Inter VLAN routing and single gateway?
-
Greetings :)
I run a multiple VLAN/1 LAN setup. The gateway for the LAN is 10.1.1.1
How to stop inter VLAN routing and only direct traffic to the gateway? No matter which VLAN the traffic generates from?
-
use policy routing to specify a gateway in the default any TO any firewall rule
inter-vlan routing will stop to function, only out to internet will work
-
Walk me through it….
I have tried that (running 1.2.3), but to no avail.
-
no clue bout 1.2.3, have no more remaining systems running it. It's fairly easy on 2.x
in 2.x when ya edit the default lan rule, theres a section to specify a gateway other then 'default'.
-
BUMP :)
-
How do you have multiple VLANs with only one LAN? Guessing they're bridged together then, or else multiple WANs on VLANs. In general, you do what you're looking to do with firewall rules.
-
I have attached some images….
The setup is like this...
LAN Setup
VLAN Setup
LAN Rule
VLAN Rule
The problem is that all of the VLANS can interact. I only want the traffic directed from the VLAN to the internet and no more.
-
Your LAN subnet is way overlapping vlan subnets and you need firewall rule to block RFC1918 networks(inside ip-subnets)
-
I must be missing something….
To have 10.1.x.x subnets working, then one must run LAN on 10.1.x.x/16 subnet....
And I can only block RFC1918 networks on WAN. Not on LAN....I have searched the ruleset for this to no avail...
-
-
Have a look into it :)
Thx so far!
-
Working!
Thanks a lot!
-
edit your first post subject field with [SOLVED]
-