Access Policy local subnets

Bazz_Tars · ‎2021-11-10

Hi

Need clarification please

I have the following local network LAN ports configured on a SMB 1530 and managed via smart 1 Cloud

- no vlan - no bridge , running as separate networks

port 2 - 192.168.8.254 /24

port 3 - 172.16.1.254 /24

port 4 172.16.2.254 /24

For these LAN subnets to communicate with each other:

1. Do I need to create an allow Access control rules between the subnets

2. Since I am doing HIDE NAT on the those subnets do I then need to add a manual NAT keeping the original source IP address ?

I did some initial tests and seems I can route between those subnets without the above in place

Just need to know what is best practice

Thank you

PhoneBoy · ‎2021-11-12

Depends on this setting:

If you have it set to standard, it operates as it's working for you now.
If you have it set to strict, then you need to configure specific rules (both for access and NAT).

Bazz_Tars · ‎2021-11-14

Hi PhoneBoy

I am managing the 1530 R80.20 from Smart-1 Cloud so using the Access Policy from there
would the same still apply?

thank you

PhoneBoy · ‎2021-11-14

Is a similar screen accessible from the local appliance in that case?
I don’t have a centrally managed SMB appliance handy to check.

G_W_Albrecht · ‎2021-11-14

No - you will only see the tabs:

- Home
- Device
- Users & Objects
- Logs & Monitoring

So all other configuration is managed from Cloud Dashboard.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

the_rock · ‎2021-11-13

Set up brand new 1530 for customer recently, what phoneboy said is exactly right!

Are you a member of CheckMates?

Access Policy local subnets