EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Friday 01 November 2024, 09:33:09 pm
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
Download the latest community FREE version
HERE
14248
Posts in
4376
Topics by
6515
Members
Latest Member:
hulteends
Search:
Advanced search
EFW Support
Support
General Support
Policy implementation in VLANS
0 Members and 0 Guests are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: Policy implementation in VLANS (Read 8485 times)
cmanriquezr
Jr. Member
Offline
Posts: 1
Policy implementation in VLANS
«
on:
Friday 25 August 2017, 03:43:17 am »
I have the following scenario:
I have an admninistrable switch where I define the following Vlans 10, 20.30 and assign them as follows:
Port 1 untagged vlan 10 - access type
Port 2 untagged vlan 20 - access type
Port 3 untagged vlan 30 - access type
Port 4 untagged vlan 1, tagged vlan 10, 20, 30 - trunk type
In endian version 3.2.2, I also defined the same vlans 10, 20, 30 in the part of - Network - Interfaces - Vlans
Eth0.10 - green zone
Eth0.20 - green zone
Eth0.30 - green zone
In Endian, in the network configuration part, assign the interface eth0.10 to IP 30.0.0.254 in the green zone, which is the gateway for VLAN 10.
In the endian terminal at the command level assign:
- IP 40.0.0.254 to the virtual eth0.20 interface, which is the gateway.
- IP 50.0.0.254 to the virtual eth0.30 interface, which is the gateway.
Performing communication tests with the switch do the following:
First test:
- Device with IP 30.0.0.1 connected to port 1 (vlan 10) -> I was able to ping gateway 30.0.0.254.
- Applies policy in the areas of traffic between Internet to exit successfully.
Second test:
IP 40.0.0.1 computer connected to port 2 (vlan 20) -> I could not ping the gateway 40.0.0.254.
- Therefore I could not implement a policy to have Internet access if I did not reach my gateway.
So you can not apply policies for communication (allow and deny services) between Vlans.
Note: This same scenario I have it implemented in another firewall other than Endian and it works for me, what do I lack?
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com