I am having one wireless setup with Cisco WLC and several APs are broadcasting SSID from that WLC.
For APs the SSID which is broadcasting that L3 is configured on one of the router with few in/out ACL's mapped under that L3.
My question is can we remove that ACL from Router L3 and can we map that under APs through flexconnect group WLAN-ACL mapping?
Also,Currently router L3 has 1000+ statements in ACL. is this 1000 ACL statement achieveable through WLC flexconnect group WLAN-ACL option?
what kind of ACL is this ? do you have any example ?
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
like some source and destination IPs with some port
100 permit udp 10.68.212.0 0.0.1.255 host 172.25.224.139 eq domain (134052 matches)110 permit icmp 10.68.212.0 0.0.1.255 host 10.68.212.3 (87531 matches)120 permit tcp 10.68.212.0 0.0.1.255 host 10.68.218.5 eq www (929 matches)
ACL can have up to a maximum of 64 lines on WLC. So No.
Ok. Thanks for your response.one more query.if we use virtual WLC, is that the same ACL limitations? or even less numbers of sequence?
Same, I think it’s more of software limitation than resource limitation
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: