Disable forwarding between different wireless interfaces in the same bridge

If your OpenWrt version is 22.03.x which uses fw4 by default, this is exactly what you need.

The rules translated into nftables syntax:

nft add table bridge filter
nft add chain bridge filter forward '{type filter hook forward priority -200; }'
nft add rule bridge filter forward iifname "wlan0-1" oifname "eth1" counter accept
nft add rule bridge filter forward iifname "wlan0-1" counter drop
nft add rule bridge filter forward iifname "wlan1-1" oifname "eth1" counter accept
nft add rule bridge filter forward iifname "wlan1-1" counter drop

To automatically create and populate the table, see:

https://forum.openwrt.org/t/marking-packets-from-different-wifi-iface/145883/4 - #4 by jow

1 Like