block IPs from accessing WLC web management

Unanswered Question
Oct 16th, 2008

Hi all,

I have tried using access control list to block certain IPs from accessing WLC web management. I apply the ACL to interface management, but it seems like no effect at all.

How can I block or permit some IPs so only certain IPs can access WLC web management ?

Thanks in advance.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
laaustin Thu, 10/23/2008 - 12:08

I need deal with this matter also... So here's what I found:

- you must use CPU acls - interface acls won't do what you want;

- it appears that once you use an acl, you must explicitly define each type of traffic you want to allow, since an implicit deny all action occurs.

I'm working on trying to restrict admin access to controllers in order address policy compliance matters. I'm disappointed at the lack of better documentation and practical examples on acls...

If anyone can shed some light on this topic I think two of us would appreciate it...

laaustin Thu, 10/23/2008 - 12:22

Take a look at this doc... on page 4 it says cpu acls on post 4.0 releases allow you to address traffic on the management interface (my interpretation). It also points out on the same page that an implicit deny any any action ends the acl.

See ACLs on Wireless LAN Controllers: Rules,

Limitations, and Examples

Document ID: 81733


This Discussion



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode