Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 11530 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Compartmentalize vlans...

Greg Rogers

What is a good way to compartmentalize vlans from each other through the XG?

Say I have general lan (vlan1) and I don't want vlan1 to talk to vlan50, or vlan50 to talk to vlan60. 



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    you would have to create reject rules between VLANs for each combination.

    VLAN 1 on an XG, try to avoid using that until v17b has been tested.

    Ian

  • 0 in reply to rfcat_vk

    Can you give me an example of a rule? I'm still trying to figure out the method of thinking when it comes to designing these rules. Coming from pfsense ha.

    I've created a rule that prevents any of the vlans from talking to the entire LAN section. However LAN can talk to them. They are still able to get out to the web. It was end of the day so I didn't get to test if they could communicate between each other.

Reply
  • 0 in reply to rfcat_vk

    Can you give me an example of a rule? I'm still trying to figure out the method of thinking when it comes to designing these rules. Coming from pfsense ha.

    I've created a rule that prevents any of the vlans from talking to the entire LAN section. However LAN can talk to them. They are still able to get out to the web. It was end of the day so I didn't get to test if they could communicate between each other.

Children