Nebula security policy - Best practices to separate vlans
Options
Master Member
Hi all,
i've several vlans in my network:
i've several vlans in my network:
- Server
- Home
- SmartHome
- Outdoor
- Kids
- Voice
- Admin
- Management
- Guest
- LANParty
- Server has access to all vlans except for Management
- Home has access to Kids, Server-XY in Server, SmartHome
- SmartHome has access to Server-SmartHome in Server, Home
- Outdoor has access to to Server-SmartHome in Server
- Kids has access to Home, Server-XY in Server between 6am to 8pm
- Voice has access to Server-VoIP in Server
- Admin has access to all vlans
- Management has no access to another vlan
- Guest has no access to another vlan
- LANParty has no access to another vlan
What is the easiest way to handle the above scenario with security policy in Nebula?
There is a guest switch under Firewall -> Interfaces. Should I activate the guest switch for all vlans except Server and Admin and then add allow-rules?
Any other ideas? Thank you!
Any other ideas? Thank you!
0
All Replies
-
Hi
Can you share the network topology diagram with all equipments(firewall, AP, switch, VoIP, Server, other hosts, etc.) and their vlan ID?What is the purpose for the guest switch? What role does it play?If you can describe it more in detail and can help us to realize your environment more clearly.
Thanks.0
Zyxel Employee
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 75 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 889 Nebula FAQ
- 415 Security FAQ
- 231 Switch FAQ
- 202 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight
