MAC Based VLANs with fallback

Hello everybody,

I am just playing with MAC Based VLANs on a CRS109. In general this works perfectly fine. At least if MAC addresses are known. This is with trunk on ether1 and access port set to master-interface=ether1.

However I would like to have a kind of fallback: If an unknown MAC address is connected it should be mapped to a fallback VLAN. I could not find a way to make this work. Is there any? Even better would be an option to specify entries based in MAC address with mask, so vendor or product could be matched.

I tried another option for MAC address learning, but did not succeed so far: My upstream trunk is on ether1. I created vlan interfaces on ether1 and ether2, bridged the vlan interfaces and configured MAC based VLAN for ether2 with access ports set to master-interface=ether2. In addition I added an IP address to native ether2 with DHCP server, the lease script adds the new MAC address to MAC VLAN table. The VLAN stuff fails, though.
Does a non-tagged configuration break the setup? Where is my problem?

Thanks for your help!

I get an idea about what was wrong… The master port ether2 did not have a link, thus vlan interfaces were not running. (Not verified yet, though.)
Is there a way to have MAC based VLANs without the requirement of link up on trunk port?

Bridged VLANs (VLAN interfaces) is software based RouterOS feature but MAC based VLANs is CRS specific hardware switch-chip feature.
They do not work properly when both configured on the same ports. When ports are set for switching by master-port, they become limited to features available only from “Switch” menu.
You can configure CRS MAC Based VLANs and combine them with CRS Port Based VLANs for unknown MAC addresses to get similar functionality to bridged VLAN interfaces.