Traffic from two wireless devices that are on the same VNS and that are connected to the same AP will pass through the controller and therefore be subject to a filtering role. You can set up policy rules that allow each wireless device access to the default gateway, but also prevent each device from communicating with each other.
Add the following two rules to a filter, before allowing everything else:
In | Out | Allow | IP / Port | Description |
---|---|---|---|---|
x | x | x | 10.3.2.25 | Allow access to the Gateway IP address of the VNS only |
x | x | 10.3.5.28.0/24 | Deny all access to the VNS subnet range (such as 0/24) | |
x | x | x | *.*.*.*. | Default access control action is contain to VLAN. |
Note
You can also prevent the two wireless devices from communicating with each other by setting Block Mu to MU traffic. See Configuring a Basic WLAN Service.