What Action/Destination type Access rule can I apply to our Guest network to allow access to the internet but to deny access to other machines on the LAN?We have an Aruba 305 AP on 192.168.0.102 and router on 192.168.0.1
You can configure an Aruba ACL to deny access to your internal subnets and permit anything else. The ordering of your ACL's are key, since traffic is matched from the top rule down.
Generally, the rule at the top would be your deny to internal networks then beneath this is the permit all to allow internet access.
https://www.arubanetworks.com/techdocs/Instant_83_WebHelp/Content/Instant_UG/Roles_and_policies/FirewallConf.htm
do you mean like:1. Action: "Deny" Destination: "to a network" IP: "192.168.0.0" subnet: "255.255.255.0"2. Action: "Allow" Destination: "to all destinations"
That is correct Here's an example from before.
If you wanted to take it further and deny clients on the same SSID/VLAN from talking to each other (e,g isolate the clients) you can configure Deny inter user bridging.
https://www.arubanetworks.com/techdocs/Instant_83_WebHelp/Content/Instant_UG/WLAN_SSID_conf/ConfiguringWLANPro.htm
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.