Make an ip act like another

Hi

First of all I am from Argentina and may be my english is a little bad, so If I don’t explain myself well, let me know.

I need the following: I have the following networks

WIFI: 192.168.13.0/24 - Only Internet
Local Network: 192.168.1.0/24 - Internet and VPN acceso to remote hosts.

The networks can’t see each other for security reasons, but I need that some devices connected to the WIFI network, like cellphones, that could be able to find a printer that is on the “Local Network”.

The printer IP Address is 192.168.1.32.

I thought that i could make that the IP Address 192.168.13.32 act like 192.168.1.32, so if the cellphone or another device, when they make a network scan for printer, when the ping to the 192.168.13.32, packets arrive to 192.168.1.32 and the printer shows up.

Is this possible? Or something similar?

I hope that is understandable what I am trying to do. I searched on google but could’t find anything similar (maybe I am doing a wrong search).

Thanks!

You could NAT it, or you could specifically allow access to the printer’s actual IP address.

Phones may require the ability to detect the printer on the network (like air print). In order the search the network, the printer and phone must be on the same broadcast domain (meaning the same LAN).

My solution to this problem was to keep the wlan and lan in a bridge with 1 subnet. Then use Bridge > Filter Rules.

The default rule was to deny wlan and lan interfaces from communicating.

Next I used the mac address of the printer and allowed traffic from wlan to the printer (and vice versa), which allowed the discovery of the printer.

Then finally I added a rule at the top that prevented wlan traffic from accessing ports 80 and 443 of the printer.

If you’re concerned that malicious wifi users will configure themselves with a static IP that’ll conflict on the network, you can look into arp-readonly.