Adding a new wlan firewall rule – Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual
Page 363
Brocade Mobility RFS7000-GR Controller System Reference Guide
349
53-1001944-01
Configuring firewalls and access control lists
6
5. If the properties of an existing WLAN firewall setting fulfill to your needs but still require
modification to better filter traffic, select the WLAN and click the Edit button. .
6. If an existing WLAN firewall rule is now obsolete, select it from those listed and click the Delete
button.
7. Click the Add button to create a new WLAN firewall rule. For more information, see
Adding a new WLAN firewall rule
To add new WLAN firewall rules:
1. Select Security > Wireless Firewall from the main tree menu.
2. Click the Configuration tab.
3. Click the WLAN tab.
MU Deauthenticate
Displays whether or not mobile unit deauthentication is enabled for each WLAN. If
MU Deauthenticate
is enabled any associated mobile unit which hit the thresholds
configured for Allowed MU denies per second will be deauthenticated. If MU
Deauthenticate is enabled a green checkmark will be displayed. When it is
disabled a red “X” will be displayed.
DHCP Trust
Displays the DHCP trust status for the selected WLAN. These DHCP packets are
used to update the DHCP Snoop Table to prevent IP spoof attacks. Any DHCP
packets from a DHCP server connected to the selected WLAN is considered
trusted. By default all WLANs are not DHCP trusted. When DHCP trust is enabled, a
green checkmark is displayed. when disabled, a red 'X' is displayed.
ARP Trust
Displays the ARP trust status for the selected WLAN. Trusted ARP packets are also
used to update the DHCP Snoop Table to prevent IP spoof and arp-cache-poisoning
attacks. By default, none of the WLANs are ARP trusted.
ARP Rate
Displays the Address Resolution Protocol (ARP) rate threshold. The ARP threshold
determines the number of ARP packets permissible per second. Rates can be
between 0 and 1000000