Hello!
I am working currently with an aruba 7030 controller (AOS 6.5.2.0) and a custom internal captive portal page.
All sorts of clients except iOS devices open the CP page automatically after association.
I read a mass of topics but found no solution jet.
We have no pefng license.
The controller plays dhcp server, default gateway and dns server is a other device.
I've enabled the Apple Captive Network Assistant bypass, as suggested in this article:
http://community.arubanetworks.com/t5/Wireless-Access/Automaticly-open-captive-portal-after-joining-unsecured-wifi/m-p/283980
But this has no affect in my case.
DNS lookups are possible in the initial role, i've tested this with nslookup.
Initial role befor login:
#show rights Gast-cp_prof
Valid = 'Yes'
CleanedUp = 'No'
Derived Role = 'Gast-cp_prof'
Up BW:No Limit Down BW:No Limit
L2TP Pool = default-l2tp-pool
PPTP Pool = default-pptp-pool
Number of users referencing it = 2
Periodic reauthentication: Disabled
DPI Classification: Enabled
Youtube education: Disabled
Web Content Classification: Enabled
IP-Classification Enforcement: Enabled
ACL Number = 69/0
Openflow: Disabled
Max Sessions = 65535
Check CP Profile for Accounting = TRUE
Captive Portal profile = Gast-cp_prof
Application Exception List
--------------------------
Name Type
---- ----
Application BW-Contract List
----------------------------
Name Type BW Contract Id Direction
---- ---- ----------- -- ---------
access-list List
----------------
Position Name Type Location
-------- ---- ---- --------
1 Gast-cp_prof session
Gast-cp_prof
------------
Priority Source Destination Service Application Action TimeRange Log Expired Queue TOS 8021P Blacklist Mirror DisScan ClassifyMedia IPv4/6 Contract
-------- ------ ----------- ------- ----------- ------ --------- --- ------- ----- --- ----- --------- ------ ------- ------------- ------ --------
1 user controller6 svc-http captive Low 6
2 user controller svc-http dst-nat 8080 Low 4
3 user any svc-https captive Low 6
4 user any svc-http captive Low 6
5 any any svc-v6-icmp permit Low 6
6 any any svc-v6-dns permit Low 6
7 any any svc-v6-dhcp permit Low 6
8 user any svc-http dst-nat 8080 Low 4
9 user any svc-https dst-nat 8081 Low 4
10 any any svc-dns permit Low 4
11 any any svc-dhcp permit Low 4
Expired Policies (due to time constraints) = 0
CP profile settings:
I'm grateful for any recommendation.
Thank you!