Greetings all,
I have a new UTM110 that I'm preparing for a small business network. I have an EmployeeWifi and a GuestWifi. I'm trying to prevent traffic between the two networks, while still allowing each to access the internet.
EmployeeWifi(wlan2) is bridged to the internal LAN network, since I'd like the wifi clients to be on the same subnet as internal computers. 192.168.254.x subnet.
GuestWifi(wlan0) is a 'Separate Zone' wifi network, since I'd like the clients on this network to have no access to anything except the internet. Client Isolation is enabled. 192.168.1.x subnet.
I've tried adding firewall rules blocking GuestWifi traffic to EmployeeWifi network and vice-versa, I've even changed the GuestWifi interface(wlan0) to an Ethernet VLAN interface in VLAN99, but no matter what I do I can still ping clients in both. What simple step am I missing?
This thread was automatically locked due to age.
