First of all I’d like to say hi, because I’m new to this forum.
Background:
I am using Mikrotik platform as a AP Bridge working on 5Ghz band. All clients are connected with different APs.
All clients are in same network and problem is that my Mikrotik is sometimes getting blocked by suspicious traffic generated by others (wired) clients.
Problem:
The scheme of network looks like this: GW → Switches → MT → Clients. Problem is caused by clients connected to switches directly. Traffic is spreaded through MT to wireless clients and it’s killing their bandwidth. Usually it fluctuates about 5,6 Mbit per client. Traffic looks normal (destination port 80; destination host - different local network IPs) but it seems to be distrubuted like broadcast. Switches do not separate it - that’s the reason why it reaches the MT. Blocking current destination MAC addresses solves it for some time, but after a while target is changed and whole situation repeates.
Solution?
Is there a possibility by using filters on bridge to allow only connected hosts and GW, so that clients connected by wire won’t affect wireless stations?
Thanks in advance for all ideas.