@free4 said in Windows RADIUS Server: @mohkhalifa wow Amaizing Actually i would be quite interested to know how you've done that soon I will make a tutorial explaining the story from A to Z because it's really much better compared with freeRADIUS

@Gertjan shodan.io is a service that scans the internet for known exposure and for vulnerabilities i remember you are french, so I link you here a video in French on the subject https://youtu.be/SxjmOFBtsvk

Thanks dear for your kind reply. I solved my problem that I created another portal to handle the pfsense CP pages to the users and now everything is going perfect EXPECT I need to add a code to my logout page to get the close event from the pages with a warning message to the users that "if you close this page will be logged-out" then if the user confirm this warning message I will force the logout button before closing. Your suggestion is highly appreciated :)

Thanks dear for your kind reply :)

This : Is the 'simple' setup. The ipfw firewall works best when it 'sees' the MAC addresses of the connected devices. If it doesn't, well ... check our AP again : make it work as an AP, not a router. Routers hide MAC addresses for upstream routers (= pfSense). That not good if you want the captive portal to work flawlessly.

If you just want a count, you can use the script that is there for RRD: /usr/local/bin/php-cgi -q /usr/local/bin/captiveportal_gather_stats.php '<zone name>' 'loggedin' /usr/local/bin/php-cgi -q /usr/local/bin/captiveportal_gather_stats.php '<zone name>' 'concurrent'

@Gertjan Other one are missing, because of google being blocked in china, cellphones and multiple chinese garbage browsers (360browser, etc...) are usually using one of these URL: https://connect.rom.miui.com/generate_204 (Xiaomi) http://www.qualcomm.cn/generate_204 (Huawei) http://www.265.com/generate_204 (Google Chrome, Asus cellphones. This website is owned by google) I also heard that nintendo devices are using http://conntest.nintendowifi.net for captive portal detection but anyway, i don't think that's very important..

@Gertjan said in Trouble With CaptivePortal on Two VLANs in One Interface: You are already using multiple interfaces - a VLAN is considered as a interface. Typically, each interface has its own dedicated AP(s) - using a dedicated radio (== Wifi) setup. A user should choose the correct Wifi SSID first to use the correct network. You can't automatize this. I just wanted to make it happen. I was planning to redirect the user to the correct VLAN by using just one SSID. But I completely got that I can not do it. Thanks for your helps. @free4 I still can not find an opportunity to try PacketFence. I will write down here if I can be successful on it.

@Gertjan thanks, it looks like a solid explanation for my case

@jimp Thanks, this reply helped a lot

I think I got it going. After upgrading to v.2.4.4 I downloaded the built-in portal.html and adapted it to work for me. the ones in the book didn't work. thx for your patience with me.

Install the Patch package. Read the Patch package manual (Netgate's pfSense doc). Or : as you already found out, it concerns only the edit of a file, a couple of lines. A good text editor like Ultraedit or Notepad++ and a tool like SmartFTP or FileZilla (both can handle SFTP access) and your do it as is done old fashioned way - ans still today : with your fingers. Btw : and keyboard.