ACLs on WLC

welleslee — Sun, 04 Jul 2021 04:28:58 GMT

hi Experts,

just a question regarding ACL configuration on the WLC. I am a bit confused on when to use CPU ACL and when should we apply the ACL on an interface?

it seems CPU ACL is used to filter traffic processed by CPU, so normally used to prevent access to WLC through GUI/ssh/telnet.

and if we apply ACL on an interface, then this is mainly used to filter data traffic.

can you please help to clarify the difference between the two and what would be the best practice to use them?

appreciate for any comments.

Andy

Re: ACLs on WLC

Scott Fella — Tue, 31 Jan 2012 13:25:23 GMT

If you do configure acl’s on the WLC, I would not create a cpu acl, because you might end up locking yourself of the wlc. You can create acl’s for the interface to deny or allow traffic from that interface or even do a pre-auth acl if you wanted to. I only use acl’s on the wlc if I have to (webauth) or else I would use acl on the layer 3 switch instead.

topic ACLs on WLC in Wireless

ACLs on WLC

Re: ACLs on WLC