A bit late i know, i was browsing to find some answers too, so just in case someone have this problem too, go to Services>>Captive Portal and enter the website you want the person to be redirected to in the field named "After authentication Redirection URL", don't forget to put the "http://" on front of the "www" or it won't work…. :) {ie:  http://www.yyy.com}

Yes thanks Noobie, that's a really great link you shared and just what i was needing, i choose the one posted by te user "lol" customising it a bit, however, there are also other great looking works there, thanks again!  ;D

I found the problem. It's due to security fixed on Mac OS 10.7.2 that require to check the certificate revocation list before load any https page. One of the solution is to bypass the the IP address of the CRL and OCSP of the certificate issuer in captive portal.

with squid + lightsquid or squid + sarg you can log sites with squid + squidguard or squid + dansguardian you can filter sites/block sites

Disabled the Logout popup window on captive portal and is working fine on all browsers…

Thanks guy's, i'll take the advice and stick with notifying the customer.

Many thanks for your help, but the problem is still persist. Now I think to refresh the installation with a new one, and retry the procedure step by step. Best regards

Disabling MAC filtering in Captive Portal settings worked for me.  The repeater was affecting the MAC-IP relationship for the client trying to log in. "If this option is set, no attempts will be made to ensure that the MAC address of clients stays the same while they're logged in.This is required when the MAC address of the client cannot be determined (usually because there are routers between pfSense and the clients)."

Dear fluca1978 , Thanks for your reply. @fluca1978: @steelmax11136: 1.    LAN only Vlan10 2.    LAN output Vlan tagging and trucking enabled to distribute across the network My question here is: If WAN come from a Vlan given by CoreSwitch will I be able to make output from LAN to give Same VlanID & DHCP given by CoreSwitch + with Captive portal? @steelmax11136: 3.    Pfsense should be able to talk Windows AD & Radius Server Which are in Vlan5 Dear its possible since I succeeded in testing environment but was without vlans… My question here is that how I am gonna make Pf-sense talk windows AD which is in vlan5 to since Pf-sense is in vlan10. ***Note: I know how to setup captive portal to authenticate against win AD. I just don't know how to link the in a vlan trucked environment. @steelmax11136: 5.    Do I need Dual WAN eg: Vlan5 & Vlan10 I really have no Idea on how to make and use single interface for vlans can you plz give me a link to a guide for these steps. Is that I can use single WAN or Do I have to Use Dual WAN. To make pf communicate Vlan 5 & Vlan10? I thank you for your valuable time. Thank You a lot!  :)

Thank a lot….I succeeded as you said...God bless u..

Sounds like what usually happens when the users on that interface can't use DNS. If you are specifying external DNS servers in the DHCP config, make sure you have them set on the 'allowed ip addresses' tab of CP.

Easily possible, no. Anything is possible with custom development. That's not an easy or quick process though.

@Alan87i: Bummer Any word on when that might happen? Is your radius2 package running on 2.1? Do you know if I can accomplish what I want too do with M0nowall? They want to release pfsense 2.1 on world IPv6 day - someone in june as far as I know. For pfsense 2.1 all freeradius2 binaries needs to be recompiled and .pbi packages needs to be build. The compilation of the binaries did another forum user for me who has more knowledge about that. I didin't ask him about that till now because he seems to be very busy if I follow his other posts. Monowall: You can try the CP of monowall with freeradius2 package. perhaps it will do accurate accounting but I don't know.

I unchecked "Reauthenticate connected users every minute" option in Captive Portal and now the time counter is worked well as I desire. :) Thanks @Nachtfalke for your help.

@jameson: http://doc.pfsense.org/index.php/Captive_Portal_Vouchers http://forum.pfsense.org/index.php/topic,41658.0.html Sorry, can you explain better? because it still doesn't work. Thanks for help, Bruno

http://doc.pfsense.org/index.php/FreeRADIUS_2.x_package#FreeRADIUS_Plain-MAC-Auth_as_802.1X_request_with_Captive_Portal Using freeradius2 package and 802.1x mac auth. Create a user for each pc's mac address. I have just set this up on a test machine. And it works  as far as the bandwidth limits per mac address. But The usage limit is bugged for me anyways. A few mistakes I made along the way. in CP  the IP for the radius server= use the lan ip of the pfsense box. I tried 127.0.0.1 and it doesn't work. MAC address format leave on default then just copy and paste mac's for each new user from the dhcp status page. All users will have the same shared secret that you put on the CP page. On CP page top set an idle time out say 60 minutes or so then get rid of the hard time out. leave it blank. Accounting updates I've tried both but start stop should work fine for speed control.