R3303-HP HSR6800 Routers Security Command Reference
168
You cannot configure a portal-free rule to have the same filtering criteria as that of an existing one. When
attempted, the system prompts that the rule already exists.
Regardless of whether portal authentication is enabled on an interface, you can only add or remove a
portal-free rule. You cannot modify it.
A Layer 2 interface in an aggregation group cannot be specified as the source interface of a portal-free
rule, and the source interface of a portal-free rule cannot be added to an aggregation group.
Examples
# Configure a portal-free rule, allowing any packet whose source IP address is 10.10.10.1/24, source
interface is GigabitEthernet 3/0/1, and destination port number is within the range of 8042 to 8050 to
bypass portal authentication.
<Sysname> system-view
[Sysname] portal free-rule 15 source ip 10.10.10.1 mask 24 interface gigabitethernet 3/0/1
destination ip any udp 8042 to 8050
Related commands
display portal free-rule
portal max-user
Use portal max-user to set the maximum number of online portal users allowed in the system.
Use undo portal max-user to restore the default.
Syntax
portal max-user max-number
undo portal max-user
Default
The maximum number of portal users is that supported by the system.
Views
System view
Default command level
2: System level
Parameters
max-number: Maximum number of online portal users allowed in the system. The value range for the
max-number argument is 1 to 64000.
Usage guidelines
If the maximum number of portal users specified in the command is less than that of the current online
portal users, the command can be executed successfully and does not impact the online portal users, but
the system does not allow new portal users to log in until the number drops down below the limit.
Examples
# Set the maximum number of portal users allowed in the system to 100.
<Sysname> system-view
[Sysname] portal max-user 100