Ipv4 And Ipv6 Acls; Mac Acls; Configuring Acls - Cisco WAP121 Administration Manual

Client Quality of Service
ACL
NOTE
STEP 1
STEP 2
STEP 3
STEP 4
STEP 5
STEP 6
Cisco Small Business WAP121 and WAP321 Wireless-N Access Point with PoE
The WAP device supports up to 50 IPv4, IPv6, and MAC ACLs.

IPv4 and IPv6 ACLs

IP ACLs classify traffic for Layers 3 and 4.
Each ACL is a set of up to 10 rules applied to traffic sent or received by the WAP
device. Each rule specifies whether the contents of a given field should be used to
permit or deny access to the network. Rules can be based on various criteria and
may apply to one or more fields within a packet, such as the source or destination
IP address, the source or destination port, or the protocol carried in the packet.
There is an implicit deny at the end of every rule created. To avoid deny all, it is
strongly recommended to add a permit rule within the ACL to allow traffic.

MAC ACLs

MAC ACLs are Layer 2 ACLs. You can configure the rules to inspect fields of a
frame such as the source or destination MAC address, the VLAN ID, or the class of
service. When a frame enters or exits the WAP device port (depending on whether
the ACL is applied in the up or down direction), the WAP device inspects the frame
and checks the ACL rules against the content of the frame. If any of the rules match
the content, a permit or deny action is taken on the frame.

Configuring ACLs

Configure ACLs and rules on the ACL Configuration page, and then apply the rules
to a specified VAP.
These steps give a general description of how to configure ACLs:
Select Client QoS > ACL in the navigation pane.
Specify a name for the ACL.
Select the type of ACL to add.
Add the ACL.
Add new rules to the ACL.
Configure the match criteria for the rules.
7
117