EasyManua.ls Logo

Ruijie RG-S2900G-E Series - Page 591

Ruijie RG-S2900G-E Series
943 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuration Guide WEB Authentication Configuration
Configuring the Authentication-Free IP Scope
In certain conditions, some IP addresses are allowed to access the network without the Web
authentication. By default, all accessing users’ IP addresses are controlled and are required to go
through the Web authentication. Follow the steps below to configure authentication-free IP address:
Command
Function
Ruijie# configure terminal
Enter the global configuration mode.
Ruijie(config)# web-auth
direct-host ipv6-address |
{ip-address [ip-mask] [arp]}
1. Configure authentication-free IP, the maximum number of
such IP is 50.
2. Use parameter ip-mask to configure an IP address segment
as authentication-free.
3. If the ARP CHECK function is enabled on the device, the IP
address, including the VRRP address, of the upstream
gateway connected with terminal users must be configured
as authentication-free resource with the keyword arp. Other
authentication-free resources do not need to carry the
keyword arp.
4. Set the maximum number of entries of authentication-free IP
addresses and authentication-free accessible network
resources to 50.
Ruijie(config)# show http
redirect
View the global configuration information and the statistics of Web
authentication
To cancel the authentication-free IP in the global configuration mode, use no web-auth direct-host
ip-address [ip-mask]
Configuration Example:
# Configure the user with the IP address of 176.10.0.1 free from the authentication
Ruijie# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Ruijie(config)# web-auth direct-host 176.10.0.1
Ruijie(config)# show http redirect
Configuring Flow Detection Function
Web authentication provides a low-traffic log out functionality which allows the device to detect
authenticated users’ traffic in a certain period. When a users traffic is less than the designated threshold
in a certain period, then the user is considered to be in the low-traffic state (for example, stand by state),
at this moment, log out the user.
By default, the traffic detection functionality is enabled and the default value is 15 minutes and 0 byte.
Follow the steps below to enable traffic detection functionality:

Table of Contents

Related product manuals