I'm trying to figure out this:
I have a LAN, 192.168.88.0/24
One IP within this LAN is assigned to a Ubiquity AP wich serves Internet access to a small park. The IP is 192.168.88.254 via static DHCP. The AP has it's own DHCP and subnet (10.10.10.0/24). I would like to block access to my 192.168.88.0/24 LAN for users connected to that AP, leaving them only with Internet access and that's it. I know this isn't the best setup and that I should use a dedicated port and network for that AP but unfortunately I don't have total control on the network.
I can't figure out how to make the rules in the firewall. I'm thinking about dropping forwarding from 10.10.10.0/24 to 192.168.88.0/24 or...?
Sent from my Mi A2 Lite using Tapatalk