Greetings Everyone,
I have a SUSPECT computer. While troubleshooting, I would like to ISOLATE it from all things hooked up to the same LAN but allow it to communicate with the WAN. It does not have WiFi.
Is this possible?
Thanks in advance for all your help.
Assuming you are using a Surf SOHO.
Create a VLAN and designate an unused port on the SOHO as ACCESS > YOUR_VLAN and connect your suspect computer to that port and only that port.
I would then enable firewall logs and check what kinda traffic its generating.
Check out this excellent write up on how to manage vlans on the SOHO
The VLAN writeup is here
Two settings to look out for are inter-VLAN routing (you want it off) and Layer2 Isolation (you want it on).
Thanks! Worked!