Rockwell Automation 1783-WAPxxx Stratix 5100 Wireless Access Point User Manual User Manual
Page 479
Rockwell Automation Publication 1783-UM006A-EN-P - May 2014
479
Configuring Filters
Chapter 17
6. Create an ACL. For this example, 101:
AP<config># ip access-list extended 101
AP<config-ext-nacl>#permit tcp 10.1.1.0 0.0.0.255
172.16.1.0 0.0.0.255 eq telnet time-range Test
7. Apply the time-based ACL to the Ethernet interface:
interface Ethernet0/0
ip address 10.1.1.1 255.255.255.0
ip access-group 101 in
ACL Logging
ACL logging is not supported on the bridging interfaces of AP platforms. When
applied on bridging interface, it works as if configured without the log option
and logging does not take effect. However, ACL logging works well for the BVI
interfaces as long as a separate ACL is used for the BVI interface.
CLI Configuration Example
This example shows the CLI commands that are equivalent to the steps listed in
the
Using MAC Address ACLs to Block or Allow Client Association to the
.
AP# configure terminal
AP(config)# dot11 association access-list 777
AP(config)# end
In this example, only client devices with MAC addresses listed in access list 777
are allowed to associate to the access point. The access point blocks associations
from all other MAC addresses.
For complete descriptions of the commands used in this example,
.
IMPORTANT
This ACL permits Telnet traffic to and from the network for the specified time-
range Test. It also permits a Telnet session to the AP on weekdays.