I would like my client radios to hand down private dhcp such as a 192.168.1.1 over eth1 rather than what I am currently doing which is a completely bridged network. Ideally each radio will have a private static ip for management logins through dude (172.16.0.x) and hand down dhcp to the client router/computer (192.168.1.x)
I’ve tried setting it up before but I missed something. Can someone tell me how to accomplish my goal through winbox or webbox?
Thanks in advance
This is the only method I found to reliably do what you’re asking without resorting to running WDS w/ VLANs on each client. The downside is it requires static IPs for each CPE and manual setup of the VPLS tunnels.
http://wiki.mikrotik.com/wiki/Transparently_Bridge_two_Networks_using_MPLS
Instead of adding the VPLS interfaces and ether1 to a bridge, just add the VPLS interfaces. Add your 192.168.1.1 IP to bridge1 and run DHCP on it.
Here’s a sample AP config.
/mpls interface set 0 mpls-mtu=1526
/mpls ldp set enabled=yes
/mpls ldp interface
add interface=wlan1
/interface wireless set wlan1 mode=ap-bridge
/interface bridge add name=bridge1 comment="Customer access"
/interface vpls
add disabled=no name=vpls1 remote-peer=172.16.0.10 vpls-id=1:1
/interface bridge port
add interface=vpls1 bridge=bridge1
/ip address
add interface=bridge1 address=192.168.1.1/24
add interface=wlan1 address=172.16.0.1/24
/ip pool
add name=cust_pool1 ranges=192.168.1.2-192.168.1.254
/ip dhcp-server
add interface=wlan1 name=mgmt_dhcp address-pool=static-only
add interface=bridge1 name=cust_dhcp address-pool=cust_pool1
/ip dhcp-server network
add address=192.168.1.0/24 gateway=192.168.1.1 dns-server=8.8.8.8,8.8.4.4
add address=172.16.0.0/24 gateway=172.16.0.1
/ip dhcp-server lease
add server=mgmt_dhcp mac-address=00:15:6D:12:34:56 address=172.16.0.10 comment="Customer 1"
And a CPE config.
/mpls interface set 0 mpls-mtu=1526
/mpls ldp set enabled=yes
/mpls ldp interface
add disabled=no interface=wlan1
/interface wireless set wlan1 mode=station
/interface bridge add name=bridge1
/interface vpls
add disabled=no name=vpls1 remote-peer=172.16.0.1 vpls-id=1:1
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=vpls1
/ip dhcp-client
add add-default-route=yes default-route-distance=0 disabled=no interface=wlan1 use-peer-dns=yes use-peer-ntp=yes
I apologize but I am unable to provide screenshots on how to perform this configuration via Winbox or Webbox. Too time consuming…
Many thanks, I’ll spend some time understanding what you posted.
At first glance it looks like the ap is handing dhcp to each client radio?
I’d like the ap and client radio to stay on a fixed ip then have the client radio act as a router passing dhcp down to the customer computer/router etc. I might reword my question after review.
If it helps this is what I would like to do.
internet/gateway(172.16.1.1) <----bridge----> AP(static management ip 172.16.1.2) <----bridge----> CPE(static management ip 172.16.1.3 then hand dhcp down eth1 192.168.1.1/24) <—dhcp—> Client router/computer
If I understand the above post correctly it would put dhcp above the cpe not below it. Correct me if I’m wrong as this is why i’m asking. If I do this then the ap and cpe will bridge and dhcp will come down from the ap through the cpe to the client putting all cpes connected to that ap on the same dhcp lan?
I went through the link above but I don’t think that will do what I am I looking for. Can I do dhcp at the cpe or does it have to come from the ap through the cpe to the clients router/computer?
I’m used to Motorola canopy equipment and am new to MK. I have been able to put canopy ap’s/cpe on public fixed ips then have the cpe hand down dhcp as I am trying to do here but haven’t had any luck on the MK side.
My goals are to provide the security of using private ips to manage the infrastructure and keep my public pool open.
My second goal is to get away from having a bridged network for obvious reasons.
Right now the network infrastructure is bridged all the way through with private ips and hands down public ips from the gateway router. Help me get away from a bridged network. 