Changes

===Maintainer===

===Maintainer===

[[User:VIP-ire|Daniel B.]]<br/>

[mailto:daniel@firewall-services.com[[User:VIP-ire|Daniel B.]]] from [http://www.firewall-services.com Firewall Services]

[http://www.firewall-services.com Firewall Services]<br>

=== Version ===

=== Version ===

*Attach an AP

*Attach an AP

The final step is to connect an AP on the NIC. I'm talking about a AP and not a router. If you have a WiFi router, it is possible to work if these conditions are met:

The final step is to connect an AP on the NIC. I'm talking about a AP and not a router. If you have a WiFi router, it is possible to make it work if these conditions are met:

**Dhcp is disabled on the router

**Dhcp is disabled on the router

*Login

*Login

Connect a client, and try to open a web page, you should fall on a page like this:

Connect a client, and try to open a web page, you should be redirected on a page like this one:

[[Image:ChilliLogin-noguest.jpg]]

[[Image:ChilliLogin-noguest.jpg]]

*'''net''': the network range to use. The server uses the first IP available from the network (and thus default 10.1.0.1) and provide clients with addresses in this range.

*'''net''': the network range to use. The server uses the first IP available from the network (and thus default 10.1.0.1) and provide clients with addresses in this range.

*'''status''': there's no trap that defined the state of service, and whether it should be started when the server boots up.

*'''status''': there's no trap, this key defines the state of service, and whether it should be started when the server boots up.

*'''tundev''': defines the tun interface to use (chilli mask the real interface eth2 and the system sees the traffic as comming from a tun interface).

*'''tundev''': defines the tun interface to use (chilli mask the real interface eth2 and the system sees the traffic as comming from a tun interface).

By default, tun0, you can change if tun0 is already used for a VPN for example.

By default, tun0, you can change if tun0 is already used for a VPN for example.

*'''uamallowed''': A list of host that will be accessible before authentication. It can be a simple list of host, or a list of the form host:port, or protocol:host, or protocol:host:port

*'''uamallowed''': A list of host that will be accessible before authentication. It can be a simple list of host, or a list of the form host:port, or protocol:host, or protocol:host:port

*'''guestUpLink''': if guestAccess is enabled, this will limit the uplink bandwidth for guest user (in kbps)

*'''guestUpLink''': if guestAccess is enabled, this will limit the uplink bandwidth for guest user (in kbps)

After you've changed the configuration, just run the command  

After you've changed the configuration, just run the command  

*AllowedOutgoing will allow more outgoing traffic. It's a list of proto/host/port clients will be able to contact on the internet (These rules only apply to forwarded traffic, nothing will be allowed to the private network). Wildcard '*' (or keyword 'any') can replace host or port. Eg:

*AllowedOutgoing will allow more outgoing traffic. It's a list of proto/host/port clients will be able to contact on the internet (These rules only apply to forwarded traffic, nothing will be allowed to the private network). Wildcard '*' (or keyword 'any') can replace host or port. Eg:

  db configuration setprop AllowedOutgoing tcp:56.23.41.1:25,udp:*:1194,tcp:4.5.6.7:any,tcp:any:123

  db configuration setprop chilli AllowedOutgoing tcp:56.23.41.1:25,udp:*:1194,tcp:4.5.6.7:any,tcp:any:123

This will allow:

This will allow:

----

----

[[Category:Contrib]]

[[Category:Contrib]]