06-25-2023 05:26 PM
Hello everyone,
I need to configure a preauth ACL for webauth " CWA ". In fact, i am migrating from a WLC 2500 to WLC 9800, and the confusion is in the permit/deny enries, on the 2500, they say :
"this ACL is referenced in the access-accept of the ISE and defines what traffic should be redirected (denied by the ACL) and what traffic should not be redirected (permitted by the ACL)"
on the other hand, when reading the config guide of the 9800, they say :
"This redirect ACL is not a security ACL but a punt ACL that defines what traffic goes to the CPU (on permits) for further treatment (like redirection) and what traffic stays on the data plane (on deny) and avoids redirection."
what i understand is that the logic is inversed on the new plateform, i am right ? should i reverse all the entries found on the preauth acl of the 2500 ?
Thanks in advance
Solved! Go to Solution.
06-25-2023 06:00 PM
Follow this guide for the ACL on the 9800
Deny to ISE, DNS, and permit to www
06-25-2023 06:00 PM
Follow this guide for the ACL on the 9800
Deny to ISE, DNS, and permit to www
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide