Re: Flexconnect ACL option

Noovi · ‎06-21-2022

Hi Guys,

I am having one wireless setup with Cisco WLC and several APs are broadcasting SSID from that WLC.

For APs the SSID which is broadcasting that L3 is configured on one of the router with few in/out ACL's mapped under that L3.

My question is can we remove that ACL from Router L3 and can we map that under APs through flexconnect group WLAN-ACL mapping?

Also,Currently router L3 has 1000+ statements in ACL. is this 1000 ACL statement achieveable through WLC flexconnect group WLAN-ACL option?

balaji.bandi · ‎06-21-2022

what kind of ACL is this ? do you have any example ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Noovi · ‎06-21-2022

like some source and destination IPs with some port

e.g.

100 permit udp 10.68.212.0 0.0.1.255 host 172.25.224.139 eq domain (134052 matches)
110 permit icmp 10.68.212.0 0.0.1.255 host 10.68.212.3 (87531 matches)
120 permit tcp 10.68.212.0 0.0.1.255 host 10.68.218.5 eq www (929 matches)

ammahend · ‎06-21-2022

ACL can have up to a maximum of 64 lines on WLC. So No.

-hope this helps-

Noovi · ‎06-24-2022

Ok. Thanks for your response.
one more query.
if we use virtual WLC, is that the same ACL limitations? or even less numbers of sequence?

ammahend · ‎06-25-2022

Same, I think it’s more of software limitation than resource limitation

-hope this helps-