block IPs from accessing WLC web management

0600648902 · ‎10-16-2008

Hi all,

I have tried using access control list to block certain IPs from accessing WLC web management. I apply the ACL to interface management, but it seems like no effect at all.

How can I block or permit some IPs so only certain IPs can access WLC web management ?

Thanks in advance.

laaustin · ‎10-23-2008

I need deal with this matter also... So here's what I found:

- you must use CPU acls - interface acls won't do what you want;

- it appears that once you use an acl, you must explicitly define each type of traffic you want to allow, since an implicit deny all action occurs.

I'm working on trying to restrict admin access to controllers in order address policy compliance matters. I'm disappointed at the lack of better documentation and practical examples on acls...

If anyone can shed some light on this topic I think two of us would appreciate it...

laaustin · ‎10-23-2008

Take a look at this doc... on page 4 it says cpu acls on post 4.0 releases allow you to address traffic on the management interface (my interpretation). It also points out on the same page that an implicit deny any any action ends the acl.

See ACLs on Wireless LAN Controllers: Rules,

Limitations, and Examples

Document ID: 81733

0600648902 · ‎10-30-2008

Hi,

have you succeed doing this ?? I still get problem yet.