VLANs on 750G2 with no bridge help sought

RouterOS General
1

I am struggling to make this work and wonder if someone can provide some assistance. He is some setup info with RB750:

ether 1 = WAN
ether 2 = master port - VLAN 10,20,30,40 connect to managed switch
ether 3 = Master port 2
ether 4 = Master port 2
ether 5 = Master port 2

All of the VLANs are configured as follows:

    • on ether2
  • IP Addresses
  • IP Pools
  • DHCP networks
  • DHCP server

I am trying to accomplish the following:

    • make ether3 an access port and member of VLAN3 and pull an IP from the VLAN3 DHCP server
  • make ether4 an access port and member of VLAN4 and pull an IP from the VLAN4 DHCP server
  • make ether5 an access port and member of VLAN5 and pull an IP from the VLAN5 DHCP server

(sorry to be redundant, just trying to be clear)

I have typically created bridges for the VLANs and added the appropriate ports and VLANs to the them.

I am wondering if the same can be achieved with the switch VLAN settings at wire speed. I really just don’t think the bridges are necessary and the speed aspect is secondary. I have read through the Wiki and looked in the forums and found pieces of what I think is correct but could never get this to work. Any help in the steps necessary to accomplish this would be greatly appreciated.

Thanks in Advance

2

Yes, you just have to configure the switch. Pay special attention to the bottom part on Management IP configuration as you’ll be using that for routing, etc.

http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features

3

Thank you for your reply - but I am not sure I understand. Some questions.

  1. If use the management IP as described in the last step, does that mean the only way I will be able to access the router will be on port 2? I will have to provide my PC a static IP in the 192.168.88.1/24 network?

  2. DHCP - It does not look like the VLANs created on the switch ports are able to be a target for a DHCP Server. Do I need to create VLANs under the interface /vlan as well?

Sorry, just trying to wrap my head around this. Any and All help is very appreciated.

4
  1. Not if you do it right.
  2. Yes, they have to be set up under both.

Yes, this can be really confusing at first.
You need to consider the switch and rest of the router as two separate devices. A five port switch (six, but Ether/WAN has no master-port set in your config and is handled separately) and a one port router.

You haven’t said a lot about your configuration: You say vlan 10,20,30,40 as uplink to a managed switch, but then you talk about vlan3,vlan4 & vlan 5 on routerOS? Are you routing vlan 10-40 or is that separate from your WAN? How are these segments supposed to interact/do?

For your setup you have the router talking to the switch through Ether2 (master-port) and vlans set up under interface/vlan on Ether2. The switch actually see’s this traffic coming in not on Ether2, but on switch1-cpu port in the switch menu! In the switch menu Ether2 refers to the physical port and can have it’s vlans define however you want.