Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5493
Views
0
Helpful
9
Replies

Cant access web auth 1.1.1.1

tomstechele
Level 1
Level 1

‎04-05-2018 02:51 AM - edited ‎07-05-2021 08:28 AM

Hi 

 

We are working with a WLC 8.2.166.0 and AP AIR-AP2802I-E-K9. 

-So we can ping to 192.168.10.2 ( VM: DNS,DHCP, DC)

- We can access the wlc controller 

- We can resolve the dns entries, but we cant access 1.1.1.1 ( error:doesn't show anything/ Can't display page).

Security- Layer 3 set to Web policy  authentication/ type: internal)

 

We have been looking for a solution quite a while.

 

Can someone help us?

 

Thanks!

 

 

 

Labels:
0 Helpful
9 Replies 9

Sandeep Choudhary
VIP Alumni
VIP Alumni

‎04-05-2018 03:00 AM - edited ‎04-05-2018 03:01 AM

check if virtual interface is correct (1.1.1.1) or any other IP !!

Also paste the sh wlan <id> output here.

Can you also  provide the screenshot of your LAYER 3 settings on the WLAN?

Regards

Dont forget to rate helpful posts

0 Helpful

tomstechele
Level 1
Level 1
In response to Sandeep Choudhary

‎04-05-2018 03:09 AM

Hi

 

Thanks for responding

As requested output sh wlan / screenshot layer 3

Preview file
13 KB
Preview file
16 KB
Preview file
17 KB
Preview file
15 KB
Preview file
23 KB
0 Helpful

tomstechele
Level 1
Level 1
In response to tomstechele

‎04-05-2018 03:09 AM

 
Preview file
17 KB
Preview file
19 KB
Preview file
10 KB
0 Helpful

Sandeep Choudhary
VIP Alumni
VIP Alumni
In response to tomstechele

‎04-05-2018 03:40 AM

Hi,

The main thing if the webauth page does not appear is due to the clients homepage being https not http or dns issues.  If you remove the webauth and associate to the ssid, can you access the internet?  This will prove that dns is working okay from the guest users.  Try that first and let me know.

 

Did you enter DNS hostename unders Virtual interface ? IF yes then remove i and try againt.

 

Regards

Dontf orget to arte helpful posts

0 Helpful

tomstechele
Level 1
Level 1
In response to Sandeep Choudhary

‎04-05-2018 04:11 AM

Hi

 

For the moment we are working on a offline setup so we can't access the internet. But if we try to resolve other dns names within the network, it works. I don't know if the dns server needs special settings?

 

There is no dns host name set, so that's not the problem.

 

 

 

 

Preview file
8 KB
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎04-05-2018 04:30 AM

FYI:  The IP address 1.1.1.1 is Cloudflare's DNS service.  

0 Helpful

SandrienA
Level 1
Level 1
In response to Leo Laohoo

‎04-05-2018 04:33 AM

Since the setup isn't connected to the internet this shouldn't be a problem.

0 Helpful

m.bisoen
Level 1
Level 1
In response to SandrienA

‎07-02-2018 12:38 AM

Hi,

 

Actually this is the problem. For this you have not to be connected to the Internet. As of April 11th 2018 most of the browsers incorporate the IP address 1.1.1.1 in the HSTS pre-load list which forces the clients to connect to HTTPS instead off HTTP (see https://chromium.googlesource.com/chromium/src/+/24afe0da3135fa56fcf7e87f75b6b676c9b23ea9/net/http/transport_security_state_static.json line 49156). The captive portal redirect to HTTP://1.1.1.1/login.html will fail.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card