02-04-2014 07:55 AM
I'm trying to go with a more lock downed approach with our students on our network. They log in with their 802.1x credentials and are assigned a role.
I'd like their roles to be deny-all and only allow services I've designated. http, https, dns, etc....
I'd like them to be able to do Airplay mirroring as one of those services.
I can't seem to get this to work. See the pic below of my policy for airplay mirroring. I found these online. Still doesn't work. I choose the Apple TV and it simply drops me off. Once I do "allow all" on my role it works fine.
Is anyone else doing this?
02-04-2014 08:30 AM - edited 02-04-2014 08:32 AM
Might try adding tcp80,udp1900, tcp5297, tcp/udp5298, udp5350-5351, udp49159, and udp49163 to the list your ACL. I have never locked down that tight.
Just did a quick search to get that.
02-04-2014 11:38 AM
Only reason I'd like to lock down that tight is because there are so many crazy ports that Spyware and bit torrents like to run on. I had an android device have like 20 different connections on 20 different ports.