If a client login in a wifi (in captive portal) all other client access internet.

alexcheddar

Hi, So my captive portal is up and running, it has a dedicated interface (opt 1) everything seems to work fine except that...

I have a router that suppose to give wifi internet to clients when they have successfully login, in the captive portal.. the internet line for router came from a switch that is connected to pfsense. When they connect to the open wifi they are required to sign in, in the captive network. supposedly if I login to the captive portal i will be the only one having internet and not the other clients but if I login, all other clients that are connected to the wifi will have internet even if they won't login..

it will just take one client to login for all connected devices to have internet.. I hope somebody could help me in this problem. thanks.

Gertjan

@alexcheddar said in If a client login in a wifi (in captive portal) all other client access internet.:

it will just take one client to login for all connected devices to have internet.. I hope somebody could help me in this problem. thanks.

If, by any chance, you have a switch, and you can cable up two devices to your OPT1 interface you'll discover your problem is solved. So, the problem is your "Wifi AP" that "does something" that you don't want.

Another test : check you DHCP pool on pfSense.
And now check the IP that your wifi portal users obtain when connecting to the Wifi using your AP.
You didn't notice something really strange ?

What happens is quiet clear : your AP is also behaving as a router, and you are probably using the interface labeled "WAN" on this device to hook it up to pfSense.
You should disable all routing functionality and all DHCP functionality in your AP, and you'll be fine.

jimp

Sounds like your wireless device is acting as a router and not only an AP.

Captive portal sees the address+MAC of your wireless device, not the clients. Fix the settings in the wireless device so that it acts only as an AP and the problem will solve itself.

alexcheddar

@jimp Thank you I understand it now since the Wifi is acting as a router it has its own IP address from the pfsense and when the user login, the ip address of the wifi has given access to the net. and thats why all connected client can also access the net.. thank you so much

alexcheddar

@gertjan Thank you so much for the information. it gives me insight of the problem.