Após atualização Captive autentica mas não navega!



  • Boa noite a todos!
    Fiz hoje pela manhã  atualização do PfSense para a última versão, mas venho encontrando problemas.

    Uso a autenticação através de vouchers no captive portal, o que está ocorrendo é o seguinte:
    digito o voucher na página, no log aparece como login good, porém não navega, mas se for adicionado o mac da máquina no pass-trought do captive portal, a máquina navega normalmente.

    Alguma idéia do que pode estar ocorrendo? Já reinstalei todos os packages e mesmo assim o erro persiste.

    O que percebi, é que na dashboard, no captive portal status, não aparece o mac das máquinas autenticadas, apenas ip e voucher, se não me engano antes aparecia o mac, porém não tenho absoluta certeza disso.

    Aguardo por ajuda, pois preciso deste ambiente no ar novamente o quanto antes!

    Atenciosamente
    Henrique Medina



  • Já olhou os logs do pfsense para ver se o captive portal está alertando alguma coisa?



  • @marcelloc:

    Já olhou os logs do pfsense para ver se o captive portal está alertando alguma coisa?

    Se alguém autentica com um voucher válido, ele mostra no log o processo normal, validando o voucher e tudo mais. O erro que achei, foi ao restartar os serviços de dansguardian, squid e captive portal. Segue o erro:

    Alguma idéia?



  • Pessoal, alguns detalhes:
    Restaurei um backup de antes da atualização, e mesmo assim permaneceu o mesmo erro.
    Após isso, removi todos os packages do squid e dansguardian e instalei novamente, não aquele processo automático de reinstalação dos pacotes… mesmo assim o erro persiste.

    Qualquer máquina que tente autenticar no captive portal não navega, somente se adicionar nas exceções ou desativando completamente o captive portal...

    Tem algo que eu possa conferir nas regras do firewall quanto a esse erro? O mais estranho é que não foi mudado absolutamente nada na configuração, apenas atualizado...

    Realmente preciso de uma ajuda, uma idéia de onde procurar o que pode estar errado...



  • Nos logs que você mandou, só vejo erro no squid.

    olhe o cache.log do squid para ver do que ele está reclamando.



  • Boa tarde Marcelloc!
    Fiz um squid -k reconfigure, segue o cache.log após o comando:

    
    2013/09/19 15:14:15| Reconfiguring Squid Cache (version 3.1.22)...
    2013/09/19 15:14:15| FD 16 Closing HTTP connection
    2013/09/19 15:14:15| FD 17 Closing HTTP connection
    2013/09/19 15:14:15| FD 19 Closing ICP connection
    2013/09/19 15:14:15| Processing Configuration File: /usr/pbi/squid-i386/etc/squid/squid.conf (depth 0)
    2013/09/19 15:14:15| Starting Authentication on port 127.0.0.1:3128
    2013/09/19 15:14:15| Disabling Authentication on port 127.0.0.1:3128 (interception enabled)
    2013/09/19 15:14:15| Disabling IPv6 on port 127.0.0.1:3128 (interception enabled)
    2013/09/19 15:14:15| Warning: empty ACL: acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl"
    2013/09/19 15:14:15| Initializing https proxy context
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_READ_TIMEOUT': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_LIFETIME_EXP': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_READ_ERROR': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_WRITE_ERROR': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_SHUTTING_DOWN': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_CONNECT_FAIL': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_SECURE_CONNECT_FAIL': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_INVALID_REQ': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_UNSUP_REQ': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_INVALID_URL': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_SOCKET_FAILURE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_DNS_FAIL': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_CANNOT_FORWARD': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FORWARDING_DENIED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_NO_RELAY': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_ZERO_SIZE_OBJECT': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_PRECONDITION_FAILED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_DISABLED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_FAILURE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_URN_RESOLVE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_ACCESS_DENIED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_CACHE_ACCESS_DENIED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_CACHE_MGR_ACCESS_DENIED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_PUT_CREATED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_PUT_MODIFIED': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_PUT_ERROR': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_NOT_FOUND': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_FORBIDDEN': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_FTP_UNAVAILABLE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_ONLY_IF_CACHED_MISS': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_TOO_BIG': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_ESI': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_INVALID_RESP': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_ICAP_FAILURE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_UNSUP_HTTPVERSION': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| errorpage.cc(293) errorTryLoadText: '/usr/pbi/squid-i386/etc/squid/errors/Portuguese/ERR_GATEWAY_FAILURE': (2) No such file or directory
    2013/09/19 15:14:15| Unable to load default error language files. Reset to backups.
    2013/09/19 15:14:15| Store logging disabled
    2013/09/19 15:14:15| User-Agent logging is disabled.
    2013/09/19 15:14:15| Referer logging is disabled.
    2013/09/19 15:14:15| DNS Socket created at [::], FD 12
    2013/09/19 15:14:15| DNS Socket created at 0.0.0.0, FD 14
    2013/09/19 15:14:15| Adding domain usaflex from /etc/resolv.conf
    2013/09/19 15:14:15| Adding nameserver 127.0.0.1 from /etc/resolv.conf
    2013/09/19 15:14:15| Adding nameserver 200.160.145.3 from /etc/resolv.conf
    2013/09/19 15:14:15| Adding nameserver 8.8.8.8 from /etc/resolv.conf
    2013/09/19 15:14:15| Adding nameserver 200.160.145.2 from /etc/resolv.conf
    2013/09/19 15:14:15| helperOpenServers: Starting 0/0 'ssl_crtd' processes
    2013/09/19 15:14:15| helperOpenServers: No 'ssl_crtd' processes needed.
    2013/09/19 15:14:15| Accepting  HTTP connections at 192.168.10.10:3128, FD 16.
    2013/09/19 15:14:15| Accepting  intercepted HTTP connections at 127.0.0.1:3128, FD 17.
    2013/09/19 15:14:15| Accepting ICP messages at [::]:7, FD 19.
    2013/09/19 15:14:15| HTCP Disabled.
    2013/09/19 15:14:15| Loaded Icons.
    2013/09/19 15:14:15| Ready to serve requests.
    
    

    Muuuitos erros, porém não vejo algo que possa ter a ver com o problema que estou enfrentando.
    Edit: Esqueci de comentar, para testar, removi o pacote squid e instalei squid3, neste log já está com squid3, mas o erro persiste.



  • Só mostra erro na linguagem dos relatórios escolhida.

    Como você está "administrando" quem vai pelo portal ou quem vai pelo squid?



  • @marcelloc:

    Só mostra erro na linguagem dos relatórios escolhida.

    Como você está "administrando" quem vai pelo portal ou quem vai pelo squid?

    Pelo captive é quem digita o voucher, porém autentica mas não navega (as vezes até carrega alguma página, mas leva uns 10min) e pra passar direto pelo captive, adiciono o mac da estação lá em Services -> Captive Portal -> Pass-Through MAC.

    Estou fazendo mais alguns testes hoje, mas o problema ainda persiste. Estou tentando resolver sem ter que reinstalar tudo, porque se for necessário, acabo perdendo todos os vouchers que já tenho impressos (imprimo todos os já criados para deixar no setor comercial da empresa, sem precisar dar assistência para clientes que usam a wireless).



  • Sabe usar o tcpudmp para identificar para onde estão indo os pacotes?


Log in to reply