Unable to access Vlan network with Switch ACL

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Unable to access Vlan network with Switch ACL

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Unable to access Vlan network with Switch ACL
Unable to access Vlan network with Switch ACL
2023-10-07 22:52:24 - last edited 2023-10-07 22:54:33

I am just trying to set up a simple ACL for Lan to access all Vlans and have vlans block access to LAN but it is not working. Once I enable the ACL block servers I loose connection from my lan to the Vlan I want to access. Here are some screen shots of my settings and hardware. What am I doing wrong?

 

Am i correct to think I cant block all because what im trying to do from the LAN example RDP to a computer on the Vlan?

 

  0      
  0      
#1
Options
9 Reply
Re:Unable to access Vlan network with Switch ACL
2023-10-08 02:07:37

  @pwnjuice I guess it may be caused by improper VLAN configuration, you can provide a screenshot of the VLAN configuration in the post.

  0  
  0  
#2
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-08 05:08:12

  @DIDADI 

 

Do you main this?

 

  0  
  0  
#3
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-08 06:17:17

  @pwnjuice 

instead of trying the switch acl, have you tried the gateway acl? 

direction of two entries are unidirectional, right? not bi-directional?

think you should not use switch acl since it is not capable of being stateful.

ScReW yOu gUyS. I aM GOinG hoMe. —————————————————————— For heaven's sake, can you write and describe your issue based on plain fact, common logic and a methodologic approach? Appreciate it.
  0  
  0  
#4
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-09 14:30:44 - last edited 2023-10-09 14:36:34

  @Tedd404 

 

This is how I have it setup and working with RDP but I have to uncheck TCP for it to work. idealy i dont want server vlan to have any access to Lan but I want Lan to have full access to server vlan. So you saying set this up on Gateway ACL and not switch?

 

 Not sure if Omada does the same as PFsense but I moved the Admin to the top because PFsense runs rules from top to bottom but that did not work until i unblocked tcp.

 

 

This is the Admin Rule

 

 

Index

  0  
  0  
#5
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-10 01:07:16

  @pwnjuice 

use switch acl as it is a stateful acl. 

ScReW yOu gUyS. I aM GOinG hoMe. —————————————————————— For heaven's sake, can you write and describe your issue based on plain fact, common logic and a methodologic approach? Appreciate it.
  0  
  0  
#6
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-10 22:35:35

  @Tedd404 

 

But you just told me above

"

instead of trying the switch acl, have you tried the gateway acl? 

direction of two entries are unidirectional, right? not bi-directional?

think you should not use switch acl since it is not capable of being stateful.

"

 

  0  
  0  
#7
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-11 01:15:24

  @pwnjuice 

pwnjuice wrote

  @Tedd404 

 

But you just told me above

"

instead of trying the switch acl, have you tried the gateway acl? 

direction of two entries are unidirectional, right? not bi-directional?

think you should not use switch acl since it is not capable of being stateful.

"

 

i made a typo. i was gonna say router acl. my stupid hands don't follow my mind. you need stateful acl, which is the router acl. 

my stupid hands.. angry GW ACL!! not the switch!! 

 

GW ACL should fix it instantly. 

ScReW yOu gUyS. I aM GOinG hoMe. —————————————————————— For heaven's sake, can you write and describe your issue based on plain fact, common logic and a methodologic approach? Appreciate it.
  0  
  0  
#8
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-11 18:53:14

  @Tedd404 

 

Ok so move all my rules to the gateway ACL from the switch or just the Admin access?

  0  
  0  
#9
Options
Re:Unable to access Vlan network with Switch ACL
2023-10-18 00:50:05
Thanks I sat down today and got it working. Tedd is awesome!
  0  
  0  
#10
Options