Hello people!
I’m a Cisco technican (CCIE) but I’m confused about the vlan logic of mikrotik.
Today I trired to seperate a single CRS mikrotik switch into 2 different vlans with 2 different vlan ID’s. (all L2, no routing)
The hosts must nut communicate between the vlans.
I tried this ONLY with vlan-id’s. NO bridge, NO masterport. But I was not able to do this.
On a cisco switch I create two vlan ID’s and put the access-ports into this vlans and the thing is finished. The hosts cannot communicate between vlans.
But how to do this on a mikrotik device?
MikroTik is a little different on VLAN’s.
You can not directly configure a port as an accessport.
If you just want two separated L2 domains, there is no need for VLAN’s on MikroTik.
Just create two bridges and put the desired ports into the designated bridge.
Keep in mind that since the RouterOS is a router, if both bridges are setup with an IP address, the traffic will be routed by default. If you do not want that, you have to block this traffic with firewall filter rules.