Hello,

I have a vulnerable device on my network that I'd like to isolate from the rest of my home network. The goal is to configure the switch port it's connected to so that it can only communicate with the gateway (router), and not with any other devices or ports on the switch.

I've attempted to do this using VLANs, but unfortunately, the device in question needs to connect to a VPN, and the connection becomes unstable unless it's on the default (untagged) network. I've spent a lot of time trying to get it working over a separate VLAN, but it just doesn't play nice.  Too many dropouts and instability.

In the SDN interface, I see an option for Port Isolation, but I can't find a way to configure it in detail. From what I understand, Port Isolation simply blocks isolated ports from talking to each other, while still allowing them to talk to non-isolated ports. That’s very rigid and doesn’t offer the level of control I need.

What I’m really looking for is a way to configure one specific port so it can only communicate with the gateway (or upstream), while allowing the rest of the ports on the switch to continue communicating with each other normally.

Is there a workaround or feature I’m missing that would let me achieve this?

Thanks in advance!