Well I've done it. I've successfully integrated the Colubris CN-3200 series access controller into my hotspot scripty thingy. The MSC-3200 'should' work too... I'll test that soon.
The hardest part was trying to decide on where to set the access controller type. I could have set in in the NAS table in the database which would make sense but that would mean doing something on the server side whenever you installed one of these things. So I did it on the other end. On the access controller you simply pass 'nas_brand=mikrotik/colubris' back with the rest of the user authen data. My scripts read that and tweak things in the background to suit.
The tweaks are mainly what to set in the database for the radius reply for that user and the slight modifications of the template files with the differences in login forms. I think I must have done something right for the start because doing this wasn't difficult at all.
Now I just have document the changes, make a pretty howto (not much to do there) and create suitable location content that reflects the corporate identity of accessEzy.
Monday, August 28, 2006
Wednesday, August 23, 2006
Colubris CN/MSC-3200 Access Controllers
I've been working on a hotspot backend system for the last three months and its been in production for almost two months now. Since it has been working so well they want me to adapt it for use in hotels.
The currently installed hotels use a Colubris CN-3200 or a MSC-3200 Access Controller. These units can interact with a backend service in a number of ways. Currently they use a "NOC" method where they simply pass everything to a remote server and then the remote server authenticates the user so the user never actually uses anything on the access controller itself.
The method which I use is that the access controller makes the initial connection and then passes the user through to a remote server. The remote server then passes the user back to the access controller which then authenticates against the remote server. This might sound like more effort/waste but it offers far more flexibility - for example I can have a remote web server and a separate authentication server. This is identical to how the Mikrotik RouterOS systems work.
Given this tweaking my application isn't too difficult. Just a case of either setting or detecting which access controller is in use and make the necessary adjustments to the templates and database. I should have this done in a few weeks since I have to revamp some bits to optimise the process.
It would be interesting to try some more access controller brands and see if I can achieve some across market compatibility. Although I'm happy with the RouterOS and Colubris units - together they cover pretty much every purpose I can think of.
The currently installed hotels use a Colubris CN-3200 or a MSC-3200 Access Controller. These units can interact with a backend service in a number of ways. Currently they use a "NOC" method where they simply pass everything to a remote server and then the remote server authenticates the user so the user never actually uses anything on the access controller itself.
The method which I use is that the access controller makes the initial connection and then passes the user through to a remote server. The remote server then passes the user back to the access controller which then authenticates against the remote server. This might sound like more effort/waste but it offers far more flexibility - for example I can have a remote web server and a separate authentication server. This is identical to how the Mikrotik RouterOS systems work.
Given this tweaking my application isn't too difficult. Just a case of either setting or detecting which access controller is in use and make the necessary adjustments to the templates and database. I should have this done in a few weeks since I have to revamp some bits to optimise the process.
It would be interesting to try some more access controller brands and see if I can achieve some across market compatibility. Although I'm happy with the RouterOS and Colubris units - together they cover pretty much every purpose I can think of.
Tuesday, August 15, 2006
Mooloolaba Beach WiFi
Completed the installation of the fourth Maroochy Hotspot site. Located at the Mooloolaba Beach caravan park it provides coverage to a large chunk of what is one of Australia's favourite tourist destinations. Google Maps link
Installation is the same as the others, however it receives its backhaul signal from us via a repeater located on top of the Raffles Resort Hotel just east of its location. Not the best situation to be in as I hate relying upon untrusted third parties for a mission critical feed. However the alternatives are limited - to run a phone line would be next to impossible and setting up a repeater point elsewhere would take time and money.
Now we have reasonable Hotspot coverage of the Mooloolaba/Maroochydore beach front. We also cover a large part of the northern Coolum beach frontage.
Mudjimba Caravan Park is still pending installation. We are talking with the owners of a few residential blocks nearby - we might be able to gain a feed from one of these locations into the park.
I have also updated the software versions running on the Mikrotik routers - they're now running 2.9.28. This new version introduces a new licensing scheme where the update period is now version based, not time based. Meaning that I can continue updating the routers up to the end of RouterOS v3 which could be 10 years from now. The old method was that you had 1 or 3 years to do updates.
Installation is the same as the others, however it receives its backhaul signal from us via a repeater located on top of the Raffles Resort Hotel just east of its location. Not the best situation to be in as I hate relying upon untrusted third parties for a mission critical feed. However the alternatives are limited - to run a phone line would be next to impossible and setting up a repeater point elsewhere would take time and money.
Now we have reasonable Hotspot coverage of the Mooloolaba/Maroochydore beach front. We also cover a large part of the northern Coolum beach frontage.
Mudjimba Caravan Park is still pending installation. We are talking with the owners of a few residential blocks nearby - we might be able to gain a feed from one of these locations into the park.
I have also updated the software versions running on the Mikrotik routers - they're now running 2.9.28. This new version introduces a new licensing scheme where the update period is now version based, not time based. Meaning that I can continue updating the routers up to the end of RouterOS v3 which could be 10 years from now. The old method was that you had 1 or 3 years to do updates.
Sunday, August 06, 2006
Coolum Beach Caravan Park WiFi
I can safely say that the Maroochy Council Coolum Beach Caravan Park now has wireless Internet access. Making a total of four Maroochy Parks enabled, two more to go.
The install was a bit involved as it required a separate Internet feed. We brought ADSL in to a phone point near the intended Hotspot location, set it up with a router and Access Point which transmits it to the actual Hotspot router located on the roof of a nearby building (the high point of the site). The DSL router and Access Point are located on the outside of a demountable building in a weather proof enclosure.
This saves everyone the hassle of digging trenches and running conduit and cables.
The equipment used is as follows:
Netgear DG834 ADSL Modem/Router
Senao NL-2611CB3 PLUS (Deluxe) Access Point w/5dBi antenna
WRAP2 w/8dBi planar directional and 10dBi Waveguide omni-directional antennas
The install was a bit involved as it required a separate Internet feed. We brought ADSL in to a phone point near the intended Hotspot location, set it up with a router and Access Point which transmits it to the actual Hotspot router located on the roof of a nearby building (the high point of the site). The DSL router and Access Point are located on the outside of a demountable building in a weather proof enclosure.
This saves everyone the hassle of digging trenches and running conduit and cables.
The equipment used is as follows:
Netgear DG834 ADSL Modem/Router
Senao NL-2611CB3 PLUS (Deluxe) Access Point w/5dBi antenna
WRAP2 w/8dBi planar directional and 10dBi Waveguide omni-directional antennas
Subscribe to:
Posts (Atom)