I have a couple of wired-only security devices I can’t move in a room that I can’t run a cable to. I’ve got a hAP lite (not AC). I want the hAP lite to connect to the existing wifi, not repeat it or create it’s own wifi network, plug in both devices to the ethernet ports and have them on the the same network as if they were connecting directly to the router, no NAT/Firewall/DHCP.
But the purpose of the devices is for other devices on the network to access them, not for them to access the internet. I imagine I probably have to do something quite different but I’m not sure where to start.
If i’m understanding what you’re trying to do, all you really need is to bridge the wireless interface on the hAP lite to the physical ports the security devices are plugged into.
That will extend the RFC1918 network in the home router through to those devices.
under ‘bridge’ add a new bridge using the name “LAN” (or whatever you want)
under ‘bridge ports’ add the wireless interface and physical ports of the security devices to the “LAN” bridge
Thanks. I just gave that a go. I thought it worked at first. It’s passing through DHCP from the regular router to devices on the LAN ports. But no other traffic. Can’t connect/ping from those devices out to anything local or internet and can’t connect/ping from anything else local in to them.
Here’s a winbox screenshot if it helps. I’ve left the WAN port out so I can more easily get back into winbox using that port.
Not a very good idea unless you are connecting on one freq 2.4Ghz and then re-tx on a different radio ie 5Ghz… Otherwise your traffic throughput will suffer terribly.
Depending on the type of wireless device you’re connecting to, you need to verify the station type under your wireless interface settings.
station-bridge is ideal if the other router is a MikroTik. Otherwise you can try station-pseudobridge, but you’ll have some limits outside of IPv4 traffic.
If it’s set just to ‘station’ , bridging won’t work.
@anav - not a problem as it’s not to extend/repeat the wireless, only provide wifi to two wired only devices.
@IPANetEngineer - that did it! You dead set legend! That was the only other required change. I think basic IPv4 is all I need for these things so that shouldn’t be an issue.
In case anyone wants to replicate it, here’s the step by step. You would likely have to change specifics if you’re using something other than a hAP lite RB941-2nD 6.45.8 using Winbox 3.27.
Reset configuration before starting (Winbox → System → Reset Configuration).
Connect to the hAP lite via Winbox.
Open Wireless.
Go to the Security Profiles tab.
Double click “default”.
Change Mode to dynamic keys.
Tick WPA PSK and WPA2 PSK.
Enter the password of the wifi you want the hAP lite to join into both WPA and WPA2 Pre-Shared Key boxes.
Click Apply then OK.
Go to the WiFi Interfaces tab.
Double click wlan1.
Click the Scan button in the right hand column.
Click Start.
Select the wifi network you want to join and click Connect.
Change Mode from station to station-pseudobridge.
Click Apply then OK.
Open New Terminal.
Enter:
/interface list member remove numbers=1
Enter:
/interface list member
add comment=defconf interface=wlan1 list=WAN
Cange Bridge to Whatever (the name of the new bridge).
Click Apply then OK.
Repeat steps 25-28 for each port you want bridged (do the port you’re connected to last to avoid disconnect).
I left ether1 outside the bridge to make future admin easier. I think steps 19 & 20 probably aren’t needed, I copied those from the article in OP but I haven’t tested without doing them so I’ll leave them there for now.
