Any ideas?
Well yes.
I have an SXTSA5 setup as AP bridge and a Tplink CPE605 setup as client.
.
By using a non-Mikrotik client you lose the "bridge" function in "AP-brdge". This means the client cannot do "station bridge", but only "station" or "station pseudobridge". This means that there is only one IP and MAC for "station", and there you have to NAT/masquerade the final destination. With "station pseudobridge" you have one MAC only, what might confuse the DHCP server.
A better fit with the SXT SA5 would have been SXTsq 5 (both "ac" or not). "bridge" function would work, and possibly the 2 wifi chains would be active, doubling the interface rate. With the SXTsq 5 in "station-bridge" mode you have a transparant L2 bridged network.
.
any device connected (wired) to TPlink does not get DHCP.
.
With the station setup at the TPlink, the devices should get an IP address from the TPlink. Those addresses will be NATed by the TPlink to its own WAN IP address of the SXTSA5 network.
In repeater modus (Mikrotik terminology= "station pseudobridge") the DHCP from the SXTSA5 network might fail, if the DHCP server uses the MAC address instead of ff:ff:ff:ff:ff:ff.
.
Also if a device connects on Wifi to SSID of Miktorik it gets DHCP and works fine too
.
Yes they are just another station in the SXTSA5 network
.
So it seems something is blocking DHCP requests coming from TPLink. Firewall table is empty.
.
DHCP requests are not forwarded over router or NAT. If it is "pseudo-bridge" it is mostly the DHCP offer from the server that does not reach the client (MAC mismatch)
.
What I noticed is that from Winbox terminal I cannot ping any IP both on local network and internet.
.
You cannot find the devices behind a NATting router in the reverse direction.
Not getting to internet is not related to this, unless the path to internet is through the TPlink