+ Post New Thread
Results 1 to 11 of 11
Internet Related/Filtering/Firewall Thread, Smoothwall/Ruckus guest WLAN in Technical; Is anybody using Smoothwall and Ruckus and managed to get a guest WLAN working. We have no problem setting up ...
  1. #1
    badders's Avatar
    Join Date
    Apr 2007
    Location
    Cumbria
    Posts
    170
    Thank Post
    44
    Thanked 11 Times in 10 Posts
    Rep Power
    21

    Smoothwall/Ruckus guest WLAN

    Is anybody using Smoothwall and Ruckus and managed to get a guest WLAN working. We have no problem setting up a school WLAN for domain attached devices, but would like to enable students to use their own laptops to access the internet by authenticating against thier AD account. We've got as far as setting up another WLAN for students that asks for authentication using the Ruckus portal to authorize the device but then when we try to browse the internet Smoothwall blocks access due to the local user of the laptop being an unauthorised user. Would we have to use VLans with a separate DHCP server?

  2. #2


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,473
    Thank Post
    866
    Thanked 848 Times in 670 Posts
    Rep Power
    196
    I wonder how the traffic is hitting Smoothie... if you want authentication, non-domain users *should* get a popup if they are presented with an ntlm handshake. Is ruckus proxying the traffic first?

    You could potentially give "unauthenticated IPs" some very limited web access? You'd lose a bit of visibility though.

  3. #3
    badders's Avatar
    Join Date
    Apr 2007
    Location
    Cumbria
    Posts
    170
    Thank Post
    44
    Thanked 11 Times in 10 Posts
    Rep Power
    21
    We.ve manually set smoothwall as the proxy in the non-domain client, but we don't seem to get a pop-up asking for username/password. Would this be related to the SSL login settings in smoothwall?

  4. #4


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,473
    Thank Post
    866
    Thanked 848 Times in 670 Posts
    Rep Power
    196
    Are you using NTLM on the domain?

  5. #5
    badders's Avatar
    Join Date
    Apr 2007
    Location
    Cumbria
    Posts
    170
    Thank Post
    44
    Thanked 11 Times in 10 Posts
    Rep Power
    21
    Smoothwall is set to use NTLM identification.
    Last edited by badders; 20th November 2009 at 03:24 PM. Reason: Wrong info

  6. #6

    Join Date
    Oct 2005
    Posts
    827
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Change it to NTLM authentication and hey-presto! I bet it will work...

    Actually... scrap that. NTLM identification should work too...
    Last edited by pantscat; 20th November 2009 at 03:44 PM. Reason: Bad advice!

  7. #7
    badders's Avatar
    Join Date
    Apr 2007
    Location
    Cumbria
    Posts
    170
    Thank Post
    44
    Thanked 11 Times in 10 Posts
    Rep Power
    21
    Tried both NTLM authentication and NTLM identifcation, a guest trying to access the internet still gets the unauthenticated ip/ username not allowed. I was expecting a popup box from smoothwall asking for a username password if the logged on account is not located in AD. Is this possible?

  8. #8


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,473
    Thank Post
    866
    Thanked 848 Times in 670 Posts
    Rep Power
    196
    OOh... guest.. hmm. If they are not authed, the smoothie would probably pass the "who are ye request" back to the Ruckus box, and it may get filtered there. A tough one.

    Maybe we can set this situation up at BETT if we can find an AD. Or perhaps we can borrow a ruckus for 5.

  9. #9
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,453
    Thank Post
    10
    Thanked 493 Times in 433 Posts
    Rep Power
    111
    Windows will helpfully return the details of the current user. You will need to use basic authentication to get IE to prompt. We had to run an additional instance of smoothwall due to only being able to use one auth method.

  10. #10


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,473
    Thank Post
    866
    Thanked 848 Times in 670 Posts
    Rep Power
    196
    ..which we promise to fix ASAP (we're working on it, honest )

  11. #11

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    7,139
    Thank Post
    403
    Thanked 622 Times in 568 Posts
    Rep Power
    181
    Quote Originally Posted by tom_newton View Post
    OOh... guest.. hmm. If they are not authed, the smoothie would probably pass the "who are ye request" back to the Ruckus box, and it may get filtered there. A tough one.

    Maybe we can set this situation up at BETT if we can find an AD. Or perhaps we can borrow a ruckus for 5.
    You could use the one on the EG stand?

SHARE:
+ Post New Thread

Similar Threads

  1. RUCKUS help - Guest access & the internet via Proxy
    By jamin100 in forum Wireless Networks
    Replies: 24
    Last Post: 15th March 2012, 09:21 AM
  2. Ruckus Managed Wireless Causing A Ruckus!
    By CPLTD in forum Our Advertisers
    Replies: 4
    Last Post: 21st August 2009, 09:25 AM
  3. Caretakers wlan
    By blacksheep in forum General Chat
    Replies: 36
    Last Post: 1st May 2009, 03:02 PM
  4. WLAN suggestions
    By Domino in forum Wireless Networks
    Replies: 18
    Last Post: 25th October 2007, 12:29 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •