Specifications

RoamAbout Mobility System Software Configuration Guide 15-1

Configuring and Managing Security ACLs

About Security Access Control Lists

Asecurityaccesscontrollist(ACL)filterspacketsforthepurposeofdiscardingthem,permitting

them,orpermittingthemwithmodification(marking)forclass‐of‐service(CoS)priority

treatment.AtypicaluseofsecurityACLsistoenableuserstosendandreceivepacketswithinthe

localintranet,butrestrictincoming

packetstotheserverinwhichconfidentialsalaryinformation

isstored.

Enterasys NetworksprovidesaverypowerfulmappingapplicationforsecurityACLs.VLANs,

virtualports inaVLAN,orDistributedAPs,ACLscanbemappeddynamicallytoauser’ssession,

basedonauthorizationinformationpassedbackfromtheAAAserverduring

theuser

authenticationprocess.

Overview of Security ACL Commands

Figure 15‐1onpage 15‐2providesavisualoverviewofthewayyouuseMSScommandstoseta

securityACL,committheACLsoitisstoredintheconfiguration,andmaptheACLtoauser

session,VLAN,virtualport,orDistributedAP.

For information about... Refer to page...

About Security Access Control Lists 15-1

Creating and Committing a Security ACL 15-4

Mapping Security ACLs 15-13

Modifying a Security ACL 15-16

Using ACLs to Change CoS 15-20

Enabling Prioritization for Legacy Voice over IP 15-23

Restricting Client-To-Client Forwarding Among IP-Only Clients 15-28

Security ACL Configuration Scenario 15-29