a /32 netmask, and a special route will be added so they can contact the gateway. This prevent direct client to client communication. Note that it's a layer 3 isolation, a better way to prevent client to client is a layer 2 isolation, some AP and switch provides this. |
| + | |
| + | *'''macallowed''': A comma separated list of MAC addresses which won't need to authenticate |
| | | |
| After you've changed the configuration, just run the command | | After you've changed the configuration, just run the command |