Multiple login limits for captive portal voucher system
-
Hi is there in option in voucher system with captive portal functionality that allows the same voucher to be used for different MAC addresses a limited number of times can be done,
For an example , a voucher code can be used like 2 or 3 time for different Mac address after that it's not possible -
Fast answer for the common mortals :
Noop.
You've 3 or 4 choices, like the first (and only) user, the last logged in user (and the previous gets ditched) - every user that is using the code, and ... some other option.AFAIK, Freeradius could handle such a situation.
-
@Gertjan said in Multiple login limits for captive portal voucher system:
very user that is using the co
ahaha, I was thinking of posting a similar thread in hopes you'd reply on it. glad the question was answered.
Very new to PfSense, RADIUS and networking in general but trying my best to learn quickly.
So based on what I've read on thread and youtube tutorials. using the "default"/basic configurations has only three options 1)first 2)last 3)multiple so either way its unlimited users or a single user.
In order to achieve a custom limitation "n" machines connected per user (i.e. 2 - laptop + phone), I would need to setup the FreeRadius from the Free Packages tab, configure it with the certificates AND THEN create a user within the RADIUS Authentication which as the "Number of Simultaneous Connections" option - am I on the right path sir?
Hmm, appears its been discussed here aswell:
https://forum.netgate.com/topic/188491/limit-users-in-the-number-of-login-to-the-captiveportal/3 -
I have a captive portal user defined in FreeRadius called "cuisine":
subsequent entries on that page are all default.
But, at the bottom, I have for this user :
I'm not sure right now if this really works, I haven't tested if for long time.
To test, I need 4 devices.
Connect every device to the portal using the login cuisine and its password.
When connecting device 5, FreeRadius it should 'refuse'. -
@Gertjan Thank you, I will give it a try. I've been spending time customizing the src to include a countdown and an option to update the password within the captive portal..... hopefully it'll update the radius user password rather than "regular user"
QuickQuestion - would I need to type in this configuration each time a add a user in the RAD? :/
-
@dmchavoc said in Multiple login limits for captive portal voucher system:
option to update the password within the captive portal..... hopefully it'll update the radius user password rather than "regular user"
Noop.
The pfSense System > User Manager > Users
and
Services > FreeRADIUS > Users
are different lists, and have to be maintained separately.You can check the "flat file" that is used to indicate the allowed FreeRadius users :
See for yourself Services > FreeRADIUS > View Configuration and click on the Users button.Or look here : /usr/local/etc/raddb/mods-config/files/ and check out the 4 files you find there.
Look in all the file you can find in /usr/local/etc/raddb/ and all sub folders.
( Now you start to understand what FreeRadius is ..... don't worry, I see you running
I did the same thing )@dmchavoc said in Multiple login limits for captive portal voucher system:
QuickQuestion - would I need to type in this configuration each time a add a user in the RAD? :/
Maybe not. Can't remember.
If you declare :
for the very first user in the file, and you omit the "Fall-Trough=Yes", and that "Simultaneous-Use" for the rest of the file, unless set to another value.
You test, and you tell me ^^, (and answer yourself while doing so)
