VM in DMZ Vlan unable to resolve DNS queries.

Started by meddyuk76, March 11, 2025, 10:34:08 PM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
March 13, 2025, 03:59:16 PM #15
Brilliant - thanks for everything and thanks for clarifying! You are correct, I don't want my DMZ to access my LAN or my Private Devices Vlan - I want to do the same with the Guest Wifi Vlan and IoT Devices Vlan......i'll get there in the end.

Would you recommend applying a rule to 'reject' anything with a destination of 'Private RCC Networks'? and place above all other rules?
March 14, 2025, 07:56:28 AM #16
Quote from: meddyuk76 on March 13, 2025, 03:59:16 PMWould you recommend applying a rule to 'reject' anything with a destination of 'Private RCC Networks'? and place above all other rules?
I don't know wha RCC Networks are, maybe you refer to RFC1918, private and not routable addresses?

But no, since the default are 'quick' rules. The first matched firewall rule is applied and no further rules are evaluated. You want that rule as the last rule in the list.

If you put it first then no other rule you create after it, e.g. matching a private IP (for example allow access for one DMZ server to the LAN net) would be evaluated.
Deciso DEC740
Print
Go Up Pages 1 2
User actions