Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 2 subscribers
  • Views 2303 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Users must not see each other in a specific VLAN

UweT
Dear Techies

How do I configure the UTM so that all clients within a VLAN/network don't see/ping/network acces each other?

We have to set it up for the WLAN VLAN for our students. The WLAN APs (non-Sophos) they are just passing through the clients and the UTM is the DHCP for the VLAN, too.

Thank you for every help in advance!
--Uwe


This thread was automatically locked due to age.
Parents
  • 0
    UweT, this looks like normal behaviour. As far as I know most switches don't support client isolation (that's what you can use VLAN's for) and most AP's do support client isolation. Only when you put something in bridge mode, you're basically using the AP as a "cable less network cable" and in that case there is usually no need for isolating clients. 
    My best guess is to work with ACL's on the switch if your switch supports it.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0
    UweT, this looks like normal behaviour. As far as I know most switches don't support client isolation (that's what you can use VLAN's for) and most AP's do support client isolation. Only when you put something in bridge mode, you're basically using the AP as a "cable less network cable" and in that case there is usually no need for isolating clients. 
    My best guess is to work with ACL's on the switch if your switch supports it.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Cookie Information Banner