Home

Forums

Stories

Knowledge Base

Business Community > Controllers > Ip-group number of port limitation

< Controllers

Ip-group number of port limitation

ProSumerTester

2025-07-21 16:31:55 - last edited 2025-07-24 03:08:20

Posts: 42

Helpful: 6

Solutions: 4

Stories: 0

Registered: 2022-12-25

Ip-group number of port limitation

2025-07-21 16:31:55 - last edited 2025-07-24 03:08:20

Tags: #ACL #Controller

Model: OC200

Hardware Version: V1

Firmware Version: 5.15.20.39

Hello all

I'm trying to find out if I am using ACL wrong way or is omada ip-group ports are limited.

I have one server that is running docker with many services and each service is running on different ports.

As far as I can see when creating IP-Port Groups I can not add more then 5 different port nr on which I can reach services.

Is this the fact (by design) or am I doing something wrong here ?

Please advise

1x ER-7206 1x C200 2x EAP245 1x SG2008P

1 Accepted Solution

ProSumerTester

LV2

2025-07-22 21:17:50 - last edited 2025-07-24 03:08:20

Posts: 42

Helpful: 6

Solutions: 4

Stories: 0

Registered: 2022-12-25

Re:Ip-group number of port limitation-Solution

2025-07-22 21:17:50 - last edited 2025-07-24 03:08:20

@Vincent-TP

Noticed depending on number of IP adresses used it stopped after 6 ports

In screenshot below I created Ip-port group with ip-port range where I added mutiple IP adresses with mutiple ports (trying to "maybe" create workaround) but
I got the error after adding the 7'th port. So indeed I can add more then 5 but less the 7.

I now understand the limits and will have to deal with them.

1x ER-7206 1x C200 2x EAP245 1x SG2008P

Recommended Solution

4 Reply

Vincent-TP

2025-07-22 07:23:00

Posts: 3501

Helpful: 345

Solutions: 1191

Stories: 0

Registered: 2024-06-22

Re:Ip-group number of port limitation

2025-07-22 07:23:00

Hi @ProSumerTester

We can create more than 5 ports, as you can see below:

When will you see the error? Please take a screenshot of the error message page.

Or you can consider choose the IP-Port Type as IP-Port Range.

Wish you a happy life and smooth network usage! >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<

MR.S

LV5

2025-07-22 10:10:52

Posts: 2823

Helpful: 1004

Solutions: 397

Stories: 0

Registered: 2018-08-17

Re:Ip-group number of port limitation

2025-07-22 10:10:52

@ProSumerTester

IP Port Group and IP group are very limited on Omada, you can only have 16 groups of each category, in each group you can only have 16 networks,

IP Port Group only has 8 networks and 8 ports or port range. With all those limitations it can be very difficult to build a secure network. Even if you use only one network in an IP Group or Port group then you have used up 1 of the 16 groups you only have 15 left in the total pool.

With so many limitations you have to make compromises and then the network cannot be completely secure.

The same groups are used in Policy route and ACL so it is quick to use up the groups.

ProSumerTester

LV2

2025-07-22 21:17:50 - last edited 2025-07-24 03:08:20

Posts: 42

Helpful: 6

Solutions: 4

Stories: 0

Registered: 2022-12-25

Re:Ip-group number of port limitation-Solution

2025-07-22 21:17:50 - last edited 2025-07-24 03:08:20

@Vincent-TP

Noticed depending on number of IP adresses used it stopped after 6 ports

I now understand the limits and will have to deal with them.

1x ER-7206 1x C200 2x EAP245 1x SG2008P

Ip-group number of port limitation

Ip-group number of port limitation

Information

Voters 0

Tags