My ISP-provided router is a FritzBox 7530 AX. It works fine but I have a spare Teltonika RUTX12 which I would like to use as an access point to increase WiFi signal in another part of the house.
I have the two routers connected via LAN cable, and I have configured the RUTX12’s LAN interface with a static IP address with the FritzBox as the gateway.
There are some other devices plugged into the FritzBox’s other LAN ports too.
This works fine and I can access the internet and these other LAN devices via the RUTX12. However, what I can’t figure out is how to set up firewall rules so that I can restrict certain devices to internet access only (no inter-LAN communication).
Basically I want to create a “Guest WiFi” where WiFi clients can access the internet but not any other devices in the home network.
Teltonika has a guide on how to do this, but it uses the “WAN” interface in a firewall rule whereas obviously my FritzBox is connected via LAN.
Is there a way I can configure the RUTX12 to treat the FritzBox’s internet connection as the WAN, so I can restrict Guest Wifi clients to WAN only, but still let my home devices access the FritzBox’s LAN ports?
Here is what I want to achieve in diagram form:
