Hello,
I’m wanting input on what is the current “most correct” solution for deploying VLANs on a Mikrotik router running Router OS 7.12.
From what I can tell there are a few possible ways to do it. Beginning with the end in mind, this is what I want to accomplish.
I have inherited a small manufacturing facility with a Cisco core switch and multiple fiber media converters going to unmanaged switches in other buildings. The entire facility is a flat network on VLAN1. My goal is to to place the media converters with Hex PoE routers (acting as switches); VLAN-1 will remain untagged to the unmanaged switches so the wired LAN does not change, but I want to also carry new tagged VLANs to support corporate and guest wireless user vlans.
Before:
Cisco Core → [Copper:FiberMediaConverter:Fiber] → [Fiber:FiberMediaConverter:Copper] → Unmanaged switch
After
Cisco Core:SFP → Fiber → SFP:HexPoE → [ETH1-UnmanagedSwitch:VLAN1-untagged ; (ETH5-AccessPoint:VLAN5-untagged VLAN10,15-tagged)]
So on the Cisco side we will basically have something like this…
int g1/0/x
description “EngMezz:Hex:SFP”
switchport mode trunk
switchport trunk allowed vlan 1,5,10,15
switchport native vlan 1
exit
What is the most correct way to implement this in ROS7?
I’m leaning towards creating a bridge for each VLAN…
BR-VL-1
BR-VL-5
BR-VL-10
BR-VL-15
Then do a bridge VLAN for each bridge…
BR-VL-1, vlan ID =1, tagged = SFP, untagged = SFP,Eth1
BR-VL-5, vlan ID =5, tagged = SFP,Eth5, untagged = Eth5
BR-VL-10, vlan ID =10, tagged = SFP,Eth5
BR-VL-15, vlan ID =15, tagged = SFP,Eth5
But I know there are several other methods that can be used including adding VLANs to each interface and then putting them in bridges.
Example “SFP & Eth1 are members of BR-VL-1”, “vlan5 - Ap Mgmt - ETH5 and vlan5 - Ap Mgmt - SFP are members of BR-VL-5”.
: