beautypg.com

Ldap-deadperiod – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 1097

background image

Brocade Mobility RFS Controller CLI Reference Guide

1089

53-1003098-01

19

default-role use [ip-access-list|mac-access-list] [in|out]

precedence <1-100>

Parameters

default-role use [ip-access-list|mac-access-list] [in|out]

precedence <1-100>

Example

rfs7000-37FABE(config-role-policy-test)#default-role use ip-access-list in

test precedence 1

rfs7000-37FABE(config-role-policy-test)#show context

role-policy test

default-role use ip-access-list in test precedence 1

rfs7000-37FABE(config-role-policy-test)#

Related Commands:

ldap-deadperiod

role-policy

Configures the Lightweight Directory Access Protocol (LDAP) deadperiod interval

Supported in the following platforms:

Access Points — Brocade Mobility 650 Access Point, Brocade Mobility 6511 Access Point,
Brocade Mobility 1220 Access Point, Brocade Mobility 71XX Access Point, Brocade
Mobility 1240 Access Point

Wireless Controllers — Brocade Mobility RFS4000, Brocade Mobility RFS6000, Brocade
Mobility RFS7000

default-role use

Enables default role configuration. This role is applied to a wireless client not matching any of the
user-define roles.

Use – Associates an IP or a MAC access list with the default role

[ip-access-list|
mac-access-list] [in|out]
>

Associates an IP access list or a MAC access list with this default role

in – Applies the rule (IP or MAC) to incoming packets

out – Applies the rule (IP or MAC) to outgoing packets

IP and MAC access control lists (ACLs) act as firewalls by blocking and/or permitting data traffic in both
directions (inbound and outbound) within a managed network. IP ACLs use IP addresses for matching
operations. Whereas, MAC ACLs use MAC addresses for matching operations, In case of a match (i.e. if a
packet is received from or is destined for a specified IP or MAC address), an action is taken. This action is
a typical allow, deny or mark designation to controller packet traffic. For more information on ACLs, see

ACCESS-LIST

.

– Specify the IP/MAC access list name.

The IP and MAC ACL determine the action applied to a client assigned the default role.

precedence
<1-100>

The following keyword is common to the IP and MAC access list parameters:

precedence – Assigns a precedence value to the IP or MAC access list rule identified in the previous
step.

<1-100> – Specify a precedence from 1 - 100.

Rules with lower precedence are given priority.

no

Removes or resets the default role configuration

See also other documents in the category Brocade Computer Accessories: