Captive Portal

• Captive Portal Zones
• Common Captive Portal Scenarios
• Zone Configuration Options
• MAC Address Control
• Allowed IP Address
• Allowed Hostnames
• Vouchers
• File Manager

See also

• Captive Portal Status

• Captive Portal Authentication Logs

• Troubleshooting Captive Portal

Captive Portal in pfSense® software forces users on an interface to authenticate before granting access to the Internet. Where possible, the firewall automatically presents a login web page in which the user must enter credentials such as a username/password, a voucher code, or a simple click-through agreement.

This feature is commonly used throughout the hospitality industry (Hotels, restaurants, airports, and more) as well as in corporate and even home environments. It is primarily used for wireless hot spots or for additional authentication before allowing access to internal networks from wireless clients.

Captive Portal is configured under Services > Captive Portal.

See also

Hangouts Archive to view the April 2015 Hangout on Captive Portal.

Limitations

The Captive Portal implementation in pfSense does have some limitations.

IPv6

Captive Portal is not compatible with IPv6.

Reverse Portal

A reverse portal, requiring authentication for traffic coming into a local network from the Internet, is not possible.