Captive Portal
Captive Portal allows you to force authentication, or redirection to a click through page for network access.
This is commonly used on hotspot networks, but is also widely used in corporate networks for an additional layer of security on wireless or Internet access.


Typical Applications
Guest Network
Hotel & Camping Wifi Access
BOYD, bring your own device

Template Management
OPNsense’s unique template manager makes
setting up your own login page an easy task. At the same time it offers additional functionalities, such as:

URL redirection
Option for your own Pop-up
Custom Splash page

Timeouts & Welcome Back
Connection can be terminated after the user has been idle for a certain amount of time (idle timeout) and/or force a disconnect when a number of minutes have passed even if the user is still active (hard timeout). In case a user reconnect within the idle timeout and/or hard timeout no login is required and the user can resume its active session.

Bandwidth Management
The Build-in traffic shaper can be utilized to:
Share bandwidth evenly
Give priority to protocols port numbers and/or ip addresses

Zone Management
Different zones can be setup on each interface or multiple interfaces can share one zone setup. Each Zone can use a different Captive Portal Template or share it with another zone.

Portal bypass

MAC and IP addresses can be white listed to bypass the portal.


Secure authentication via HTTPS or splash-only portal with URL redirection to a given page Different sources can be used to authenticate a user in a zone:
LDAP (Microsoft Active Directory)
Local user manager
Vouchers / Tickets
No authentication (Splash Screen Only)
Multiple (a combination of above)

Real Time Reporting
Basic Real Time Reporting is Integrated
Live top IP bandwidth usage
Active Sessions
Time left on Vouchers

Platform Integration
Through the integrated REST API the captive portal application can be integrated with other services.

Not what you where looking for? Take the OPNsense Tour and find out more!