L2 ACL on Meraki WLAN level

nileshkahar
Conversationalist

L2 ACL on Meraki WLAN level

Hi,

Is there a way I can apply Layer-2 ACL just like I can on Ruckus WLAN "Firewall Options"? 

If yes, please guide.

Thanks,

Nilesh Kahar.

4 Replies 4
KarstenI
Kind of a big deal
Kind of a big deal

No, but for everything that you want to do, there are better ways to achieve it.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
nileshkahar
Conversationalist

We are migrating customer from Ruckus to Meraki and one of the ssid is having static mac address list under allowed layer-2 acl. Customer is not using radius auth for this particular ssid so that option is ruled out. Is there any other way I can achieve this mac address whitelisting for particular ssid on meraki mr access points?

GIdenJoe
Kind of a big deal
Kind of a big deal

MAC address filtering is not an easy thing to do on Meraki AP's without a radius server.
Usually you have to have a splash login page without valid users and then create a group policy that bypasses that splash page.
You can then add the mac addresses as clients on the client page and apply that group policy to them.

PhilipDAth
Kind of a big deal
Kind of a big deal

There are several ways you could look at achieving this.

 

To do it based on MAC address, change the default layer 3 firewall rule to deny all access.  Then create a group policy to override this, and allow access.  Then apply the group policy against the MAC addresses allowed access.

 

 

You could use iPSK per device instead (simpler, I think).

https://documentation.meraki.com/MR/Encryption_and_Authentication/IPSK_Authentication_without_RADIUS

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels