Community discussions

MikroTik App
just joined
Topic Author
Posts: 1
Joined: Mon May 07, 2018 8:15 pm

Problems with VLANs

Thu Nov 19, 2020 4:06 pm

Hello, I have a problem. I have a router, with 3 interfaces, one connected to the internet, another connected to a radius and another connected to a switch, on that same router, I have a fixed port connected to vlan 14 which is the "Rede Administrativa" for the radius, this router creates the vlans and injects DHCP into each one. On the switch, I have 2 interfaces, one coming from the router and the other connected to a client, on that same switch I have the dot1x protocol configured and working beautifully on practically all networks except on vlan 14. On the Router, a status of DHCP Releases appears IP offered but not bound. Attached I send the settings.



/interface bridge
add name=Redes vlan-filtering=yes
/interface ethernet
set [ find default-name=ether2 ] name=Cliente
set [ find default-name=ether1 ] name=UpLink
/interface vlan
add interface=UpLink name="Rede Admin" vlan-id=14
/interface bridge port
add bridge=Redes interface=UpLink
add bridge=Redes interface=Cliente
/interface bridge vlan
add bridge=Redes tagged=UpLink vlan-ids=10
add bridge=Redes tagged=UpLink vlan-ids=11
add bridge=Redes tagged=UpLink vlan-ids=12
add bridge=Redes tagged=UpLink vlan-ids=13
add bridge=Redes tagged=UpLink vlan-ids=14
add bridge=Redes tagged=UpLink vlan-ids=15
add bridge=Redes tagged=UpLink vlan-ids=16
/interface dot1x server
add interface=Cliente reject-vlan-id=16
/ip address
add address= interface="Rede Admin" network=
add address= secret=Olamundo2003 service=dot1x
/system identity
set name=swViseu
/tool romon
set enabled=yes id=00:00:00:00:00:07 secrets=immtelecom


/interface bridge
add name=Admins-Conectividade
add name=Switches
/interface ethernet
set [ find default-name=ether3 ] name=Radius
set [ find default-name=ether2 ] name=SW
set [ find default-name=ether1 ] name=UpLink
/interface vlan
add interface=Switches name="Rede AO" vlan-id=12
add interface=Switches name="Rede Administrativa" vlan-id=14
add interface=Switches name="Rede Alunos" vlan-id=10
add interface=Switches name="Rede Profs" vlan-id=11
add interface=Switches name="Rede Quarentena" vlan-id=16
add interface=Switches name="Rede Salas TIC" vlan-id=13
add interface=Switches name="Rede Visitantes" vlan-id=15
/ip pool
add name=dhcp_pool0 ranges=
add name=dhcp_pool1 ranges=
add name=dhcp_pool2 ranges=
add name=dhcp_pool3 ranges=
add name=dhcp_pool4 ranges=
add name=dhcp_pool5 ranges=
add name=dhcp_pool6 ranges=
/ip dhcp-server
add address-pool=dhcp_pool0 disabled=no interface=Admins-Conectividade name=\
add address-pool=dhcp_pool1 disabled=no interface="Rede AO" name=dhcp2
add address-pool=dhcp_pool2 disabled=no interface="Rede Alunos" name=dhcp3
add address-pool=dhcp_pool3 disabled=no interface="Rede Profs" name=dhcp4
add address-pool=dhcp_pool4 disabled=no interface="Rede Quarentena" name=\
add address-pool=dhcp_pool5 disabled=no interface="Rede Salas TIC" name=dhcp6
add address-pool=dhcp_pool6 disabled=no interface="Rede Visitantes" name=\
/interface pppoe-client
add add-default-route=yes allow=mschap1,mschap2 disabled=no interface=UpLink \
name="Autentica\E7\E3o NSO" password=viriato profile=default-encryption \
/interface bridge port
add bridge=Switches interface=SW
add bridge=Admins-Conectividade interface=Radius
add bridge=Admins-Conectividade interface="Rede Administrativa"
/ip address
add address= interface="Rede Administrativa" network=\
add address= interface="Rede AO" network=
add address= interface="Rede Alunos" network=
add address= interface="Rede Profs" network=
add address= interface="Rede Quarentena" network=
add address= interface="Rede Salas TIC" network=
add address= interface="Rede Visitantes" network=
/ip dhcp-server network
add address= dns-server= domain=alunos.viriato gateway=\
add address= dns-server= domain=salastic.viriato gateway=\
add address= dns-server= domain=ao.viriato gateway=\
add address= dns-server= domain=profs.viriato gateway=\
add address= dns-server= domain=visitantes.viriato \
add address= dns-server= domain=quarentena.viriato \
add address= dns-server= domain=admin.viriato \
/ip dns
set allow-remote-requests=yes servers=
/ip firewall nat
add action=masquerade chain=srcnat out-interface="Autentica\E7\E3o NSO"
add action=dst-nat chain=dstnat dst-port=1812 in-interface=\
"Autentica\E7\E3o NSO" protocol=udp to-addresses= to-ports=\
/system identity
set name=ViriatoRouter
/tool romon
set enabled=yes id=00:00:00:00:00:04 secrets=immtelecom

Who is online

Users browsing this forum: hannz, joris77 and 101 guests