Hello, (Hardware below)

I am attempting to set up 2 WLANs on my AP, and both of them are assigned to 2 different VLAN's via the VLAN ID, butclients are able to communicate across VLANs. 

Looking online, it seems pretty simple to assign a VLANs to ports on the switch, and then that will deter any communication across VLANs. The problem here is that the AP only uses one port, and I assumed that assigning a VLAN ID while creating the WLAN will stop traffic between two separate VLANs. In the documentation, it clearly states:

"VLAN: To set a wireless VLAN for the wireless network, enable this option and set a VLAN ID from 1 to 4094.

When enabled, traffic in different wireless networks is marked with different VLAN tags according to the configured VLAN IDs. Then the EAPs work together with the switches, which also support 802.1Q VLAN, to distribute the traffic to different VLANs according to the VLAN tags. As a result, wireless clients in different VLANs cannot directly communicate with each other."

Im not sure if it's a problem with the "profiles" tab under LAN, because I have created new profiles and tagged the network, also enabled the VLAN interface on the switch and still it cross communicated. 

Setting up a firewall rule in my opinion to block the traffic makes absolutely no sense, because then the wireless clients in separate VLANs on the same AP is an absolutely useless concept in the OMADA ecosystem. 

Is anybody out there able to block communication across VLANs between two different SSIDS on the same AP that only uses ONE port? Please let me know how you did it. 

Thanks. 

Hardware: