01-05-2022 08:54 PM - edited 01-05-2022 09:00 PM
Hi all,
i looked two cisco web page describing web redirection ACL, however, seems they are total different? or am i missing something? or configuration of redirection ACL total different on ISE and WLC?
1)
The final step is to create a redirect ACL. This ACL is referenced in the access-accept of the ISE and defines what traffic should be redirected (denied by the ACL) and what traffic should not be redirected (permitted by the ACL). Here you just prevent from redirection traffic towards the ISE. You might want to be more specific and only prevent traffic to/from the ISE on port 8443 (guest portal), but still redirect if a user tries to access the ISE on port 80/443.
2)
For the redirection ACL, think of denying action as a deny redirection (not deny traffic), and permit action as permit redirection. The WLC will only look into traffic that it can redirect (port 80 and 443 by default).
Solved! Go to Solution.
01-05-2022 09:20 PM
01-05-2022 09:20 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide