Layer 2 Isolation
Layer-2 isolation is used to prevent connected devices from communicating with each other in the Zyxel Device’s local network(s), except for the devices in the white list, when layer-2 isolation is enabled on the Zyxel Device and the local interface(s).
Note: The security policy control must be enabled before you can use layer-2 isolation.
Layer-2 Isolation General Screen
This screen allows you to enable Layer-2 isolation on the Zyxel Device and specific internal interface(s).
Label | Description |
|---|---|
Enable Layer2 Isolation | Select this option to turn on the layer-2 isolation feature on the Zyxel Device.  You can enable this feature only when the security policy is enabled. |
Member List | The Available list displays the name(s) of the internal interface(s) on which you can enable layer-2 isolation. To enable layer-2 isolation on an interface, you can double-click a single entry to move it or use the [Shift] or [Ctrl] key to select multiple entries and click the right arrow button to add to the Member list. To remove an interface, select the name(s) in the Member list and click the left arrow button. |
Apply | Click Apply to save your changes back to the Zyxel Device. |
Reset | Click Reset to return the screen to its last-saved settings. |
White List Screen
IP addresses that are not listed in the white list are blocked from communicating with other devices in the layer-2-isolation-enabled internal interface(s) except for broadcast packets.
Label | Description |
|---|---|
Enable White List | Select this option to turn on the white list on the Zyxel Device. You can enable this feature only when the security policy is enabled. |
Add | Click this to add a new rule. |
Edit | Click this to edit the selected rule. |
Remove | Click this to remove the selected rule. |
Activate | To turn on an entry, select it and click Activate. |
Inactivate | To turn off an entry, select it and click Inactivate. |
# | This field is a sequential value, and it is not associated with a specific rule. |
Status | This icon is lit when the rule is active and dimmed when the rule is inactive. |
IP Address | This field displays the IP address of device that can be accessed by the devices connected to an internal interface on which layer-2 isolation is enabled. |
Description | This field displays the description for the IP address in this rule. |
Apply | Click Apply to save your changes back to the Zyxel Device. |
Reset | Click Reset to return the screen to its last-saved settings. |
Add/Edit White List Rule
This screen allows you to create a new rule in the white list or edit an existing one.
Note: You can configure up to 100 white list rules on the Zyxel Device.
Note: You need to know the IP address of each connected device that you want to allow to be accessed by other devices when layer-2 isolation is enabled.
Label | Description |
|---|---|
Enable | Select this option to turn on the rule. |
Host IP Address | Enter an IPv4 address associated with this rule. |
Description | Specify a description for the IP address associated with this rule. Enter up to 60 characters, spaces and underscores allowed. |
OK | Click OK to save your changes back to the Zyxel Device. |
Cancel | Click Cancel to exit this screen without saving your changes. |