Community discussions

Search found 20 matches

by xpegenaute
Sun Sep 22, 2019 1:44 am
Forum: Beginner Basics
Topic: Creating an access port + vlan to separate specific device traffic from general traffic
Replies: 0
Views: 333

Creating an access port + vlan to separate specific device traffic from general traffic

Dear all, Even though my case is much more complex, I want to simplify the case to this. * I have my LAN network with a CRS working with default settings * I want Port 4 to be working as an access port for vlan 10 with a separated network. Later I'll want to apply network filters. I've been followin...
by xpegenaute
Sun Mar 10, 2019 3:02 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi, I've downgraded to a previous functional version with the configuration and it was failing too. As a consequence I started to inspect the Proxmox installation thoroughly and I found that the VBox machine was not set with promiscue mode. I changed this setting and it worked with your configuratio...
by xpegenaute
Fri Mar 08, 2019 4:49 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Oks, tested on 951G-2HnD firmware 6.44 same config, it fails in exactly the same way.

Xavi
by xpegenaute
Fri Mar 08, 2019 4:23 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi, find attached a dhcp query and ping to 8.8.8.8 sniffed at the same time from: 1. dhcp-ping--proxmox-bridge.pcap: The phisical interface from proxmox included in the virtual bridge (vmbr0) created with proxmox. Includes tagging. 2. dhcp-ping--vlan-bridge-LAN-HISOLAN-200.pcapng: The virtual interf...
by xpegenaute
Thu Mar 07, 2019 4:35 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi,
I want to play as simple as possible, no traffic limitations only default configuration for firewall. No admin vlans either.

Later I am going to try to sniff on proxmox switch and i'll try to do it with another router model. I guess it's not related but just in case...
by xpegenaute
Thu Mar 07, 2019 12:21 am
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

May be it can help: find attached a capture of the wireshark using Packet Sniffer from the interface "vlan-bridge-LAN-ISOLAN-100" and the current config.
by xpegenaute
Wed Mar 06, 2019 10:28 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi,

ok, updated but still does not work.
On ether2, ether3 there is nothing connected.

* ether1: 172.19.20.0/24 which provides internet
* ether4: proxmox

Regards,
Xavi
by xpegenaute
Wed Mar 06, 2019 12:18 am
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Ops, I forgot it, sorry.
yourlatestconfig-with-bridge-vlan-rule.rsc
by xpegenaute
Tue Mar 05, 2019 11:48 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Damn, Still does not work. I guessed [1] it required also to activate the /interface bridge vlan-filtering but neither in this operation mode worked. I am absolutely lost. Were you able to run this use case ? Do you want me to sniff or debug in part of it ? [1] - https://wiki.mikrotik.com/wiki/Manua...
by xpegenaute
Tue Mar 05, 2019 2:30 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Oks, I didn't know about hide-sensitive, really useful!
yourlatestconfig.rsc
by xpegenaute
Tue Mar 05, 2019 1:11 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi again, I've been sniffing some packets from the proxmox machine: (WORKS) DHCP query/reply root@pve:~# tcpdump -v -e -i enp0s3 -n vlan and port 67 or 68 tcpdump: listening on enp0s3, link-type EN10MB (Ethernet), capture size 262144 bytes 11:47:16.040578 4a:9e:1b:95:5c:29 > ff:ff:ff:ff:ff:ff, ether...
by xpegenaute
Tue Mar 05, 2019 12:08 am
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

First of all, thanks a lot for your time! Secondly, I tried to adapt your comments to the script posted before and I merged your comments as comments in the script. To simplify the scenario I prefer to delay the firewall modifications and I just changed to the default rules without IPSec rules. Once...
by xpegenaute
Mon Mar 04, 2019 2:27 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi, just aiming to help to find the proper solution. This is the script I used before the "new" VLAN scheme. Best regards, Xavi /interface bridge add name=bridge-HISOLAN-200 protocol-mode=none add name=bridge-ISOLAN-100 protocol-mode=none add name=bridge-LAN protocol-mode=none /interface vlan add in...
by xpegenaute
Fri Mar 01, 2019 2:39 pm
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

Hi, sorry, as you stated, what I am looking for is not completely shown in the diagram. As a context, this "project" is for a vocational school trying to build a very simple configuration in order to allow them to play with unsafe software in two levels (**): * ISOLAN (vlan 100): must be fully isola...
by xpegenaute
Fri Mar 01, 2019 12:44 am
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Re: Simple Miktorik + Proxmox VLAN config

BTW, the device used is hAP Lite.

Thanks,
Xavi
by xpegenaute
Fri Mar 01, 2019 12:42 am
Forum: General
Topic: Simple Miktorik + Proxmox VLAN config
Replies: 24
Views: 1417

Simple Miktorik + Proxmox VLAN config

Dear all, since the "new" changes to VLAN configuration I am blocked trying to configure a personal lab with Mikrotik and Proxmox. My goal is to achieve the scenario shown in this picture: network.png NOTE: BOCA means port. The problem here is that Proxmox is connected with only 1 interface on port ...
by xpegenaute
Thu Mar 01, 2018 2:36 pm
Forum: General
Topic: CRS - Mac Based VLAN and routing on the same device
Replies: 1
Views: 350

Re: CRS - Mac Based VLAN and routing on the same device

Hi all, I've been thinking and now, as a test, I can tag the packages coming from the ether port for a specific VLAN-Mac mapping, decode the package to use routing but the packages going back to the source pc are sent tagged. How I could remove the tag when the package is going from the CRS to the c...
by xpegenaute
Wed Feb 28, 2018 4:02 pm
Forum: General
Topic: CRS - Mac Based VLAN and routing on the same device
Replies: 1
Views: 350

CRS - Mac Based VLAN and routing on the same device

Hi All, I am thinking to configure on a CRS125 some ports (let's say from 10-16 port numbers) to be used with MAC based VLANs and I don't want to use a trunk port, I want all the logic on the same CRS device. In the example shown in "CRS examples" [1], they configure: 1) A group of switched ports on...
by xpegenaute
Fri Feb 24, 2017 1:26 am
Forum: RouterBOARD hardware
Topic: Serial Console: RJ45-USB on RB2011UiAS-2HnD
Replies: 0
Views: 372

Serial Console: RJ45-USB on RB2011UiAS-2HnD

Dear all, I just bough this cable [1] to connect to the serial console on a RB2011UiAS-2HnD, but my surprise is that it is only capable to receive information but do not send anything. I've tried this cable on a Cisco device and works properly. I am aware that the documentation [2] does not says any...
by xpegenaute
Sat May 17, 2014 2:11 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 245104

Re: Metarouter images

Hi all, any one could provide a virtual environmet with all the necessary tools to compile for mikrotik?, I am interested in mipsbe though. I want to compile the OSLEC echo cancellation software but I don't have the full system to compile it for mips. Vagrant is a good option if you want it [1]. [1]...