That will not be the case. We will block traffic based on the destination address in the IP packet, not which device the packet has been passed to.
So if you try to ping an address on the internet, the destination IP in the packet will be the IP address of the website you are trying to reach and we will allow it through.
If on the other hand, you are trying to ping the router, or another AP, or maybe another client, the destination address will be private and we will drop the traffic at the AP.
Hope this clarifies!