Guest access

  • Hi,

    i'm trying to place a "pfsense" firewall behind my router. My problem is, my router can't send 2 differnt SSID's. So i want to have an appliance firewall for authentification. The firewall should be able to authenticate by MAC or with a certificat. If the user haven't valid credentials, a login screen should appear to ask for internet connection (i need to proof it) or to create an account for temporary login.

    Also there should be a log to comprehend what the client was doing in my network.

    I don't want to buy a new AP to connect it behind the firewall, thats why i wanna have a solution to use my Modem/Router.

    Best Regards

  • Nice, and where's your question?

  • I'm just going to know how to realise that. Is it possible?

    Best regards

  • LAYER 8 Global Moderator

    So let me get this straight.. You want to run a captive portal behind your wifi router on pfsense, and expect it to intercept traffic and allow it or not allow it, while logging it for clients connected to your wifi network??

    How is pfsense even going to see the traffic??

  • Thats it.

    I thought somehow the gateway from the DHCP server to provide the firewall. Or anyhting like that.

    Thanks for your anwser.

  • LAYER 8 Global Moderator

    Why are people such cheap bastards??  If what you want is captive portal - then do it the correct way and put your wifi network behind pfsense..

    So does your current wifi router/modem/gateway even have the ability to change the gateway it hands out via dhcp?  Many soho devices do not..  The dhcp server on the device is very limited..

    Let say you could do that.. So now your going to run pfsense just as lan client so all your packets your going to send through it, since its the gateway your going to hairpin and then just send back to the router as it is the one connected to the internet..

    Dude turn off your wifi on your "modem" get an access point or 2 or 3 of them and put them behind pfsense.. There you go all your problems solved for a few bucks.. You do know any wifi router can be just an AP.. So for as little as like $20 you could have AP actually behind pfsense…

Log in to reply