Welcome to Cisco Support Community. We would love to have your feedback.
For an introduction to the new site, click here. And see here for current known issues.
I have tried using access control list to block certain IPs from accessing WLC web management. I apply the ACL to interface management, but it seems like no effect at all.
How can I block or permit some IPs so only certain IPs can access WLC web management ?
Thanks in advance.
I need deal with this matter also... So here's what I found:
- you must use CPU acls - interface acls won't do what you want;
- it appears that once you use an acl, you must explicitly define each type of traffic you want to allow, since an implicit deny all action occurs.
I'm working on trying to restrict admin access to controllers in order address policy compliance matters. I'm disappointed at the lack of better documentation and practical examples on acls...
If anyone can shed some light on this topic I think two of us would appreciate it...
Take a look at this doc... on page 4 it says cpu acls on post 4.0 releases allow you to address traffic on the management interface (my interpretation). It also points out on the same page that an implicit deny any any action ends the acl.
See ACLs on Wireless LAN Controllers: Rules,
Limitations, and Examples
Document ID: 81733
have you succeed doing this ?? I still get problem yet.