• February 25, 2025, 02:26:27 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Trying to have a user authentication on DFL-210  (Read 4946 times)

casper

  • Level 1 Member
  • *
  • Posts: 1
Trying to have a user authentication on DFL-210
« on: September 10, 2009, 07:05:40 PM »
Our company gave me a DFL-210 to protect my server. I cofigured it like this (and it works);

OBJECTS
   AddressBook:
         InterfaceAddresses
         dmz_ip    172.17.100.254
         dmznet    172.17.100.0/24
         lan_ip                192.168.1.1
         lannet                192.168.1.0/24
         wan_dns1   0.0.0.0
         wan_dns2   0.0.0.0
         wan_gw     0.0.0.0
         wan_ip                155.156.157.198
         wannet   0.0.0.0/0
         MyAddresses
         MyServer   192.168.1.10
         MyPublic   155.156.157.197
   Service:
      Name: MyService
      Type: TCP
   
      Source: 0-2000
      Dest: 1030-1040
RULES
   IP Rules
         (1)
      Name: MyPortMap
      Action: SAT
      Service: MyService

      Source Int: wan
      Source Net: all-nets
      Dest Int: wan
      Dest Net: MyPublic

      SAT TAB
         New IP Address: MyServer
         (2)
      Name: MyAllowUse
      Action: NAT
      Service: MyService

      Source Int: wan
      Source Net: all-nets
      Dest Int: wan
      Dest Net: MyPublic
INTERFACES:
   ARP
      Mode: Publish
      Interface: wan
      IP Address: MyPublic
      MAC: 00-00-00-00-00-00

The problem now is I need a user authetication before they can use the service or connect to my server. I tried following the instruction on how to implement a user authetication but I always get lost on the process.

Can somebody please help me?

Thanks.
« Last Edit: September 10, 2009, 08:28:12 PM by casper »
Logged

Fatman

  • Level 9 Member
  • ****
  • Posts: 1675
Re: Trying to have a user authentication on DFL-210
« Reply #1 on: September 14, 2009, 09:20:44 AM »
That is not a direction I have seen web auth used in before, though I don't see any coarse reasons it wont work.

Web auth is a rather advanced configuration, and not something I would think is possible in this medium.  This is doubly true since any walkthrus you find will be tailored to outbound traffic.

For example you are going to need to SAT HTTP(S) traffic from your additional public to the WAN IP of the DFL so that the users will even be able to see the web auth prompt.

For this to work optimally you are going to want to do this only for a service that is viewed through an HTTP browser (you hid what you service was so I don't know if this is the case) or you will have to log in with your http browser and then start your separate service.

Get yourself a competent phone support agent by calling in, if they will even help you write something this crazy, that really is a better option for you.
Logged
non progredi est regredi