Wifi another subnet

aarango · January 9, 2017, 9:44am

Hi,

I have MIKROTIK ROUTEROS with 15 laptop using ethernet and I have a WLAN that clients and visitors use it. I want to give using DHCP to ethernet subnet 192.168.80.0/24 (example) and WLAN subnet 192.168.90.0/24.

I configured in DHCP server → interface WLAN1 → Address Pool → MyPool and that pool is range 90, but Mikrotik give same subnet that ethernet (80), Why?
This I tried with another WLAN Virtual created on same Mikrotik and it works fine.
Is there any option to avoid give different range ethernet and main WLAN?

Thanks
Kind regards.

gustavomam · January 9, 2017, 12:26pm

Hi.

Could you export the configuration of your router DHCP server?

Whith virtual interfaces maybe you whould use bridge to configure DHCP Servers.

Please check you have the RouterOS V6.38

Regards.

aarango · January 9, 2017, 1:46pm

I have 2 config in DHCP Server:
[admin@MikroTik] /ip dhcp-server> print

NAME INTERFACE RELAY ADDRESS-POOL LEASE-TIME ADD-ARP

0 default bridge-local default-dhcp 3d
1 dhcp-wifiguest wlan1 pool-wifiguest 3d
2 DHCP Wifi Vis Wifi Visit Pool Visit 3d

I tried that dhcp-wifiguest give another subnet. MK is given always same subnet default and dhcp-wifiguest
I have 6.5

Thanks.

JB172 · January 9, 2017, 1:55pm

Which are the ports of bridge-local ?
Also put an export of /ip pool print

gustavomam · January 9, 2017, 2:46pm

Which interface belong to the bridge?
You are using default bridge, in this case it have wlan and and ether ports.

aarango · January 10, 2017, 9:10am

bridge-local is connected to ether2-master-local.
I had same bridge port on WLAN and ether2-master-local. I changed to different bridge but now I can't connect that Wifi. Laptop keep thinking thinking... but not connect.

[admin@MikroTik] /ip> pool print

NAME RANGES

0 default-dhcp 192.168.XX.10-192.168.XX.254
1 pool-wifiguest 192.168.YY.10-192.168.YY.254
2 Pruebas 192.168.ZZ.10-192.168.ZZ.254

bridge-local is connected to ether2-master-local.

Thanks both.

JB172 · January 10, 2017, 9:20am

Your post is little confused.
Now, in bridge-local do you have ether2 and wlan or only ether2?

aarango · January 10, 2017, 11:33am

Sorry. bridge-local is using ether2-master-local
bridge-wifiguest is using wlan1 interface

If I change wlan1 to bridge-local, I can connect using Wifi without problem, but if I change to bridge-wifiguest I can’t connect, laptop keep thinking without get IP.

In bridge, both (local & wifiguest) has same config.

Why? I’m sorry if I explained bad

Thanks.

JB172 · January 10, 2017, 11:45am

First of all you don’t need bridges. Delete the bridges and delete the ports from the bridges.
Put the IP of the bridge-local to ether2. Put ether2 to look in default-dhcp in DHCP Server.
Give IP 192.168.90.1/24 to wlan.

aarango · January 10, 2017, 12:28pm

If i remove bridge I haven’t net

JB172 · January 10, 2017, 12:33pm

Make an export of your configuration and put it here inside

aarango · January 10, 2017, 12:55pm

[admin@MikroTik] > export    
# jan/10/2017 13:46:53 by RouterOS 6.5
# software id = UUEG-228A
#
/interface bridge
add admin-mac=D4:CA:6D:F8:5A:A3 auto-mac=no l2mtu=1588 name=bridge-local protocol-mode=rstp
add admin-mac=D4:CA:6D:F8:5A:BB auto-mac=no l2mtu=2290 name=bridge-wifiguest protocol-mode=rstp
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] master-port=ether2-master-local name=ether3-slave-local
set [ find default-name=ether4 ] master-port=ether2-master-local name=ether4-slave-local
set [ find default-name=ether5 ] master-port=ether2-master-local name=ether5-slave-local
set [ find default-name=ether6 ] master-port=ether2-master-local name=ether6-slave-local
set [ find default-name=ether7 ] master-port=ether2-master-local name=ether7-slave-local
set [ find default-name=ether8 ] master-port=ether2-master-local name=ether8-slave-local
set [ find default-name=ether9 ] master-port=ether2-master-local name=ether9-slave-local
set [ find default-name=ether10 ] master-port=ether2-master-local name=ether10-slave-local
set [ find default-name=ether11 ] master-port=ether2-master-local name=ether11-slave-local
set [ find default-name=ether12 ] master-port=ether2-master-local name=ether12-slave-local
set [ find default-name=ether13 ] master-port=ether2-master-local name=ether13-slave-local
set [ find default-name=ether14 ] master-port=ether2-master-local name=ether14-slave-local
set [ find default-name=ether15 ] master-port=ether2-master-local name=ether15-slave-local
set [ find default-name=ether16 ] master-port=ether2-master-local name=ether16-slave-local
set [ find default-name=ether17 ] master-port=ether2-master-local name=ether17-slave-local
set [ find default-name=ether18 ] master-port=ether2-master-local name=ether18-slave-local
set [ find default-name=ether19 ] master-port=ether2-master-local name=ether19-slave-local
set [ find default-name=ether20 ] master-port=ether2-master-local name=ether20-slave-local
set [ find default-name=ether21 ] master-port=ether2-master-local name=ether21-slave-local
set [ find default-name=ether22 ] master-port=ether2-master-local name=ether22-slave-local
set [ find default-name=ether23 ] master-port=ether2-master-local name=ether23-slave-local
set [ find default-name=ether24 ] master-port=ether2-master-local name=ether24-slave-local
set [ find default-name=sfp1 ] name=sfp1-gateway
/ip neighbor discovery
set ether1-gateway discover=no
set sfp1-gateway discover=no
/interface ethernet switch
set 0 bridge-type=service-vlan-bridge bypass-l2-security-check-filter-for="" bypass-vlan-ingress-filter-for="" drop-if-invalid-vlan-on-ports="" drop-if-no-vlan-assignment-on-ports="" drop-invalid-vlan=no egress-mirror-ratio=1/1 \
    egress-mirror0-enable=yes egress-mirror0-format=modified egress-mirror0-port=cpu egress-mirror1-enable=yes egress-mirror1-format=modified egress-mirror1-port=cpu egress-sampling-ratio=1/1 fdb-uses=mirror0 igress-mirror0-port=cpu \
    igress-mirror1-port=cpu ingress-mirror-ratio=1/1 ingress-mirror0-enable=yes ingress-mirror0-format=modified ingress-mirror1-enable=yes ingress-mirror1-format=modified invalid-vlan-lookup-mode=ivl ipv4-multicast-lookup-mode=\
    dst-mac-and-vid-always mac-level-isolation=no mirror-egress-if-ingress-mirrored=no mirror-tx-on-mirror-port=no mirrored-packet-drop-precedence=0 mirrored-packet-qos-priority=0 override-existing-when-ufdb-full=no unicast-fdb-age=5m \
    use-cvid-in-one2one-vlan-lookup=yes use-svid-in-one2one-vlan-lookup=no vlan-level-isolation=no vlan-uses=mirror0
/interface wireless security-profiles
add authentication-types=wpa-psk,wpa2-psk eap-methods="" management-protection=allowed mode=dynamic-keys name="Wifi 1" wpa-pre-shared-key=430rum01 wpa2-pre-shared-key=430rum01
add authentication-types=wpa-psk,wpa2-psk management-protection=allowed mode=dynamic-keys name="Wifi 2" wpa-pre-shared-key=visitas01 wpa2-pre-shared-key=visitas01
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-ht-above disabled=no distance=indoors hide-ssid=yes ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290 mode=ap-bridge security-profile="Wifi 1" ssid=Otra_wifi
add disabled=no l2mtu=2290 mac-address=D6:CA:6D:F8:5A:BC master-interface=wlan1 name="Wifi 1" security-profile="Wifi 1" ssid="Wifi 1" wds-default-bridge=bridge-local
add disabled=no l2mtu=2290 mac-address=D6:CA:6D:F8:5A:BB master-interface=wlan1 name="Wifi 2" security-profile="Wifi 2" ssid="Wifi 2"
/ip hotspot profile
add hotspot-address=192.168.90.1 name=hsprof2
/ip hotspot user profile
set [ find default=yes ] mac-cookie-timeout=3d
/ip pool
add name=default-dhcp ranges=192.168.88.10-192.168.88.254
add name=pool-wifiguest ranges=192.168.89.10-192.168.89.254
add name=" Pool pruebas" ranges=192.168.90.10-192.168.90.254
/ip dhcp-server
add address-pool=default-dhcp disabled=no interface=bridge-local lease-script=script1 name=default
add address-pool=" Pool pruebas" disabled=no interface="Wifi 1" lease-script=myLeaseScript name="DHCP Wifi "
add address-pool=pool-wifiguest disabled=no interface="Wifi 2" name="DHCP Wifi 1"
add address-pool=pool-wifiguest disabled=no interface=bridge-wifiguest name="DHCP 2"
/port
set 0 name=serial0
/system logging action
add name=info target=email
/user group
add name=sniffer policy=ssh,read,!local,!telnet,!ftp,!reboot,!write,!policy,!test,!winbox,!password,!web,!sniff,!sensitive,!api
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-wifiguest interface=wlan1
add bridge=bridge-wifiguest disabled=yes interface="Wifi 1"
/interface ethernet switch port
set 0 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 1 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 2 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 3 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 4 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 5 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 6 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 7 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 8 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 9 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 10 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 11 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 12 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 13 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 14 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 15 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 16 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 17 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 18 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 19 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 20 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 21 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 22 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 23 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 24 egress-vlan-mode=unmodified isolation-profile=1 qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
set 25 egress-vlan-mode=unmodified qos-pcp-dei-map-drop-precedence=0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1 qos-pcp-dei-map-priority=0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3 qos-resolution=\
    "(unknown),vlan-based,(unknown),da-based,sa-based,pcp-based,ingress-policy-based,(unknown)"
/ip accounting
set threshold=2560
/ip accounting web-access
set accessible-via-web=yes address=192.168.88.0/24
/ip address
add address=192.168.88.1/24 comment="default configuration" interface=bridge-local network=192.168.88.0
add address=192.168.89.1/24 interface="Wifi 2" network=192.168.89.0
add address=192.168.90.1/24 interface="Wifi 1" network=192.168.90.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid disabled=no interface=ether1-gateway
add comment="default configuration" dhcp-options=hostname,clientid disabled=no interface=sfp1-gateway
/ip dhcp-server network
add address=192.168.88.0/24 boot-file-name=pxelinux.0 comment="default configuration" dns-server=192.168.88.1 gateway=192.168.88.1 next-server=192.168.88.58
add address=192.168.89.0/24 dns-server=192.168.89.1 gateway=192.168.89.1
add address=192.168.90.0/24 comment="hotspot network" dns-server=8.8.8.8,8.8.4.4 gateway=192.168.90.1
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.88.1 name=router
/ip firewall address-list
add list=FB-Addr
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=yes
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established
add chain=input comment="default configuration" connection-state=related
add action=drop chain=input comment="default configuration" in-interface=ether1-gateway
add action=drop chain=input comment="default configuration" in-interface=sfp1-gateway
add chain=forward comment="default configuration" connection-state=established
add chain=forward comment="default configuration" connection-state=related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add action=drop chain=forward disabled=yes in-interface="Wifi 1" out-interface=bridge-local
add action=drop chain=forward disabled=yes in-interface=bridge-local out-interface="Wifi 1"
add action=drop chain=forward dst-port=22 protocol=tcp src-address=192.168.90.0/24
add action=drop chain=forward dst-port=22 protocol=tcp src-address=192.168.89.0/24
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=yes
add action=masquerade chain=srcnat comment="default configuration" out-interface=ether1-gateway
add action=masquerade chain=srcnat comment="default configuration" out-interface=sfp1-gateway to-addresses=0.0.0.0
add action=masquerade chain=srcnat out-interface=ether1-gateway src-address=192.168.89.0/24
add action=masquerade chain=srcnat comment="masquerade hotspot network" src-address=192.168.90.0/24
add action=masquerade chain=srcnat comment="masquerade hotspot network" src-address=192.168.90.0/24
/ip traffic-flow
set cache-entries=64k enabled=yes
/ip traffic-flow target
add address=192.168.88.XX:2055 version=5
/lcd
set default-screen=stats-all enabled=no touch-screen=disabled
/lcd interface
add interface=wlan1
add interface=ether1-gateway
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=ether9-slave-local
add interface=ether10-slave-local
add interface=ether11-slave-local
add interface=ether12-slave-local
add interface=ether13-slave-local
add interface=ether14-slave-local
add interface=ether15-slave-local
add interface=ether16-slave-local
add interface=ether17-slave-local
add interface=ether18-slave-local
add interface=ether19-slave-local
add interface=ether20-slave-local
add interface=ether21-slave-local
add interface=ether22-slave-local
add interface=ether23-slave-local
add interface=ether24-slave-local
add interface=sfp1-gateway
/lcd interface pages
add interfaces=wlan1
/system clock
set time-zone-name=Europe/Madrid
/system script
/tool graphing interface
add interface=bridge-local
add interface=wlan1
add
add interface="Wifi 1"
add interface="Wifi 2"
/tool graphing queue
add
/tool graphing resource
add
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=ether9-slave-local
add interface=ether20-slave-local
add interface=ether21-slave-local
add interface=ether22-slave-local
add interface=ether23-slave-local
add interface=ether24-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=ether9-slave-local
add interface=ether20-slave-local
add interface=ether21-slave-local
add interface=ether22-slave-local
add interface=ether23-slave-local
add interface=ether24-slave-local
add interface=wlan1
add interface=bridge-local

Thanks.

gustavomam · January 10, 2017, 1:07pm

Hi.

You have a DHCP-SERVER in Bridge-wifiguest and interface wifi-1

The problem is that wifi-1 belongs to Bridge-wifiguest.

If an interface belongs to a bridge, you have to put DHCP server only in bridge, you can’t put in phisical and bridge interface two different DHCP-SERVER

Please upgrade your RouterOS to lastest version of RouterOS.

Regards.

JB172 · January 10, 2017, 1:52pm

The wifi 1 interface is disabled in bridge

/interface bridge port
add bridge=bridge-wifiguest disabled=yes interface="Wifi 1"

JB172 · January 10, 2017, 2:19pm

Remove next-server=192.168.88.58 from:

/ip dhcp-server network
add address=192.168.88.0/24 boot-file-name=pxelinux.0 comment="default configuration" dns-server=192.168.88.1 gateway=192.168.88.1 next-server=192.168.88.58

You don’t use wlan1 anywhere except from:

/interface bridge port
add bridge=bridge-wifiguest interface=wlan1

You have 2 Virtual Access Points (Wifi 1 and Wifi 2). Why you put in Wifi 1 wds-default-bridge=bridge-local? in:

/interface wireless
add disabled=no l2mtu=2290 mac-address=D6:CA:6D:F8:5A:BC master-interface=wlan1 name="Wifi 1" security-profile="Wifi 1" ssid="Wifi 1" wds-default-bridge=bridge-local

4.You don’t assign an IP address to bridge-wifiguest (where the wlan1 belongs). You assign IP addresses for bridge-local, Wifi 1 and Wifi 2

/ip address
add address=192.168.88.1/24 comment="default configuration" interface=bridge-local network=192.168.88.0
add address=192.168.89.1/24 interface="Wifi 2" network=192.168.89.0
add address=192.168.90.1/24 interface="Wifi 1" network=192.168.90.0

The wlan1 which belongs to bridge-wifiguests gives IP addresses via DHCP of pool-wifiguest, and also Wifi 2 do the same. Is that you want to do or you missed another DHCP pool?

/ip dhcp-server
add address-pool=pool-wifiguest disabled=no interface="Wifi 2" name="DHCP Wifi 1"
add address-pool=pool-wifiguest disabled=no interface=bridge-wifiguest name="DHCP 2"

gustavomam · January 10, 2017, 2:29pm

I recommend you do not disable ports in bridge. Please remove it because might cause conflict.

JB172:

gustavomam:

The problem is that wifi-1 belongs to Bridge-wifiguest.

The wifi 1 interface is disabled in bridge
/interface bridge port
add bridge=bridge-wifiguest disabled=yes interface="Wifi 1"

aarango · January 11, 2017, 7:47am

I solved. I added new address to bridge-wifiguest, after joined bridge-wifiguest & wlan1 and created new pool for that.

Thanks you both.