Help! Need some advice regarding VLANs in RB750GL

RouterOS Beginner Basics
1

Hello everyone, I’m trying to send two networks (Cameras and Data, using a RB750GL) from one building to another. Also, i’m using optical fiber.

My project looks like this:



\

  • In “Building B”, media converter is Fiber to RJ45
    ** In “Building B”, servers are allocated in network 192.168.1.x/24 and cameras in 192.168.20.x/24


    Now, I need to know the best way to accomplish this project, should I use two vlans? or just switching? In case I should use VLANS, how would be the procedure in order to make it work? Sorry for the inconvenient, I appreciate all answers, thank you.
2

Yes, VLANs would make that easy. However I’m on my phone right now and there is no way I would even try to type up details on setting it up from my phone. Check out VLAN in the Wiki. If you can’t figure it out, ask and I’ll point you in the right direction.


Sent from my Droid Turbo via Tapatalk, so blame any typos or spelling errors on Android

3

Hey, thanks for reply. I’m still trying to figure it out, I’ve created 2 vlans (vlan400 and vlan500), but I’m not sure if I have to add them to a bridge or not. If you could enlighten me with this, I’d really appreciate it.

I’m trying to follow this tutorial: http://wiki.mikrotik.com/wiki/Manual:Interface/VLAN

But I don’t know how to set both Mikrotik in order to communicate everything. I hope you can understand me, thanks for your time.

Miguel.

4

Using the switch chip with VLANs is the easiest method for sure, you’ll also get wire speed performance.
Avoid bridging.

Depending on your exact situation you might want to route instead of switching,
Setup a PtP 10.0.0.0/32. network between the 2 building and use OSPF if you do not want to setup all the routes manually.
Routing also prevents broadcasting traffic between the 2 buildings.

You’ll end up with 5 networks which can be secured/divided by firewall rules.
A good example is a rule that allows the a-camera and b-camera networks to access only the Camera Management Server.

You could also add a second PtP connection later and let OSPF handle the fail-over.

5

There is no need to use a bridge at all.
While I will agree that you could do it as SteloNLD suggested, that seems overly complex. Just running a couple VLANs would be easy. If you had managed switches, you would not even need the routers at all, although of course the router adds capability and will do the VLAN function just fine. Using the routers would allow complete control of fire walling if there is a need for that.