Home

Forums

Stories

Knowledge Base

Business Community > Gateways > Show ACL counters

< Gateways

Show ACL counters

tukane

2 weeks ago - last edited 2 weeks ago

Posts: 7

Helpful: 0

Solutions: 1

Stories: 0

Registered: 2023-09-10

Show ACL counters

2 weeks ago - last edited 2 weeks ago

Tags: #ACL #Firewall

Model: ER605 (TL-R605)

Hardware Version: V2

Firmware Version: 2.3.0

Hi all,

I'm trying to setup some ACLs on my omada system to make my homenet safer.

For troubleshooting purpus it would be nice to see, if there are hits on the configured ACLs. Is there a way to see, which ACL blockes traffic?

Thanks

tukane

3 Reply

Ethan-TP

2 weeks ago

Posts: 337

Helpful: 20

Solutions: 124

Stories: 0

Registered: 2025-09-08

Re:Show ACL counters

2 weeks ago

@tukane

Thank you for your post. At the moment there is no log showing which ACL is blocking the traffic. You will need to define the ACL according to your requirements and then verify on-site that it is taking effect.

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch

tukane

LV1

2 weeks ago

Posts: 7

Helpful: 0

Solutions: 1

Stories: 0

Registered: 2023-09-10

Re:Show ACL counters

2 weeks ago

@Ethan-TP

Hi Ethan,

thanks for your reply.

I was hoping that a business product offers this feature. Sad to hear, that this is not possible.

Is there a guide for configuring firewall rules between two subnets (VLANs) on a port base?

I want to allow all devices in my IoT VLAN to access my Home Server on port 1883.

I also want to allow the IoT devices to reply to requests from a certain VLAN, but block traffic initiated from the IoT VLAN to other VLANs in my network.

I configured a IP-Port-Group for my Home Server:

Screenshot

Than I created 2 Gateway ACLs:

Screendshot

Screenshot

But after activating the deny rule the IoT devices could connect to the server via MQTT (1883).

Couldn't figure out, whats wrong here.

Regards,

tukane

Ethan-TP

5 hours ago

Posts: 337

Helpful: 20

Solutions: 124

Stories: 0

Registered: 2025-09-08

Re:Show ACL counters

5 hours ago

@tukane

You would need to set up LAN-to-LAN ACLs; however, the current LAN-to-LAN ACL does not support IP- or port-based rules. Therefore, your requirement most likely cannot be met.

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch

Show ACL counters

Show ACL counters

Information

Voters 0

Tags