Hi all,
I try to setup a "Child" setup with the help of Captive Portal.
I want to limit the internet time of my child, so I want to have Captive Portal that allows the child to use the internet for 30minutes after the chores are done and he got a ticket.
I also want a block and an allow liste. The blocklist works good, but the allow list does not work.
I setup the captive portal based on the Guestnet documentation. (https://docs.opnsense.org/manual/captiveportal.html#captive-portal-firewall-rules) with my own firewall rules.
I added a picture of the NAT Rules and the No RDR rule. Also about the Firewall Rules.
To simplify it the allow_list_host only contains wikipedia.org and debian.org. It should be longer, but for debugging it removed the rest.
The list show the correct IPs in Firewall-Diagnostics-Aliases. If needed I can add a picture of it.
Can someone give me hint what I did wrong. Or how I can test it what goes wrong?
This was asked before with no answer (https://forum.opnsense.org/index.php?topic=46511)
Thanks for the help.
CU
Jens
P.S.: Latest updates are installed.
OPNsense 26.1.9-amd64
FreeBSD 14.3-RELEASE-p14
OpenSSL 3.0.20
The problem appers to be working temporary and then it re appears.
I deleted the post, because I tried after a reload of the alias and it worked.
Now about 10 minutes later the problem appears again.
I also added 1.1.1.1 to the allow list, and IPaddresses are working all the time.
I get a connection refused, message when I try it now.
The problem has been solved. debian.org and wikipedia.org are redirecting to www.debian.org and www.wikipedia.org. You have to these host as well, than it is working.
The intermittent problem appears to be a browser cache problem.
With Curl you can see the error and no intermittent problem does not exists.