I know I've seen this somewhere in the forums before, so forgive my redundant posting. While I'm fairly familiar with ACLs, I'm wondering if filtering at the AP will provide the same benefit. What I'm interested in doing seems to be fairly common:
I have two SSIDs/VLANs:
VLAN 84- Open, not authentication, for Internet usage
VLAN 88- LEAP authentication, full network access
I'd like to block all traffic coming from VLAN 84 to any other server but our DHCP server and the private interface of our firewall so these users can get an IP and get out to the Internet.
All traffic for VLAN 88 should flow as normal.
The AP connects to a 6509 switch w/ an MSFC. I could just write an ACL on the MSFC. Would it be easier/more secure to write a filter on the AP?
We are moving! Please use WLCCA Forum for updates and discussions
[toc:faq] Wireless LAN Controller (WLC) Config Analyzer Download Click
here to Download To request access, send an e-mail to
email@example.com. Please include your Cisco.com userna...
[toc:faq] IntroductionHere is the step by step process that we have to
take care of while converting LWAPP to IOS and then vice versa..LWAPP to
IOSThe hardware used = 1141 AP (make sure we are using the right
[toc:faq] Introduction AnyConnect Secure Mobility Client 3.0: Network
Access Manager & Profile Editor on Windows Summary Use the Cisco
AnyConnect Network Access Manager Profile Editor to build custom
profiles for the AnyConnect Secure Mobility Client. App...