Can't access Virtual IP subnet with Captive Portal enabled

Started by denmmx, March 25, 2018, 12:01:29 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 25, 2018, 12:01:29 PM
Hi,
i have 172.16.0.0/21 LAN subnet with enabled Captive Portal for users. LAN interface also have Virtual IP (alias) 10.90.90.89, and I can't access resources in 10.90.90.x subnet from firewall.

Ping output:
Code Select
# ping 10.90.90.95
PING 10.90.90.95 (10.90.90.95): 56 data bytes
ping: sendto: Permission denied
ping: sendto: Permission denied
ping: sendto: Permission denied
^C
--- 10.90.90.95 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss

After disabling Captive portal everything works fine. Do I need to add some firewall rule enable to bypass Captive Portal for this subnet? Or is there may be some another solution?
March 26, 2018, 08:03:03 AM #1
Only local resources are denied when captive portal is up? Pinging outside resources works?
OPNsense v18 | HW: Gigabyte Z370N-WIFI, i3-8100, 8GB RAM, 60GB SSD, | Controllers: 82575GB-quad, 82574, I221, I219-V | PPPoE: RDS Romania | Down: 980Mbit/s | Up: 500Mbit/s

Team Rebellion Member
March 27, 2018, 07:17:25 PM #2 Last Edit: March 27, 2018, 07:19:38 PM by denmmx
Yes, outside WAN is working normally (after portal authetification)
March 28, 2018, 07:36:30 AM #3
I'm not sure captive portal plays well with virtual ips. Maybe somebody else can jump in to help you (?).
OPNsense v18 | HW: Gigabyte Z370N-WIFI, i3-8100, 8GB RAM, 60GB SSD, | Controllers: 82575GB-quad, 82574, I221, I219-V | PPPoE: RDS Romania | Down: 980Mbit/s | Up: 500Mbit/s

Team Rebellion Member
Print
Go Up Pages1
User actions