Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
68
trap: Specifies the action as sending a trap message. When the status (reachable/unreachable) of
a portal server changes, the access device sends a trap message to the network management
server (NMS). Trap message contains the portal server name and the current state of the portal
server.
interval interval: Interval at which probe attempts are made. The interval argument ranges from 20 to
600 and defaults to 20, in seconds.
retry retries: Maximum number of probe attempts. The retries argument ranges from 1 to 5 and defaults
to 3. If the number of consecutive, failed probes reaches this value, the access device considers that the
portal server is unreachable.
Description
Use portal server server-detect to configure portal server detection, including the detection method,
action, probe interval, and maximum number of probe attempts. With this function configured, the
firewall checks the status of the specified server periodically and takes the specified actions when the
server status changes.
Use undo portal server server-detect to cancel the detection of the specified portal server.
By default, the portal server detection function is not configured.
You can specify one or more detection methods and the actions to be taken.
If both detection methods are specified, a portal server will be regarded as unreachable as long as one
detection method fails, and an unreachable portal server will be regarded as recovered only when both
detection methods succeed.
If multiple actions are specified, the system will execute all the specified actions when the status of a
portal server changes.
Deleting a portal server on the firewall will delete the detection function for the portal server.
If you configure the detection function for a portal server for multiple times, the last configuration will take
effect. If you do not specify an optional parameter, the default setting of the parameter will be used.
The portal server detection function takes effect only when the portal server is referenced on an interface.
Authentication-related packets from a portal server, such as logon requests and logoff requests, have the
same effect as the portal heartbeat packets for the portal server detection function.
Related command: display portal server.
Examples
# Configure the firewall to detect portal server pts:
Specifying both the HTTP probe and portal heartbeat probe methods
Setting the probe interval to 600 seconds
Specifying the firewall to send a server unreachable trap message, send a log message and disable
portal authentication to permit unauthenticated portal users, if two consecutive probes fail.
<Sysname> system-view
[Sysname] portal server pts server-detect method http portal-heartbeat action log
permit-all trap interval 600 retry 2
portal server user-sync
Syntax
portal server server-name user-sync [ interval interval ] [ retry retries ]