Re: Guest SSID possible to restrict access to a single web page?

Mottok · ‎09-27-2018

Hi,

We have a guest SSID configured using MAB authentication with ISE (I am completely new to this as our network engineer has left, so this is about as much as I know!).

I've been asked to find out if we can restrict this SSID to allow it to only go to one specific website, is this possible and if so how can I do this?

Many thanks.

Sandeep Choudhary · ‎09-27-2018

Hi,

you could apply an ACL to allow the ip address of the website and then deny everything else.

Regards

Dont forget to arte helpful posts

Mottok · ‎09-27-2018

Many thanks for that. Would that be on the controller somewhere or at a firewall level? And I take it that would be at an IP address level rather than domain name? Sorry for the newbie questions, just learning. Thanks.

Sandeep Choudhary · ‎09-27-2018

Are you using ISE for MAB authentication or ?

yes that will be filtered with IP address rahter then domain name!!

Regards

Dont forget to rate helpful posts

Mottok · ‎09-27-2018

Hi, yes using ISE for MAB. SO I'm guessing I would do the ACL in ISE somewhere? Thanks.

Sandeep Choudhary · ‎09-27-2018

you can create ACL in WLC or DACLin ISE and push it from ISE via AuthZ profiles.

Mottok · ‎09-27-2018

Ok thanks, understand about 50% of what that means but gives me somewhere to start, many thanks for your help.