Manualshelf

R2511-HP MSR Router Series Security Configuration Guide(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router
331332333334335336337338339340
321
[Router] portal server newpt ip 192.168.0.111 key simple portal port 50100 url
http://192.168.0.111:8080/portal
# Enable portal authentication on the interface connecting the host.
[Router] interface ethernet 1/2
[Router–Ethernet1/2] portal server newpt method direct
[Router–Ethernet1/2] quit
Verifying the configuration
Execute the following command to see whether the portal configuration has taken effect:
[Router] display portal interface ethernet 1/2
Portal configuration of Ethernet 1/2
IPv4:
Status: Portal running
Portal server: newpt
Portal backup-group: None
Authentication type: Direct
Authentication domain:
Authentication network:
The user can initiate portal authentication by using the HP iNode client or by accessing a Web page. All
the initiated Web requests are redirected to the portal authentication page
h t t p : / / 19 2 .16 8 . 0 .111:8080/portal. Before passing portal authentication, the user can access only the
authentication page. After passing portal authentication, the user can access Internet resources.
After the user passes the portal authentication, you can use the following command to view the portal
user information on the router.
[Router] display portal user interface ethernet 1/2
Index:19
State:ONLINE
SubState:NONE
ACL:NONE
Work-mode:stand-alone
MAC IP Vlan Interface
---------------------------------------------------------------------
0015-e9a6-7cfe 2.2.2.2 0 Ethernet1/2
On interface Ethernet1/2:total 1 user(s) matched, 1 listed.
Configuring re-DHCP portal authentication
Network requirements
As shown in Figure 98, the host obtains an IP address from the DHCP server.
Configure the router to perform re-DHCP portal authentication for users on the host. Before a user passes
portal authentication, the DHCP server assigns a private IP address to the host. After the user passes
portal authentication, the DHCP server assigns a public IP address to the host and then the user can
access Internet resources.
A RADIUS server serves as the authentication/authorization server.