This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Firewall policy with Local Bridging Mode & Tunnel Mode

Firewall policy with Local Bridging Mode & Tunnel Mode

Go to solution
Bot5
New Contributor

‎08-16-2023 01:55 AM - edited ‎08-16-2023 02:00 AM

Hi 
I have Extreme Wing version 5.9 on VX9000
Need to configure IP firewall rule in the SSID to block the user from going to some VLAN's

Which would be the suggested mode..?( Local/Tunnel ).

As i read from the documentation, Local mode has no dependency on Controller.

So how will the firewall policy work in this case.?

 

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Christoph_S
Extreme Employee
In response to Bot5

‎08-17-2023 06:54 AM

Hello Bot5,

The difference between local and tunneled bridging is that with Local bridging, the AP handles traffic redirection and with Tunneling, the controller handles traffic redirection. SSID settings work in both modes. Yes you can have CP, filtering and data limiting on the SSID irrespective or what bridging mode you are using. If you want the AP to host the captive portal please make sure you enable it on the APs: https://extremeportal.force.com/ExtrArticleDetail?an=000093079

BR,

Christoph S.

View solution in original post

0 Kudos
3 REPLIES 3

Go to solution
Christoph_S
Extreme Employee

‎08-16-2023 05:34 AM

Hello Bot5,

Here's some info on the difference between local and tunnelled bridging modes: https://extremeportal.force.com/ExtrArticleDetail?an=000093067

We would recommend local bridging, whereas the AP handles traffic redirection. Once you create the firewall policy and map it to the WLAN, all APs using said WLAN will adhere to the rules within the policy and redirect traffic accordingly. 

BR,

Christoph S.
0 Kudos

Go to solution
Bot5
New Contributor
In response to Christoph_S

‎08-16-2023 01:13 PM

Hi Christoph S,

Thanks for the feedback.

We need to have captive portal as well on the SSID.

Will the Local bridging impact anything on the captive portal.

I mean, can we have the firewall policy, Data limiting and Captive portal together on one SSID..?

Thanks in advance..

0 Kudos

Go to solution
Christoph_S
Extreme Employee
In response to Bot5

‎08-17-2023 06:54 AM

Hello Bot5,

The difference between local and tunneled bridging is that with Local bridging, the AP handles traffic redirection and with Tunneling, the controller handles traffic redirection. SSID settings work in both modes. Yes you can have CP, filtering and data limiting on the SSID irrespective or what bridging mode you are using. If you want the AP to host the captive portal please make sure you enable it on the APs: https://extremeportal.force.com/ExtrArticleDetail?an=000093079

BR,

Christoph S.
0 Kudos
GTM-P2G8KFN