Network Management

Hello.

I have an S2500 as my router and use S1500 network switches. I have several domain vlans setup and one wireless guest vlan. The guest vlan does not use the domains dhcp server for addresses, or DNS. The problem is that the machine names of the computers in the domain vlans can be seen using angry ip scanner from the guest vlan, and vice versa. Can someone suggest how I can prevent the guest vlan from seeing them? I assume it must be ARP.

Is the guest VLAN wired or wireless?

it is wireless


#AirheadsMobile

Are you blocking traffic to internal subnets?

the AP's do have an ip firewall and I have all of the subnets' traffic to, and from them, prevented. I even have inter-station traffic disabled.


#AirheadsMobile

Do you only want to block the name resolution or all of the traffic to the internal network?

 

You should be able to block the traffic on your gateway (Firewall / Router).

I apologize. I was mistaken. 

It turned out not to be ARP, as I was led to beleive.

The info that was coming across was from Reverse DNS. Turns out that I did have the DHCP server handing out DNS from an interal server.

I pointed the guest wvLan subnets to an external DNS provider and now the IP scanners pick up nothing.

I guess, it's amateur hour over here.

I really appreciate you taking the time to assist.