I want to add three RJ45 sockets to an unmanaged switch. While the rest of the devices on the network are connected to each other I want to restrict access to the network to users on these 3 ports but allow them to use the Internet. Is there a device that I can use to do this or can it be configured via software/policy/permissions? The devices are on a workgroup, not a domain.
-
T-Mobile Home Internet: Revisiting 5G connectivity for the home after two years
-
Multi-million dollar Cheyenne supercomputer auction ends with $480,085 bid — buyer walked away with 8,064 Intel Xeon Broadwell CPUs, 313TB DDR4-2400 ECC RAM, and some water leaks
Accessing Internet but Blocking LAN through Unmanaged Switch
- Thread starter Vikesk
- Start date
If you have full control of the end machines via group policy and the users do not have admin control you can restrict what IP they can talk to.
Other than that you are going to need a managed switch and vlans to accomplish what you want. You can also do it via a feature on more advanced switches called private vlans or brute force traffic filters if you are willing to key those in.
Other than that you are going to need a managed switch and vlans to accomplish what you want. You can also do it via a feature on more advanced switches called private vlans or brute force traffic filters if you are willing to key those in.
Tina_Jiang
Prominent
- Feb 24, 2017
- 10
- 0
- 520
I don't think you can do that. All internet access policies can only based on IP addresses, MAC addresses, or domain usernames. There is no way to limit internet via switch ports.
Vlans and layer 3 switches work for your problem except the requirement you added in a latter post of internet access. The one feature most layer 3 switches can not do it nat. A layer3 switch to not delay the traffic only supports features that do not change the data. Things like NAT and VPN modify the packets so you need a router.....this is really the main difference between a router and a layer3 switch.
Most consumer routers only support a single lan subnet. You need one that support multiple subnets which in most cases means it supports vlans. There are many lower end commercial routers that can do this but the cheapest way is to load third party firmware like dd-wrt on a consumer router that supports it.
When you have a router that supports vlans you can either also use switches that support vlans (simple layer 2) or you can connect different physical switches to different router ports and then only the router need to be special.
Most consumer routers only support a single lan subnet. You need one that support multiple subnets which in most cases means it supports vlans. There are many lower end commercial routers that can do this but the cheapest way is to load third party firmware like dd-wrt on a consumer router that supports it.
When you have a router that supports vlans you can either also use switches that support vlans (simple layer 2) or you can connect different physical switches to different router ports and then only the router need to be special.
The V2 version does support VLANS BUT requires a management program Provided by Netgear. The V3 Version of the Switch can use the same program but can also be access and managed with a web browser interface. The Web interface is much easier to use.
TRENDING THREADS
-
-
News Apple debuts M4 processor in new iPad Pros with 38 TOPS on neural engine- Started by Admin
- Replies: 76
-
News Firefox user loses 7,470 opened tabs saved over two years after they can’t restore browsing session
- Started by Admin
- Replies: 58
-
News Intel issues official statement on Core K-series crashes: stick to Intel's official power profiles
- Started by Admin
- Replies: 29
-
Question Sapphire RX 5700 XT Nitro+ is not working in main PCIe slot ?
- Started by digows
- Replies: 24
Facebook
Twitter
Instagram