VLAN Bridge - Trunk with Wireless Wire "bridge port received packet with own address"

Hello

I wand to achieve the following setup:

I am using a Wireless Wire kit.

There is a loop both devices, but for the first step i am just showing the config of the firest one.

The interfaces on the devide looks like this:

MGMT is used for management, which is working.
Is it correct, to use the bridge as its parent?

After that i configured the bridge.

Bridge ports looks like this:

Bridge Ports does not show ports already part of the bridge when they are offline. How can i make them visible?
For example, when there is no 60G connection, it isn’t shown in the list.

Bridge vlans like this:

Why do i have to add the bridge itself to the bridge as tagged?
Why do i have to add ether1 and the 60g station to the vlan as tagged, when the bridge is already part of it?

Where is the fault in my configuration, i geht the following error:
“bridge port received packet with own address”. It also occures when only the second Wireless Wire is powered off.



Thank you

I found something on the second devide. On that bridge and ether1 got the same MAC-Adress.

Why does this happen?

I am not able to change those addresses.

That is normal, as expected, and is not the cause of your problem.

So should i ignore those warnings or is there a bad configuration?

No, you should not ignore them. They most likely indicate a problem, but the reason is elsewhere.

Ok. Any suggestion, where the problem could be?

I have a mikrotik wireless wire kit and i now thought i would just reset the configuration to avoid those messages.

Even when i reset both of them and use it with the factory config, those messages keep showing. Can somebody confirm this?

What other equipment do you have in your network, and the running configuration /export hide-sensitive would help.

Just a pfsense and one Cisco Layer 2 switch for the trunk.
Nothing else, it also happens when i just connect them without an uplink and only on my notebook.

Master:

/interface bridge
add comment=defconf frame-types=admit-only-vlan-tagged ingress-filtering=yes name=bridge vlan-filtering=yes
/interface w60g
set [ find ] disabled=no mode=bridge name=wlan60-1 put-stations-in-bridge=bridge ssid=MikroTik-5763ad
/interface w60g station
add mac-address=30:07:4D:7E:31:8B name=wlan60-station-1 parent=wlan60-1 remote-address=30:07:4D:7E:31:A9
/interface vlan
add interface=bridge name=MGMT vlan-id=1000
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=yes interface=ether1 pvid=1000
/interface bridge vlan
add bridge=bridge tagged=bridge,wlan60-station-1,ether1 vlan-ids=1000
add bridge=bridge tagged=bridge,wlan60-station-1,ether1 vlan-ids=1051
/ip address
add address=192.168.88.2/24 comment=defconf disabled=yes interface=bridge network=192.168.88.0
add address=192.168.1.80/24 interface=MGMT network=192.168.1.0
/system clock
set time-zone-name=Europe/Vienna
/system ntp client
set enabled=yes primary-ntp=192.168.1.254
/tool bandwidth-server
set authenticate=no enabled=no
/tool mac-server
set allowed-interface-list=none
/tool mac-server mac-winbox
set allowed-interface-list=none
/tool mac-server ping
set enabled=no

Which is showing the following error:

ether1: bridge port received packet with own address as source address (cc:2d:e0:57:63:ad), probably loop

Slave:

/interface bridge
add admin-mac=CC:2D:E0:57:64:29 auto-mac=no comment=defconf frame-types=admit-only-vlan-tagged ingress-filtering=yes name=bridge vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] speed=100Mbps
/interface w60g
set [ find ] disabled=no mode=station-bridge name=wlan60-1 put-stations-in-bridge=bridge ssid=MikroTik-5763ad
/interface vlan
add interface=bridge name=MGMT vlan-id=1000
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/port
set 0 name=serial0
/snmp community
set [ find default=yes ] addresses=0.0.0.0/0
/user group
set full policy=local,telnet,ssh,ftp,reboot,read,write,policy,test,winbox,password,web,sniff,sensitive,api,romon,dude,tikapp
/interface bridge port
add bridge=bridge comment=defconf frame-types=admit-only-untagged-and-priority-tagged hw=no ingress-filtering=yes interface=ether1 pvid=1051
add bridge=bridge comment=defconf frame-types=admit-only-vlan-tagged ingress-filtering=yes interface=wlan60-1
/interface bridge vlan
add bridge=bridge tagged=bridge,wlan60-1 vlan-ids=1000
add bridge=bridge tagged=wlan60-1,bridge vlan-ids=1051
/ip address
add address=192.168.88.3/24 comment=defconf disabled=yes interface=bridge network=192.168.88.0
add address=192.168.1.81/24 interface=MGMT network=192.168.1.0
/system clock
set time-zone-name=Europe/Vienna
/system ntp client
set enabled=yes primary-ntp=192.168.1.254 server-dns-names=""

Which shows this:

wlan60-1: bridge port received packet with own address as source address (cc:2d:e0:57:64:29), probably loop

The master and slave configurations appear identical. Cut and paste issue?

The configuration has an incorrect VLAN configuration. You diagram shows the master ether1 carrying VLAN 1000 and 1051 tagged, but you have configured the port has VLAN 1000 untagged. It should be:
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=yes interface=ether1 pvid=1000

How have you configured the Cisco? IIRC one of the defaults is PVST+ which does not play nicely with RSTP, which is the default on Mikrotik bridges.

It really was a copy paste issue. I pasted the correct config in the original post.

The configuration has an incorrect VLAN configuration. You diagram shows the master ether1 carrying VLAN 1000 and 1051 tagged, but you have configured the port has VLAN 1000 untagged. It should be:
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=yes interface=ether1 pvid=> 1> 000

I thought that wouldn’t be a problem. Pvid is at 1000 to test it and manage it with my notebook. I will set PVID to vlan 1.

How have you configured the Cisco? IIRC one of the defaults is PVST+ which does not play nicely with RSTP, which is the default on Mikrotik bridges.

I do not use PVST. I just use RSTP.

With some parts of the configuration setting an interface to tagged and other parts setting it to untagged you can end up with odd behaviour - you may have tagged packets in one direction and untagged in the other, and it isn’t always obvious as laptop network drivers will often silently strip VLAN tags if they do not have any VLANs configured.

As the messages relate to wireless traffic on the slave and the wired interface on the master it does point to something reflecting packets back. You could try using the packet sniffer (Tools > Packet Sniffer in Winbox) to capture some traffic.

Looks interesting, but do not know, why this happens:

By default it will capture everything - including broadcast/multicast traffic from the rest of your network and the Winbox traffic to and from the Mikrotik itself. You can apply filters to reduce the scope of the capture and hopefully volume of packets, there should be something transmitted and received once a minute looking at your logs. At this point you can examine the packet which will hopefully indicate what the traffic is and shed some light on why it is reflected back.

That is the only think, i captured. I also noticed some strange traffic from my notebook to the Wireless Wire, without beeing connected to it.

The other strange thing is, that i do not know what this SamsungE device is. Do you have an idea?

Does nobody have an idea, why this happens?