Using Chillispot with D-WRT

Discussion in 'DD-WRT Firmware' started by dellsweig, Mar 20, 2005.

  1. dellsweig

    dellsweig Network Guru Member

    So, has anyone actually set up the Chillispot on this??

    I want to set up a simple captive portal - with no authentication required. I simply want to force access point users to read my Terms Of Service web page, press 'OK' and go about their merry way.

    1) Does the DDWRT/Chillispot redirector require the target html to return a value?? Does anyone have a same HTML file which they HAVE USED with Chillispot to simply Display "hello world - click OK to continue"

    2) Can Chillispot be configured to Certain MAC's or IP's are exempt from the captive portal??

    Let me know. I dont have alot of time to play with this so any guidence with setting this up would be greatly appreciated..
  2. jagboy

    jagboy Network Guru Member

    could someone explain how you setup chillispot on the wrt54g
  3. bummpr

    bummpr Network Guru Member

    Me Too!

    Yes...I also would like some guidance on how to get Chilli working...please help us out.

  4. jagboy

    jagboy Network Guru Member

  5. BrainSlayer

    BrainSlayer Network Guru Member

    i wrote this in the notes.txt file
    chillispot notes:

    chillispot works only if the redirect url is a valid url which ends with a slash '/'
    chillispot should be able to resolve the ip of this url hostname. so please setup your local router network to a valid gateway and dns

    this that enough?
  6. jagboy

    jagboy Network Guru Member

    how do i setup a captive portal in dd-wrt is this possible. i wanted my clients to read my terms and agreements and click ok and go on their maeery way.
  7. BrainSlayer

    BrainSlayer Network Guru Member

    just create a website and set the redirector url to this new website. for exact documentation about the structure read
  8. BrainSlayer

    BrainSlayer Network Guru Member

    i guess this here should be the most interesting part

    An authentication web server is needed in order to authenticate users using the universal access method. For wireless protected access this web server is not needed.

    The communication interface to the web server is implemented using only the HTTP protocol. No "call backs" from the web server to chilli is needed in order to authenticate the client. This means that the HotSpot can be placed behind a NAT gateway, proxy or firewall, while the web server is located on the public Internet.

    We provide a cgi script for your web server which will query the user for his username and password. Once this information has been entered by the user the encrypted password is sent back to chilli which forwards the request to the radius server. You should use SSL/TLS on your web server in order to protect the username and passwords.
  9. dellsweig

    dellsweig Network Guru Member

    Ok - this is great info BUT

    What if I do not want any authentication. I simply want the Chilli re-director to take the wireless user to a web page which presents him with a simple Terms of Service (I promise to be a good web citizen) and have him press 'ok' to continue.

    Is Chillispot going to require this web script to send back a user/password and will it require a radius server to authenticate?

    I do not want to implement authentication - of any kind. I simply want the web request intercepted/redirected to my TOS web page, then the wireless user can go on his merry way.

    How would I configure Chili to do this. The DD-WRT admin interface seems to require radius server information..

  10. BrainSlayer

    BrainSlayer Network Guru Member

    also if i see a complex way to do this, the easier way would be to use notcatsplash. but this isnt integrated yet, since a real hotspot solution uses always a radius or similar authentication procedure
  11. dellsweig

    dellsweig Network Guru Member

    I like the noCatSpalsh - it might be cool if you integrated it as an option.

    I used noCatSplash on the EWRT .3 build. It works as it should but had many problems with the Firmware in general. It was not stable and caused all kinds of problems - especially on 2.2 hardware

    Maybe you could setup Captive Portal as an option and depending on choice - either load noCatSplash or Chillispot

  12. jagboy

    jagboy Network Guru Member

    that would be great because i want to do what dellsweig wants to do.

    i just want to setup a captive portal with no authentication just a website that makes the user click ok and go on thier merry way.

    UPDATE:it would also cool if you could add a captive portal in dd-wrt. :D
  13. bummpr

    bummpr Network Guru Member

    I need authentication...

    I would like to establish a login and password process since my wireless unit is very "public" and I ony want to provide access to invited guests. So I want to establish a custom splash page with query for login and password.

    I initially thought that the site would provide the radius service but I don't see that this is available...where can I go to setup the authorized users and password without setting up Radius myself?

    Where can I find a sample splash page with the necessary coding to correctly process the login and password entry and get it to a Radius server? Can I put this page on the WRT unit itself and have it serve up the page or do I have to put it on an external web server?

    Thanks for your outstanding efforts BrainSlayer!!!!!!!
  14. bluescript

    bluescript Network Guru Member

    chillispot's free radius service:

    the login page is a cgi-file that can be found in the chillispot source. I'm not sure if the WRT itself can serve that cgi (anyone?) but it would make the setup a lot easier without the need for an external webserver, that's for sure... even more so when brainslayer finishes his implementation of ipkg. then we can use openwrt-packages and set up a radius server on the WRT itself! can't wait for that to happen!
  15. jagboy

    jagboy Network Guru Member

    for now bummpr, looks like tiny peap is the only option

    does anyone know how to setup the ChilliSpot Radius Hosting with the wrt54g with dd-wrt. is it possible. and how would i go about doing this
  16. bluescript

    bluescript Network Guru Member

    I tried - and failed... got chillispot up and running and - as far as I can tell - correctly configured. but I couldn't get chillispot to catch http-requests from wireless clients and redirect them to the login page... I ran chillispot in debug mode and it didn't even seem to be aware of the clients' requests. I can't really explain why - I had it listen to br0 but also tried eth1 and the vlans - nothing worked. I really don't know why...
  17. Toxic

    Toxic Administrator Staff Member

    Maybe TinYPEAP team could hack your firmware :)
  18. dellsweig

    dellsweig Network Guru Member

    Not quite true (all real hostspot solutions use radius)...

    I have setup a free wifi hotspot at a local buisness. They use local encryption - just to stop outsiders. The key is available at the register when a customer buys coffee. There is no need for outside authentication - radius or other.

    The owner simply wants a re-direct to his TOS and a menu <g>

    I would use EWRT .3 with NoCatSpalsh if that were stable but I had alot of problems where the WAN interface on the WRT54G would be lost - requiring a re-flash of Linky stock Firmware.

    I really would like to use Chillispot in to simply re-direct initial requests to an internal or external web page with no authentication. Once the user clicks OK, it should let them go on their merry way

    Any help on making Chilli work this way would be greatly appreciated
  19. Toxic

    Toxic Administrator Staff Member

  20. dellsweig

    dellsweig Network Guru Member

    That was the first place I looked
  21. bummpr

    bummpr Network Guru Member

    Quick setup guide please

    I think what a number of us are looking for is a quick guide for setup and installation. I also checked out the ChilliSpot site first...I personally am not interested in learning Chilli (or Linux, for that matter). Like dellsweig, I want to use the application in a simple and straightforward way. I would like some simple, uncomplicated authentication...he does not.

    I don't have the time (or the energy) to embark on a "learning" experience. We both have a simple problem to solve and we are looking for help to implement a simple solution.

    I think dellsweig and I (and others) are looking to the kind, helpful and excellent resources that regularly visit this and other WRT support sites to give us a hand. These pioneers are greatly appreciated by many of us when they share their knowledge and assitance because they shorten our learning curves.

    So I add my own personal appeal to those who may have got ChilliSpot working to help us less cleaver folks reach some small measure of success.

    Thanks again to Brainslayer and others who have responded with their comments.
  22. jagboy

    jagboy Network Guru Member

    nice way of saying please help :lol:
  23. bummpr

    bummpr Network Guru Member


    Thanks...I keep trying but, as you see, very little response.

    And thanks for posting this same question on the "official" Berliner site. I'm surprised that no one there seems inclined to respond either...I'm beginning to wonder if in fact it really works. There just doesn't seem to be many comments anywhere regarding this feature.

    I've tried ewrt but ran into a few problems with setup, stability and customizing to what I'm seeking. I need either a login/password or a single "coupon" code process I can issue to guests I want to give access. I don't really need radius authentication...just a simple block to combat wardriving intrusion. This functionality housed entirely on a single WRT would seem to meet the needs of a lot of users I see posting on the various Linksys boards.

    I hope we can find the solution soon.
  24. jagboy

    jagboy Network Guru Member

    me too
  25. bummpr

    bummpr Network Guru Member

    I have put in way to many hours trying to get Chilli to work. Trying to use Chilli radius service. Have even been into VI modifying the chilli.conf file and still have had no hint of success. There doesn't seem to be enough parameters in the webinterface to setup the configuration correctly and the IP addresses you provide never seem to get to the config file either.

    I have yet to hear or see anyone hint that this works in DD-WRT.

    Maybe Brainslayer can give us a clue sometime soon.
  26. dellsweig

    dellsweig Network Guru Member

    Re: Thanks


    Having been through the same process here (chilli, NoCatSplash on EWRT) with limited luck, here is what I ended up with..

    The setup involves a local Deli with a hotspot - a free hotspot. They too simply wanted to control folks leeching off their access (war drivers). It would have been a bonus for them to have a captive portal like NoCatSplash which would take them to a web page of their menu. Someday maybe.

    My solution was to implement HyperWRT with a simple WEP key - their phone number - Just enough security to have a drive by keep driving but not too difficult for a customer to ask the counter person for the 'password' or access code. Simple but it works great

    Someday, when NoCat or Chillispot can be simply implemented INSIDE the wrt54G, I will put that up but until then, this will have to do
  27. Toxic

    Toxic Administrator Staff Member

    when someone asks then people help. when you demand "I WANT" and "I can't be bothered" then nor can the rest of civilisation be bothered to help.


    chillispot website..... someone spent a hell of alot of time documenting it, but no one can be bothered in reading it.

    well dont bother reading any more of this thread. by the time you and the rest of this thread is finished you could have read the chillispot documentation by now and understood it.

    do nothing its easier

    maybe i should just lock the thread due to lack of interest ;)
  28. jagboy

    jagboy Network Guru Member

    yeah thanks for the help that will help a lot when i am trying to setup chillispot tonight :roll:
  29. ScoobyDoo32

    ScoobyDoo32 Network Guru Member

    I appreciate that perhaps the original posters comments of "i have no interest in learning..." may have come across as a little lazy - but after scouring the internet for the past 15 days, I understand their pain.

    I DID read the chillispot website, I also read all the nocat info, until the site suddenly disappeared . I also downloaded and installed dd-wrt, svea, wifidog/openwrt, hyperwrt, ewrt, and every other thing I could find.

    I too want just a simple splash page on my router - and you know what.. I also have MANY other things on my plate and I dont have time to start developing my own interface for my router ! There's a bit of an assumption that if someone has developed something and bothered to put a website together and post it and 'promote' it , that they would also make some minimal effort to tell people how to use it ?

    Several of these firmwares state that they support captive portal or splash pages, but my opinion now after probably 90 hours of testing them, and about the same reading newsgroups and forums and such - is that they dont. WiFidog is definitely the closest ive gotten so far but it seems very very flaky and i now have people telling me NOT to use this or that version of openwrt as it is not stable, and only this version works with that version, etc. NO, Im not lazy, im trying, really, but im banging my head on a wall !!

    I emailed Svea - I would gladly pay them $ 20 if this feature works. No response - 12 days...

    The instructions from DD-WRT:

    chillispot notes:

    chillispot works only if the redirect url is a valid url which ends with a slash '/'
    chillispot should be able to resolve the ip of this url hostname. so please setup your local router network to a valid gateway and dns

    This is in the readme file and on the webpage - others who asked how to config were directed to the readme.txt file... I would be awfully surprised if they got it to work based on these two sentences ??

    There is an implication that you dont really need a chillispot server if you put something in the redirect url it will just go to that page regardless of whether it is chillispot or not. In fact, in my many tests, either/or- it doesnt matter.

    Like alot of others, Im working on this for a 'free' public access hotspot - im not making any money and Im trying to do it as cheap as I can, and thinking I would take available of all the resources I could to keep it cheap. I havent asked any stupid questions (up to now) or posted anything as I've been trying to go it alone and make it work... but, i've been unsuccessful - and take consoliation in the fact that it seems nobody has been successful in doing this with anything....

    SO - rather than just negative posting when people ask some fairly straightforward questions, maybe someone could just post the information for all to enjoy and then you wont have to hear the question any more !

    RTFM - is a pretty lame response when there aint no manual. !
  30. BrainSlayer

    BrainSlayer Network Guru Member

    since i'm very busy with coding, i dont have currently the time for excessive documentations. some people create a wiki for the official dd-wrt documentation. so got to
    and share your knowledge. i will use this wiki as base for the official documentation in later versions
  31. dellsweig

    dellsweig Network Guru Member


    Let me know where you end up - We are in the same boat....

  32. bummpr

    bummpr Network Guru Member

    There is some hope

    Dan, Scooby, JagBoy and others:

    There is a bit more friendly and helpful thread here:

    DD-WRT Forum

    Mies has provided some info on his configuration...I adapted it to the public Chillispot radius service and got my WRT connecting to the radius server to try and authenticate.

    It only worked briefly and I could not get past the login...but this is farther than I've ever been before.

    I made some changes in the chilli.conf file to try and resolve the login problem and this broke my ability to get connected after my "fix".

    I'll try to work on this tommorrow! Cheers.
  33. jagboy

    jagboy Network Guru Member

    I think that unless you really need to use a captive portal or chillispot etc I think the best thing to do is to wait for the final release, and when brain slyer makes documentation. (Don’t want to put to much pressure on him)we can all straighten this whole mess out. right now that is what I am waiting on.

    i dont want to say i gve up but just a small break for now. :)
  34. bummpr

    bummpr Network Guru Member


    Thank continue to a premier service provider!!! You responded within days...there's another firmware provider that hasn't figured this out even after 18 months of users begging for some basic documentation.

    Keep on coding!
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice