Hi there. I’m a little familiar with RouterOS but not wireless portion. I could use a little help setting up a network with cAPAC. I would like to use capsman to control my cAPs. I am using a 2011UiAS as a router, running 6.42.6. I have tried using cAPAC connected directly to the 2011UiAS to get it set up, now it is attached via a L2 switch for POE. I have been reading forums for instructions on how to use capsman to manage the cAP. I set up the router as per instructions and also enabled capsman management on the cAP. The cAPs will not populate in the CAP Interface screen.
I noticed that the CAP is getting a private IP from the DHCP server on the router. So there must be L2 connectivity to it. Also the MAC shows up in my Winbox neighbors window. I can connect to the CAP via the IP address on the private network. I think CAPSMAN wants to use L2 to communicate to the cAP so maybe the IP is messing it up? I would sincerely appreciate any advice.
Mike
Router Config
MMM MMM KKK TTTTTTTTTTT KKK
MMMM MMMM KKK TTTTTTTTTTT KKK
MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK
MikroTik RouterOS 6.42.6 (c) 1999-2018 http://www.mikrotik.com/
[?] Gives the list of available commands
command [?] Gives help on the command and list of arguments
[Tab] Completes the command/word. If the input is ambiguous,
a second [Tab] gives possible options
/ Move up to base level
.. Move up one level
/command Use command at the base level
(6 messages not shown)
[obscured@obscured] > console
[obscured@obscured] > export
compact --
file -- File name
hide-sensitive --
terse --
verbose --
[obscured@obscured] > export
# jul/26/2016 15:19:53 by RouterOS 6.42.6
# software id = 0AV5-58ZX
#
# model = 2011UiAS
# serial number = 8C1B0880CEC1
/caps-man channel
add band=2ghz-onlyn control-channel-width=20mhz frequency=2412 name=channel1
add band=2ghz-onlyn control-channel-width=20mhz frequency=2437 name=channel6
add band=2ghz-onlyn control-channel-width=20mhz frequency=2462 name=channel11
add band=2ghz-onlyn control-channel-width=20mhz frequency=2484 name=channel14
/interface bridge
add admin-mac=CC:2D:E0:BA:67:D8 auto-mac=no comment=defconf name=bridge
/interface ethernet
set [ find default-name=ether2 ] name=ether2-master
set [ find default-name=ether6 ] name=ether6-master
/caps-man datapath
add bridge=bridge name=datapath1
/caps-man security
add authentication-types=wpa-psk,wpa2-psk,wpa-eap,wpa2-eap name=security1 \
passphrase=7127790570
/caps-man configuration
add channel=channel11 channel.band=2ghz-g/n country="united states3" datapath=\
datapath1 mode=ap name=cfg1 security=security1 \
security.authentication-types="" ssid=obscured
/interface list
add exclude=dynamic name=discover
add name=mactel
add name=mac-winbox
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=obscured
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge name=defconf
/caps-man manager
set enabled=yes upgrade-policy=require-same-version
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1 name-format=prefix \
name-prefix=CAP_
/interface bridge port
add bridge=bridge comment=defconf interface=ether2-master
add bridge=bridge comment=defconf interface=ether6-master
add bridge=bridge comment=defconf hw=no interface=sfp1
add bridge=bridge interface=ether3
add bridge=bridge interface=ether4
add bridge=bridge interface=ether5
add bridge=bridge interface=ether7
add bridge=bridge interface=ether8
add bridge=bridge interface=ether9
add bridge=bridge interface=ether10
/ip neighbor discovery-settings
set discover-interface-list=discover
/interface list member
add interface=sfp1 list=discover
add interface=ether2-master list=discover
add interface=ether3 list=discover
add interface=ether4 list=discover
add interface=ether5 list=discover
add interface=ether6-master list=discover
add interface=ether7 list=discover
add interface=ether8 list=discover
add interface=ether9 list=discover
add interface=ether10 list=discover
add interface=bridge list=discover
add interface=bridge list=mactel
add interface=bridge list=mac-winbox
/ip address
add address=obscured/24 comment=defconf interface=ether2-master network=\
obscured
/ip dhcp-client
add comment=defconf dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server network
add address=obscured.0/24 comment=defconf gateway=obscured.1 netmask=24
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=obscured.1 name=router
/ip firewall filter
add action=accept chain=input src-address=obscured
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=input comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=input comment="defconf: drop all from WAN" in-interface=\
ether1
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add action=accept chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" connection-state=\
invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface=ether1
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=\
ether1
/lcd
set time-interval=hour
/system clock
set time-zone-name=America/Chicago
/system identity
set name=obscured
/system routerboard settings
set silent-boot=no
/tool mac-server
set allowed-interface-list=mactel
/tool mac-server mac-winbox
set allowed-interface-list=mac-winbox
[obscured@obscured] >
cAPAC Config
MMMM MMMM KKK TTTTTTTTTTT KKK
MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK
MikroTik RouterOS 6.42.6 (c) 1999-2018 http://www.mikrotik.com/
[?] Gives the list of available commands
command [?] Gives help on the command and list of arguments
[Tab] Completes the command/word. If the input is ambiguous,
a second [Tab] gives possible options
/ Move up to base level
.. Move up one level
/command Use command at the base level
[admin@MikroTik] > export
# aug/03/2018 09:20:00 by RouterOS 6.42.6
# software id = J4XX-2VC3
#
# model = RouterBOARD cAP Gi-5acD2nD
# serial number = 81CF082F1A2D
/interface bridge
add admin-mac=CC:2D:E0:A7:03:0B auto-mac=no comment=defconf name=bridge
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce \
disabled=no distance=indoors frequency=auto mode=ap-bridge ssid=\
MikroTik-A7030D wireless-protocol=802.11
set [ find default-name=wlan2 ] band=5ghz-a/n/ac channel-width=20/40/80mhz-Ceee \
disabled=no distance=indoors frequency=auto mode=ap-bridge ssid=\
MikroTik-A7030E wireless-protocol=802.11
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/interface bridge port
add bridge=bridge comment=defconf interface=ether1
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=wlan1
add bridge=bridge comment=defconf interface=wlan2
/interface wireless cap
set caps-man-addresses=172.21.21.1 discovery-interfaces=ether1 interfaces=\
wlan1,wlan2
/ip dhcp-client
add comment=defconf dhcp-options=hostname,clientid disabled=no interface=bridge