So I've got two hap ac2 connected with an ethernet cable, from router 1 ether2 to router 2 ether1. Router1 is the gateway to the internet with default config. Router2 simply has all interfaces bridged. Router2 ether2 is connected to the neighbor's network, and I want that to function as a separate LAN. (while rest of interfaces on router2 remain bridged for main subnet)
Here is what I've tried, but it did not work.
On router 1, I created vlan2 interface with vlan id 2 on the bridge interface, assigned it an address block, and created a DHCP server for it.
On bridge VLAN, put ether2 tagged for vlan 2
and enabled vlan filtering on the bridge.
And on router 2, set bridge port ether2 PVID to 2:
and in bridge vlan, set vlan 2 tagged on ether1 and untagged on ether2.
But once enabling vlan filtering on bridge of router2, port seems completely unusable. Am I doing this right? Or how should I do it?