Community discussions

MikroTik App
 
rore
just joined
Topic Author
Posts: 9
Joined: Fri Sep 26, 2014 11:02 pm

capsman vlan and dhcp (offering lease without success)

Mon Dec 08, 2014 12:55 pm

Hi,
I'm Testing Capsman (v1) on ROS6.23.
On the main Router Manager is configured and a RB951g is the AP.
All Client should use aVLan depending on their MAC Adress.
When a Client tries to connect I see the message "dhcp1 offering lease ....... without success"

Here are the important parts of the configuration. Any ideas?

Main Router
/caps-man channel
add band=2ghz-b/g/n extension-channel=Ce frequency=2412 name=ch1-2ghz-20Ce \
    width=20
/caps-man datapath
add client-to-client-forwarding=yes local-forwarding=no name=datapath1
/interface bridge
add name=br-v201
add name=br-v221
add name=br-v241
add name=br-v301
add name=br-vlan
/interface ethernet
set [ find default-name=ether4 ] l2mtu=1590 name=eth4-M-RB951
/interface vlan
add interface=br-vlan l2mtu=1586 name=v201-S vlan-id=201
add interface=br-vlan l2mtu=1586 name=v221-D vlan-id=221
add interface=br-vlan l2mtu=1586 name=v241-H vlan-id=241
add interface=br-vlan l2mtu=1586 name=v301-R vlan-id=301
/caps-man security
add authentication-types=wpa-psk,wpa2-psk encryption=aes-ccm,tkip name=WPA \
    passphrase=12345678
/caps-man configuration
add channel=ch1-2ghz-20Ce datapath=datapath1 mode=ap name=Privat rx-chains=\
    0,1 security=WPA ssid=Privat tx-chains=0,1
/caps-man interface
# 
add arp=enabled channel=ch1-2ghz-20Ce configuration=Privat datapath=datapath1 \
    datapath.bridge=br-vlan disabled=no l2mtu=1600 mac-address=\
    4C:5E:0C:58:CE:01 master-interface=none mtu=1500 name=cap-Martin \
    radio-mac=4C:5E:0C:58:CE:01 security=WPA
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_pool1 ranges=10.35.34.101-10.35.34.199
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=br-v301 lease-time=3d name=\
    dhcp1
/caps-man access-list
add action=accept comment=Ro-Laptop-WLan interface=all mac-address=\
    4C:EB:42:98:82:E4 mac-address-mask=FF:FF:FF:FF:FF:FF private-passphrase=\
    12345678 time=\
    0s-1d,sun,mon,tue,wed,thu,fri,sat vlan-id=301 vlan-mode=use-tag
add action=accept comment=Roland-iPad3-WLan interface=all mac-address=\
    14:10:9F:9A:23:D7 mac-address-mask=FF:FF:FF:FF:FF:FF private-passphrase=\
    987654321 time=\
    0s-1d,sun,mon,tue,wed,thu,fri,sat vlan-id=301 vlan-mode=use-tag
/caps-man manager
set ca-certificate=auto certificate=auto enabled=yes
/interface bridge port
add bridge=br-v201 interface=v201-S
add bridge=br-v221 interface=v221-D
add bridge=br-v241 interface=v241-H
add bridge=br-v301 interface=v301-R
add bridge=br-vlan interface=eth4-M-RB951
/ip accounting
set enabled=yes
/ip address
add address=10.35.34.254/24 interface=br-v301 network=10.35.34.0
/ip dhcp-server network
add address=10.35.34.0/24 dns-server=10.35.34.254 gateway=10.35.34.254 \
    ntp-server=10.35.34.254
/ip dns
set allow-remote-requests=yes
/system identity
set name=CCR1036-254
AP
/interface bridge
add name=br-v201
add name=br-v221
add name=br-v241
add name=br-v301
add name=br-vlan_all
/interface wireless
# managed by CAPsMAN
# channel: 2412/20-Ce/gn(30dBm), SSID: Privat, CAPsMAN forwarding
set [ find default-name=wlan1 ] band=2ghz-b/g/n l2mtu=1600 mode=\
    station-pseudobridge ssid=MikroTik wireless-protocol=nv2-nstreme-802.11
/interface ethernet
set [ find default-name=ether1 ] name=eth1-uplink
/interface vlan
add interface=eth1-uplink l2mtu=1594 name=v201-S vlan-id=201
add interface=eth1-uplink l2mtu=1594 name=v221-D vlan-id=221
add interface=eth1-uplink l2mtu=1594 name=v241-H vlan-id=241
add interface=eth1-uplink l2mtu=1594 name=v301-R vlan-id=301
/interface wireless security-profiles
set [ find default=yes ] authentication-types=\
    wpa-psk,wpa2-psk,wpa-eap,wpa2-eap mode=dynamic-keys supplicant-identity=\
    MikroTik wpa-pre-shared-key=12345678 wpa2-pre-shared-key=12345678
/interface bridge port
add bridge=br-v201 interface=v201-S
add bridge=br-v221 interface=v221-D
add bridge=br-v241 interface=v241-H
add bridge=br-v301 interface=v301-R
add bridge=br-vlan_all interface=eth1-uplink
/interface wireless cap
set certificate=request discovery-interfaces=br-v201 enabled=yes interfaces=\
    wlan1
/ip accounting
set enabled=yes
/ip address
add address=10.35.34.202/24 interface=br-v301 network=10.35.34.0
/ip dns
set allow-remote-requests=yes
set name=RB951G-202
 
uldis
MikroTik Support
MikroTik Support
Posts: 3446
Joined: Mon May 31, 2004 2:55 pm

Re: capsman vlan and dhcp (offering lease without success)

Mon Dec 08, 2014 1:11 pm

looks like you are using full forwarding and then there is not need for vlan interface creation on the CAP device as all the traffic from the CAPs are terminated on the CAPsMAN router CAP interfaces.
 
rore
just joined
Topic Author
Posts: 9
Joined: Fri Sep 26, 2014 11:02 pm

Re: capsman vlan and dhcp (offering lease without success)

Mon Dec 08, 2014 1:39 pm

The Vlans on the AP Point are created because on the AP (RBB951G) the ethernaet ports are used for wired Clients.

The other strange thing is when I connect a wireless Client to the AP I can see it at the Registration Table at CapsMan with TXSignal=0 RX Signal=-42
 
rore
just joined
Topic Author
Posts: 9
Joined: Fri Sep 26, 2014 11:02 pm

Re: capsman vlan and dhcp (offering lease without success)

Mon Dec 08, 2014 3:29 pm

Just had a lookin the log with debug,dhcp

Dhcp Server gets a discover and a offer is sent, but the Client doesn't take the ip or doesn't get Messages from dhcp Server....

The log:
04:16:42 dhcp,debug,packet dhcp1 received discover with id 3190971424 from 0.0.0.0
04:16:42 dhcp,debug,packet secs = 5
04:16:42 dhcp,debug,packet ciaddr = 0.0.0.0
04:16:42 dhcp,debug,packet chaddr = 14:10:9F:9A:23:D7
04:16:42 dhcp,debug,packet Msg-Type = discover
04:16:42 dhcp,debug,packet Parameter-List = Subnet-Mask,Router,Domain-Server,Domain-Name,Domain-Search,Auto-Proxy-Config
04:16:42 dhcp,debug,packet Max-DHCP-Message-Size = 1500
04:16:42 dhcp,debug,packet Client-Id = 01-14-10-9F-9A-23-D7
04:16:42 dhcp,debug,packet Address-Time = 7776000
04:16:42 dhcp,debug,packet Host-Name = "iPad3-ro"
04:16:42 dhcp,debug,packet dhcp1 sending offer with id 3190971424 to 255.255.255.255
04:16:42 dhcp,debug,packet ciaddr = 0.0.0.0
04:16:42 dhcp,debug,packet yiaddr = 10.35.34.198
04:16:42 dhcp,debug,packet siaddr = 10.35.34.254
04:16:42 dhcp,debug,packet chaddr = 14:10:9F:9A:23:D7
04:16:42 dhcp,debug,packet Msg-Type = offer
04:16:42 dhcp,debug,packet Server-Id = 10.35.34.254
04:16:42 dhcp,debug,packet Address-Time = 259200
04:16:42 dhcp,debug,packet Subnet-Mask = 255.255.255.0
04:16:42 dhcp,debug,packet Router = 10.35.34.254
04:16:42 dhcp,debug,packet Domain-Server = 10.35.34.254
 
uldis
MikroTik Support
MikroTik Support
Posts: 3446
Joined: Mon May 31, 2004 2:55 pm

Re: capsman vlan and dhcp (offering lease without success)

Mon Dec 08, 2014 4:20 pm

please email to the support@mikrotik.com your network diagram and include the support output file from CAPsMAN and CAP.
 
rore
just joined
Topic Author
Posts: 9
Joined: Fri Sep 26, 2014 11:02 pm

Re: capsman vlan and dhcp (offering lease without success)

Mon Dec 15, 2014 1:08 am

I solved the problem by activating local forwarding.

I found no solution with full forwarding. With full forwarding Clients do not get the offer from the DHCP Server...

Who is online

Users browsing this forum: trmns, UkRainUa and 15 guests