Web-authentication timeout connect – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Authentication Introduction and Configuration

Software Reference for x310 Series Switches

42.14

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

See the

auth-web-server mode command on page 43.47

for command information

about setting the Web-authentication mode.

You can use the parameter <ip-address> of the

auth-web forward

command to

specify a server for the switch to send packets from the supplicant to, for example DNS
packets. For more information and an example, see the “Forwarding DNS packets using
Auth-web forward command” section in the

Alliedware Plus Technical Tips and Tricks.

Web-Authentication Timeout Connect

The command

auth timeout connect-timeout

allows you to increase the connection

period for a supplicant’s interface port.

The default timeout period is 30 seconds, but this command allows the timeout period to
be set from 1 second to 65535 seconds. When

auth-web-server session-keep

or

auth

two-step enable

is enabled, it is recommended to configure a longer connect-timeout

period.

DNS request to 129.93.23.213 - what is the IP address

of www.mysite.com?

Supplicant configured

with IP address 23.67.2.9

and DNS server address

129.93.23.213

Authenticator

DNS reply - the IP address of www.mysite.com

is 10.17.56.2

10.17.56.2

In promiscuous mode, the switch will reply to ANY DNS request from an authenticated supplicant, regardless of

whether the destination IP address of the DNS server bears any relation to the switch’s own IP address. The DNS

reply from the switch will always specify its own IP address as the URL that was being requested.