Help setting up AP with LAN DHCP

djm0 · January 15, 2017, 6:57am

Hello All,

I have a RB800 running the latest non-beta. I’ve been fiddling with WinBox and configuring this device to be an AP with no luck using the DHCP server on my LAN.

Here is what i’m looking to do in the end:
Single Ethernet Connection, Trunk port. Untagged traffic, VLAN10 and VLAN20
Trunk port on PFSENSE router will be from an OVS port in KVM on a linux server.

5GHz:
UNTAGGED TRAFFIC → PFSense Router for WAN → LAN RADIUS SERVER AUTH → LAN DHCP/DNS

2.4GHz:
UNTAGGED TRAFFIC → PRI WIFI: → LAN RADIUS SERVER AUTH → LAN DHCP/DNS
GUEST WIFI → Virtual AP using VLAN10 → DHCP/DNS from PFSENSE Router
Outside WIFI → Virtual AP using VLAN20 → DHCP/DNS from PFSENSE Router

Basically I want to manage most of the activity with my PFSense Router / LAN equipment and I really don’t see a reason to add an extra NAT setting this up as a router. Currently have this setup using a EA6900 in AP mode (XWRT firmware) and its working great however with my RB800 I can get some serious much needed range.

Any help would be much appreciated!

Thanks,

Sob · January 15, 2017, 11:22pm

You should be able to simply bridge everything together, enable VLANs for GUEST WIFI and Outside WIFI (vlan-mode=use-tag vlan-id=) and then use bridge filters to prevent VLAN packets from going to PRI WIFI and 5GHz AP.

djm0 · January 16, 2017, 4:46pm

Why would I tag the clan on the virtual Ap? The switch connected will tag all the vlans and the wireless clients should act as if it’s untagged

Sob · January 16, 2017, 5:12pm

And that’s exactly what VLAN settings for wireless interfaces do. It works as access port, connected clients see untagged traffic, but when they send something, it’s internally tagged so you can simply bridge trunk port with wireless.