I have 4 vlans:
Uplink, Mobile, Portal, NAT
The Nat is the location of my DHCP and DNS server.
I want to create ACL Policies that keep vlans Mobile, Protal, and Nat from talking to each other, but if I do, it breaks Portal and Mobile clients from getting DHCP.
Can I create ACL policies to block all traffic but DHCP and DNS from Portal and Mobile from the NAT vlan.
Sidenote, all need to be allowed through uplink.