Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series 228 Access Points

181

182

183

184

185

186

187

188

189

190

190 | Roles and Policies Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | User Guide

l Configuring access rules based on application and application categories, see Configuring ACL Rules for

Application and Application Categories on page 266.

l Configuring access rules based on web categories and web reputation, see Configuring Web Policy

Enforcement Service on page 269.

In the Instant UI

To configure ACL rules for a user role:

1. Navigate to Security > Roles. The Roles tab contents are displayed.

You can also configure access rules for a wired or wireless client through the WLAN wizard (Network

tab>WLAN SSID> Edit>Edit WLAN > Access )or the Wired profile (More > Wired>Edit> Edit Wired

Network> Access) window.

2. Select the role for which you want to configure access rules.

3. In Access rules section, click New to add a new rule. The New Rule window is displayed.

4. Ensure that the rule type is set to Access Control

5. To configure a rule to control access to network services, select Network under service category and specify

the following parameters:

Service

Category

Description

Network

Select a service from the list of available services. You can allow or deny access to any or

all of the following services based on your requirement:

l any—Access is allowed or denied to all services.

l custom—Available options are TCP, UDP, and Other. If you select the TCP or UDP

options, enter appropriate port numbers. If you select the Other option, enter the

appropriate ID.

NOTE: If TCP and UDP uses the same port, ensure that you configure separate access

rules to permit or deny access.

Action

Select any of following actions:

l Select Allow to allow access users based on the access rule.

l Select Deny to deny access to users based on the access rule.

l Select Destination-NAT to allow changes to destination IP address.

l Select Source-NAT to allow changes to the source IP address.

Destination

Select a destination option for the access rules for network services, applications, and

application categories. You can allow or deny access to any the following destinations

based on your requirements.

l to all destinations— Access is allowed or denied to all destinations.

l to a particular server—Access is allowed or denied to a particular server. After

selecting this option, specify the IP address of the destination server.

l except to a particular server—Access is allowed or denied to servers other than the

specified server. After selecting this option, specify the IP address of the destination

server.

l to a network—Access is allowed or denied to a network. After selecting this option,

Table 37: Access Rule Configuration Parameters