Hi guys
i have am a beginner in networking, i apologize if my question looks confusing.
i have setup 3 vlan,
vlan 200 (for staff) 192.168.10.0/24
vlan 300 (for servers) 192.168.11.0/24
vlan 400 (for guest ) 192.168.20.0/24
i used accesslist to limit vlan 400 guest user from accessing to internal network.
i have a printer in vlan 200 ip address 192.168.10.120/32
i would like guest in vlan 400 to access the printer, so i added another line into my accesslist
my question is that is it a security flaw to allow guest to access printer in the internal network ?
i have am a beginner in networking, i apologize if my question looks confusing.
i have setup 3 vlan,
vlan 200 (for staff) 192.168.10.0/24
vlan 300 (for servers) 192.168.11.0/24
vlan 400 (for guest ) 192.168.20.0/24
i used accesslist to limit vlan 400 guest user from accessing to internal network.
ip routing
ip dhcp pool guestwireless
network 192.168.20.0 255.255.255.0
default-router 192.168.20.1
ip access-list extended guestwireless
permit udp any eq bootpc any eq bootps
deny ip any any
i have a printer in vlan 200 ip address 192.168.10.120/32
i would like guest in vlan 400 to access the printer, so i added another line into my accesslist
ip access-list extended guestwireless
permit udp any eq bootpc any eq bootps
permit ip 192.168.20.0 0.0.0.255 host 192.168.10.120
deny ip any any
my question is that is it a security flaw to allow guest to access printer in the internal network ?
Last edited: