Controlling wireless access based on MAC

[OdinsDream]

I was thinking about the following scenario:

Someone stumbles onto my wireless network, which is open...

Is it possible to recognise that their MAC address is new on the network, and, perhaps by using iptables rules, redirect any of their requests to a local server?

So, they stumble upon the network, try to go to www.google.com, and instead, I redirect that to an internal webserver, wherein I describe where they are, and ask them to, perhaps, press an OK button, which I can script to pass them through the iptables rules previously mentioned.

Is iptables the way to go here? Can I actually hijack their DNS queries and send my own responses?
_________________
s/(?<!gnu\/)linux(?! kernel)/GNU\/Linux/gi

Don't blame me. I didn't vote for him.

http://john.simplykiwi.com

[malloc]

I am not an expert but if you fear something like that you should use ipsec to encrypt your network thus making it secure to abusive outside usage.
Again as i am saying i am no expert but i had a friend that did that sort of thing and he told me that ir worked very well

[garn]

you could run your own dns server, have the dhcp server send your dns server not the isps

you'd still have to come up with a creative way of only catching the first query and not the ones after it

[OdinsDream]

This is more of a project I'd like to implement, I was just wondering what steps I should take first. I believe it wouldn't matter which query I get, since I could run a script from that page disabling future filtering.

Which DNS server would lend itself to this?
_________________
s/(?<!gnu\/)linux(?! kernel)/GNU\/Linux/gi

Don't blame me. I didn't vote for him.

http://john.simplykiwi.com

[Sequentious]

http://nocat.net/

Check out their software they've written. I've been thinking about implementing it myself.
_________________
--
Chris I
chris@cidesign.ca :: www.cidesign.ca/~chris/