Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 13238 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Client Isolation

CClasen
Is it the case that client isolation only works when using Separate Zone?  It doesn't seem to do anything for Bridge to LAN or Bridge to VLAN.


This thread was automatically locked due to age.
Parents
  • 0
    Understood. So, in your ideal scenario, how would you allow a wireless client to access a printer on the same VLAN - a firewall rule for traffic from the VLAN subnet to the printer?

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    If the traffic is bridged to the LAN,/VLAN, the UTM won't be able to control the traffic (it'd be switched at layer 2 and never sent to the UTM).  What I would do there is use an IP ACL on the switchports.  You want the traffic dropped as close to the source as possible so that you keep the unnecessary traffic off of any uplinks/bottlenecks.
Reply
  • 0 in reply to BAlfson
    If the traffic is bridged to the LAN,/VLAN, the UTM won't be able to control the traffic (it'd be switched at layer 2 and never sent to the UTM).  What I would do there is use an IP ACL on the switchports.  You want the traffic dropped as close to the source as possible so that you keep the unnecessary traffic off of any uplinks/bottlenecks.
Children
No Data
Unfiltered HTML