SonicWall

This page explains configuration of SonicWall devices to work with IronWifi Captive Portal.

Assumptions

  1. SonicWall Access Point is setup and running the latest firmware.
  2. 802.1x SSID is already configured.
  3. DHCP and DNS are appropriately configured.
  4. IronWifi initial setup is complete. This includes Network and Captive Portal settings.
  5. SonicWall Access Point can communicate with IronWifi servers.
  6. The Guest SSID VLAN can communicate with IronWifi servers.
  7. All systems are appropriately licensed.

Instructions

Sign in to SonicWall Administration Interface. Click Network, click Zones and click WLAN edit button.

sonicwall_1

Leave the "General" options default and click Guest Services

sonicwall_2

Check Enable Guest Services and check Enable External Guest Authentication. Change the Max Guests value to 255.

sonicwall_3

Select HTTP client Redirect Protocol. Under "Web Server", select HTTPS protocol and create new object for Splash page. Enter 443 as Port Number.

sonicwall_4

Select Auth Pages tab and enter "/api/pages/xxxxxx/" to all input fields. "xxxxxx" is your Splash page identifier, from Console.

sonicwall_5

Review other settings and click OK to save Changes.

sonicwall_6

sonicwall_7

The last step is to Allow remote connections on your Firewall. IronWifi needs to be able to connect to the SonicWall Guest Services to authorize connected clients. Guest Services are listening on port 4043 and IronWifi will try to connect to the URL in this format:

https://SOURCE_IP_ADDRESS:4043

The source IP address will be same as is the Captive Portal URL - splash-static.ironwifi.com, so no further changes are required in your SonicWall firewall rules.