Captive Portal - High Availability
Hello guys :-)
This is my first post on this forum.
I'm network administrator for a computer party, for 400 users.
We use PfSense as firewalls, and for this year, i want a Active/Passive environment.
Is it possible to have Captive Portal in a Active/Passive environment?
So if i make a failover to the passive failover, the current connections will stay active?
So the users doesn't have to login again. :-)
If it were me I would (if you absolutely must have captive portal in the first place) enable captive portal on the primary/active node, but disable sync of captive portal config to the backup.
To my knowledge active captive portal login sessions are not synced.
You have to decide for yourself if this is acceptable. I consider a primary/master fail event to be pretty unlikely. And in that unlikely event I would not want failover to the secondary/backup node to be hindered by something lame like a captive portal. My primary concern would be traffic flow continuation.
Thank you very much for your answer :-)
I'll disable Captive Portal on the Passive node.
Have a nice day :-)