By design, client-to-client forwarding sends traffic between to devices on the same AP so we never see it at the bridge. Therefore they can communicate with each other unrestricted.
If we switch off client-to-client forwarding then irrespective of if I switch off STP, by design traffic can't leave a bridge through the port it entered and therefore the two clients are entirely blocked from communicating except via some form of hairpin.
There's a thread from 10 years ago where someone described the same problem viewtopic.php?t=79006 we now are able to perform NAT on MAC addresses so perhaps it's now possible. I can't find very many other relevant threads. With IOT devices it's often nescessary to allow some limited traffic between devices that are likely on the same AP due to their proximity, so I'm a little stuck.
Has anyone else had a similar problem or found any solutions?
Kind Regards, Keir