Wireless Access

Reply
Occasional Contributor I

Allow Inter-User-Traffic for special ports/services

Hi,

 

I want to deny inter-user-traffic in general on controllers with some exceptions for a few special ports and services.

Is this possible? Or is it just 'all or nothing'?

I've already tried to create firewall rules from user to user, which was unfortunately not possible.

 

Many thanks.

Re: Allow Inter-User-Traffic for special ports/services

You can create this with firewall rules in your role(s).

 

You don't need to use user to user. You can specify your user network or create an alias for the user network then create a rule like so:

 

allowtcp 3389fromaliasusernetworktoaliasusernetwork
denyallfromaliasusernetworktoaliasusernetwork

In this example you should be able to see that tcp 3389 is allowed but everything else is denied.

 

Cheers
James

-------------------------------------------------------
-------------------@whereisjrw-------------------
------------------------blog-------------------------
ACCX #540 | ACMX #353 | ACDX #216
-----------Mobility First Expert #11----------
-------------------------------------------------------

If a reply adequately addresses your issue, please click on the "Accept as Solution" and "Give Kudos" button so this information can benefit other users via search.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: