This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
advanced-access [2023/06/05 00:25] – [LAN Access] hogwild | advanced-access [2023/09/12 17:16] – [LAN Access Notes] -add note that table entries only permit traffic in one direction hogwild | ||
---|---|---|---|
Line 5: | Line 5: | ||
\\ | \\ | ||
- | For example, let' | + | For example, let' |
+ | |||
+ | If you want devices | ||
+ | |||
+ | \\ | ||
{{: | {{: | ||
Line 19: | Line 23: | ||
**Dst Address: **(optional) narrows the rule to a specific IP address or set of addresses within the Dst interface. | **Dst Address: **(optional) narrows the rule to a specific IP address or set of addresses within the Dst interface. | ||
- | **Description: | + | **Description: |
\\ | \\ | ||
- | \\\\ | + | \\ |
Line 29: | Line 33: | ||
Regardless of LAN Access rules, by default a LANx device is able to reach (e.g. ping) all the router' | Regardless of LAN Access rules, by default a LANx device is able to reach (e.g. ping) all the router' | ||
+ | |||
+ | All entries in the LAN Access table are one-way only. So, if you want hosts on LAN0 to be able to communicate with hosts on LAN1, | ||
+ | you must create have entries in the table to achieve that. One allowing traffic from LAN0 to LAN1 and another allowing traffic from LAN1 to LAN0. | ||
+ | |||
+ | LAN Access is an IP-level access control. This means that **all ports/ | ||
+ | |||
+ | \\ | ||
+ | |||
+ | \\ | ||