It is fixed in 2.0! Though it is a strange case you are trying to model :)

According to what you say, i've tested with a minimal page (just the form) and the result is the same … about 20 - 30s

I tried it like you said and it's not working. I'm on version 1.0.1 tho so i'll try to upgrade to the last one and try again

I have reserved my first 50 addresses for my range of wireless user, e.g 192.168.30.1  are reserved  for DHCP Server, and of 192.168.30.51 to 192.168.30.250 for wiring user, this are static addresses. I have not the ability to add another PCI card to my pfSense. I want my wireless users go to Internet by the captive portal and the rest do not pass through the portal. Greetings and thanks for responding

Thanks cmb My problem was that my DNS wasn't the one of PFSENSE

my suggestion is the following config: 1.U can add an opt network interface and set up a dhcp server on it. After that from firewall do your rules as u wish for the entire class of ip`s o this NIC. this one works if u can attach your wireless AP/Routers directly to this nic 2. U can make ip aliases an use them in firewall rules

HOLA AQUI TE DEJO MI PORTAL NO MUY BONITO PERO MUY UTIL ESTA MAS QUE PROBADO <title>ENTRADA</title> <form method="post" action="$PORTAL_ACTION$"> | CUENTA CORRIENTE 024-100970-5 BANCO CASA PROPIA              A NOMBRE DE EDIXON CORTEZ CI:17.504.757 | | INGRESA A LA RED | USUARIO: |                             | | CLAVE: |                                 type="hidden">                            | | g gg | | | WI-FI CORTEZ 04145279364.04161565343 wi-ficortez@hotmail.com                           | hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhrfffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffhhhhhhh | </form> <marquee>PEDIMOS DISCULPAS POR LAS INTERUPCIONES DEL SERVICIO</marquee>

what modification? please help…

Hi, I am also looking for script so that once my user login, they able to change their captive portal password. By the way I am using FreeRadius. Please assist. Thank you

@jimp: There is support in pfSense 2.0 for vouchers that are time limited. That may be what you want. can't wait for this :)

No idea if I use DNS forwarder, to resolve my URL…. ?

If my captive portal "HTTPS server name" is "mywifi.local", how can I activate an SSL certificate from namecheap.com ? I ask, because during the activation process you need to receive an email at something like "admin@mywifi.local"…I guess I'm missing something, help please. Thanks

Are you sure there is a problem here? I'm not running pfSense, but the docs <http: tinyurl.com="" yc6yrvp="">say pfSense's Captive Portal feature supports RADIUS.  The RSA Authentication Manager, the authentication server needed to support RSA SecurIDs – hardware tokens or software token-emulation apps -- includes an 802.1x-compliant RADIUS server, built around the Juniper Steel Belted RADIUS. (The RSA RADIUS server supports both PAP and EAP authentication protocols, including POTP, TTLS, PEAP, and EAP15.) See: <http: www.rsa.com="" node.aspx?id="1166">and <http: www.rsa.com="" node.aspx?id="1167">. Looks like a match! All the pieces are in place, so if it doesn't work, it can't be a major challenge to make it work.  (I'm a consultant to RSA so I know the SecurID world best. but I'm certain both the free and commercial versions of WikiD <http: www.wikidsystems.com="">are also fully RADIUS-compatible. I would be surprised if any commercial two-factor authentication system does not today support RADIUS.) Suerte,           _Vin @vronp: Hi all, I understand the pfsense Captive Portal feature is similar to the Cisco "authentication proxy". Has anyone tried or does anyone know if it would be possible to authenticate with a commercial or open source software token (WiKiD or SecurID) instead of going through a browser login/password combination? thanks, Dave</http:></http:></http:></http:>

If I not misunderstood, the firewall rule will be apply to any traffic after they pass the Captive Portal (including MAC/IP pass-through) I've not search for any official document about this but from my configuration, how I solve some issue, I assume CP block all port for unauthenticated traffic. After that the firewall rules applied. Edit. I think I'm just get your point :-X You want to apply different rules based on "user" or just for "Guest"…I don't think I have that solution right now, but I'm planning to do so but with separate network segment for Guest only.

If you need specific customization, that you think are not present, there is paid support/development on portal.pfsense.org. Though i think you can implement something with Radius  and 2.0.