3
Votes

Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group

 
3
Votes

Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group

Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group
Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group
2025-09-11 17:41:45
Model: ER7206 (TL-ER7206)  
Hardware Version: V1
Firmware Version: 1.41

Gateway ACL's do not allow IPGroup etc as either source or destination when LAN->LAN used as a direction.

 

Makes a VLAN for IoT unable to punch through to eg: Home Assistant and renders using a separate VLAN for IoT pretty unworkable.

Seems a pretty basic request and as LAN->WAN direction will accept IPGroups, can't be a hardware issue but rather how the UI is written to restrictivley.

This post https://community.tp-link.com/en/business/forum/topic/606980?replyId=1320472 deal with it but now closed, TP link promised it as a future feature in Feb 2024 - we are 18 months on and doesn't appear to have been implemented - was meant to be in5.16.x but no timeline when this will be released.

Needs addressing urgently.  Anyone got any updates on timeline?

 

(Kudos to the tech support expert at TP-Link who spent 90 mins on webchat yesterday trying to configure on my system - shame he wasn't aware of the controller UI limitation)

#1
Options
2 Reply
Re:Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group
2025-09-12 09:20:33

  @wanblue 

Thank you for taking the time to share your insights within the TP-Link Community. Your feedback is greatly appreciated and has been formally documented and escalated to our Product Development Division for thorough evaluation.

At this juncture, we are unable to confirm whether the requested enhancement will be implemented or to provide a definitive timeline. We appreciate your understanding of the complexities inherent in our product-planning and development cycles.

Should you have any further suggestions or additional context to offer, please feel free to share them here. All supplementary input will be consolidated and forwarded to the relevant teams for continued consideration.

#2
Options
Re:Gateway ACL's, LAN->LAN not allowing IPGroup/Port Group
2025-09-12 09:43:05

@wanblue thank you for confirming, I thought I was crazy that I couldn't work out how to make useful ACL's! As you say, what even is the point of multiple Networks or VLAN if the only ACL you can make is to bridge whole Networks/VLANs 😅 I'm relatively new to Omada, it is advertised as a business solution, so I assumed it had the basics covered, but ACLs seem very limited right now. Looking forward to updates!

 

#3
Options