About PLScott

PLScott · 06-17-2024

Hello,We are using 3 Aironet 1852i APs running 8.10.185 configured as ME Capable and hosting 2 WLANs (PROD & OTHER) tagged to 2 different VLANs. I'm trying to setup MAC filtering on the OTHER network so none of the internal laptops connect to it by a...

PLScott · 03-03-2023

Hello, I'm trying to deny https traffic to a particular host within a VLAN except when coming from one other host. I created the following access-list to be used in an access-map ip access-list extended ACL_HTTPSpermit tcp any host 192.168.25.50 eq h...

PLScott · 03-05-2023

Thank you for confirming the map sequence, Paul.I was considering dropping the bold lines as I can't think of a situation where 192.168.25.50 would communicate with 192.168.25.10 on port 443 (only the other direction). Doesn't the port used in the ac...

PLScott · 03-05-2023

Thank you for providing perspective, Joseph! It looks like I may need to add another host to the allow list in the event it uses port 443 for communication with 192.168.25.50.

PLScott · 03-03-2023

Hi MHM Cisco World, Thank you for your help! Shouldn't I use the following statements for the ACL_HTTPS-ALLOW access list instead? ip access-list extended ACL_HTTPS-ALLOWpermit tcp host 192.168.25.10 any eq https

PLScott · 03-03-2023

Hi Paul, Thank you for your help! Are the bold lines (below) needed if 192.168.25.10 always initiates the https connection and the default action is set to forward (from statement 99) or can I do without them? ip access-list extended ACL_HTTPSpermit ...

Member Since	‎01-03-2017 02:45 PM
Date Last Visited	‎06-24-2024 11:56 AM
Posts	6

User Statistics

User Activity

Aironet 1852i - MAC filtering - Allow all except X,Y,Z

VLAN Access-map access-list exception

Re: VLAN Access-map access-list exception

Re: VLAN Access-map access-list exception

Re: VLAN Access-map access-list exception

Re: VLAN Access-map access-list exception