September 2, 2010 at 4:40 pm #42625
I would like to have a wireless network portal (simple network login) using a single wireless router, but the client would be routed to the proper network (one of two) based on their username.
User “Guest” would be routed to network B (just Internet access via cable modem)
User “employee” would be routed to the network A, have access to internal servers, and access the Internet via the T3 on that network
Is this possible using zeroshell?
Thanks!September 3, 2010 at 7:48 am #51043
If you can assign for specific client a specified IP address then it can work. However I haven’t configured captive portal ever and don’t know if this solution is possible.September 10, 2010 at 9:30 pm #51044
i tried to setup almost exactly what you wanted.
I have two Networks, one is my Corporate Network, and the second one is a Guest LAN. I have a wireless adapter in my Zeroshell and I did a multi SSID setup to have two wireless zones, one on the Corporate Network with WPA2-PSK and the other one one the Guest LAN with an Open Network with Captive Portal. My third Network connection is connected to the Internet. So both the Corporate and the Guest LAN are going through this connection to the Internet.
I bridged the WPA-PSK Wireless Adapter with the one from the Corporate Network, and i bridged the Guest Wireless with the Guest LAN and activated Captive Portal on the Guest Wireless-Guest LAN Bridge.
BRIDGE 1 > WLAN Corporate (WPA2PSK) + LAN Corporate
BRIDGE 2 with Captive Portal > WLAN Guest (OPEN) + LAN Guest
When I connect to the Corporate WLAN using the correct WLAN ssid/key I get connected correctly to my corporate Network and get a DHCP address from the DHCP server as expected.
When I connect to the Guest WLAN, I try to open a webpage, I get redirected to the Captive Portal login site, and I have to identify myself with username and password and then I am in.
BUT, I found out about a strange behaviour: Before authentication I get, whatever site I use, to the Captive Portal Login Page as expected. When I Use ping command to some random puplic ip-address I can get through without beeing authenticated. I have never experienced this behaviour in other situations (without wireless) and I am still trying to find out why.
Instead of bridging, you can also use vlans. You could put the Guest LAN and the Guest Wireless in the same vlan. I have not tired this one you yet.
You must be logged in to reply to this topic.