@estatecafe

We are discussing 1.2.3-Release here at the moment.

And in terms of user accounts, i am using FreeRADIUS + phpMyPrepaid and point my CP radius settings to my RADIUS.

Since Voucher dont exist on 1.2.3-Release.  Maybe you can closely coordinate with 2.0 Developers for CP.

Regards,

forgot to mention, if you are trying to access any other port besides 443/80/81/8080 (the standard http ports) it will NOT work. you mentioned telnet, if you try to access email through outlook on a network that has a cp outlook wont work you have to open a browser first and then go through the cp stuff before getting on the net.

thats right you are not using a wan link. you may have to fake it then

Thanks.

I've just disabled DHCP server on wrt320n (and also wrt610n) and changed plug with inet source from WAN to LAN.
IP list based pass through -> mac list (for wired network)

CP works like a charm. :)

SOLVED.

@cylent:

UPDATE: I DID IT.
ITS NOW WORKING

thanks to all who didnt participate.

it was so simple i cant believe i missed it!!!

basically i added the opt1 interface to the proxy server list from the gui

Now; question 2 arises.
There is a speed limit option for CP users. well the passthrough users for mac address. dont they get full speed?
how can we let them get full speed and not the speed limit specified?

also, would it be possible in the future to allow all users to have their own assigned speed?

:)

Future will tell if that's the whole story for your setup. Are you using transparent? I cannot seem to get both CP and Squid working and sometime I have got it to work sort of once and not more etc. I have an upgraded system with quite a few packages so there may be other variables involved. Let us know if you experience any more problems or oddities.

Cheers,

You could set up a RADIUS server on which users are generated with a expire time.
Set the captive portal to authenticate against this RADIUS server and enable the option to reauthenticate every minute (might require some decent hardware if you want to do that for a large number of users).

Sorry, is
#radiusd -X

and in my first post:

have you same port in client (captive portal) and freeradius?

Sorry for my bad english!

Juanjo A.
Saludos

you could do it with 2 pf boxes.
one after the other, might have to do it with vpn/ppoe.

Ok, I'm at it again and have found some new info in my case.

I actually had yeat another close to working experience with pfS CP and it happened like this:

I removed the VLANs I had defined, NOTE however that none of them was in use or assiged to any interface, but they were defined in Interfaces|assign|VLAN

After I did that CP seemed to suddenly work immediately!

I culd enable/disable CP on different interfaces and everything worked as expected and logon page was directed to every time it should.

At this time I was just about to write a "solved" comment to this monologue thread.

And at this point squid as well as imspector was running and working on both LAN and GUEST interfaces and I could switch between them back and forth.

Then I did one specific thing that seemed to have killed CP again.

I, in effort to test stuff out, went to Status|Captive portal and removed the entry there for the client being authenticated through CP. After I did that and still now a long time after - and much after both timeout settins on captive portal settings page have passed - the client in question can surf with no problem or need to re-authenticate at all. I don't see any changes when I changes settings for interface or turn CP on/off - it just stopped working.

What's up? Can still noone here after my notes make any educated guesses about what's going on?!

Now I don't even have squid or imspector installed, I removed them both to rule them out in the troubleshooting, but that, even after reboots doesn't change anything. CP worked briefly but now seems vanished again.

I'm using:

1.2.3-RC3
built on Tue Oct 6 01:32:12 UTC 2009
FreeBSD 7.2-RELEASE-p4 i386

And I have interfaces like this:

WAN interface (fxp0)
LAN interface (xl0)
GUEST interface (vr0)  - attached to SOHO AP with crossover cable

Anyone..?

I just needed the terms and that link has it.  I had been searching but everything I was finding was from service providers.  I appreciate it.

Hello,
CP user data from /var/db/

Maybe your browser have some problems . Or maybe the connection of yours have some problems too.

private labeling | SEO-SEM Services

Did anyone ever find a good solution for this?  I have the same problem, and I've tried editing the index page but it doesn't affect it.  If after we authenticate we close and reopen the browser then it works.  But otherwise it keeps redirecting back to the portal page.

Hi,

Thanks for the Interesting;)

If a client try to enter on Internet, the IE or Firefox will try open the HomePage of that browser, and if the homepage is for e.g - http://www.google.pt appear in instant the page login of CP, but if httpS://www.google.pt does not open (for exemple, I now that page does not exist ;D).

Its maybe because the port? http is Port 80 or 8080 and https is 443 ???

The patch for this is pretty simple to implement.

If you put that router on a different interface you can enable captive portal on that interface.  Probably not the ideal solution, but it will definitely work.

Also, be sure to set the router to AP mode, otherwise you'll see one person accepting the ToS and the rest getting through w/o clicking on anything.

You can tie a MAC address to a specific IP address and then put the IP address in a penalty box with separate bandwidth parameters, I do it all the time.