hEX and creating two (switch or port) groups

jclausius · January 12, 2017, 10:56pm

If I understand the manual correctly, the default configuration on the hEX is:

ether2-master; master port: none
ether3; master port: ether2-master
ether4; master port: ether2-master
ether5; master port: ether2-master

I think somewhere these all belong to ‘switch1’

So, (again, assuming I understand correctly), this grouping is a switch, but while ports 3-5 handle traffic, the configuration takes place on ether2-master.

So, is it possible to create 2 groupings? For example,:

A)
ether2-master; master port: none
ether3; master port: ether2-master
B)
ether4; master port: none
ether5; master port: ether4

Which would create two different switches? When I tried to move ether5’s master port to ether4 in webfig, I get an error about only having 1 master port.

I cannot find any other documentation regarding the role of master-port, so any links, resources, advice, etc. would be appreciated.

Thanks
-jclausius

janus20 · January 13, 2017, 7:38am

Hi,

Yes it is possible.

for ether3-5 set master-port to none.
create 2 bridges: bridge1 and bridge2 ( from left menu, hit bridge then in BRIDGE tab click on “+” sign )
after creating bridges, on bridge windows go to tab PORTS; click on “+” and in general tab into “Interface” select desired port that you want to alocate to selected “Bridge”

Hope it helps.

kind regards,

docmarius · January 13, 2017, 9:05am

AFAIK the used switch chips allow only one master port/chip.

Bridges are done in software and are not switch groups, meaning they are usually not wire speed (they are globally limited to the speed of the switch chip - CPU interface) and use CPU processing.
But function wise they can replace a switch group (with extended capabilities like STP and filtering).

pe1chl · January 13, 2017, 9:59am

No, this is not possible. You can take ports of of the switch and use them independently and with an external
switch, but you cannot break up the internal switch.

However, you may be able to do what you want by adding a VLAN configuration to the switch. You can create
an additional VLAN, make port 4 and 5 untagged members of it, and the CPU port a tagged member, then create
a VLAN interface inside the router config and that VLAN will talk to ports 4 and 5. Like this:

/interface vlan
add interface=ether2-master name=ether2-vlan20 vlan-id=20
/interface ethernet switch port
set 2 vlan-mode=secure
set 3 vlan-mode=secure
set 4 default-vlan-id=20 vlan-header=always-strip vlan-mode=secure
set 5 default-vlan-id=20 vlan-header=always-strip vlan-mode=secure
/interface ethernet switch vlan
add independent-learning=no ports=switch1-cpu,ether2-master,ether4,ether5 switch=switch1 \
    vlan-id=20

The documentation can be found here: http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features

jclausius · January 14, 2017, 1:43am

OK. Looks like I have a couple of decisions to make. Thanks everyone for your help!

AlainCasault · January 14, 2017, 2:35am

VLAN setup is a bit trickier, but you’ll stay on the switch chip and retain wire speed. IT also offloads CPU. Big +!!!

Send from my mobile via Tapatalk. Sorry for the errors and briefness.