LOL. I digress. I've never had someone tell me what I did to my own router.
If you wish to give different information to the community, just stop telling other people their method is wrong, or different than they described.
1 Like
I m not getting how to contribute that's why I preferred writing on my own blog and give link here as I know it's annoying
I ll try not to say anyone wrong
Not hard.
- Take your phone and connect to THE HOTEL access point SSID
- It will take you to the login page
- COPY THAT URL
- NOW JOIN ROUTER SSID
- PASTE URL AND EDIT MAC TO THE WAN INTERFACE
- ACCEPT TERMS
1 Like
You are conditionally correct dude I admit . But if the url that send us back include session parameter too generated by the access point . You cannot reach anywhere
Like 192.168.217.1/login.php?called-station-id=your Mac&sessionid=dhdhcufjg&....
You will land up just with a log at the remote end
1 Like
OK, that's reasonable, I understand that. But how do you solve a session parameter issue for the user?
(In such cases, personally, I just browse to the address again so that it creates a new session.)
Failing to login into a captive portal occurs all the time, what's the concern?
1 Like
See if simultaneous logins are allowed ( usually implemented with radius or may be PMS in hotels ) you cannot highjack by these all points given by either me or anyone
Cause they don't allow to authenticate till that session identifier ( Mac or uername ) is logged in
But if simultaneous logins are allowed how this is done is:
Put your laptop radio down
Change Mac that you want to spoof
Turn radio up
It will automatically take the vicitms IP address
But it will disconnect victims session
Here the OP case is different as in routed mode just AP wan Mac is required to authenticate
Yes even I thought of sock proxy but didn't work practically ( it should work )
So I gave the solution that connect uplink and downlink by wifi only ...and snapshot was from my live session running on this concept
So I wrote it
You can send me the vendors list ..let's put this into their knowledge too . If you like
I've never recorded the manufacturer portion of the serial number of the AP; because I've never experienced an issue you describe while connecting.
I'll begin doing so.
1 Like
Thanks a lot to all for the different pieces of advice.
However....I still can not connect.
Just to recall, I am in a hotel with my iPad and iPhone and a travel router with openwrt.
The hotel has a captive portal. When I connect to its wifi with the iPhone/iPad I am redirected to portal where I need to agree to terms and conditions and insert a password.
For some reason the url copy etc, doesn’t work or I don’t do it well.
I didn’t understand the radio on /off options.
Do you have any further ideas?
Thanks again
I had the same issue with my GL-inet AR750 where the login page would not work if the router was put in bridge mode.
Turns out the only thing to do was to deactivate the "DNS rebinding attack protection" under "More settings > Custom DNS Server" 
Dear Forum 
,
This group post is directed mainly but not exclusively at those having knowledge of privacy and security implementation good practices in a networking environment having potentially hostile actors.
The background to the story is that I am staying in a hotel in the western EU for a relatively long period of time (one year) due to an ongoing work assignment. The hotel has an open, unsecured, 2.4 GHz WiFi network. A captive portal is in operation. No specific passwords are required to login behind the captive portal.
I have a Zyxel Z2 router having the bare unadulterated version of OpenWRT v21 operating system installed on it.
I have some working technical concerns and I would appreciate any and all respectful contributions in relation to the problem statement that I have tried to outline below.
THE PROBLEM STATEMENT IS AS FOLLOWS:
- I want to use the hotel's open WiFi service by connecting it to the Zyxel Z2 router, and then connecting my other personal devices e.g. personal phone, laptop computer, and iPad Mini 5 to the Zyxel Z2 router in order to obtain private, safe, and secure internet access for these personal devices. The hotel must not know what sites I visit on their network or anything I download on the network - the only reason being for this is merely the defence of my own personal privacy.
I do have a full subscription to ExpressVPN, for what it's worth.
- The Zyxel Z2 router must be protected from hacking by malicious actors that may be on the open network. My data and personal device's privacy and security must also be protected from any potential malicious actors on the open WiFi network.
THE REQUEST FOR ASSISTANCE:
Would some kind soul(s) indicate if what I wish to do is feasible, and, if it is so, what is the best approach to going about implementing the most secure and private solution possible?
I am a relative noob with Linux/OpenWRT, so I would like to thank you so much in advance for all contributions - be they short or long - on this network security matter.
Yours faithfully,
Mad4Potatoes
This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.