When ACL-based packet filtering is configured in a traffic profile, the device permits or denies packets based on ACL rules, therefore controlling network traffic.
Before configuring ACL-based packet filtering, complete the following tasks:
Perform the task of WLAN Service Configuration Guide.
Create corresponding ACL rules.
The traffic-filter command can reference a numbered ACL that is not configured. You can configure the referenced ACL after running this command.
The system view is displayed.
The WLAN view is displayed.
The traffic profile view is displayed.
By default, the system provides the traffic profile default.
The ACL-based packet filtering in the traffic profile is configured.
By default, ACL-based packet filtering is not configured in a traffic profile.
You can only configure a maximum of eight ACL rules in the same direction. The sequence in which ACL rules takes effect follows the sequence in which the rules are configured. To change the current packet filtering rules, delete all the related configurations and reconfigure the ACL-based packet filtering.
When multiple traffic-filter commands are configured for ACL-based packet filtering in the same direction in the same traffic profile, packets are matched against the next rule in the sequence in which the commands are configured. If packets match a rule, the device executes the specified policy and stops the matching process. Otherwise, the device continues to match packets against the next rule. If no rule is matched, the packets are allowed to pass through.
Return to the WLAN view.
The VAP profile view is displayed.
The traffic profile is bound to the VAP profile.
By default, the traffic profile default is bound to a VAP profile.