Wlan-acl – Brocade Mobility RFS7000-GR Controller CLI Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual
Page 248
234
Brocade Mobility RFS7000-GR Controller CLI Reference Guide
53-1001945-01
Global Configuration Commands
5
wlan-acl
Use this command to apply an ACL on a WLAN index.
Syntax
wlan-acl [<1-256>{<1-99>|<100-199>|<1300|1999>|<2000|2699>|word}][in|out]
Parameters
Usage Guidelines
Every WLAN created is mapped to an index. When an ACL is applied on a WLAN index it becomes a
WLAN ACL. The following type of ACL’s can be applied on a WLAN:
•
IP Standard ACL
•
IP Extended ACL
•
MAC Extended ACL
When a packet is sent from a client to a WLAN index of an access port, it becomes an inbound
traffic to the wireless LAN.
When a packet goes out of a access port, it becomes a outbound traffic to the wireless LAN index.
Apply an ACL to a WLAN index in the outbound direction to filter traffic from both wired and wireless
interfaces.
wlan-acl
can be attached both in the inbound and outbound directions.
NOTE
Most of the Wireless LAN related configuration are performed using the
Use
wlan-ac
l (in the global configuration mode) to apply an ACL on a wireless LAN index .
The last ACE in the access list is an implict deny statement. Whenever the interface receives the
packet, its content is checked against all the ACE’s in the ACL. It is allowed/denied based on the
ACL configuration.
Example
The example below applies an ACL to WLAN index 200 in an inbound direction from the global
configuration mode.
RFS7000(config)#wlan-acl 200 150 in
RFS7000(config)#
<1-256>[]
WLAN number.
•
<1-99> — IP standard access list.
•
<100-199> — IP extended access list.
•
<1300-1999> — IP standard access list (expanded range).
•
<2000-2699> — IP extended access list (expanded range).
•
WORD — Access list name.