Wireless Access

Reply
Regular Contributor I

ACL against different SSID's. Please Verify !!!

Using IAP 104 VC . On VC three SSID's with different rules. I have apllied rules on SSID's so please Verify.

 

For Guest SSID with Captive Portal authentication i have to allow only Internet to a subnet 192.168.32.0 and deny 192.168.0.0/16 on this SSIDSo,

Allow DHCP to a network          192.168.32.0   0.0.0.255                       Vlan 32 for Guest SSID

Allow DNS to a network             192.168.32.0   0.0.0.255

Allow HTTPS to a network         192.168.32.0   0.0.0.255

Allow HTTP to a network            192.168.32.0   0.0.0.255

Deny all services to a network  192.168.0.0     0.0.255.255                                

 

For Project SSID i have to deny 192.168.0.0/16. All other everything should be allowed. So,

Deny all services to a network 192.168.0.0     0.0.255.255

Allow all services for a network 192.168.52.0  0.0.0.255                   Vlan 52 is the VLAN for Project SSID

 

For Dep-S SSID I have to allow some IP's and deny 192.168.0.0/16. So,

Allow All Services for a network 192.168.60.61       0.0.0.0       Vlan 60 for Dep-SSID and have to allow only 3 ip's

Allow All Services for a network 192.168.60.62       0.0.0.0

Allow All Services for a network 192.168.60.63       0.0.0.0

Deny all services for a network  192.168.0.0           0.0.255.255

 

Please Verify . 

 

 

 

Re: ACL against different SSID's. Please Verify !!!

Do you have several VLANs assigned under that network ?
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Regular Contributor I

Re: ACL against different SSID's. Please Verify !!!

Yes... Each SSID have different VLANS

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: