Cisco WAP371 Administration Manual page 107

Client Quality of Service
ACL
NOTE
STEP 1
STEP 2
STEP 3
STEP 4
STEP 5
STEP 6
STEP 7
Cisco Small Business WAP371 Wireless Access Point Administration Guide
IPv4 and IPv6 ACLs
IP ACLs classify traffic for Layers 3 and 4.
Each ACL is a set of up to 10 rules applied to traffic sent or received by the WAP device. Each
rule specifies whether the contents of a given field should be used to permit or deny access to
the network. Rules can be based on various criteria and may apply to one or more fields within
a packet, such as the source or destination IP address, the source or destination port, or the
protocol carried in the packet.
There is an implicit deny at the end of every rule created. To avoid deny all, it is strongly
recommended to add a permit rule within the ACL to allow traffic.
MAC ACLs
MAC ACLs are Layer 2 ACLs. You can configure the rules to inspect fields of a frame such as
the source or destination MAC address, the VLAN ID, or the class of service. When a frame
enters or exits the WAP device port (depending on whether the ACL is applied in the up or
down direction), the WAP device inspects the frame and checks the ACL rules against the
content of the frame. If any of the rules match the content, a permit or deny action is taken on
the frame.
Configuring ACLs
Configure ACLs and rules on the ACL Configuration page, and then apply the rules to a
specified VAP.
These steps give a general description of how to configure ACLs:
Select Client QoS > ACL in the navigation pane.
Specify a name for the ACL.
Select the type of ACL to add.
Add the ACL.
Add new rules to the ACL.
Configure the match criteria for the rules.
Use the Client QoS Association
These steps give a detailed description of how to configure ACLs:
page to apply the ACL to one or more VAPs.
7
103