Motorola Solutions AP-6511 Access Point System Reference Guide
6-26
13.Set the following Wireless Client Deny configuration:
14.Set a Firewall Session Hold Time in either Seconds (1 - 300) or Minutes (1 - 5). This is the hold time
for caching user credentials and Firewall state information when a client roams. The default setting is 10
seconds.
15.Select OK when completed to update this WLAN’s Firewall settings. Select Reset to revert the screen
back to its last saved configuration.
WLAN Firewall Deployment Considerations
Before defining an access control configuration on a WLAN, refer to the following deployment guidelines to
ensure the configuration is optimally effective:
• IP and non-IP traffic on the same Layer 2 interface can be filtered by applying both an IP ACL and a MAC
ACL to the interface.
6.1.4 Configuring Client Settings
Wireless LAN Policy
Each WLAN can maintain its own client setting configuration. These settings include wireless client
inactivity timeouts and broadcast configurations.
1. Select Configuration > Wireless > Wireless LAN Policy to display a high-level display of the existing
WLANs available to the wireless network.
2. Select the Add button to create an additional WLAN, or select and existing WLAN and Edit to modify
the properties of an existing WLAN.
3. Select the Client Settings tab.
Wireless Client
Denied Traffic
Threshold
If enabled, any associated client which exceeds the thresholds configured
for storm traffic is either deauthenticated or blacklisted depending on the
selected Action. The threshold range is 1-1000000 packets per second.
This feature is disabled by default.
Action If enabling a wireless client threshold, use the drop-down menu to
determine whether clients are deauthenticated when the threshold is
exceeded or blacklisted from connectivity for a user defined interval.
Selecting None applies no consequence to an exceeded threshold.
Blacklist Duration Select the checkbox and define a setting between 0 - 86,400 seconds.
Once the blacklist duration has been exceeded, offending clients can
reauthenticate.
To Next Page
Loading...
