Community discussions

MikroTik App
 
iredden
newbie
Topic Author
Posts: 47
Joined: Thu Jan 27, 2005 8:42 am
Location: Campbellford, Ontario CANADA

CAPMANS and VLAN's (not routing traffic)

Thu Feb 23, 2023 7:17 am

Hello;

I am trying to setup a dedicated CAPSMAN server VM. When my clients connect, they cannot get on the appropriate VLAN set. I have followed the appropriate guides on these forums and unable to make it work.

The VM has the following interfaces:
1. VLAN99 (aka mgmt)
2. VLAN20
3. VLAN30
4. VLAN99

I have tested the virtual networks with other VM's and they do route traffic as expected.

Mikrotik VM is running 7.7.

/interface bridge
add name=bridge1 vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] disable-running-check=no name=mgmt
set [ find default-name=ether2 ] disable-running-check=no name=vlan20
set [ find default-name=ether3 ] disable-running-check=no name=vlan30
set [ find default-name=ether4 ] disable-running-check=no name=vlan99
/caps-man configuration
add datapath.bridge=bridge1 .vlan-id=20 .vlan-mode=use-tag name=VLAN20 \
security.authentication-types=wpa2-psk ssid=VLAN20
add datapath.bridge=bridge1 .vlan-id=30 .vlan-mode=use-tag name=VLAN30 \
security.authentication-types=wpa2-psk ssid=VLAN30
add datapath.bridge=bridge1 .vlan-id=99 .vlan-mode=use-tag name=VLAN99 \
security.authentication-types=wpa2-psk ssid=VLAN99
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/port
set 0 name=serial0
set 1 name=serial1
/caps-man manager
set enabled=yes
/caps-man manager interface
set [ find default=yes ] forbid=yes
add disabled=no interface=mgmt
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=VLAN20 name-format=\
prefix-identity slave-configurations=VLAN99,VLAN30
/interface bridge port
add bridge=bridge1 interface=vlan20 pvid=20
add bridge=bridge1 interface=vlan30 pvid=30
add bridge=bridge1 interface=vlan99 pvid=99
/interface bridge vlan
add bridge=bridge1 tagged=bridge1 untagged=vlan20 vlan-ids=20
add bridge=bridge1 tagged=bridge1 untagged=vlan30 vlan-ids=30
add bridge=bridge1 tagged=bridge1 untagged=vlan99 vlan-ids=99
/ip dhcp-client
add interface=mgmt
/system clock
set time-zone-name=America/Toronto

Any ideas?

Who is online

Users browsing this forum: Bing [Bot], JohnTRIVOLTA, pajapatak, patrikg and 83 guests