Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACLs on WLC

hi Experts,

just a question regarding ACL configuration on the WLC. I am a bit confused on when to use CPU ACL and when should we apply the ACL on an interface?

it seems CPU ACL is used to filter traffic processed by CPU, so normally used to prevent access to WLC through GUI/ssh/telnet.

and if we apply ACL on an interface,  then this is mainly used to filter data traffic.

can you please help to clarify the difference between the two and what would be the best practice to use them?

appreciate for any comments.

Andy

1 REPLY
Hall of Fame Super Silver

Re: ACLs on WLC

If you do configure acl’s on the WLC, I would not create a cpu acl, because you might end up locking yourself of the wlc. You can create acl’s for the interface to deny or allow traffic from that interface or even do a pre-auth acl if you wanted to. I only use acl’s on the wlc if I have to (webauth) or else I would use acl on the layer 3 switch instead.

-Scott
*** Please rate helpful posts ***
256
Views
0
Helpful
1
Replies
CreatePlease to create content