Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1080 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

sophos xg FW captive portal isnt showing for for wifi users

Kazi Imran

Hi all,

users that are connected directly to lan network are getting captive portal and it is working fine. But users that are connected by LAN>>wifi router are not gettin captive portal and getting internet directly.

FW (lan block 10.0.0/24) >> LAN Switch >> users (captive portal works okay)

FW (lan block 10.0.0/24) >> LAN Switch >> wifi router >> users (captive portal doesnt work)

I have attached screenshot of network diagram.

please suggest.

thanks in advance



This thread was automatically locked due to age.
  • 0

    Are your users able to reach the internet?

    What do the users behind the WiFi Router "see"?

    Captiveportal/user authentication portal  bound the access to IP or MAC (don#t know at the moment) ... but all users behind the WiFi Router may have the same IP/Mac from WiFi Router (10.0.0.50) ...from the firewall's point of view

  • 0

    Adding to what dirk said, Ensure that the WiFi router you have is set in bridged mode. From your configurations, it seems that the router is set in L3 mode which NATs the traffic going towards the firewall by its own IP. That way, Firewall sees all the traffic coming from users connected to router from only 1 IP.

    If you turn the router in bridge mode, WiFi users will have the same network as LAN. You can separate them by creating a VLAN on Switch and Firewall. If you switch doesn't support VLANs, you can have the router directly connect to one of XG's LAN Ports with a separate network of their own.