Hi all,
I recently purchased a MicroTik RB750GR3, and am trying to fumble my way through learning things, as well as learning how to configure the router to do things I would like for my home network.
One such item would be, I want to be able to have the router segregate IP’s it leases based on the port it is connecting to the router via. Ignoring the 1st port ( used for WAN) I have one of the ports (port 1) leading to a switch, on which I have my wired network, as well as a wireless AP for just my devices. Port 2 on the router leads to another wireless AP, for everyone else to use. I want to configure the router to assign anything connecting to the second wireless access point (and thus connection coming through port 3) to an IP within the 192.168.2.0/24 network. Anything connecting through port 2 on the router, should be assigned to 192.168.3.0/24. I basically want to segregate devices, so noone connecting to AP2 can see devices on the wired network (nor devices connected to the AP1. I have already assumed that I would need to create a new network within the address list, but i am not 100% sure if i chose settings correct (broadcast / gateway / etc?). Once that is done, do i need to also do any setup in DHCP Server?
As an advanced item, is it possible to have one of my devices connect via the second AP, but able to see devices on the wired network? Obviously i would have to set it up as allowed beforehand, but how would I set that up? What security risks do I now have (that I would not have by completely not allowing communication across the networks), doing this?