Packet filtering does not take effect
- 0 Followed
- 0Collected ,627Browsed
Network Topology
null
Problem Description
Packet filtering does not take effect
Process Analysis
The packet filtering policy is applied under the wireless service template, and the relevant configuration on the AC:
wlan service-template 1
ssid lab
vlan 1007
packet-filter 3000 outbound
packet-filter 3000 inbound
service-template enable
acl number 3000
rule
10 permit ip source 172.X.X.X 0.0.255.255 destination 172.X.X.X 0.0.0.127
rule
1000 deny ip
After the configuration is complete, use the terminal to connect to the wireless, and test that the ip address not in the rule 10 can still be pinged.
Solution
Packet filtering based on
wireless service templates requires ACL rules to be configured on the AP,
regardless of whether it uses centralized forwarding or local forwarding, which
can be configured by map file distribution.