OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: denmmx on March 25, 2018, 12:01:29 pm

Title: Can't access Virtual IP subnet with Captive Portal enabled
Post by: denmmx on March 25, 2018, 12:01:29 pm

Hi,
i have 172.16.0.0/21 LAN subnet with enabled Captive Portal for users. LAN interface also have Virtual IP (alias) 10.90.90.89, and I can't access resources in 10.90.90.x subnet from firewall.

Ping output:

Code: [Select]

# ping 10.90.90.95
PING 10.90.90.95 (10.90.90.95): 56 data bytes
ping: sendto: Permission denied
ping: sendto: Permission denied
ping: sendto: Permission denied
^C
--- 10.90.90.95 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss
After disabling Captive portal everything works fine. Do I need to add some firewall rule enable to bypass Captive Portal for this subnet? Or is there may be some another solution?

Title: Re: Can't access Virtual IP subnet with Captive Portal enabled
Post by: elektroinside on March 26, 2018, 08:03:03 am

Only local resources are denied when captive portal is up? Pinging outside resources works?

Title: Re: Can't access Virtual IP subnet with Captive Portal enabled
Post by: denmmx on March 27, 2018, 07:17:25 pm

Yes, outside WAN is working normally (after portal authetification)

Title: Re: Can't access Virtual IP subnet with Captive Portal enabled
Post by: elektroinside on March 28, 2018, 07:36:30 am

I'm not sure captive portal plays well with virtual ips. Maybe somebody else can jump in to help you (?).