On Mon, 07 Feb 2005 20:54:40 +0100, Tenchi <tenchi at intergga dot ch> wrote:
> I bought a 24port tag based vlan switch to be able to control every
> ports access to each other and to the internet. Say I set up 20 vlans
> (each with a different subnet) and I want to let them only connect to
> the internet...
> What I'd need is a "allow TCP/UDP from VLANx to WAN" rule. But since
> this doesn't seem to exist I'd have to add 19 rules to each vlan to
> block access to the others and one rule to allow all other TCP/UDP !?
> Why isn't there a WAN in the destination list?
I have only one subnet that I want to limit to WAN access only, but
I've wondered the same thing. It would certainly be a more intuitive
way to set it up.