Config Pf Sense to show only captive portal page.
-
Hello all…
I need help to set up pfsense to show only captive portal page on OPT1 interface not as router (see attachment). I created a local captive portal user in pf and a custom page. All wireless clients must agree terms & condition & enter password to loginn. The main router is watchguard xtm 330 with 7 gig ports. Watchguard says my support is expire in 1/2015 & they can't help me!! I have to pay extra for support!! So I open & config one interface in watchguard xtm330 assign Ip 10.10.10.0/24.
My pf box...
2.2.1-RELEASE (i386) full install
Intel(R) Atom(TM) CPU N280 @ 1.66GHz
2 CPUs: 1 package(s) x 1 core(s) x 2 HTT threads3 intel nics
2 gb mem
40 gb hd
Thanks in advance....
![Pf Config.JPG](/public/imported_attachments/1/Pf Config.JPG)
![Pf Config.JPG_thumb](/public/imported_attachments/1/Pf Config.JPG_thumb) -
Just create a zone on your OPT1 interface and your good to go.
-
thanks for reply…
I do not want to use DHCP server on OPT1 just want to pass wifi traffic from ap through opt1 with only captive portal. Should I use static ip on opt interface setup? Should I have to do anything into NAT/Rules...etc to pass the wifi traffic? -
I don't know your subnet mask from the APs but it shouldn't be 10.10.10/24 since your WAN already uses that subnet.
U should use another subnet.
-
I do not want to use DHCP server on OPT1 just want to pass wifi traffic from ap through opt1 with only captive portal. Should I use static ip on opt interface setup? Should I have to do anything into NAT/Rules…etc to pass the wifi traffic?
And how should these AP-Portal-Wifi visitors obtain an IP ?
The portal can't work without a ststic IP, and its own DHCP server.Btw : your wan is 10.10.10/24 - change your OPT1 interface to 192.168.1.0/24
-
Thanks for reply.
here what I want to accomplish. see attach pic![Network diiagram1.JPG](/public/imported_attachments/1/Network diiagram1.JPG)
![Network diiagram1.JPG_thumb](/public/imported_attachments/1/Network diiagram1.JPG_thumb) -
Thanks for reply Gertjan..
And how should these AP-Portal-Wifi visitors obtain an IP ?
From main routerThe portal can't work without a ststic IP, and its own DHCP server.
Thanks. I was not aware of this!!Btw : your wan is 10.10.10/24 - change your OPT1 interface to 192.168.1.0/24
I donot want to do double net. Got it I have to do double net. or remove existing router and use pf as main router, set Opt to 10.10.10.0/24 and all ap to this subnet then turn on captive portal… -
-
Why not just renumber the OPT1 network?
-
-
-
Check:
Your LAN interface : 192.168.1.0/24 - ok, that the one by default. The LAN interface can have a DHCP server instance, or not.
So, make interface OPT1 (the portal interface) : 192.168.2.0/24 - active a DHCP instance on it - and a DNS resolver. The activate the portal interface - chose a login method - add firewall rules to the OPT1 interface.You can keep the WAN like 10.10.10.0/24
-
If I set opt1 ip to 192.168.2.0/24 and enable opt1 dhcp then, in this case I have to change all ap's static ips form 10.10.10.0/24 to 192.168.2.0/24 subnet.
-
Administering a network sometimes involves a little work.
-
yap you right…not a professional like you guys...but try to find short cut and learn something new!! Thanks for reply