Working with VSCs
VSC configuration options
5-22
Accepted
Any IP traffic coming from the upstream device, except NetBIOS packets.
PPPoE traffic from the upstream device.
IP broadcast packets, except NetBIOS
ARP and DHCP Offer and ACK packets.
Any traffic coming from the AP itself, including 802.1X.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/
destination address.
Custom wireless security filter definitions
Use this option to define your own security filters to control incoming and outgoing wireless
traffic. To use the default filters as a starting point, select Get Default Filters.
Filters are specified using standard pcap syntax with the addition of a few HP ProCurve-
specific placeholders. These placeholders can be used to refer to specific MAC addresses and
are expanded by the AP when the filter is activated. Once expanded, the filter must respect
the pcap syntax. The pcap syntax is documented in the tcpdump man page:
http://www.tcpdump.org/tcpdump_man.html
Placeholders
MAC address of the controller.
MAC address of the bridge.
MAC address of the default gateway assigned to the AP.
: MAC address of AP wireless port.
Wireless mobility considerations
If you enable the wireless mobility feature (to support roaming across different subnets),
configuration of the wireless security filters must respect the following guidelines so as not
to interfere with roaming functionality.
The Restrict wireless traffic to: Access point default gateway option is not
supported.
The Restrict wireless traffic to: MAC or Custom options can be used provided that
they restrict traffic to destinations that are reachable from all subnets in the mobile
domain.
To Next Page
Loading...
Need help?
General
