CLI commands
custom | Lets you define custom security filters and address for the upstream |
| device. |
Description
The AP features an intelligent bridge which can apply security filters to safeguard the flow of wireless traffic. The filters limit both incoming and outgoing traffic as defined below, and force the AP to exchange traffic with a specific upstream device. If the AP is configured to use the services of a access controller, then the default security filters are automatically enabled and all traffic is sent to the access controller.
Default filters for incoming wireless traffic
Applies to traffic sent from wireless client stations to the AP.
Accepted
Any IP traffic addressed to the access controller.
PPPoE traffic (The PPPoe server must be the upstream device.)
IP broadcast packets, except NetBIOS
Certain address management protocols (ARP, DHCP) regardless of their source address.
Any traffic addressed to the AP, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination address. TTPS traffic not addressed to the AP (or upstream device) is also blocked, which means wireless client stations cannot access the management tool on other products.
Default filters for outgoing wireless traffic
Applies to traffic sent from the AP to wireless client stations.
Accepted
Any IP traffic coming from the upstream device, except NetBIOS packets.
PPPoE traffic from the upstream device.
IP broadcast packets, except NetBIOS
ARP and DHCP Offer and ACK packets.
Any traffic coming from the AP itself, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination address.
Supported on: MSM310 MSM320 MSM335 MSM410 MSM422
Enables the MAC filter list.
no
Disables the MAC filter list.