News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Firewall/NAT
linktree Topic: Keep Two Networks Seperate
Pages: [1]
Topic: Keep Two Networks Seperate  (Read 1493 times)
« on: March 20, 2010, 22:52:37 »
justinp *
Posts: 5
Good Evening...

My configuration is as follows -- Cisco switch connected directly to my MW 1.3 router, I have 2 VLAN's (Network-Guest and Network-Private). I am trying to find a way to keep the two VLAN's completely separate... Do I need to create rules on each VLAN interface to block the other interface, or is there a simple way?

The goal is, objects on the Guest network cannot talk to objects on the Private Network and vice-versa.

Justin
« Reply #1 on: March 21, 2010, 12:48:04 »
p0rkjello *
Posts: 12
It would be set in the firewall rules.

For VLAN1 outbound add destination NOT VLAN2 and for VLAN2 outbound add destination NOT VLAN1.

Link to an example in the MW docs. Not the same setup but will have the same effect.

http://doc.m0n0.ch/handbook-single/screens/firewall/rules/dmz-rule.png
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines