I will add that this is not specific to GLi devices. It is an OpenWrt, and probably LEDE, issue for which I am not aware of a solution.
You did not comment on the frequent redirect failure to the portal page when opening a browser (I only use Firefox). I bookmark the portal pages for places I frequent. I also notice that in at least my fav hotel I may get a shorter than promised lease time.
I am running a laptop over VPN, so can not comment on what, if anything happens, when additional devices connect to the routers AP. I would hope it’s no issue.
You may need to temporarily allow upstream RFC1918 replies from the hotel’s DNS servers in the DNSMasq config. That usually works for me if I encounter a funky captive portal.
You can make the change using the advanced configuration (LuCI), under Network > DHCP and DNS, there’s an option for Rebind protection to “Discard upstream RFC1918 responses” that’s enabled. Disable that, Save & Apply and try it out.
@hymond - I have tried to read up on RFC1918 responses parameter, but this is really above me. Would you mind taking a stab at a dumb down explanation on this parameter from an OpenWrt perspective and it’s practical implications.
Does using something like OpenDNS servers for DNS on the device mitigate some of the issues?
Does one want to toggle the switch as a matter of course or just leave it off?
Basically, DNSmasq (the DNS and DHCP service on OpenWRT) prevents DNS responses from the upstream DNS server (usually provided by DHCP) that fall in any of the common private IP address spaces. Unticking the option allows those responses through. I’d recommend not generally leaving that unchecked since it does provide a measure of protection against possible spoofing vulnerabilities. Setting the DNS servers to something public like OpenDNS doesn’t alleviate the issue since generally the authentication service/site happens within the private address space of wherever the captive portal lives.
What you can do if you happen to know the DNS suffix of whatever the captive portal uses is to configure that domain in the whitelist further down on the page. It’ll allow those private address responses from those domains only, and not globally. Its a good solution if you stick to a particular hotel chain and can’t be bothered to toggle the global setting on and off every time.
I’m in the same situation; can’t get DNS to work on a guest wifi system having a captive portal. This is what I bought the router for in the first place.
I first configured at home to verify that ethernet, wifi, VPN all worked on my home system.
On the public wifi today, I:
-associated with the open guest wifi system on my PC and logged into the authorization page.
-waited for a redirect page in which you agree to terms.
-verify that the Internet works from that point.
-powered up the 300M associated with the guest WiFi in WISP mode.
-cloned the PC MAC address to the router
-checked that the DNS IP’s listed in the router’s status page were correct.
-opened a web browser and tried to load a web site.
At the very first redirect there is a DNS failure and you are then dead in the water.
I tried the disabling the “discard upstream RFC1918 responses” option above - no help, even after reboot.
After reading the above, I tried whitelisting the host DNS in two ways (xxx.com and guest-dmz.xxx.com) with no effect either.
@m_a_schuster it is most likely not possible to use custom dns on a network with a captive portal - “Quite often hotels, and other public internet connections, use a Transparent Proxy, which unfortunately will stop DNS from working”
Another way to do this is to use a device to find the hotel’s DNS servers.
record those on a paper.
Power up your router, connect laptop to it, and go in and manually specify the DNS servers to use, i think by default on my GL-AR750 they were set to Google DNS.
Once you change the DNS settings to the hotel’s dns servers you can try to hit google or whatever else, and you will be redirected to the hotels splash page where you can authenticate, at that point the hotels DNS will allow you to get to whatever you want (or you can establish your VPN connectivity)
I’m at the same situation and did everything that was posted here. The thing is, my connection is really very slow. I need the router to allow my PS4 to download updates. They use a Captive Portal.
No VPN: 120MBps
VPN on Laptop: 75-100MBps
With the device connected: 45MBps
With VPN: 2Mbps
I’ve tried to add the hotspot DNS in the advanced configurations but it got even worse. What should I do? Is there any limitation regarding the speed?