06-04-2018 11:24 AM
I would like to configure a 'Ethernet Captive Web Portal' for our wired guest on a AP245-X. I would like to connect clients to a VLAN A (which isn't routed) and redirect the client traffic to a VLAN B (which has access to the internet) after a successful web authentication.
Would this be possible? How do I have to configure the ethernet interfaces, the captive web portal and which profiles do I have to apply?
Thank you in advance.
Solved! Go to Solution.
06-05-2018 05:09 AM
Currently I've configured the following and it is working for one client which is connected to Eth1 directly.
Captive Web Portal:
Eth0 has our AP management VLAN (VLAN M) and guest VLAN configured (VLAN A).
A client which is connected directly to VLAN A with an switch in our infrastructure will get an IP address from our guest DHCP scope from the firewall and is able to access the internet without the CWP. I assume that I will need VLAN B as Ingress Interface and VLAN A as Egress Interface. The AP could NAT the traffic from VLAN B to VLAN A.
In our old Cisco environment this was working.
06-05-2018 05:18 AM
My pasted images where not saved.
06-05-2018 05:09 AM
Currently I've configured the following and it is working for one client which is connected to Eth1 directly.
Captive Web Portal:
Eth0 has our AP management VLAN (VLAN M) and guest VLAN configured (VLAN A).
A client which is connected directly to VLAN A with an switch in our infrastructure will get an IP address from our guest DHCP scope from the firewall and is able to access the internet without the CWP. I assume that I will need VLAN B as Ingress Interface and VLAN A as Egress Interface. The AP could NAT the traffic from VLAN B to VLAN A.
In our old Cisco environment this was working.
06-04-2018 03:28 PM
The only way I know of to apply a CWP is to an SSID. I just poked around the port settings and didn't see a way to do it via the port, so I'm not sure if this can be done. Otherwise it sounds like you want to NAT your traffic, is that right?