Specifying a preauthentication IP address pool

About preauthentication IP address pools

You must specify a preauthentication IP address pool on a portal-enabled interface in the following situation:

After a user connects to a portal-enabled interface, the user uses an IP address for portal authentication according to the following rules:

After the user passes portal authentication, the AAA server authorizes an IP address pool for re-assigning an IP address to the user. If no authorized IP address pool is deployed, the user continues using the previous IP address.

Restrictions and guidelines

This configuration takes effect only when the direct IPv4 portal authentication is enabled on the interface.

Make sure the specified IP address pool exists and is complete. Otherwise, the user cannot obtain the IP address and cannot perform portal authentication.

If the portal user does not perform authentication or fails to pass authentication, the assigned IP address is still retained.

Procedure

  1. Enter system view.

    system-view

  2. Enter Layer 3 interface view.

    interface interface-type interface-number

  3. Specify a preauthentication IP address pool on the interface.

    portal [ ipv6 ] pre-auth ip-pool pool-name

    By default, no preauthentication IP address pool is specified on an interface.