Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

WLC 2504 - block internet traffic

Hello, new to wlc's.

Can i simply setup an Security ACL to only allow local wireless clients to LAN subnets.

ex: source any dest. 10.0.0.0/8

Thanks in advance                  

2 REPLIES
Hall of Fame Super Silver

WLC 2504 - block internet traffic

I guess... but using the WLC isn't a preferred method.  You should block traffic on your layer 3.  You would map your WLAN to different vlans so you can apply ACL's properly on your layer 3.

Here is a doc on WLC ACL's if you still want to give that a try.

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807810d1.shtml

Thanks,

Scott

*****Help out other by using the rating system and marking answered questions as "Answered"*****

-Scott
*** Please rate helpful posts ***

WLC 2504 - block internet traffic

Best practice is to create an ACL on the next hop wired segment.( Layer3)

If is not recommened to create this type of ACL on the WLC.

If you apply an ACL to an interface or a WLAN, wireless throughput is degraded and can lead to potential loss of packets. In order to improve throughput, remove the ACL from the interface or WLAN and move the ACL to a neighboring wired device.

Regards
Victor V

*****Help out other by using the rating system and marking answered questions as *****Answered"*****

Regards Victor V *****Help out other by using the rating system and marking answered questions as *****Answered"*****
418
Views
0
Helpful
2
Replies
CreatePlease login to create content