I’m proposing an RB450 Mikrotik router to be used as a transparent firewall for 3 servers.
This device has 4 ethernet ports.

I would like to use PORT 1 to connect as the WAN
I would like to use PORT 2, 3, and 4 for Server 1, Server 2, and Server 3.

I want to use it transparently so that I can firewall these 3 servers from the Internet.

The 3 servers will be assigned each a unique internet ip address, so I don’t plan on using NAT.

Can this be done? What particular configuration settings should I be looking at to make this happen? Servers 1, 2, and 3 would need to be able to talk to each other as if they were plugged into the same switch, yet still talk to the common default gateway to get to the internet. Not sure of the exact direction that needs to be taken to make this happen. Appreciate any insight.

Brian

I emailed Mikrotik support and they gave me this advise for linking multiple ethernet ports together without using the bridge option

Hello,

Lets say wan interface is ether1 and the rest should be switched.
Configuraton:
/interface ethernet
set ether3 master-port=ether2
set ether4 master-port=ether2

Now ether2,ether3 and ether4 are switched together.

Regards,
Maris

what version of ROS?.. I do not have such option in 3.14…

It is available only on boards with switch chip: RB400 series, RB133, RB150 and RB192
and RouterOS v3.x

well, not all RB400 series have switch chip, but these boards have - RB450, RB493

In trying out this “feature” it appears that this does not actually configure the ports as a “switch”, but rather as a “hub”.

IOW - all the incoming traffic on any of the ports is echoed out the other ports that are grouped together. This seems to be more like port mirroring rather than switching.

A typical switch keeps a table of the MAC addresses on each port, and only sends non-broadcast data to the required port.

This is on an RB493AH. Perhaps it’s different on other RBs?

As does the RB433.

I’m trying to set up a simple AP with my 493, I thought i’d set up port 2 as the dhcp client but couldn’t get it to work, if I switch the client to port 1 it works.

I tried to also make a DCHP Server for port 9, I couldn’t get that to work either, but again if i switch that to either on of the WAN’s or Ether 1 it works.

Is there someone thing special I need to do on ports 2-9 to get them to work as DHCP? i have no problem with getting this to work on my RB500 or Ether 1 or WAN ports.

Regards

Simon

stupid question, but … did you enable those interfaces? does static IP connection work on those ports?

No not really. Depends though on what you’ve configured. Post your settings and let’s take a look.

Here’s my config

I think the ports are enabled

jan/01/1970 04:06:37 by RouterOS 3.22

software id = ACQI-LTT

/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment=“” disabled=no full-duplex=yes
mac-address=00:0C:42:34:8E:8F mtu=1500 name=ether1 speed=10Mbps
set 1 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:90 master-port=
none mtu=1500 name=ether2 speed=10Mbps
set 2 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:91 master-port=
none mtu=1500 name=ether3 speed=100Mbps
set 3 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:92 master-port=
none mtu=1500 name=ether4 speed=100Mbps
set 4 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:93 master-port=
none mtu=1500 name=ether5 speed=100Mbps
set 5 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:94 master-port=
none mtu=1500 name=ether6 speed=100Mbps
set 6 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:95 master-port=
none mtu=1500 name=ether7 speed=100Mbps
set 7 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:96 master-port=
none mtu=1500 name=ether8 speed=100Mbps
set 8 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:97 master-port=
none mtu=1500 name=ether9 speed=10Mbps
/interface wireless security-profiles
set default authentication-types=“” eap-methods=passthrough group-ciphers=“”
group-key-update=5m interim-update=0s mode=none name=default
radius-eap-accounting=no radius-mac-accounting=no
radius-mac-authentication=no radius-mac-caching=disabled
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username
static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=
none static-key-0=“” static-key-1=“” static-key-2=“” static-key-3=“”
static-sta-private-algo=none static-sta-private-key=“”
static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=
none tls-mode=no-certificates unicast-ciphers=“” wpa-pre-shared-key=“”
wpa2-pre-shared-key=“”
add authentication-types=wpa-psk,wpa2-psk group-ciphers=tkip,aes-ccm
group-key-update=5m interim-update=0s mode=dynamic-keys name=Wireless1
radius-eap-accounting=no radius-mac-accounting=no
radius-mac-authentication=no radius-mac-caching=disabled
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username
static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=
none static-key-0=“” static-key-1=“” static-key-2=“” static-key-3=“”
static-sta-private-algo=none static-sta-private-key=“”
static-transmit-key=key-0 supplicant-identity=“” tls-certificate=none
tls-mode=no-certificates unicast-ciphers=tkip,aes-ccm wpa-pre-shared-key=
07973676839 wpa2-pre-shared-key=07973676839
/interface wireless
set 0 ack-timeout=dynamic adaptive-noise-immunity=none allow-sharedkey=no
antenna-gain=0 antenna-mode=ant-a area=“” arp=enabled band=2.4ghz-b/g
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled comment=“”
compression=no country=“united states” default-ap-tx-limit=0
default-authentication=yes default-client-tx-limit=0 default-forwarding=
yes dfs-mode=none disable-running-check=no disabled=no
disconnect-timeout=3s frame-lifetime=0 frequency=2462 frequency-mode=
manual-txpower hide-ssid=no hw-retries=4 mac-address=00:0C:42:26:37:7F
max-station-count=2007 mode=ap-bridge mtu=1500 name=wlan1
noise-floor-threshold=default on-fail-retry-time=100ms
periodic-calibration=default periodic-calibration-interval=60
preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=
000C4226377F rate-set=default scan-list=default security-profile=
Wireless1 ssid=Wlan station-bridge-clone-mac=00:00:00:00:00:00
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default
update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=
none wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled
wmm-support=disabled
set 1 ack-timeout=dynamic adaptive-noise-immunity=none allow-sharedkey=no
antenna-gain=0 antenna-mode=ant-a area=“” arp=enabled band=5ghz
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled comment=“”
compression=no country=no_country_set default-ap-tx-limit=0
default-authentication=yes default-client-tx-limit=0 default-forwarding=
yes dfs-mode=none disable-running-check=no disabled=yes
disconnect-timeout=3s frame-lifetime=0 frequency=5180 frequency-mode=
manual-txpower hide-ssid=no hw-retries=4 mac-address=00:0C:42:26:37:84
max-station-count=2007 mode=station mtu=1500 name=wlan3
noise-floor-threshold=default on-fail-retry-time=100ms
periodic-calibration=default periodic-calibration-interval=60
preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=
000C42263784 rate-set=default scan-list=default security-profile=default
ssid=MikroTik station-bridge-clone-mac=00:00:00:00:00:00
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default
update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=
none wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled
wmm-support=disabled
set 2 ack-timeout=dynamic adaptive-noise-immunity=none allow-sharedkey=no
antenna-gain=0 antenna-mode=ant-a area=“” arp=enabled band=5ghz
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled comment=“”
compression=no country=no_country_set default-ap-tx-limit=0
default-authentication=yes default-client-tx-limit=0 default-forwarding=
yes dfs-mode=none disable-running-check=no disabled=yes
disconnect-timeout=3s frame-lifetime=0 frequency=5180 frequency-mode=
manual-txpower hide-ssid=no hw-retries=4 mac-address=00:0C:42:23:DC:E7
max-station-count=2007 mode=station mtu=1500 name=wlan2
noise-floor-threshold=default on-fail-retry-time=100ms
periodic-calibration=default periodic-calibration-interval=60
preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=
000C4223DCE7 rate-set=default scan-list=default security-profile=default
ssid=Simons_RB493 station-bridge-clone-mac=00:00:00:00:00:00
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default
update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=
none wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled
wmm-support=disabled
/interface wireless manual-tx-power-table
set wlan1 comment=“” manual-tx-powers=“1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,
6Mbps:17,9Mbps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps
:17,HT20-1:0,HT20-2:0,HT20-3:0,HT20-4:0,HT20-5:0,HT20-6:0,HT20-7:0,HT20-8:
0,HT40-1:0,HT40-2:0,HT40-3:0,HT40-4:0,HT40-5:0,HT40-6:0,HT40-7:0,HT40-8:0”
set wlan3 comment=“” manual-tx-powers=“1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,
6Mbps:17,9Mbps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps
:17,HT20-1:17,HT20-2:17,HT20-3:17,HT20-4:17,HT20-5:17,HT20-6:17,HT20-7:17,
HT20-8:17,HT40-1:17,HT40-2:17,HT40-3:17,HT40-4:17,HT40-5:17,HT40-6:17,HT40
-7:17,HT40-8:17”
set wlan2 comment=“” manual-tx-powers=“1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,
6Mbps:17,9Mbps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps
:17,HT20-1:17,HT20-2:17,HT20-3:17,HT20-4:17,HT20-5:17,HT20-6:17,HT20-7:17,
HT20-8:17,HT40-1:17,HT40-2:17,HT40-3:17,HT40-4:17,HT40-5:17,HT40-6:17,HT40
-7:17,HT40-8:17”
/interface wireless nstreme
set wlan1 comment=“” disable-csma=no enable-nstreme=no enable-polling=yes
framer-limit=3200 framer-policy=none
set wlan3 comment=“” disable-csma=no enable-nstreme=no enable-polling=yes
framer-limit=3200 framer-policy=none
set wlan2 comment=“” disable-csma=no enable-nstreme=no enable-polling=yes
framer-limit=3200 framer-policy=none
/ip hotspot profile
set default dns-name=“” hotspot-address=0.0.0.0 html-directory=hotspot
http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap
name=default rate-limit=“” smtp-server=0.0.0.0 split-user-domain=no
use-radius=no
/ip hotspot user profile
set default idle-timeout=none keepalive-timeout=2m name=default shared-users=
1 status-autorefresh=1m transparent-proxy=no
/ip ipsec proposal
set default auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m
name=default pfs-group=modp1024
/ip pool
add name=pool1 ranges=172.17.1.100-172.17.1.200
/ip dhcp-server
add address-pool=pool1 authoritative=after-2sec-delay bootp-support=static
disabled=no interface=wlan1 lease-time=3d name=server1 src-address=
172.17.1.1
/port
set 0 baud-rate=auto data-bits=8 flow-control=none name=serial0 parity=none
stop-bits=1
/ppp profile
set default change-tcp-mss=yes comment=“” name=default only-one=default
use-compression=default use-encryption=default use-vj-compression=default
set default-encryption change-tcp-mss=yes comment=“” name=default-encryption
only-one=default use-compression=default use-encryption=yes
use-vj-compression=default
/queue type
set default kind=pfifo name=default pfifo-limit=50
set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50
set wireless-default kind=sfq name=wireless-default sfq-allot=1514
sfq-perturb=5
set synchronous-default kind=red name=synchronous-default red-avg-packet=1000
red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10
set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=
5
set default-small kind=pfifo name=default-small pfifo-limit=10
/routing bgp instance
set default as=65530 client-to-client-reflection=yes comment=“” disabled=no
ignore-as-path-len=no name=default out-filter=“” redistribute-connected=
no redistribute-ospf=no redistribute-other-bgp=no redistribute-rip=no
redistribute-static=no router-id=0.0.0.0
/routing ospf area
add area-id=0.0.0.0 authentication=none disabled=no name=backbone type=
default
/snmp
set contact=“” enabled=no engine-boots=0 engine-id=“” location=“”
time-window=15 trap-sink=0.0.0.0 trap-version=1
/snmp community
set public address=0.0.0.0/0 authentication-password=“”
authentication-protocol=MD5 encryption-password=“” encryption-protocol=
DES name=public read-access=yes security=none write-access=no
/system logging action
set memory memory-lines=100 memory-stop-on-full=no name=memory target=memory
set disk disk-file-count=2 disk-file-name=log disk-lines-per-file=100
disk-stop-on-full=no name=disk target=disk
set echo name=echo remember=yes target=echo
set remote bsd-syslog=no name=remote remote=0.0.0.0:514 src-address=0.0.0.0
syslog-facility=daemon syslog-severity=auto target=remote
/system routerboard settings
set baud-rate=115200 boot-delay=2s boot-device=nand-if-fail-then-ethernet
boot-protocol=bootp cpu-frequency=680MHz enable-jumper-reset=yes
enter-setup-on=any-key force-backup-booter=no
set baud-rate=115200 boot-delay=2s boot-device=nand-if-fail-then-ethernet
boot-protocol=bootp cpu-frequency=680MHz enable-jumper-reset=yes
enter-setup-on=any-key force-backup-booter=no
/user group
add name=read policy=“local,telnet,ssh,reboot,read,test,winbox,password,web,sn
iff,!ftp,!write,!policy”
add name=write policy=“local,telnet,ssh,reboot,read,write,test,winbox,password
,web,sniff,!ftp,!policy”
add name=full policy=“local,telnet,ssh,ftp,reboot,read,write,policy,test,winbo
x,password,web,sniff”
/interface bridge settings
set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=
no
/interface ethernet mirror
set mirror-port=none source-port=none
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=
default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled
/interface ovpn-server server
set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=
default enabled=no keepalive-timeout=60 mac-address=FE:EA:7C:25:28:50
max-mtu=1500 mode=ip netmask=24 port=1194 require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption
enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=
00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300
frames-per-second=25 receive-all=no ssid-all=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name=“” memory-limit=10
multiple-channels=no only-headers=no receive-errors=no streaming-enabled=
no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/ip accounting
set account-local-traffic=no enabled=no threshold=256
/ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ip address
add address=172.17.1.1/16 broadcast=172.17.255.255 comment=“” disabled=no
interface=wlan1 network=172.17.0.0
/ip dhcp-client
add add-default-route=yes comment=“” default-route-distance=0 disabled=no
interface=ether1 use-peer-dns=yes use-peer-ntp=yes
/ip dhcp-server config
set store-leases-disk=5m
/ip dhcp-server network
add address=172.17.0.0/16 comment=“” gateway=172.17.1.1 netmask=16
/ip dns
set allow-remote-requests=no cache-max-ttl=1w cache-size=2048KiB
max-udp-packet-size=512 primary-dns=192.168.250.253 secondary-dns=0.0.0.0
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s
tcp-close-wait-timeout=10s tcp-established-timeout=1d
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall nat
add action=masquerade chain=srcnat comment=“” disabled=no out-interface=
ether1
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no
/ip hotspot service-port
set ftp disabled=no ports=21
/ip neighbor discovery
set wlan1 discover=no
set wlan3 discover=no
set ether1 discover=yes
set ether2 discover=yes
set ether3 discover=yes
set ether4 discover=yes
set ether5 discover=yes
set ether6 discover=yes
set ether7 discover=yes
set ether8 discover=yes
set ether9 discover=yes
set wlan2 discover=no
/ip proxy
set always-from-cache=no cache-administrator=webmaster cache-hit-dscp=4
cache-on-disk=no enabled=no max-cache-size=unlimited
max-client-connections=600 max-fresh-time=3d max-server-connections=600
parent-proxy=0.0.0.0 parent-proxy-port=0 port=8080 serialize-connections=
no src-address=0.0.0.0
/ip service
set telnet address=0.0.0.0/0 disabled=no port=23
set ftp address=0.0.0.0/0 disabled=no port=21
set www address=0.0.0.0/0 disabled=no port=80
set ssh address=0.0.0.0/0 disabled=no port=22
set www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443
set api address=0.0.0.0/0 disabled=yes port=8728
set winbox address=0.0.0.0/0 disabled=no port=8291
/ip socks
set connection-idle-timeout=2m enabled=no max-connections=200 port=1080
/ip traffic-flow
set active-flow-timeout=30m cache-entries=4k enabled=no
inactive-flow-timeout=15s interfaces=all
/ip upnp
set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes
/ppp aaa
set accounting=yes interim-update=0s use-radius=no
/queue interface
set wlan1 queue=wireless-default
set wlan3 queue=wireless-default
set ether1 queue=ethernet-default
set ether2 queue=ethernet-default
set ether3 queue=ethernet-default
set ether4 queue=ethernet-default
set ether5 queue=ethernet-default
set ether6 queue=ethernet-default
set ether7 queue=ethernet-default
set ether8 queue=ethernet-default
set ether9 queue=ethernet-default
set wlan2 queue=wireless-default
/radius incoming
set accept=no port=3799
/routing mme
set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m
gateway-selection=no-gateway origination-interval=5s preferred-gateway=
0.0.0.0 timeout=1m ttl=50
/routing ospf
set distribute-default=never metric-bgp=20 metric-connected=20
metric-default=1 metric-rip=20 metric-static=20 mpls-te-area=unspecified
mpls-te-router-id=unspecified redistribute-bgp=no redistribute-connected=
no redistribute-rip=no redistribute-static=no router-id=0.0.0.0
/routing rip
set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1
metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no
redistribute-connected=no redistribute-ospf=no redistribute-static=no
timeout-timer=3m update-timer=30s
/store
add comment=“” disabled=no disk=system name=web-proxy1 type=web-proxy
/system clock manual
set dst-delta=+00:00 dst-end=“jan/01/1970 00:00:00” dst-start=
“jan/01/1970 00:00:00” time-zone=+00:00
/system console
add disabled=no port=serial0 term=vt102
/system health
set fan-mode=auto use-fan=main
/system identity
set name=Simons_RB493
/system logging
add action=memory disabled=no prefix=“” topics=info
add action=memory disabled=no prefix=“” topics=error
add action=memory disabled=no prefix=“” topics=warning
add action=echo disabled=no prefix=“” topics=critical
/system note
set note=“” show-at-login=yes
/system ntp client
set enabled=no mode=broadcast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0
/system upgrade mirror
set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=
0.0.0.0 user=“”
/system watchdog
set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=
none watchdog-timer=yes
/tool bandwidth-server
set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=10
/tool e-mail
set from=<> password=“” server=0.0.0.0:25 username=“”
/tool graphing
set store-every=5min
/tool mac-server
add disabled=no interface=all
/tool mac-server ping
set enabled=yes
/tool sniffer
set file-limit=10 file-name=“” filter-address1=0.0.0.0/0:0-65535
filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only filter-stream=
yes interface=all memory-limit=10 only-headers=no streaming-enabled=no
streaming-server=0.0.0.0
/user aaa
set accounting=yes default-group=read interim-update=0s use-radius=no

Double post sorry

Also I know I set both ports 2 and 9 to 10Mbps as the connection was 10mbps.

I have tried lots of differnt settings before i posted

Thanks again.

Simon

Auto speed is fine. Your mistake was not setting the master port on interfaces ether3-9.

Like this;

/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment=“” disabled=no full-duplex=yes
mac-address=00:0C:42:34:8E:8F mtu=1500 name=ether1 speed=10Mbps
set 1 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:90 master-port=
none mtu=1500 name=ether2 speed=10Mbps
set 2 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:91 master-port=
ether2 mtu=1500 name=ether3 speed=100Mbps
set 3 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:92 master-port=
ether2 mtu=1500 name=ether4 speed=100Mbps
set 4 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:93 master-port=
ether2 mtu=1500 name=ether5 speed=100Mbps
set 5 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:94 master-port=
ether2 mtu=1500 name=ether6 speed=100Mbps
set 6 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:95 master-port=
ether2 mtu=1500 name=ether7 speed=100Mbps
set 7 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:96 master-port=
ether2 mtu=1500 name=ether8 speed=100Mbps
set 8 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=
“” disabled=no full-duplex=yes mac-address=00:0C:42:34:8E:97 master-port=
ether2 mtu=1500 name=ether9 speed=10Mbps

Then set your DHCP to be active on ether2.

Let me know.

Hi

I don’t want ports 2-9 to work as a switch, I want them to work as different routed type ports.

I believe setting the master port as 2 on ports 3-9 will make them a switch. But i might be wrong and i can’t try until tomorrow.

Even with that said I think I should have been able to get port 2 (or port 9) to work as either a DHCP client or Server, and when I switch the DHCP stuff that i set up back to either WAN 1 or port 1 it works.

Regards

Simon

Ah sorry, misunderstood you. You are right, this should then work. Unfortunately I don’t have a 493 but this does work on a 450 and 433 so maybe something funny with the 493.

Have you tried putting the interfaces on separate VLANs?

Hi

Can anyone let me know if there is something different I need to do to get ports 2-9 connected to the DHCP server of the 493AH board.

I already have a 433 and 500 and don’t have any problems doing this one those board.

I’m thinking there is something else I need to connect ports 2-9???

Can anyone help please.

Regards

Simon

Has anyone else had this problem with there 493?

433 works the same as 493. If you have similar setup working on 433 then it should also work on 493. Maybe you misconfigured something, try to reset configuration and start from scratch.

Hi

I didn’t think the 433 had a switch chip on it.

I can get port 1 and the WLAN ports to function as i expect on my 493 but not ports 2-9?

Anything different on them.

you can see my config above.

Regards

Simon