04-05-2017 03:36 PM
I'm currently using a VLAN-only network to connect a cable modem to the USG on another switch.
- VLAN-only network is set to only one port on each switch (cable modem port and USG WAN port).
- VLAN-only network is only used on specified ports, not on WLAN.
- LAN network is set on all other ports except the uplink / trunk ports.
- ALL is used only on the uplink / trunk ports.
I've read a lot about inter-VLAN routing in UniFi. I'm now under the impression that I also need to create firewall rules to prevent the networks from seeing each other, and that all inter-VLAN traffic is routed through the USG.
1) Using VLAN-only and the default LAN networks and setting them to specific ports as described above, do I need to put firewall rules in place to prevent inter-VLAN routing?
2) As described above, does the traffic going through the trunk get routed through the USG because there are two VLANs on the trunk? This would seem odd as normal VLAN tagging would not require a router.
07-29-2018 06:36 AM