Nat translations – Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

860

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

15

To view MAC firewall rules:

1. Select the Statistics menu from the Web UI.

2. Select a Wireless Controller node from the left navigation pane.

3. Expand the Firewall menu from the left-hand side of the UI.

4. Select MAC Firewall Rules.

FIGURE 79

Wireless Controller - Firewall MAC Firewall Rules screen

The MAC Firewall Rules screen displays the following:

NAT Translations

Firewall

Precedence

Displays the precedence (priority) applied to packets. The rules within an Access Control Entries (ACL)
list are based on their precedence values. Every rule has a unique precedence value between 1 and
5000. You cannot add two rules with the same precedence value.

Friendly String

This string provides more information as to the contents of the rule. This is for information purposes
only.

Hit Count

Displays the number of times each WLAN ACL has been triggered.

Hardware Hit Count

On NX4500 and NX6500 series service platforms, intra-vlan packets are switched locally (on the service
platform), preventing ACL or stateful firewall inspection. However, a unique ACL is available on NX4500
and NX6500 service platform GE ports providing a stateless firewall using MAC based ACLs. The
Hardware Hit Count constitutes the number of times one of the service platform’s 1024 MAC hardware
rules has been triggered on one of its GE ports. NX4500 and NX6500 models have 2 GE ports, and
NX4524 and NX6524 models have 24 GE ports.

Refresh

Select the Refresh button to update the screen’s statistics counters to their latest values.