04-05-2012 07:52 PM - edited 07-03-2021 09:57 PM
Hi,
One of the SSIDs in WLC 5500 (SV:7.2.103.0) is configured in web authentication mode. After authentication (local database) users can access
http sites and can't access, for example, https sites.
TIA
04-05-2012 07:57 PM
Interesting. I know that guest users will not get the splash page if their home page is an https site, but from my experience, after logging in via webauth, you are allowed to go to any site unless filtered by something else. Best test is to connect a wired pc to the guest vlan and see if a wired device can or can't access an https site. Make sense?
Thanks,
Scott Fella
Sent from my iPhone
04-05-2012 08:49 PM
I presume there are no ACLs in place for this WLAN? If so, please post them here so we can take a look.
What's in between your WLC/Clients and your ISP? Firewall, Proxy/Web Filer, IDS, etc?
If you take a packet capture from the WLC switchport (port-channel if lag), do you see a proper TCP handshake take place? I would find out what's going on with the flow of traffic if you don't see any indication from a device like listed above. As long as you can verify that the Client traffic has left the WLC, then you should investigate why it's not coming back.
Scott's suggestion above of testing a wired client would be your best bet to start with.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: