AP MAC Firewall Rules

The ability to allow or deny access point connectivity by client MAC address ensures malicious or unwanted clients are unable to bypass the access point's security filters. Firewall rules can be created to support one of the three actions listed below that match the rule's criteria:

To view the access point's MAC Firewall Rules:

  1. Select the Statistics menu from the Web UI.
  2. Expand the System node from the navigation pane (on the left-hand side of the screen). The System node expands to display the RF Domains created within the managed network.
  3. Expand an RF Domain node, select a controller or service platform, and select one of its connected access points. The access point's statistics menu displays in the right-hand side of the screen, with the Health tab selected by default.
  4. Expand the Firewall menu.
  5. Select MAC Firewall Rules.
    The Statistics > AP > Firewall > MAC Firewall Rules screen displays in the right-hand pane.
    Click to expand in new window
    This screen displays the following:
    Precedence

    Displays the precedence value, which are applied to packets. The rules within an ACL list are based on their precedence values. Every rule has a unique precedence value between 1 and 5000. You cannot add two rules with the same precedence value.

    Friendly String

    This string provides more information as to the contents of the rule. This is for information purposes only.

    Hit Count

    Displays the number of times each WLAN ACL has been triggered.

  6. Select Refresh to update the screen‘s statistics counters to their latest values.