captive portal does not popup when this iptable rule is applied [on hold]











up vote
0
down vote

favorite












iptables -F

iptables -t mangle -N internet

iptables -t mangle -A PREROUTING -j internet

iptables -t mangle -A internet -j MARK --set-mark 99


the iptables entry below blocks all traffic but captive portal does not popup



iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


if ommitted captive portal does popup but some online games like mobile legends are able to pass. im guessing that if i add that -p all im also blocking the ckecking of the portal. I just dont know what it is.



iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 443 -j DNAT --to-destination 10.10.10.1:443

iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination 10.10.10.1:80



iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT 

iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE





iptables raspberry-pi captive-portal







share|improve this question









New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











put on hold as too broad by Rui F Ribeiro, RalfFriedl, G-Man, Christopher, msp9011 23 hours ago


Please edit the question to limit it to a specific problem with enough detail to identify an adequate answer. Avoid asking multiple distinct questions at once. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question.















  • The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
    – Rui F Ribeiro
    Dec 3 at 12:39

















up vote
0
down vote

favorite












iptables -F

iptables -t mangle -N internet

iptables -t mangle -A PREROUTING -j internet

iptables -t mangle -A internet -j MARK --set-mark 99


the iptables entry below blocks all traffic but captive portal does not popup



iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


if ommitted captive portal does popup but some online games like mobile legends are able to pass. im guessing that if i add that -p all im also blocking the ckecking of the portal. I just dont know what it is.



iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 443 -j DNAT --to-destination 10.10.10.1:443

iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination 10.10.10.1:80



iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT 

iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE





iptables raspberry-pi captive-portal







share|improve this question









New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











put on hold as too broad by Rui F Ribeiro, RalfFriedl, G-Man, Christopher, msp9011 23 hours ago


Please edit the question to limit it to a specific problem with enough detail to identify an adequate answer. Avoid asking multiple distinct questions at once. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question.















  • The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
    – Rui F Ribeiro
    Dec 3 at 12:39















up vote
0
down vote

favorite









up vote
0
down vote

favorite











iptables -F

iptables -t mangle -N internet

iptables -t mangle -A PREROUTING -j internet

iptables -t mangle -A internet -j MARK --set-mark 99


the iptables entry below blocks all traffic but captive portal does not popup



iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


if ommitted captive portal does popup but some online games like mobile legends are able to pass. im guessing that if i add that -p all im also blocking the ckecking of the portal. I just dont know what it is.



iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 443 -j DNAT --to-destination 10.10.10.1:443

iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination 10.10.10.1:80



iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT 

iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE





iptables raspberry-pi captive-portal







share|improve this question









New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct. 











iptables -F

iptables -t mangle -N internet

iptables -t mangle -A PREROUTING -j internet

iptables -t mangle -A internet -j MARK --set-mark 99


the iptables entry below blocks all traffic but captive portal does not popup



iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


if ommitted captive portal does popup but some online games like mobile legends are able to pass. im guessing that if i add that -p all im also blocking the ckecking of the portal. I just dont know what it is.



iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 443 -j DNAT --to-destination 10.10.10.1:443

iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination 10.10.10.1:80



iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT 

iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE





iptables raspberry-pi captive-portal




iptables raspberry-pi captive-portal






share|improve this question









New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











share|improve this question









New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









share|improve this question




share|improve this question








edited Dec 3 at 12:27









Rui F Ribeiro

38.4k1478127




38.4k1478127






New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









asked Dec 3 at 12:23









user323996

1




1




New contributor




user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





New contributor





user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.






user323996 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.




put on hold as too broad by Rui F Ribeiro, RalfFriedl, G-Man, Christopher, msp9011 23 hours ago


Please edit the question to limit it to a specific problem with enough detail to identify an adequate answer. Avoid asking multiple distinct questions at once. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question.






put on hold as too broad by Rui F Ribeiro, RalfFriedl, G-Man, Christopher, msp9011 23 hours ago


Please edit the question to limit it to a specific problem with enough detail to identify an adequate answer. Avoid asking multiple distinct questions at once. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question.














  • The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
    – Rui F Ribeiro
    Dec 3 at 12:39




















  • The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
    – Rui F Ribeiro
    Dec 3 at 12:39


















The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
– Rui F Ribeiro
Dec 3 at 12:39






The captive portal activation is activated upon tests for the absence of a direct Internet connection. If you create a route for that it wont happen.
– Rui F Ribeiro
Dec 3 at 12:39












1 Answer
1






active

oldest

votes

















up vote
0
down vote













to answer my own question. this is what i did and it is now working well



iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


replaced with the code below



iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 444:65535 -j DNAT --to-destination 10.10.10.1





share|improve this answer








New contributor




Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes








    up vote
    0
    down vote













    to answer my own question. this is what i did and it is now working well



    iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


    replaced with the code below



    iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 444:65535 -j DNAT --to-destination 10.10.10.1





    share|improve this answer








    New contributor




    Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.






















      up vote
      0
      down vote













      to answer my own question. this is what i did and it is now working well



      iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


      replaced with the code below



      iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 444:65535 -j DNAT --to-destination 10.10.10.1





      share|improve this answer








      New contributor




      Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.




















        up vote
        0
        down vote










        up vote
        0
        down vote









        to answer my own question. this is what i did and it is now working well



        iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


        replaced with the code below



        iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 444:65535 -j DNAT --to-destination 10.10.10.1





        share|improve this answer








        New contributor




        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.









        to answer my own question. this is what i did and it is now working well



        iptables -t nat -A PREROUTING -m mark --mark 99 -p all -j DNAT --to-destination 10.10.10.1


        replaced with the code below



        iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 444:65535 -j DNAT --to-destination 10.10.10.1






        share|improve this answer








        New contributor




        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.









        share|improve this answer



        share|improve this answer






        New contributor




        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.









        answered 2 days ago









        Ragnar2018

        1




        1




        New contributor




        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.





        New contributor





        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.






        Ragnar2018 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
        Check out our Code of Conduct.















            -

            Popular posts from this blog

            Accessing regular linux commands in Huawei's Dopra Linux

            Image
            4 Backstory: I have a Huawei HG8245 router in my house and I want to change the default username/password. I've tried following this guide but the config file always gets reset. My ISP isn't helping either so I'm looking for other ways to accomplish this. The router has telnet access so this seems like a way to change the credentials. The first shell I gain access to looks like this: WAP> Pressing "?" gives me a list of available commands which I've pasted here, the two interesting ones are "su" and "shell". I can't seem to get su access, even after logging in as root (challenge password prompt, and then nothing happens), but shell gives me a proper linux shell. WAP>shell BusyBox v1.18.4 (2017-12-26 17:06:34 CST) built-in shell (ash) Enter 'hel...
            Read more

            Can't connect RFCOMM socket: Host is down

            Image
            up vote 3 down vote favorite I have bluez 5.4.3 and I am attempting to communicate with a ble device through minicom. These two deceives (my computer and a bluno nano) are alreadt paired and this has been my method so far. #bluetoothctl # pair xx:xx:xx:xx:xx:xx # exit Everything is working well so far then... #sudo rfcomm connect /dev/rfcomm0 xx:xx:xx:xx:xx:xx 1 & [1] 3665 Can't connect RFCOMM socket: Host is down Does anyone know how to resolve this issue? Any help would be very much appreciated. bluetooth bluez share | improve this question asked Feb 9 '17 at 18:46 Brandon Knape 46 2 ...
            Read more

            Kernel panic - not syncing: Fatal Exception in Interrupt

            Image
            0 Every day this error occured on my pc, kernel panic error on interrupt, what will be the problem? linux-mint share asked 6 mins ago Vinod Selvin Vinod Selvin 1 1 New contributor Vinod Selvin is a new contributor to this site. Take care in asking for clarification, commenting, and answering. Check out our Code of Conduct. add a comment ...
            Read more