3/ Configured firewall rules to block inter-vlan traffic to private networks using alias:
192.168.0.0/16, 172.16.0.0/12 and 10.0.0.0/8
This seems to block inter-vlan traffic as expected. My question is does it matter that the firewall blocks traffic to “Class A” networks using /8 CIDR but the hosts on that subnet are /24? I’m not very experienced with networking and my terminology may not be exactly correct so I hope you can understand the question.
It doesn’t matter at all. The classes are sort of an archaic model that’s been replaced by the CIDR syntax, so just as you’re experiencing, 10.0.0.0/8 is just fine for blocking any subnet inside that larger space. You’re on the right track!