Hi
At both AP and client
* Disable/remove all firewall and NAT rules
/ip firewall filter disable x
(where x is the ID if the filter)
/ip firewall nat disable x
(where x is the ID of the NAT rule)
* Disable connection tracking
/ip firewall connection tracking set enabled=no
* Disable DHCP client on WLAN
/ip dhcp-client disable 0
* Disable DHCP server on LAN
/ip dhcp-server disable 0
* Change address on ether1 port (default is 192.168.88.1, and it has to be changed on at least one of the devices)
/ip address
add address=192.168.88.2/24 interface=ether1 network=192.168.88.0
* Create a bridge and add both ether1 and wlan1 to it
/interface bridge
add name=bridge1
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=wlan1
At AP
* Configure wlan1 interface as AP-bridge. I use the MIkrotik NV2 protocol instead of standard 802.11 because I find it a lot better for this purpose.
interface wireless. The WDS dynamic mode enables me to connect several clients transparently to this AP. Each client gets its own "virtual" WDS interface dynamically created at this AP when they connect. The WDS interface is automatically added to the bridge selected under parameter
wds-default-bridge (so it is probably not necessary to add wlan1 interface to it as above...).
Keep in mind to set your SSID (
MY_SSID) and preshared key (
MY_PRESHARED_KEY). It is also probably a good idea to mention that security profiles used with the standard 802.11 protocol (WPA, WPA2 etc) are ignored when running NV2.
set [ find default-name=wlan1 ] band=5ghz-onlyn channel-width=20/40mhz-Ce \
disabled=no distance=indoors mode=ap-bridge nv2-cell-radius=10 \
nv2-preshared-key=[i]MY_PRESHARED_KEY[/i] nv2-security=enabled ssid=[i]MY_SSID[/i] \
tdma-period-size=3 wds-default-bridge=bridge1 wds-mode=dynamic \
wireless-protocol=nv2
At client
Configure the wlan1 interface as station-WDS.
/interface wireless
set [ find default-name=wlan1 ] band=5ghz-onlyn channel-width=20/40mhz-Ce disabled=no frequency=auto \
mode=station-wds nv2-preshared-key=MY_PRESHARED_KEY nv2-security=enabled ssid=MY_SSID \
wds-default-bridge=bridge1 wds-mode=dynamic wireless-protocol=nv2
Voila! The client should now be able to connect.
Check the connection state:
/interface wireless registration print
On the client (station) side, one connection should be listed. On the AP side, each connected client gets its own row:
# INTERFACE RADIO-NAME MAC-ADDRESS AP SIGNAL... TX-RATE
0 wlan1 E48D8Cxxxxxx E4:8D:8C:xx:xx:xx no -69dBm 162M...
I am no expert in this, so there are probably improvements to make, but this works well.
I work in an industry and there I am using RB951G-2HnD for the same purpose (transparently replacing ethernet cables). There I have at least 10 clients for each AP and the links are incredibly stable under conditions which are far from optimal. Throughput is however not a priority there. If it was, I would definitely have to put some more effort into it, it enables machine to connect to SQL databases etc without problems.
At home I use it as a bridge (with an OmtiTik as AP) to a neighbour house. On top of this configuration there are also a couple of VLAN trunks, and it works flawlessly so far.