Technical data
Configure MAC Filtering
© 2012 Meru Networks, Inc. Configuring Security 141
The following table summarizes the controller/Radius Server settings.
Configure MAC Filtering
MAC filtering can be set up for both the controller and the Radius Server. By default,
MAC filtering is disabled. Enable MAC filtering before adding MAC addresses.To
change the state of MAC filtering so that the permit list is enabled, use the command
access-list state permit as follows:
controller(config)# access-list state permit
controller# show access-list state
MAC Filtering (ACL) Configuration
ACL Environment State : permit
Radius Profile name :
Secondary Radius Profile Name :
controller#
Add addresses to a permit ACL list by specifying them as command arguments, or by
importing them from a prepared list. To add one or more MAC addresses to the permit
access control list along with a brief description, type the following:
controller(config)# access-list permit 00:40:96:51:eb:2b 00:40:96:51:eb:22
controller(config-acl-permit)# descr MyClient
controller(config-acl-permit)# end
To import a list of MAC addresses to permit, create a text file listing all the MAC
addresses, and import the text file. When creating the text file to be imported, only
include one MAC address, in hexadecimal format (xx:xx:xx:xx:xx:xx), per line. For
example, the contents of a text file to be imported might look like the following:
00:04:23:87:89:71
00:06:25:a7:e9:11
00:07:e9:15:69:40
00:0c:30:be:f8:19
00:0c:e6:09:46:64
RADIUS Server Setting
disabled
enabled
MAC
Filtering
disabled
no MAC filtering RADIUS MAC filtering
only
Permit ACL
enabled
allow client in Permit
list only
check Permit list first; if
not in Permit list, check
RADIUS server
Deny ACL
enabled
Deny list used only if not in Deny list, check
RADIUS server