Specifications
19 - 20 WiNG 5.2.6 Wireless Controller CLI Reference Guide
19.1.3.2.9 use
user-role commands
Defines the access list settings used with this user role
Supported in the following platforms:
• Access Points — AP300, AP621, AP622, AP650, AP6511, AP6521, AP6532, AP71XX, AP81XX
• Wireless Controllers — RFS4000, RFS6000, RFS7000, NX9000, NX9500
Syntax
use [ip-access-list|mac-access-list]
use ip-access-list [in|out] <IP-ACCESS-LIST> precedence <1-100>
use mac-access-list [in|out] <MAC-ACCESS-LIST> precedence <1-100>
Parameters
• use ip-access-list [in|out] <IP-ACCESS-LIST> precedence <1-100>
• use mac-access-list [in|out] MAC-ACCESS-LIST> precedence <1-100>
Examples
rfs7000-37FABE(config-role-role1)#use ip-access-list in test precedence 9
rfs7000-37FABE(config-role-policy-test-user-role-testing)#show context
user-role role1 precedence 1
ssid not-contains TESTSSID
captive-portal authentication-state pre-login
use ip-access-list in test precedence 9
rfs7000-37FABE(config-role-policy-test-user-role-testing)#
Related Commands
ip-access-list [in|out] Uses an IP access list with this user role
• in – Applies rule to incoming packets
• out – Applies rule to outgoing packets
<IP-ACCESS-LIST> Defines the IP access list name
precedence <1-100> After specifying the name of the access list, specify the precedence applied to it. Based
on the packets received, a lower precedence value is evaluated first
• <1-100> – Sets a precedence from 1 - 100
mac-access-list [in|out] Uses a MAC access list with this user role
• in – Applies rule to incoming packets
• out – Applies rule to outgoing packets
<MAC-ACCESS-LIST> Defines the MAC access list name
precedence <1-100> After specifying the name of the access list, specify the precedence applied to it. Based
on the packets received, a lower precedence value is evaluated first
• <1-100> – Sets a precedence from 1 - 100
no Removes an IP or MAC access list from use with a user role