Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Are there any wireless controler that will accept Downloadable Access-list ?

Currently any vpn user apon connection the network has an ACL pushed from ACS to ASA.

I want to do the same for wireless but I dont use the ASA. Will one of the wireless controllers accept Downloadable ACL's like the ASA ?

Michael

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Gold

Re: Are there any wireless controler that will accept Downloadab

NO.  Because the ACL syntax on the WLC are different.

3 REPLIES
Gold

Re: Are there any wireless controler that will accept Downloadab

You can create an ACL on the controller and have the Radius server apply that ACL to specifiec users .

http://www.cisco.com/en/US/docs/wireless/controller/6.0/configuration/guide/c60sol.html#wp1086421

Community Member

Re: Are there any wireless controler that will accept Downloadab

Dan,

That would be tricky at best. If its per user would mean 10,000 ACL at about 200 lines each.  hmmm that won't fit on a 4402 now will it ?

I'm using RSA authentication, If I can do it like I do with the ACS/RSA on a per group basis would drop to about 144 ACLs at about 200 lines.

Correct me if I'm wrong but I can't use the ASA with DACL unless I'm using IpSec.


At this point I'm not limiting myself to the Wireless controllers I thought it would be the simplest solution.

Hall of Fame Super Gold

Re: Are there any wireless controler that will accept Downloadab

NO.  Because the ACL syntax on the WLC are different.

452
Views
0
Helpful
3
Replies
CreatePlease to create content