Support User Manuals

Dell 6.2 Server User Manual

Open as PDF

of 869

829 | Behavior andDefaults DellPowerConnectW-SeriesArubaOS6.2 | User Guide

Predefined Policy Description

any any svc-https permit

ip access-list session dns-acl

any any svc-dns permit

Permits all DNS traffic.

ip access-list session logon-control

user any udp 68 deny

any any svc-icmp permit

any any svc-dns permit

any any svc-dhcp permit

any any svc-natt permit

The default pre-authentication role that should

be used by all wireless clients. Prohibits the

client from acting as a DHCP server. Permits

all ICMP, DNS, and DHCP. Also permits IPsec

NAT-T (UDP 4500). Remove NAT-T if not

needed.

ip access-list session srcnat

user any any src-nat

This policy can be used to source-NAT all

traffic. Because no NAT pool is specified,

traffic that matches this policy will be source

NATed to the IP address of the controller.

ip access-list session skinny-acl

any any svc-sccp permit queue high

Use for Cisco Skinny VoIP devices to

automatically permit and prioritize VoIP traffic.

ip access-list session tftp-acl

any any svc-tftp permit

Permits all TFTP traffic.

ip access-list session guest

This policy is not used.

ip access-list session dhcp-acl

any any svc-dhcp permit

Permits all DHCP traffic. If DHCP is not

allowed, clients will not be able to request or

renew IP addresses.

ip access-list session http-acl

any any svc-http permit

Permits all HTTP traffic.

ip access-list session svp-acl

any any svc-svp permit queue high

user host 224.0.1.116 any permit

Use for Spectralink VoIP devices to

automatically permit and prioritize Spectralink

Voice Protocol (SVP).

ip access-list session noe-acl

any any svc-noe permit queue high

Use for Alcatel NOE VoIP devices to

automatically permit and prioritize NOE traffic.

ip access-list session h323-acl

any any svc-h323-tcp permit queue high

any any svc-h323-udp permit queue high

Use for H.323 VoIP devices to automatically

permit and prioritize H.323 traffic.

ipv6 access-list session v6-control

user any udp 68 deny

any any svc-v6-icmp permit

any any svc-v6-dhcp permit

any any svc-dns permit

any any svc-tftp permit

Provides equivalent functionality to the

"control" policy, but for IPv6 clients.

ipv6 access-list session v6-icmp-acl

any any svc-v6-icmp permit

Permits all ICMPv6 traffic.

ipv6 access-list session v6-https-acl

any any svc-https permit

Permits all IPv6 HTTPS traffic.

previous next