Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 12361 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Client Isolation

CClasen
Is it the case that client isolation only works when using Separate Zone?  It doesn't seem to do anything for Bridge to LAN or Bridge to VLAN.


This thread was automatically locked due to age.
Parents
  • 0
    Understood. So, in your ideal scenario, how would you allow a wireless client to access a printer on the same VLAN - a firewall rule for traffic from the VLAN subnet to the printer?

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
  • 0 in reply to BAlfson
    If the traffic is bridged to the LAN,/VLAN, the UTM won't be able to control the traffic (it'd be switched at layer 2 and never sent to the UTM).  What I would do there is use an IP ACL on the switchports.  You want the traffic dropped as close to the source as possible so that you keep the unnecessary traffic off of any uplinks/bottlenecks.
Reply
  • 0 in reply to BAlfson
    If the traffic is bridged to the LAN,/VLAN, the UTM won't be able to control the traffic (it'd be switched at layer 2 and never sent to the UTM).  What I would do there is use an IP ACL on the switchports.  You want the traffic dropped as close to the source as possible so that you keep the unnecessary traffic off of any uplinks/bottlenecks.
Children
No Data