Configuring Client Isolation Whitelists

When Wireless Client Isolation is enabled on a WLAN, all communication between clients and other local devices is blocked at the Access Point. To prevent clients from communicating with other nodes, the Access Point drops all ARP packets from stations on the WLAN where client isolation is enabled and which are destined to IP addresses that are not part of a per-WLAN white list.

You can create exceptions to client isolation (such as allowing access to a local printer, for example) by creating Client Isolation Whitelists.

To configure a Client Isolation Whitelist:

  1. Go to WiFi Networks > Advanced Options > Others.
  2. Select both check boxes under Wireless Client Isolation. (Isolate wireless clients from other clients on the same AP, and from all hosts on the same VLAN/subnet).
  3. Click Create Whitelist.
  4. Enter a Name and optionally a Description for the access policy.
  5. In Rules, you can create multiple device-specific rules for each device to be white listed.
    • Description: Description of the device.
    • MAC Address: Enter the MAC address of the device.
    • IPv4 Address: Enter the IP address of the device.
  6. Click Save to save the rule you created.
  7. To change the order in which rules are implemented, select the order from the drop-down menu in the Order column. You can also Edit or Clone rules from the Action column. To delete a rule, select the box next to the rule and click Delete.
  8. Click OK to save the white list.

    Configuring a Client Isolation Whitelist