Ruijie Community

Title: Question regarding guest network and security [Print this page]
Author: kartografu    Time: 2025-3-20 15:28
Title: Question regarding guest network and security
Hello everyone, maybe someone has encountered such a problem. There is a main network, let's say 192.168.80.1-254. On vlan1, and so I create a guest network 192.168.40.1-254 on vlan14 and the guest network shouldn't see anything, but there is a problem: guests don't see each other, which is good, but when I enter 192.168.40.1 from the guest network, I get to the router admin panel, and when I do an IP scan, I see the router. Has anyone encountered this and this is a very serious security hole. This is the first time I've encountered this.

Author: v-songruiqi@rui    Time: 2025-3-20 16:11
Hi, i see your problem, you can configure ACL to prevent client access from other vlan. You can tell us your device model, we will find the configuration guide for you.
Author: kartografu@gmai    Time: 2025-3-20 17:42
Edited by kartografu at 2025-3-21 02:21

GTAC-Rachel replied at 2025-3-20 16:11
Hi, i see your problem, you can configure ACL to prevent client access from other vlan. You can tell ...
the thing is that I'm not talking about the working network, I'm talking about the guest network and the guest network which is on 192.168.40.1 and then you go to that IP and it sees the router on it, although the router is in the main network which is in a different pool, the working one

I'll give you an example right now. I have a main network and a guest network, I'll show you the screenshots.





and so, finding myself in the guest network, I enter 192.168.177.1 and getting to the router, this is nonsense, this shouldn't happen, my main network is different

here is a screenshot from the guest network as you can see in the guest network









Author: kartografu@gmai    Time: 2025-3-22 17:13
GTAC-Rachel replied at 2025-3-20 16:11
Hi, i see your problem, you can configure ACL to prevent client access from other vlan. You can tell ...

I realized that no one needs me, I decided to support ruijie through engineers and for now I explained and showed clearly here is an example screenshot of what needs to be done for the guest network so that users do not see the router, this is in the firewall







Welcome to Ruijie Community (https://community.ruijienetworks.com/) Powered by Discuz! X3.2