Suggestions/Examples of VLAN Segmentation Rules

Follow

w m

• July 06, 2023 19:54

Hi,

This has low key been an issue since day 1 and I was curious if I was the only one. Where since there is no hierarchy of all of the rules created it kind of ends up being a bit of a lets see if this configuration works today.

I understand that the allow rules trump block; however utilizing 3VLANS with with limited inter connection i find that and this is primarily with my ioT segment that the rules over time just stop kind of functioning correctly and out of the blue I will either lose totally connectivity with some devices or find devices suddenly have complete access across all VLANS

 

TL:DR: I'm curious if anyone has also had this issue / does anyone have a solid exmaple of a setup that is stable and working with reliability. (luckily i only live in an apt so re re-integrating accesories while frustrating isn't nearly as difficult as it would be in a full sized home.

0

• 

  Firewalla

  • July 06, 2023 23:38

  May I know what kind of rules do you have between VLAN's? and when things break, can you ping across VLAN? or VLAN to internet? 

  0

  Comment actions Permalink
• 

  w m

  • July 07, 2023 17:24

  The rules are network level rules so they are generally…
  IoT vlan block traffic to and from all network
  Main lan allow traffic to ioT vlan

  Ashley didn’t think about pen class to networks so next time this happens I’ll make sure to make that a part of the process of trying to figure out what had happened

  0

  Comment actions Permalink

Please sign in to leave a comment.