MAC Firewall Rules

The ability to allow or deny client access by MAC address ensures malicious or unwanted users are unable to bypass security filters. Firewall rules can use one of the three following actions based on a rule criteria:

• Allow a connection.

• Allow a connection only if it is secured through the MAC firewall security.

• Block a connection.

To view a controller or service platform's MAC firewall rules:

1. Select the Statistics menu from the Web UI.
2. Expand the System node from the navigation pane (on the left-hand side of the screen). The System node expands to display the RF Domains created within the managed network.
3. Expand the RF Domain node.
4. Select a Wireless Controller.
5. Expand the Firewall menu from the left-hand side of the UI.
6. Select MAC Firewall Rules.

   The Statistics > Controller > Firewall > MAC Firewall Rules screen displays in the right-hand pane.

   This screen displays the following:

   Precedence	Displays the precedence value, which are applied to packets. The rules within an ACL (Access Control Entries) list are based on their precedence values. Every rule has a unique precedence value between 1 and 5000. You cannot add two rules with the same precedence value.
   Friendly String	This string provides more information as to the contents of the rule. This is for information purposes only.
   Hit Count	Displays the number of times each WLAN ACL has been triggered.

7. Select Refresh to update the screen‘s statistics counters to their latest values.