Community discussions

MikroTik App
 
User avatar
stefki
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 57
Joined: Mon Aug 29, 2016 2:13 pm

Bonding and VLAN managment

Fri Nov 26, 2021 1:34 pm

Hello all.
I have problem with winbox access and web interface while bonding is activated on both ends.
I have the following scenario shown on the picture, my network is OSPF routed and I have bonding on both ends .
When I disable bonding I get access on 10.6.1.2 and 10.22.1.2 also on 10.6.3 and 10.22.13 devices . Winbox and Web interface are ok without bonding.
I read the documents and notice somewhere that VLAN tagging needs to be added on bonding interfaces , separate VLAN for management. If someone has experience in this sphere please help :)
I am sorry for large pictures

Network topology
Bonding.jpg
AirFiber 5XHD info 10.22.1.2
ubnt1.png
AirFiber 5XHD info 10.22.1.3
ubnt2.png
R1 config
# nov/26/2021 11:58:33 by RouterOS 6.48.2

/interface bridge
add name=bridge1
add name=loopback
/interface ethernet
set [ find default-name=ether1 ] comment=
set [ find default-name=ether2 ] comment=
set [ find default-name=ether3 ] comment="NetMetal"
set [ find default-name=ether4 ] comment=
set [ find default-name=ether5 ] comment=
set [ find default-name=ether6 ] comment=
set [ find default-name=ether7 ] comment=
set [ find default-name=ether8 ] comment=
set [ find default-name=ether9 ] comment=
set [ find default-name=ether10 ] comment="AirFiber"
/interface bonding
add arp-ip-targets=10.1.255.59 comment=Airfiber_Netmetal link-monitoring=arp name=\
    bonding2 slaves=ether3,ether10 transmit-hash-policy=layer-2-and-3
/interface ethernet switch port
set 0 default-vlan-id=0
set 1 default-vlan-id=0
set 2 default-vlan-id=0
set 3 default-vlan-id=0
set 4 default-vlan-id=0
set 5 default-vlan-id=0
set 6 default-vlan-id=0
set 7 default-vlan-id=0
set 8 default-vlan-id=0
set 9 default-vlan-id=0
set 10 default-vlan-id=0
set 11 default-vlan-id=0
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/routing ospf area
set [ find default=yes ] disabled=yes
add area-id=2.2.2.2 default-cost=1 inject-summary-lsas=no name=area2 type=\
    stub
/routing ospf instance
set [ find default=yes ] router-id=10.1.255.51
/interface bridge port
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 interface=ether9
/ip address
add address=10.2.1.4/24 interface=bridge1 network=10.2.1.0
add address=10.1.255.51 interface=loopback network=10.1.255.51
add address=10.22.1.1/24 interface=bonding2 network=10.22.1.0
add address=10.6.1.1/24 interface=bonding2 network=10.6.1.0
/ip cloud
set update-time=no
/ip firewall mangle
add action=change-dscp chain=prerouting new-dscp=7 passthrough=no protocol=\
    ospf
add action=set-priority chain=output new-priority=7 passthrough=yes protocol=\
    ospf
add action=set-priority chain=postrouting comment=\
    "Translate DSCP Values into WMM priorities" new-priority=from-dscp \
    passthrough=yes
/ip route
add distance=1 gateway=10.2.1.1 pref-src=10.2.1.4
/mpls interface
set [ find default=yes ] disabled=yes interface=ether10 mpls-mtu=1550
add interface=bridge1 mpls-mtu=1550
add interface=bonding2 mpls-mtu=1550
/mpls ldp
set enabled=yes lsr-id=10.1.255.51 transport-address=10.1.255.51
/mpls ldp interface
add interface=bridge1
add interface=bonding2
/routing ospf interface
add interface=loopback network-type=point-to-point passive=yes
add interface=bridge1 network-type=broadcast
add interface=bonding2 network-type=point-to-point use-bfd=yes
/routing ospf network
add area=area2 network=10.1.255.51/32
add area=area2 network=10.22.1.0/24
add area=area2 network=10.6.1.0/24
add area=area2 network=10.2.1.0/24

R2 config
# nov/26/2021 12:10:32 by RouterOS 6.48.2
# model = RB4011iGS+
/interface bridge
add name=Loopback0
add name=bridge
/interface ethernet
set [ find default-name=ether1 ] comment=
set [ find default-name=ether2 ] comment=
set [ find default-name=ether3 ] comment=
set [ find default-name=ether4 ] comment=
set [ find default-name=ether5 ] comment=
set [ find default-name=ether6 ] comment=
set [ find default-name=ether9 ] comment="NetMetal"
set [ find default-name=ether10 ] comment="AirFiber" poe-out=forced-on
/interface bonding
add arp-ip-targets=10.1.255.51 link-monitoring=arp name=\
    bonding1 slaves=ether9,ether10 transmit-hash-policy=layer-2-and-3
/interface ethernet switch port
set 0 default-vlan-id=0
set 1 default-vlan-id=0
set 2 default-vlan-id=0
set 3 default-vlan-id=0
set 4 default-vlan-id=0
set 5 default-vlan-id=0
set 6 default-vlan-id=0
set 7 default-vlan-id=0
set 8 default-vlan-id=0
set 9 default-vlan-id=0
set 10 default-vlan-id=0
set 11 default-vlan-id=0
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/routing ospf area
set [ find default=yes ] disabled=yes
add area-id=2.2.2.2 default-cost=1 inject-summary-lsas=no name=area2 type=\
    stub
/routing ospf instance
set [ find default=yes ] router-id=10.1.255.59
/interface bridge port
add bridge=bridge interface=ether1
add bridge=bridge interface=ether2
add bridge=bridge interface=ether6
add bridge=bridge interface=ether7
add bridge=bridge interface=ether8
/ip address
add address=10.2.2.2/27 interface=bridge network=10.2.2.0
add address=10.22.1.4/24 interface=bonding1 network=10.22.1.0
add address=10.6.1.4/24 interface=bonding1 network=10.6.1.0
add address=10.1.255.59 interface=Loopback0 network=10.1.255.59
/ip cloud
set update-time=no
/ip firewall mangle
add action=change-dscp chain=prerouting new-dscp=7 passthrough=no protocol=\
    ospf
add action=set-priority chain=output new-priority=7 passthrough=yes protocol=\
    ospf
add action=set-priority chain=postrouting comment=\
    "Translate DSCP Values into WMM priorities" new-priority=from-dscp \
    passthrough=yes
/ip route
add distance=1 gateway=10.2.2.1
/mpls interface
set [ find default=yes ] disabled=yes interface=ether4 mpls-mtu=1550
add interface=bridge mpls-mtu=1550
add interface=bonding1 mpls-mtu=1550
/mpls ldp
set enabled=yes lsr-id=10.1.255.59 transport-address=10.1.255.59
/mpls ldp interface
add interface=bridge
add interface=bonding1
/routing ospf interface
add interface=Loopback0 network-type=point-to-point passive=yes
add interface=bonding1 network-type=point-to-point use-bfd=yes
/routing ospf network
add area=area2 network=10.22.1.0/24
add area=area2 network=10.1.255.59/32
add area=area2 network=10.2.2.0/27
add area=area2 network=10.6.1.0/24
Netmetal config 10.6.1.2

/interface bridge
add name=bridge1
/interface wireless
set [ find default-name=wlan1 ] ampdu-priorities=0,1 antenna-gain=30 band=5ghz-onlyac basic-rates-a/g=24Mbps channel-width=20/40/80mhz-XXXX country=\
    "" default-forwarding=no disabled=no frequency=5200 frequency-mode=superchannel ht-basic-mcs=mcs-8,mcs-9,mcs-10,mcs-11 ht-supported-mcs=\
    mcs-8,mcs-9,mcs-10,mcs-11 installation=outdoor max-station-count=1 mode=ap-bridge multicast-helper=full nv2-cell-radius=28 nv2-downlink-ratio=70 \
    rx-chains=0,1 scan-list=5200 ssid=Metal station-roaming=enabled supported-rates-a/g=24Mbps tdma-period-size=auto tx-chains=0,1 wireless-protocol=nv2 \
    wmm-support=enabled
/interface ethernet
set [ find default-name=ether1 ] speed=100Mbps
/interface wireless nstreme
set wlan1 enable-nstreme=yes
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
set [ find default=yes ] addresses=0.0.0.0/0
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=wlan1
/ip address
add address=10.6.1.2/24 interface=bridge1 network=10.6.1.0
/ip firewall mangle
add action=change-dscp chain=prerouting new-dscp=7 passthrough=no protocol=ospf
add action=set-priority chain=output new-priority=7 passthrough=yes protocol=ospf
add action=set-priority chain=postrouting comment="Translate DSCP Values into WMM priorities" new-priority=from-dscp passthrough=yes
/ip route
add distance=1 gateway=10.6.1.1 pref-src=10.6.1.2 scope=10
Netmetal config 10.6.1.3

# model = 921UAGS-5SHPacD
/interface bridge
add name=bridge1
/interface wireless
set [ find default-name=wlan1 ] ampdu-priorities=0,1 antenna-gain=30 band=5ghz-onlyac basic-rates-a/g=24Mbps channel-width=20/40/80mhz-XXXX country=\
    "" disabled=no distance=27 frequency=5200 frequency-mode=superchannel ht-basic-mcs=mcs-8,mcs-9,mcs-10,mcs-11 ht-supported-mcs=\
    mcs-8,mcs-9,mcs-10,mcs-11 installation=outdoor mode=station-bridge multicast-helper=full rx-chains=0,1 scan-list=5200 ssid=BorMetal station-roaming=\
    enabled supported-rates-a/g=24Mbps tx-chains=0,1 wireless-protocol=nv2
/interface ethernet
set [ find default-name=ether1 ] speed=100Mbps
/interface wireless nstreme
set wlan1 enable-nstreme=yes
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=wlan1
/ip address
add address=10.6.1.3/24 interface=bridge1 network=10.6.1.0
/ip firewall mangle
add action=change-dscp chain=prerouting new-dscp=7 passthrough=no protocol=ospf
add action=set-priority chain=output new-priority=7 passthrough=yes protocol=ospf
add action=set-priority chain=postrouting comment="Translate DSCP Values into WMM priorities" new-priority=from-dscp passthrough=yes
/ip route
add distance=1 gateway=10.6.1.1 pref-src=10.6.1.3 scope=10

You do not have the required permissions to view the files attached to this post.
 
tdw
Forum Guru
Forum Guru
Posts: 1843
Joined: Sat May 05, 2018 11:55 am

Re: Bonding and VLAN managment

Fri Nov 26, 2021 2:12 pm

See https://wiki.mikrotik.com/wiki/Manual:L ... less_links

As AF5XHDs have separate management ports the more correct way would be to add additional cables between the 4011s and radios, then use those interfaces for management.
 
User avatar
stefki
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 57
Joined: Mon Aug 29, 2016 2:13 pm

Re: Bonding and VLAN managment

Fri Nov 26, 2021 2:56 pm

@tdw: Yes I will read now .
I know AirFiber has separate management port, But I don't want to add additional 50 meters cable to the router 4011 .

Who is online

Users browsing this forum: No registered users and 14 guests