148
For normal operation of portal authentication on a Layer 2 port, you must disable portal authentication
on all Layer 3 interfaces and HP recommends disabling port security, guest VLAN of 802.1X, and EAD
fast deployment of 802.1X on the port. For information about port security and 802.1X features, see
Security Configuration Guide
.
Before enabling portal authentication on a Layer 2 port, be sure to specify the listening IP address of the
local portal server.
Related command:
portal local-server ip
.
Examples
# Enable Layer 2 portal authentication on GigabitEthernet1/0/1.
<Sysname> system-view
[Sysname] interface gigabitethernet 1/0/1
[Sysname-GigabitEthernet1/0/1] portal local-server enable
portal local-server ip
Syntax
portal local-server ip
ip-address
undo portal local-server ip
View
System view
Default level
2: System level
Parameters
ip-address
: Listening IP address of the local portal server. This IP address is that of a Layer 3 interface on
the access device and is routable to from the portal client.
Description
Use the
portal local-server ip
command to specify the listening IP address of the local portal server for
Layer 2 portal authentication. With a listening IP address specified, the device redirects Web requests
from portal clients to the authentication page at the listening IP address.
Use the
undo portal local-server ip
command to restore the default.
By default, no listening IP address is specified for the local portal server.
HP recommends configuring a loopback interface's address as the listening IP address because:
•
The status of a loopback interface is stable. This can avoid authentication page access failures
caused by interface failures.
•
A loopback interface does not forward received packets. This can avoid impacting system
performance when there are many network access requests.
Examples
# Specify 1.1.1.1 as the listening IP address of the local portal server for Layer 2 portal authentication.
<Sysname> system-view
[Sysname] interface loopback 1
[Sysname-LoopBack1] ip address 1.1.1.1 32
[Sysname-LoopBack1] quit