Forward ports over hostapd?

Multi tool use
Multi tool use

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
1
down vote

favorite
1












I'm running this project for creating access points which is built on top of hostapd.



Running this works as expected, my ethernet connection is available as wifi:



sudo create_ap wlan0 eth0 wifiname


I was hoping that port 80 on my host machine would automatically be exposed to the client but it isn't.



How can I create a hostapd hotspot that exposes port 80? I'm thinking I might need to use iptables or dnsmasq but I'm not sure.



I'm using the project linked as a starting point but my main goal is to broadcast a port over a wifi-hot spot.



Update: I found that by default the host is available at IP 192.168.12.1. I'm now looking for a way to forward all (or at minimum localhost) traffic on the hotspot to this IP.



But I still need to be able to resolve other domains on the host itself.




iptables nat dnsmasq wifi-hotspot hostapd




share|improve this question


















  • 1




    You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
    – NarÅ«nasK
    Oct 20 '17 at 13:39










  • I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
    – Arpit Agarwal
    Oct 28 '17 at 19:43














up vote
1
down vote

favorite
1












I'm running this project for creating access points which is built on top of hostapd.



Running this works as expected, my ethernet connection is available as wifi:



sudo create_ap wlan0 eth0 wifiname


I was hoping that port 80 on my host machine would automatically be exposed to the client but it isn't.



How can I create a hostapd hotspot that exposes port 80? I'm thinking I might need to use iptables or dnsmasq but I'm not sure.



I'm using the project linked as a starting point but my main goal is to broadcast a port over a wifi-hot spot.



Update: I found that by default the host is available at IP 192.168.12.1. I'm now looking for a way to forward all (or at minimum localhost) traffic on the hotspot to this IP.



But I still need to be able to resolve other domains on the host itself.




iptables nat dnsmasq wifi-hotspot hostapd




share|improve this question


















  • 1




    You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
    – NarÅ«nasK
    Oct 20 '17 at 13:39










  • I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
    – Arpit Agarwal
    Oct 28 '17 at 19:43












up vote
1
down vote

favorite
1









up vote
1
down vote

favorite
1






1





I'm running this project for creating access points which is built on top of hostapd.



Running this works as expected, my ethernet connection is available as wifi:



sudo create_ap wlan0 eth0 wifiname


I was hoping that port 80 on my host machine would automatically be exposed to the client but it isn't.



How can I create a hostapd hotspot that exposes port 80? I'm thinking I might need to use iptables or dnsmasq but I'm not sure.



I'm using the project linked as a starting point but my main goal is to broadcast a port over a wifi-hot spot.



Update: I found that by default the host is available at IP 192.168.12.1. I'm now looking for a way to forward all (or at minimum localhost) traffic on the hotspot to this IP.



But I still need to be able to resolve other domains on the host itself.




iptables nat dnsmasq wifi-hotspot hostapd




share|improve this question














I'm running this project for creating access points which is built on top of hostapd.



Running this works as expected, my ethernet connection is available as wifi:



sudo create_ap wlan0 eth0 wifiname


I was hoping that port 80 on my host machine would automatically be exposed to the client but it isn't.



How can I create a hostapd hotspot that exposes port 80? I'm thinking I might need to use iptables or dnsmasq but I'm not sure.



I'm using the project linked as a starting point but my main goal is to broadcast a port over a wifi-hot spot.



Update: I found that by default the host is available at IP 192.168.12.1. I'm now looking for a way to forward all (or at minimum localhost) traffic on the hotspot to this IP.



But I still need to be able to resolve other domains on the host itself.





iptables nat dnsmasq wifi-hotspot hostapd





share|improve this question













share|improve this question




share|improve this question








edited Oct 24 '17 at 13:43

























asked Oct 20 '17 at 13:31









Philip Kirkbride

2,2972470




2,2972470







  • 1




    You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
    – NarÅ«nasK
    Oct 20 '17 at 13:39










  • I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
    – Arpit Agarwal
    Oct 28 '17 at 19:43












  • 1




    You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
    – NarÅ«nasK
    Oct 20 '17 at 13:39










  • I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
    – Arpit Agarwal
    Oct 28 '17 at 19:43







1




1




You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
– NarÅ«nasK
Oct 20 '17 at 13:39




You must bind the port to appropriate device (presumably wlan0). If you need it open on eth0 too - iptables / nftables is your answer.
– NarÅ«nasK
Oct 20 '17 at 13:39












I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
– Arpit Agarwal
Oct 28 '17 at 19:43




I just tried your script and it worked fine. I created hotspot on my laptop and connected my phone to it. Started a server on 443. In phone, opening https://192.168.12.1 worked as expected.
– Arpit Agarwal
Oct 28 '17 at 19:43










2 Answers
2






active

oldest

votes

















up vote
0
down vote













You cannot do that via hostapd because port 80 is at Layer4 of ISO/OSI stack, APs work at Layer2. So you need to identify your IP connected via WIFI and work with IPTABLES for that IP






share|improve this answer



























    up vote
    0
    down vote



    accepted










    I was able to get the behavior I wanted using dnsmasq. Originally I was confused because I was adding the following to the default dnsmasq.conf location:



    address=/#/192.168.12.1


    It should forward all traffic to the IP 192.168.12.1 but I found it wasn't working.



    Later on while running top with the program running I found that create_ap had called dnsmasq but with a custom dnsmasq.conf in a /tmp/ folder.



    Reading through the source I found this snippet:



     MTU=$(get_mtu $INTERNET_IFACE)
     [[ -n "$MTU" ]] && echo "dhcp-option-force=option:mtu,$MTU" >> $CONFDIR/dnsmasq.conf
     [[ $ETC_HOSTS -eq 0 ]] && echo no-hosts >> $CONFDIR/dnsmasq.conf
     [[ -n "$ADDN_HOSTS" ]] && echo "addn-hosts=$ADDN_HOSTS" >> $CONFDIR/dnsmasq.conf
     if [[ "$SHARE_METHOD" == "none" && "$REDIRECT_TO_LOCALHOST" == "1" ]]; then
     cat << EOF >> $CONFDIR/dnsmasq.conf
    address=/#/$GATEWAY


    Inside that statement I added the following line to add my configuration to the temporary dnsmasq file:



    echo "address=/#/$GATEWAY" >> $CONFDIR/dnsmasq.conf


    After adding that any http address on the AP was forwarding to 192.168.12.1 the browser automatically assumes port 80 when one isn't provided so that became a non-issue.






    share|improve this answer




















      Your Answer







      StackExchange.ready(function()
      var channelOptions =
      tags: "".split(" "),
      id: "106"
      ;
      initTagRenderer("".split(" "), "".split(" "), channelOptions);

      StackExchange.using("externalEditor", function()
      // Have to fire editor after snippets, if snippets enabled
      if (StackExchange.settings.snippets.snippetsEnabled)
      StackExchange.using("snippets", function()
      createEditor();
      );

      else
      createEditor();

      );

      function createEditor()
      StackExchange.prepareEditor(
      heartbeatType: 'answer',
      convertImagesToLinks: false,
      noModals: false,
      showLowRepImageUploadWarning: true,
      reputationToPostImages: null,
      bindNavPrevention: true,
      postfix: "",
      onDemand: true,
      discardSelector: ".discard-answer"
      ,immediatelyShowMarkdownHelp:true
      );



      );













       

      draft saved


      draft discarded


















      StackExchange.ready(
      function ()
      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f399343%2fforward-ports-over-hostapd%23new-answer', 'question_page');

      );

      Post as a guest

















      2 Answers
      2






      active

      oldest

      votes








      2 Answers
      2






      active

      oldest

      votes









      active

      oldest

      votes






      active

      oldest

      votes








      up vote
      0
      down vote













      You cannot do that via hostapd because port 80 is at Layer4 of ISO/OSI stack, APs work at Layer2. So you need to identify your IP connected via WIFI and work with IPTABLES for that IP






      share|improve this answer
























        up vote
        0
        down vote













        You cannot do that via hostapd because port 80 is at Layer4 of ISO/OSI stack, APs work at Layer2. So you need to identify your IP connected via WIFI and work with IPTABLES for that IP






        share|improve this answer






















          up vote
          0
          down vote










          up vote
          0
          down vote









          You cannot do that via hostapd because port 80 is at Layer4 of ISO/OSI stack, APs work at Layer2. So you need to identify your IP connected via WIFI and work with IPTABLES for that IP






          share|improve this answer












          You cannot do that via hostapd because port 80 is at Layer4 of ISO/OSI stack, APs work at Layer2. So you need to identify your IP connected via WIFI and work with IPTABLES for that IP







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Oct 27 '17 at 15:35









          Federi

          44311229




          44311229






















              up vote
              0
              down vote



              accepted










              I was able to get the behavior I wanted using dnsmasq. Originally I was confused because I was adding the following to the default dnsmasq.conf location:



              address=/#/192.168.12.1


              It should forward all traffic to the IP 192.168.12.1 but I found it wasn't working.



              Later on while running top with the program running I found that create_ap had called dnsmasq but with a custom dnsmasq.conf in a /tmp/ folder.



              Reading through the source I found this snippet:



               MTU=$(get_mtu $INTERNET_IFACE)
               [[ -n "$MTU" ]] && echo "dhcp-option-force=option:mtu,$MTU" >> $CONFDIR/dnsmasq.conf
               [[ $ETC_HOSTS -eq 0 ]] && echo no-hosts >> $CONFDIR/dnsmasq.conf
               [[ -n "$ADDN_HOSTS" ]] && echo "addn-hosts=$ADDN_HOSTS" >> $CONFDIR/dnsmasq.conf
               if [[ "$SHARE_METHOD" == "none" && "$REDIRECT_TO_LOCALHOST" == "1" ]]; then
               cat << EOF >> $CONFDIR/dnsmasq.conf
              address=/#/$GATEWAY


              Inside that statement I added the following line to add my configuration to the temporary dnsmasq file:



              echo "address=/#/$GATEWAY" >> $CONFDIR/dnsmasq.conf


              After adding that any http address on the AP was forwarding to 192.168.12.1 the browser automatically assumes port 80 when one isn't provided so that became a non-issue.






              share|improve this answer
























                up vote
                0
                down vote



                accepted










                I was able to get the behavior I wanted using dnsmasq. Originally I was confused because I was adding the following to the default dnsmasq.conf location:



                address=/#/192.168.12.1


                It should forward all traffic to the IP 192.168.12.1 but I found it wasn't working.



                Later on while running top with the program running I found that create_ap had called dnsmasq but with a custom dnsmasq.conf in a /tmp/ folder.



                Reading through the source I found this snippet:



                 MTU=$(get_mtu $INTERNET_IFACE)
                 [[ -n "$MTU" ]] && echo "dhcp-option-force=option:mtu,$MTU" >> $CONFDIR/dnsmasq.conf
                 [[ $ETC_HOSTS -eq 0 ]] && echo no-hosts >> $CONFDIR/dnsmasq.conf
                 [[ -n "$ADDN_HOSTS" ]] && echo "addn-hosts=$ADDN_HOSTS" >> $CONFDIR/dnsmasq.conf
                 if [[ "$SHARE_METHOD" == "none" && "$REDIRECT_TO_LOCALHOST" == "1" ]]; then
                 cat << EOF >> $CONFDIR/dnsmasq.conf
                address=/#/$GATEWAY


                Inside that statement I added the following line to add my configuration to the temporary dnsmasq file:



                echo "address=/#/$GATEWAY" >> $CONFDIR/dnsmasq.conf


                After adding that any http address on the AP was forwarding to 192.168.12.1 the browser automatically assumes port 80 when one isn't provided so that became a non-issue.






                share|improve this answer






















                  up vote
                  0
                  down vote



                  accepted







                  up vote
                  0
                  down vote



                  accepted






                  I was able to get the behavior I wanted using dnsmasq. Originally I was confused because I was adding the following to the default dnsmasq.conf location:



                  address=/#/192.168.12.1


                  It should forward all traffic to the IP 192.168.12.1 but I found it wasn't working.



                  Later on while running top with the program running I found that create_ap had called dnsmasq but with a custom dnsmasq.conf in a /tmp/ folder.



                  Reading through the source I found this snippet:



                   MTU=$(get_mtu $INTERNET_IFACE)
                   [[ -n "$MTU" ]] && echo "dhcp-option-force=option:mtu,$MTU" >> $CONFDIR/dnsmasq.conf
                   [[ $ETC_HOSTS -eq 0 ]] && echo no-hosts >> $CONFDIR/dnsmasq.conf
                   [[ -n "$ADDN_HOSTS" ]] && echo "addn-hosts=$ADDN_HOSTS" >> $CONFDIR/dnsmasq.conf
                   if [[ "$SHARE_METHOD" == "none" && "$REDIRECT_TO_LOCALHOST" == "1" ]]; then
                   cat << EOF >> $CONFDIR/dnsmasq.conf
                  address=/#/$GATEWAY


                  Inside that statement I added the following line to add my configuration to the temporary dnsmasq file:



                  echo "address=/#/$GATEWAY" >> $CONFDIR/dnsmasq.conf


                  After adding that any http address on the AP was forwarding to 192.168.12.1 the browser automatically assumes port 80 when one isn't provided so that became a non-issue.






                  share|improve this answer












                  I was able to get the behavior I wanted using dnsmasq. Originally I was confused because I was adding the following to the default dnsmasq.conf location:



                  address=/#/192.168.12.1


                  It should forward all traffic to the IP 192.168.12.1 but I found it wasn't working.



                  Later on while running top with the program running I found that create_ap had called dnsmasq but with a custom dnsmasq.conf in a /tmp/ folder.



                  Reading through the source I found this snippet:



                   MTU=$(get_mtu $INTERNET_IFACE)
                   [[ -n "$MTU" ]] && echo "dhcp-option-force=option:mtu,$MTU" >> $CONFDIR/dnsmasq.conf
                   [[ $ETC_HOSTS -eq 0 ]] && echo no-hosts >> $CONFDIR/dnsmasq.conf
                   [[ -n "$ADDN_HOSTS" ]] && echo "addn-hosts=$ADDN_HOSTS" >> $CONFDIR/dnsmasq.conf
                   if [[ "$SHARE_METHOD" == "none" && "$REDIRECT_TO_LOCALHOST" == "1" ]]; then
                   cat << EOF >> $CONFDIR/dnsmasq.conf
                  address=/#/$GATEWAY


                  Inside that statement I added the following line to add my configuration to the temporary dnsmasq file:



                  echo "address=/#/$GATEWAY" >> $CONFDIR/dnsmasq.conf


                  After adding that any http address on the AP was forwarding to 192.168.12.1 the browser automatically assumes port 80 when one isn't provided so that became a non-issue.







                  share|improve this answer












                  share|improve this answer



                  share|improve this answer










                  answered Dec 1 '17 at 15:23









                  Philip Kirkbride

                  2,2972470




                  2,2972470



























                       

                      draft saved


                      draft discarded















































                       


                      draft saved


                      draft discarded














                      StackExchange.ready(
                      function ()
                      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f399343%2fforward-ports-over-hostapd%23new-answer', 'question_page');

                      );

                      Post as a guest
































































                      t6H,nzil,V,nQCky3qmTu,2u5I s95okr1wB2FRhEGQnuxRJxVCkeM
                      -
                      z7JsSamV,mOcKn 66TsJ0f,fC0r4u isuqh2LMq Mes6Zh wWs2OLFzgaf,8xBWxZ,4ZGgdPeRan4fmHvMf

                      Popular posts from this blog

                      How to check contact read email or not when send email to Individual?

                      Image
                      Clash Royale CLAN TAG #URR8PPP up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this question asked Sep 26 at 0:12 ToanLuong 49 9 add a comment  |  up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this questi...
                      Read more

                      How many registers does an x86_64 CPU actually have?

                      Image
                      Clash Royale CLAN TAG #URR8PPP up vote 2 down vote favorite I am currently learning reverse engineering and am studying the flags register. I had in my mind that rflags was just another name for one of the 16 general purpose registers, for example rax or rbx . But it looks like rflags is actually an additional register. So that makes 17 registers in total... how many more could there be? I have spent at least an hour on this and found numerous different answers. The best answer so far is this, which says that there are 40 registers in total. 16 General Purpose Registers 2 Status Registers 6 Code Segment Registers 16 SSE Registers 8 FPU/MMX Registers But if I add that up, I get 48. Could anybody provide an official answer on how many registers an x86_64 CPU has (e.g. an Intel i7). Additionally, I have seen references to 'hardware' and 'architectural' registers. What are those registers and how many are there? register x86-64 share | improve this...
                      Read more

                      Displaying single band from multi-band raster using QGIS

                      Image
                      Clash Royale CLAN TAG #URR8PPP 1 How can I extract a single band from multi-band raster in QGIS? I have an remote sensed image which has 6 bands (including NDVI band), I want to display each band separately, but have no idea how to do. I have seen some questions similar here but none worked for me. The original image (has 6 bands) is: I want to display the band 6 which should be like this: But I tried gdal_translate, and couldn't get the correct result. What I have got is: qgis raster multi-band share | improve this question edited Mar 5 at 0:53 Summer asked Mar 4 at 6:42 Summer Summer 23 6 Is this any help gis.stackexchange.com/questions/220658/… ? if not gis.stackexchange.com/questions/62133/… might help. – Michael Stimson Mar 4 at 6:46 Thanks for answering but when I used gdal_translate, qgis showed that 'Error 4: Kayena.tif: No such file or directory". Would you know how to fi...
                      Read more