ACL per SSID

jcarvalh · ‎06-21-2014

Hello.

Anyone knows how to configure controll access in a WLC, per WLAN? My ideia is to apply different ACLs to different WLANs in order to controll access to assets. However I can only find pre-authentication ACL and what I want is ACLs to work after authentication.

Regards,

João.

Sandeep Choudhary · ‎06-21-2014

Hi,

i dont know if it is the right answer or not for u :)

Use AAA Override in the WLAN and have the ACL applied per user.

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a00808b041e.shtml

Regards

Dont forget to rate helpful posts

jcarvalh · ‎06-22-2014

Hello.

Thanks for your reply but in my case I want to apply an ACL to a WLAN configured in local switching mode, so traffic does not pass through the WLC.

In WLAN Advanced Option there is an Override interface ACL but it is my understanding that this only apply to WLAN configured for central switching (all traffic goes through the WLC).

I would like to have the ability to apply an ACL to an WLAN (WLAN in local switching mode) for traffic control.

Regards,

João.

mohanak · ‎06-26-2014

ACLs on the WLC are meant to restrict or permit wireless clients to services on its WLAN:

www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/71978-acl-wlc.html

jcarvalh · ‎07-02-2014

Hello.

From the document that you sent I believe that I cannot control traffic, per WLAN, on APs. Traffic must allways pass through the WLC (WLAN with no local switching).

Thanks and regards,

João.