Here is the setup:
# 1 MT on RB532 with 2 Wireless cards and one lan connected to "Internet" router (WAN, ip:10.0.0.1).
# Both cards are in AP-bridge mode with static WDS (2 APs connected to first and 1 AP to second wifi card).
# All APs in network (some connected thru WDS some as Clients) have static IP addresses - 10.1.0.x and 10.2.0.x depending to wich wireless card they are connected.
# wifi card and its WDS clients are in the bridge (so there are two bridges) with ip:10.1.0.1 and 10.2.0.1
# there are DHCP Servers on both bridges, leasing addresses to clients in their pool (10.1.0.100-10.1.0.200 and 10.2.0.100-10.2.0.200) - e.g. client get an ip:10.1.0.195, mask:255.255.255.0 and gw:10.1.0.1 (ip of the bridge)
# on WAN interface (lan conn. to Internet) arp is set to Proxy-Arp
# no rules in Firewall-NAT, and some basic security rules in Firewall-Filter Rules
# only one Simple Queue limmiting WAN connection
# default ROUTE is 10.0.0.nn (ip of Internet Gateway), 10.0.0.0/24 to 10.0.0.1 for WAN, 10.1.0.0/24 to 10.1.0.1 for bridge1 and 10.2.0.0/24 to 10.2.0.1 for bridge2
problem is : USERS DO SEE Internet BEFORE connecting to PPPoE !!!!
question is : W H Y ??
Where did I go wrong While I had only ONE wireless card everythig worked just fine ... and now, First I tryed to put both wireless interfaces and all of WDS APs in one bridge - and since then, I have this problem... I solved it by DROPping all the trafic going from 10.1.0.x and 10.2.0.x to the router and just leaving PPPoE connections (they get 10.0.0.x addresses) ....
HELP,
Dejan