cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Can't setup SSID layer 3 firewall to deny any Local LAN except printer

New here

Can't setup SSID layer 3 firewall to deny any Local LAN except printer

I'm trying to setup our wireless network so that no Local LAN traffic is allowed except for our printer.

 

I thought that setting Local LAN to Deny and adding a rule with the printer IP would do the trick ... but it doesn't allow traffic to the printer this way at all 😕

 

Is there some way of achieving what I want?

 

Screenshot 2019-11-05 at 10.05.28.png

 

3 REPLIES 3
cmr
A model citizen

Re: Can't setup SSID layer 3 firewall to deny any Local LAN except printer

If you put the printer on a different VLAN/subnet you could deny traffic to the existing subnet and allow the new one.  That would stop clients on the wireless talking to each other so not sure if that is acceptable for you?

Building a reputation

Re: Can't setup SSID layer 3 firewall to deny any Local LAN except printer

Your config seems correct.  Unless some group policy is overriding that policy it should work.

Kind of a big deal

Re: Can't setup SSID layer 3 firewall to deny any Local LAN except printer

As others had said, the config is correct.  Perhaps whatever you are using is not using IP unicast to talk to the printer.  Perhaps it is trying to do a multicast discovery or something.

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.