+ Post New Thread
Results 1 to 5 of 5
Internet Related/Filtering/Firewall Thread, Guest Wireless Advice in Technical; ...
  1. #1
    eddyc's Avatar
    Join Date
    Aug 2008
    Location
    Bristol
    Posts
    434
    Thank Post
    98
    Thanked 47 Times in 43 Posts
    Rep Power
    22

    Guest Wireless Advice

    I’m after a bit of advice. Our school let’s pupils bring in their own laptops to work on if required, likewise staff like connecting there iPhones etc, to the wireless. For this reason we use Cisco access points. The 4410N which supports up to 4 SSIDS.

    We have 2 SSIDS being broadcast – 1 called school which is secured using WPA2 and is on the default VLAN which we use for trusted school devices. The other SSID is called open- and is open and is tagged on a VLAN and at present goes nowhere…..

    What we want to do it take the VLAN so that when users connect to it they are presented with a webpage to login with their school credentials. Ideally the product needs to be free and not require them to set a proxy on their computers.

    I've attached an image of what I'm trying to achieve - hopefully it will clear it up a bit!

    [IMG][/IMG]

  2. #2
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,202
    Thank Post
    137
    Thanked 342 Times in 289 Posts
    Rep Power
    86
    You need to setup WPA2-Enterprise with and make one of your DCs a RADIUS server - theres a few guides here on here if you run a quick search.

  3. #3
    k-strider's Avatar
    Join Date
    Oct 2006
    Location
    Gloucester
    Posts
    357
    Thank Post
    7
    Thanked 40 Times in 30 Posts
    Rep Power
    23
    we have done something similar, i used a linux box two lan cards one on our lan one on the open vlan with Apache to host the wpad.dat DHCP to give out addresses and Squid to act as a proxy all requests were forwaded to proxy.swgfl.org.uk. you could get the squid box to act as a transparent proxy though i never got this to work. by having the wpad file if detect settings automatically is ticked it works. in Squid you can set up the ACLs to require authentication against an AD group.

  4. #4

    Join Date
    Oct 2009
    Location
    Pembs, Wales
    Posts
    7
    Thank Post
    0
    Thanked 2 Times in 2 Posts
    Rep Power
    0
    I provide guest access using a box running pfSense (really a VM), it has an external connection and one to the guest/visitor VLAN.

    I'm using pfsense 2.0, it's setup to authenticate against AD and has squid running in transparent mode with an upstream proxy configured. The Captive Portal service prompts users for their AD login, all seems to work well

  5. #5
    DaveCoop's Avatar
    Join Date
    Feb 2009
    Posts
    85
    Thank Post
    6
    Thanked 2 Times in 2 Posts
    Rep Power
    12
    Hi Natm could you give me some instructions on how you set this up as we are struggling to get Pfsence to work without the cd thanks in advance

SHARE:
+ Post New Thread

Similar Threads

  1. ruckus guest wireless
    By nephilim in forum Internet Related/Filtering/Firewall
    Replies: 2
    Last Post: 7th November 2010, 10:28 PM
  2. VLAN for Guest Wireless
    By mickeyh080 in forum Wireless Networks
    Replies: 6
    Last Post: 12th August 2010, 11:08 AM
  3. HP msa750 wireless guest access?
    By nicholab in forum Wireless Networks
    Replies: 0
    Last Post: 9th October 2009, 09:27 AM
  4. Wireless Guest Access
    By steveo2000 in forum Internet Related/Filtering/Firewall
    Replies: 9
    Last Post: 19th March 2009, 06:41 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •