Hi guys.
I was faced with incorrect work with RSTP in bridge, which includes vlan interfaces.
In this case the vlan interface is the uplink, RSTP packets from the upstream switch come through in a tagged form, but the response mikrotik sends through this interface in untagged form, which leads to the fact that rb sees RSTP for uplink, appoints himself as root-bridge, which leads to spontaneous storm-control triggering on both the mikrotik, and the uplink, randomly, because RSTP response is received from another user interface means potencial loop.
Here is a sample configuration:
/interface bridge
add admin-mac=D4:CA:6D:XX:XX:XX auto-mac=no l2mtu=1594 name=bridge1 protocol-mode=rstp
/interface ethernet
set 0 name=eth1
set 1 name=eth2
set 2 name=eth3
set 3 name=eth4
set 4 name=eth5
set 5 name=eth6
set 6 name=eth7
set 7 name=eth8
set 8 name=eth9
set 9 name=eth10
set 10 name=sfp
/interface vlan
add interface=sfp l2mtu=1594 name=139 vlan-id=139
/interface bridge port
add bridge=bridge1 interface=eth6
add bridge=bridge1 interface=139
add bridge=bridge1 interface=eth2
add bridge=bridge1 interface=eth3
add bridge=bridge1 interface=eth1
add bridge=bridge1 interface=eth4
add bridge=bridge1 interface=eth5
add bridge=bridge1 interface=eth10
add bridge=bridge1 interface=eth9
add bridge=bridge1 interface=eth8
add bridge=bridge1 interface=eth7
Bridge status:
/interface bridge> monitor
numbers: 0
state: enabled
current-mac-address: D4:CA:6D:XX:XX:XX
root-bridge: yes
root-bridge-id: 0x8000.D4:CA:6D:XX:XX:XX
root-path-cost: 0
root-port: none
port-count: 11
designated-port-count: 7
The situation is similar for all tested devices (series 751 and 2011) and firmware version (from 5.22 to 6rc11)
How to configure the bridge for normal RSTP operation in tagged VLANs?