GS108Tv3 set listen interface for https/https management UI to only one port for security reasons

Miguelitoholamu · ‎2024-12-14

Hi. I want to buy a netgear GS108Tv3 managed switch for my home and office installation, since I need configurable VLANs offered by a managed switch.

The network will be segmented in such a way that some vlans will have untrusted nodes in them.

I would like for the http(s) device management UI to be accessible through ONLY one of the ports of the switch, or through only one VLAN id.

This is to prevent all nodes except one from even attempting to login to the management ui or interacting with it in any way.

How can this be achieved (if at all)?

Thanks!

MartaR · ‎2024-12-16

Hola, @Miguelitoholamu

¡Bienvenido a la Community NETGEAR! 😊

En ese escenario, la VLAN de gestión es la VLAN 1 (por defecto).

Aunque solemos recomendar que la VLAN 1 esté destagueada en todos los puertos, puede no seleccionarla para los puertos que lo desee.

Además de eso, también puede crear al menos otra VLAN para gestionar el tráfico de esos nodos.

Asimismo, puede crear una ACL en base a las VLANs tal y como se explica en la página 439 del manual: GS108Tv3_GS110TPv3_GS110TPP_UM_EN.pdf

En la página 349, también tiene instrucciones relativas a port authentication, por si esa opción es viable.

Que tenga un buen día.

Saludos,

Marta R

Equipo de NETGEAR

GS108Tv3 set listen interface for https/https management UI to only one port for security reasons

GS108Tv3 set listen interface for https/https management UI to only one port for security reasons

Re: GS108Tv3 set listen interface for https/https management UI to only one port for security rea...