Code: Select all
# oct/18/2020 14:44:20 by RouterOS 6.47.4
# software id = SZJU-XV26
#
# model = RouterBOARD D52G-5HacD2HnD-TC
# serial number = xxxxxxxxxxx
/caps-man channel
add band=2ghz-g/n control-channel-width=20mhz frequency=2412 name=channel1
add band=2ghz-g/n control-channel-width=20mhz frequency=2437 name=channel6
add band=2ghz-g/n control-channel-width=20mhz frequency=2462 name=channel11
/interface bridge
add admin-mac=CC:2D:E0:C9:BE:90 auto-mac=no comment=defconf name=bridge
add name=bridge_guest
/caps-man datapath
add arp=enabled bridge=bridge client-to-client-forwarding=yes \
local-forwarding=yes name=datapath_main
add arp=enabled bridge=bridge_guest client-to-client-forwarding=yes \
local-forwarding=yes name=datapath_guest
/caps-man security
add authentication-types=wpa-psk disable-pmkid=yes encryption=aes-ccm name=\
security_guest passphrase=password1
add authentication-types=wpa-psk disable-pmkid=yes encryption=aes-ccm name=\
security_main passphrase=password1
/caps-man configuration
add channel=channel1 country="united states" datapath=datapath_guest mode=ap \
name=cfg_guest security=security_guest ssid=AP_Guest
add channel=channel1 country="united states" datapath=datapath_main mode=ap \
name=cfg_main security=security_main ssid=AP_Main
/caps-man interface
add configuration=cfg_main disabled=no l2mtu=1600 mac-address=\
B8:69:F4:8A:C6:FB master-interface=none name=cap19 radio-mac=\
B8:69:F4:8A:C6:FB radio-name=B869F48AC6FB
add configuration=cfg_guest disabled=no l2mtu=1600 mac-address=\
BA:69:F4:8A:C6:FB master-interface=cap19 name=cap20 radio-mac=\
00:00:00:00:00:00 radio-name=BA69F48AC6FB
add channel=channel1 configuration=cfg_main datapath=datapath_main disabled=\
no mac-address=00:00:00:00:00:00 master-interface=none name=cap_main \
radio-mac=00:00:00:00:00:00 radio-name="" security=security_main
add channel=channel1 configuration=cfg_guest datapath=datapath_guest \
disabled=no mac-address=02:00:00:00:00:00 master-interface=cap_main name=\
cap_guest radio-mac=00:00:00:00:00:00 radio-name="" security=\
security_guest
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=\
dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=\
"Cman=v=11a841" wpa2-pre-shared-key="Cman=v=11a841"
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=pool_guest ranges=192.168.40.10-192.168.40.254
add name=pool_iot ranges=192.168.45.10-192.168.45.254
add name=pool_trusted ranges=192.168.15.10-192.168.15.254
/ip dhcp-server
add add-arp=yes address-pool=pool_trusted disabled=no interface=bridge name=\
dhcp_main
add add-arp=yes address-pool=pool_guest disabled=no interface=bridge_guest \
name=dhcp_guest
/caps-man manager
set ca-certificate=auto certificate=auto enabled=yes
/caps-man provisioning
add action=create-enabled master-configuration=cfg_main radio-mac=\
B8:69:F4:8A:C6:FB slave-configurations=cfg_guest
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf disabled=yes interface=wlan1
add bridge=bridge comment=defconf disabled=yes interface=wlan2
add bridge=bridge_guest interface=cap_guest
add bridge=bridge interface=cap_main
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add comment=defconf interface=bridge list=LAN
add comment=defconf interface=ether1 list=WAN
/ip address
add address=192.168.5.57/16 interface=ether1 network=192.168.0.0
add address=192.168.40.1/24 interface=bridge_guest network=192.168.40.0
add address=192.168.15.1/24 interface=bridge network=192.168.15.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server network
add address=192.168.15.0/24 gateway=192.168.15.1
add address=192.168.40.0/24 gateway=192.168.40.1
/ip dns
set allow-remote-requests=yes servers=192.168.5.1