You can't have two portals on the same subnet and you also can't have different rules for different captive portal users.

Sounds like maybe what you really want is 802.1x on your switches, which could maybe drop users in a different VLAN/subnet based on their authentication.

Or instead of a portal, block all outbound web access, setup squid + authentication and maybe you can filter by user/group there (plenty of threads about that already)

By far the easiest option would be 802.1x on the switches if your switches are capable.

It has to send the speeds via RADIUS Reply Attributes, there are many examples around, for example, WISPr-Bandwidth-Max-Up and WISPr-Bandwidth-Max-Down.

Yeah, I agree to pretty much everything you said.. :) Thanks

Hi,

A picture is worth a thousand words  ;). So, yes please post a network diagram.

Regards,
Vikram

Help ….

ok I send you  the file

and the pass is daniel

Thank you

Quoting from the link I posted:

I'm guessing if it can't hit msftncsi.com it pops up a browser window in case you need to log into a hotspot. Thanks so much!

So it HAS something to do with CPs (and it has something to do w/ MY QUESTION) in a sense that it tells us the event isn't portal-side.

so (complementing Dere's answer,) THAT answered my question.

This is not a captive portal issue.
"link up/down" issues are often bad hardware or cable - or even the switch in front.

If you disable the NIC altogether, issues disappears ?

Checkout your Services => Captive Portal => CP-ID => Configuration page.
Something is missing in your 'html'  ;)

;D

You really used : "1020304050607080" ????

Make a backup …. and try it out - I'm NOT gonna do that for you ;)

hi Sylvain,
one way to do this is write a custom portal in PHP + enable captive portal + enable freeradius2 + setup MySQL server. I recently  did an exact setup for an Expo.

Regards,
Vikram

@MohamedMagdi:

Can you discuss in more details i made what you said but still don't work !!
…

Actually, there is need to "discus". Everything has been written down a long time ago ;)
Go here : pfSense Forum » pfSense English Support »Captive Portal
and checkout the very first 'Sticky' subject : PFsense 2.1 MultiCP and https with Windows Radius Guide

If you are using https (SSL) and you use are using pfSense internally generated certificates, skip everything up until DNS Forwarder (but feel free to read all of it).
Read DNS Forwarder
Read Captive Portal
Skip Authentication settings
Read HTTPS
Read A note about DNS

Will it be possible for you to update "services_captiveportal_vouchers.php" to run smoothly with pfSense 2.3 ?

@kapara:

Use Unfi AP's. They rock!!!  Cheap and work really well!!!  Super easy to provision!!!

I know they are brilliant I have few of them in another place, but coming back to place mentioned in this topic I am now using Tenda's (ceiling version) and I must say they do the job. Even it surprised me, because they support IEEE 802.1Q (QVLAN) and I can setup 4 different SSID's with 4 different subnet's using one cable connection and they works perfect with pfSense vlans with tags.

Yes it is solved in 2.3. lighttpd no longer exists, that's been switched to nginx which has no such problems.

you can create a schedule in rule with destination to 80 and 443 ports.

The virtual machine does not use dns or routing of host machine.
And everything works fine when the captive portal is disabled…
I'd like to find someone who has the same configuration (pfsense + captive portal and vouchers) in Hyper-V environment and it's working fine and correct.