Isolate Devices from each other on same local network segment?
I have three networks segmented by port (192.168.1.1/24; 192.168.2.1/24; 192.168.3/1/24). Each segment has the action Block "Traffic from & to All Local Networks" rule. It's easy to Block or limit internet access for any device on any of the network segments.
Is it possible to Block "from & to" access to the other devices on the same network segment?
I'm thinking primarily of the IOT segment and would like to create a target list of acceptable internet domains and also keep each device on the network segment from accessing any of the other devices on that same network segment
You can do this if your network equipment supports it. For example, I use unifi switches and APs. I implemented client isolation on a VLAN dedicated to IoT devices. They can only see the switch or AP they are connected to. On other VLANs I disable that setting and allow devices to see each other.
Please sign in to leave a comment.