Manualshelf

R3303-HP HSR6800 Routers Security Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution
161162163164165166167168169170
147
Portal configuration commands
Portal on VLAN interfaces does not support accounting. Portal on other types of interfaces supports
accounting.
access-user detect
Use access-user detect to configure the online portal user detection function.
Use undo access-user detect to restore the default.
Syntax
access-user detect type { arp | icmp } retransmit number interval interval [ idle-time idletime ]
undo access-user detect
Default
The portal user detection function is not configured on an interface.
Views
Interface view
Default command level
2: System level
Parameters
type arp: Uses ARP requests as probe packets.
type icmp: Uses ICMP requests as probe packets.
retransmit number: Specifies the maximum number of times the device sends probe packets to a user
before it receives a reply from the user. If this number is reached but the device still receives no reply from
the portal user, the device considers that the portal user offline and logs out the user. The value for the
number argument ranges from 2 to 5.
interval interval: Specifies the interval for sending probe packets, in the range of 5 to 120, in seconds.
idle-time idletime: Specifies the user idle timeout. If the interface receives no user traffic within the
configured idle time, the specified probe begins. The value range for the idletime argument is 1 to 600
minutes, and the default is 3 minutes.
Usage guidelines
When this function is configured on an interface, the interface starts an idle timer. If the interface has not
received packets from a portal user when the idle timer expires, the device sends probe packets to the
portal user. If the device has not received a reply from the portal user when the maximum number of
probes is reached, the device logs off the portal user. If the device receives a reply from the portal user
before the maximum number of probes is reached, it stops sending probe packets and restarts the idle
timer. The device repeats the process to detect whether portal users are online.
Cross-subnet portal authentication does not support ARP probe.