Results 1 to 5 of 5
  1. #1
    Untanglit
    Join Date
    Oct 2016
    Posts
    22

    Default Restrict traffic between internal Lans

    Hi all,

    I have 3 internal Vlans , and i need to restrict traffic between them.

    In previous versions of untangle I could create filtering rules but in the latest version that does not work, it does not work to create rules in the firewall to block traffic between interfaces.

    How can I do it in the latest version of untangle?

    thanks

  2. #2
    Master Untangler
    Join Date
    May 2010
    Location
    Texas, USA
    Posts
    643

    Default

    ???

    If Untangle is doing the routing, firewall rules can definitely restrict traffic between VLANs... As long as the assets aren't already bypassed, of course. And keep in mind firewall rules are TCP/UDP only - so ping would still work (it's ICMP).

    Filter rules also still work...

    Maybe you could post what your rules look like so we can see if they are built incorrectly?

  3. #3
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    22,643

    Default

    Yeah we need more data, because filter rules are certainly still there and they still work. Personally I use firewall rules, I don't care that ICMP still works, I want the logs the module provides.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  4. #4
    Master Untangler
    Join Date
    May 2010
    Location
    Texas, USA
    Posts
    643

    Default

    I prefer to do it that way, too. I like having the logs.

  5. #5
    Master Untangler
    Join Date
    Mar 2017
    Posts
    180

    Default

    Filter rules do log. You can see them in Network -> Blocked Sessions with the filter prefix filter_blocked

    Of course if you enable logging of blocked sessions in Config->Network->Advanced
    Happily untangling the average household: 20-25 active devices, 13 racks, each with 3 - 8 apps, OpenVPN 1 in, IPSec 1 road-warrior, TunnelVPN 3 out, IPS on. Spice it up with VLANs and mix with tons of rules.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2