Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

420

Brocade Mobility Access Point System Reference Guide

53-1003100-01

6

FIGURE 13

WLAN Security - MAC Firewall Rules screen

12. Define the following parameters for either the inbound or outbound MAC Firewall Rules:

Allow

Every MAC Firewall rule is made up of matching criteria rules. The action defines what to do with the
packet if it matches the specified criteria. The following actions are supported:

•

Deny - Instructs the Firewall to prohibit a packet from proceeding to its destination.

•

Permit - Instructs the Firewall to allow a packet to proceed to its destination.

Source and Destination
MAC

Enter both Source and Destination MAC addresses. The access point uses the source IP address,
destination MAC address as basic matching criteria. Provide a subnet mask if using a mask.

Action

The following actions are supported:

•

Log - Creates a log entry that a Firewall rule has allowed a packet to either be denied or
permitted.

•

Mark - Modifies certain fields inside the packet, and then permits them. Therefore, mark is an
action with an implicit permit.

•

Mark, Log - Conducts both mark and log functions.

Precedence

Use the spinner control to specify a precedence for this MAC Firewall rule from
1-1500. Access policies with lower precedence are always applied first to packets.