Internet Related/Filtering/Firewall Thread, Smoothwall/Ruckus guest WLAN in Technical; Is anybody using Smoothwall and Ruckus and managed to get a guest WLAN working. We have no problem setting up ...
20th November 2009, 10:06 AM #1
Smoothwall/Ruckus guest WLAN
Is anybody using Smoothwall and Ruckus and managed to get a guest WLAN working. We have no problem setting up a school WLAN for domain attached devices, but would like to enable students to use their own laptops to access the internet by authenticating against thier AD account. We've got as far as setting up another WLAN for students that asks for authentication using the Ruckus portal to authorize the device but then when we try to browse the internet Smoothwall blocks access due to the local user of the laptop being an unauthorised user. Would we have to use VLans with a separate DHCP server?
20th November 2009, 10:37 AM #2
I wonder how the traffic is hitting Smoothie... if you want authentication, non-domain users *should* get a popup if they are presented with an ntlm handshake. Is ruckus proxying the traffic first?
You could potentially give "unauthenticated IPs" some very limited web access? You'd lose a bit of visibility though.
20th November 2009, 12:51 PM #3
We.ve manually set smoothwall as the proxy in the non-domain client, but we don't seem to get a pop-up asking for username/password. Would this be related to the SSL login settings in smoothwall?
20th November 2009, 02:40 PM #4
Are you using NTLM on the domain?
20th November 2009, 03:23 PM #5
Smoothwall is set to use NTLM identification.
Last edited by badders; 20th November 2009 at 03:24 PM.
Reason: Wrong info
20th November 2009, 03:33 PM #6
Change it to NTLM authentication and hey-presto! I bet it will work...
Actually... scrap that. NTLM identification should work too...
Last edited by pantscat; 20th November 2009 at 03:44 PM.
Reason: Bad advice!
1st December 2009, 09:00 AM #7
Tried both NTLM authentication and NTLM identifcation, a guest trying to access the internet still gets the unauthenticated ip/ username not allowed. I was expecting a popup box from smoothwall asking for a username password if the logged on account is not located in AD. Is this possible?
1st December 2009, 02:31 PM #8
OOh... guest.. hmm. If they are not authed, the smoothie would probably pass the "who are ye request" back to the Ruckus box, and it may get filtered there. A tough one.
Maybe we can set this situation up at BETT if we can find an AD. Or perhaps we can borrow a ruckus for 5.
1st December 2009, 02:43 PM #9
Windows will helpfully return the details of the current user. You will need to use basic authentication to get IE to prompt. We had to run an additional instance of smoothwall due to only being able to use one auth method.
1st December 2009, 04:24 PM #10
..which we promise to fix ASAP (we're working on it, honest )
1st December 2009, 07:48 PM #11
You could use the one on the EG stand?
Originally Posted by tom_newton
By jamin100 in forum Wireless Networks
Last Post: 15th March 2012, 09:21 AM
By CPLTD in forum Our Advertisers
Last Post: 21st August 2009, 09:25 AM
By blacksheep in forum General Chat
Last Post: 1st May 2009, 03:02 PM
By Domino in forum Wireless Networks
Last Post: 25th October 2007, 12:29 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread