Hi,
I’m a proud owner of a CRS312-4C+8XG Mikrotik Switch. I’m in the process of setting up VLANs and have managed to do so. Nevertheless, Intervlan Routing is currently not working.
For a KISS setup, I have setup only two devices:
- Laptop, IP 192.168.99.4
- NAS, IP 10.192.76.200
I can ping both devices from the Mikrotik directly, but Laptop → NAS is not working. I read conflicting statements about what the best way to proceed is. I could use an external router, but traffic will most likely be light so I would prefer the Mikrotik to handle the intervlan routing.
Below is my configuration.
Kind regards,
[admin@MikroTik] > export
# jan/02/1970 02:06:58 by RouterOS 7.8
# software id = QIKG-P0Y2
#
# model = CRS312-4C+8XG
# serial number = HFD0938E3V7
/interface bridge
add name=main-bridge vlan-filtering=yes
/interface vlan
add interface=main-bridge name=fritzbox-vlan vlan-id=1
add interface=main-bridge name=k8s-vlan vlan-id=1002
add interface=main-bridge name=management-vlan vlan-id=99
add interface=main-bridge name=okd-vlan vlan-id=1003
add interface=main-bridge name=proxmox-vlan vlan-id=1000
add interface=main-bridge name=user-vlan vlan-id=1001
/interface bonding
add mode=802.3ad name=core-switch-bond slaves=ether8,ether7
add mode=balance-alb name=proxmox-bond slaves=ether2,ether3
/interface ethernet switch
set 0 l3-hw-offloading=yes
/interface list
add name=WAN
add name=LAN
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/port
set 0 name=serial0
/interface bridge port
add bridge=main-bridge comment=defconf interface=combo1
add bridge=main-bridge comment=defconf interface=combo2
add bridge=main-bridge comment=defconf interface=combo3
add bridge=main-bridge comment=defconf frame-types=admit-only-untagged-and-priority-tagged interface=combo4 pvid=99
add bridge=main-bridge comment=fritzbox-uplink interface=ether1
add bridge=main-bridge comment=defconf frame-types=admit-only-untagged-and-priority-tagged interface=ether4 pvid=1000
add bridge=main-bridge comment=defconf interface=ether5
add bridge=main-bridge comment=defconf interface=ether6
add bridge=main-bridge comment=defconf interface=ether7
add bridge=main-bridge comment=defconf interface=ether8
add bridge=*E comment=defconf interface=ether9
add bridge=main-bridge comment="Uplink to Core Switch" interface=core-switch-bond
add bridge=main-bridge comment="Proxmox Bond" interface=proxmox-bond
/interface bridge vlan
add bridge=main-bridge comment=management-vlan tagged=main-bridge untagged=combo4 vlan-ids=99
add bridge=main-bridge comment=fritzbox-vlan tagged=main-bridge untagged=ether1 vlan-ids=1
add bridge=main-bridge comment=proxmox-vlan tagged=proxmox-bond,main-bridge vlan-ids=1000
add bridge=main-bridge comment=user-vlan tagged=main-bridge vlan-ids=1001
add bridge=main-bridge comment=k8s-vlan tagged=main-bridge vlan-ids=1002
add bridge=main-bridge comment=okd-vlan tagged=main-bridge vlan-ids=1003
/interface list member
add interface=ether1 list=LAN
add interface=ether2 list=LAN
add interface=ether3 list=LAN
add interface=ether4 list=LAN
add interface=ether5 list=LAN
add interface=ether6 list=LAN
add interface=ether7 list=LAN
add interface=ether8 list=LAN
add interface=combo1 list=LAN
add interface=combo2 list=LAN
add interface=combo3 list=LAN
add interface=combo4 list=LAN
add interface=ether1 list=WAN
/ip address
add address=172.16.122.1/24 comment=defconf interface=fritzbox-vlan network=172.16.122.0
add address=10.192.76.1/23 interface=proxmox-vlan network=10.192.76.0
add address=192.168.99.1/24 interface=management-vlan network=192.168.99.0
/ip firewall filter
add action=accept chain=forward in-interface=all-ethernet out-interface=all-ethernet src-address-list=""
/system routerboard settings
set boot-os=router-os enter-setup-on=delete-key