Hi,

I have just got a RB751G and found it is quite different to everything I have set up before. I have used the manuals I could find on line as far as I think I can go, but still struggling.

Firstly what I need to achieve is 7 SSIDs on 7 VLANs, connecting to a Cisco switch. Preferably different passwords for each virtual AP, but that is a secondary matter right now.

What I have done is to first keep the Mikrotic SSID, plug into a normal network port on the switch and set bridging… up to work and give me internet access - OK.
Then I create a second V-AP and SSID “WAN”, VLAN with tag100 (Vlan100 on my system) linked to Ether1 (gateway), bridge Bwan with AP and VLAN joined. I now plug the ethernet cable into a trunk port on my switch and connect to WAN AP. I have no communication with the system. Reconnect to a access port, back to mikrotic SSID and all works again.

With Cisco I would change the port’s mode to trunk. Can anyone advise me what I am doing wrong please.

Thanks
Regards
Peet

Could you post /export compact so we can see what you have done?

Hi,

Here is the output. I have only created one of the VLAN & SSIDs, once I have it working I will create the rest.

The Cisco switch I am plugging into has a trunk port, which I cannot get to work on this, and a access port on VLAN100, which works on the standars “mikrotik” SSID. I do not care about DHCP, I am staticly addressing.

Thanks for any input!

[admin@MikroTik] > /export compact

jan/03/1970 01:27:45 by RouterOS 5.16

software id = T58W-KUGW

/interface bridge
add admin-mac=D4:CA:6D:56:95:4F auto-mac=no l2mtu=1598 name=bridge-local
protocol-mode=rstp
add l2mtu=1594 name=Bwan
/interface wireless
set 0 band=2ghz-b/g/n channel-width=20/40mhz-ht-above disabled=no distance=
indoors ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290 mode=ap-bridge
wireless-protocol=any
/interface ethernet
set 0 name=ether1-gateway
set 1 name=ether2-master-local
set 2 master-port=ether2-master-local name=ether3-slave-local
set 3 master-port=ether2-master-local name=ether4-slave-local
set 4 master-port=ether2-master-local name=ether5-slave-local
/interface vlan
add interface=ether1-gateway l2mtu=1594 name=WAN vlan-id=100
/interface wireless
add area=“” arp=enabled bridge-mode=enabled default-ap-tx-limit=0
default-authentication=yes default-client-tx-limit=0 default-forwarding=
yes disable-running-check=no disabled=no hide-ssid=no l2mtu=2290
mac-address=D6:CA:6D:56:95:53 master-interface=wlan1 max-station-count=
2007 mtu=1500 multicast-helper=default name=WAN100
proprietary-extensions=post-2.9.25 security-profile=default ssid=WAN
update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=
bridge-local wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled
wmm-support=disabled
/ip hotspot user profile
set [ find default=yes ] idle-timeout=none keepalive-timeout=2m
/ip pool
add name=default-dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=default-dhcp disabled=no interface=bridge-local name=default
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-local interface=wlan1
add bridge=bridge-local interface=ether1-gateway
add bridge=Bwan interface=WAN
add bridge=Bwan interface=WAN100
/ip address
add address=192.168.100.5/24 comment=“default configuration” interface=wlan1
/ip dhcp-client
add comment=“default configuration” interface=ether1-gateway
/ip dhcp-server network
add address=192.168.88.0/24 comment=“default configuration” dns-server=
192.168.88.1 gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes servers=10.27.1.34
/ip dns static
add address=192.168.88.1 name=router
/ip firewall filter
add chain=input comment=“default configuration” protocol=icmp
add chain=input comment=“default configuration” connection-state=established
add chain=input comment=“default configuration” connection-state=related
add action=drop chain=input comment=“default configuration” in-interface=
ether1-gateway
/ip firewall nat
add action=masquerade chain=srcnat comment=“default configuration” disabled=
yes out-interface=ether1-gateway to-addresses=0.0.0.0
/ip neighbor discovery
set ether1-gateway disabled=yes
set wlan1 disabled=yes
set WAN disabled=yes
set WAN100 disabled=yes
/ip route
add distance=1 gateway=192.168.100.1
/system leds
set 0 interface=wlan1
/tool mac-server
add disabled=no interface=ether2-master-local
add disabled=no interface=ether3-slave-local
add disabled=no interface=ether4-slave-local
add disabled=no interface=ether5-slave-local
add disabled=no interface=wlan1
add disabled=no interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=wlan1
add interface=bridge-local
[admin@MikroTik] >

Try removing the default firewall. Also, you should have your IP address on the bridge, not on an interface in a bridge. And why do you have ether1 in your lan bridge?

Thanks Cbrown.

I have now got a working system. Learning as I go! I do not have anwers for your questions, I just avoided what you asked!

Regards
Peet