@Hank21 I've received the escalation notice, thanks.

Hi @Oupsman, were you able to resolve the issue? I'm using the EAP670 with FW1.0.0. Because of a problem with IPv6 (udp) traffic not being forwarded using FW 1.06 (latest available as of now), the support recommended to downgrade / use version 1.0.0. It fixed the issue, but created a new problem, the one you mentioned. RAs from different vlans are broadcasted to all clients, no matter on which SSID or vlan they are on. In my case, I'm only using a single SSID setup, with mac-based vlan assignment using an external radius server. I've checked my lan setup, everything is fine, it's the AP behaving wrong.

  @osc 

No, I did not found a solution to this issue, and support wasn't able either. The only way I found to circumvent it was to disable IPv6 on my other vlans and just activate it on my main VLAN.

Maybe if it's a firmware issue, and your AP are supported (mine are not), the labs will provide an updated firmware for this issue.

  @Oupsman 

thanks for your reply.

I've tried literally everything to fix the issue, but failed.

I can't stop IPv6 multicast frames from leaking between clients connected to different vlans and I consider this a major security issue. It basically makes using IPv6 impossible on EAPs, and I don't think it's limited to the two devices mentioned here, but a security flaw in the current firmware in general.

I'm at a point where I'll just return my EAP670 and buy a device from another vendor. The lack of support and firmware updates from TP-Link is unacceptable.