• 0 Votes
    2 Posts
    486 Views
    GertjanG
    @mbutz89: I keep getting this error: PHP ERROR: Type: 1, File: /var/etc/captiveportal_guest.html, Line: 20, Message: Allowed memory size of 134217728 bytes exhausted (tried to allocate 112082944 bytes). Has anyone ever encountered this issue and is there a fix for it? Thank you for any future replies. This file does not belong to a clean install of pfSense. Some one (probably you) uploaded  "self made files" and they do not respect the syntax (html or PHP) or you try to include files that do not exist. Put thinks back as they ware originally and you'll be fine.
  • Different login forms and different time for autentication

    1
    0 Votes
    1 Posts
    566 Views
    No one has replied
  • Empty voucherrolls after restore via fullbackup vmware

    2
    0 Votes
    2 Posts
    382 Views
    K
    Even generating a new roll leaves trhe CSV empty. I'm really in trouble with that. Anyone any idea? I got voucher_gaeste_active and voucher_gaeste_used for each roll in /var/db. but where are the unused vouchers saved?
  • How to secure internet access to go only via captive portal rules?

    3
    0 Votes
    3 Posts
    1k Views
    M
    Thanks for the reply. By meaning of it: How can I create block rule in fw without blocking CP? I wanted to add the firewall rule than blocks all the traffic at the end of list, so that CP rules for redirection, and rules that allows users IP + MAC to pass apply before that rule.
  • Squid3-dev captive portal integration

    3
    0 Votes
    3 Posts
    590 Views
    F
    https://forum.pfsense.org/index.php?topic=110577.0
  • Captive portal leaks DNS requests for unauthorized users

    4
    0 Votes
    4 Posts
    1k Views
    GertjanG
    I use these rules (see image) to enforce that users can only contact the DNS resolver running on pfSense. Abusing this DNS server (the one pfSense uses)  for tunneling purposes …. I don't know ... [image: dns-pfsense-portal.PNG] [image: dns-pfsense-portal.PNG_thumb]
  • Captive Portal HTTPS Login Page and Letsencrypt Cert update

    3
    0 Votes
    3 Posts
    2k Views
    jimpJ
    Use /etc/rc.restart_webgui like the example shows, that will restart nginx instances for the GUI and Captive Portal. It happens quickly, there isn't really any incentive to restart only one or the other for something as infrequent as a certificate update (once per month at most, could be as rare as once every 90 days)
  • [SOLVED] Captive portal is blocking port 80

    5
    0 Votes
    5 Posts
    2k Views
    GertjanG
    Great !
  • Don't see new CP-Portal under Monitoring

    3
    0 Votes
    3 Posts
    700 Views
    M
    Thanks that works. Post is resolved :)
  • Nas identifier to authenticate users instead of IP address?

    4
    0 Votes
    4 Posts
    766 Views
    GertjanG
    @YQ: ….. Not really. They specifically use nas identifiers to identify hotspots. (did a search on their site using google's "site:" parameter) Of course they use the NAS. And the IP …. and who knows what more. I have the technical doc from these guys http://www.passman-hotels.com/ (a portal operator in France) and their AP's are using VPN's. Or maybe they use a Radius server build for their own needs. I can't tell (and they won't tell me ^^).
  • How to change the default TCP port 8002 for the captive portal ?

    4
    0 Votes
    4 Posts
    9k Views
    GertjanG
    @j4nus: Is there a way to specify the zone id ? The zone id 80 (in place 2) would be a good match, so the captive portal would run on tcp/8080 which is usually allowed (at least to connect a proxy). Using "8080" (http), it can be done. The dumb solution : create a portal zone. You'll see the port number increments. Continue creating until you reached '8080' for your http. Now, wipe all preceding zones. Or: The smart one : create a zone. Test drive it. Stop captive portal. Edit your config.xml (the captive portal is easy to find, change the ID (which will be added to 8000)). Save. Start portal. Check.
  • Captive Portal: RADIUS Authentication + VLAN Assignement

    5
    0 Votes
    5 Posts
    3k Views
    A
    Thanks jimp! Will look into that. EDIT: Will FreeRADIUS do the trick? I see you can assign users a VLAN…
  • Did captive portal view button behavior change ?

    4
    0 Votes
    4 Posts
    876 Views
    D
    Wow, thanks for the quick reply and fix :)
  • Logout Option with captive portal + free radius

    11
    0 Votes
    11 Posts
    3k Views
    D
    Ohh i am a new to it soo i need some help. it would be great if some can help ok i need my log out page to display some things one is username of the logined in account second is the mac address third how much data the user used im am doing in a vmware soo till now no issue i dont know coding so hope you guys can help me out i modified a templet so dont think i designed it .. i have a issue in firefox also i need it to display it not like a pop up in firefox showing this network  requires you to login can any one help me out whit this too will test with chrome also hope it show without any issue [image: Untitledq.jpg] [image: Untitledq.jpg_thumb]
  • Generate access codes with a limited time for each client

    6
    0 Votes
    6 Posts
    1k Views
    F
    thanks a lot for your help Excuse me for my english
  • Captive Portal Login Link

    4
    0 Votes
    4 Posts
    2k Views
    GertjanG
    It's retrieved here https://github.com/pfsense/pfsense/blob/master/src/usr/local/captiveportal/index.php#L39 Up to you to 'hard code' it ;)
  • 0 Votes
    1 Posts
    705 Views
    No one has replied
  • Captive portal without needing to login

    18
    0 Votes
    18 Posts
    7k Views
    T
    Does this show you : [2.3.4-RELEASE][admin@pfsense.brit-hotel-fumel.net]/root: ps ax | grep 'prune' 15442  -  Is      0:00.00 /usr/local/bin/minicron 60 /var/run/cp_prunedb_cpzone1.pid /etc/rc.prunecaptiveportal cpzone1 15733  -  S        0:01.28 minicron: helper /etc/rc.prunecaptiveportal cpzone1 (minicron) 79162  0  S+      0:00.00 grep prune (show here what it show you, do not say : yes - don't paste images of what you see, copy-paste the lines) [2.3.4-RELEASE][root@LAN-GW.lan]/etc: ps ax | grep prune 31149  -  Is      0:00.00 /usr/local/bin/minicron 60 /var/run/cp_prunedb_client.pid /etc/rc.prunecaptiveportal client 31312  -  I      0:00.18 minicron: helper /etc/rc.prunecaptiveportal asiakkaat (minicron) 31143  0  S+      0:00.00 grep prune So as you can see it is running. And i guess my problem really is that the DHCP lease time is less than captive portal idle timeout. Confusing that CP idle timeout is in minutes and DHCP lease in seconds. But yeah, im ok with vi, ssh and cli. But not good with coding, so the php is too complex for me. I used a portal idle timeout to great effect at a hotel. I only wanted them to be bothered by the portal once - even on a multi-day stay. I used an 18-hour idle timeout and a shorter DHCP lease time. I just made sure that the dhcp pool was large enough to accommodate the device churn through the property so the same lease was always available to give back to a device until they were long gone. As soon as the device left the property for 18 hours, the dhcp lease and the portal entry were both history. I was thinking about the same thing. Only once bothered, perhaps every 24 hours. I guess i just have to change the netmask to something larger first. Thanks alot. I'll see how the tweaking of DHCP and idle timeout affects :)
  • CP Mac Authentication Table - It's over 9000!

    4
    0 Votes
    4 Posts
    893 Views
    C
    We are authenticating users against a radius server that connects to AD - as 99% of our users have accounts.  The rest we assign vouchers on a per-case basis. We have enabled "Enable Pass-through MAC automatic additions" and "Enable Pass-through MAC automatic addition with username" so they only have to authenticate once and then we have their username associated with their device.  The issue arises when we have more than 9000 separate device/username pairs in the db.  I know there are some php files that may help in pruning the mac auth table, just not sure which ones they are and what parameters to pass to them. In the past, I've just been deleting the mac auth table once a year (just before fall semester - we are a University) and then everyone has to re-authenticate.  But with the growing number of devices everyone has, we are easily exceeding 9000 records within a year.
  • Captive Portal Basics

    5
    0 Votes
    5 Posts
    1k Views
    N
    Btw : I think that you never filled in what so ever, but our 'intelligent' browser will auto-fill some entries - check always everything before you validate a page. I didn't try to mess with cookies and stuff like that - just changed from my loved Firefox to Microsoft Edge… and it worked. There should be something wrong. So I decided to show all my steps just in case. STEP 1 - CREATE CAPTIVE PORTAL ZONE >>> X - Enable Captive Portal INTERFACES - OPT1 AUTHENTICATION METHOD - X LOCAL USER MANAGER/VOUCHERS Click SAVE - OK STEP 2 - ACTIVATE VOUCHERS Click over EDIT CREATED CAPTIVE PORTAL Click over VOUCHERS Enable    X - Enable the creation, generation and activation of rolls with vouchers Click SAVE - OK STEP 3 - CREATE AND GENERATE A VOUCHER ROLL Click over VOUCHER ROLLS Click over ADD Roll # - 0 (zero) Minutes per ticket - 10 (minutes only) Count - 5 (vouchers code) Click SAVE - OK - Voucher created - a new roll line appear at screen Click GENERATE - a button besides - asked for where to save a .csv file with vouchers codes - OK STEP 4 - CUSTOMIZE CAPTIVE PORTAL PAGE Click over EDIT CREATED CAPTIVE PORTAL Created a custom file VOUCHER.HTML to only ask voucher code ENTER YOU VOUCHER <form method="post" action="$PORTAL_ACTION$">         <======= DELETED THIS LINE FROM SAMPLE     <======= DELETED THIS LINE FROM SAMPLE </form> =============== Look down for HTML Page Contents / Portal page contents Click over SEARCH and load voucher.html Click SAVE - OK 5 - TEST It worked fine Thanks to all the community again !!!
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.