In order to prevent communication between wifi clients and add extra security layer to the wifi users, we can enable the intra-vap-privacy feature and isolate the wifi clients.
config wireless-controller vap edit "SSID Name" set intra-vap-privacy enable next end