| CPC H04L 63/0876 (2013.01) [H04L 61/103 (2013.01); H04L 61/5014 (2022.05); H04L 63/0236 (2013.01); H04L 63/20 (2013.01)] | 20 Claims |
|
1. A method for managing a network device, the method comprising:
receiving, by network device hardware of the network device, an incoming frame originating from a host, wherein the incoming frame comprises an internet protocol (IP) address of the host and a payload specifying information associated with an external server, wherein a user of the host has not been authenticated by a captive portal at a time when the incoming frame is received by the network device hardware;
determining, using the IP address of the host and an IP address to segment identifier (ID) mapping, that the host is associated with a first segment;
in response to the determining, forwarding, by the network device hardware, the incoming frame towards a redirection server executing on the network device, wherein the first segment is associated with a first policy and wherein the first policy specifies that the incoming frame is to be forwarded to the redirection server;
receiving, by the network device hardware, a redirection frame comprises a uniform resource locator (URL) of a captive portal;
transmitting the redirection frame towards the host, wherein the user of the host is authenticated by the captive portal based, at least in part, on the redirection frame; and
associating, after the user of the host has been authenticated by the captive portal, the host with a second segment, wherein the segment second permits the host to access the external server.
|