4000 Router Series Security Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router

441

442

443

444

445

446

447

448

449

450

431

same. Otherwise, portal authentication will fail. To ensure normal authentication for users, you can

configure the BAS-IP or BAS-IPv6 attribute for the interface, and specify the attribute value as the portal

device IPv4 or IPv6 address specified on the portal authentication server.

You must configure the BAS-IP/BAS-IPv6 attribute on an authentication-enabled interface if the portal

device IPv4 or IPv6 address specified on an HP IMC portal authentication server is not the IPv4 or IPv6

address of the interface.

Examples

# Configure the BAS-IP attribute of outgoing portal packets as 2.2.2.2 on interface Ethernet 1/1.

<Sysname> system-view

[Sysname] interface ethernet 1/1

[Sysname-Ethernet1/1] portal bas-ip 2.2.2.2

Related commands

display portal interface

portal apply web-server

Use portal [ ipv6 ] apply web-server to reference a portal Web server on an interface. The device

redirects the HTTP requests sent by unauthenticated portal users to the portal Web server.

Use undo portal [ ipv6 ] apply web-server to delete the portal Web server referenced on the interface.

Syntax

portal [ ipv6 ] apply web-server server-name [ fail-permit ]

undo portal [ ipv6 ] apply web-server

Default

No portal Web server is referenced on the interface.

Views

Interface view

Predefined user roles

network-admin

Parameters

ipv6: Specifies an IPv6 portal Web server. If the server is an IPv4 portal Web server, do not specify this

keyword.

server-name: Specifies a portal Web server to be referenced on the interface by its name, a

case-sensitive string of 1 to 32 characters. The name must already exist.

fail-permit: Enables the portal fail-permit function on the interface. The portal fail-permit function allows

portal users to access the Internet without authentication when the portal Web server is unreachable.

Usage guidelines

You can enable both IPv4 and IPv6 portal authentication on an interface. Therefore, you can reference

both an IPv4 portal Web server and an IPv6 portal Web server on the interface.

When portal fail-permit is enabled for a portal authentication server and a portal Web server on the

interface, portal authentication is disabled for users on the interface if either server is unreachable. Portal

authentication resumes after both servers become reachable.