Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
449
Views
0
Helpful
1
Replies

ACLs on WLC

welleslee
Level 1
Level 1

‎01-31-2012 05:21 AM - edited ‎07-03-2021 09:28 PM

hi Experts,

just a question regarding ACL configuration on the WLC. I am a bit confused on when to use CPU ACL and when should we apply the ACL on an interface?

it seems CPU ACL is used to filter traffic processed by CPU, so normally used to prevent access to WLC through GUI/ssh/telnet.

and if we apply ACL on an interface,  then this is mainly used to filter data traffic.

can you please help to clarify the difference between the two and what would be the best practice to use them?

appreciate for any comments.

Andy

Labels:
0 Helpful
1 Reply 1

Scott Fella
Hall of Fame
Hall of Fame

‎01-31-2012 05:25 AM

If you do configure acl’s on the WLC, I would not create a cpu acl, because you might end up locking yourself of the wlc. You can create acl’s for the interface to deny or allow traffic from that interface or even do a pre-auth acl if you wanted to. I only use acl’s on the wlc if I have to (webauth) or else I would use acl on the layer 3 switch instead.

-Scott
*** Please rate helpful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card