Why plain HTTP is the key

Captive portals work by intercepting your first web request and redirecting you to a login page. However, they can only intercept unencrypted, plain HTTP traffic.

Modern websites almost all use HTTPS, which is encrypted. If you try to visit an HTTPS site, the captive portal cannot intercept it, and the login page will never appear.

Sites like neverssl.com and nossl.sh are intentionally served over HTTP, giving the captive portal a request it can redirect.

• Connect to the Wi-Fi network.
• Open your browser and go to http://nossl.sh or http://neverssl.com.
• The captive portal login page should appear.

What to do if it still does not work

If the login page does not appear, try disabling any VPN or private relay service you might be using. These services can also prevent the captive portal from intercepting your traffic.

You can also try "forgetting" the Wi-Fi network and reconnecting.

Is it safe to use an HTTP website?

For the purpose of triggering a captive portal, yes. These sites are not designed for sensitive information. Once you have logged in through the portal, you should use secure, HTTPS websites as usual.

What is the difference between neverssl.com and nossl.sh?

Both serve the same purpose. nossl.sh provides additional diagnostic information about your connection, which can be helpful for troubleshooting.