Community discussions

MikroTik App
  4. RouterOS
  5. Wireless Networking

hAP ax3 and cAP with CAPsMAN DHCP problem  [SOLVED]

Post Reply
 
seha05
just joined
Topic Author
Posts: 4
Joined: Thu Dec 14, 2023 5:56 pm

hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 6:24 pm

I have a router hAP ax3 and cAP ax XL. I can't seem to configure the cAP to work well over CAPsMAN. When I create a second bride_guest on hAP ax3 and want the slave wi-fi interfaces to use this second bridge and another DHCP, I can't seem to 'transfer' that to the cAP.
Settings for hAP:
Code: Select all
/interface bridge
add admin-mac=********* auto-mac=no comment=defconf name=bridge
add admin-mac=********* auto-mac=no comment=defconf name=bridge_IoT
add name=guest_bridge
/interface pppoe-client
add disabled=no interface=ether2 name=pppoe-out1 service-name=BhTelecom \
    use-peer-dns=yes user=******
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/ip firewall layer7-protocol
add name=Klix regexp="^.+(klix.ba).*\$"
/ip pool
add name=default-dhcp ranges=192.168.88.10-192.168.88.254
add name=netlab_pool ranges=10.10.17.100-10.10.17.150
add name=ermin_pool next-pool=netlab_pool ranges=10.10.17.50-10.10.17.99
add name=IoT_pool ranges=10.10.19.50-10.10.19.149
add name=dhcp_pool5 ranges=10.10.27.1-10.10.27.45
/ip dhcp-server
add add-arp=yes address-pool=netlab_pool interface=bridge lease-time=8h name=\
    netlab_DHCP
add add-arp=yes address-pool=IoT_pool interface=bridge_IoT lease-time=8h \
    name=IoT_dhcp
add add-arp=yes address-pool=dhcp_pool5 interface=guest_bridge name=dhcp1
/routing table
add disabled=no fib name=bhtelecom_route
add disabled=no fib name=ktv_route
/certificate settings
set crl-download=yes crl-use=yes
/interface bridge port
add bridge=bridge comment=defconf disabled=yes interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=hAP-ax3-5G
add bridge=bridge comment=defconf interface=hAP-ax3-2G
add bridge=guest_bridge interface=wifi2-guest
add bridge=bridge disabled=yes interface=cAP-ax-5G
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface detect-internet
set detect-interface-list=WAN
/interface list member
add comment=NETLAB interface=bridge list=LAN
add comment="KTV E-G-E" interface=ether1 list=WAN
add comment="Bh Telecom" interface=ether2 list=WAN
add interface=pppoe-out1 list=WAN
add interface=hAP-ax3-2G list=LAN
add interface=hAP-ax3-5G list=LAN
add interface=ether5 list=LAN
add interface=wifi2-guest list=LAN
add interface=guest_bridge list=LAN
/interface wifiwave2 cap
set discovery-interfaces=ether5
/interface wifiwave2 capsman
set enabled=yes package-path=/packages require-peer-certificate=no \
    upgrade-policy=suggest-same-version
/ip address
add address=10.10.17.46/24 comment=defconf interface=bridge network=\
    10.10.17.0
add address=10.10.19.46/24 interface=bridge_IoT network=10.10.19.0
add address=10.10.27.46/24 interface=guest_bridge network=10.10.27.0
/ip dhcp-client
add add-default-route=no comment=defconf interface=ether1
add disabled=yes interface=bridge
/ip dhcp-server network
add address=10.10.17.0/24 gateway=10.10.17.46
add address=10.10.19.0/24 gateway=10.10.19.46
add address=10.10.27.0/24 gateway=10.10.27.46
/ip dns
set allow-remote-requests=yes
/ip firewall filter
.... 

####Settings for cAP:
/interface bridge
add admin-mac=******** auto-mac=no comment=defconf name=bridgeLocal
/interface wifiwave2 datapath
add bridge=bridgeLocal comment=defconf disabled=no name=capdp
/interface wifiwave2
# managed by CAPsMAN
# mode: AP, SSID: netlab, channel: 5500/ax/Ceee
set [ find default-name=wifi1 ] configuration.manager=capsman .mode=ap \
    datapath=capdp disabled=no name=wifi1-5g
# managed by CAPsMAN
# mode: AP, SSID: netlab, channel: 2437/g
set [ find default-name=wifi2 ] configuration.manager=capsman .mode=ap \
    datapath=capdp disabled=no name=wifi2-2g
# managed by CAPsMAN
# mode: AP, SSID: netlab_gosti
add datapath=capdp disabled=no mac-address=********** \
    master-interface=wifi2-2g name=wifi21
add datapath=capdp mac-address=******* master-interface=wifi2-2g \
    name=wifi22
/ip pool
add name=IoT_pool ranges=10.10.19.150-10.10.19.220
/interface bridge port
add bridge=bridgeLocal comment=defconf interface=ether1
add bridge=bridgeLocal comment=defconf interface=ether2
/interface wifiwave2 cap
set caps-man-addresses=10.10.17.113 certificate=request discovery-interfaces=\
    bridgeLocal enabled=yes lock-to-caps-man=yes slaves-datapath=capdp \
    slaves-static=yes
/interface wifiwave2 capsman
set package-path="" require-peer-certificate=no upgrade-policy=none
/ip dhcp-client
add comment=defconf interface=bridgeLocal
Top
 
holvoetn
Forum Guru
Forum Guru
Posts: 5500
Joined: Tue Apr 13, 2021 2:14 am
Location: Belgium

Re: hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 9:26 pm

I have a router hAP ax3 and cAP ax XL.
Important detail to be clarified at first:

Are we talking about Cap AX
or Cap XL AC ?

Two totally different devices. First one is AX device using wifiwave2 drivers only, second one is legacy wifi but since 7.13beta one can load wifi-qcom-ac driver adding wifiwave2 capability.
From the pieces of config you show, it can be both.

2nd:
capsman doesn't use multiple bridges and definitely not on caps devices.
Datapaths are the way to differentiate.

Perhaps you're trying to use slave interfaces on multiple VLANs ?
But then you need to clarify what you are trying to do first. What are the requirements ?
Top
 
seha05
just joined
Topic Author
Posts: 4
Joined: Thu Dec 14, 2023 5:56 pm

Re: hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 10:07 pm

We are talking about MikroTik cAPGi-5HaxD2HaxD - cAP ax.
I have a business and home network to which most devices are connected. I want to set up a wireless master network on the cAP that will be identical to my network on the hAP. In addition, I want to create two slave networks on the cAP. One will be used by company guests, which will have separate IP addresses and isolated with firewall. The other slave Wi-Fi network will be used for connecting and managing air conditioning devices, and it should be isolated from the first two with firewall. However, I would like to configure all settings on the hAP device so that I don't have to do duplicate work, such as DHCP, bridge, firewall rules, IPs...
P.S. cAP is located on first floor, hAP is on third floor. Trying to have all house covered by same SSID for me and trusted users, and other wi-fi for father he likes to watch xxx movies... :D
Last edited by seha05 on Thu Dec 14, 2023 10:11 pm, edited 1 time in total.
Top
 
holvoetn
Forum Guru
Forum Guru
Posts: 5500
Joined: Tue Apr 13, 2021 2:14 am
Location: Belgium

Re: hAP ax3 and cAP with CAPsMAN DHCP problem  [SOLVED]

Thu Dec 14, 2023 10:11 pm

In that case use VLAN to separate different functions.
One single bridge.

See here for de facto tutorial on VLAN:
viewtopic.php?t=143620
(read it, digest it, read it again, ...)

And here for base setup of vlan in capsman:
https://help.mikrotik.com/docs/pages/vi ... ionexample:
Top
 
seha05
just joined
Topic Author
Posts: 4
Joined: Thu Dec 14, 2023 5:56 pm

Re: hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 10:15 pm

Will I be able to combine all of this with 2 WAN outputs that have PCC load balancing configured?
Top
 
holvoetn
Forum Guru
Forum Guru
Posts: 5500
Joined: Tue Apr 13, 2021 2:14 am
Location: Belgium

Re: hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 10:16 pm

Sure, why not ?
Top
 
seha05
just joined
Topic Author
Posts: 4
Joined: Thu Dec 14, 2023 5:56 pm

Re: hAP ax3 and cAP with CAPsMAN DHCP problem

Thu Dec 14, 2023 10:19 pm

Thank you, I will try with a different approach, following your advice on VLANs. You can close the post, and if I encounter any issues, I will open a new one.
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 5 guests
  4. RouterOS
  5. Wireless Networking