I need two ports but can use only one

gdnt · May 25, 2016, 4:10am

I have a somewhat weird setup here: I have an hAP ac, a RB260GSP and my ISP’s modem but here is the catch: I can only connect 1 cable to my hAP and the modem cannot be put in bridge mode (there is no such option there).

This is my first experience with MikroTik and I’m not exactly a network expert, so I hope someone could help me. I have a feeling there is a quite simple solution.

So we have:

              __________
             | RB260GSP |
[modem ] ==> |  port 1  |
[hAP ac] ==> |  port 2  |
[ PC 1 ] ==> |  port 3  |
             |__________|

What I’d like to do is replicate the behavior I would get if I could connect the modem directly to the hAP. That is: PC1 would still be able to access the modem’s status page but it would be using the DHCP server running on hAP.

I suppose the solution is in the ‘VLAN realm’, but I couldn’t manage to make it work.

k6ccc · May 25, 2016, 9:29pm

I’m not specifically familiar with the hAP ac, but did a quick look at it. Is there a reason that you can’t connect the router to the internet connection of the AP, and then the PC to one of the LAN connections of the hAP? The only reason you should need the switch is if you need more than 4 LAN ports - unless I’m missing something (which I could from lack of familiarity with the products).

gdnt · May 26, 2016, 5:32pm

It’s a space limitation. It’s not possible to run another cable to the hAP because the duct is full. The one cable I managed to get there was already hard enough.

gdnt · May 27, 2016, 4:00am

UPDATE:

I’ve managed to create a VLAN (100) to separate the modem from my local network (VLAN 1). The router is using this VLAN to connect to the modem and WiFi clients are able to access the internet just fine.

Clients connected to RB260GSP are still unable to connect to the router or to the Internet.

RB260GSP config is as follows:

VLAN Tab:

Port1 (modem):
Ingress:
VLAN Mode: strict
VLAN receive: any
Default VLAN ID: 100
Force VLAN ID: unchecked
Egress:
VLAN Header: always stip

Port2 (hAP ac):
Ingress:
VLAN Mode: enabled
VLAN receive: any
Default VLAN ID: 1
Force VLAN ID: unchecked
Egress:
VLAN Header: add if missing

Port5 (PC):
Ingress:
VLAN Mode: strict
VLAN receive: any
Default VLAN ID: 1
Force VLAN ID: unchecked
Egress:
VLAN Header: always strip

hAP ac configs:

DHCP client is using interface “vlan-modem” which is a VLAN with ID 100.
DHCP server is using “bridge”
“bridge” connects “ether2”, “wlan1”, “wlan2” and “vlan1”
NAT rule: chain=srcnat action=masquerade out-interface=vlan-modem

haik01 · May 28, 2016, 5:28pm

if your internet is below 100 Mbps then you can use one UTP cable for two physical devices. Like you would have two separate cables running.

Look for “UTP econimizer”… You will need two devices, one on each end.

http://uk.farnell.com/pro-signal/adf/cable-economiser-data-data/dp/1279665?ost=1279665&selectedCategoryId=&categoryNameResp=All%2BCategories&iscrfnonsku=false

No hassle with VLAN’s etc… Although I must say, that VLAN’s are of course nicer, and you still can have Gbit speed. But VLAN’s have their security limitations.