× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Orbi WiFi 7 RBE973
Reply

VLAN ACL segregation, what am I doing wrong?

maindriver
Star

VLAN ACL segregation, what am I doing wrong?

We have multiple VLANs. Let's say 15 of them.

 

We want to segregate VLAN70 from the others.

 

VLAN10 is..

192.168.1.0, 255.255.255.0

 

VLAN5 is

192.168.5.0, 255.255.255.0

 

VLAN70 is

192.168.70.0, 255.255.255.0

 

For initial testing, I want to prove that I can block VLAN70 from being able to get to VLAN5. I'll build further rules following that.

 

 

maindriver_0-1690023336365.png

maindriver_3-1690023448126.png

maindriver_4-1690023475694.png

 

Using these settings, I can still ping VLAN 5 from 70.

 

If I remove the '500 permit' extended ACL rule, then it kills all traffic to the VLAN, so I can tell something is working..

 

Any pointers?

 

 

 

 

 

Message 1 of 2
maindriver
Star

Re: VLAN ACL segregation, what am I doing wrong?

Aha, found the issue, had a Basic ACL that was screwing with the advanced one, removed the basic and all is working.

Message 2 of 2
Top Contributors
Discussion stats
  • 1 reply
  • 231 views
  • 1 kudo
  • 1 in conversation
Announcements