https://forum.pfsense.org/index.php?topic=44689.0 Have you followed this thread?

what error do you get?

I'd create a pre-auth page that passes the user from page to page (embedding content or using iframe for facebook), and then allow them to click "connect" that authenticates them. if they close the window they'll have to go through it all again. They'll soon learn ;-)

We've done something similar using RADIUS and a custom CP page. cron creates a username and password cron emails that username and password to a distribution list (could also use digital signage) cron deletes the previous days password

You'll need to identify the user and cross reference to their booking to do this effectively. I've seen this setup before where a custom external page is used to: user authenticates based on last name and room number booking system inserts the required info to modified freerad e.g. room, last name, check in and out dates freerad replies accept if it matches the criteria

For devices that don't need to see the captive portal, I'd put them on their own SSID and VLAN. Captive portal's are only really used in public spaces or for guests. If you know the user or the device, there's better ways to authenticate them. However, pfsense does have an option to whitelist MAC's which authenticates a device (not a user). You should control access to your firewall/router through firewall rules and router ACL's. The clients have to see the firewall so it can load the captive portal page. Good luck!

you'll need a layer 3 switch to achieve this with trunk ports facing the AP's and FW.

There is no possible way a firewall can tell two clients apart if they are sharing the same MAC address. You have a layer 2 problem, so you need to fix it at layer 2. That's a job for your AP/switches, not a firewall.

I've been looking in to how to resolve this issue. Here's what I did: Set the portal page to anything you like, but make sure it includes: require_once("globals.inc"); $request_uri = urldecode(str_replace("/index.php?redirurl=", "",  $_SERVER["REQUEST_URI"])); $portal_redirurl = urldecode("$PORTAL_REDIRURL$"); if(!stristr(urldecode("$PORTAL_REDIRURL$"), $request_uri)) { Header("Location: $PORTAL_REDIRURL$"); exit; } Set your pre-auth url to point to your external web server Web server loads its page (for me a data capture page), and posts to a database and echo's header location to authenticate.php Authenticate.php is essentially the default captive portal code, but I modified $PORTAL_??$ variables to be hard coded. This is then posted directly to the firewall (192.168.1.1:8002/index.php?zone=[zonename]), and the user is then forwarded to the $PORTAL_REDIRURL$ The user is authenticated and able to browse I hope this helps!

I'm done with this. I don't know why but both zone on same port had the same id in config.xml. I tried to manually edit it. Didn't work. I had to delete all zones and create them agin. Now IDs are OK. Bye :)

13 Mbytes  >:( Put it on a diet. (maar het zou moeten werken indien je alle regels respecteert -> zie ingebouwede pagina als voorbeeld).

@gerllys: …. In short, All authentication done on LAN 2 Squid does not recognize authentication. What should I do to solve it? Remove squid, test again.

You may refer to this thread: https://forum.pfsense.org/index.php?topic=57260.0 used that since 2015 and still working on pfsense 2.4.x . It uses FreeRadius+Mysql+PHP. Hope this helps. Cheers!

@Anas.sh: I've configured captive portal and the login page but when I tried to browse the internet via chrome, nothing happen. Even the login page doesn't appear, I've tried internet explorer and it's worked. Flush the cache of your browser (Chrome). Test with another browser (Firefox is also free). Test using another PC using Chrome. Test using another device which had not Chrome installed - install Chrome. @Anas.sh: it seems that the problem caused by ssl or https because I didn't activate it in my captive portal. If your did not activate the "https" authentication then the proiblem is not caused by "https". => rephrase please …. @Anas.sh: I don't have https server or certificates? If you do not use "https" then this is not an issue.

Hi, I entered the MAC of my smartphone on the MAC tab, and set a 250 Kbit/sec up and down. Connected the phone to the captive portal, and did a speed test, using the app with the same name. 248 Kbit / sec uo - 245 kBit / sec down. Btw : I'm using 2.4.1. packages : ACME / NUT / Avahi

Thanks , For kind help.. regards

Hello, Where can we download this program? Thanks.