Block traffic between two VLAN in one direction

Hi,

 

1. This rule applies only on TCP connections...
2. Rules assigned on Self IPs are only to secure access to the self IP. to filter routing between VLANs, enable it on Global context, Route Domain or virtual server.

AFM rule must drop the connection... if not, there may be a configuration issue (wrong network / net mask)

 

if AFM rule is enabled on Global context and action is drop, t may be dropped.

 

Can you make sure the default forward any any is marked to drop in AFM. Once you do this it will work.

 

Please follow the below

 

On the Main tab, click Security > Options > Network Firewall. The Firewall Options screen opens. From the Virtual Server & Self IP Contexts list, select the default action Drop for the self IP and virtual server contexts. Click Update. The default Virtual Server and Self IP firewall context is changed.

 

Make sure you have clear permit rules in place before doing this.

 

Please refer VLAN-KEYED CONNECTIONS in Local Traffic manager for generic solutions for different VLANS not to communicate, However in this case - This is purely specific to two VLANs on not being able to communicate.

 

If you put up all the protocols and still they are able to communicate - Your might problem might be with the configuration, IPs, SUbnet masks.,

 

Besides the firewall rule in Global context we have a Virtual Server Wildcard Forwarding, I try putting this rule before the "any to any" rule with the same results.