I have the following setup, goal is, that clients connected to the GL-AR750 only can reach addresses in the internet.
Right now they also can connect to the GL-B3000 and it's connected stations, as they can access everything in the 192.168.1.1/24.
The firewall should be configured on the GL-B3000 in it's LuCI Network-Firewall-configuration.
DSL-Router
WAN DSL
LAN 192.168.1.1/24
GL-B3000
WAN over ETH 192.168.1.6, GW 192.168.1.1
LAN 192.168.6.1/24
WIFI1 192.168.15.1/24, GW 192.168.1.1
WIFI2 192.168.16.1/24, GW 192.168.1.1
GL-AR750
WAN over WIFI 192.168.16.2, GW 192.168.16.1
LAN 192.168.17.1/24
Any hints?
Thanks a lot,
kind regards thg