01-05-2019 02:10 AM - edited 01-05-2019 02:13 AM
I need some help please,
I have the following networks
1. Main Network - 192.168.1.0/24 - This gives IP's to all my Unifi devices as well company PC's etc
2. VOIP Phones - 192.168.30.0/24 - This gives correct IP's to all my VOIP phones and I have specified VLAN 30 here
3. Camera DVR - 192.168.40.0/24 - I have only the DVR conencted as 192.168.40.10 and have specified VLAN 40 here
What I want to do is block everybody from each other, only whtin the same network can access necessary PC's etc.
This works if I use Option2 "Block all vLans to one another" https://help.ubnt.com/hc/en-us/articles/115010254227
But now I have a PC with IP 192.168.30.200, it has a network cable going from the PC to the VOIP phone 192.168.30.100 becase the phone does allow network etc. to passthrough, so its like a switch, from the PC I want to access 192.168.40.10 as well any necessary PC's etc on 192.168.1.0/24 network
By playing around qith different firewall rules on the LAN_IN I have managed to get 192.168.30.200 to connect to 192.168.40.10 and nobody else can access the VOIP network, however I just cannot seem to get 192.168.30.200 to access the main network specifically 192.168.1.51
I have since removed all firweall rules so we can continue to work for now, currently anybody can access anybody across networks.
Could somebody assist me here please.
I have a
USG Router - 192.168.1.1 with Firmware 188.8.131.5246617
Unifi Switch 8 POE-150W with Firmware 184.108.40.20636
Unifi Switch 24 with Firmware 220.127.116.1136