vlan

baudetd

hello

I have a usg20 vpn,

I am trying to make lan1 (p5,p6) hermetic to lan2 (p3)

I don't want my devices on lan2 to be able to communicate with lan1

how can we do ?

Zyxel_James

Hello @baudetd,

Welcome to Zyxel community.

As @PeterUK suggested, please go to Configuration > Security Policy > Policy Control, and edit LAN2_Outgoing policy, change the "To:" option to from Any to WAN. This change will allow the LAN2 to communicate with the internet and not other internal interfaces.

Thank you.

James

PeterUK

Ok you mean lan2 (p4) then you need to make sure policy control from LAN2 is set to WAN not any.

Zyxel_James

Hello @baudetd,

Welcome to Zyxel community.

As @PeterUK suggested, please go to Configuration > Security Policy > Policy Control, and edit LAN2_Outgoing policy, change the "To:" option to from Any to WAN. This change will allow the LAN2 to communicate with the internet and not other internal interfaces.

Thank you.

James

baudetd

hi,
ok it's good !


can you tell me more about the différent pages (,is there a doc?

 how could you also limit the flow on lan2 ?




 version firmware is 4.35 , it's time to update!

Zyxel_James

Hello @baudetd,

Do you mean BWM(Bandwidth Management)?

Please go to Configuration > BWM, enable BWM and create a profile for LAN2 interface. Select lan2 as Incoming Interface and LAN2_subnet as Source, then customize the limitation such as bandwidth Shaping.

You may refer to our knowledge base articles or handbook page 788 for more.

https://kb.zyxel.com/KB/searchArticle!gwsViewDetail.action?articleOid=014134&lang=EN

https://kb.zyxel.com/KB/searchArticle!gwsViewDetail.action?articleOid=015522&lang=EN

https://download.zyxel.com/USG20-VPN/handbook/USG20-VPN_ZLD5.31_Handbook.pdf

James