This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
advanced-access [2023/06/05 00:25] – [LAN Access] hogwild | advanced-access [2023/09/12 17:20] – [LAN Access Notes] -clarity on unidirectional nature of rule, formatting hogwild | ||
---|---|---|---|
Line 5: | Line 5: | ||
\\ | \\ | ||
- | For example, let' | + | For example, let' |
+ | |||
+ | If you want devices | ||
+ | |||
+ | \\ | ||
{{: | {{: | ||
Line 19: | Line 23: | ||
**Dst Address: **(optional) narrows the rule to a specific IP address or set of addresses within the Dst interface. | **Dst Address: **(optional) narrows the rule to a specific IP address or set of addresses within the Dst interface. | ||
- | **Description: | + | **Description: |
\\ | \\ | ||
- | \\\\ | + | \\ |
Line 29: | Line 33: | ||
Regardless of LAN Access rules, by default a LANx device is able to reach (e.g. ping) all the router' | Regardless of LAN Access rules, by default a LANx device is able to reach (e.g. ping) all the router' | ||
+ | |||
+ | All entries in LAN Access are one-way only. | ||
+ | For example, if you want hosts on LAN0 to be able to communicate with hosts on LAN1, | ||
+ | and hosts on LAN1 to be able to communicate with hosts on LAN0, you will need to have two entries in the table to achieve that. | ||
+ | |||
+ | LAN Access is an IP-level access control. | ||
+ | This means that **all ports/ | ||
+ | |||
+ | \\ | ||
+ | |||
+ | \\ | ||