This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

B@AP + Captive Portal

B@AP + Captive Portal

Alex17
New Contributor II

‎01-15-2016 11:07 AM

Hi Everyone!

Is it possible to create an internal captive portal using B@AP ?

Follow what i'm thinking:

Non-Authenticated Network - 192.168.30.x - B@EWC (to generate the captive portal)
Authenticated Network1 - 192.168.50.x - B@AP
Authenticated Network2 - 192.168.60.x - B@AP
Authenticated Network3 - 192.168.70.x - B@AP

This will work properly ?

Thanks in advance!

0 Kudos
17 REPLIES 17

Doug
Extreme Employee
In response to Alex17

‎01-15-2016 05:10 PM

1 second on the controllers server...
Doug Hyde
Director, Technical Support / Extreme Networks
0 Kudos

Doug
Extreme Employee
In response to Alex17

‎01-15-2016 05:10 PM

The reason why this is done on the initial vlan, Extreme has no control over the device to re-ip when the topology changes. The device driver has to recognize that it changed subnets and renew its ip. Not all devices do this gracefully and can get stuck with the wrong ip. The lower lease timer allows the continuous check from the client. If the old address is no longer available as a result of the switch, the device will re-ip.
Doug Hyde
Director, Technical Support / Extreme Networks
0 Kudos

Alex17
New Contributor II
In response to Alex17

‎01-15-2016 05:10 PM

For the B@EWC topology, im using controller dhcp server.
How low I can get ?
0 Kudos

Doug
Extreme Employee
In response to Alex17

‎01-15-2016 05:10 PM

I would go as low as you can configure, that first B@ewc vlan is just a place holder until the user is moved to the B@AP vlans. On the B@AP vlan those can have a normal lease (days).
Doug Hyde
Director, Technical Support / Extreme Networks
0 Kudos

Scott_Van_Artsd
New Contributor II

‎01-15-2016 03:34 PM

We had a similar setup for guests. It worked. We kept them in a separate VLAN with access lists so that they could only access Internet resources and local DHCP. Unauthenticated DHCP scope had a very low lease time, then when they where authenticated they got a IP address at their local site, B@AP. We forced them to use Google DNS so that there was no need to have them access any internal resources once they got their IP address.
0 Kudos
GTM-P2G8KFN