Community discussions

MikroTik App
 
kristphr
just joined
Topic Author
Posts: 2
Joined: Thu Mar 11, 2021 9:51 am

Blocking Subnets from talking to each other

Sun Aug 14, 2022 9:32 pm

Hello, I'm trying to figure out if there's an easier way of blocking subnets from talking to other subnets.

Ex:
  • Client 1: 172.16.5.1
  • Client 2: 172.16.6.1

I have about 33 vlans currently configured on the mikrotik ranging from 172.16.1.1 - 172.16.33.1, with various address, but I'm able to ping devices outside of my subnet. I understand the default gateway being pingable, but is there anyway I'm able to have these subnets isolated, and not able to ping clients in different subnets?

Thanks.
 
User avatar
BartoszP
Forum Guru
Forum Guru
Posts: 2865
Joined: Mon Jun 16, 2014 1:13 pm
Location: Poland

Re: Blocking Subnets from talking to each other

Sun Aug 14, 2022 9:41 pm

 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19107
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Blocking Subnets from talking to each other

Mon Aug 15, 2022 3:19 am

If the last rule in your forward chain is
add action=drop chain=forward,

then any traffic you dont state to be allowed above this rule will be blocked including all VLAN to VLAN Traffic.
Notice I said traffic. You cannot prevent pinging of a Ip address of the subnet but thats not accessing any data, users, or servers etc.......

Who is online

Users browsing this forum: No registered users and 85 guests