Redirect all DNS queries to IP
I made a captive portal once, and as far as I can remember, i used this document to learn about DNS catchall : http://doc.pfsense.org/index.php/Creating_a_DNS_Black_Hole_for_Captive_Portal_Clients
The main thing you have to do is to give the right DNS IP with your DHCP. Then on your bind DNS, you have to create a catchall zone that always returns the same IP address, whatever the queried domain is :
zone "." {
type master;
file "/etc/namedb/db.catchall";
};
Zone :
$TTL 604800
@ IN SOA . root.localhost. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
IN NS .
. IN A 192.168.1.5 <--- Your portal IP
*. IN A 192.168.1.5 <--- Your portal IP
The "Captive portal" page on Wikipedia explains how this is achieved on Wi-Fi hotspots : https://en.wikipedia.org/wiki/Captive_portal
Related videos on Youtube
Marinescu Adrian
Updated on September 18, 2022Comments
-
Marinescu Adrian almost 2 years
I have a server with Ubuntu 12.04 Operating System on it.I want to make a DNS Server that accept all request including IPs,and redirect them to an specified IP......there users can login and after that can surf the web,with no restriction,ONLY AFTER LOGIN.I've heard something with Python and Proxy,but I don't know.....
Thanks,
-
Marinescu Adrian about 11 yearsThis is a start mimipc,but with the login part,how do I do????
-
mimipc about 11 yearsYou could proxy web traffic with the server hosting the portal. If the user is logged in, every query is redirected to the correct website. If user is anonymous, every query is redirected to the authentication page. I don't think this could work for HTTPS, though...
-
Marinescu Adrian about 11 yearsYes,yes,I can do with proxy web traffic,what are you recommending(I mean the software)?
-
mimipc about 11 yearsNginx would be great for this purpose. I'll have a look at how this is achieved on Wi-Fi hotspots to know if there is a better solution.
-
Marinescu Adrian about 11 yearsYou think MikroTik RouterOS could help me,with the Wi-fi hotspot.....I saw this film,but I need a Ubuntu version....youtube.com/watch?v=T_TEaDrqRVE
-
kasperd almost 10 yearsSome browsers will cache the fake IP address. Once it has been cached, it will be difficult for you to get it out of the browsers cache again. For that reason most captive portals send correct DNS responses but hijack HTTP connections and reply with a temporary redirect to an HTTPS URL on the network operator's own domain.