Routerboard - Ubiquiti - VLAN question

RouterOS Beginner Basics
1

I want to make a setup using these devices:

  • 1x MIKROTIK Routerboard RB2011UiAS-RM
  • 2x MIKROTIK Routerboard CRS125-24G-1S-RM
  • 1x UBIQUITI UniFi UAP-Pro

Configuration of Routerboard RB2011UiAS-RM (export file on http://pastebin.com/w3THX6RB)

  • Port 1 & 2 = bonding to CRS125-24G-1S-RM for internal usage
  • Port 3 = UniFi UAP-Pro
  • Port 4 & 5 = bonding to CRS125-24G-1S-RM for raspberry pi usage
  • Port 10 = PPPoE connection (VDSL2 modem)

There are 5 DHCP servers configured on this routerboard :

  • 10.0.0.0/24 to the bonding on port 1&2
  • 10.200.0.0/24 to the bonding on port 4&5
  • 10.101.0.0/24 for wifi (vlan 101)
  • 10.102.0.0/24 for wifi (vlan 102)
  • 10.103.0.0/24 for wifi (vlan 103)

Now, i want to create this setup:

  • The Unifi is connected on port 3 of the routerboard. I need a 10.0.0.0/24 ip on this device for configuration purposes. How do i do this without breaking the bonding?
  • I’ve created multiple vlans’s on the routerboard towards port 3 so that i can connect my UBNT UAP Pro. That UBNT device has 3 SSID’s:
    ==> private usage (vlan 101)
    ==> trusted usage (vlan 102)
    ==> public usage (vlan 103)

Problem is that i don’t get any IP on the UBNT device, nor on the laptops that are connected to the UBNT device.
Could somebody please check my setup? I’m quite new in UBNT/Mikrotik but i’m sure that this is possible :slight_smile:

Thank you for your reading and help!

Best regards!

2

Hello,

Is there nobody who can help me?

Best regards,
Kris

3

I have a similar setup on my RB750GL, but I haven’t done any port bonding, so I’m not sure how that will affect the final config. Here’s how I’m set up:

My port 1 is my incoming WAN connection. I set ports 3-5 as slaves to port 2. I configured all of my VLANs on the port 2 master interface, and put the DHCP servers on their respective VLANs. I then set up port 2 as a multi-VLAN trunk to another switch, and port 3 is an access port for my UAP-AC. The Ubiquiti access points do not support tagging of their management interfaces, so you have to work around that by setting the Default VLAN ID for the port to the management network. In my case, I’m using VLAN 100 for management, so that’s my Default VLAN ID, but I also carry three additional wireless VLANs which my AP tags.

Like I said, I’m not sure how the bonding will affect the setup, as I’m not doing any bonding on my network. I think the issue is going to be where the bonding is implemented, i.e. the switch chip or the CPU. I think all bonding in ROS is done at the CPU, not the switch chip, so the config isn’t as simple as it could be. I wish I could be more helpful, but if you got something out of this, I’m happy to have been of use.

4

If you would give us a config output that would help us to see if/where a problem may exist. You can sanitize any public ip addresses in the config if you so choose.

Ryan

5

Hi Ryan : sure i can, see the link on my first post : Configuration of Routerboard RB2011UiAS-RM (export file on http://pastebin.com/w3THX6RB)

6

I do see you posted that, sorry to make you post it again.

I will look through it to see what’s going on.

Ryan

7

Krisken,

As far as getting the 10.0.0.0/24 subnet over to ether3 the solution will be to add a bridge and add the “bonding OpenWEB Intern” port and ether3 to the bridge. Move the vlans and the 10.0.0.1/24 address to the bridge you just created. This should allow you access to the UniFi AP management system. As for the vlan’s it seems most likely that the AP doesn’t like the “Use Service Tag” checkbox on the vlans since it changes the standard that the AP is expecting.


This should at least fix the management issue if not all the problems. If it doesn’t fix the AP vlan problems post back here and I will see what else I can do for you.

Ryan