?
Solved

SonicWALL VLAN traffic segretation

Posted on 2011-09-27
3
Medium Priority
?
877 Views
Last Modified: 2012-05-12
I have a SonicWALL NSA 2400.  WAN X1 is connected to the upstream provider, LAN X0 has two VLANs.  The VLANs are 2 and 3.  Devices on both VLANs can access the Internet.

However, devices on VLAN 2 can access devices on VLAN 3, and vice-versa.  I want to segregate the traffic so that devices on each VLAN can get to the Internet, but not pass traffic back and forth intra-VLAN.  How can this be achieved?
0
Comment
Question by:e2346437
  • 2
3 Comments
 
LVL 32

Expert Comment

by:aleghart
ID: 36713311
Firewall -- Access Rules -- LAN>LAN -- Add...

Action: Deny
Service: Any
Source: VLAN2
Destination VLAN3

But, this will only work if the SonicWall is the only router on the LAN, and the VLANs are coming in on separate interfaces.

If you're running VLANs already, before the traffic hits the SonicWall (you're using the same X0 interface, that means you have a routing switch for your LAN already?

In that case, you'd have to disallow inter-VLAN traffic on your core switch, not the internet gateway.

I can't test that, as my core router/switch is handling VLAN, not the SonicWall.
0
 

Accepted Solution

by:
e2346437 earned 0 total points
ID: 36923531
I found the answer to the problem.  Need to create a new zone, type public.  Make sure allow interface trust is checked, so that firewall rules are built automatically.  Place the interface into that zone and it won't be able to talk to the other interfaces but it will be allowed out to the Internet.
0
 

Author Closing Comment

by:e2346437
ID: 36947332
Found the answer.
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
There may be issues when you are trying to access Outlook or send & receive emails or due to Outlook crash which leads to corrupt or damaged PST file. To eliminate the corruption from your PST file, you need to repair the corrupt Outlook PST file. U…
Suggested Courses

593 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question