Cisco WAP581 Administration Manual page 93

Wireless-ac/n dual radio access point with 2.5gbe lan

Hide thumbs Also See for WAP581:

Quick start manual (14 pages)

Quick start manual (17 pages)

Manual (10 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

page of 134

/ 134
Contents
Table of Contents
Bookmarks

Table of Contents

Access Control

• Service (Protocol) — Uses a Layer 3 or Layer 4 protocol match condition based on the value of the IP Protocol

field. You can choose one of these options:

• All Traffic — Allows all traffic that meets the rule criteria

• Select From List — Choose one of these protocols: IP, ICMP, IGMP, TCP, or UDP.

• Custom — Enter a standard IANA-assigned protocol ID from 0 to 255. Choose this method to identify a

protocol not listed in the Select From List.

• Source IPv4 Address — Requires the packet's source IP address to match the address defined in the appropriate

fields.

• Any— Allows for any IP address.

• Single Address — Enter the IP address to apply this criteria.

• Address/Mask — Enter the source IP address wild card mask. The wild card mask determines which bits are

used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A

wild card of 0.0.0.0 indicates that all bits are important.

A wild card mask is basically the inverse of a subnet mask. For example, to match the criteria to a single host

address, use a wild card mask of 0.0.0.0. To match the criteria to a 24-bit subnet (for example, 192.168.10.0/24),

use a wild card mask of 0.0.0.255.

• Source Port — Includes a source port in the match condition for the rule. The source port is identified in the datagram

header

• All Traffic— Allows all traffic that meets the rule criteria.

• Select From List — Choose the keyword associated with the source port to match: ftp, ftpdata, http, smtp,

snmp, telnet, tftp, www. Each of these keywords translates into its equivalent port number.

• Custom — Enter the IANA port number to match to the source port identified in the datagram header. The

port range is 0 to 65535 and includes three different types of ports:

• 0 to 1023 — Well known ports

• 1024 to 49151 — Registered ports

• 49152 to 65535 — Dynamic and/or private port

• Destination IPv4 Address — Requires a packet's destination IP address to match the address defined in the appropriate

fields.

• Any — Enter any IP address.

• Single Address — Enter an IP address to apply this criteria.

• Address/ Mask — Enter the destination IP address wild card mask. The wild card mask determines which bits

are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important.

A wild card of 0.0.0.0 indicates that all bits are important.

A wild card mask is basically the inverse of a subnet mask. For example, to match the criteria to a single host

address, use a wild card mask of 0.0.0.0. To match the criteria to a 24-bit subnet (for example, 192.168.10.0/24),

use a wild card mask of 0.0.0.255.

Cisco WAP581 Wireless-AC/N Dual Radio Access Point with 2.5GbE LAN Administration Guide

Configure IPv4 ACLs

Table of Contents

Cisco WAP581 Administration Manual page 93

Related Manuals for Cisco WAP581

Related Products for Cisco WAP581

Table of Contents