Community discussions

MikroTik App
 
User avatar
pimpreneil
just joined
Topic Author
Posts: 1
Joined: Wed Aug 19, 2020 12:50 am
Location: Lille, France

Local inter-Mikrotik bridging

Wed Aug 19, 2020 1:14 am

Hello everyone,

I have setup a local network based exclusively on Mikrotik devices for a coworking space I am in charge of. I have a main router, SFP+ switches with optical fiber, a couple of 24 ports POE switches located around the space and a bunch of cAP ACs.
My main router (CCR1009-7G-1C-1S+) has two bridges declared with their own DHCP servers: the first one is for management, the second one is for guests => my firewall rules allow management devices to see everything, and guests can only see other guests and access the internet.
For the moment, the management bridge contains all physical interfaces and guests may only connect using wifi: using CAPsMAN, I have declared my virtual wifi interfaces on the guest bridge and it works well.
The issue I am facing is that I would like to add specific interfaces from some of my switches on my guest bridge (some guests want ethernet). The simple solution would have been to plug them directly on my main router and put that interface on the right bridge, but the point is to be able to connect my guests on the switch that is the closest to them.
Enslaving a remote interface to bridge it on my main router the same way I do it currently with CAPsMAN would have been the best but it does not seem to be possible with physical interfaces.
My guess is that I have to start using VLANs, tagging the interface and route it properly, but I have to admit that I am not confortable with the concept of VLAN at all, so if somebody could take me by the hand, it would be fantastic

Thank you for your help!
 
quackyo
Member Candidate
Member Candidate
Posts: 176
Joined: Mon Nov 16, 2015 10:14 am

Re: Local inter-Mikrotik bridging

Wed Aug 19, 2020 8:59 am

To manage something like this in poduction you need to be comfortable with it, not just have someone help you set it up.
My best advice would be to get (at least) two cheap routerboards and make a LAB of it. The HAP Lite for example costs 20 dollars, so 40 dollars will get you enough equipment to start experimenting.
There are more than enough VLAN guides for Mikrotik.

When you have done this yourself from scratch in your lab it is an easy task to change your links between router and switches to trunks (which can carry VLANS) and then tag ports on the switch.

Who is online

Users browsing this forum: lktompkins and 25 guests