Filter
Top Products
CLI commands
custom
Lets you define custom security filters and address for the upstream
device.
Description
The AP features an intelligent bridge which can apply security filters to safeguard the flow of
wireless traffic. The filters limit both incoming and outgoing traffic as defined below, and force
the AP to exchange traffic with a specific upstream device. If the AP is configured to use the
services of a access controller, then the default security filters are automatically enabled and all
traffic is sent to the access controller.
Default filters for incoming wireless traffic
Applies to traffic sent from wireless client stations to the AP.
Accepted
Any IP traffic addressed to the access controller.
PPPoE traffic (The PPPoe server must be the upstream device.)
IP broadcast packets, except NetBIOS
Certain address management protocols (ARP, DHCP) regardless of their source address.
Any traffic addressed to the AP, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination
address. TTPS traffic not addressed to the AP (or upstream device) is also blocked, which
means wireless client stations cannot access the management tool on other products.
Default filters for outgoing wireless traffic
Applies to traffic sent from the AP to wireless client stations.
Accepted
Any IP traffic coming from the upstream device, except NetBIOS packets.
PPPoE traffic from the upstream device.
IP broadcast packets, except NetBIOS
ARP and DHCP Offer and ACK packets.
Any traffic coming from the AP itself, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination
address.
mac-filters local
Supported on: MSM310 MSM320 MSM335 MSM410 MSM422
mac-filters local
Enables the MAC filter list.
no mac-filters local
Disables the MAC filter list.
2-59