This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

LAN - LAN Traffic Filtering

Hello All,

Need help on this particular requirement. I'm having a Sophos XG106 as Local LAN Gateway and the WAN Link is terminated on the same. I want to monitor the Local LAN traffic. How to achieve this. As my understanding, LAN-LAN traffic does not come to the Firewall for same IP Subnet.

Any lead on this is welcome, Thanks

This thread was automatically locked due to age.

Top Replies

rfcat_vk over 2 years ago +1 verified

You will need to enable monitoring on your switch eg send data to a logging system. Ian

Parents

0 MakaanPL over 2 years ago

With OpenWRT-based access points, I was able to block LAN-to-LAN connections between Guest WiFi clients. It has separate VLAN and zone on Sophos. Clients on the same radio cannot connect to each other with AP Isolation, while br-netfilter package lets me filter traffic on a VLAN bridge (between both radios and built-in switch).

But this is possible in home use. Otherwise you need to monitor on switches.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 MakaanPL over 2 years ago

With OpenWRT-based access points, I was able to block LAN-to-LAN connections between Guest WiFi clients. It has separate VLAN and zone on Sophos. Clients on the same radio cannot connect to each other with AP Isolation, while br-netfilter package lets me filter traffic on a VLAN bridge (between both radios and built-in switch).

But this is possible in home use. Otherwise you need to monitor on switches.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data