Hello everyone,
I have two VLANS configured. I would like to allow clients from one VLAN to only be able to access one machine on a different VLAN. I don't want clients to be able to get to anyother IP on that network. Right now both VLANs can reach all clients on the other's VLAN.
I am new to firewall filters and I know this is wrong, but this is what I came up with so far:
set family inet filter BLOCK term TERM1 from source-address 192.168.10.0/24
set family inet filter BLOCK term TERM1 from destination-address 192.168.11.5/24
set family inet filter BLOCK term TERM1 then accept
set family inet filter BLOCK term TERM2 from source-address 192.168.10.0/24
set family inet filter BLOCK term TERM2 from destination-address 192.168.11.0/24
set family inet filter BLOCK term TERM2 then block
set family inet filter BLOCKI term TERM3 then accept
Thanks for your help.