Community discussions

MikroTik App
 
User avatar
DanielJB
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 82
Joined: Mon May 27, 2013 3:05 pm

WiFi and VLANs...VLAN filtering, MSTP or not?

Fri Sep 03, 2021 9:27 am

From time to time, in a simple network of router-switch-APs with VLANs, I am seeing layer 2 issues on RouterOS 6.47.10. DHCP replies are reaching a bridge, but not being transmitted on the port the DHCP request was received on; the bridge host entry correctly points to that port. VLAN filtering is enabled on the router and switch, but no on the APs since manager forwarding is enabled. I have observed this a few times on two separate networks in the last months. One symptom is persistent "dhcp ... offering lease ... without success" log messages (ie not just 1-2).

When deploying Controlled Access Points with local datapath forwarding with VLAN tagging, do we need to enable bridge VLAN filtering on the AP and add the VLANs to avoid layer 2 issues?

When using manager forwarding, as all traffic is encapsulated, do we agree VLAN filtering on the AP isn't needed?

Also, is it best practise to deploy MSTP in these scenarios or not? I'm using bridge protocol "none" everywhere in these networks.

Finally, anyone else out there with similar observations?

Thanks,
Dan
 
Zacharias
Forum Guru
Forum Guru
Posts: 3459
Joined: Tue Dec 12, 2017 12:58 am
Location: Greece

Re: WiFi and VLANs...VLAN filtering, MSTP or not?

Fri Sep 03, 2021 9:54 pm

Bridge VLAN filtering on the AP is NOT necessary either on Capsman or Local Forwarding...
Ofcorse you can configure it, but that does not make it a must... It all depends on what you need to achieve...

There is an example in the wiki https://wiki.mikrotik.com/wiki/Manual:C ... with_VLANs , as you can see there is no Bridge VLAN filtering on the APs ( Caps ) ...

Personally, i never had a problem with RSTP...
The problem with the RSTP and VLANs is that it will not segregate ports for each VLAN you have configured... So it won't work correctly..
Thats where MSTP comes, with MSTP a spanning Tree can be configured for each VLAN...

Who is online

Users browsing this forum: viesturs and 30 guests