redirect-acl
Function
The redirect-acl command configures the ACL used for redirection in a service scheme.
The undo redirect-acl command deletes the ACL used for redirection in a service scheme.
By default, no ACL for redirection is configured in the service scheme.
Format
redirect-acl [ ipv6 ] { acl-number | name acl-name }
undo redirect-acl [ ipv6 ]
S6720-HI, S5732-H, S6730-H, S6730S-H, S6730-S, S6730S-S, S5731-H, S5731S-H, S5731-S, S5731S-S, S5730-HI, S2720-EI, S5720-LI, S5720S-LI, S5720-SI, S5720S-SI, S5720I-SI, S5730-SI, S5730S-EI, S6720-LI, S6720S-LI, S6720-SI, and S6720S-SI do not support the ipv6 parameter.
Only wired users support the authorization of the IPv6 ACL used for redirection.
Parameters
| Parameter | Description | Value |
|---|---|---|
ipv6 |
Specifies the IPv6 ACL used for redirection. |
- |
acl-number |
Specifies the number of the ACL used for redirection. |
The value ranges from 3000 to 3999 for wired users and from 3000 to 3031 for wireless users, and it must exist. |
name acl-name |
Specifies the name of the ACL used for redirection. |
The ACL name must exist. The length ranges from 1 to 64. |
Usage Guidelines
Usage Scenario
In some authentication scenarios, after users succeed in authentication, the administrator needs to redirect HTTP/HTTPS traffic matching ACL permit rules to the Portal authentication page where users are authenticated again.
Precautions
Before running this command, you are advised to run the acl or acl name command to create an ACL.
If the ACL is not created before and after this command is run, the redirection ACL will fail to be delivered.
To redirect HTTPS traffic, run the authentication https-redirect enable command to configure the HTTPS redirection function.
After the authentication mode multi-share command is configured in the authentication profile, authorization redirection ACLs will not be supported.