To Next Page

To Previous Page

Controlling portal user access ························································································································ 148

Configuring a portal-free rule ················································································································· 148

Configuring an authentication source subnet ························································································· 149

Configuring an authentication destination subnet ·················································································· 150

Setting the maximum number of portal users ························································································ 150

Specifying a portal authentication domain ····························································································· 151

Specifying a preauthentication domain ·································································································· 152

Specifying a preauthentication IP address pool for portal users ···························································· 152

Enabling strict-checking on portal authorization information ·································································· 153

Enabling portal authentication only for DHCP users ·············································································· 154

Enabling outgoing packets filtering on a portal-enabled interface ·························································· 154

Configuring portal detection features ············································································································· 154

Configuring online detection of portal users ··························································································· 154

Configuring portal authentication server detection ················································································· 155

Configuring portal Web server detection ································································································ 156

Configuring portal user synchronization ································································································· 157

Configuring the portal fail-permit feature ········································································································ 158

Configuring BAS-IP for portal packets sent to the portal authentication server ············································· 158

Enabling portal roaming ································································································································· 159

Specifying a format for the NAS-Port-ID attribute ·························································································· 160

Specifying the device ID ································································································································ 160

Logging out online portal users ······················································································································ 160

Configuring Web redirect ······························································································································· 161

Applying a NAS-ID profile to an interface ······································································································ 161

Configuring the local portal Web server feature ····························································································· 162

Customizing authentication pages ········································································································· 162

Configuring a local portal Web server ···································································································· 164

Enabling ARP or ND entry conversion for portal clients ················································································ 165

Configuring MAC-based quick portal authentication ······················································································ 165

Configuring a MAC binding server ········································································································· 165

Specifying a MAC binding server on an interface ·················································································· 166

Enabling logging for user logins and logouts ································································································· 167

Displaying and maintaining portal ·················································································································· 167

Portal configuration examples ························································································································ 168

Configuring direct portal authentication ·································································································· 168

Configuring re-DHCP portal authentication ···························································································· 176

Configuring cross-subnet portal authentication ······················································································ 179

Configuring extended direct portal authentication ·················································································· 183

Configuring extended re-DHCP portal authentication ············································································ 186

Configuring extended cross-subnet portal authentication ······································································ 190

Configuring portal server detection and portal user synchronization ····················································· 193

Configuring direct portal authentication with a preauthentication domain ·············································· 201

Configuring re-DHCP portal authentication with a preauthentication domain ········································ 203

Configuring direct portal authentication using local portal Web server ·················································· 205

Troubleshooting portal ··································································································································· 208

No portal authentication page is pushed for users ················································································· 208

Cannot log out portal users on the access device ················································································· 209

Cannot log out portal users on the RADIUS server ··············································································· 209

Users logged out by the access device still exist on the portal authentication server···························· 209

Re-DHCP portal authenticated users cannot log in successfully ··························································· 210

Configuring port security ············································································· 211

Overview ························································································································································ 211

Port security features ····························································································································· 211

Port security modes ······························································································································· 211

Configuration task list ····································································································································· 214

Enabling port security ···································································································································· 214

Setting port security's limit on the number of secure MAC addresses on a port ············································ 215

Setting the port security mode ······················································································································· 216

Configuring port security features ·················································································································· 217

Configuring NTK ····································································································································· 217

Configuring intrusion protection ············································································································· 218