Is it possible to block outside P2P traffic on a guest wireless network using an ACL on the controller? I know we can do it our firewall but the question came up so I thought I would post and see what everyone thinks. TIA
What you can do is, to block P2P traffic inside a SSID.
Can be configured on a per-SSID basis.
I believe on the WLC under the WLAN you are referring to, click on the Advance tab and there is a P2P blocking action. I believe that will help you out with what you are wanting to do.
Thanks to all who replied. I already restrict P2P for the SSID. I was curious about blocking internet/outside P2P.
Yes, ACLs can be applied to the WLC. I might suggest moving the ACL to the closest point, the FW if you are concern about internet traffic.
No problem. Stop back if you have any other issues or questions.