I’ve been contentedly using an RB750Gr2 for a couple of years, and so decided to buy an hAP ac2 when my Netgear WNDR3700 (in AP mode) died.
All of the devices on my network are on 192.168.1/24, so, because the hAP ac2 is on 192.168.88.1, I set the RB750’s routing destination to 192.168.0.0/16.
$ sudo nmap -Pn -T4 192.168.88.1
Starting Nmap 7.60 ( https://nmap.org ) at 2021-01-16 23:35 CST
Nmap scan report for 192.168.88.1
Host is up (0.43s latency).
All 1000 scanned ports on 192.168.88.1 are filtered
Nmap done: 1 IP address (1 host up) scanned in 29.71 seconds
nmap can see that it’s up, and my iPhone can connect to the wireless network, but neither my desktop nor the iPhone can connect to the hAP. Here’s the error message:
This site can’t be reached
http://192.168.88.1/ is unreachable.
ERR_ADDRESS_UNREACHABLE
How do I connect to the AP? (I don’t have a Windows machine with which to connect via Winfig and the MAC address.)
you have to make an initial configuration either with ssh, wine (winbox) or the app for ios / android (you should see a wifi on the iphone - connect to it without a pass and make the configuration via the app, for example)
$ telnet 192.168.88.1 20
Trying 192.168.88.1...
telnet: Unable to connect to remote host: No route to host
$ ssh admin@192.168.88.1 20
ssh: connect to host 192.168.88.1 port 22: No route to host
Does this mean that I must add an explicit route to 192.168.88.1?
Unless you changed default config you should be able to access hAP ac2 through its LAN interfaces … in short these are interfaces which give you IP address in 192.168.88.0/24 subnet via DHCP. By default management access is blocked from WAN and your 192.168.1.0/24 subnet is WAN for hAP ac2.
If you can’t connect through LAN interfaces via IP (web browser, ssh), you can try using winbox via MAC address. If that doesn’t work either, you’ll have to perform factory reset.
BTW, if you’re using hAP ac2 as wireless AP and you don’t inted to separate wireless subnet from the rest of your LAN, you could configure hAP ac2 as pure wifi AP, passing traffic transparently (meaning your wireless devices would get IP addresses from subnet 192.168.1.0/24 etc.)
Does this mean that I must add an explicit route to 192.168.88.1?
Why should you have to set an IP route if directly connected to the hAp ac2 ?
Directly connect to the hAP ac2, either through wifi, or through one of the ethernet ports 2 to 5 (do not use ether1, that is the WAN port by default, it does not have DHCP server and is blocked by the firewall for incoming connections)
You probably connect the hAP ac2 via ether1 to the RB750gr2. hAp ac2 cannot be accessed from that network then.
If you want to use the hAp ac2 as a pure wifi AP (as @mkx explained) , transparently accessing it and also the devices on the other side of the hAp ac2, then connect the hAP ac2 via it’s ether2, not ether1, and disable the DHCP server on the bridge, and move the DHCP client from ether1 to the bridge. You will have one 192.168.1.0/24 network.
You can then change configuration, like adding ether1 to the bridge.
All of the devices on my network are on 192.168.1/24, so, because the hAP ac2 is on 192.168.88.1, I set the RB750’s routing destination to 192.168.0.0/16.
If the hAP ac2 is in “Home AP” mode, the default routing/NAT/firewalled mode, then you cannot access the hAP ac2 or the devices connected to it via the RB750.
If the hAp ac2 is in pure wifi AP mode, then everything is in the 192.168.1.0/24 network. No routing required.