User's Manual
1042 | Behavior and Defaults Dell Networking W-Series ArubaOS 6.4.x| User Guide
Name Protocol Port(s)
svc-http-proxy2 tcp 8080
svc-http-proxy3 tcp 8888
svc-sips tcp 5061
svc-v6-dhcp udp 546 547
svc-v6-icmp icmp 0
any any 0
Policies
The following are predefined policies.
Predefined Policy Description
ip access-list session allowall
any any any permit
An "allow all"
firewall rule that
permits all traffic.
ip access-list session control
user any udp 68 deny
any any svc-icmp permit
any any svc-dns permit
any any svc-papi permit
any any svc-cfgm-tcp permit
any any svc-adp permit
any any svc-tftp permit
any any svc-dhcp permit
any any svc-natt permit
Controls traffic—
Apply to untrusted
wired ports in
order to allow Dell
APs to boot up.
NOTE: In most
cases wired ports
should be made
"trusted" when
attached to an
internal network.
ip access-list session captiveportal
user alias mswitch svc-https dst-nat 8081
user any svc-http dst-nat 8080
user any svc-https dst-nat 8081
user any svc-http-proxy1 dst-nat 8088
user any svc-http-proxy2 dst-nat 8088
user any svc-http-proxy3 dst-nat 8088
Enables Captive
Portal
authentication.
1. Any HTTPS
traffic destined
for the
controller will
be NATed to
port 8081,
where the
captive portal
server will
answer.
2. All HTTP traffic
to any
destination will
be NATed to the
controller on
port 8080,
where an HTTP
redirect will be
issued.
Table 230: Predefined Policies