I have a debian linux server and a wireless AP. I want wireless users to be able to authenticate their computers with the AP. Basically I want them to connect to the AP and when they web browse I want them to be redirected to a web page that makes them authenticate using a username and password. I know this part can be done through proxy, but after they authenticate I want them to not have to authenticate that particular machine again. I also want to make sure that other things like ftp, ssh, etc... do not work until after initial authentication. Can anyone recommend a good way to handle all of this?