Hi
We wanted to add some rules on our WLAN to block certain pc's accessing systems on the LAN.
How come we cannot add source ip addresses in? it appears to be an all or nothing approach?
Cheers
Yes the source is everything on that ssid. You could use the group policy and assign that to the specific clients
If you are using RADIUS based authentication, you can also dynamically assign the group policy per client using the Filter-Id attribute.
This lets you do more advanced things like having a single SSID but dropping different users into different VLANs, applying different firewall rules, bandwidth limits, etc.
Hi
I had a look at that, how will that work, it still doesnt contain source IP? or are you saying by creating that it will deny just the clients that have the policy applied and not touch anything else on that wlan ?
You create a group policy. You apply it to a client.(The clients is then the "source"). So it only affects that client