03-30-2012 02:45 AM - edited 07-03-2021 09:54 PM
HI all, I would like to share one problem with WLC 5508 .
we added a new virtual interface on the WLC. One new SSID is associated with this interface.
We created a ACL for this interface to restrict the access via WIFI to certian services.
The following services are allowed on this ACL:
TCP-Traffic for HTTPS
UDP-Traffic for DNS
UDP-Traffic for DHCP
TCP-Traffic for HTTP
ICMP-Traffic
TCP-Traffic for CITRIX
The Problem is, as soon as we add a new service to this ACL, we need to reboot the Controller because the Clients which are working over WIFI do not get a IP-Address assigned via DHCP.
It´s not correct that everything works fine because the change were not applied.
The changes of the ACL are applied on the fly, but for reason we don´t know, the clients don´t get a DHCP IP-Address (after changing the ACL) until the Controller is rebooted.
I am attaching configruation from affected wlc
thank you
03-30-2012 04:05 AM
If shop is coming from a server on the LAN you need to add DHCP as a port they can reach.
Steve
Sent from Cisco Technical Support iPhone App
03-30-2012 04:07 AM
Sorry I do not understand how do you mean it?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide