Configuration Procedure; Specifying A Portal Web Server - HPE FlexNetwork 7500 Series Security Configuration Manual
Hide thumbs
Also See for FlexNetwork 7500 Series:
- Security configuration manual (506 pages) ,
- Command reference manual (474 pages) ,
- Network management and monitoring command reference (430 pages)
Table of Contents
Advertisement
•
Cross-subnet authentication mode (layer3) does not require Layer 3 forwarding devices
between the access device and the portal authentication clients. However, if a Layer 3
forwarding device exists between the authentication client and the access device, you must use
the cross-subnet portal authentication mode.
•
With re-DHCP portal authentication, configure authorized ARP on the interface as a best
practice to make sure only valid users can access the network. With authorized ARP configured
on the interface, the interface learns ARP entries only from the users who have obtained a
public address from DHCP.
•
For successful re-DHCP portal authentication, make sure the BAS-IP/BAS-IPv6 attribute value
is the same as the device IP or IPv6 address specified on the portal authentication server. To
configure the BAS-IP/BAS-IPv6 attribute, use the portal { bas-ip | bas-ipv6 } command.
•
An IPv6 portal server does not support re-DHCP portal authentication.
•
You can enable both IPv4 portal authentication and IPv6 portal authentication on an interface.
Configuration procedure
To enable portal authentication:
Step
1.
Enter system view.
2.
Enter interface view.
3.
Enable portal authentication.
Specifying a portal Web server
With a portal Web server specified on an interface, the device redirects the HTTP requests of portal
users on the interface to the portal Web server.
You can specify both an IPv4 portal Web server and an IPv6 portal Web server on an interface.
To specify a portal Web server:
Step
1.
Enter system view.
2.
Enter interface view.
3.
Specify a portal Web
server.
Command
system-view
interface interface-type
interface-number
•
To enable IPv4 portal
authentication:
portal enable method { direct |
layer3 | redhcp }
•
To enable IPv6 portal
authentication:
portal ipv6 enable method
{ direct | layer3 }
Command
system-view
interface interface-type interface-number
•
To specify an IPv4 portal Web server:
portal apply web-server server-name
[ fail-permit ]
•
To specify an IPv6 portal Web server:
portal ipv6 apply web-server
server-name [ fail-permit ]
162
Remarks
N/A
The interface must be a
Layer 3 interface.
Enable IPv4 portal
authentication, IPv6 portal
authentication, or both on the
interface.
By default, portal
authentication is disabled.
Remarks
N/A
The interface must be a Layer
3 interface.
Specify an IPv4 portal Web
server, an IPv6 portal Web
server, or both.
By default, no portal Web
servers are specified.
Advertisement
Table of Contents
Troubleshooting
