Problem with exposing external IP, behind VLAN on CRS

kcybulski · August 30, 2014, 9:50am

Hi,

I have problem configuring CRS125 with externa IP behind VLAN:

situation is as follow

from my ISP i have a x.x.x.16/29 network gw is x.x.x.22

Switch D-Link Port26 to CRS ether8
vlan1 - untagged (default) - 10.1.0.1/21
vlan 20 - tagged (room1) - 10.1.20.1/24
vlan 40 - tagged (ext_ip)- x.x.x.21/29

On CRS I have
ether1,2 - bonding1
ether8 - from D-link
bridge1 (bonding1, ether8) - 10.1.0.1/21
vlan20 (on top bridge1) - 10.1.20.1/24
vlan40 (on top bridge1)
ether24 - x.x.x.17,18,19,20/29

If I set address on vlan40 i can ping x.x.x.21, so the VLAN is working.
I have no control over x.x.x.21.
Setting bridge between vlan40 and ether24 is not working.
Any sugestions how to set this up ?

Krzysztof

agehall · August 30, 2014, 12:21pm

Are you really getting tagged VLAN from your ISP? That isn’t very common ime.

Can you try to make a drawing of your setup? I’m a bit confused about where everything goes and why…

kcybulski · August 30, 2014, 1:13pm

Hi, file in attachment, part of my current config below
I need a way, to expose x.x.x.21 on internet

/interface bridge
add l2mtu=1588 name=bridge-local
/interface vlan
add comment=ext_ip interface=bridge-local l2mtu=1584 name=vlan20 vlan-id=20
add comment=room1 interface=bridge-local l2mtu=1584 name=vlan40 vlan-id=40
/interface bonding
add comment=server1 name=bonding1 slaves=ether1,ether2
/interface bridge port
add bridge=bridge-local interface=bonding1
add bridge=bridge-local interface=ether8
/ip address
add address=10.1.0.1/21 interface=bridge-local network=10.1.0.0
add address=10.1.20.1/24 interface=vlan40 network=10.1.20.0
add address=x.x.x.17/29 interface=ether8 network=x.x.x.16
add address=x.x.x.18/29 interface=ether8 network=x.x.x.16
add address=x.x.x.19/29 interface=ether8 network=x.x.x.16
add address=x.x.x.20/29 interface=ether8 network=x.x.x.16

slaughterlt · December 22, 2015, 3:17pm

Any soliution to tis?

kamillo · December 22, 2015, 4:58pm

Hi,

I don’t understand what are you trying to achieve.

vlan20 (on top bridge1) - 10.1.20.1/24
vlan40 (on top bridge1)
ether24 - x.x.x.17,18,19,20/29

If I set address on vlan40 i can ping x.x.x.21, so the VLAN is working.
I have no control over x.x.x.21.
Setting bridge between vlan40 and ether24 is not workin

if vlan40 is already in the bridge1 why are you trying to bridge it with ether24?