Wireless Access

last person joined: an hour ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

MAC filtering policies

This thread has been viewed 4 times

  • 1.  MAC filtering policies

    Posted Sep 21, 2018 01:34 PM

    Hi, I'm running an HA pair of Aruba OAW-7210 with a few SSID's tied to a few VLAN's. Wanted to know if there is a way to create an MAC ACL for a specific SSID to allow traffic from specific MAC OUI, on that VLAN, to a few designated servers only. Essentially, blocking specific MAC from accessing anything else but what is listed in the policy. 

     

    I realize this would be a much easier task if I had RADIUS or Clearpass but circumstance dictates otherwise.

     

    I appreciate the help.



  • 2.  RE: MAC filtering policies
    Best Answer

    EMPLOYEE
    Posted Sep 21, 2018 02:34 PM

    You would:

    - Create a role with your filtered ACLS

    - Create a user derivation rule where if the mac OUI is seen it assigns users to that role.  https://community.arubanetworks.com/t5/Controller-Based-WLANs/How-do-I-use-the-user-derivation-rule-to-set-the-role-using-a/ta-p/182426

    - Assign that user derivation rule to the AAA profile assigned to that Virtual AP:

     

     



  • 3.  RE: MAC filtering policies

    Posted Sep 21, 2018 04:38 PM

    Thanks for a quick respond