ATP700 + 2 WAX510D: from wifi cannot reach device on LAN

Antares3000
Antares3000 Posts: 19  Freshman Member
I've a ATP700 configured with a LAN1 setted on VLAN1. I configured a SSID on a TUNNEL ON VLAN1. If i connect to Wifi, i get the right IP address (192.168.50.53) through DHCP of LAN1 (192.168.50.1) however i cannot reach other devices on LAN (for example 192.168.50.3). I cannot uderstand where is the problem. I think there is a filter on WiFi that don't let me work on devices on the LAN. But where?

Answers

  • Zyxel_Vic
    Zyxel_Vic Posts: 242  Zyxel Employee
    edited November 24
    Had you enabled "Layer2 isolation" function?

  • alexey
    alexey Posts: 131  Ally Member
    Hi @Antares3000
    Have same issue with internal Wi-Fi on USG20W-VPN.
    Clients on Wi-fi don't connect to wired clients in same Lan
    Helps Security Policy to allow any from LAN1 to LAN1.
    @Zyxel_Vic
    In my scenario Layer2 isolation was disabled
  • Zyxel_Vic
    Zyxel_Vic Posts: 242  Zyxel Employee
    Hi @alexey
    Please check if the "Enable Intra-BSS Traffic blocking" function is turned on, it should be turned off.

  • Antares3000
    Antares3000 Posts: 19  Freshman Member
    Layer 2 isolation already disabled
    Intra-BSS traffic blocking already disabled

    Any other idea to try?
  • Antares3000
    Antares3000 Posts: 19  Freshman Member
    Lan to Lan allow policy didn't work too. 
  • Zyxel_Vic
    Zyxel_Vic Posts: 242  Zyxel Employee
    Hi @Antares3000
    If both are disabled, supposedly the traffic should not be blocked by the device. Is this symptom only exist when devices connecting to wifi and wired devices doesn't have certain issue? Moreover, can you describe further regarding to " I configured a SSID on a TUNNEL ON VLAN1" and draw me the topology to understand more clear?
    Meanwhile, can you give me your configuration file in private message so that we can help to check if any kind of configuration issue exists.
  • Antares3000
    Antares3000 Posts: 19  Freshman Member
    If you want we can plan a connection to my pc and you can connect directly to the devices...what do you think about it?

Security Highlight