Cotchet wrote

Hello,

 

I have 2 VLANs (VLAN 10 and VLAN 20).
I have a switch ACL rule that blocks communication from 20 to 10.
And I'm adding some rules so that 20 can still access some of 10's resources.

 

So far, so good.

 

Except if the resource is a Synology or a printer (Canon).

If I enter the address of a Synology in my ip group, I can't access it. The ping doesn't work either.
The same goes for CANON printers.

 

If I enter the address of a PC, of my controller or anything else, it works.

Do you have any idea what the problem is?

 

 

Regards

Hi @Cotchet 

Switch ACL is not stateful, so you need to create bidirectional permit rules. For Synology or printers, ensure you configure the gateway and subnet is within the VLAN interface.

If rather, please share some screenshots of the VLAN setting and ACL rules for further analysis.