Hello Guys,
I'm a proud owner of a Edgerouter Pro since this week so far everything go's wonderfull.
Made 25 vlans with all having there own DHCP server ip ranges 10.10.*.*/24
Now I'm trying to block the traffic by the firewall from vlan to vlan....
So I made a new rule set called VLAN_LOCAL
I added all the vlan interfaces to interface with the option local
As first rule I said action drop source 10.10.0.0/16 destination 10.10.0.0/16
then as second rule I did action Accept Destination 0.0.0.0/0
as firewalls always follows the rule order it should first check if the adres is one of the vlan adresses if so block else go to what ever address there is in....
Still after doing this iam still able to ping from vlan to vlan.....
I did read some other topics about disabling inter-vlan traffic but so far no real luck.