95
Ste
Command
Remarks
3. Specify the IP address of
the portal authentication
server.
• To specify an IPv4 portal server:
ip ipv4-address [ vpn-instance
vpn-instance-name] [ key { cipher |
simple } key-string ]
• To specify an IPv6 portal server:
ipv6 ipv6-address [ vpn-instance
vpn-instance-name] [ key { cipher |
simple } key-string ]
Specify an IPv4 portal
authentication server, an IPv6
authentication portal server, or
both.
By default, no portal
authentication server is
specified.
4. (Optional.) Configure the
destination UDP port
number used by the device
to send unsolicited portal
packets to the portal
authentication server.
port port-id
By default, the UDP port number
is 50100.
This port number must be the
same as the listening port
number specified on the portal
authentication server.
Configuring a portal Web server
A portal Web server pushes the authentication page to users during portal authentication. It is also the
Web server to which the device redirects user HTTP requests.
Perform this task to configure the following portal Web server parameters:
• VPN instance of the portal Web server
• URL of the portal Web server
• Parameters carried in the URL when the device redirects the URL to users
The device supports multiple portal Web servers.
To configure a portal Web server:
Ste
Command
Remarks
1. Enter system view.
system-view N/A
2. Create a portal Web server
and enter its view.
portal web-server server-name
By default, no portal Web server is
created.
3. Specify the VPN instance to
which the portal Web server
belongs.
vpn-instance vpn-instance-name
By default, the portal Web server
belongs to the public network.
4. Specify the URL of the portal
Web server.
url url-string By default, no URL is specified.
5. Configure the parameters to
be carried in the URL when the
device redirects it to users.
url-parameter param-name
{ original-url | source-address |
source-mac | value expression }
By default, no redirection URL
parameters are configured.
Enabling portal authentication on an interface
You must first enable portal authentication on an access interface before it can perform portal
authentication for connected clients.