Accessing management interface on mikrotik SWITCH.

spammyduck · January 25, 2015, 5:00am

I have a Mikrtik Cloudcore switch I would like to access via winbox (or SSH, http) from a different subnet than the switch is on. All of the other managed switches I use have a management interface and you configure the IP/subnet/gateway for the management interface.

As far as I can tell the mikrotik switch does not have this arrangement. On it the only thing you can assign IP’s to are the ports. I have done this but then I can only access the switch via its IP locally (from the same subnet). For example I have one configured with a 10.10.9.251/16 and I can only access it from another 10.10.#.# address.

The switch connects to a mikrotik router. On the router port 2 is 10.10.254.254/16 (the port the switch is connected to) and port 3 is a public IP like 1.1.1.254/24 . All of the backhauls, APs, switches and other devices on my network with a management interface are in the 10.10.0.0/16 subnet with a gateway pointing at the 10.10.254.254 on the router. This allows me to access the 10.10.0.0/16 from the 1.1.1.0/24 subnet. I can’t access the Mikrotik switch from the 1.1.1.0/24 network because I can’t figure out where to tell it the gateway is 10.10.254.254 .

Is it possible to configure the switch to be accessed via the 1.1.1.0/24 network or can mikrotik cloud switches only be accessed locally ?

Thanks

jarda · January 25, 2015, 12:04pm

Seems you are missing route that would tell the switch where to send packets back if the dst address is out of his network.

spammyduck · January 26, 2015, 3:48pm

Well this just keeps getting more and more confusing. I was told in another post that I could not use the settings that are specifically for routing (uses the cpu) and the only settings that will work are the ones that only use t he switch chip. Isn’t a route, routing ? Do I have to remove a port from the switch group and and configure it as a routed port ? If I do that do I then have to use that port to connect to the 10.10.254.254 port on the router ?

jarda · January 26, 2015, 4:25pm

I meant you were writing about management traffic of the switch. It always involves cpu and is driven by routes. It has no relevance to traffic that passes thru. Just assign ip to master port and set routes, leaving the ports in switch configuration. It will keep switching.

jarda · January 26, 2015, 4:28pm

The switch should have all ports in switch configuration and individual ports shouldn’t have different network addresses otherwise it could start to route all traffic.

spammyduck · January 28, 2015, 3:46pm

Thank you, that did the trick.

jarda · January 28, 2015, 4:13pm

Glad I could help.