We are on v184.108.40.206-patch 1. Trying to get the same sort of policy set up that allows PCs to get to the internet but not the internal networks (for some IoT types). This thread looked promising but there is no solution posted. Did you ever get this to work? If so - please share
Not sure. The customer never got back with me on the test switch we were working with. However GTAC had tested with the updated firmware successfully. Sometimes the firmware bug fixes don’t make it across firmware forks immediately. I would try the 220.127.116.11 latest patch and see if that works for you.
On your policy I would block all internal network access and just allow ports such as DHCP and DNS, that should get you internet access without internal access.
Contact Us:Sam PirokCommunity@extremenetworks.com