Business Community > Omada Cloud SDN > Traffic block just in one direction
< Omada Cloud SDN

Traffic block just in one direction

Traffic block just in one direction

Traffic block just in one direction
Traffic block just in one direction
2023-01-31 16:51:19 - last edited 2023-02-02 16:27:20
Tags: #firewall
Model: OC200  
Hardware Version: V1
Firmware Version: 5.7.6

Hi,

I currently have a switch ACL blocking traffic from the normal network (51) to my IoT network (54).

 

 

Now I want to explicitly access a system on the 51 via SSH from one of the IoT machines in the 54 network (i.e. the opposite of the rule).Unfortunately this access is blocked. Even if I create another rule and set it to position 1, the access does not work.

 


Only if I switch off the rule "Normal to IoT block" it works.  How can I achieve that the basic access from the normal network to the IoT network remains blocked, but this one communication path is open?

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Traffic block just in one direction-Solution
2023-02-01 07:32:49 - last edited 2023-02-02 16:27:20

Dear @Frickeldave 

Frickeldave wrote

Hi,

I currently have a switch ACL blocking traffic from the normal network (51) to my IoT network (54).

 

 

 

Now I want to explicitly access a system on the 51 via SSH from one of the IoT machines in the 54 network (i.e. the opposite of the rule).Unfortunately this access is blocked. Even if I create another rule and set it to position 1, the access does not work.

 

 


Only if I switch off the rule "Normal to IoT block" it works.  How can I achieve that the basic access from the normal network to the IoT network remains blocked, but this one communication path is open?

Make sure you have bi-direction Permit rules on position 1 and 2. So allow the system to the IoT IP, also allow the IoT IP to the system. 

Best Regards! :) New to TP-Link Community? >>Get Started Here<<.
Recommended Solution
  0  
  0  
#2
Options
2 Reply
Re:Traffic block just in one direction-Solution
2023-02-01 07:32:49 - last edited 2023-02-02 16:27:20

Dear @Frickeldave 

Frickeldave wrote

Hi,

I currently have a switch ACL blocking traffic from the normal network (51) to my IoT network (54).

 

 

 

Now I want to explicitly access a system on the 51 via SSH from one of the IoT machines in the 54 network (i.e. the opposite of the rule).Unfortunately this access is blocked. Even if I create another rule and set it to position 1, the access does not work.

 

 


Only if I switch off the rule "Normal to IoT block" it works.  How can I achieve that the basic access from the normal network to the IoT network remains blocked, but this one communication path is open?

Make sure you have bi-direction Permit rules on position 1 and 2. So allow the system to the IoT IP, also allow the IoT IP to the system. 

Best Regards! :) New to TP-Link Community? >>Get Started Here<<.
Recommended Solution
  0  
  0  
#2
Options
Re:Traffic block just in one direction
2023-02-02 16:27:15
Thanks, thats it.
  0  
  0  
#3
Options

Information

Helpful: 0

Views: 84

Replies: 2

Tags

firewall
Related Articles
Unable to block traffic between VLANs on ER7206
1257 0
Switch ACL blocking acting bidirectionally instead of just one way
397 0
Allow new connection one way, block new connections the other way. (between vlans)
1586 1
VOIP traffic on set WAN
523 0
How to block all clients exept one when backup-internet is active?
82 0
No traffic visible in Omada SDN
437 0
About Us
Press
Copyright © TP-Link Corporation Limited. All rights reserved.