[x]

Controlling portal user access > Configuring an authentication destination subnet

 

 Next

Configuring an authentication destination subnet

About authentication destination subnets

By configuring authentication destination subnets, you specify that users trigger portal authentication only when they accessing the specified subnets (excluding the destination IP addresses and subnets specified in portal-free rules). Users can access other subnets without portal authentication.

Restrictions and guidelines

If both authentication source subnets and destination subnets are configured on an interface, only the authentication destination subnets take effect.

You can configure multiple authentication destination subnets. If the destination subnets overlap, the subnet with the largest address scope (with the smallest mask or prefix) takes effect.

Procedure

  1. Enter system view.

    system-view

  2. Enter Layer 3 interface view.

    interface interface-type interface-number

  3. Configure a portal authentication destination subnet.

    IPv4:

    portal free-all except destination ipv4-network-address { mask-length | mask }

    IPv6:

    portal ipv6 free-all except destination ipv6-network-address prefix-length

    By default, users accessing any subnets must pass portal authentication.

prev

 

up

 next

Configuring an authentication source subnet 

home

 Setting the maximum number of portal users

© Copyright 2017 Hewlett Packard Enterprise Development LP