2xWireless + VLANs + MGMT = problem

RichardWard · June 9, 2024, 10:02pm

Hi All,
First time poster, so bear with me. I’m running a network and fairly new to MikroTik, so having s bit of a time understanding if what I want/need to configure is even possible. We are looking to get 2xWireless SSIDs setup, on two different VLANs, and also the Management IP of the AP on one of those VLANs as well. Historically, the AP has only served one VLAN and has worked a treat, but am struggling to work out the config. I would appreciate any help in what I need to configure on both sides of this setup to get it working. I’ll leave the specific configs out for now, as I’m open to starting from scratch to get the best outcome (and don’t want you to see the mess I’ve currently got )

Firstly the hardware. We have a RBD22UGS-5HPacD2HnD access point (AP). ether1 is connected to a netPower 16P (Switch) on ether6
AP (ether1) ↔ Switch (ether6)

We have several VLANS, but for this setup VLAN 10 (Internal) and VLAN 40 (Public) are the important ones.

We currently have a SSID of “PUBLIC” running. The ether6 port on Switch has vlan 40 set as untagged, no vlan setup on the AP. AP also gets its IP via DHCP on VLAN 40 and everything works a treat.

I now need to introduce a new SSID on the AP. I’ve got the SSID set up (STAFF), broadcasting etc as a virtual adapter with parent of wlan1, so from a SSID perspective everything shows.

My issue comes with how to configure the vlans on both sides of the cable (AP and Switch end). Whatever I do, I can only get 2 out of three connections working, the three things being PUBLIC wifi, STAFF wifi or IP connectivity to the AP. I have no idea what I’m missing. To add to this, the AP is about 20 feet in air, so am terrified of making a change and then needing to get the ladders out to reset it

On this note, i’ve tried to use “tool mac-telnet” from the Switch to the AP, but i only had success once, but pretty sure something in the config I currently have has broken that.

Sorry for the long ramble, but in summary
Looking for 2xSSIDs, running on different VLANs
PUBLIC on VLAN40
STAFF on VLAN10
Then the management IP is given out via DHCP on VLAN 40
The IPs for clients connecting to the WiFi will also be given out by the same DHCP server elsewhere on the network
Happy to scrap config on AP, and alter config on the Switch if needed

Let me know if anyone needs any more detail on any of the above.

Kind Regards,
Richard

anav · June 10, 2024, 9:07am

Where is the router??

RichardWard · June 10, 2024, 9:01pm

Hi anav,
The router is a RB4011iGS+ and acts as the DHCP Server for each VLAN. Many L3 switches in between the router and where the AP and Switch are of varying vendors as well

Thanks,
Richard

anav · June 11, 2024, 12:58am

Would need to see config on both
/export file=anynameyouwish (minus device serial number, any public WANIP information, keys etc. )