Hi there,
tried to get a captive portal demo working on a VLAN 30, with the parent being the LAN interface, on a DEC750, OPNsense 22.1.5-amd64.
- I've created the DHCP for guests to be 192.168.111.1/24.
- I followed the setup guide to come up with a reduced "no authentication" / splash screen setup.
Everything works when I do not activate the captive portal, browsing is possible, correct IP is assigned.
I then add a captive portal on the VLAN 30 interface, no auth, no enforced group. The client connects, gets an IP assigned via DHCP, gets redirected to http://192.168.111.1:8000/index.html and runs into a block / hanging connection that times out.
I also add an "allow everything on guest" rule just to be sure.
I can curl http://192.168.111.1:8000 from LAN and on the opnsense shell itself and get the template as response. A curl from the guest client runs into the block.
If I add the client mac to the allowed list of the captive portal, I can browse everything from the client, but still not access http://192.168.111.1:8000.
I've enabled a log for all known firewall rules but there is no relevant entry in the firewall live view.
Any idea what I'm doing wrong?
So, if anyone else has this problem with a samey setup: Fiddle with the guest isolation enforced by the unifi devices, that's the point where the traffic gets dropped. Solved the case for me.