Change MT from router to switch using VLANs

RouterOS General
1

Hello.

I’m OpenWRT user, not expert MikroTik hence asking for help.

Right now my config is:

INTERNET <> ONT (media converter) <> MT <> OpenWRT <> Clients

To MT is assign public IP on ETH1 port connected with ONT device, is launched NAT on MT, next MT is connected to OpenWRT via ETH2 port. Others port on MT is speared bridge config.

I’d like achieve below, physical connections stay as is:

  1. Forward all traffic from ONT from ETH1 port on MT to port ETH2 on MT (connected to OpenWRT)
  • VLAN untagged ETH1
  • VLAN tagged ETH2
  • erase public IP on MT

  1. Assing public IP on OpenWRT to tagged VLAN (this know how to do) and created new tagged VLAN2 on the same physical port to MT

  2. MT connect to VALN2 on physical port ETH2.

In other word I’d like thread MT like switch (not router like now) for internet but allow connect using VLAN2 between MT and OpenWRT as new local network.

2

hello,

from this point,

Forward all traffic from ONT from ETH1 port on MT to port ETH2 on MT (connected to OpenWRT)

  • VLAN untagged ETH1
  • VLAN tagged ETH2
  • erase public IP on MT

those 2 interfaces should have the same vlan, let us say vlan 5.

now, the first problem you will encounter in configuring MT router is its default config - which might have bridged every physical ports except wan port (and any other default config such firewall etc).

if you brave enough to erase that default config (just for your new requirements config) - your job will be much easier.

  1. create 1 bridge.

  2. create 2 vlan interface :
    vlan 5 no ip addr. for the wan bridge to the openwrt (public ip).
    vlan 6 10.0.6.0/24 for openwrt back to mt (private ip).

  3. put that wan and ether2 on the bridge.

  4. do bridge vlan filter : vid 5,6 tagged=bridge, ether2 untagged=wan

  5. the outgoing traffic to internet/nat should be handled by openwrt (route back).

  6. have a try and let us see how is the results :+1:t2:

hope this helps.

3

Can you clarify requirements first. I hate guessing like wiseguy… so please confirm or clarify the below.

a. You have an ONT stream coming in on ether1 on the mikrotik.
b. you wish to tag that stream with vlan5 lets say and then moved the newly tagged data to ether2 port
c. you wish to connect ether2 as a WAN incoming stream to the openWRT router on its WAN port.
d. you state that the openWRT is setup to accept this WAN stream via tagged vlan5 traffic.
e. you wish to also use the MT as a LAN device (at least one port for use on openwrt LAN).

SO EITHER
f. The openwrt LAN traffic will come in on ether3 untagged and we can tag it with vlan2 and move it to other ports on the MT
OR
g. The openwrt LAN traffic is coming tagged from the openwrt.

NOW WHICH DEVICE MT do you have …???

4

@ anav

The openwrt LAN traffic will come in on ether3 untagged and we can tag it with vlan2 and move it to other ports on the MT

are you sure this won’t make l2 loop?

openwrt LAN traffic is coming tagged from the openwrt.

that’s what I have suggested in my reply :wink:

NOW WHICH DEVICE MT do you have …???

absolutely :joy:

5

Stop with the guessing already LOL, waiting for OP for some hard facts :slight_smile:

6

@oneiro… waiting for more info.