just play around with squid and squidguard :)

Ah, excellent idea. What edits would I have to make to the default code in order for that to happen? I can't code my way out of a paper bag.

@rhy7s: I'm looking around at the moment trying to figure out a RADIUS solution to allow data-based voucher access for the pfSense captive portal. Something I was wondering was whether I would have issues with the various wireless bridges I have deployed. In the ARP table multiple IPs share the same bridge MAC address Then your bridge isn't bridging, it's messing with MACs where it shouldn't be. That won't work if that's how it shows up.

If they'll let you use RADIUS accounting and cut the users off via re-authentication, yes.

Not yet implemented.

This is a feature request and i advice you to go through the pfSense customer support with detailed description or just post in redmine.pfsense.org to be taken in consideration when someone is pleased to implement it.

Thanks - I will give that ago. I have made the changes remotely and will try to get someone to check the jukebox later. Thanks!

Yes, a few more features (like Vouchers) but what works now in 1.2.3 will continue to work in 2.0. http://doc.pfsense.org/index.php/2.0_New_Features_and_Changes#Captive_Portal

alright, i found the root cause. it's due to our radius server does not respond to it.

thank for the reply, that sounds good i will try release 2 of pfs, i have to find my way using radius server then.

I'm not sure anyone has this working all the way. You might have more luck searching for the phrase "single sign-on" instead of auto login.

There isn't a way to let users manage their own passwords in pfSense right now. You could setup a FreeRADIUS server, point the CP authentication at it, and find a web-based GUI for FreeRADIUS that includes a mechanism that lets the user change their own password.

I've now been informed that this is not the case - That the portion that was locked down was relative to the users accessing a Enterprise authenticated network… So, I'm going to try a standard Captive Portal...

@renoid: Hi, I have installed Pfsense 1.2.3 rc3 with captive portal and Per user bandwidth limit, it works fine. I wondered if is possible to assign more bandwith to determinate user. Thanks in advance tutorials please ? i'am very need it

@tenso: hello the configuration file clients.conf radius we have the following syntax Customer host.domainname ( secret = motdepasseradius shortname alias = nastype = Other ) in this file are given addresses of access points that have the right to access the radius server for authentication but what these attributes  secret shortname and nastype represent ? my access points can not access to the RADIUS server What should I change on the client file. conf thank Ok. It goes like this: client 192.168.15.254 {         secret          = yoursharedsecret         shortname      = Hotel-California } First word is client and it is your access unit/server/AP/whatever. It is not customer, it is hard-coded and all radius servers have it. You can use host name but, please, don't. Use IP address. Brackets are curly - no other can be used (for freeradius) I don't have other radius server here so I can't check them now. Secret is a secret word (not known/shared/whatever to other people/systems) shared only between your client access unit/server/AP/whatever. Yes, you can use the same one for all your systems. Shortname is, well, shortname. Name your client as you wish. nastype=other is OK. Is that enough for get you started? Please read HOWTO's but feel free to ask. Sasa