https://community.cisco.com/t5/wireless/3850-controller-acl-working-with-ise/m-p/2491695#M67501 <P>Hi all</P><P>&nbsp;</P><P>I was wondering if anyone can point me to the right direction. I was setting up BYOD access with ISE and Legacy controllers as follows:</P><P>- create rule on ISE with Redirect / Airspace ACL</P><P>- once that rule is hit ISE would send ACL name that needs to be applied on the controller (i.e. NSP-IOS )</P><P>- controller would need to have the same ACL created locally with matching name</P><P>- there are certain rules on old controllers allowing inbound / outbound traffic + denying traffic to be redirected</P><P>&nbsp;</P><P>now I want to use the same principle with 3850 controller.</P><P>&nbsp;</P><P>question is -&gt; where do I configure this ACL, globally or under WLAN.... Also, what about direction - inbound / outbound that used to be the case with legacy controllers?</P> Mon, 05 Jul 2021 07:23:30 GMT wojtek.siodelski 2021-07-05T07:23:30Z https://community.cisco.com/t5/wireless/3850-controller-acl-working-with-ise/m-p/2491695#M67501 <P>Hi all</P><P>&nbsp;</P><P>I was wondering if anyone can point me to the right direction. I was setting up BYOD access with ISE and Legacy controllers as follows:</P><P>- create rule on ISE with Redirect / Airspace ACL</P><P>- once that rule is hit ISE would send ACL name that needs to be applied on the controller (i.e. NSP-IOS )</P><P>- controller would need to have the same ACL created locally with matching name</P><P>- there are certain rules on old controllers allowing inbound / outbound traffic + denying traffic to be redirected</P><P>&nbsp;</P><P>now I want to use the same principle with 3850 controller.</P><P>&nbsp;</P><P>question is -&gt; where do I configure this ACL, globally or under WLAN.... Also, what about direction - inbound / outbound that used to be the case with legacy controllers?</P> Mon, 05 Jul 2021 07:23:30 GMT https://community.cisco.com/t5/wireless/3850-controller-acl-working-with-ise/m-p/2491695#M67501 wojtek.siodelski 2021-07-05T07:23:30Z https://community.cisco.com/t5/wireless/3850-controller-acl-working-with-ise/m-p/2491696#M67502 <P>The ACl should be under the WLAN</P> Wed, 12 Mar 2014 07:28:07 GMT https://community.cisco.com/t5/wireless/3850-controller-acl-working-with-ise/m-p/2491696#M67502 Saurav Lodh 2014-03-12T07:28:07Z