NethServer Version: 8.7.2
Module: community
I’ve created rules to drop traffic to a VLAN if it originated from another VLAN on IPv4, but I’m not really sure how I would go about doing that for IPv6 addresses. As I see it, those come from WAN so if I create a rule for it and the ISP decides this block of v6 addresses changes for any reason, my firewall rules would no longer isolate them.
Hi @blackbox,
IMVHO detailing a bit more your current setup/scenario might be useful, at least for helping figuring something out a bit better.
Also… on which projecty you’re toying? NethSec?
Because… if it’s not leased from DHCP, and it’s not configured on all hosts on your vLANs… how they’re supposed to know each other vLAN if it’s not in routing table?
nethsec yes. I have a few vlans for isolating IOT and idiot roommate traffic. the netcsec pc comes between modem and my switch, where ports can be pinned to VLANs.