Captive Portal Routing Between Interfaces



  • Hello Everyone,

    I seem to have a problem with the captive portal routing between interfaces.

    Here is my setup:

    WAN (em3)
    WAN2 (em2)
    LAN (em1)
    WiFi (em0)

    Captive portal is enabled on my WiFi interface and is functioning correctly.

    If I enable my captive portal, I cannot route data between LAN to WiFi.

    If I disable my captive portal, LAN can access WiFi.

    Does captive portal prevent routing between subnets?

    Thanks.



  • It shouldn't, what do your firewall rules look like? Need to see both the WiFi and the LAN.



  • @mikeisfly:

    It shouldn't, what do your firewall rules look like? Need to see both the WiFi and the LAN.

    My rules are VERY simple, I only want to allow LAN to WiFi access, but not the reverse.

    Interesting, if I add the device on my WiFi zone to the "Allowed IP Addresses" list I can access the device. Also, if I turn off the captive portal, my devices on the LAN side can access the WiFi device fine.






  • This same thing was happening to me but I had tagged and untagged traffic on the same interface. My lan was em0 and my wifi was em0_vlan10. Making my Lan vlan 5 is what fixed my issue. Not sure why yours would be showing the same results since you are using separate physical interfaces.



  • @mikeisfly:

    This same thing was happening to me but I had tagged and untagged traffic on the same interface. My lan was em0 and my wifi was em0_vlan10. Making my Lan vlan 5 is what fixed my issue. Not sure why yours would be showing the same results since you are using separate physical interfaces.

    I was originally using VLANs, but as you see from my previous post I was having trouble… so I switched over to physical interfaces to simplify things.

    I wonder if there is a bug in the captive portal code that screwed up the installation when VLANs are used?



  • Download the .xml config file and take a look. Could be some old junk in there that wasn't changed. I'm assuming that you changed your WiFi assignment?



  • @mikeisfly:

    Download the .xml config file and take a look. Could be some old junk in there that wasn't changed. I'm assuming that you changed your WiFi assignment?

    Yes, that is correct - I changed my WiFi from VLAN to Physical, and kept the same interface name. Perhaps pfSense got confused.

    Where is the XML stored for the captive portal, do you mean the system configuration?



  • When you download a backup of your Pfsense config it's an a.xml.



  • Hi there,
    I have same problem with captive portal and vlan wi-fi
    http://forum.pfsense.org/index.php/topic,70417.0.html
    contact me: nghongnguyen@yahoo.com


Log in to reply