Wlan-acl – Brocade Communications Systems RFS6000 User Manual
Page 314
312
Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Global Configuration commands
5
wlan-acl
Applies an ACL on a WLAN index
Supported in the following platforms:
•
Mobility RFS4000 Controller
•
Mobility RFS6000 Controller
•
Mobility RFS7000 Controller
Syntax
wlan-acl <1-256> [<1-99>|<100-199>|<1300-1999>|
<2000-2699>|<acl-name>] [in|out]
Parameters
Usage Guidelines 1
Every WLAN created is mapped to an index. When an ACL is applied on a WLAN index it becomes a
WLAN ACL. The following type of ACL’s can be applied on a WLAN:
•
IP Standard ACL
•
IP Extended ACL
•
MAC Extended ACL
When a packet is sent from a client to a WLAN index of an access point, it becomes an inbound
traffic to the wireless LAN.
When a packet goes out of a access point, it becomes outbound traffic to the wireless LAN index.
Apply an ACL to a WLAN index in outbound direction to filter traffic from both wired and wireless
interfaces.
wlan-acl
can be attached both in the inbound and outbound directions.
NOTE
Most of the Wireless LAN related configuration are performed using the
. Use
wlan-ac
l (in the global configuration mode) to apply an ACL on a wireless LAN index .
The last ACE in the access list is an implicit deny statement. Whenever the interface receives the
packet, its content is checked against all the ACE’s in the ACL. It is allowed/denied based on the
ACL configuration.
<1-32>
[<1-99>|<100-199>|<130
0|1999>|<2000|2699>|
word]
[in|out]
WLAN number
•
<1-99> — IP standard access list
•
<100-199> — IP extended access list
•
<1300-1999> — IP standard access list (expanded range)
•
<2000-2699> — IP extended access list (expanded range)
•
<acl-name> — Access list name
•
in — Incoming packets
•
out — Outgoing packets