R3166-R3206-HP High-End Firewalls Access Control Configuration Guide-6PW101
97
To do… Use the command…
Remarks
Display information about portal
users on a specified interface or all
interfaces
display portal user { all | interface interface-type
interface-number }
Available in any view
Clear portal connection statistics
on a specified interface or all
interfaces
reset portal connection statistics {all | interface
interface-type interface-number }
Available in user
view
Clear portal server statistics on a
specified interface or all interfaces
reset portal server statistics { all | interface
interface-type interface-number }
Available in user
view
Clear TCP spoofing statistics reset portal tcp-cheat statistics
Available in user
view
Portal configuration examples
Configuring direct portal authentication
Network requirements
As shown in Figure 70:
• The host is directly connected to the firewall and the firewall is configured for direct portal
authentication. The host is assigned with a public network IP address manually or automatically by
a DHCP server. Before passing portal authentication, users using the host can access only the portal
server. After passing portal authentication, they can access Internet resources.
• A RADIUS server serves as the authentication/accounting server.
Figure 70 Configure direct portal authentication
Configuration procedure
NOTE:
• Configure IP addresses for the host, firewall, and servers as shown in Figure 70 a
nd ensure that they can
reach each other.
• Configure the RADIUS server properly to provide authentication and accounting functions for users.
1. Configure the portal server
FirewallHost
2.2.2.2/ 24
Gateway : 2.2.2.1 / 24
GE0/1
2.2.2.1/24
GE0/0
192. 168.0. 100/ 24
Portal server
192. 168.0. 111/ 24
RADIUS server
192. 168.0.112/ 24