i might be missing something here, but shouldnt using alias controller in an ACL mean all IP adresses of the controller? if not is there a default alias i can use or should i create my own?
i wanted to restrict access to the controller for the client networks behind it, but they still can access the controller fine on the local IP of the subnet.