Use IP Group in Lan-Lan ACL on Omada

Use IP Group in Lan-Lan ACL on Omada

Use IP Group in Lan-Lan ACL on Omada
Use IP Group in Lan-Lan ACL on Omada
a week ago - last edited a week ago

I have inherited a TP Link Omada setup and am trying to setup segregation between VLANs.  I've started by creating firewall rules to deny traffic between the different VLANs, however, I need to be able to allow certain management devices access to specific IPs on other VLANs, but when I try to create an ACL of type 'LAN-to-LAN' the only 'source' option is to choose a network, not an IP Group or a single IP.

 

So, my question is - how do I allow one or two specific devices on a VLAN access to either an entire VLAN, or access to another specific device?

  0      
  0      
#1
Options
1 Accepted Solution
Re:Use IP Group in Lan-Lan ACL on Omada-Solution
a week ago - last edited a week ago

  @theradioguy 

 

the short answer is that you can't, you can manage it with switch ACL if you have Omada Switch connected to the router, easy managed switch does not have ACL

 

 

Recommended Solution
  1  
  1  
#2
Options
3 Reply
Re:Use IP Group in Lan-Lan ACL on Omada-Solution
a week ago - last edited a week ago

  @theradioguy 

 

the short answer is that you can't, you can manage it with switch ACL if you have Omada Switch connected to the router, easy managed switch does not have ACL

 

 

Recommended Solution
  1  
  1  
#2
Options
Re:Use IP Group in Lan-Lan ACL on Omada
a week ago
Wow, it's shocking to me that such a basic feature isn't implemented in Omada, any idea if they're planning on supporting this in the future? How would I be able to accomplish the same thing with a switch ACL? And is there any solution for a wireless client?
  0  
  0  
#3
Options
Re:Use IP Group in Lan-Lan ACL on Omada
a week ago

  @theradioguy 

 

yes i agree that it is a significant problem when router acl lacks this option. it will probably come but i don't know when. emergency solution is to use switch acl or eap acl. it works but is not optimal

 

  0  
  0  
#4
Options