2-11
Cisco Aironet 1810 Series OfficeExtend Access Point User Guide
Chapter 2 Understanding the Access Point GUI
Configuration Page
Firewall
The Configuration Firewall tab (see
Figure 2-8
) contains fields to enable/disable the access point’s
firewall and set various firewall parameters.
Set the
Firewall Status
as
Enabled
to apply client filtering and port forwarding rules. To disable the
firewall, from the drop-down list choose
Disabled
, and then click
Apply
. The firewall is disabled by
default.
The following firewall settings are available:
•
Selective unblocking of traffic based on application types such as HTTP, HTTPS, SSH, and FTP.
•
Unblocking of traffic based on LAN destination addresses, protocols and ports.
•
Port forwarding, with 10 or less total entries for separate port numbers.
Note
All firewall settings are applicable on the WAN port for local traffic (traffic sent directly to the Internet,
and not to the corporate network). Firewall protection for CAPWAP traffic and traffic sent through the
controller to the corporate office is configured and monitored on the WLC.
Sections and Precedence of Firewall Settings
The following are the sections in the Firewall tab, listed in the order of precedence of the firewall
settings:
1.
Port Forwarding
2.
DMZ
3.
Client Filtering
Client Filtering
The Client Filtering sections allows you to add filtering rules to filter traffic to clients, by specifying the
following for each rule:
•
Set the rule for all LAN clients or only for clients in a specified IP address range.
–
To set the rule for all local clients, check the
All Clients
check box.
–
To set the rule for a range of IP address, specify the
Local IP Address Range
.
•
Set the rule to filter access to applications using the any of the following protocols:
–
FTP
–
Telnet
–
SMTP
–
DNS
–
TFTP
–
HTTP
–
POP3
–
NNTP