This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Captive Portal Ports in PANOS 4.0

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience. Visit our blog to learn more.

Captive Portal Ports in PANOS 4.0

Go to solution
ggoudr
L2 Linker

‎06-10-2011 02:20 AM

Hello everybody,

When enabling Captive Portal either in vWire or Layer3 mode, the Layer3 interface that is used for redirection and has the "Response Pages" option enabled, is listening to certain ports for Captive portal.

Let's say that the configured hostname for redirection and for NTLM host is "palo alto" and is pointing to the IP address 10.0.0.1 of the ethernet1/13 interface. The ethernet1/13 interface has in the Interface Management profile assigned, also checked the option "Response Pages" and also the "Ping" service checked, but not the other services (telnet,ssh,http,https and snmp that are unchecked).

With the abovementioned configuration, thhe ports that the interface ethernet1/13 is listening are the following urls:

http://paloalto:6080

http://paloalto:6081

https://paloalto:6081

http://paloalto:6082

https://paloalto:6082

I have the impression that port 6080 is used for NTLM authentication and for Captive portal authentication (page with title "User Identification Portal" for protocol HTTP only (unsecure connection).

Port 6081 is used for NTLM and Captive Portal Authentication for protocol HTTPS (secure connection).

I do not understand the existence of port 6082 in PANOS 4.0, which seems that is listeing for protocol HTTPS and serving

both NTLM and Captive Portal Authentication

More specific, in order to test the abovementioned, I have used the following URLs:

http://paloalto:6080/esp/ntlm.esp?vsys=1&url=http://www.google.com

http://paloalto:6080/esp/uid.esp?vsys=1&url=http://www.google.com

https://paloalto:6081/esp/ntlm.esp?vsys=1&url=http://www.google.com

https://paloalto:6081/esp/uid.esp?vsys=1&url=http://www.google.com

https://paloalto:6082/esp/ntlm.esp?vsys=1&url=http://www.google.com

https://paloalto:6082/esp/uid.esp?vsys=1&url=http://www.google.com

Please explain me when each port is used.

Thank you,

George G.

Athens, Greece

0 Likes Likes
1 accepted solution

Accepted Solutions

Go to solution
gsamuels
L3 Networker

‎06-10-2011 05:44 PM

Here are the services listening on the ports you have indicated:

6080-6081  Captive Portal captive portal redirect and URL override page

6082-         Captive portal and captive portal redirect with certificate

View solution in original post

0 Likes Likes
1 REPLY 1

Go to solution
gsamuels
L3 Networker

‎06-10-2011 05:44 PM

Here are the services listening on the ports you have indicated:

6080-6081  Captive Portal captive portal redirect and URL override page

6082-         Captive portal and captive portal redirect with certificate

0 Likes Likes
  • 1 accepted solution
  • 3355 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks