07-20-2018 08:49 PM
Referencing the attached configuration, I have a USG, two Unifi managed switches, and a cloud key. How can I configure the controller such that a copier sitting on the HARDCOPY network is visible to a computer on the INTRANET network? All the while, preventing any computer on the HARDCOPY network from seeing any computer on the INTRANET network? I have using the latest firmware on all all equipement.
07-20-2018 09:23 PM
You will want to allow from INTRANET to HARDCOPY either the ports you need for your printing system or all traffic.
From HARDCOPY to INTRANET you will want to allow established and related then deny all. This will let the printers respond to requests from INTRANET but not be able to initiate a connection on their own.
These rules will go in the LAN-IN section of the USG firewall.
See these articles for more detail;
07-27-2018 09:07 AM
Thank you! I think I am almost there. However, the hostname of the printer on HARDCOPY is not resolving for computers on INTRANET. Any idea how to get that working?