Re: Preventing wireless clients from communicating with each oth
For a single access point, it's absolutely (well, probably) possible, just enable "Public Secure Packet Forwarding" (PSPF). PSPF was designed for client security in "hotspot" situations to prevent one user from hacking another. Whether it works for something like NETBIOS, I don't know (but I'll check).
You can find it in the "Interface" page of the Web GUI, or add it as a CLI command under the SSID.
As for multiple APs, I'm not sure (but I'll check). I believe it would be more possible in the LWAP deployment, since all of the APs are under central control ... but perhaps it is also implemented in some form or fashion for stand-alone units as well.
A quick searh on the Cisco Main site I found this fragment:
Note: To prevent communication between clients associated to different access points, you must set up protected ports on the switch to which the wireless devices are connected. See the "Configuring Protected Ports" section for instructions on setting up protected ports.
Here's the link, the (brief) info and CLI config is under the "Configuring PSPF" section.