Help, please on configuring Mikrotik 750GL with Unifi, VLANS

RouterOS Beginner Basics
1

I have a small motel and am trying to upgrade the WIFI service for my guests. The Internet is provided by a small WISP and goes then to a main router. Fron there it goes by wire to 4 Unifi APs and also to my office network, to the Unifi controller, and to my VOIP appliances. I would like to have 3 ssids (WLANS) appearing on each of the 4 UAPs, which means I need to use VLANs or else run duplicate hardware. The 3 WLANS are

  1. Guests, which requires a password which is changed periodically and given only to paying guests
  2. Private, which also requires a password and is limited to management. This network needs access to the printer and NAS on the office network.
  3. Free, which is a free access restricted speed network for travelling freeloaders like me, and the neighbouthood teenagers.

I have the Unifi part of this up and running. nothing to it. However, I had two different routers running dd-wrt which were supposed to support VLAN tagging. Neither worked, so I thought of the ROUTERBoard 750GL which i had on the shelf from a previous project to accomplish the same ends.

Having spent the day trying to figure out how to configure the routerboard router, I remember now why it ended up on the shelf!

I can get it to connect to the internet and serve regular dhcp clients in a lan, but the rest of it defeats me. I have looked at a number of how-to’s, particularly http://blog.gowifi.co.nz/2013/04/ubiquiti-unifi-vlan-configuration.html
but I can’t get into my head what is being done so that I can get it right for my situation.

1, It starts with creating bridges - maybe to tie together the VLAN tag with the VLAN and subnet (192.168.2.1 vs 192.168.3.1, etc) Can someone tell me why this is necessary if regular clients in the 1.1 subnet can get out now?

  1. Next step is settingup neighbour discovery - since i don’t want anybody seeing any other clients, is this necessary, or wise?
    What, exactly does it do?

  2. DHCP setup acouple of them wanted option code 43 set - the official list is that this iss vendor specific???

  3. a discussion of the whole concept of interfaces would help, too - I understand what an interface is, but I don’t understand what parts need to be linked and what is automatic …so there is ether1 and lan 1, and VLAN1, and something maybe ether1 is traditionally the WAN, while ether 2 appears to be virtual???

If you can help, that would be great!

2

The Mikrotik is just too difficult to configure for this. I’m going with something else. Anybody wanna buy a used RouterBoard 750GL?