User guide

ManualsBrandsCisco ManualsComputer equipmentCisco Wireless LAN Controller 4100

161

162

163

164

165

166

167

168

169

170

6-22

Cisco WLAN Controller Web Interface User Guide

OL-7416-04

Chapter 6 Security Menu Bar Selection

Access Control Lists

• When the ACL contains one or more ACL Rule, click Edit to modify the rule on the Access Control

Lists > Rules > Edit page.

Table 6-2 Current Rules

Parameter Description

Access List Name The name of the ACL.

Sequence The operator can define up to 64 Rules for each ACL.

The Rules for each ACL are listed in contiguous sequence from 1

to 64. That is, if Rules 1 through 4 are already defined and you add

Rule 29, it is added as Rule 5.

Note If you add or change a sequence number, the Operating

System adjusts the other rule sequence numbers to retain

the contiguous sequence. For instance, if you have

sequence numbers 1 through 7 defined and change number

7 to 5, the Operating System automatically reassigns

Sequence 6 to 7 and Sequence 5 to 6.

Action (Note) Deny or Permit.

Source IP/Mask Any or IP Address and Netmask.

Destination IP/Mask Any or IP Address and Netmask.

Protocol Protocol to use for this ACL:

Any - All protocols

TCP - Transmission Control Protocol

UDP - User Datagram Protocol

ICMP - Internet Control Message Protocol

ESP - IP Encapsulating Security Payload

AH - Authentication Header

GRE - Generic Routing Encapsulation

IP - Internet Protocol

Eth Over IP - Ethernet over Internet Protocol

OSPF - Open Shortest Path First

Other - Any other IANA protocol (http://www.iana.org/)

Source Port Any or IP Address and Netmask.

Dest Port Any or IP Address and Netmask.

DSCP Any or Specific (from 0 - 63). Differentiated Services Code Point

(DSCP). A packet header code that can be used to define quality of

service across the Internet.

Direction Any, Inbound (from client) or Outbound (to client).

Note The default filter is to deny all access unless a Rule explicitly permits it.