7-9
Cisco IOS Software Configuration Guide for Cisco Aironet Access Points
OL-30644-01
Chapter7 Configuring Multiple SSIDs
Assigning IP Redirection for an SSID
You can redirect all packets from client devices associated using an SSID or redirect only packets
directed to specific TCP or UDP ports (as defined in an access control list). When you configure the
access point to redirect only packets addressed to specific ports, the access point redirects those packets
from clients using the SSID and drops all other packets from clients using the SSID.
Note When you perform a ping test from the access point to a client device that is associated using an
IP-redirect SSID, the response packets from the client are redirected to the specified IP address and are
not received by the access point.
Figure 7-2 shows the processing flow that occurs when the access point receives client packets from
clients associated using an IP-redirect SSID.
Figure7-2 Processing Flow for IP Redirection
Guidelines for Using IP Redirection
Keep these guidelines in mind when using IP redirection:
The access point does not redirect broadcast, unicast, or multicast BOOTP/DHCP packets received
from client devices.
Existing ACL filters for incoming packets take precedence over IP redirection.
121298
Reset packet's
destination address
to IP-redirect
address
Increment
IP-redirect
forward packet
counter
Forward
packet
Drop
packet
Increment IP-
redirect drop
packet counter
IP-redirect
enabled?
Incoming packet
from client
TCP or
UDP port
filters enabled?
Port number in
packet match
port permit
number?
N
N
N
Y
Y
Y