logon-control
-------------
Priority Source Destination Service Action TimeRange Log Expired Queue TOS 8021P
Blacklist Mirror DisScan ClassifyMedia IPv4/6
-------- ------ ----------- ------- ------ --------- --- ------- ----- --- ----- -
-------- ------ ------- ------------- ------
1 user any udp 68 deny Low
4
2 any any svc-icmp permit Low
4
3 any any svc-dns permit Low
4
4 any any svc-dhcp permit Low
4
5 any any svc-natt permit Low
4
captiveportal
-------------
Priority Source Destination Service Action TimeRange Log Expired Queue
TOS 8021P Blacklist Mirror DisScan ClassifyMedia IPv4/6
-------- ------ ----------- ------- ------ --------- --- ------- -----
--- ----- --------- ------ ------- ------------- ------
1 user controller svc-https dst-nat 8081 Low
4
2 user any svc-http dst-nat 8080 Low
4
3 user any svc-https dst-nat 8081 Low
4
4 user any svc-http-proxy1 dst-nat 8088 Low
4
5 user any svc-http-proxy2 dst-nat 8088 Low
4
6 user any svc-http-proxy3 dst-nat 8088 Low
4
Expired Policies (due to time constraints) = 0
Verifying DNS Resolved IP Addresses for Whitelisted URLs
Use the following command to verify the DNS resolved IP addresses for the whitelisted URLs:
(host) #show firewall dns-names ap-name <AP-name>
Example:
(host) #show firewall dns-names ap-name ap135
Firewall DNS names
------------------
Index Name Id Num-IP List
----- ---- -- ------ ----
0 bugzilla 10 1 0.0.0.0
1 cricinfo 9 0
2 yahoo 1 0
3 mycorp 6 1 1.1.1.1
Bypassing Captive Portal Landing Page
An increasing number of user sessions in Captive Portal pre-authenticated role, repeatedly request the Captive
Portal login page from the switch. This impacts the number of browser-based user login requests handled per
second by the switch. This eventually delays the loading of the Captive Portal page and logging into Captive
Portal. Most of the increased activities are from non-browser based applications running on smart phones and
tablets.
AOS-W 6.5.3.x | User Guide Captive Portal Authentication | 344
To Next Page
Loading...