pfsense WiFi MAC authentication



  • Hi

    I have posted before but i may not have been very clear. So i am trying again.

    I have a number of Hardware Firewall Routers at different locations around the country. I want to offer "Guest wifi" i want users to connect the the guest SSID and then see a splash screen with the option to login with facebook, google, twitter etc.
    Once they login their MAC address of their device will be saved on pfsence database so if that user goes to another site and connects to another router they will not have to login again. Is this possible?

    If it is can anyone tell me how i go about configuring this with pfsence / free radius.

    I have included screenshots and an example network diagram of the setup.
    it would be good if pfsence / free radius can make this work. Thanks

    0_1539593360383_network.png

    0_1539593454781_2018-10-15 09_09_27-emisnet-hiran Vigor2862 Series.png

    0_1539593461063_2018-10-15 09_10_45-emisnet-hiran Vigor2862 Series.png

    0_1539593468377_2018-10-15 09_10_54-emisnet-hiran Vigor2862 Series.png

    0_1539593474696_2018-10-15 09_11_15-emisnet-hiran Vigor2862 Series.png

    0_1539593494407_2018-10-15 09_11_23-emisnet-hiran Vigor2862 Series.png

    0_1539593500355_2018-10-15 09_12_40-emisnet-hiran Vigor2862 Series.png

    0_1539593506592_2018-10-15 09_12_57-emisnet-hiran Vigor2862 Series.png

    0_1539593512364_2018-10-15 09_13_14-emisnet-hiran Vigor2862 Series.png

    0_1539593517615_2018-10-15 09_14_33-emisnet-hiran Vigor2862 Series.png



  • @hiranuk said in pfsense WiFi MAC authentication:

    If it is can anyone tell me how i go about configuring this with pfsence / free radius.

    Once again, if there are any routers between the devices and pfSense, it will never see the device MAC address. I see 2 routers in between, so pfSense will only see the MAC address for the router closest to it. In your diagram notes, you say the MAC address is passed through 2 routers. This is nonsense. MAC addresses are never passed through routers.



  • Hi Sorry for the confusion. The diagram is just the current setup and how i would like it to work as it looks like my only option. I am not saying that the iphone MAC address is passing through 2 routers.

    I would like to however know how it is possible that companies like purple wifi and wifi spark can get it to work like the way in the diargram

    https://purple.ai/?utm_source=google&utm_medium=cpc&utm_campaign=764304889&ppc_keyword=purple wifi&gclid=EAIaIQobChMIx_z_j7mI3gIVCZ3VCh29KwZIEAAYASAAEgK-I_D_BwE

    https://www.wifispark.com/

    What type of server would they be using, windows, linux, cloud based?.
    When i tested with purple wifi, my iphone mac address was passing through me router and then through purple wifi's router then onto their server. Unless it was carried out another way.

    Im just looking for a free open source way of achieving this as i have over 2500 AP's which can be costly if i go with purple wifi. Thanks