Public WIFI
-
Thanks.
The router installed is a Draytek Vigor 2820, and the DHCP lease can take over a minute at times when there is a half dozen or more people on, or several people trying to connect at once. I thought this may speed things up.
I would like to have a personalised page as default, but I am not sure if want to block any ports until someone clicks a button on that page as I think this may annoy the large number of folk who connect with their Iphones, and other WIFI enabled phones/pads/palms etc?
The load balancing I mentioned was not so much about the bandwidth of the DSL lines (I actually have two piggy backed with the draytek router), it is more to do with allocation of bandwidth to clients? Is this controllable?
As I said earlier, I will find time to read through the site, but your input is valued, thanks.
I have managed to borrow a second LAN card so will give the live CD system a go.
I am not 100% techie - When using the live CD system, how are the variable settings saved? Simply into the RAM? I assume when installed onto the local disk that these variable settings are saved to disk? Sorry if that is a really stupid question!
-
-
It should be faster than a minute, but if you buy the cheapest hardware you can you'll get the lowest performance.
-
The whole point of Captive Portal is to require some form of interaction before people can access the Internet. Either you want that, and the issues that may come with it, or you don't… ISTR you can whitelist MAC addresses, but I'd still question why you want to use Captive Portal at that point.
-
That's not load balancing but Traffic Shaping
Live CD - settings aren't saved anywhere, but you can save them to floppy. With a full install settings are saved to disk.
-
-
The captive portal is more wanted as a 'welcome to our WiFi' type of thing.
The Draytek Vigor was recommended as a decent router to use - and wasn't cheap >:(
I will look into traffic shaping and see if the captive portal can do a simple "welcome" type message.
Cheers.
-
I'm not a fan of the idea of using the pfSense box with a wireless adapter. I'd recommend you use 2 wired NICs, hang the AP off the LAN side (in a LAN port, not the "uplink" port/s), disable the DCHP, and set the APs gateway as the pfSense box. It would simplify your monitoring a great deal when it gets sets up. It'll also give you some better performance by not cutting the dedicated AP out of the picture. Before anyone flames, when I say "performance" I'm mostly concerned about range and signal strength.
And don't worry about the install, it is extremely easy. Especially if this is all you're doing. You'll spend more time making the captive portal page look like you want than setting up the captive portal, traffic shaping, DHCP, configuring the NICs, and setting up the router.
-
I am using pfSense on two boxes, Atom dual core Jetway ITX motherboards just FYI, for public wifi access using DHCP and the Captive Portal. The reason for two is different physical areas or a large resort.
I can assure you that DHCP is very fast. I have a welcome screen with a disclaimer and users must enter a password, which changes frequently. I have one set of users, guest, and they all share the same password. In the HTML of the disclaimer, I have hidden the user 'guest' and that is sent as the user.
You can have many different named users or just one user shared among hundreds of users with one password.
I dumped two Intelinet GuestGate Captive Portals for pfSense and I am very happy that I went this route. Read the guides and docs and read the info on the forums on Captive Portal and DHCP. It simply works and has worked very well.
John
-
Thanks for the input guys.
@Capnsteve - I only wanted to use a computer with the LAN and WIRELESS card to evaluate, not for the install. I will be getting a new PC for this if I go ahead.
@Johnjces - Do you know if I could have a welcome page without any authentication at all?
-
Looking at the Captive Portal configuration screen there is a tick box for "No Authentication".
-
OK guys, I have demo'ed the software on my PC now with two LAN cards.
It is all fairly straight forward which is great.
It is very slow at opening initial web pages, but I assume this is because it is running as a LIVE CD version?
I setup a captive portal, and can have a simple 'click to continue' button.
Do all ports get blocked before pressing the 'click to continue', ie pop3 etc?
I cannot find away to use the captive portal to simply display a page without the button - I could add javascript to auto-submit the form, but there is likely to be issues with clients not having javascript, especially if using mobiles with WIFI. Anyone know of a way to simply re-direct to a default home page when first opening the browser?
Thanks for the support.
-
The easiest way to do what you describe is to set a redirect URL in the captive portal. Then you can set the username and password type to "hidden" in the html so that they don't display. Then make your "welcome" page with the "Submit" or "Continue" button or whatever you want to name it. Its not exactly what you describe, but should give a solid user experience all the same.
And for blocking, you'll pretty much have anything WAN side blocked off prior to hitting the "submit" button. But, this is probably a good idea to have so you can put some Terms of Use up to cover your own butt.
-
Thanks.
That is exactly how I set it up in the end.
