Hi Guys,
I’ve got an issue where clients on a VLAN is requesting DHCP information, and in the log files of the Routerboard, it looks like some devices are getting DHCP info, while other devices are not accepting requests, but in all cases, the clients are failing to obtain IP information.
I’m sure I’m overlooking something small, but for the life of me, I can’t see where I’m going wrong.
The DHCP server is listening on the VLAN400 virtual interface, and the VLAN400 VLAN IF is attached to physical ethernet 2, which runs to a Ubiquiti Edgemax switch - trunking on the switch is pretty straight forward.
Since the Mikrotik is receiving requests, but clients aren’t getting it, I’m thinking i have a L2 setup issue, but cannot see it.
You’ll notice from the CLI, I built on the default config many moons ago - so you might see some “default” looking lines.
From the Edgemax Switch, I’m going to a Ubiquiti AP - The AP has a SSID setup with VLAN 400, and a ‘Network’ also of VLAN 400 - considering requests are getting to the Mikrotik, it’s safe to say the AP isn’t to blame here.
The only prohibitive action applied on the AP, is client isolation, also there is no walled garden or restricted subsets.
Any help will be greatly appreciated.
Errors:
There are DHCP leases:
Interfaces:
/interface ethernet
set [ find default-name=ether1 ] comment=WAN name=Internet
set [ find default-name=ether2 ] name=ether2-master
set [ find default-name=ether3 ] master-port=ether2-master
set [ find default-name=ether4 ] master-port=ether2-master
set [ find default-name=ether5 ] comment=“Slave of ETH2” master-port=ether2-master
set [ find default-name=ether6 ] disabled=yes name=ether6-master
set [ find default-name=ether7 ] disabled=yes master-port=ether6-master
set [ find default-name=ether8 ] disabled=yes master-port=ether6-master
set [ find default-name=ether9 ] disabled=yes master-port=ether6-master
set [ find default-name=ether10 ] auto-negotiation=no disabled=yes master-port=ether6-master speed=1Gbps
set [ find default-name=sfp1 ] disabled=yes
/interface vlan
add interface=bridge loop-protect-disable-time=0s loop-protect-send-interval=
0s name=VLAN300 vlan-id=300
add comment=“To PORT 1 on SWITCH 1” interface=ether2-master
loop-protect-disable-time=0s loop-protect-send-interval=0s name=
VLAN400-GUEST vlan-id=400
add interface=bridge loop-protect-disable-time=0s loop-protect-send-interval=
0s name=VLAN600 vlan-id=600
/interface ethernet switch port
set 6 default-vlan-id=0
set 7 default-vlan-id=0
set 8 default-vlan-id=0
set 9 default-vlan-id=0
set 10 default-vlan-id=0
set 12 default-vlan-id=0
/interface bridge port
add bridge=bridge comment=defconf interface=ether2-master
add bridge=bridge comment=defconf disabled=yes interface=ether6-master
add bridge=bridge comment=defconf interface=sfp1
add bridge=bridge comment=defconf interface=wlan1
DHCP Options:
/ip dhcp-server option
add code=43 name=unifi value=0x0104C0A800FD
add code=43 name=ubnt value=0x0104C0A800FD
/ip pool
add name=“Local Net 1” ranges=192.168.0.10-192.168.0.199
add name=DHCP-IPPOOL_VLAN400 ranges=192.168.10.2-192.168.11.250
/ip address
add address=192.168.0.254/24 interface=bridge network=192.168.0.0
add address=10.0.0.3/24 interface=Internet network=10.0.0.0
add address=192.168.10.1/23 interface=VLAN400-GUEST network=192.168.10.0
/ip dhcp-server
add address-pool=“Local Net 1” authoritative=yes disabled=no interface=bridge
lease-time=1w name=DHCPSRV1
add address-pool=DHCP-IPPOOL_VLAN400 authoritative=yes disabled=no interface=
VLAN400-GUEST lease-time=1d name=DHCP-VLAN400
/ip dhcp-server network
add address=192.168.0.0/24 dhcp-option=unifi,ubnt dns-server=192.168.0.253
domain=company.local gateway=192.168.0.254 netmask=24 ntp-server=
192.168.0.254
add address=192.168.10.0/23 dns-server=192.168.0.253,8.8.8.8 gateway=
192.168.10.1 netmask=23 ntp-server=192.168.0.254
Setting on the Ubiquiti Edgemax:
Port 1 is trunk to port 5 on Mikrotik (which is slave to Ethernet 2):
In this photo, port 25 trunks to another switch. But the issue is between AP > port 6 on [Switch 1] going out on port 1 to the [Mikrotik] ether 5. Port 6, and 1 on the switch has been setup to trunk and carry VLAN400.
AP:
I’m running ROS 6.37.1 MIPS