07-23-2020 06:38 AM
Hi Everyone
I have some problem for Captive Portal redirect.
PAN-OS - 8.1
SSL decryption - enable
Authentication - Active Directory
IPs - 1000+-
Platform - 3250 Series
the problem is partial IPs cannot get captive portal page to authentication, but partial IPs success work at captive portal,
we think maybe the loopback ip already been used at other device or browser not support redirecting , but at the same time, if some ip can work CP page, they can success do anything at browser like authentication / search / interneting etc..,
if some IPs cannot work CP redirect, they'll get error page and cannot do anything.
could anyone can help provide some CLI command to display how many authentication rate at Captive Portal per single IP.
Thanks
BR
Tyson
08-01-2020 02:48 AM
Hi @TysonLiu
What error page do these users see when they are redirected?
What do you mean by "display how many authentication rate at Captive Portal per single IP"? Do you have multiple users from one single IP - maybe because of a source NAT?
08-11-2020 05:08 AM
Hi @Remo
Sorry for the late reply,
Just loaded page few times then display error page,
What do you mean by "display how many authentication rate at Captive Portal per single IP"? Do you have multiple users from one single IP - maybe because of a source NAT?
No any single SNAT ip from their ingress interface.
We tried increase authentication timer, and then we saw the problem been reduced, but issue not solve.
Thanks
BR
Tyson
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
