228 Customizing the portal and user logon
“Macros” (page 235)
“Automatic redirection to internal sites” (page 236)
“Examples of redirection URLs and links” (page 236)
“Managing the end user experience” (page 237)

Captive portal and Exclude List

When the Nortel SNAS is configured to function as a captive portal, the
Nortel SNAS acts as a DNS proxy while clients are in the Red VLAN. The
captive web portal:
accepts redirected HTTP/HTTPS requests from the clients
resolves unknown names to a fixed IP address
receives and manages communication requests from the clients to
unauthorized network resources
redirects client requests to an authentication page served by the portal
The DHCP server must be configured to assign the portal Virtual IP
address (pVIP) as the DNS server when the client is in the Red VLAN.
The DHCP server is configured to specify the regular DNS servers for
the scopes for the Green and Yellow VLANs. Once the client has been
authenticated and is in a Green or Yellow VLAN, DNS requests are
forwarded in the regular way to the corporate DNS servers.
For information about configuring the captive portal, see “Configuring the
captive portal” (page 240).

Exclude List

The Exclude List is a configurable list of domain names that will not
be captured by the Nortel SNAS. The DNS server in the captive portal
forwards requests for domain names in the Exclude List directly to the
corporate DNS servers.
In order to speed up client logon, add to the Exclude List any domain
names for URLs that are routinely accessed during client logon or startup
sequences. The Exclude List entry can be the full domain name or an
expression.
By default, the captive portal Exclude List includes the following:
windowsupdate
This will match all automatic Windows update domain names used by
browsers, for example:
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Copyright © 2007,2008 NortelNetworks
.