8333 questions

9805 answers

15587 comments

13966 members

0 votes
24 views 0 comments
by

Hi

I have a setting where three pcs are connected to the RUT955 (firmware version RUT9_R_00.07.00.2.).

I want to have a setting were those three clients are seperated from each other (and only can communicate when they are connected to VPN )

My problem is, that they are seeing each other from the beginning.

They are in different subnetworks:

192.168.5.1
192.168.6.1
192.168.7.1 and have a networkmask in the wired settings with 255.255.255.0

When connected to the RUT955 they can ping each other.

How can I seperate them?

As a try I changed the IP addresses of two clients to
192.168.5.1
192.168.5.2
and I tried to insert a Firewall Zone rule like this:

where I tried both all option with rejecting and dropping, hoping I could manage this way to prevent them to see each other when I put them in 5.x ranges.

But it didn't resulted in any different behavior.


Could you please help me to seperate my clients some how?

1 Answer

0 votes
ago by

Hello

Thanks for contacting TELTONIKA | Crowd-support forum. 

It’s possible to separate your client by adding a traffic rule.

With Traffic rules, you can filter traffic moving through the device based on IP address, Network segment, Mac address, Zones, Protocol, Port.

Enter in your router’s WebUI, go to Network > Firewall > Traffic Rules and scroll down to the bottom of page, there’s a section for ADD NEW INSTANCE, select Add new forward rule, source zone = lan and destination zone = lan.

The example below would not permit the devices in the network 192.168.20.0/24 to communicate with devices in the network 192.168.30.0/24 

If you want to block the communication from the other sense, you have to add new rule, just changing the network segment.

Should you need any additional information please let us know.

Best Regards