Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 04 February 2023, 07:38:36 am

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14192 Posts in 4347 Topics by 6363 Members
Latest Member: ckoepf
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Policy implementation in VLANS
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Policy implementation in VLANS  (Read 3829 times)
Jr. Member
Offline Offline

Posts: 1

« on: Friday 25 August 2017, 03:43:17 am »

I have the following scenario:

I have an admninistrable switch where I define the following Vlans 10, 20.30 and assign them as follows:

Port 1 untagged vlan 10 - access type
Port 2 untagged vlan 20 - access type
Port 3 untagged vlan 30 - access type
Port 4 untagged vlan 1, tagged vlan 10, 20, 30 - trunk type

In endian version 3.2.2, I also defined the same vlans 10, 20, 30 in the part of - Network - Interfaces - Vlans

Eth0.10 - green zone
Eth0.20 - green zone
Eth0.30 - green zone

In Endian, in the network configuration part, assign the interface eth0.10 to IP in the green zone, which is the gateway for VLAN 10.

In the endian terminal at the command level assign:

- IP to the virtual eth0.20 interface, which is the gateway.
- IP to the virtual eth0.30 interface, which is the gateway.

Performing communication tests with the switch do the following:

First test:
- Device with IP connected to port 1 (vlan 10) -> I was able to ping gateway
- Applies policy in the areas of traffic between Internet to exit successfully.

Second test:
IP computer connected to port 2 (vlan 20) -> I could not ping the gateway
- Therefore I could not implement a policy to have Internet access if I did not reach my gateway.

So you can not apply policies for communication (allow and deny services) between Vlans.

Note:  This same scenario I have it implemented in another firewall other than Endian and it works for me, what do I lack?
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.039 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com