Memory limitation for access lists in 1232 APs

Unanswered Question
Aug 30th, 2010
User Badges:

Hello, we are trying to implement something over our wireless network a

nd to do it our security group is requiring a fairly long access list.  The problem is when I try to apply it to my access point it fails saying there isnt enough memory.  Is there a way to allocate more memory to the access point for access lists??


Thanks


~ Phil

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Leo Laohoo Mon, 08/30/2010 - 16:08
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

Errrr ... APs weren't designed to do complex (or long) ACLs.  Can't you move the ACLs to the router instead?

pmorneault Wed, 09/01/2010 - 12:16
User Badges:

My security group wants the access list in the AP to prevent rogue devices from communicating on this less secure SSID.  Its less secure because the devices connecting are video consoles and im using a wired to wireless bridge device that cannot do radius/PEAP auth.


So no go in changing the memory allocation on them to allow for more room for ACLs?


~ Phil

Leo Laohoo Wed, 09/01/2010 - 15:45
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

Nope.


Sounds like you need a WLC.  If the WLC detects rogue APs, clients and ad-hoc, the operator can choose to "contain" the target.  When a device is being "contained" it will be receiving an overwhelming de-authenticate message forcing it to drop all active connections.

Actions

This Discussion

 

 

Trending Topics - Security & Network