I just received my Mikrotik hEX PoE to replace my current Orange Livebox for a 1Gb/s Fiber access with Orange in France.
I did the following : Orange OLT → Huawei ONT → Mikrotik SFP RJ45 → sfp1 on hEX PoE
Orange is doing some twist on DHCP v4 request and DHCP v6 where you need to use a specific vlan 832 but the most important is to have CoS to 6 on DHCP Request for IPv4 et also for IPv6.
Due to this requirements I did a bridge to handle the sfp1, vlan832, DHCP client.
But the result is impossible to use Switch Rules on sfp1, any ideas to avoid the bridge and/or increase performance to reach 1Gbs/s and not half-1/3 actually?!
Thanks in advance.
Nicolas
For information on a default config reset, here is my setup added:
Finally I got Ipv4 working with a switch rule but nothing for IPv6 !!
I don’t use anymore sfp1 because switch rule are not available for sfp1 and switch to ether1.
Using a bridge for both IPv4 and IPv6 it was working perfectly but max speed top at 300Mb/s and CPU at 100%
Now with switch rule working for IPv4 only max speed top at 1Gb/s !!! Just missing IPv6 …
Here is the switch rules used and config :
Is there any plan to have it ?
Also It seems that switch rules for IPv6 traffic to set Cos to 6 on DHCP solicit seems to be not working as it should be !
I think I identify my problem, just a summary about the config :
I have a RB960PGS (hEX PoE) connected to a 1Gb/s Fiber internet access with Orange Pro in France.
To be able to have a link we need :
for IPv4 set CoS to 6 on DHCP request + custom DHCP option code
for IPv6 set CoS to 6 on DHCP solicit + custom DHCP option code
For IPv4 I got the following switch rule and it works well :
/interface ethernet switch rule add dst-port=67 mac-protocol=ip new-vlan-priority=6 ports=switch1-cpu protocol=udp switch=switch1
I am catching correctly DHCP IPv4 client request.
For IPv6 I cannot have dst-port field available to catch port=547 for udp trafic, instead I have the following rule :
/interface ethernet switch rule add mac-protocol=ipv6 new-vlan-priority=6 ports=switch1-cpu src-mac-address=74:4D:28:6D:F7:AB/FF:FF:FF:FF:FF:FF switch=switch1
I apply it for all trafic impacting a lot IPv6 performance.
I did a couple of others tests and it seems impossible to have switch rules working correctly for IPv6 DHCP request and impossible to catch only UDP trafic on a specific port for IPv6 !
Any comments and/or suggestions ?
Is it a bug ? May I need to fill something ?
Sorry pretty new with a Mikrotik product who is fantastic…
Since they are all at home working in nothing but their underwear, it should get looked at really fast. Normally its a 2-3 day turn around depending upon other fires they are putting out.