How can I allow unauthenticated users in a hotspot to also connect via HTTPS to a permitted website?
Hello I have a RB2011 1UiAS-RM running version 6.24. I have configured a hotspot and walled garden so that unauthenticated users can access only several sites. Everything works except unauthenticated users can’t make https connections. I have done the same setup on an RB2011UAS-IN running 6.0rc14 and I don’t have the same problem.
When I look at the NAT rules I see that that hotspot wizard has created redirect rules for unauthenticated users and authenticated users that redirect their HTTPS requests to port 64875. I can’t edit these rules and I can’t remove them or disable them. If I remove them they return on reboot.
So I had a chance to look back at my previous setup and it too has the same problem. I must have made a mistake when testing it. So the question remains is there a way to access https sites from a hotspot with a walled garden?
Since I can’t delete the redirect rules I was thinking of adding a rule right before the port 443 redirect that would allow the connection. Since the rules are processed in order I was hoping those rules would get processed first and let the https traffic out.
Ok… not comments to this at all? Is this doable? Is there another way around this kind of problem? Any comments at all?
I have this same issue with my tik. I am using 951u and 750’s…I actually am doing captive portal, but have some google doubleclick ads that I am allowing through the captive portal prior to the user authenticating. iphone gives an error message saying it can’t connect to the secure site, which is doubleclick. I am not sure how to fix this!!!
Would this be fixed with mangle rule? Is it an iphone problem? I have a preroute default 443 nat rule created automatically but it doesn’t increment counters like the default 80 rule does for traffic, so the box isn’t recognizing the 443 traffic.
So strange and frustrating!!