The controller can be configured to support Policy Manager‘s Egress Role mode. Egress Role refers to taking the ingress filters assigned to a port, exchanging the source and destination addresses with each other in each role rule and applying the result to the traffic egressing the port.
The ExtremeWireless solution applies egress filtering mode to WLAN (Wireless Local Area Network) services. When egress filtering is enabled, any role that is applied to a station on the WLAN service will have its outbound filters replaced with rules in which the source and destination addresses of the inbound filters are swapped.
The same role can be assigned to stations on WLAN services that have egress filtering mode enabled and on WLAN services that have it disabled.
The global Egress Filtering Mode setting overrides the individual WLAN service Egress Filtering Mode setting. By default, the global setting is set to Use WLAN. In this mode, egress filtering can be enabled for some WLAN services and not others. Set the Egress Filtering Mode setting from the Advanced configuration dialog of each WLAN service.
Changing the global setting does not alter each individual WLAN egress filtering mode setting, although the global setting can override the individual setting. Changing the global setting does not alter the outbound policy rules of each role. Each role‘s policy rules are stored on the controller as they were entered. Changing the global egress filtering mode flag does, however, affect how a role‘s rules are interpreted when they are applied.
Rule-Based Redirection
Note
The option to disable Rule-based Redirection is available for backward capability only.