Community discussions

MikroTik App
 
pinomat
just joined
Topic Author
Posts: 6
Joined: Wed Apr 27, 2022 11:09 pm

ACL/Switch Rules CCR2116-12G-4S+

Mon May 15, 2023 10:32 am

Hello,

I need as many other users to change the priority (pcp - 802.1p) of IPv4 DHCP packets (dicover/request) generated by the router DHCP Client. As DHCP requests are using raw socket, firewall are completely ignored. I don't want to use bridges and even if I want to, bridge filter rules only work when we break Mikrotik recommandations (to make DHCP filter rule work, VLAN needs to be slave of bridge port instead of ethernet port).
I know that CCR2116-12G-4S+ only allow ingress rules. But why can't we have ACL egress rules ? Is it a switch chip (98DX3255) limitations ?
Do you have a better way to do that without adding a switch to do this job ?

Thank you
 
User avatar
chechito
Forum Guru
Forum Guru
Posts: 2990
Joined: Sun Aug 24, 2014 3:14 am
Location: Bogota Colombia
Contact:

Re: ACL/Switch Rules CCR2116-12G-4S+

Mon May 15, 2023 6:42 pm

look this post can be related

viewtopic.php?t=196068
 
pinomat
just joined
Topic Author
Posts: 6
Joined: Wed Apr 27, 2022 11:09 pm

Re: ACL/Switch Rules CCR2116-12G-4S+

Fri May 19, 2023 10:34 am

look this post can be related

viewtopic.php?t=196068
This seems great ! I will accept once 7.10 works for the job ;) I will try it.

Thank you for your answer !
 
cyayon
Frequent Visitor
Frequent Visitor
Posts: 68
Joined: Wed Aug 24, 2022 9:39 am

Re: ACL/Switch Rules CCR2116-12G-4S+

Tue Jul 18, 2023 5:17 pm

Hi,
I am in the same boat. Did you manage to apply ACL rules to change COS of you DHCP client requests ?

thanks.
 
pinomat
just joined
Topic Author
Posts: 6
Joined: Wed Apr 27, 2022 11:09 pm

Re: ACL/Switch Rules CCR2116-12G-4S+

Sat Nov 18, 2023 1:36 am

Hi,
I am in the same boat. Did you manage to apply ACL rules to change COS of you DHCP client requests ?

thanks.
Hello, still no luck as far as today... Even standard vlan/bridge/rule does not answer to my need (I cannot use the filter to limit to mac protocol or udp 67 - I was only able to do that with MAC address to FF:FF:FF:FF:FF:FF)... A 2G Internet connection consumes 5% CPU when using another switch to change pcp of my DHCP packet. While using bridge + bridge filter consumes 15%...

I will continue to wait for a new feature... Honestly, this situation doesn't make any sense to me :(

Who is online

Users browsing this forum: No registered users and 25 guests