I am trying to see if there is a way to do client or port isolation on the 450g. My aps have client isolation turned on but computers can still see each other when connecting to two different APs on seperate ports of the mikrotik.
Thank you,
Do you have the ports bridged?
If so you can turn on the IP firewall on the bridge and drop traffic there. What you drop depends on your requirements. If you’re just using static IPs out to the Internet you can probably drop everything that isn’t traffic to or from the gateway IP address.
If you are using the bridge, you can also try the horizon option in the bridge to prevent traffic entering one port leaving another. If you are using the switch chip, I don’t believe there is a way to do what you want.
Hi. Is this what you have in mind? Please elaborate.
/interface bridge filter
add action=drop chain=forward comment="" in-bridge=br-LAN out-bridge=br-LAN
http://wiki.mikrotik.com/wiki/MPLSVPLS#Split_horizon_bridging
Much more elegant! Didn’t know you could do that in RouterOS.