Business Community > Gateways > Gateway ACL LAN to LAN feature is not working
< Gateways

Gateway ACL LAN to LAN feature is not working

Gateway ACL LAN to LAN feature is not working

Gateway ACL LAN to LAN feature is not working
Gateway ACL LAN to LAN feature is not working
Yesterday - last edited Yesterday
Model: ER707-M2  
Hardware Version: V1
Firmware Version: 1.2.3 Build 20240822 Rel.52946

I have configured VLANs 10, 20, 30, 100, and 200. The IPs are 192.168.x.0/24 (x being the VLAN ID).

 

VLAN 100 and 200 are applied on a SSID broadcast by my APs. I want to block access of VLAN 100 and 200 to all other VLANs. The VLANs are created with the purpose as interface, so routing is done on the gateway.

 

Gateway ACLs proven to be useless as I can still ping other VLANs when Im in both VLAN 100 and 200. A change the Switch ACL fixed the problem. What is the issue here and why does Gateway ACL not work?

  0      
 
  0      
 
#1
Options
2 Reply
Re:Gateway ACL LAN to LAN feature is not working
Yesterday

  @Jason7186 

 

Generally gateway ACLs still allow all the gatewai IPs of all vlans hosted on the gateway to be pingable.  Why? who knows, just how it is.

 

In all other ways gateway lan<>lan ACLs work fine

Main: ER8411 x1, SG3428X x1, SG3452 x1, SG2428LP x1, SG3210 x1, SG2218P x1, SG2008P x3, ES208G x1, EAP650 x6 Remote: ER7206 v2 x1, ER605 v2 x3, SG2008P x2, EAP650 x2, ES205G x1 Controller: OC300
  1  
  1  
#2
Options
Re:Gateway ACL LAN to LAN feature is not working
19 hours ago

  @Jason7186 

Thank you for your post. They should indeed work. How did you configure the ACL? Two ACL entries are required here, or you should enable bidirectional ACL blocking when configuring—once enabled, two ACL entries will be created automatically.

  0  
  0  
#3
Options

Information

Helpful: 0

Views: 158

Replies: 2

About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.