I am new to the Cisco SMB Pro line and am setting up a basic config for an office. I have a SA520, ESW-520, and some AP541Ns. I am setting up multiple VLAN's for security reasons for both private wired devices and also for public internet served wirelessly.
I see the option to make a VLAN nout routable between others and that works perfectly for the public wireless. However when lookng at the firewall rules, I dont see anyway to create firewall rules between VLANs. If I setup a seprate VLAN and want to only open a few ports, or only to a few devices on another VLAN, there does not seem to be a way to do this. You have to select a zone, and VLAN are not listed here, only LAN, WAN, and DMZ. Also you cannot even select LAN to LAN and set the rule up by IP address.
I have to imagine that I am missing something, because this seems like a big ommisino. I am using the most recent firmware, version 1.1.65.