beautypg.com

H3C Technologies H3C S6300 Series Switches User Manual

Page 9

background image

iii

Configuration procedure ······································································································································ 97

 

Referencing a portal Web server for an interface ······································································································ 97

 

Controlling portal user access ······································································································································ 98

 

Configuring a portal-free rule······························································································································· 98

 

Configuring an authentication source subnet ····································································································· 99

 

Configuring an authentication destination subnet ··························································································· 100

 

Setting the maximum number of portal users ··································································································· 100

 

Specifying a portal authentication domain ······································································································ 101

 

Configuring portal detection functions ······················································································································· 102

 

Configuring online detection of portal users ···································································································· 102

 

Configuring portal authentication server detection ·························································································· 102

 

Configuring portal Web server detection ········································································································· 103

 

Configuring portal user synchronization ··········································································································· 104

 

Configuring the portal fail-permit function ················································································································· 105

 

Configuring BAS-IP for unsolicited portal packets sent to the portal authentication server ·································· 105

 

Enabling portal roaming ············································································································································· 106

 

Logging out portal users ·············································································································································· 107

 

Displaying and maintaining portal ···························································································································· 107

 

Portal configuration examples ···································································································································· 107

 

Configuring direct portal authentication ··········································································································· 107

 

Configuring re-DHCP portal authentication ······································································································ 116

 

Configuring cross-subnet portal authentication ································································································ 119

 

Configuring extended direct portal authentication ·························································································· 122

 

Configuring extended re-DHCP portal authentication ····················································································· 125

 

Configuring extended cross-subnet portal authentication ··············································································· 129

 

Configuring portal server detection and portal user synchronization ··························································· 132

 

Troubleshooting portal ················································································································································· 140

 

No portal authentication page is pushed for users ························································································· 140

 

Cannot log out portal users on the access device ··························································································· 140

 

Cannot log out portal users on the RADIUS server ·························································································· 141

 

Users logged out by the access device still exist on the portal authentication server ·································· 141

 

Re-DHCP portal authenticated users cannot log in successfully······································································ 142

 

Configuring port security ········································································································································ 143

 

Overview ······································································································································································· 143

 

Port security features ··········································································································································· 143

 

Port security modes ············································································································································· 143

 

Configuration task list ·················································································································································· 146

 

Enabling port security ·················································································································································· 147

 

Setting port security's limit on the number of secure MAC addresses on a port ·················································· 147

 

Setting the port security mode ···································································································································· 148

 

Configuring port security features ······························································································································ 149

 

Configuring NTK ················································································································································· 149

 

Configuring intrusion protection ························································································································ 149

 

Configuring secure MAC addresses ·························································································································· 150

 

Configuration prerequisites ································································································································ 151

 

Configuration procedure ···································································································································· 151

 

Ignoring authorization information from the server ·································································································· 151

 

Enabling MAC move ··················································································································································· 152

 

Displaying and maintaining port security ·················································································································· 152

 

Port security configuration examples ························································································································· 153

 

autoLearn configuration example ······················································································································ 153

 

userLoginWithOUI configuration example ······································································································· 154

 

macAddressElseUserLoginSecure configuration example ··············································································· 157

 

Troubleshooting port security ······································································································································ 160

 

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: