User guide
6-24
Cisco WLAN Controller Web Interface User Guide
OL-7416-04
Chapter 6 Security Menu Bar Selection
Access Control Lists
Command Buttons
• Back: Return to the previous window.
• Apply: Data is sent to the controller and made to take effect, but not preserved across a power cycle;
these parameters are stored temporarily in volatile RAM.
• Help: Request that the help page be displayed in a new browser window.
Access Control Lists > Edit > Add New Rule
Use SECURITY > Access Control Lists, click Edit link of an existing ACL and then click Add New
Rule to navigate to this page.
This page allows you to add a new rule to an existing ACL.
DSCP Any or Specific (from 0 - 63). Differentiated Services Code Point
(DSCP). A packet header code that can be used to define quality of
service across the Internet.
Direction Any, Inbound (from client) or Outbound (to client).
Action (Note 2) Deny or Permit.
Note When you select some of these protocols, one or more additional data entry fields open up.
Enter the port number in a single data entry field, or enter the source and destination port when
there are two data entry fields.
Note The default filter is to deny all access unless a rule explicitly permits it.
Table 6-3 Rule Edit Parameters (continued)
Parameter Description
Table 6-4 New Rule parameters
Parameter Description
Sequence The operator can define up to 64 rules for each ACL.
The rules for each ACL are listed in contiguous sequence from 1 to
64. That is, if rules 1 through 4 are already defined and you add
rule 29, it is be added as rule 5.
Note If you add or change a sequence number, the Operating
System adjusts the other rule sequence numbers to retain the
contiguous sequence. For instance, if you have sequence
numbers 1 through 7 defined and change number 7 to 5, the
Operating System automatically reassigns sequence 6 to 7
and Sequence 5 to 6.
Source Any or IP Address and Netmask.
Destination Any or IP Address and Netmask.