Mikrotik Won't Pass Management IP Traffic

We are using Motorola and Ubiquiti wireless gear, in bridge mode using AP/Station WDS. I am trying to configure an RB493AH to sit at the base of one of our towers to hand out private DHCP to customers’ routers (NATed to public IP on VLAN on Mikrotik), while letting the wireless management network pass through unhindered. I have it set up in a test environment and it passes IP traffic just the way I want it to, but, from a workstation at our main office, I can no longer communicate directly with the AP or SM to manage them. I have a feeling it’s something simple that I’ve missed, like a dst-nat rule, but I’ve tried several combinations, and can’t seem to get it working properly.

Does anybody else have a setup like this, or should I be doing something different overall?

Backhaul > RB493AH > Switch > Ubiquiti AP (in AP WDS mode) > Ubiquiti SM’s (Station WDS mode) > Test Router (can be set to either DHCP or static and get valid address w/connectivity)

Is the management IP space on the root ethX.0 or on some vlan?

I had to solve a similar issue by assigning the clients to on VLAN and the management to another VLAN. The base ethernet adapter in my RB does not have an IP address assigned to it.

Yep, the management network is on the default eth interface. I am using a VLAN on Eth1 bridged from Eth3 to route static public IP’s. Static assignment and DHCP both work on the client side, but I cannot access the management interface of the Ubiquiti gear.

If you need more detailed info, let me know; I can print the settings I have so far in the RB493AH.