A How To for DD-WRT, FreeRadius and Chillispot.
Creating a Wi-Fi Internet hotspot service from scratch can seem like a daunting task. I had many sleepless nights trying to get to grips with FreeRadius, DD-WRT, Chillispot etc. I hope that this How To helps you to avoid some of the problems I encountered along the way.
Regards Sean Bracken
********Warning ********
Following these instructions may invalidate your Linksys warranty. You do so at your own risk. These instructions assume that you have an understanding of Linux, PHP MySQL and Apache. If you brick your AP you might get it back by holding down the reset pin for 20 seconds, unplug the power while still holding down the reset button for another 20 seconds and then plugging the power back in while still keeping the reset button held in for a further 20 seconds. This should bring it back to the defaults of whatever firmware you have installed. You should be able to login to 192.168.1.1
*******End of Warning********
Feel free to copy or use this information in any way you like.
What you will need:-
a) DD-WRT
Download the latest version here https://brainslayer.braincontrol.org/dd-wrt.v22.zip
b) FreeRadius
Download the latest version here ftp://ftp.freeradius.org/pub/radius/old/freeradius.1.0.3.tar.gz
c) phpMyPrepaid
Download the latest version here https://jabali.net/~carl/phpMyPrepaid.0.1.3RC2.tar
also download the radiusd.conf file from https://jabali.net/~carl/
d) Linsys WRT54G AP
e) You will also need PHP, Apache, MySQL amd MySql Delopment Modules,(These need to be setup first.) some patience, plenty of coffee and cigarettes.
Step 1 DD-WRT/Chillispot Configuration
Configure the WRT-54G with the standard Linksys software and the use the upgrade firmware module to install the dd-wrt package on the AP.
*******IMPORTANT******* Use your cable connection to do the upgrade. NOT the wireless connection.
Reboot the AP and login to your new firmare.
Set Dynamic configuration DHCP
Disable DHCP (Chillispot will manage DHCP for your clients.)
Change the Local IP of the AP to 192.168.10.1.
Set your gateway and DNS addresses.
Update changes and log back in to the new IP address.
Go to the administration page.
Enable Chillispot
Enter the IP address of your Radius server.
Enter the DNS.
Enter the redirect URL eg HTTPS://123.123.123.123/cgi-bin/hotspotlogin.cgi/ (MAke sure that the address ends in / and is https.)
Enter a shared key. (This can be anything you like, but keep a note of it you will need it later.)
Set DHCP Interface to Lan+Wlan
Enter a NAS id (Your name for your AP)
Enter a UAM secret (This is the password that Chilli will use to talk to hotspotlogin.cgi)
Save your settings and reboot the AP. Please give the AP about 10 minutes to reboot and initialise all the new services.
Step 2 FreeRadius Configuration.
Untar the FreeRadius tar file and enter its directory.
Type ./configure –with-experimental-modules
make
login as root and type make install
When this is finished copy the radiusd.conf file that you downloaded earlier to /usr/local/etc/raddb/
You should not need to edit radiusd.conf
Edit /usr/local/etc/raddb/sql.conf and in the SQL section make these changes.
# Database type
# Current supported are: rlm_sql_mysql, rlm_sql_postgresql,
# rlm_sql_iodbc, rlm_sql_oracle, rlm_sql_unixodbc, rlm_sql_freetds
driver = “rlm_sql_mysql”
# Connect info
server = “localhost”
login = “yourlogin”
password = “your password”
# Database table configuration
radius_db = “radius”
Edit the /usr/local/etc/raddb/clients.conf file and enter the details of your NAS (AP)
client xxx.xxx.xxx.xxx { (This is the address of your NAS or WRT54G )
secret = xxxxxxx (The secret you entered in the Chilli Config)
shortname = private-network-9 (This can be any name)
nastype = other
( If you want to set up several AP’s with one secret the IP address above should be 0.0.0.0/0 )
}
Step 3 hotspotlogin.cgi
Copy hotspotlogin.cgi from https://chillispot.org to /var/www/cgi-bin
Edit the file and change the secret to the UAM secret that you entered in the Chillispot configuration on the WRT54G.
You can also use a php script. It is not as secure as the cgi script but easier to personalise. If you want a copy email me at sean@swarmhotspots.com
Step 4 phpMyPrepaid and MySQL
Extract the phpMyPrepaid file to a directory on your webserver eg /var/www/html/myprepaid
Create a MySQL database called radius and create a user and password for it. Use a script called db_mysql.db that you will find in the phpMyPrepaid download to create the database tables.
Edit the dbconnect.php file in the phpMyPrepaid directory and enter the username and password for your MySQL radius database. IMPORTANT Save this file behind your web directory or your passwords will be easy to hack.
Edit config.inc.php and change the line that points to dbconnect to wherever you have saved dbconnect.php
In your web browser got to https://yoursite.com/whereveryouputphpmyprepaid/ and create some tickets. Check your database to see if the users have been setup in radcheck. Launch FreeRadius as root with this command radiusd -xxyx -l stdout. Pick a user and password from your database and try to login from a wireless client. If you can then it is time for step 5. If not go back to step 1 and check everything.
Step 5 Have a cup of coffee and unwind. If all is well you have finished. I’ll keep an eye on this post and do my best to help anyone with problems.
I have setup a free Radius test area for people that have no access to a Radius server. You can use this service to test your Chillispot configuration. The address is https://swarmhotspots.com/Chilli-Test-Area
I would welcome any feedback from this article and will do all I can to help any of you with problems.
sean@swarmhotspots.com
wahh keren banget nihh postingannya..
bisa pake bahasa indonesia ngak yach?
nggak ngerti bahsa inggris nih mas.Thanx
terima kasih atas kunjungannya ke blog saya..
untuk yang versi indonesia silahkan lihat ke
https://hendra-k.net/membuat-hotspot-dengan-menggunakan-belkin-f5d7231-4-ap.html
gimana kalau setting wifi di debian 4 dengan sistem
biling prabayar!
sama ajah pak .. silahkan di baca2 lagi tutorial nya .. nanti kalo ada yang ingin di pertanyakan .. silahkan menyakan kepada saya.
thanks .
bos setting hotspot untuk server gimana yo (nih servernya pake linux). thanks
maaf, nanya dikit. saya baru beli router dlink Dir-300, tapi saya ingin set sebagai client AP, untuk terima sinyal dari tetangga, trus saya bisa pake 2 komputer dirumah. Gimana cara settingnya, kl di manualnya sy tidak/belum? menemukan setting untuk bisa dijadikan wireless client. Thanks
sorry boss, kemarin kita baru beli acses point linksys sudah jalan sih … tapi kenapa DNS nya mesti dirubah dulu desuai setingan linksys, jadi agak repot juga buat yg lain, padahal kalu saya pergi ke hotspot yang free, mereka bisa langsung konek tanpa di seting DNS dulu, gimana caranya yach…tanks banget sebelumnya
Salam kenal mas,
Saya sudah bekali-kali mencari tutorial yng berbau seting hospot dengan pasword. tapi sampai sekarang belum dapat. Client saya menggunakan adsl2+ keluaran prolink, dan saya coba seting wireless router merk TP-LINK. Hasilnya sidnal dapat di tangkap namun tidak dapat melakukan browsir ( seolah-olah tidk ada hubungan antara weriless dengan adsl. Setelah saya coba otak-atik signal gak ketemu, bahkan tidak login ke tp-linknya melalui browser.
Lalu coba ganti dengan linkys wrt54gl, hasil berhasil.
Yang akan saya tayakan adalah bagaimana caranya men-seting password yang simple atau detail dengan convigurasi di atas.
Terima kasih atas bantuannya.