使用 Portal 認證時 需要注意...必須要把DNS 主機 設定成 可以存取
Free-Rule 的目的 在讓未認證前的使用者 可以存取的區域...比方說 DNS...比方說 客戶可用的官方網站...
下列有詳細說明
祝各位網路暢行無阻
# -> Optional DNS proxy configuration
dns resolve
dns proxy enable
dns server <remote DNS server>
dns domain networking.hp.demo
#
#
portal server LOCAL ip 10.0.60.1
# à This rule allows any return traffic from the wired network
portal free-rule 1 source interface Bridge-Aggregation1 destination any
# -> Optional, allow DNS requests to go through, only required if client use an external DNS server, e.g. like Google 8.8.8.8
portal free-rule 2 source ip any destination ip <remote DNS server assigned to clients> mask 255.255.255.255 udp 53
portal redirect-url http://www.hp.com/go/networking
#
dhcp server ip-pool vlan60
network 10.0.60.0 mask 255.255.255.0
network ip range 10.0.60.10 10.0.60.29
gateway-list 10.0.60.1
dns-list 10.0.60.1 -> This use the controller DNS proxy as DNS server, may be replaced by an external DNS server, e.g. 8.8.8.8
domain-name networking.hp.demo
#
#
interface Vlan-interface60
description Portal
ip address 10.0.60.1 255.255.255.0
portal server LOCAL method direct
#
For troubleshooting purpose I would recommend to disable portal on the VLAN first to test if DHCP/DNS are working for the client. If client connectivity works without portal you should activate it again.