lets say i have x.x.2.5-x.x.2.85 range. i need to prevent x.x.2.95 ip to be able to access the former range. it feeds separate ap and it gives x.x.5.0 network range, but i can still see and ping x.x.2.0 range. can someone help me set it up so that ip where ap is only takes the wan connection and nothing else. thanks

lets say i have x.x.2.5-x.x.2.85 range. i need to prevent x.x.2.95 ip to be able to access the former range. it feeds separate ap and it gives x.x.5.0 network range, but i can still see and ping x.x.2.0 range. can someone help me set it up so that ip where ap is only takes the wan connection and nothing else. thanks

x.x.2.95 is on the same network as x.x.2.5... so it doesn't go through the firewall. So, you have to put that device on it's own port on the router, and then BRIDGE the ports (NOT SWITCH). Then, you have to enable "use-ip-firewall".

THEN, it will go through the firewall and you can block it that way.

thank you. i somehow suspected as much, but the cabling has been done in the way that i cant isolate the AP. i will have to find a different solutuion.