Well, I was in search for blocking the client to client traffic for a while ago and I gave up.
One of the ISPs here does the following. DHCP assigns an IP and a gateway to the customer. But the gateway is virtual and is -1 of the users IP address. Its like
192.168.178.50 ----> clients IP address
192.168.178.49 ----> Virtual Gateway
Client only communicates with the 192.168.178.49 due to the /30 subnet. and the virtual gateway only communicates with the real router.
WAN Router -----> Virtual GW ------> Client
So the client gets completely isolated from the others.
Do you know how to implement such kind of networking environment or is there a manual for it for MT ?
Thanks