R2511-HP MSR Router Series Security Configuration Guide(V5)
332
connection failure, network device failure, or portal server failure, the access device can disable
portal authentication, allowing users to access the Internet without authentication.
• The access device can synchronize portal user information with the portal server periodically.
Figure 103 Network diagram
Configuration considerations
1. Configure the portal server and enable portal server heartbeat function and the portal user
heartbeat function.
2. Configure the RADIUS server to implement authentication and authorization.
3. Configure direct portal authentication on interface Ethernet 1/2, which is directly connected to the
host.
4. Configure the portal server detection function on the access device, so that the access device can
detect the status of the portal server by cooperating with the portal server heartbeat function.
5. Configure the portal user information synchronization function, so that the access device can
synchronize portal user information with the portal server by cooperating with the portal user
heartbeat function.
Configuration prerequisites
• Configure IP addresses for the host, router, and servers as shown in Figure 103 and make sure they
can reach each other.
• Configure the RADIUS server correctly to provide authentication and authorization functions for
users.
Configuring the portal server
This example assumes that the portal server runs on IMC PLAT 5.1 SP1 (E0202P05) and IMC UAM 5.1
(E0301).
1. Configure the portal server:
a. Log in to the IMC management platform and select the Service tab.
b. Select User Access Manager > Portal Service > Server from the navigation tree to enter the
portal server configuration page, as shown in Figure 104.
c. Configu
re the portal server heartbeat interval and user heartbeat interval.
d. Use default values for other parameters.
e. Click OK.
RouterHost
2.2.2.2/24
Gateway : 2.2.2.1/24
Eth1/2
2.2.2.1/24
Eth1/1
192.168.0.100/24
Portal server
192.168.0.111/24
RADIUS server
192.168.0.112/24