Trying to solve an issue on our network. We use VLANs to separate all traffic. Customers are on one of 10 VLANs and server management is on a different VLAN.
On the management VLAN is a server with port 80 facing the web with a 1:1 NAT to a public static IP - its private IP is in the management VLAN-5 of 10.10.10.x
I need customers on the various customer VLANs (20-40) to be able to access the web server using the it’s public URL. If “inter VLAN Routing” is turned off for their customer VLAN, they can not type in the public URL of the server and get it. If I turn on inter VLAN routing, it works but then they have full access to everything behind the router which is not good.
Is there a way to solve this without turning on inter VLAN routing?