ACL - allow access to single IP in another VLAN

ZoloNN

Monday

Posts: 98

Helpful: 21

Solutions: 3

Stories: 0

Registered: 2024-10-01

ACL - allow access to single IP in another VLAN

Monday

Tags: #VLAN & Multi-Networks #ACL

Model: Omada Software Controller (Windows)

Hardware Version:

Firmware Version: 6.0.0.24

Hi all,

I'm quite unfamiliar with ACL settings on Omada devices.

I have ER605 Gateway and some SG2008, SG2008P and SG2218 switches.

I have a dedicated VLAN 200 for IoT devices and I will to configure following:

allow access from default LAN to IoT VLAN (for management)
allow access from IoT VLAN to mqtt server in default LAN
allow access from IoT VLAN to internet
deny access from IoT VLAN to any network (except mqtt server - see 2nd bullet point)

I've tried to read lot of ACL guides, but somehow I'm unable to configure it properly - green ones without problem - red one I'm unable to configure....

can please someone help me?

/BR ZoloNN ----------------------------------------------------------------------------------- Omada 2x ER605(UN) v2.0 + SG2008P(UN) V3.20 + SG2218 V1.20 + 2x SG2008 V4.20 + 3x EAP615-Wall(EU) V1.0

1 Reply

GRL

LV4

Monday

Posts: 894

Helpful: 368

Solutions: 107

Stories: 0

Registered: 2022-01-02

Re:ACL - allow access to single IP in another VLAN

Monday

@ZoloNN

You need to use switch rules, and remember to ensure that it is bidirectional as a switch deny rule in one directio will also block responses in the reverse direction

ACL - allow access to single IP in another VLAN

ACL - allow access to single IP in another VLAN

Information

Voters 0

Tags