@hidden0I very much appreciate you bringing that up in your design meeting. I feel that would be a very important feature to implement or else you would probably end up having to redo a lot of your rules if you implemented some down the road that should be at the top instead of at the bottom. I thought that might be the case, but didn't try creating the rules and then restarting the GX. I just recreated my additional rules and restarted the GX and now everything seems to be working as it should. I can ping 192.168.20.2 from both VLAN10 and VLAN30 I can ping 192.168.10.46 from both VLAN20 and VLAN30 I can ping 192.168.10.18 from VLAN30 I cannot ping any other devices on VLAN10 or VLAN20 from VLAN30 I cannot ping any other devices on VLAN10 or VLAN30 from VLAN20 Here are the additional rules I put in place before restarting the GX: Deny Work to Main deny any From 192.168.30.0/24 to 192.168.10.0/24 Deny Work to IoT deny any From 192.168.30.0/24 to 192.168.20.0/24 Deny IoT to Main deny any From 192.168.20.0/24 to 192.168.10.0/24 Deny IoT to Work deny any From 192.168.20.0/24 to 192.168.30.0/24 So I think we are good to go for now and I appreciate the clarification.
... View more
