i hope you can help me with a probably quite trivial situation.
I have a small network consisting of 3 Routers and a few clients and printers.
The router providing the internet connectivety can be left out of the ecuation.
The other two devices are:
- a cisco router providing VLAN, firewall and DHCP
- a 10 port mikrotik router for further distribution of the VLANs
Ether1 is supposed to be the trunk port (carry tagged traffic)
Now here is the thing:
i would very much like to use the same Management VLAN for both Routers (VID 99) accessed on 4 different ports.
Meaning, once connected to the according ports i would like to:
- 1. receive an ip address from the cisco router and
- 2. be able to connect and manage both of the devices from the same connected pc
Code: Select all
/interface bridge
add name=bridge1 protocol-mode=none
/interface bridge port
add bridge=bridge1 interface=ether1 hw=yes
add bridge=bridge1 interface=ether2 hw=yes
add bridge=bridge1 interface=ether3 hw=yes
/interface ethernet switch vlan
add ports=ether1,ether2 switch=switch1 vlan-id=20
add ports=ether1,ether3 switch=switch1 vlan-id=30
[b]add ports=ether1,switch1-cpu switch=switch1 vlan-id=99[/b]
/interface vlan
add interface=bridge1 vlan-id=99 name=MGMT
/ip address
add address=192.168.99.1/24 interface=MGMT
/interface ethernet switch port
set ether1 vlan-mode=secure vlan-header=add-if-missing
set ether2 vlan-mode=secure vlan-header=always-strip default-vlan-id=20
set ether3 vlan-mode=secure vlan-header=always-strip default-vlan-id=30
set switch1-cpu vlan-header=leave-as-is vlan-mode=secure
Now, here i encounter a few more problems::
- 3. the interface "brige1" should receive its ip from the cisco router. Can i accomplish this?
- 4. I don't understand what it means that the switch-cpu appears in the list of the ports of the MGMT VLAN.
The original coding is:Code: Select alladd ports=ether1,switch1-cpu switch=switch1 vlan-id=99
- 5. if i need to get untagged traffic for that VLAN on certain ports (Ether4, Ether5). Do i have to add those ports to that list and afterwards strip the VLAN headers for those ports?
I hope i was able to describe my problem and I am gratefull for any help!
Jan