Very nice, very helpful. I've got a question about Lan Out rules if I may ask. Can I rule out Site to Site VPN ? My friend gives access to this subnet for example : - 10.0.20.0/28 Do I have to create a Lan Out rule with that subnet as source ? If so, what will happend to returning trafic that I started on that subnet ?
@@lucaabs1759 You can definitely use LAN OUT to filter internal traffic passing through the site-to-site VPN. To understand source and destination, imagine being a router. Traffic going through LAN OUT considers anything leaving you as the source for LAN OUT. For example, if there is site-to-site VPN traffic coming from your friend’s subnet (10.0.20.0/28), it will be treated as a source in your new LAN OUT subnet. This is because the IP source is determined as the traffic exits the router.
Thank you. This has been very helpful :)
The best explanation I have ever heard. Thank you!
Thank you!
Agreed - very helpful and great visuals to make the explanations easier to follow.
Thank you.
Very nice, very helpful.
I've got a question about Lan Out rules if I may ask. Can I rule out Site to Site VPN ?
My friend gives access to this subnet for example :
- 10.0.20.0/28
Do I have to create a Lan Out rule with that subnet as source ? If so, what will happend to returning trafic that I started on that subnet ?
@@lucaabs1759 You can definitely use LAN OUT to filter internal traffic passing through the site-to-site VPN.
To understand source and destination, imagine being a router. Traffic going through LAN OUT considers anything leaving you as the source for LAN OUT.
For example, if there is site-to-site VPN traffic coming from your friend’s subnet (10.0.20.0/28), it will be treated as a source in your new LAN OUT subnet. This is because the IP source is determined as the traffic exits the router.