I tried posting this in "Beginner basics", but after some thought, this might be a bit more advanced topic.
I'm trying to set up 3 CRS326-24Gs (with a RB2011 as a router).
At first, I wanted for each port on the switches to get its own DHCP server, but with a single-address IP pool -- for easy client configuration with a quasi-static addressing. I tried using individual bridge VLANs. Then I thought about connecting ports that should get untagged packets, but should be accessible for all other clients (like a dumb, not tagging-capable networked printer, for example).
Right now my configuration is as follows:
- Individual VLANs with each client bridge port as untagged, bridge as tagged
- DHCP server with one-address pool on each said VLAN
- A switch rule for each port to retag 67-68/UDP (DHCP) with said VLAN ID
- A separate "main" VLAN
- Port PVIDs are the same -- with the "main" VLAN ID
- Switch "Port isolation" rules to isolate ports -- since they still share the same "main" VLAN
This thing I've created seems quite clunky and inelegant, and I thought to ask for advice, if there are better practices to achieving this.