I am not finding this scenario (which is odd) but it seems so common, it should be an FAQ/KB article. Once this is working as expected, I would like to turn it into an FAQ or KB for others to benefit. Please feel free to respond with your ideas and suggestions.
The goal is to have different DHCP/NAT segments set on Ports 2 and 3 to allow nodes to acquire the needed configuration (some statically assigned) that would allow the node to communicate with the Internet using the WAN connection on Port 1. Below is the theoretical configuration example as well as the corresponding JPG image (attached).
From ISP (eth1)
Gateway: 169.169.169.1
IP Range: 169.169.169.2-6
Broadcast: 169.169.169.7 (SM: 255.255.255.248)
Guest LAN (eth2)
Gateway: 10.10.10.1
IP Range: 10.10.10.2-250
Broadcast: 10.10.10.255 (SM: 255.255.255.0)
WLAN AP1: 10.10.10.250 (Static DHCP)
WLAN AP2: 10.10.10.251 (Static DHCP)
NOTE: Will be seen by the Internet as IP address 169.169.169.2
Corp LAN (eth3)
Gateway: 10.10.11.1
IP Range: 10.10.11.11-250
Broadcast: 10.10.11.255 (SM: 255.255.255.0)
WLAN AP1: 10.10.11.250 (Static DHCP)
WLAN AP2: 10.10.11.251 (Static DHCP)
NOTE: Will be seen by the Internet as IP address 169.169.169.3
How do I configure the 450g...
1. to allow eth2 and eth3 access to the Internet?
2. to assign the same LAN IP to a specific node's MAC? (Static DHCP)
3. to allow a node, with a WAN IP (from the 169.169.169.xxx) on the LAN, access to the Internet?
4. to allow management of the switch from the WAN via a secure connection (SSL? TLS?)
5. with these settings using Winbox or Webbox?