Hello,
Where can we download this program?

Thanks.

Well …
As usual : ten of thousands have a working situation.
You haven't

A fact : You and I have the same software.
Only the settings are different.
Our settings are ok - because it "works".
Yours ..... well ..... this is what we have :
One word.
"Problem".

Should I detail my settings ?
Or you ?
Chose wisely  ;)

So, I ended up resetting to Factory Defaults. This allowed me to do the exact same setup and it worked. I had all of my configurations saved in a document. It is odd how it just stopped redirecting to the authentication page.

@mdes:

Oct 18 13:41:50 gw logportalauth[75440]: Zone: BUILD_F3 - ACCEPT: unauthenticated, 21:41:ad:ac:4f:11, 192.168.34.19

Good news.
YOU are the chief of your firewall.
I you have any doubt, ask the firewall yourself directly.
"Skip the GUI - list what is in the firewall" : https://doc.pfsense.org/index.php/Captive_Portal_Troubleshooting
Check the tables :the IP and MAC are listed ? (thus : they pass…)

Hi,
it seems I found the right configuration for pfSense ver. 2.4.x by adding the following lines:

$cprules .= "# Rules to allow DNS queries to external servers from unauthenticated users\n";
$cprules .= captiveportal_create_ipfw_rule("add", $rulenum,
"allow udp from any to any 53 out");
$cprules .= captiveportal_create_ipfw_rule("add", $rulenum,
"allow tcp from any to any 53 out");
$cprules .= captiveportal_create_ipfw_rule("add", $rulenum,
"allow udp from any to any 53 in keep-state");
$cprules .= captiveportal_create_ipfw_rule("add", $rulenum,
"allow tcp from any to any 53 in keep-state");

above the section that starts with:

$cprules .= "# redirect non-authenticated clients to captive portal\n";
$cprules .= captiveportal_create_ipfw_rule("add", $rulenum,
"fwd 127.0.0.1,{$listenporthttp} tcp from any to any dst-port 80 in");

Remember that the basic prerequisite is to enable the redirecting of all dns requests to pfsense as shown in https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

Hi

Sorry for late, been busy at work,

yes, I have changed all parameters (including keys) to get voucher id as short as possible with all numbers and just few letters.

its not a big problem, because i.e. in a roll of 5000 vouchers I have maybe 10 faulty - I am just removing them before printing, but now I cant find them so I am risking providing users with faulty voucher.

I will wait for update and problem will be solved.

Thanks any way.

Hi,

Here : pfSense Forum » pfSense English Support » Captive Portal » Voucher Length

That has not been corrected yet but is no worse than in 2.3.4_1. And it impacts OpenVPN, not Captive Portal. It is not a RADIUS thing, but an OpenVPN thing. I have not tested it but I would guess that LDAP would be the same.

Uploaded files get renamed. In your html prefix all the filenames with "captiveportal-", eg where you call mypicture.jpg change that to captiveportal-mypicture.jpg

All right, I found out that radius mode of captive portal was on start/stop instead of Interim.
Fixed.

@thanhit89:

What would I do?

Explain this more clearly :
@thanhit89:

I'm running 2.3.3-RELEASE version. I build two zones A & B in Captive Portal. In Zone A, I have three interfaces X, Y, X. In interface X, i have three Access Points: AP1, AP2, AP3. Now, I want AP1 & AP2 run in Captive Portal mode but AP3 is not.

Upgrade;
Explain " three interfaces X, Y, X", I count 2.
"AP run in Captive portal mode" ?? Are you aware of the fact that the AP's should run in basic AP mode (no router functions, etc).

Upgrading to 2.4.0.RC solved the problem. Captive portal now recognizing the MAC bypass list.

@khan:

Captive Portal Self Registration Using Free radius & Mysql Tested with 2.0.2-RELEASE (i386) built on Fri Dec 7 16:30:14 EST 2012 in vmware 8.

Caution : this procedure was perfect for me. Please use at your own risk & make backup.

You need few thing to do this

php-mysql support in pfsense. Default is disabled. follow this post to do it

http://forum.pfsense.org/index.php/topic,47150.0.html

your command should be

pkg_info -r http://ftp-archive.freebsd.org/pub/FreeBSD-Archive/old-releases/i386/8.1-RELEASE/packages/All/php52-mysql-5.2.13_3.tbz

and

pkg_add -rfi http://ftp-archive.freebsd.org/pub/FreeBSD-Archive/old-releases/i386/8.1-RELEASE/packages/All/php52-mysql-5.2.13_3.tbz

tips: according to his (sash99) post some package dependencies should occur. But I did not found 1. what I did..

in command added package with

pkg_add -rfi http://ftp-archive.freebsd.org/pub/FreeBSD-Archive/old-releases/i386/8.1-RELEASE/packages/All/php52-mysql-5.2.13_3.tbz

in command

/etc/rc.php_ini_setup

installed freeradius2 package from system/package rebooted pfsense in command

touch /etc/php_dynamodules/php52-mysql

rebooted pfsense.

Step 2
Config pfsense freeradius according to this doc
http://doc.pfsense.org/index.php/FreeRADIUS_2.x_package
and for sql  support
http://forum.pfsense.org/index.php/topic,43675.msg235475.html#msg235475
add extra table using reg_users.sql.txt file sql command or u can rename this to reg_users.sql and import via phpmyadmin

I hav added database file  also.

step 3

now rename every file & remove “.txt” from file name ie

captiveportal-cp_reg_suc.php.txt to captiveportal-cp_reg_suc.php
captiveportal-bootstrap.min.css.txt to captiveportal-bootstrap.min.css

and so …

now edit
captiveportal-cp_reg_suc.php in line 104 insert your sql server ipaddress & password.

Upload evry file in captive file manager except
cp_portal.php
cp_error.php

in captive portal main page
enable captive portal in Lan
check Disable concurrent logins
in Authentication section
check RADIUS Authentication
in ipaddress box –----------- 127.0.0.1
port box ----------- 1812
sharedsecret box -----------your shared secret
in Accounting check send RADIUS accounting packets
in port ----------- 1813
Accounting updates ----- check strat stop
In RADIUS NAS IP attribute select your lan.

insert cp_portal.php in “Portal page contents”
cp_error.php in “Authentication error page contents”.
Save. And you are ready to go.

Important
1. you should change php file content according to your need.

2. be aware about adding php-mysql package you may not be lucky as i was. if anything goes wrong follow "sash99" post carefully.

3. in my captive portal page i have some security like a client with a mac address can only register one account.

please let me know your experiences.

Hi  please provide with explanation and provide any link if you have create any document because i am new learner pfsense .

Hi,

What about pfSense => Services => Captive Portal => [zone] => Configuration => Enable Pass-through MAC automatic additions ?

It's better to auto purge non-authenticated clients, use at least one (big) time out value - don't leave them empty.