锐捷AP-530 PPPOE与本地portal配置

【网络环境】

【AP版本】

版本要大于11，才支持本功能。

【配置】

version 11.1(5)B3
hostname ap-513
!
fair-schedule
!
ip access-list standard 10
 10 permit any
!
web-auth template iportal
 page-suite default
 authentication l
 accounting iportal_account
 port 8080
!
username root web-auth password rootroot
!
aaa new-model
!
aaa accounting network iportal_account start-stop none
aaa authentication iportal l local
aaa authentication iportal l_r local group radius
!
spectral
!
cwmp
!
service dhcp
ip dhcp excluded-address 172.16.1.254
!
ip dhcp pool vlan10-dhcp
 network 172.16.1.0 255.255.255.0
 dns-server 114.114.114.114
 default-router 172.16.1.254
!
enable service web-server http
no service password-encryption
!
was httpcache cacheable filetype jpg|jpeg|gif|png|bmp|ico|css|swf|js|xml|htm|html|shtml|exe|msi|pcap|cab|bin|iso|rar|zip|gz|bz2
was httpcache self-definition ttl 43200
!
dot11 wlan 10
 ssid rg-ap-530
!
link-check disable
!
nfpp
!
wids
!
wlocation
!
enable password admin
vlan 1
!
vlan 10
!
interface GigabitEthernet 0/1
 pppoe enable
 pppoe-client dial-pool-number 10 no-ddr
!
interface GigabitEthernet 0/1.10
 encapsulation dot1Q 10
!
interface GigabitEthernet 0/2
 shutdown
 ip address 192.168.111.1 255.255.255.0
!
interface dialer 10
 mtu 1488
 ip address negotiate
 ppp chap hostname yyyyyyyy
 ppp chap password xxxxxx

ppp pap sent-username  yyyyyyyy password xxxxx

dialer pool 10
 ip nat outside
!
interface Dot11radio 1/0
 chan-width 20
 country-code CN
 radio-type 802.11b
 channel 1
 rate-set 11b mandatory 1 2 5 11
 rate-set 11g mandatory 1 2 5 11
 rate-set 11g support 6 9 12 18 24 36 48 54
 rate-set 11n mcs-support 23
 rate-set 11ac mcs-support 29
 no ampdu-rts
 no 11acsupport enable
 station-role root-ap
!
interface Dot11radio 1/0.10
 encapsulation dot1Q 10
 wlan-id 10
!
interface Dot11radio 2/0
 chan-width 20
 country-code CN
 no short-preamble
 radio-type 802.11a
 channel 149
 rate-set 11a mandatory 6 12 24
 rate-set 11a support 9 18 36 48 54
 rate-set 11n mcs-support 23
 rate-set 11ac mcs-support 29
 ampdu-rts
 11acsupport enable
 station-role root-ap
!
interface Dot11radio 2/0.10
 encapsulation dot1Q 10
 wlan-id 10
!
interface BVI 1
!
interface BVI 10
 ip address 172.16.1.254 255.255.255.0
 ip nat inside
!
wlansec 10
 web-auth portal iportal
 webauth
 security rsn enable
 security rsn ciphers aes enable
 security rsn akm psk enable
 security rsn akm psk set-key ascii adminadmin
!
ip nat inside source list 10 interface dialer 10 overload
!
ip route 0.0.0.0 0.0.0.0 dialer 10
!
no offline-detect
!
line console 0
 password admin
line vty 0 4
 privilege level 15
 password admin
!
end