Linux configuration files and scripts for controlling internet access from WiFi clients via ethernet

We have an ARM based module that will be connected to the Internet via the Ethernet interface(eth0) and we would like to control how WiFi clients(uap0) then access the Internet via eth0. We are restricted on what modules are available as the project has a precompiled Kernel and any changes requires a Kernal compile. Software is ARM based Toradex module iMX8 with Linux Yocto running these modules: -systemd -resolved -iw -connman -hostapd -dnsmasq -dhcpd not compiled into this kernel -iptables WiFi is configured as uap0 Ethernet is eth0 The requirement is to provide the configuration files ([login to view URL], [login to view URL], etc) and scripts necessary to provide the following: -Setup eth0 to be connected to router providing the DHCP and Internet access -Setup the WiFi (uap0) as an access point to clients providing DHCP on a different subnet to eth0 -WiFi AP to have SSID "bizjet" with no passwords -WiFi clients will be iPhone/iPad and Android users no laptops -WiFi clients able to access the Internet via eth0 -All the iptables entries to achieve the above plus: -A bash script with iptables entries to block a WiFi client from accessing Internet using their IP Address -A bash script with iptables entries to allow a WiFi client to access the Internet using their IP Address -Be able to block certain websites and subdomains based on their name eg. so from "[login to view URL]" all these are also blocked "[login to view URL]", "[login to view URL]", and "[login to view URL]" etc.