k, guess I'll do this here and now (if the OP requests it, I'll move it to a new thread).
The following logread output while doing a tcpdump is probably most helpful. Note there are no clients on my lan (everything is off) and I own no device with the the mac address 33:33:ff:4c:08:59 (but the last 6 digits do match my eth1 mac...)
This a ipv6 misconfiguration on my AP (i.e. something I need to turn off given my router should handle ipv6)?
EDIT: "Use builtin IPv6-management" is currently checked for br-lan and the guest bridge. I'll try with that unchecked to see if it makes any difference. "IPv6 assignment length" is currently disabled on both bridges.
r7500v2 # tcpdump -i br-lan -evn not host XXX.XXX.45.25 and ether host XX:XX:XX:XX:08:59&
tcpdump: listening on br-lan, link-type EN10MB (Ethernet), capture size 262144 bytes
r7500v2 # logread -f
Tue Jul 7 11:06:12 2020 user.notice root: wol.sh: XXX.XXX.45.26 is alive
11:06:25.772097 XX:XX:XX:XX:08:59 > 33:33:ff:4c:08:59, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff02::IPv6:XXXX:XXXX: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff02::1:ff4c:859
Tue Jul 7 11:06:25 2020 kern.warn kernel: [129117.176760] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
11:06:29.691913 XX:XX:XX:XX:08:59 > 33:33:00:00:00:02, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff02::2: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff02::2
Tue Jul 7 11:06:29 2020 kern.warn kernel: [129121.096581] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
11:06:31.612075 XX:XX:XX:XX:08:59 > XX:XX:XX:XX:00:02, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff05::2: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff05::2
Tue Jul 7 11:06:31 2020 kern.warn kernel: [129123.016714] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
11:08:32.411965 XX:XX:XX:XX:08:59 > XX:XX:XX:XX:00:02, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff05::2: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff05::2
Tue Jul 7 11:08:32 2020 kern.warn kernel: [129243.816088] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
11:08:32.732064 XX:XX:XX:XX:08:59 > XX:XX:XX:XX:00:02, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff02::2: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff02::2
Tue Jul 7 11:08:32 2020 kern.warn kernel: [129244.136164] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
11:08:36.412237 XX:XX:XX:XX:08:59 > XX:XX:XX:XX:08:59, ethertype IPv6 (0x86dd), length 86: (hlim 1, next-header Options (0) payload length: 32) fe80::IPv6:XXXX:XXXX:859 > ff02::IPv6:XXXX:XXXX: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener reportmax resp delay: 0 addr: ff02::1:ff4c:859
Tue Jul 7 11:08:36 2020 kern.warn kernel: [129247.816317] br-lan: received packet on eth0.3 with own address as source address (addr:XX:XX:XX:XX:08:59, vlan:0)
r7500v2 # 6 packets captured
7 packets received by filter
0 packets dropped by kernel
/etc/config/network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr 'XXX.XXX.0.1'
option netmask 'XXX.XXX.0.0'
config globals 'globals'
option ula_prefix 'IPv6:XXXX:XXXX::/48'
config interface 'lan'
option type 'bridge'
option ifname 'eth1.1 eth0.3'
option proto 'static'
option ipaddr 'XXX.XXX.45.25'
option netmask 'XXX.XXX.255.0'
option gateway 'XXX.XXX.45.26'
option igmp_snooping '1'
option stp '1'
list dns 'XXX.XXX.222.220'
config switch
option name 'switch0'
option reset '3'
option enable_vlan '3'
config switch_vlan
option device 'switch0'
option vlan '3'
option ports '0t 1t 2 3 4 5t 6'
config switch_vlan
option device 'switch0'
option vlan '2'
option ports '0t 1t 5t'
config interface 'guestWLAN'
option ifname 'eth0.2'
option proto 'static'
option ipaddr 'XXX.XXX.44.25'
option netmask 'XXX.XXX.255.0'
option igmp_snooping '1'
option type 'bridge'
option stp '1'
/etc/config/wireless
config wifi-device 'radio0'
option type 'mac80211'
option hwmode '11a'
option path 'soc/1b500000.pci/pci0000:00/0000:00:00.0/0000:01:00.0'
option htmode 'VHT80'
option country 'US'
option legacy_rates '0'
option channel '36'
config wifi-iface 'default_radio0'
option device 'radio0'
option network 'lan'
option mode 'ap'
option ssid 'SSIDX5'
option key 'PPPPPPPP'
option wpa_group_rekey '86400'
option encryption 'psk2+ccmp'
option max_inactivity '3600'
option disassoc_low_ack '0'
option ieee80211w '1'
config wifi-iface 'wifinet0'
option device 'radio0'
option mode 'ap'
option ssid 'SSIDguest5'
option network 'guestWLAN'
option encryption 'psk2+ccmp'
option key 'PPPPPPPP'
option wpa_group_rekey '86400'
option max_inactivity '3600'
option disassoc_low_ack '0'
option ieee80211w '1'
config wifi-device 'radio1'
option type 'mac80211'
option hwmode '11g'
option path 'soc/1b700000.pci/pci0001:00/0001:00:00.0/0001:01:00.0'
option country 'US'
option legacy_rates '0'
option htmode 'HT20'
option channel '11'
config wifi-iface 'default_radio1'
option device 'radio1'
option network 'lan'
option mode 'ap'
option ssid 'SSIDX24'
option encryption 'psk2+ccmp'
option key 'PPPPPPPP'
option wpa_group_rekey '86400'
option max_inactivity '3600'
option disassoc_low_ack '0'
option ieee80211w '1'
config wifi-iface 'wifinet1'
option device 'radio1'
option mode 'ap'
option ssid 'SSIDguest24'
option network 'guestWLAN'
option encryption 'psk2+ccmp'
option key 'PPPPPPPP'
option wpa_group_rekey '86400'
option max_inactivity '3600'
option disassoc_low_ack '0'
option ieee80211w '1'
firewall, dhcp, dnsmasq services are off and disabled for this AP only config...