Hi,
My setup
hEX RB750Gr2: Internet main router (public ip ↔ private 192.168.1.0/24 subnet)
wAP AC RBwAPG-5HacT2HnD: Main wifi AP with 3 ssid, “admin” 2.4 on 192.168.1.0/24 network with hEX dhcp server, “admin” 5.0 on 192.168.1.0/24 network with hEX dhcp server, and another one for “guest” on 10.0.0.0/24 dhcp server in wAP.
For now, my guest network is working but it communicate with 192. I don’t want this, I just want guest access internet.
How can I do that?!
Thanks!!
Dave
Hello, just add a firewall rule like this :
/ip firewall filter
add action=drop chain=forward dst-address=192.168.1.0/24 src-address=10.0.0.0/24
Be sure to put it before your accept rule.
Regards,
I add this rule into the wAP or HEX?..
Apply the firewall rule on wAP.
Edit: I can’t ensure that will works, because I don’t know how is your config in wAP and hEX.
I’ll try both! Thank you very much for your time!
Probably my error, thank you!
Work like a charm! Thank you! Just ping 192.168.1.2 (wAP) ping.. that’s it but I don’t worry about that.. all others 192.168.1.0/24 don’t ping and don’t communicate (I see in statistic)
Thankkkkkk youuu!!