Hub/Switch Reference Guide

ManualsBrandsNortel Networks ManualsSwitch2300 Series

461

462

463

464

465

466

467

468

469

470

Security ACL Commands 469

Nortel WLAN—Security Switch 2300 Series Command Line Reference

set security acl map

Assigns a committed security ACL to a VLAN, physical port or ports, virtual port, or AP on the WSS.

Syntax

set security acl map acl-name {vlan vlan-id | port port-list [tag tag-list] | ap ap-num}

{in | out}

Defaults

None.

Access

Enabled.

Usage

Before you can map a security ACL, you must use the commit security acl command to save the

ACL in the running configuration and nonvolatile storage.

For best results, map only one input security ACL and one output security ACL to each VLAN, physical port, virtual

port, or AP to filter a flow of packets. If more than one security ACL filters the same traffic, WSS Software applies only

the first ACL match and ignores any other matches.

Examples

The following command maps security ACL acl_133 to port 4 for incoming packets:

WSS set security acl map acl_133 port 4 in

success: change accepted.

See Also

• clear security acl map on page 451

Note. To assign a security ACL to a user or group in the local WSS database, use the

command set user attr, set mac-user attr, set usergroup attr, or set mac-usergroup

attr with the Filter-Id attribute. To assign a security ACL to a user or group with Filter-Id on a

RADIUS server, see the documentation for your RADIUS server.

acl-name Name of an existing security ACL to map. ACL names start with a letter

and are case-insensitive.

vlan vlan-id VLAN name or number. WSS Software assigns the security ACL to the

specified VLAN.

port port-list Port list. WSS Software assigns the security ACL to the specified physical

WSS port or ports.

tag tag-list One or more values that identify a virtual port in a VLAN. Specify a single

tag value from 1 through 4095. Or specify a comma-separated list of

values, a hyphen-separated range, or any combination, with no spaces.

WSS Software assigns the security ACL to the specified virtual port or

ports.

ap ap-num One or more APs, based on their connection IDs. Specify a single

connection ID, or specify a comma-separated list of connection IDs, a

hyphen-separated range, or any combination, with no spaces. WSS

Software assigns the security ACL to the specified APs.

in Assigns the security ACL to traffic coming into the WSS.

out Assigns the security ACL to traffic coming from the WSS.