NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Can I isolate VLAN traffic without using a firewall?
I would like to create a switch configuration having 3 VLANS in routed mode so that the following would be true:
a) An external Internet router (i.e., one plugged into one of the VLANS) is the gateway for all devices on all VLANS;
b) No device on any VLAN can access a device on any other VLAN. Each VLAN is therefore "private."
Is this possible? If so, what should the default route be in the routing table, assuming I have VLAN10 addressed as 192.168.10.0/24, VLAN20 as 192.168.20.0/24, and VLAN30 as 192.168.30.0/24?
Lastly, is an external firewall needed to protect each VLAN from all other VLANs? Or can a switch configuration take care of this?
Thanks,
Tim_in_VA
Welcome to our community! :)
Basically, by default, VLANs do not communicate with each other that is why we created VLANs to separate the devices on each network. Even if there is a firewall, as long as the inter-VLAN routing is disabled, then it will be isolated.
Regards,
John
NETGEAR Community Team
1 Reply
Welcome to our community! :)
Basically, by default, VLANs do not communicate with each other that is why we created VLANs to separate the devices on each network. Even if there is a firewall, as long as the inter-VLAN routing is disabled, then it will be isolated.
Regards,
John
NETGEAR Community Team
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
