Configuring Wireless Lan Acls - Motorola WS5100 Series Migration Giude

Hide thumbs Also See for WS5100 Series:

Cli reference manual (492 pages)

Reference manual (444 pages)

Troubleshooting manual (100 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

Table of Contents

10-10 WS5100 Series Switch Migration Guide

4. Apply the ACL(30) on VLAN interface

WS5100(config)#interface vlan2

WS5100(config-if)#ip access-group 30 in

WS5100(config-if)#exit

10.4.2.3 Configuring Wireless LAN ACLs

Follow the procedure mentioned below to upgrade Wireless LAN ACL from 3.0/3.0.1 to 3.0.2 :

WLAN index in ACL rules are configurable in WS5100 3.0/3.0.1. In WS5100 3.0.2, WLAN is treated as a

virtual port and the user has to create ACL rules without WLAN index and attach ACLs to WLAN port.

While upgrading from WS5100 3.0/3.0.1 to 3.0.2, the ACLs having WLAN index as selectors are replaced

with ACLs without having any WLAN index selectors. After the completion of the upgrade, user has to apply

those ACLs to WLAN port manually.

A sample ACL configuration in 3.0/3.0.1

• Standard IP access list 10

permit host 1.2.3.4 wlan 3 log rule-precedence 10

• Extended IP access list 110

deny icmp host 5.6.7.8 host 5.6.7.9 wlan 4 rule-precedence 10

deny icmp host 5.6.7.8 host 5.6.7.9 rule-precedence 20

• Extended IP access list extacl

permit icmp host 192.172.0.10 any wlan 12 rule-precedence 23

deny icmp any any rule-precedence 33

• Extended MAC access list macacl

permit any host 00:01:02:03:04:05 type ip wlan 14 rule-

permit host 00:01:03:04:07:08 any wlan 14 rule-precedence 21

permit any any wlan 14 rule-precedence 31

• Standard IP access list stdacl

permit any wlan 5 rule-precedence 34

permit host 10.0.0.10 wlan 6 rule-precedence 44

deny host 30.0.0.14 rule-precedence 54

After upgrade to 3.0.2 the configuration will look like

• Standard IP access list 10

permit host 1.2.3.4 log rule-precedence 10

• Extended IP access list 110

deny icmp host 5.6.7.8 host 5.6.7.9 rule-precedence 10

• Extended IP access list extacl

permit icmp host 192.172.0.10 any rule-precedence 23

deny icmp any any rule-precedence 33

• Extended MAC access list macacl

permit any host 00:01:02:03:04:05 type ip rule-precedence 11

permit host 00:01:03:04:07:08 any rule-precedence 21

permit any any rule-precedence 31

• Standard IP access list stdacl

permit any rule-precedence 34

permit host 10.0.0.10 rule-precedence 44

deny host 30.0.0.14 rule-precedence 54

precedence 11

Table of Contents

Configuring Wireless Lan Acls - Motorola WS5100 Series Migration Giude

10.4.2.3 Configuring Wireless LAN ACLs

Related Manuals for Motorola WS5100 Series

Related Content for Motorola WS5100 Series

Table of Contents