Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1452
Views
0
Helpful
2
Replies

WLC 2504 - block internet traffic

geraldchow1
Level 1
Level 1

‎02-11-2014 09:31 AM - edited ‎07-05-2021 12:09 AM

Hello, new to wlc's.

Can i simply setup an Security ACL to only allow local wireless clients to LAN subnets.

ex: source any dest. 10.0.0.0/8

Thanks in advance                  

Labels:
0 Helpful
2 Replies 2

Scott Fella
Hall of Fame
Hall of Fame

‎02-11-2014 09:34 AM

I guess... but using the WLC isn't a preferred method.  You should block traffic on your layer 3.  You would map your WLAN to different vlans so you can apply ACL's properly on your layer 3.

Here is a doc on WLC ACL's if you still want to give that a try.

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807810d1.shtml

Thanks,

Scott

*****Help out other by using the rating system and marking answered questions as "Answered"*****

-Scott
*** Please rate helpful posts ***
0 Helpful

Victor Vasantha Kumar
Level 1
Level 1

‎02-11-2014 09:40 AM

Best practice is to create an ACL on the next hop wired segment.( Layer3)

If is not recommened to create this type of ACL on the WLC.

If you apply an ACL to an interface or a WLAN, wireless throughput is degraded and can lead to potential loss of packets. In order to improve throughput, remove the ACL from the interface or WLAN and move the ACL to a neighboring wired device.

Regards
Victor V

*****Help out other by using the rating system and marking answered questions as *****Answered"*****

Regards Victor V *****Help out other by using the rating system and marking answered questions as *****Answered"*****
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card