Overview
5-72
5.1.36 wlan-acl
Global Configuration Commands
Use this command to apply an ACL on a WLAN index.
Syntax
wlan-acl [<1-256>{<1-99>|<100-199>|<1300|1999>|<2000|2699>|word}][in|out]
Parameters
Usage Guidelines
Every WLAN created is mapped to an index. When an ACL is applied on a WLAN index it becomes a WLAN
ACL. The following type of ACL’s can be applied on a WLAN:
• IP Standard ACL
• IP Extended ACL
• MAC Extended ACL
When a packet is sent from a client to a WLAN index of an access port, it becomes an inbound traffic to the
wireless LAN.
When a packet goes out of a access port, it becomes a outbound traffic to the wireless LAN index. Apply an
ACL to a WLAN index in the outbound direction to filter traffic from both wired and wireless interfaces.
wlan-acl can be attached both in the inbound and outbound directions.
The last ACE in the access list is an implict deny statement. Whenever the interface receives the packet, its
content is checked against all the ACE’s in the ACL. It is allowed/denied based on the ACL configuration.
<1-256>[] WLAN number.
• <1-99> — IP standard access list.
• <100-199> — IP extended access list.
• <1300-1999> — IP standard access list (expanded range).
• <2000-2699> — IP extended access list (expanded range).
• WORD — Access list name.
NOTE Most of the Wireless LAN related configuration are performed using the
Wireless Instance on page 20-1.
Use
wlan-acl (in the global configuration mode) to apply an ACL on a wireless
LAN index .
To Next Page
Loading...
Need help?
General
