Management Access Considerations when Configuring Firewall Rules

The AP/SM Security page is used to configure system security features including authentication and Layer2/Layer3 Firewall rules.  When configuring Layer 2/Layer 3 Firewall rules, it is important to ensure that management access is retained to the device after Layer 2/Layer 3 Firewall rule configuraiton is complete.

If a device firewall rule is added with Action set to Deny and Interface set to LAN or WAN and no other rule attribute are configured, the device will drop all Ethernet or wireless traffic, respectively. Ensure that all firewall rules are specific to the type of traffic which must be  denied, and that no rules exist in the devices with only Action set to Deny and Interface se to LAN or WAN. To regain access to the device, perform a factory default.

1 Like