Attach AP mode router to another basic router

RouterOS Beginner Basics
1

Hi all,

I bought first mikrotik product to do AP mode with Wifi dual band.

This first router is connected from eth1 to eth8 on another second mikrotik router.

The first router have few devices connected to a subnet with IPs 192.168.8.X with a bridge.

It's possible to the second device to just see the subnet with IPs 192.168.8.X on port eth8 ?

What configuration is necessary to avoid to do :
-first router : dhcp client on eth1
-second router : dhcp server on eth8 with pool adress 192.168.9.1

It's already what i've done in sort with basic configuration on second router :
-dhcp server on eth2 with pool adress
=> With this basic configuration, customer can access to other devices and have internet access

Thanks for your advices

2

Do you really want to use router mode? It is easier to put it in bridge mode with only a single network.

3

Which is which is which............. not inside your head, please provide a network diagram.

4

Here is my network configuration.

https://debian-facile.org/images/file-R68c33e9c393774596ad981dc3c770b0d

I can’t arrived to see IoT device from PC 1 !

Any adviced ? Thanks a lot

5

Maybe bridge mode is a solution, How it’s possible to do this ?

But, maybe in the futur it can be good to use other ethernet ( Eth2, 3, 4, 5) port on the device with antenna.

6

Do you really want/need to have three different networks (192.168.7.0, 192.168.8.0 and 192.168.9.0)?

Right now you have the bridge on the AP on 192.168.8.0 (same as the Br2 on the main router and PC1) and you are evidently routing the bridge connected devices on the AP through ether1 with gateway 192.168.9.1.

From your sketch IOT and PC2 are on 192.168.9.0, while the bridge including the wifi is on 192.168.8.0?

7

What is the first router here?
The AP needs only to be a an AP/Switch.
You need vlans
Done.

8

The first router is the device with AP mode (with Br0 (ETH 2,3,4,5 & Wifi)).

VLANs really ?

9

I’ve done a big mistake sorry !

Replace 192.168.8.X by 192.168.10.X

See in the screenshoot.

https://debian-facile.org/images/file-R206d6869a9a1256b6605f21fd70c6186

10

No its not. The first router ( getting WAN) is not the AP, the AP is the second device in the network flow, not the first ( coming from the internet side of course ).

11

Anyway, now the network "downstream" from the AP is 192.168.10.0.
The network "upstream" from the AP is 192.168.9.0.
This implies that the AP is routing from the bridge to ether1 of the AP.
On the "main" router there is only a single port in a separate bridge with the 192.168.9.0 network, so - possibly - the 192.168.9.0 is further routed?
I.e. you probably have double (or triple) NAT.
In any case from the point of view of the AP anything in 192.168.10.0 is (should be) LAN and anything connected directly or indirectly to ether1/192.168.9..1 is (should be) WAN, so likely the firewall will block connections from WAN (including PC1) to LAN (the IOT) on the AP.

Maybe if you could explain why you want these different networks (and/or the reasoins why you need them) it would be easier to give you some advice.

Also which models are the "main" router and the AP?

12

With smartphone (IoT), i can have internet over the First Router.

But with PC 1 with Home Assistant, don’t see after changing for mikrotik from OpenWrt my IoT devices.

Maybe you’re right for firewall blocking, but i have specify for ETH1 on Second router DHCP client, not PPPoE or other choose.

I just want to share internet and connection from first to second router for HA.

I have change 192.168.10.4 to 192.168.9.4 and other to illustrate what i want.

https://debian-facile.org/images/file-Rc302ce070da14d4f4506bd5619a1018c

13

LAN_WIFI : 198.168.9.0/24 for IoT

LAN_SRV : 198.168.8.0/24 for server

LAN_HOME : 198.168.7.0/24 for desktop computer and printers

WAN : IP public to WWW

14

So, the hap Ax 3 (AP) can (should) be configured with ALL interfaces, i.e. including ether1 into a bridge.
You have (AGAIN) duplicated addresses:
192.168.9.1 is on ether8 of the RB5009
it cannot be ALSO
192.168.9.1 on the bridge on the hap Ax3
The bridge should get the 192.168.9.2 currently assigned to ether1 of the hap Ax3.

In any case since you are using different subnets, 192.168.9.0 for the hap Ax3 and IOT/PC2, 192.168.8.0 for the server and 192.168.7.0 for desktops, the connections need to be routed, and these are settings that you have to make on the RB5009.