Mikrotik Dynamic VLAN

RouterOS General
1

Dear Mikrotik friends,

I have finished my project Mikrotik Dynamic VLAN assigment in which I am using RB3011 as main router, Cisco 2960 switches and Miktrotik Cap ac APs and Freeradius for authentication. Everything is working except I am not able to ping from device within vlan only default gateway for that vlan ( over cable or wifi) everything else I can in network and I have problem with one Macos catalina which refuses to accept address from DHCP . I also can ping from VLAN 1 any ip address including default gateway.

VLAN 99 is used as trunk and it is configured between APs and switch and between switch and Mikrotik router.

On Miktorik CAP ac just enabled cap for both Wifi cards, configured bridge and added ethernet 1 to bridge. Discovery interface is set to bridge




Dynamic VLan is working on cable and on wifi for Windows and Linux clients, vlans in for dynamic assigment 2,3,4,5,6. Any ideas why I am not able to ping default gw on vlan?


Also how to approach with Macos catalina problem?


Any help is appreciated, config attached
myconfig.rsc (308 KB)

2

There are a number of serious errors with the bridge setup:
You should not include any /interface vlan objects in the /interface bridge vlan settings.
You are attempting to use the bridge-to-CPU interface as untagged (with /interface bridgeadd name=EAP-BRIDGE pvid=99 vlan-filtering=yes) and tagged (with /interface vlan add interface=EAP-BRIDGE name=“TRUNK (99)” vlan-id=99), it can only be one or the other.

I would fix those first and see if it helps.

3

Yes its a bloated mess, I would give the project a fail LOL and whats with the complete BS attempt at blocking sites
Who the heck uses vlan 1 in their config…

Do suggest reading over this excellent guide…
http://forum.mikrotik.com/t/using-routeros-to-vlan-your-network/126489/1