Separate 2 LANs from each other Home Page › Forums › Network Management › ZeroShell › Separate 2 LANs from each other This topic contains 1 reply, has 0 voices, and was last updated by mcTheo 3 years, 5 months ago. Viewing 3 posts - 1 through 3 (of 3 total) Author Posts October 23, 2015 at 11:15 am #44413 mcTheoMember Hello, I’m new to Zeroshell and I want to configure the following: WAN1 (DSL-Router): 192.168.0.1 WAN2 (DSL-Router): 192.168.1.1 LAN1 and LAN2 should be separated from each other. Both networks should connect to the internet over WAN1 and WAN2. My current configuration is this: ETH00: 192.168.0.250 ETH01: 192.168.1.250 ETH02: 192.168.2.250 (guest network) Net Balancer: DEFAULT GATEWAY 192.168.0.1 1 Disabled 0 WAN1 192.168.0.1 1 Active 0 WAN2 192.168.1.1 1 Active 0 NAT Enabled: ETH00 ETH01 EHT02 Both LAN have working internet access. Now I want to separate the networks from each other. At the moment I can ping hosts from one network to the other and the same from the other direction. I think I need some firewall rules. I tried to drop packets from “Source IP” or with Input ETH02, but I couldn’t connect to the internet from this network anymore. Can someone give me some suggestions or help how I must activate the firewall rules to build some kind of “guest network” for ETH02? Thank you. October 25, 2015 at 3:15 pm #53933 igorkMember Try create Firewall rule where you specify Input as ETH00 and output as ETH01 at the same time. Also, create rule and specify Input as ETH01 and output as ETH00 at the same time. I did not try it, but I think it should work. November 10, 2015 at 12:12 pm #53934 reaperzMember Yes, just add firewall rules. I confirm, I have it working that way. I got 2 internal networks: corporate LAN and public WIFI. isolated from each other. Author Posts Viewing 3 posts - 1 through 3 (of 3 total) You must be logged in to reply to this topic.