• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Captive Portal blocking allowed IP addresses with bandwidth in 2.6.0

Scheduled Pinned Locked Moved Captive Portal
captive portalallowed ipwhitelistblocking2.6.0
2 Posts 2 Posters 725 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A
    adnan97
    last edited by adnan97 Feb 22, 2023, 10:48 PM Feb 22, 2023, 10:05 PM

    I'm sure this is bug introduced in pfSense CE 2.6.0 version, because it showed since we upgraded from 2.5.2 version.
    We have devices with static IP address is on allowlist in the captive portal settings. These devices can't connect to internet but they can access firewall via ping to it.
    The problem occurs when I set the bandwidth up/down to the allowed ip address to bypass captive portal without authentication. Also, the connection is not cut off immediately after the modification. It is cut off after consuming the amount of data (bytes) set for it by the two bandwidth fields in the captive portal service edit window for zone. I think the limiter (up/down) works here as a quota size for this IP instead of being a speed limit for it.
    Note: When we increase the bandwidth value, the connection takes longer time and more packets or a larger amount of bytes event is interrupted by pfSense.
    Note 2: To fix this error temporarily, we can just open up their entry in the allowed IPs list, hit the save button, then the stuck devices can communicate with captive portal again.

    Has anyone else seen this behavior?
    I'm working on collection more information to do a bug report as issue in redmine.pfsense.org
    I looked but didn't see anything that matches what I want in the current bug list and topics raised, but there is something similar about "Allowed MAC addresses bypass Captive Portal" as follows:
    https://redmine.pfsense.org/issues/13323
    https://forum.netgate.com/topic/161952/captive-portal-blocking-white-listed-mac-addresses-in-2-5-0
    https://forum.netgate.com/topic/173061/captive-portal-breaks-policy-routing-for-bypassed-mac-addresses-after-upgrade-to-22-05-fixed

    Thanks!

    Edit:
    Bug report is here: (https://redmine.pfsense.org/issues/14020).

    G 1 Reply Last reply Feb 24, 2023, 12:46 PM Reply Quote 0
    • G
      Gertjan @adnan97
      last edited by Feb 24, 2023, 12:46 PM

      @adnan97

      From what I recall , these issues were solved with patches pfSense package ages ago :

      4dcf0368-291d-486f-9000-c36f26764e2e-image.png

      The bad news : you have to dig them up, here, in this forum or redmine.
      The good news : 2.7.0 - coming out soon - will take care of things.

      I was using 2.6.0 quiet long time, and issues (important to me) were solved after some forum interaction.

      No "help me" PM's please. Use the forum, the community will thank you.
      Edit : and where are the logs ??

      1 Reply Last reply Reply Quote 0
      2 out of 2
      • First post
        2/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received