Help me design captive portal only use feature authenticate.



  • Hi everybody,

    I have attached topology as below.

    I'm using wifi controller and firewall connecting to radius server. Everytime user connect to wifi, it will request user input ID&Pass. But this network system don't have captive portal and use authenticate with voucher.

    Now, I want setup a pfsense server. Working as layer 2. It just have the feature is authenticate like radius ( use ID&Pass, vourcher) and use only one card network. It's possible or not ??? Because when I open captive portal it say can't use this card. Because it notice this card using for WAN.



  • Hi,

    You want to use vouchers ? Then you can't use freeradius (the package) for authentication. Only user/password authentication can work with freeradius.

    The captive portal is needed when you want to do authentication.

    Normal user like me and you should use a third interface for the captive portal - a captive portal should not be run on LAN, where only  trusted devices belong.

    A device with one interface, to be used as a firewall, that won't work of course.
    Get yourself a device with two interface, and 3 interfaces if you want to use the captive portal. Or buy a double NIC card (not very $€).

    Btw : using vouchers is a good idea because you won't be needing freeradius, which is not a simple tool to set up and manage (many have tried, more have failed).

    Also : pfSense is not a server.


  • Galactic Empire

    @drduckun:

    I'm using wifi controller and firewall connecting to radius server. Everytime user connect to wifi, it will request user input ID&Pass. But this network system don't have captive portal and use authenticate with voucher.

    What Wi-Fi controller are you using out of interest.