I have been applying with my vlan filtering on mikrotik audience
Internet is coming from another router on port 1 (trunk), port 2 is an access port
I am not sure what I did wrong but wireless clients on wlan interfaces don't get a dhcp lease
a client connected to port 2 (physical on audience) gets a dhcp lease just fine, the wireless only are the problem
may you please help?
Code: Select all
[admin@Mikrotik_Audience] > /export hide-sensitive
# may/08/2021 10:43:09 by RouterOS 6.48.2
# software id = M0L0-MR8G
#
# model = RBD25G-5HPacQD2HPnD
# serial number = B6BE0A6C03AF
/interface bridge
add name=bridge vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] name=ether1-trunk
set [ find default-name=ether2 ] comment=NOT_IN_USE
/interface vlan
add comment=LAN_VLAN_10 interface=bridge name=vlan10_main vlan-id=10
add comment=LAN_VLAN_20 interface=bridge name=vlan20_guest vlan-id=20
/interface list
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
add authentication-types=wpa2-psk eap-methods="" management-protection=allowed mode=dynamic-keys name=wlan_10_main supplicant-identity=""
add authentication-types=wpa2-psk eap-methods="" management-protection=allowed mode=dynamic-keys name=wlan_20_guest supplicant-identity=""
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-g/n channel-width=20/40mhz-XX comment=Phisical_2.4GHz_VLAN10 country="new zealand" default-authentication=no disabled=no frequency=2447 mode=\
ap-bridge name=wlan10_main_2.4GHz security-profile=wlan_10_main ssid=wifi vlan-id=10 vlan-mode=use-tag wps-mode=disabled
set [ find default-name=wlan3 ] band=5ghz-n/ac channel-width=20/40/80/160mhz-XXXXXXXX comment=Phisical_5.0GHz+_VLAN10 country="new zealand" disabled=no frequency-mode=superchannel mode=\
ap-bridge name=wlan10_main_5.0GHz+ security-profile=wlan_10_main ssid=wifi vlan-id=10 vlan-mode=use-tag wps-mode=disabled
set [ find default-name=wlan2 ] band=5ghz-n/ac channel-width=20/40/80mhz-XXXX comment=Phisical_5.0GHz_VLAN10_Backup country="new zealand" frequency=5260 frequency-mode=superchannel mode=\
ap-bridge name=wlan10_main_5.0GHz_Backup security-profile=wlan_20_guest ssid=backup_wifi_link vlan-id=20 vlan-mode=use-tag wps-mode=disabled
add comment=Virtual_2.4GHz_VLAN20 disabled=no keepalive-frames=disabled mac-address=76:4D:28:F4:F7:F3 master-interface=wlan10_main_2.4GHz multicast-buffering=disabled name=\
wlan20_guest_2.4GHz security-profile=wlan_20_guest ssid=wifi_guest vlan-id=20 vlan-mode=use-tag wds-cost-range=0 wds-default-cost=0 wps-mode=disabled
add comment=Virtual_5.0GHz+_VLAN20 disabled=no keepalive-frames=disabled mac-address=76:4D:28:F4:F7:F7 master-interface=wlan10_main_5.0GHz+ multicast-buffering=disabled name=\
wlan20_guest_5.0GHz+ security-profile=wlan_20_guest ssid=wifi_guest vlan-id=20 vlan-mode=use-tag wds-cost-range=0 wds-default-cost=0 wps-mode=disabled
/interface wireless manual-tx-power-table
set wlan10_main_2.4GHz comment=Phisical_2.4GHz_VLAN10
set wlan10_main_5.0GHz+ comment=Phisical_5.0GHz+_VLAN10
set wlan10_main_5.0GHz_Backup comment=Phisical_5.0GHz_VLAN10_Backup
set wlan20_guest_2.4GHz comment=Virtual_2.4GHz_VLAN20
set wlan20_guest_5.0GHz+ comment=Virtual_5.0GHz+_VLAN20
/interface wireless nstreme
set wlan10_main_2.4GHz comment=Phisical_2.4GHz_VLAN10
set wlan10_main_5.0GHz+ comment=Phisical_5.0GHz+_VLAN10
set wlan10_main_5.0GHz_Backup comment=Phisical_5.0GHz_VLAN10_Backup
set *11 comment=Virtual_2.4GHz_VLAN20
set *1A comment=Virtual_5.0GHz+_VLAN20
/interface bridge port
add bridge=bridge interface=ether1-trunk
add bridge=bridge interface=ether2 pvid=10
add bridge=bridge interface=wlan10_main_2.4GHz pvid=10
add bridge=bridge interface=wlan20_guest_2.4GHz pvid=20
add bridge=bridge interface=wlan10_main_5.0GHz+ pvid=10
add bridge=bridge interface=wlan20_guest_5.0GHz+ pvid=20
add bridge=bridge interface=wlan10_main_5.0GHz_Backup pvid=10
/interface bridge vlan
add bridge=bridge tagged=ether1-trunk,bridge untagged=ether2,wlan10_main_2.4GHz,wlan10_main_5.0GHz+,wlan10_main_5.0GHz_Backup,*1E vlan-ids=10
add bridge=bridge tagged=ether1-trunk,bridge untagged=wlan20_guest_2.4GHz,wlan20_guest_5.0GHz+ vlan-ids=20
/interface detect-internet
set detect-interface-list=all
/interface wireless access-list
add comment=LIFX disabled=yes interface=wlan10_main_2.4GHz mac-address=D0:73:D5:12:25:E9 vlan-id=10 vlan-mode=use-tag
add comment=LIFX disabled=yes interface=wlan10_main_2.4GHz mac-address=D0:73:D5:24:52:2F vlan-id=10 vlan-mode=use-tag
add comment=Kettle disabled=yes interface=wlan10_main_2.4GHz mac-address=BC:DD:C2:A8:06:52 vlan-id=10 vlan-mode=use-tag
add comment=CCTV disabled=yes interface=wlan10_main_2.4GHz mac-address=50:EC:50:3A:F7:C5 vlan-id=10 vlan-mode=use-tag
add comment=Printer disabled=yes interface=wlan10_main_2.4GHz mac-address=C0:B5:D7:5B:D7:4E vlan-id=10 vlan-mode=use-tag
add comment=VOIP_Phone disabled=yes interface=wlan10_main_2.4GHz mac-address=00:0B:82:EA:D2:C4 vlan-id=10 vlan-mode=use-tag
/ip route rule
add action=unreachable dst-address=10.20.0.0/24 src-address=10.10.0.0/24
add action=unreachable dst-address=10.10.0.0/24 src-address=10.20.0.0/24
/ip service
set telnet disabled=yes
set ftp disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Pacific/Auckland
/system identity
set name=Mikrotik_Audience
/system scheduler
add interval=8w4d name=monthly_reboot on-event="/system reboot" policy=reboot start-date=mar/29/2021 start-time=03:15:00
[admin@Mikrotik_Audience] >