Configuring SSG TCP Redirect
To configure SSG TCP Redirect, use the following commands beginning in global configuration mode:
Command
Step 1
Router(config)# ip cef
Step 2
Router(config)# ssg enable
Step 3
Router(config)# ssg tcp-redirect
Step 4
Router(config-ssg-redirect)# server-group
group-name
Router(config-ssg-redirect-group)# server
ip-address
Step 5
Router(config-ssg-redirect)# redirect
unauthenticated-user to group-name
Step 6
Router(config-ssg-redirect)# port-list
port-listname
Router(config-ssg-redirect-port)# port
port-number
Router(config-ssg-redirect)# redirect
port port-number to group-name
Router(config-ssg-redirect)# redirect
port-list port-listname to group-name
Step 7
Router(config-ssg-redirect)# redirect
captivate initial default group
group-name duration seconds
Step 8
Router(config-ssg-redirect)# network-list
network-listname
Router(config-ssg-redirect-network)#
network ip-address
Step 9
Router(config-ssg-redirect)# redirect
unauthorized-service [destination
network-list network-listname ] to
group-name
For more detailed information, refer to the
module.
Cisco 10000 Series Router Service Selection Gateway Configuration Guide
10-6
Purpose
Enables Cisco Express Forwarding (CEF).
Enables SSG functionality.
Enables the SSG TCP Redirect feature.
Defines the captive portal group.
Adds a server to a captive portal group.
Selects a captive portal group for redirection of traffic from
unauthenticated users.
Defines a port list.
Adds a port to the port list.
Configures a TCP port for SSG TCP redirection.
Configures a TCP port list for SSG TCP redirection.
Selects the default captive portal group for initial captivation of
users upon initialization.
Defines a network list.
Adds a network IP address to the network list.
Specifies a list of destination IP networks to be redirected by the
captive portal group.
SSG TCP Redirect for Services, Release 12.2(4)B feature
Chapter 10
SSG TCP Redirect
OL-4387-02