I have a small customer that has had a fibre connection installed and would like to share access to this fast connection amongst other small organisations on the same floor of their building.
I have purchased a CRS109 as mentioned above for this task, and would be grateful for some pointers on getting it configured.
I have several years experience using Mikrotik, but never with VLANs…
Here’s the scenario.
Ether-Gateway - connected to fibre unit
Ethernet Ports 3 to 8 - each to be a port dedicated to a tenant on it’s own VLAN (6 in total)
Wifi - 6 Virtual APs, one each for each VLAN.
The idea is that each tenant can have a VLAN Ethernet port to plug in their own switch, as well as their corresponding VLAN SSID on the Wi-Fi. None of the tenants should be able to communicate with each other by default.
There’s way more VLAN options than I expected when looking through Winbox, so I’d be really grateful if someone could point out a general schema to make this work. My research has only gotten me more confused so far.
Did you buy intentionally a switch where routing / natting is expected? Do you believe you can serve wifi for six companies on the floor by just one access point? What about things like expected throughput, qos, public ip addresses and others?
Jarda - thanks for your input, it seems you are asking questions that I’ve already thought about.
There is not likely to be intensive demand on this device, which is why it was selected.
“6 Companies” is probably more like 15 users in total - they are very small organisations, some with only one individual.
No Public IP addresses are needed. I can configure QoS, but given the level of co-operation between the 6 organisations, it may not be necessary.
The aim of this exercise is mainly to reduce costs for the individual organisations - the cost of this single fibre connection is about the same as 2 DSL connections, so between them, they all save money doing this.
I would like to segregate their traffic though, can you suggest a schema to do that?
If you think that it will work from physics point of view, then the vlans are enough. In case you will use only one device you even don’t need any vlans at all, just a bridge for each local network.