ACL Filtering in TLSG2428P and OC 200

ACL Filtering in TLSG2428P and OC 200

ACL Filtering in TLSG2428P and OC 200
ACL Filtering in TLSG2428P and OC 200
2 weeks ago - last edited 2 weeks ago
Model: TL-SG2428P  
Hardware Version: V1
Firmware Version:

I have Mutiple portal for different users and the SSID is open so anyone can connet but they have to pass the Portal auththication to access the internet.. so that i have notice is that when a device connect to anyof the SSID it redirectis to the admin ip which is the controller ip in the url.. so now if i apply ACL filterring then will it effect the portal opeing page ? how to correctly setup the ACL Filtering so that no other user in the network Vlan or in SSID cannot access the any device ip but can acceess the internet

  0      
  0      
#1
Options
1 Accepted Solution
Re:ACL Filtering in TLSG2428P and OC 200-Solution
2 weeks ago - last edited 2 weeks ago

Hi @A_Mansoor 

Thanks for posting in our business forum.

A_Mansoor wrote

  @Clive_A 

so how do i prevent user to acess my router , controller switch ip address ? 

Gateway ACL has a block to the gateway management page. Why not use that?

 

If you are not using the Omada gateway, you should consider the guide from your vendor.

 

Anyway, based on the SW ACL, you should filter the related ports but exclude the portal ports. So you can block access from the devices to the router and controller web.

SSID should set up the Guest Network to prevent local access.

Computers that are wired should set the network as a public network profile to prevent local access.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  1  
  1  
#4
Options
5 Reply
Re:ACL Filtering in TLSG2428P and OC 200
2 weeks ago - last edited 2 weeks ago

Hi @A_Mansoor 

Thanks for posting in our business forum.

A_Mansoor wrote

I have Mutiple portal for different users and the SSID is open so anyone can connet but they have to pass the Portal auththication to access the internet.. so that i have notice is that when a device connect to anyof the SSID it redirectis to the admin ip which is the controller ip in the url.. so now if i apply ACL filterring then will it effect the portal opeing page ? how to correctly setup the ACL Filtering so that no other user in the network Vlan or in SSID cannot access the any device ip but can acceess the internet

What you asked contradicts to portal works.

It will affect the portal page.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#2
Options
Re:ACL Filtering in TLSG2428P and OC 200
2 weeks ago

  @Clive_A 

so how do i prevent user to acess my router , controller switch ip address ? 

  0  
  0  
#3
Options
Re:ACL Filtering in TLSG2428P and OC 200-Solution
2 weeks ago - last edited 2 weeks ago

Hi @A_Mansoor 

Thanks for posting in our business forum.

A_Mansoor wrote

  @Clive_A 

so how do i prevent user to acess my router , controller switch ip address ? 

Gateway ACL has a block to the gateway management page. Why not use that?

 

If you are not using the Omada gateway, you should consider the guide from your vendor.

 

Anyway, based on the SW ACL, you should filter the related ports but exclude the portal ports. So you can block access from the devices to the router and controller web.

SSID should set up the Guest Network to prevent local access.

Computers that are wired should set the network as a public network profile to prevent local access.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  1  
  1  
#4
Options
Re:ACL Filtering in TLSG2428P and OC 200
2 weeks ago

  @A_Mansoor 

by doing this it is blocking my portal landing page from where the user have to connect to the internet via local user id password 

  0  
  0  
#5
Options
Re:ACL Filtering in TLSG2428P and OC 200
2 weeks ago

Hi @A_Mansoor 

Thanks for posting in our business forum.

A_Mansoor wrote

  @A_Mansoor 

by doing this it is blocking my portal landing page from where the user have to connect to the internet via local user id password 

Unselect ICMP in the protocols.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#6
Options