Dear Friends
There are two links (one of them in the station wds mode (A) and the other in the station bridge mode (B)) which are using internet through an access point.
The problem is that computers which are connected to the A could obtain ip from the B. In addition, these clients could ping each other inside their winbox. Could you please help me to add a firewall in the access point in order to solve this problem?
I have wrote 3 filters in the access point (in the bridge menu) in order to drop DHCP requests through the access point:
0 chain=input action=drop mac-protocol=ip dst-port=67-68 ip-protocol=udp
1 chain=forward action=drop mac-protocol=ip dst-port=67-68 ip-protocol=udp
2 chain=output action=drop mac-protocol=ip dst-port=67-68 ip-protocol=udp
These rules works for clients in the station wds modes but do not work in this issue.
I have tried some rules in the IP/Firewall section of the access points but they did not work, the problem(obtaining ip) remains and clients could still ping each other.
any suggestions to solve the problem?
best regards
yazdan