LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19892 Commits
1 Branch
46 MiB
Tree: c12c8ceafb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c12c8ceafb'
${ noResults }
openwrt-packages-dist/net/apfree-wifidog/README.md

125 lines
5.5 KiB
Raw Normal View History

apfree-wifidog: Add new package Signed-off-by: liudf0716 <liudf0716@gmail.com> [Fix indentation and trailing whitespace on Makefile and wifidogx.init] Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
5 years ago
 
  1. ![ApFreeWiFiDog](https://github.com/liudf0716/apfree_wifidog/blob/master/logo.png)
  2. 

  3. 

  4. [![license][1]][2]
  5. [![PRs Welcome][3]][4]
  6. [![Issue Welcome][5]][6]
  7. [![Release Version][7]][8]
  8. [![OpenWRT][11]][12]
  9. [![Join the QQ Group][15]][16]
  10. 

  11. 

  12. [1]: https://img.shields.io/badge/license-GPLV3-brightgreen.svg?style=plastic
  13. [2]: https://github.com/liudf0716/apfree_wifidog/blob/master/COPYING
  14. [3]: https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=plastic
  15. [4]: https://github.com/liudf0716/apfree_wifidog/pulls
  16. [5]: https://img.shields.io/badge/Issues-welcome-brightgreen.svg?style=plastic
  17. [6]: https://github.com/liudf0716/apfree_wifidog/issues/new
  18. [7]: https://img.shields.io/badge/release-3.11.1716-red.svg?style=plastic
  19. [8]: https://github.com/liudf0716/apfree_wifidog/releases
  20. [11]: https://img.shields.io/badge/Platform-%20OpenWRT%7C%20LEDE%20-brightgreen.svg?style=plastic
  21. [12]: https://github.com/KunTengRom/kunteng-lede-17.01.4
  22. [13]: https://img.shields.io/badge/KunTeng-Inside-blue.svg?style=plastic
  23. [14]: https://www.kunteng.org.cn
  24. [15]: https://img.shields.io/badge/chat-qq%20group-brightgreen.svg
  25. [16]: https://jq.qq.com/?_wv=1027&k=4ADDSev
  26. 

  27. ## ApFree WiFiDog: A high performance captive portal solution for HTTP(s)

  28. 

  29. ApFree WiFiDog is a high performance captive portal solution for HTTP(s), which mainly used in ([LEDE](https://github.com/lede-project/source)&[Openwrt](https://github.com/openwrt/openwrt)) platform. 
  30. 

  31. 

  32. **[中文介绍](https://github.com/liudf0716/apfree_wifidog/blob/master/README_ZH.md)**
  33. 

  34. ## Enhancement of apfree-wifidog 

  35. 

  36. In fact, the title should be why we choose apfree-wifidog, the reason was the following: 
  37. 

  38. >  Stable

  39. 

  40. apfree-wifidog was widely used in tens of thousands device, which were running in business scene. In order to improve its stable, we rewrite all iptables rule by api instead of fork call, which will easily cause deadlock in multithread-fork running environment. we also re-write the code and replace libhttpd (which unmaitained for years) with libevent
  41. 

  42. > Performance

  43. 

  44. apfree-wifidog's http request-response is more quick, u can find statistic data in our test document
  45. 

  46. > HTTPs redirect

  47. 

  48. apfree-wifidog support https redirect, in current internet environment, captive portal solution without supporting https redirect will become unsuitable gradually
  49. 

  50. 

  51. > More features

  52. 

  53. apfree-wifidog support mac temporary-pass, ip,domain,pan-domain,white-mac,black-mac rule and etc. all these rules can be applied without restarting wifidog
  54. 

  55. > MQTT support

  56. 

  57. by enable mqtt support, u can remotely deliver such as trusted ip, domian and pan-domain rules to apfree wifidog 
  58. 

  59. > Compitable with wifidog protocol

  60. 

  61. u don't need to modify your wifidog authentication server to adapt apfree-wifidog; if u have pression on server-side, apfree wifidog's improved protocol can greatly relieve it, which disabled by default
  62. 

  63. 

  64. ## Getting started

  65. 

  66. before starting apfree-wifidog, we must know how to configure it. apfree-wifidog use OpenWrt standard uci config system, all your apfree-wifidog configure information stored in `/etc/confg/wifidogx`, which will be parsed by  `/etc/init.d/wifidogx` to /tmp/wifidog.conf, apfree-wifidog's real configure file is `/tmp/wifidog.conf`
  67. 

  68. The default apfree-wifidog UCI configuration file like this:
  69. 

  70. ```
  71. config wifidog
  72.     option  gateway_interface   'br-lan'
  73.     option  auth_server_hostname    'wifidog.kunteng.org.cn'
  74.     option  auth_server_port    443
  75.     option  auth_server_path    '/wifidog/'
  76.     option  check_interval      60
  77.     option  client_timeout      5
  78.     option  apple_cna           1
  79.     option  thread_number       5
  80.     option  wired_passed        0
  81.     option  enable      0
  82. ```
  83. 

  84. > auth_server_hostname was apfree-wifidog auth server, it can be domain or ip; wifidog.kunteng.org.cn is a free auth server we provided, it was also [open source](https://github.com/wificoin-project/wwas) 

  85. 

  86. > apple_cna 1 apple captive detect deceive; 2 apple captive detect deceive to  disallow portal page appear

  87. 

  88. > wired_passed means whether LAN access devices need to auth or not, value 1 means no need to auth 

  89. 

  90. > enable means whether start apfree-wifidog when we executed `/etc/init.d/wifidogx start`, if u wanted to start apfree-wifidog, you must set enable to 1 before executing `/etc/init.d/wifidogx start`

  91. 

  92. ### How to support https redirect

  93. 

  94. In order to support https redirect, apfree-wifidog need x509 pem cert and private key, u can generate youself like this:
  95. 

  96. ```
  97. PX5G_BIN="/usr/sbin/px5g"
  98. OPENSSL_BIN="/usr/bin/openssl"
  99. APFREE_CERT="/etc/apfree.crt"
  100. APFREE_KEY="/etc/apfree.key"
  101. 

  102. generate_keys() {
  103.     local days bits country state location commonname
  104. 

  105.     # Prefer px5g for certificate generation (existence evaluated last)
  106.     local GENKEY_CMD=""
  107.     local UNIQUEID=$(dd if=/dev/urandom bs=1 count=4 | hexdump -e '1/1 "%02x"')
  108.     [ -x "$OPENSSL_BIN" ] && GENKEY_CMD="$OPENSSL_BIN req -x509 -sha256 -outform pem -nodes"
  109.     [ -x "$PX5G_BIN" ] && GENKEY_CMD="$PX5G_BIN selfsigned -pem"
  110.     [ -n "$GENKEY_CMD" ] && {
  111.         $GENKEY_CMD \
  112.             -days ${days:-730} -newkey rsa:${bits:-2048} -keyout "${APFREE_KEY}.new" -out "${APFREE_CERT}.new" \
  113.             -subj /C="${country:-CN}"/ST="${state:-localhost}"/L="${location:-Unknown}"/O="${commonname:-ApFreeWiFidog}$UNIQUEID"/CN="${commonname:-ApFreeWiFidog}"
  114.         sync
  115.         mv "${APFREE_KEY}.new" "${APFREE_KEY}"
  116.         mv "${APFREE_CERT}.new" "${APFREE_CERT}"
  117.     }
  118. }
  119. 

  120. ```
  121. 

  122. or when u start `/etc/init.d/wifidogx start`, it will generate it automatically
  123. 

  124. 

  125. For more information, please refer to the upstream [project page](https://github.com/liudf0716/apfree_wifidog)