Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Captive portal will not redirect to portal page

    Scheduled Pinned Locked Moved Captive Portal
    49 Posts 4 Posters 11.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jbrown
      last edited by

      Hello,

      At one time I had this working flawlessly.  Then I disabled it for awhile.  I just reenabled it and it doesnt seem to work.  I tried using a website's IP, which still doesnt work.  i am running it with no authentication.  I manually typed in the portal page, which i was able to get.  but when i click on the button to accept the terms, it just hangs.

      any ideas?

      thanks

      1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan
        last edited by

        @jbrown:

        any ideas?

        Yep.
        Detail your setup - all LAN config.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • J
          jbrown
          last edited by

          pfsense 2.1.5

          captive portal is running on my lan interface.

          all my subnets are allowed on this except for my guest subnet.  but my guest subnet gateway is allowed.  the subnets that are allowed, do work just fine, does not go to portal page.

          i am not using dhcp on pfsense.

          hope this info is enough to get started.  thanks!

          1 Reply Last reply Reply Quote 0
          • GertjanG
            Gertjan
            last edited by

            @jbrown:

            pfsense 2.1.5

            Old version ….
            And memoiry is short  ;)

            @jbrown:

            captive portal is running on my lan interface.

            Ah ….
            Why ? Running the portal stuff on a dedicated (OPTx) interface makes live easier .... but I heard that it could be done.

            @jbrown:

            all my subnets are allowed on this except for my guest subnet.  but my guest subnet gateway is allowed.  the subnets that are allowed, do work just fine, does not go to portal page.

            Your (default !) 192.168.1.0/24 has subnets ?
            I guess I lost you there.
            I advise you to make a more classic, more simple, more default setup.

            @jbrown:

            i am not using dhcp on pfsense.

            Then where is this dhcp server ?
            pfSense is a professional gateway/firewall/dhcp/you-name-it

            Need more input - error ;)

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            1 Reply Last reply Reply Quote 0
            • J
              jbrown
              last edited by

              Ok, new details.  I set up a captive portal on a OPTx interface.  I tried to go to www.cnn.com and the url redirected but i get "webpage is not available", and the url looks like this….

              172.16.255.1:8000/index.php?zone=test&redirurl=http%3A%2F%2Fwww.cnn.com%2F

              also, even if i disable captive portal, i still cant get to 172.16.255.1:8000/index.php    "webpage is not available"

              1 Reply Last reply Reply Quote 0
              • J
                jbrown
                last edited by

                Ok, I understand why vlan 255 interface will not work for captive portal.

                When i have captive portal enabled on interface vlan255, the ip address configuration for that interface is 172.16.255.1 /24

                I already have 172.16.255.1 assigned on my cisco 3560.  i ahve a vlan activated with 172.16.255.1 as the gateway.

                so therefore when captive portal tries to redirect to 172.16.255.1:8000/index.php it is redirecting to the vlan255 gateway i have set up on my 3560.

                So what is best practice to get this working correctly?  thanks!

                1 Reply Last reply Reply Quote 0
                • GertjanG
                  Gertjan
                  last edited by

                  @jbrown:

                  …...172.16.255.1:8000/index.php

                  pfSense 2.2 will not default to '8000' by itself.
                  It's "8001" when you set up a first portal instance.

                  I advise you to:
                  Stop the portal interface
                  Make a backup of your confif.
                  Edit the config with Notepad++ - and remove everything between
                  <captiveportal>and</captiveportal>
                  Import the config file.
                  Configure your portal interface.

                  Captive portal ports start from 8001 now … I guess you retrieved something that was valid for pfSense <2.2 but not will not anymore.

                  If your OPTx interface has the IP "172.16.255.1", port "8000" will NOT work. The first instance will be using "8001".

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  1 Reply Last reply Reply Quote 0
                  • DerelictD
                    Derelict LAYER 8 Netgate
                    last edited by

                    8002 actually.

                    Chattanooga, Tennessee, USA
                    A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                    DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                    Do Not Chat For Help! NO_WAN_EGRESS(TM)

                    1 Reply Last reply Reply Quote 0
                    • GertjanG
                      Gertjan
                      last edited by

                      Hummm …

                      Right for the '8002' !

                      The port will be choses by the redirection in pfSEnse. Visitors don't have to know these details.

                      No "help me" PM's please. Use the forum, the community will thank you.
                      Edit : and where are the logs ??

                      1 Reply Last reply Reply Quote 0
                      • J
                        jbrown
                        last edited by

                        Thanks.  I will do that.

                        What about my issue with my vlan 255 on my cisco 3560 having an ip address of 172.16.255.1 - same ip address as my OPTx interface.

                        How does one go about this?  Sorry, very new to all of this.

                        thanks again

                        1 Reply Last reply Reply Quote 0
                        • DerelictD
                          Derelict LAYER 8 Netgate
                          last edited by

                          Assign different addresses on the same subnet to your interfaces.

                          Chattanooga, Tennessee, USA
                          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                          Do Not Chat For Help! NO_WAN_EGRESS(TM)

                          1 Reply Last reply Reply Quote 0
                          • J
                            jbrown
                            last edited by

                            I need to back up a bit….

                            When you posted about how it should be at 8002 and not 8000 i was still on pfSense 2.1.5.  I didnt realize until after I posted my last post.  so i did the upgrade (which i lost my squid proxy and content filter, but whatever - was still in trial mode anyways)

                            So now that I am upgraded to latest and greatest.  I deleted all my captive portal instances and started a fresh one on a OPTx interface.  I enable it.  It lets me go right to the url i want to go to without going to the redirect page.  i also tried 172.16.255.2:8002/login.php  i get nothing.

                            So confused

                            1 Reply Last reply Reply Quote 0
                            • DerelictD
                              Derelict LAYER 8 Netgate
                              last edited by

                              Are you behind another router?

                              Anything in any of the passthroughs? (IP, Hostname, MAC?)

                              Any users listed in Status > Captive Portal??

                              Instead of saying what you think you did, how about posting what you've actually done.  Interface config, portal config, firewall rules, etc.

                              https://doc.pfsense.org/index.php/Captive_Portal_Troubleshooting#Captive_portal_not_redirecting

                              Chattanooga, Tennessee, USA
                              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                              Do Not Chat For Help! NO_WAN_EGRESS(TM)

                              1 Reply Last reply Reply Quote 0
                              • J
                                jbrown
                                last edited by

                                Ok, forget about my OPTx interfaces, i have another issue with that.

                                So I set up captive portal back on my lan interface again and it redirects me to the captive portal page.  however, when i enter a username and password and click continue it just reloads the portal page as if i entered in the username and password wrong.  i have captive portal set to no authentication.  Any help?

                                I am getting somewhere thanks to your help, just need a lot of hand holding.  ;D

                                1 Reply Last reply Reply Quote 0
                                • DerelictD
                                  Derelict LAYER 8 Netgate
                                  last edited by

                                  If your browser thinks it's going to the portal page URL, that will happen.  It might also try to redirect you to the page you attempted.  There is a lot to be desired regarding pfSense's CP handling of this.

                                  1. After you log in, is there an IP/MAC entry in Status > Captive Portal??
                                  2. After you log in, if you manually enter an outside URL, does it work?

                                  If you always want to be redirected after login regardless, use the After authentication Redirection URL in the captive portal settings.

                                  I would like to see much better handling of the originally attempted URL.  It'd also be nice to have some way to redirect things like the Apple test URLs to something sane too.

                                  I have looked at the code and got scared away.

                                  In general it works well enough.

                                  Chattanooga, Tennessee, USA
                                  A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                                  DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                                  1 Reply Last reply Reply Quote 0
                                  • J
                                    jbrown
                                    last edited by

                                    After I log in, yes there is a IP/MAC entry.
                                    After I log in, if i manually enter an outside url, no, it does not work.

                                    I tried using the after uthentication redirection url - when i logged in, it reloaded the portal page but it changed the redirurl to what it should be.

                                    thoughts?

                                    1 Reply Last reply Reply Quote 0
                                    • DerelictD
                                      Derelict LAYER 8 Netgate
                                      last edited by

                                      "Does not work" gives us nothing to go on.

                                      Post your config.  You probably don't have firewall rules for DNS, or wrong DNS servers, or no firewall rules allowing traffic out, or no NAT rules, or ??.  With what we have it'd just be a guess.  Did you go through the list in the link above?

                                      Chattanooga, Tennessee, USA
                                      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                                      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                                      Do Not Chat For Help! NO_WAN_EGRESS(TM)

                                      1 Reply Last reply Reply Quote 0
                                      • J
                                        jbrown
                                        last edited by

                                        This use to work before so not sure what happened.

                                        when i say does not work, i mean that it will go back to the portal page if i enter an outside url.

                                        how do i post config?  just post the whole xml?

                                        1 Reply Last reply Reply Quote 0
                                        • DerelictD
                                          Derelict LAYER 8 Netgate
                                          last edited by

                                          Screen shots are probably better.  You have something hosed if you get a captive portal entry for the correct IP/MAC pair and keep getting redirected to the portal page when you enter other URLs.  How about just ping?  Can you ping, say, 8.8.8.8 after logging in?

                                          Chattanooga, Tennessee, USA
                                          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                                          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                                          Do Not Chat For Help! NO_WAN_EGRESS(TM)

                                          1 Reply Last reply Reply Quote 0
                                          • J
                                            jbrown
                                            last edited by

                                            I cant ping 8.8.8.8 after logging into captive portal.  what screen shots would you want?  thanks again.

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.