I’m using zeroshell to manage wi-fi traffic by multiple access point and it works like a charm.
What i need is to assign to a specific local user a specific gateway.
More in details, I’ve 2 gateway, one on a fast internet access for privileged user, the second on an basic adsl for guest users.
Is it possible to route guest users to the second gateway?
I haven’t done this, but you should be able to create VLAN(s) to a managed/smart switch which would go to the wi-fi access points then use the Firewall to forward/masquerade the VLAN to the respective gateway.
iptables -t mangle -A FORWARD -i eth0 -o eth1.11 -j MARK –set-mark 4
If needed you can put the 2 gateways on their own VLANs and create chains to pass the packets to and from the two VLANs
This is probably the simplest way to go about it. You will have to write the firewall chain to fit. It obviously depends on your network configuration and needs.
Thanks ewaite for your reply.
Honestly i’ve not understand your suggestion, that’s not so easy for not firewall specialist like me.
The be more clear on what i need, i forgot to say that i have only one access point with radius authentication. Than i have two users, one need to access the lan on the principal gateway. The second (like a guest) need to exit directly on internet trough the second gateway.
Is there a way to route a radius user to a specific gateway?