R3303-HP HSR6800 Routers Security Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution

171

172

173

174

175

176

177

178

179

180

163

Field Descri

tion

Vlan VLAN to which the portal user belongs.

Interface Interface to which the portal user is attached.

Total 2 user(s) matched, 2 listed Total number of portal users.

portal auth-network

Use portal auth-network to configure a portal authentication source subnet on an interface. You can use

this command to configure multiple portal authentication source subnets on an interface. Then, only HTTP

packets from the subnets can trigger portal authentication on the interface. If an unauthenticated user is

not on any authentication source subnet, the access device discards all the user's HTTP packets that do

not match any portal-free rule.

Use undo portal auth-network to remove a specific portal authentication source subnet or all portal

authentication subnets.

Syntax

portal auth-network network-address { mask-length | mask }

undo portal auth-network { network-address

| all }

Default

The portal authentication source subnet is 0.0.0.0/0, meaning that users in all subnets must pass portal

authentication.

Views

Interface view

Default command level

2: System level

Parameters

network-address: IP address of the authentication source subnet.

mask-length: Length of the subnet mask, in the range of 0 to 32.

mask: Subnet mask, in dotted decimal notation.

all: Specifies all authentication source subnets.

Usage guidelines

This command is only applicable for cross-subnet authentication (layer3). The portal authentication

source subnet for direct authentication (direct) can be any source IP address, and the portal

authentication source subnet for re-DHCP authentication (redhcp) is the one determined by the private IP

address of the interface connecting the users.

You can configure multiple authentication source subnets by executing the portal auth-network

command. The system supports up to 16 authentication source subnets and destination subnets.

Examples

# Configure a portal authentication source subnet of 10.10.10.0/24 on GigabitEthernet 3/0/1 to allow

users from subnet 10.10.10.0/24 to trigger portal authentication.

<Sysname> system-view