Bypass Guest Authentification for specified URLs/Hosts

  • 1
  • Question
  • Updated 6 years ago
I am searching for a way to allow unauthentificated clients in a Guest-WLAN to reach specified IPs.

E.g.: The map of the campus is directly downloadable for everyone. If the client wants more, authentification is neccessary.

In a hotspot this can be done with the "walled garden" settings.

I tried with IP based ACL, but it does not work.

Does have anybody an idea about this?


Photo of Tobias Brisach

Tobias Brisach

  • 5 Posts
  • 0 Reply Likes

Posted 6 years ago

  • 1
Photo of Michael Brado

Michael Brado, Official Rep

  • 3298 Posts
  • 523 Reply Likes
You have already mentioned the best solution, HotSpot, and walled garden entries.

Guest Access is designed with inherent client isolation purpose built-in. No one
gets Network access beyond ARP/DHCP/DNS, until they are Authenticated.
Photo of LONNIE


  • 73 Posts
  • 5 Reply Likes
But what I think the OP is saying, isn't hotspot functionality broken in 9.8?
Photo of Tobias Brisach

Tobias Brisach

  • 5 Posts
  • 0 Reply Likes
So in the Guest-WLAN with all the nice built-in features, I do have no chance?

Why there is a ACL to be configured?

If I create a new one (e.g. LOCAL-LAN) DHCP and DNS is already preconfigured.