3com 8807 사용자 가이드
Basic Portal Configuration
271
c
CAUTION:
■
When a Portal server is first configured, you must configure the IP address for
it.
it.
■
If a Portal server has been enabled on a VLAN interface, you must disable this
Portal server on the VLAN interface before modifying its parameters.
Portal server on the VLAN interface before modifying its parameters.
■
When Portal authentication is enabled, 802.1x protocol must be disabled
globally.
globally.
■
The name of the specified Portal server must be exist.
■
When the Layer 3 authentication method is adopted, a default route must be
configured on the layer 3 device between Portal users and the Portal-enabled
switch.
configured on the layer 3 device between Portal users and the Portal-enabled
switch.
■
When the ReDHCP authentication method is adopted, the Portal-enabled
switches can only be configured as DHCP Relay instead of DHCP Server.
switches can only be configured as DHCP Relay instead of DHCP Server.
■
When Portal is enabled on a VLAN interface, it is forbidden to configure any
more ACL rules related with this network segment on this VLAN interface (and
the corresponding ports). Otherwise, the Portal function may be caused
abnormal.
more ACL rules related with this network segment on this VLAN interface (and
the corresponding ports). Otherwise, the Portal function may be caused
abnormal.
Portal Direct
Authentication Method
Configuration Example
Network requirements
■
Portal is enabled on the switch and Portal runs in the Direct authentication
method.
method.
■
The switch uses a RADIUS server to implement authentication and accounting.
■
Users can access only the Portal server before passing Portal authentication.
■
Users can access external networks after passing Portal authentication.
Enable Portal authentication
on a VLAN interface
on a VLAN interface
portal server-name
Required
Display the statistics about the
state machines about
authentication, connection
and management
state machines about
authentication, connection
and management
display portal { acm | server
| tcp-cheat } statistics
| tcp-cheat } statistics
-
Display the information about
Portal authentication network
segment
Portal authentication network
segment
display portal [
auth-network [ auth-vlan-id
] | free-ip | free-user | server
[ server-name ] | vlan [ vlan-id
] ]
auth-network [ auth-vlan-id
] | free-ip | free-user | server
[ server-name ] | vlan [ vlan-id
] ]
-
Display the information about
the Portal users
the Portal users
display portal user [ ip
ipaddress | interface
interface-type
interface-number | vlan
vlan-id ]
ipaddress | interface
interface-type
interface-number | vlan
vlan-id ]
-
Clear the statistics about
Portal
Portal
reset portal { acm | server |
tcp-cheat } statistics
tcp-cheat } statistics
-
Table 244 Basic Portal configuration procedure
Operation Command Description