ER605 ACL Permit rule takes network down
I recently updated to the beta version of the ER605 (V1) from 1.2.1 to 1.2.3. After trying to set up a gateway ACL rule of Permit Home to IoT, it took down my home VLAN. I was not able to connect to it on any other device.
I am running the software controller v5.8.4, ER605 V1, and firmware version 1.2.1 (previous) updated to 1.2.3
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hello @shivamg42
shivamg42 wrote
I recently updated to the beta version of the ER605 (V1) from 1.2.1 to 1.2.3. After trying to set up a gateway ACL rule of Permit Home to IoT, it took down my home VLAN. I was not able to connect to it on any other device.
Do you mean that after you add the gateway ACL rule of Permit Home to IoT, your devices connected to the Home VLAN networks are unable to communicate with each other, or your devices connected to other VLAN networks are unable to communicate with the devices connected to the Home VLAN networks?
Does it work after you delete the gateway ACL rule of Permit Home to IoT?
Could you please upload a screenshot to show your ACL rule settings for checking?
- Copy Link
- Report Inappropriate Content
@Fae Here is a screenshot of the ACL rule that I applied: https://imgur.com/It8Dzav.
After applying this rule, all devices on the Home VLAN were unable to communicate with any other VLAN. Home VLAN is connect to VLAN 10. After that home VLAN was no longer able to communicate to my Lan network on VLAN 1. I did not test if I was able to communicate to the IOT VLAN or the Guest VLAN (VLAN 20 or VLAN 30).
I was able to log in to my IoT network and connect back to the controller to delete the ACL rule. After deleting the rule I was able to communicate with all other networks as needed.
- Copy Link
- Report Inappropriate Content
Hello @shivamg42
Could you please tell us your purpose of creating the ACL rule so that we can better understand the issue?
Except for the Permit ACL rule, do you have any other ACL rules configured in your network?
Please kind note that VLAN networks can communicate with each other once the Interfaces are created on ER605. If you want to allow the Home VLAN to communicate with IoT VLAN or other VLANs, there is no need to add a permit ACL. Only when you need to block the communication from one VLAN to another, would a deny ACL be required.
- Copy Link
- Report Inappropriate Content
@Fae I was working on setting up mDNS with the beta 1.2.3 firmware on the ER605. I was following this video tutorial on how to do it, which is why I created the rule of permit home VLAN to IoT VLAN. I did see the note of it not being needed as this was a simple network, however I was still confused as to he outcome of what happened when I set the rule.This was a new rule that I created with the 1.2.3 beta firmware.
I do have other ACL rules setup on my network. Here are screenshots of my ACL rules that I have setup on my network.
- Copy Link
- Report Inappropriate Content
Hello @shivamg42
Thank you for the information. Sorry that we cannot reproduce the issue. To better assist you, I've created a support ticket via your registered email address, and escalated it to our support engineer to look into the issue. The ticket ID is TKID230314902, please check your email box and ensure the support email is well received. Thanks!
- Copy Link
- Report Inappropriate Content
Hello @shivamg42,
I'd like to update the post here.
TP-Link has released the Beta firmware ER605 V1_1.2.3_Build 20230413 which is fully adapted to SDN controller v5.8.
ER605 V1_1.2.3_Build 20230413 Beta For Trial (Released on Apr 14th, 2023)
You may take your time to upgrade the 1.2.3_Build 20230413 Beta firmware and confirm the issue you encountered has been resolved.
If the issue still exists, please don't hesitate to reply to the support email whose case ID is TKID230314902 for further follow-up.
If your concern was resolved, welcome to update this topic thread and share your solution so that others may benefit from it.
We are looking forward to hearing from you again.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 653
Replies: 6
Voters 0
No one has voted for it yet.