Manual
+7(495) 797-3311 www.qtech.ru
Москва, Новозаводская ул., 18, стр. 1
384
as portal server’s IP and port, so ethernet 1/2 forbids all flows except dhcp/dns/arp packets.
Switch2 is the aggregation switch, ethernet1/2 connects to radius server, ethernet1/3 connects
to portal server. The address of radius server is 192.168.40.100, the address of portal server is
192.168.40.99. ethernet1/4 connects to DHCP server, ethernet1/5 connects to DNS server.
ethernet1/6 is trunk port and connects to ethernet1/4 of switch1.
The configuration of the common web portal authentication is as follows:
Switch(config)#interface vlan 1
Switch(config-if-vlan1)#ip address 192.168.40.50 255.255.255.0
Switch(config)#webportal enable
Switch(config)#webportal nas-ip 192.168.40.50
Switch(config)#webportal redirect 192.168.40.99
Switch(config)#interface ethernet 1/3
Switch(config-if-ethernet1/3)#webportal enable
Web portal authentication associates with DHCP snooping binding to use, the configuration is
as follows:
Switch(config)#ip dhcp snooping enable
Switch(config)#ip dhcp snooping binding enable
Switch(config)#interface ethernet 1/2
Switch(config-if-ethernet1/2)#webportal enable
Switch(config-if-ethernet1/2)#ip dhcp snooping binding webportal
50.4 Web Portal Authentication Troubleshooting
When using web portal authentication, the system will show the detailed prompt information if
the operation is wrong.
Web portal authentication is disabled by default. After ensure the configuration is correct, use
debug command and show command to check the relative information, if you can not
determine the cause of the problem, please send the recorded message to technical server
center of our company.