Hello everyone, i was just curious how can i enjoy best performance on my router. We are 20 employees with just 1 range of private IP address 192.168.1.0/24. How does this router provides best performance with bridge or without. I mean should i bridge my ethernet2 with wlan1 or it is not suggested? On ethernet1 is WAN, other ports are not used. All devices are wired, just 2-3 laptops might use WiFi. There are 32 devices totally including printers and IP phones.

For mobile users i have set up another hAP ac lite which is connected to the same switch for WiFi only with different range of IP 192.168.10.0/24. This is a neighbor router i mean. I would highly appreciate any suggested opinion thanks.

HI,

use the default settings (ie Quickset).
This should give you internet on ether1 and a Bridge with HWoffload and Wlan together.
Since you have 32 users I hope you have a Gigabit 24port Switch or two
So all your clients are directly attached to GigaSiwtch (or whatever switch you got) and only one connection from switch to hAP-lite is made (ie. port24 swicth goes to port ether2 on hAPLite).
Now all communication bettwen clients will happen just on Switche(s) and only internet traffic and Wireless clients will traverse hAP-lite.

If you do not need to isolate adiotonal hAP you can connect it to switch if you have to you have to put one of the lan ports on hap-lite out of bridge and set it up for a different subnet and apply firewall rules to deny traffic from one subnet to another..

What is 'Best performance' for you?

Besides above reply, please configure your second hAP as accesspoint (create one bridge with all interfaces connected to it). It makes no sense to have double NAT.

HI,

use the default settings (ie Quickset).
This should give you internet on ether1 and a Bridge with HWoffload and Wlan together.
Since you have 32 users I hope you have a Gigabit 24port Switch or two
So all your clients are directly attached to GigaSiwtch (or whatever switch you got) and only one connection from switch to hAP-lite is made (ie. port24 swicth goes to port ether2 on hAPLite).
Now all communication bettwen clients will happen just on Switche(s) and only internet traffic and Wireless clients will traverse hAP-lite.

If you do not need to isolate adiotonal hAP you can connect it to switch if you have to you have to put one of the lan ports on hap-lite out of bridge and set it up for a different subnet and apply firewall rules to deny traffic from one subnet to another..

Yeah i have a gigabit switch with 24ports thats correct. Im not so clear because on ethernet1 is WAN with its public IP!! Currently just one connection is made from my edge router hAP to the gigabit switch. Want to mention that my gigabit switch is unmanaged and beside this im using 5 TP-Links Plug and Play, because there are several small offices and in wall arent enough ethernet ports to fit all devices, i dont know if im clear . In one of this tp links is connected the other hAP lite. I have found this network like this its not that ive build it from scratch my self.

Im asking about the bridge from ethernet2 to wlan 1 (edge router) if its needed, because i haven seen my router rebooting without proper shutdown several time at midnight also the WiFi connection is not stable. Now that i have disabled WiFi router never rebooted last 2 weeks! So i cant relate at this point

What is 'Best performance' for you?

Besides above reply, please configure your second hAP as accesspoint (create one bridge with all interfaces connected to it). It makes no sense to have double NAT.

On the second router there are no devices connected is used only for WiFi, mobile users only. I thought it is better as it is, doesn't it cause more traffic on my LAN if i set it as acesspoint? Or should i set a different subnet if i set it as acesspoint?

On the second router there are no devices connected is used only for WiFi, mobile users only. I thought it is better as it is, doesn't it cause more traffic on my LAN if i set it as acesspoint? Or should i set a different subnet if i set it as acesspoint?

It is worse and you only created an additional network within a network. If you don't want to have mobile devices access to your network, please use vlan.

Concur on second hap ac lite. Run as AP.
One VLAN attached to both WLANs (assuming it has two radios) and the etherport that connects it to the main router are on the bridge

Main router setup VLAN on the bridge with etherport going to the AP.
DHCP and network (address, pool) for the VLAN

Firewall rule needed depending upon your firewall rule structure.
If your forward chain ends in Drop all else you will need a
VLAN to WAN allow rule.