CLI commands
wireless filters type
Supported on: MSM710 MSM730 MSM750 MSM760 MSM765zl
wireless filters type (mac gateway rules)
Sets the type of wireless security filter to use.
Parameters
mac | Traffic is forwarded to an upstream device with a specific MAC address. |
| Wireless security filters use the default definitions. |
gateway | Traffic is forwarded to the default gateway assigned to the service |
| controller. Wireless security filters use the default definitions. |
custom | Lets you define custom security filters and address for the upstream |
| device. |
Description
The service controller features an intelligent bridge which can apply security filters to safeguard the flow of wireless traffic. The filters limit both incoming and outgoing traffic as defined below, and force the service controller to exchange traffic with a specific upstream device. If the service controller is configured to use the services of a access controller, then the default security filters are automatically enabled and all traffic is sent to the access controller.
Default filters for incoming wireless traffic
Applies to traffic sent from wireless client stations to the AP.
Accepted
Any IP traffic addressed to the access controller.
PPPoE traffic (The PPPoe server must be the upstream device.)
IP broadcast packets, except NetBIOS
Certain address management protocols (ARP, DHCP) regardless of their source address.
Any traffic addressed to the AP, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination address. TTPS traffic not addressed to the AP (or upstream device) is also blocked, which means wireless client stations cannot access the management tool on other products.
Default filters for outgoing wireless traffic
Applies to traffic sent from the AP to wireless client stations.
Accepted
Any IP traffic coming from the upstream device, except NetBIOS packets.
PPPoE traffic from the upstream device.
IP broadcast packets, except NetBIOS
ARP and DHCP Offer and ACK packets.
Any traffic coming from the AP itself, including 802.1x.
Blocked
All other traffic is blocked. This includes NetBIOS traffic regardless of its source/destination address.