VLAN routing firewall rules

barry.gmoney · January 12, 2025, 1:44pm

Alta newbie here. I’d like to restrict IOT traffic requests to the default VLAN but have the ability for the default VLAN device to request/control a IOT device and get the communication. back. Does any one have a sample on how to set that up on the Alta Route 10?

Would love to see something like this YouTube video.

Quackers · January 12, 2025, 2:20pm

Setup 2 firewall rules in the order:

ALLOW Secure VLAN to IOT VLAN
DROP IoT VLAN to Secure VLAN

This allows anything from 10.10.10.0/8 (secure / trusted vlans) to Iot VLAN on 192.168.20.1/26 subnet

This rule stops IoT VLAN communicating with the secure/Trusted subnets

Beaker · January 12, 2025, 5:14pm

Isolation option should be set to off by default, but in any event this was set to on, ensure the slider is set to “off” for those respective vlans.

@anon77415413 referenced this concern not too long ago.

https://forum.alta.inc/t/network-isolated-question/3922

ebuckland81 · February 1, 2025, 4:59pm

How is the unspecified Protocols interpreted. All/Any or Nothing?

jack · February 1, 2025, 6:18pm

As of now, not specifying a protocol is equivalent to specifying UDP and TCP.. That’s a bug though and presumably in the next release will instead be equivalent to any.

ebuckland81 · February 1, 2025, 6:40pm

Ah, ok.