@intelide3

I can do that but I also should mention that I do want 192.168.0.0 network to be able to access the WAN (through the 10. network).

@uubozou11

I am trying to do this with ACL but apparently I am not entering the correct settings.

I have this

access-list 100 deny tcp 192.168.0.0 10.10.10.0 log

Thanks

hi,

first we need to be clear whether wireless router perform NAT or routing.

by performing NAT(PAT) your 192.168.0 subnet will look like 10. ip - so cant be block entering 10.0 subnet (or the switch).

by routing : if that 192.168.0 subnet does not use a default gateway (ip 10.x.x.x the wireless router) for that 192.168.0.0 subnet - you will not be able to go to 10. network - hence you cant reach the internet.

you cant block the wireless 10.x.x.x ip itself entering your 10. subnet switch - but you can block it entering internet using basic standard extended ACL.

HTH.

pls rate :)

intelide3

Yes my router is setup to use NAT and though I am understanding most of what you are saying I am still looking for a viable option even if that means I have to get away from NAT and go to Routing.

Basically 192.x.x.x network should only be able to access the internet using the 10.10.10.1 as its gateway but still be blocked from everything else on the 10.10.10.x network.

I am confused on how to achieve this but if its not possible then I guess I will still survive!

Thanks,

Mandeep