Virtual Network separation
Hi guys, does anyone know if the gold allows network separation via software rather than making use of the separate ports on it? I have it running in dhcp mode. I’ve created 2 groups as a test and added a device in one group with rules on to only allow internet and block access to rest of local network, but can still see pretty much all of the local network. Anyone achieved this? Thanks
-
You would have to create a VLAN. I have 3 different VLAN's all on the same Port. My Wifi and Switch support VLAN tags so I my Wifi will tag the 3 profiles with the corresponding VLANs. So your question does it allow you to segregate them without having them in different ports ... yes ... but you will need to have the hardware to do so also.
I think Firewalla is working on some policies that MIGHT do what you want, but that will be a question they have to answer.
-
See if this helps
----
Using Device Groups:
- Each group can have different Internet Facing or WAN policies. (such as blocking porn)
- If the group members are on the same LAN, there is NO way to prevent one device from talking to another. (This is because Firewalla is a router, not a switch)
Using VLAN or Segments
- Each group can have different Internet Facing or WAN policies. (such as blocking porn)
- Group members on different VLAN or Ports can be controlled on what or who they can talk to, using rules
- Group members on the same VLAN or ports can still talk to each other.
Please sign in to leave a comment.
Comments
2 comments