Community discussions

MikroTik App
  4. RouterOS
  5. General

CRS354-48P-4S+2Q+ inter-vlan L3-HW-Offloading

Post Reply
 
crowderjd
just joined
Topic Author
Posts: 1
Joined: Thu Oct 06, 2022 6:23 pm

CRS354-48P-4S+2Q+ inter-vlan L3-HW-Offloading

Thu Oct 06, 2022 6:29 pm

Hi all.

I recently received this CRS-354 with the intention of replacing my Arista 7010T. I'm trying to set up L3-HW-Offloading for inter-vlan routing, but it doesn't seem to be working. I've followed the steps outlined here: https://help.mikrotik.com/docs/display/ ... LANRouting

Here is my configuration and an output of ip route print
Code: Select all
# oct/06/2022 09:27:03 by RouterOS 7.5
# software id = QSUC-VAXA
#
# model = CRS354-48P-4S+2Q+
# serial number = 
/interface bridge
add admin-mac=18:FD:74:85:87:14 auto-mac=no fast-forward=no name=bridge vlan-filtering=yes
/interface vlan
add interface=bridge name=vlan15 vlan-id=15
add interface=bridge name=vlan255 vlan-id=255
/interface bonding
add mode=balance-xor name=bond1 slaves=sfp-sfpplus1,sfp-sfpplus2 transmit-hash-policy=layer-3-and-4
add mode=802.3ad name=bond2 slaves=ether33,ether34,ether35,ether36
add mode=802.3ad name=bond11 slaves=ether44,ether45
/interface ethernet switch
set 0 l3-hw-offloading=yes
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_pool0 ranges=192.168.32.100-192.168.32.245
add name=dhcp_pool1 ranges=192.168.35.100-192.168.35.254
/port
set 0 name=serial0
/routing ospf instance
add disabled=no name=default-v2 redistribute=bgp
/routing ospf area
add disabled=no instance=default-v2 name=backbone-v2
/routing bgp template
set default as=65000 disabled=no router-id=192.168.62.1 routing-table=main
/interface bridge port
add bridge=bridge ingress-filtering=no interface=ether1
add bridge=bridge ingress-filtering=no interface=ether2
add bridge=bridge ingress-filtering=no interface=ether3
add bridge=bridge ingress-filtering=no interface=ether4
add bridge=bridge ingress-filtering=no interface=ether5
add bridge=bridge ingress-filtering=no interface=ether6
add bridge=bridge ingress-filtering=no interface=ether7
add bridge=bridge ingress-filtering=no interface=ether8
add bridge=bridge interface=ether9 pvid=10
add bridge=bridge interface=ether10 pvid=10
add bridge=bridge interface=ether11 pvid=10
add bridge=bridge interface=ether12 pvid=10
add bridge=bridge interface=ether13 pvid=10
add bridge=bridge interface=ether14 pvid=10
add bridge=bridge interface=ether15 pvid=10
add bridge=bridge interface=ether16 pvid=10
add bridge=bridge interface=ether17 pvid=10
add bridge=bridge interface=ether18 pvid=10
add bridge=bridge interface=ether19 pvid=10
add bridge=bridge interface=ether20 pvid=10
add bridge=bridge interface=ether21 pvid=10
add bridge=bridge interface=ether22 pvid=10
add bridge=bridge interface=ether23 pvid=10
add bridge=bridge interface=ether24 pvid=10
add bridge=bridge interface=ether25 pvid=10
add bridge=bridge interface=ether26 pvid=10
add bridge=bridge interface=ether27 pvid=10
add bridge=bridge interface=ether28 pvid=10
add bridge=bridge interface=ether29 pvid=10
add bridge=bridge interface=ether30 pvid=10
add bridge=bridge interface=ether31 pvid=10
add bridge=bridge interface=ether32 pvid=10
add bridge=bridge ingress-filtering=no interface=ether37
add bridge=bridge ingress-filtering=no interface=ether38
add bridge=bridge ingress-filtering=no interface=ether39
add bridge=bridge ingress-filtering=no interface=ether40
add bridge=bridge ingress-filtering=no interface=ether41
add bridge=bridge ingress-filtering=no interface=ether42
add bridge=bridge ingress-filtering=no interface=ether43
add bridge=bridge interface=ether46 pvid=10
add bridge=bridge ingress-filtering=no interface=ether47
add bridge=bridge ingress-filtering=no interface=ether48
add bridge=bridge ingress-filtering=no interface=qsfpplus1-1
add bridge=bridge ingress-filtering=no interface=qsfpplus1-2
add bridge=bridge ingress-filtering=no interface=qsfpplus1-3
add bridge=bridge ingress-filtering=no interface=qsfpplus1-4
add bridge=bridge ingress-filtering=no interface=qsfpplus2-1
add bridge=bridge ingress-filtering=no interface=qsfpplus2-2
add bridge=bridge ingress-filtering=no interface=qsfpplus2-3
add bridge=bridge ingress-filtering=no interface=qsfpplus2-4
add bridge=bridge ingress-filtering=no interface=sfp-sfpplus3
add bridge=bridge ingress-filtering=no interface=sfp-sfpplus4
add bridge=bridge interface=bond2
add bridge=bridge interface=bond11 pvid=10
/ip settings
set max-neighbor-entries=8192
/ipv6 settings
set disable-ipv6=yes max-neighbor-entries=8192
/interface bridge vlan
add bridge=bridge tagged=ether7,ether8,ether33,ether39,ether40,ether47,ether48,bond2,bridge untagged=\
    ether9,ether10,ether11,ether12,ether13,ether14,ether15,ether16,ether17,ether18,ether19,ether20,ether21,ether22,ether23,ether24,ether25,ether26,ether27,ether28,ether29,ether30,ether31,ether32,ether46,bond11 \
    vlan-ids=10
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2,bridge vlan-ids=15
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2,ether1 vlan-ids=20
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2,ether2 vlan-ids=25
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=50
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=100
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=200
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2,bridge vlan-ids=255
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=500
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=501
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=502
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=503
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=504
add bridge=bridge tagged=ether7,ether8,ether39,ether40,ether47,ether48,bond2 vlan-ids=1000
/interface ovpn-server server
set auth=sha1,md5
/ip address
add address=192.168.33.2/30 interface=bond1 network=192.168.33.0
add address=192.168.34.1/23 interface=vlan15 network=192.168.34.0
add address=192.168.62.1/24 interface=vlan255 network=192.168.62.0
/ip dhcp-client
add interface=ether49
/ip dhcp-server
add address-pool=dhcp_pool0 interface=*40 lease-time=1d39s name=dhcp_vlan10
add address-pool=dhcp_pool1 interface=*41 lease-time=1d39s name=dhcp_vlan15
/ip dhcp-server network
add address=192.168.32.0/24 dns-server=192.168.34.5 domain=sundown.local gateway=192.168.32.1 netmask=24
add address=192.168.34.0/23 dns-server=192.168.34.5 domain=sundown.local gateway=192.168.34.1 netmask=23
/ip firewall address-list
add address=10.255.255.255 list=tac_cast
/routing bgp connection
add disabled=no local.role=ebgp name=tac_cast output.default-originate=always remote.address=192.168.34.22/32 .as=65001 templates=default
/routing ospf interface-template
add area=backbone-v2 disabled=no interfaces=bond1 type=ptp
/system clock
set time-zone-name=America/Denver
/system identity
set name=csw-sundown01
/system routerboard settings
set boot-os=router-os
/tool bandwidth-server
set authenticate=no
And then the ip route print:
Code: Select all
Flags: D - DYNAMIC; I, A - ACTIVE; c, d, y - COPY; H - HW-OFFLOADED
Columns: DST-ADDRESS, GATEWAY, DISTANCE
     DST-ADDRESS      GATEWAY       DISTANCE
DAd  0.0.0.0/0        192.168.32.1         1
DAc  192.168.32.0/24  ether49              0
DIcH 192.168.33.0/30  bond1                0
DAc  192.168.34.0/23  vlan15               0
DAc  192.168.62.0/24  vlan255              0
As you can see, the two VLAN routes do not show the H flag for HW-OFFLOADED. I am running RouterOS 7.5. Perhaps there is something in my config that is breaking the hardware offloading? Not super sure.

Thanks!
Top
 
User avatar
sirbryan
Member
Member
Posts: 316
Joined: Fri May 29, 2020 6:40 pm
Location: Utah
Contact:
Contact sirbryan

Re: CRS354-48P-4S+2Q+ inter-vlan L3-HW-Offloading

Fri Oct 07, 2022 6:32 am

Some L3HW offload is broken in 7.5 (NAT in particular). I moved my routers back to 7.4.1 and have had much better results.

That said, all ports in the switch also have to have L3HW offload enabled, as well as the switch itself. I don't see that you have it turned on for any of the ports. (But I'm also reading this from my phone and may have missed it as it scrolled by.)
Top
Post Reply

Who is online

Users browsing this forum: markinhusxp, sjdurand and 221 guests
  4. RouterOS
  5. General