Hello,
I have six access points, each has the same three ssid (X1, X2, X3) and each ssid is configured to the same vlan (SSID X1 to VLAN 1, SSID X2 to VLAN 2 and SSID X3 to VLAN 3). Each access points is connected to own ETH port (ETH 2-7) of CCR1036. How should I configure single Bridge with ports ETH2-7 to make connection between all APs? And if yes, then how should I configure VLANs (eg. on which interface? on Mikrotik of course) to make connection between all client of each VLAN? In other words each client of the same SSID should be connected to own subnet but he shouldn’t be able to exchange packets with clients of other subnets.
I would be very thankful for any information about my configuration.
Best regards, WZ
Have you had a look at CAPsMAN?? It would be a much slicker way of acomplishing this.
Now to your question:
1.- Create a Bridge, e.g. BridgeAPs
2.- Add ether ports where APs are connected to BridgeAPs bridge
3.- Add VLANX. interfaces to BridgeAPs
4.- Assign each VLAN range IP on each VLAN interface
5.- Use IP > firewall filter to prevent inter-VLAN communication
Beware VLAN ID=1 is the default on ROS, use from 2 onwards.
See the this Wiki example, BridgeAPs would be ether1 in the example.