Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Norris
New Contributor

Block access to any IP in the same VLAN

Please guide me to block an IP 10.84.161.2 in the same vlan. I have created the rule as above but machines in the same vlan can still see each other. Please help me

Screenshot 2024-04-09 151425.png

 

2 Solutions
ozkanaltas
Valued Contributor III

Hello @Norris ,

 

If you use FortiSwitch or Software Switch on FortiGate you can use the block intra-vlan feature.

 

if you don't use FortiSwitch, there is no option except this. Because this is normal behavior for the same broadcast domain Traffic.

 

https://docs.fortinet.com/document/fortiswitch/7.4.2/fortilink-guide/801169/blocking-intra-vlan-traf....

 

 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW

View solution in original post

If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
Norris

2 REPLIES 2
ozkanaltas
Valued Contributor III

Hello @Norris ,

 

If you use FortiSwitch or Software Switch on FortiGate you can use the block intra-vlan feature.

 

if you don't use FortiSwitch, there is no option except this. Because this is normal behavior for the same broadcast domain Traffic.

 

https://docs.fortinet.com/document/fortiswitch/7.4.2/fortilink-guide/801169/blocking-intra-vlan-traf....

 

 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
Norris

Thanks so much

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors