User's Manual
hwc_vnsconfiguration.fm
Virtual Network configuration
Configuring filtering rules for a VNS
A31003-W1050-U100-2-7619,
March 2008
HiPath Wireless Controller, Access Points and Convergence Software V5 R1 , C20/C2400 User Guide 203
• If applicable, select In to refer to traffic from the wireless device that is
trying to get on the network.
• If applicable, select Out to refer to traffic from the network host that is
trying to get to a wireless device.
• Select the Allow checkbox applicable to the rule you defined.
8. To edit the order of filters, click the filter, and then click the Up and Down
buttons. The filtering rules are executed in the order you define here.
9. To save your changes, click Save.
6.9.3.1 Filtering rules by filter ID examples
Below are two examples of possible filtering rules for a filter ID. The first example
disallows some specific access before allowing everything else.
The second example does the opposite of the first example. It allows some
specific access and denies everything else.
6.9.4 Filtering rules for a default filter
After authentication of the wireless device user, the default filter will apply only
after:
• No match is found for the Exception filter rules.
• No filter ID attribute value is returned by the authentication server for this
user.
• No match is found on the HiPath Wireless Controller for a filter ID value.
In Out Allow IP / Port Description
x x *.*.*.*:22-23 SSH and telnet sessions
x x [specific IP address,
range]
Deny all traffic to a specific IP address
or address range
x x x *.*.*.*. Allow everything else
Table 17 Filtering rules by filter ID example A
In Out Allow IP / Port Description
x x x [specific IP address,
range]
Allow traffic to a specific IP address or
address range.
x x *.*.*.*. Deny everything else.
Table 18 Filtering rules by filter ID example B