Network works on console but not on my switch ports

RouterOS Beginner Basics
1

Hey guys,

I am new to Mikrotik devices and face a problem with my CRS326-24G-2S+.
No matter what I do on my client (DHCP or static IP), when I am connect to the switch via ethernet I can’t ping the gateway (and other IPs on that network).

What works right now is:

  • I can connect to the switch from a different vlan through my cisco switch.
  • internet works on the CRS and on the console I can ping everything behind my cisco switch.

What I did was creating a bridge, then the vlans and put them onto the ports and created a trunk on Port9 to my Cisco switch.
It’s a basic config and I simply want to use it as a L2 switch for now (though I am using RouterOS).

So like you see in the config then tried to:

  • setup port 2 and port 17 to obtain an IP from vlan10 (also tried static IP)
  • tried the same with vlan111 on port 18 (also dhcp and static)

Cisco side is pretty basic, also disabled STP. I noticed that by default ether1 is defined as WAN.
So also was configuring ether1 like I did below but the results were the same.

Why doesn’t it work? What did I forget?

Let me show you my conifg. I deleted some unimportant stuff about other ports to make it more readable:


/interface bridge
add igmp-snooping=yes name=bridge1 protocol-mode=none
/interface vlan
add interface=bridge1 name=vlan10 vlan-id=10
/interface list
add name=WAN
add name=LAN
/ip hotspot profile
set [ find default=yes ] html-directory=hotspot
/port
set 0 name=serial0
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2 pvid=10
add bridge=bridge1 frame-types=admit-only-vlan-tagged interface=ether17 pvid=\
    10
add bridge=bridge1 frame-types=admit-only-vlan-tagged interface=ether18 pvid=\
    111
/ip neighbor discovery-settings
set discover-interface-list=!dynamic
/interface bridge vlan
add bridge=bridge1 vlan-ids=1
add bridge=bridge1 tagged=ether9 untagged=ether2,ether17,bridge1 vlan-ids=10
add bridge=bridge1 tagged=ether9 untagged=ether18 vlan-ids=111
/interface list member
add interface=ether1 list=WAN
add interface=ether2 list=LAN
add interface=ether17 list=LAN
add interface=ether18 list=LAN
/ip address
add address=10.0.0.6/28 interface=vlan10 network=10.0.0.0
/ip dns
set servers=10.0.0.1
/ip route
add disabled=no dst-address=0.0.0.0/0 gateway=10.0.0.1 routing-table=main \
    suppress-hw-offload=no
/system routerboard settings
set boot-os=router-os

Best regards!
Yann

2

I am still struggeling and I reset again everything, even deleted storage and reflashed it (i am on RouterOS 7.13).
I wonder why such a simple thing doesn’t work…

To show you exactly what I did after resetting I go now step by step:

  1. Connected my client with Ether1 and connected to WinBox through the MAC adress of Ether1
  2. After I had to change the password I went to the bridge menu and created a bridge with default settings
  3. Then I went to Ports tab and created 3 ports, ether1 (where I am connected), ether2 (which will be my trunk port) and ether3 for testing.
  4. Went to VLAN tag in Bridge menu and created my vlans - for now just default creation

My goal now is to put vlan20 on ether3 so I did:

  1. edited vlan20 and put ether2 as tagged and ether3 as untagged
  2. For the switch management I edited vlan10 and put ether2 and the bridge unter tagged
  3. For the access port I went back to the ports tab in bridge menu, edited ether3 and changed under vlan the pvid to 20
  4. For my management vlan I went to vlan tab in interface menu and created vlan10 with vlan id 10 and set the interface to bridge
  5. Went to IP menu → Addresses and created the address 10.0.0.6/28 and set the interface to vlan10 (network is set to 10.0.0.0).
  6. For the default route I went to IP → Routes and add a new route where I only put the Gateway 10.0.0.1
  7. Then I add the same IP in the IP-> DNS tab

After that I have internet (can check for new updates), the time changed automatically and I also can ping any device behind the cisco switch.
But now I expected to put (any) client on ether3 and be able to get an IP from vlan20, but nothing works, no DHCP no static IP…

What am I missing? vlan filtering is off right now btw, if i activate it on pvid 1 it also doesn’t work, also cannot reach the switch from another vlan anymore…