Wired network client isolation

Installing and Using OpenWrt
1

Hello,

I know it is possible to easily setup Client Isolation via LuCi for WIFI clients. However, I could not figure out how to implement it on wired networks.

There are some discussions in this forum, but one of them utilizes a single VLAN for each client, which is not an ideal solution, in my opinion. In another thread the suggestion involves a RADIUS server, which makes things complicated on the client side, too.

How can I isolate clients on wired networks in such way it won't require any changes on the devices' side?

I already have VLANs configured for different groups of devices, and I would like to have some of these VLANs with client isolation.

I'm using OpenWRT 21, if this is relevant.

1 Like
2

You can’t. Except with the VLANs or RADIUS solutions you described, or firewalls on the individual client devices. Or if you get a managed switch that supports port isolation. But by nature, wired Ethernet cannot block connections between devices on the same subnet.

2 Likes
3

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.