Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Trying to block Webgui from vLan

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 696 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tuffcalc
      last edited by

      I have two lans setup:

      1. regular untagged LAN (192.168.0.1 - webgui)
      2. vLan (tagged as 20) (10.0.0.1 - webgui)

      I've followed the instructions here (https://calvin.me/block-traffic-vlan-pfsense/) - but no matter what I do, vLan=20 can access the pfsense webgui at 192.168.0.1, and it can also access other webguis on the LAN network (like my engenius routers and hp printer, at for example, 192.168.0.15).  The pfsense webgui at 10.0.0.1 is blocked.

      Can anyone help me figure this out?  I don't want vLan=20 to be able to access the LAN network, but I do want it to be able to talk to other computers on vLan=20 and out to the internet.

      Many thanks!

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned
        last edited by

        Block "This Firewall" webGUI ports.

        1 Reply Last reply Reply Quote 0
        • T
          tuffcalc
          last edited by

          Figured it out - I'm using a Cisco SG300 that was in layer 3 mode.  Now that I switched it to layer 2 mode everything works normally and I can block access between vLans.

          1 Reply Last reply Reply Quote 0
          • H
            Harvy66
            last edited by

            Some Layer 3 switches have some basic Layer 4 features and let you block TCP/UDP ports between VLANs.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.