@surfer1 

I'm not sure if this will achieve what you want.
1. In standalone mode, keep the default VLAN 1.
2. Create 2 new (or more) VLAN, I'll use VLAN 2 and VLAN 3 here, and put the two devices you want to isolate into VLAN 1&2, and add the others to VLAN 1&3, the port connected to Archer belongs to VLAN 1&2&3 and then set the corresponding PVID values. This way your two devices will be isolated from other devices and at the same time have access to the network.

 

@Yannie 

 

Yannie,

 

You mean like this?

 

5 and 7 in vlan 1-2 and PVID 2??

otherports in vlan 1-3 except uplink port in vlan 1,2,3 and PVID 3 for all ports accept uplink port PVID 1?

I have tried this but then ports 5 and 7 have no internet access at all.

 

On this forum there is another post from me with the answers in it. I do not know why but i think PVID's are the one thats causing that.

@surfer1 Other ports not in vlan2, only in vlan1 and 3.

Suppose port 1 is connected to the router, port 5&7 are the specific devices and then suppose port 2&3&4&6&8 for other devices. Try to use this 

VLAN 1 : all ports

VLAN 2 : port 1&5&7

VLAN 3 : port 1&2&3&4&6&8

port 1 : untagged,PVID 1

port 5&7 : untagged, PVID 2

port 2&3&4&6&8 : untagged, PVID 3

Hi Yannie, This configuration is not what i had in mind. It does the trick that devices in ports 5 and 7 cannot reach devices on the other ports and can go to the internet however: 1. I cannot ping the switch ip anymore from whatever port, so the switch becomes unreachable to monitor. 2. Devices on other ports can also not reach to devices on ports 5 and 7, that is not so bad but i would like to do ping to the devices on ports 5 and 7. The cause of this must be the PVID setting. whenever i put a port on a different PVID it cannot reach the switch anymore from that port.

do uo have a suggestion for this to solve?