Readers will learn how to configure the Port Isolation feature on an EdgeSwitch (ES) or EdgeSwitch X (ES-X).
NOTES & REQUIREMENTS:
Applicable to the latest firmware on all EdgeSwitch (ES) models and EdgeSwitch X (ES-X) models. Please see the Related Articles below for more information.
Devices and accessories used in this article:
Configuring the Port Isolation Feature
The EdgeSwitch is providing connectivity between three clients in the same VLAN. The Port Isolation feature can be used to limit access.
In the example diagram above, three clients (Host 1, Host 2 and the Webserver) are directly connected to the EdgeSwitch. The clients are able to communicate with each other because all ports (1, 4 and 10) are set as Untagged (U) for the same VLAN (VLAN1 in this example). The Port Isolation is used to limit access between clients by placing them in the same isolated port group. If port 1 and port 4 are both configured as isolated ports, then the clients connected to these ports will not be able to communicate with each other. They will still be able to communicate with the Webserver as port 10 is not isolated.
Follow the steps below to block communication between Host 1 and Host 2 by enabling the Port Isolation feature on the connected ports:
GUI: Access the EdgeSwitch Web UI.
1. Navigate to the Dashboard tab and select port 1 and port 4.
2. Access the advanced port settings by clicking on the Configure button.
3. Check the Isolate port option and save the settings.
After the change, Host 1 and Host 2 using the 192.168.1.51 and 192.168.1.52 addresses will no longer be able to communicate (even though they are located in the same VLAN). The Webserver at 192.168.1.10 can still communicate with both hosts.