Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Captive Portal + Vlan on single LAN interface with Linksys Wireless Router

    Captive Portal
    2
    2
    920
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      AnointedOne last edited by

      Good day to all,

      Well, I have just being playing around with pfsense trying to learn about networking and network security and all that. Captive portal has been something that took my eye and I really wanted to learn more about it and what I can do with it. As a result, a thought came to mind which I was wondering, if it is possible and how do I go about setting it up.

      I have already setup that Captive portal and all is working good (however more some reason, my mac won't go to the login screen like the other devices would, namely android). The following is what I had in mind:

      I have a DHCP pool setup along with some static leases outside that pool. Just for first time experiments, all addresses in the pool are blocked, only static leases are allowed to access the internet. As I have need, I make the necessary adjustments. What I would like to do is, setup a VLAN with DHCP, and have certain clients fall into that VLAN instead of the main LAN. From there, I would like to setup captive portal on the VLAN while everyone else is alright and good.

      So, well….is that possible? :D
      *If so, how do I have certain devices go to the VLAN instead of the main LAN? (the vlan is subbed through the LAN) That VLAN, I would to be isolated from my LAN thereby 0 communication between them (don't want anyone to try and access my router or firewall now would I?)

      *Is there a way to say have devices or IPs, bypass the portal as well? Think that can greatly sum up everything or at least make it easier

      *Now, as I mentioned the above, I am also interested in placing my firewall and router in separate vlans as well. Again, this is just a networking novice just experimenting and testing out ideas, so forgive me ( just having some fun :) and I'm learning) so help with that, will be nice.

      Thanks and I do eagerly await your responses. :)

      1 Reply Last reply Reply Quote 0
      • S
        seanpearman last edited by

        For devices that don't need to see the captive portal, I'd put them on their own SSID and VLAN. Captive portal's are only really used in public spaces or for guests. If you know the user or the device, there's better ways to authenticate them.

        However, pfsense does have an option to whitelist MAC's which authenticates a device (not a user).

        You should control access to your firewall/router through firewall rules and router ACL's. The clients have to see the firewall so it can load the captive portal page.

        Good luck!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy