I am almost sure that is NOT at problem, is a non-knowledge about VLAN in my side…
I will explain my situation
Vlan100 = VIP/private
Vlan300 = others
Network private: 192.168.10.0/24
Network public: 192.168.12.0/24
1.- Main mikrotik router 2011 with 2 VLANs. 100 and 300 id.
VLAN-100 IP = 192.168.10.1
VLAN-300 IP = 192.168.12.1
dhcp server private on VLAN-100
dhcp server public on VLAN-300
Eth2-8 and 10 VLAN-100 / local bridge
Eth9 has VLAN-100 and VLAN-300… its perfect…
2.- RB433 like switch+ap.
ip on VLAN-100 = 192.168.10.3
ip on VLAN-300 = 192.168.12.2
On eth1 has VLAN-100 and VLAN300…
wireless = VLAN 100
eth2-9 VLAN 300
Perfect here
On eth 5 from the RB433 I have an AP (Groove)(192.168.10.2) (just bridging) with ip of the network PRIVATE but giving access to PUBLIC.
Then… all the customers connecting them, are getting IP from the DHCP server public on Mikrotik 2011 using VLAN-300. Everything is perfect here.. Is what I want
But… but… I want from the RB2011 (any device connected here) ACCESS to manage the the Groove that has 192.168.10.2. from any device in VLAN-100 (connected
How can I do it?
I think if I put VLAN-100 to the Groove, all the traffic will be marked like private…
PD: All traffic from “public” is untagged. Are just customers.
Is correct?
Thank you