Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Downloads keep going on when logout(manual or idle/hard timed out)

    Captive Portal
    3
    6
    815
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mendilli last edited by

      I happened to see that when downloading files, even if I log out manually or by idle/hard time out,  I expect them to stop but they keep downloading ,
      is there anybody else having this issue, and have a solution?

      Edit: I am using version 2.1.5

      1 Reply Last reply Reply Quote 0
      • Gertjan
        Gertjan last edited by

        Hi,

        I just tried this : I started to download a huge file from here: https://www.kernel.org, the latest linux kernel source, and when I rechead about 10 %, I disconnected myself.
        The downloading stopped.
        IE was even complaining about if after a while.

        I guess that your real problem is this number : "2.1.5" (which is dead version for many reasons), change it for "2.2.2" and check back.

        Note : only experts should keep old versions, they are nuts enough to auto-support it  ;)

        No "help me" PM's please. Use the forum.

        1 Reply Last reply Reply Quote 0
        • M
          mendilli last edited by

          thanks for the reply, but I have to stick with 2.1.5, because of some major mods that I have made, and while trying 2.2.2 ı am dissappointed with squid and squidguard, I think I will have to wait until they are working properly

          1 Reply Last reply Reply Quote 0
          • M
            mendilli last edited by

            is there any body to help me deal with this problem, I believe it is related to kill_states commands in captiveportal_disconnect function in captiveportal.inc, this command seems to be not working, and I know you will offer me to use the latest release, but as I said I need squid and squidguard fully functional with cp authentication, which is broken in the latest version

            this is the function with the red lines for killing states

            /* remove a single client according to the DB entry */
            function captiveportal_disconnect($dbent, $radiusservers,$term_cause = 1,$stop_time = null) {
            global $g, $config, $cpzone;

            $stop_time = (empty($stop_time)) ? time() : $stop_time;

            /* this client needs to be deleted - remove ipfw rules */
            if (isset($config['captiveportal'][$cpzone]['radacct_enable']) && !empty($radiusservers)) {
            RADIUS_ACCOUNTING_STOP($dbent[1], // ruleno
            $dbent[4], // username
            $dbent[5], // sessionid
            $dbent[0], // start time
            $radiusservers,
            $dbent[2], // clientip
            $dbent[3], // clientmac
            $term_cause, // Acct-Terminate-Cause
            false,
            $stop_time);
            }

            if (is_ipaddr($dbent[2])) {
            /* Delete client's ip entry from tables 1 and 2. /
            $_gb = @pfSense_ipfw_Tableaction($cpzone, IP_FW_TABLE_DEL, 1, $dbent[2]);
            $_gb = @pfSense_ipfw_Tableaction($cpzone, IP_FW_TABLE_DEL, 2, $dbent[2]);
            /             XXX: Redundant?! Ensure all pf(4) states are killed. */
            $_gb = @pfSense_kill_states($dbent[2]);
            $_gb = @pfSense_kill_srcstates($dbent[2]);
            }

            /*

            • These are the pipe numbers we use to control traffic shaping for each logged in user via captive portal
            • We could get an error if the pipe doesn't exist but everything should still be fine
              */
              if (!empty($dbent[1])) {
              $_gb = @pfSense_pipe_action("pipe delete {$dbent[1]}");
              $_gb = @pfSense_pipe_action("pipe delete " . ($dbent[1]+1));

            /* Release the ruleno so it can be reallocated to new clients. */
            captiveportal_free_dn_ruleno($dbent[1]);
            }

            // XMLRPC Call over to the master Voucher node
            if(!empty($config['voucher'][$cpzone]['vouchersyncdbip'])) {
            $syncip  = $config['voucher'][$cpzone]['vouchersyncdbip'];
            $syncport = $config['voucher'][$cpzone]['vouchersyncport'];
            $syncpass = $config['voucher'][$cpzone]['vouchersyncpass'];
            $vouchersyncusername = $config['voucher'][$cpzone]['vouchersyncusername'];
            $remote_status = xmlrpc_sync_voucher_disconnect($dbent, $syncip, $syncport, $syncpass, $vouchersyncusername, $term_cause, $stop_time);
            }

            }

            1 Reply Last reply Reply Quote 0
            • U
              unixaccent last edited by

              Hi there! I am also one of the many who is waiting for Squid and Squidguard to work in Pfsense 2.2.x. This tutorial "https://www.youtube.com/watch?v=xk60lg-9o3A" works only in 2.1.5. I just thought it is worth sharing.

              1 Reply Last reply Reply Quote 0
              • Gertjan
                Gertjan last edited by

                One solution that make you issue work:
                Back-port the actual code too your pfSense installation.

                From what I recall, the removal of firewall rules was buggy back then (2.1.5) so they repaired it - which introduces new versions.

                You you don't want do 'deal' with it (because you can't), but you have the need to have your pfSense modified without being upgraded: switch to this sub-forum https://forum.pfsense.org/index.php?board=34.0 (be SURE that you read the rules FIRST).

                Be ready to find out that the 'repair' will break squid …...

                No "help me" PM's please. Use the forum.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post