Captive Portal: no login screen
-
On CP interface (I now have CP disabled since it's not working but when it worked it did so with these rules..) I have the following FW rules in place:
PASS TCP/UDP GUEST net * n.n.n.n.1 53 (DNS) *
BLOCK TCP/UDP GUEST net * * 53 (DNS) *
BLOCK * GUEST net * LAN net * *
PASS * GUEST net * * * *where n.n.n.n.1 is pfS GW address on that net.
The idea is to allow only local DNS for clients (to not allow people to circumvent OpenDNS blockings if used) and to disallow LAN network and allow everything else (=Internet).
If you only have the last rule it should work. Not sure if you would hit CP (if working) first or if FW would prevent even that contact if rule is absent, the latter would feel logical.
Just like in the case with my pfS 1.2.3RC1 there must be something causing the malfunctioning, left overs from previously installed packages causing trouble even though they shouldn't or something; perhaps this is a random bug of some sort, I don't know, I'm mostly puzzled that noone seem to be able to outline a troubleshooting procedure that would pin these problems down. Perhaps there's more help in the pfS book.
Cheers,
-
Having this same problem right now. If I manually go to https://192.168.1.1:8000 i can login and then things work. Captive portal should automatically redirect me there if I'm not logged in though.
-
hmm - not even that (accessing https://192.168.1.1:8000) works at my system…
Does anybody know how to debug any further? What processes should run, what logfiles should i look into...?
-
I can't get Captive Portal to work…
Never redirects me to the login page..
I can surf directly...http://<gateway>:8000 works.. gives me the login page..
Login work..But i can already surf so the login is superfluous...</gateway>
-
Just my 2 cents.
1. Enable DNS Forwarding
2. Under DHCP Server
Gateway Address = LAN Address
DNS 1 = LAN Address
DNS 2 = BlankYou may now renew using your dhclient or ipconfig /renew (on win).
Also, try disabling squid proxy just for testing, and if there's an assigned proxy for your browser.
Regards.
-
I tryd that.. dident help.. even did a hard reboot on my pfsense…
:( -
Can you share your hardware specs?
And can you reinstall your pfsense?
-
use default configuration, but only editing your LAN and WAN. and get internet connection working
-
enable captive portal.
-
dont add any packages yet, and dont enable traffic shapings and all sorts of that, just the default.
-
if you get captive portal working, by then you'll add one by one what you need so that you will know whats interfering with CP.
So far my new installation works perfectly
– with or without radiuspackages
- with bandwidthD
- with IMSpector
- with Dashboard
-
-
Just my 2 cents.
1. Enable DNS Forwarding
2. Under DHCP Server
Gateway Address = LAN Address
DNS 1 = LAN Address
DNS 2 = BlankYou may now renew using your dhclient or ipconfig /renew (on win).
Also, try disabling squid proxy just for testing, and if there's an assigned proxy for your browser.
Regards.
I had the same problem.The login page wouldn't appear and i had to manually navigate to http://ip:8000.
The problem existed from the 1.2.3 RC's to the final version.
As DNS servers on the DHCP I had DNS from Opendns.
I removed the Open DNS servers from the DHCP page leaving it blank (the DNS forwarder is enabled) and everything works like a charm!!!Thanx axscode!!!
-
I use
My pfsense has 7 Interfaces enabled..
WAN - DHCP from ISP
WAN1 - DHCP from ISP
WAN2 - DHCP from ISP
WAN3 - DHCP from ISP
WAN4 - DHCP from ISP
LAN - 192.168.1.0/24
GUEST - 192.168.0.0/24 - Captive Portal Enabled - DHCP Enabled. No DNS, GW edited. Interface ip 192.168.0.1Guest Firewall Rules:
Allow
Proto:
*
Source:
Guest NET
Port
*
Desti
*
Port
*
Gateway
LoadBalance(and yes i have tryd without loadbalance rule)
Packages installed:
bandwidthd
phpSysInfo
rateipconfig /all from computer connected to GUEST:
Anslutningsspecifika DNS-suffix . : burken.biz
Beskrivning . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E
Gigabit Ethernet NIC (NDIS 6.0)
Fysisk adress . . . . . . . . . . : 00-23-8B-A8-DE-57
DHCP activated. . . . . . . . . . : Ja
Autokonfiguration activated. . . : Ja
IPv4-adress . . . . . . . . . . . : 192.168.0.49(Standard)
Nätmask . . . . . . . . . . . . . : 255.255.255.0
Lånet erhölls . . . . . . . . . . : den 12 januari 2010 17:35:08
Lånet upphör. . . . . . . . . . . : den 12 januari 2010 19:35:08
Standard-gateway. . . . . . . . . : 192.168.0.1
DHCP-server . . . . . . . . . . . : 192.168.0.1
DNS-servrar . . . . . . . . . . . : 192.168.0.1
NetBIOS över TCP/IP . . . . . . . : activated -
-
-
Well done mate. maybe you can share with burken some of your notes.
-
I dont think the multiple wan is the problem.
I can just change so everyting goes out to the normal WAN interface.. I will still never get navigated to the login screen…I have 192.168.0.1 as DNS server..
:(
-
One of the differences i see in your setup is that you use a wlan interface.
My LAN interface ends up to a structure of ~50 AP's.
If it is possible, try to use an ethernet AP and and test again.. -
I don't use WLAN.
GUEST is FastEthernet-RJ45 to my neighbors computer.