Sonos App to speakers - diff vlans

Follow

FC

• November 03, 2021 23:32

Hello,

I am using a FWG.  I have my sonos spears on their own VLAN, all my other devices i.e. phone, laptop, etc are on a diff vlan.  I have mDNS enabled on the VLANS.

I have a rule on the speaker VLAN that is "Block Traffic to All Local Networks".  To me, this blocks an traffic that is initiated by any speaker.  I also have a rule on the speaker VLAN that is "Allow Traffic from All Local Networks".  In my mind, this should allow traffic that originates from my iphone using the sonos app to get into the speaker VLAN and control the speakers.  That doesn't work.  Only when I create "Remote Port" bi-directional rules does this work, which makes no sense to me, since the "Allow Traffic from All Local Networks" should cover any stateful traffic back and forth that originates from my phone.

I don't think this is switch related as this will work using those "Remote Port" rules without touching any config on switch ports/AP's.

Any suggestions are appreciated. 

 

0

• 

  ColoRock

  • November 04, 2021 00:50

  Sonos may require bi-directional traffic enable to function properly. I know my Apple HomePods in a separate VLAN require bidirectional to fully work with things like iPhones on a separate VLAN.

  0

  Comment actions Permalink
• 

  ColoRock

  • November 04, 2021 01:04

  I have one rule in my VLAN with the speakers: block all traffic from and to local networks.

  Then, on the devices (or groups) on other VLANs I want to grant access to the speaker VLAN, add rule to device to allow traffic from and to the speaker VLAN.

  Yes, the speakers can originate traffic to my phone, but at least they are isolated from devices on the network I really don’t want them to have access to like computers. You could try the rule on the device as to only to start to see if it works. Change to from/to if not.

  0

  Comment actions Permalink

Please sign in to leave a comment.