Elem, konačno sam namestio VLAN na CISCO opremi ali ne uspevam da poteram kako treba MTikove.
Ne kapiram baš gde grešim ovde. Napravio sam na CAPsMAN-u dva bridge-a. Jedan bridgevlan10 i drugi bridgevlan20. Napravio dva vlan iterfejsa - vlan10 i vlan20 i oba povezao sa odgovarajučim portovima. C2950 je povezan na eth1 CAPsMAN-a a na eth5 je direktno vezan CAP ruter. Na CAPsMAN ruteru sam napravio dva cap interfejsa i podesio security podešavanja i datapath opcije za odgovarajuće bridge interfejse i vlanove. I na CAP ruteru sam podigao ista ta dva bridge interfejsa i vlan interfejsa. E sad, imam nekoliko problema.
Prvi: kad ostavim ova dva bridge-a ovako onda nikako ne mogu da pristupim ruterima sem preko MAC adrese i to ne radi nikako. Mogu da im pristupim samo ako vežem još neki od eth interfejsa i to po jedan za svaki vlan bridge.
Drugi: Jedan cap interfejs je aktivan i radi samo na drugom ruteru koji je CAP ali na CAPsMAN-neće ni da čuje da emituje wireless signal iako je uredno uključen CAP mod na wifi interfejsu CAPsMAN-a. Drugi cap interfes je inactive sta god da mu radim... Evo i konfiguracije ako neko ima ideju gde grešim...
Code:
# jan/02/1970 03:36:05 by RouterOS 6.27
# software id = KK43-7C5P
#
/caps-man channel
add band=2ghz-b/g/n frequency=2452 name=channel9 width=20
/caps-man configuration
add mode=ap name=konfa ssid=lan
add mode=ap name=gostcfg ssid=gosti
/interface bridge
add name=vlan10
add name=vlan20
/interface wireless
# managed by CAPsMAN
set [ find default-name=wlan1 ] l2mtu=1600
/interface vlan
add interface=ether1 l2mtu=1594 name=vlan1 vlan-id=10
add interface=ether1 l2mtu=1594 name=vlan2 vlan-id=20
/caps-man datapath
add bridge=vlan10 name=vlan10 vlan-id=10
add bridge=vlan20 name=vlan20 vlan-id=20
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm \
name=lansec passphrase=nekilan123!
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm \
name=gestsec passphrase=nekasifra123!
/caps-man interface
#
add arp=enabled channel=channel9 configuration=konfa datapath=vlan10 \
disabled=no l2mtu=1600 mac-address=4C:5E:0C:57:E9:41 master-interface=\
none mtu=1500 name=cap1 radio-mac=4C:5E:0C:57:E9:41 security=lansec
add arp=enabled channel=channel9 configuration=gostcfg datapath=vlan20 \
disabled=no l2mtu=1600 mac-address=4C:5E:0C:58:C7:FB master-interface=\
none mtu=1500 name=cap2 radio-mac=4C:5E:0C:58:C7:FB security=gestsec
/caps-man manager
set ca-certificate=auto certificate=auto enabled=yes
/interface bridge port
add bridge=vlan20 interface=ether2
add bridge=vlan10 interface=vlan1
add bridge=vlan20 interface=vlan2
add bridge=vlan10 interface=ether1
add bridge=vlan10 interface=ether5
add bridge=vlan20 interface=cap2
/interface wireless cap
set certificate=request discovery-interfaces=ether1 enabled=yes \
interfaces=wlan1
/ip address
add address=172.28.45.254/23 interface=vlan1 network=172.28.45.0
add address=172.28.40.254/24 interface=vlan2 network=172.28.40.0
/system leds
set 0 interface=wlan1
A evo i CAP konfiguracije:
Code:
# jan/03/1970 01:58:25 by RouterOS 6.27
# software id = V6KV-0IT5
#
/interface bridge
add name=vlan10 protocol-mode=none
add name=vlan20 protocol-mode=none
/interface wireless
# managed by CAPsMAN
# channel: 2452/20-eC/gn(30dBm), SSID: lan, CAPsMAN forwarding
set [ find default-name=wlan1 ] l2mtu=1600
/interface vlan
add interface=ether1 l2mtu=1594 name=vlan1 vlan-id=10
add interface=ether1 l2mtu=1594 name=vlan2 vlan-id=20
/interface bridge port
add bridge=vlan10 interface=vlan1
add bridge=vlan20 interface=vlan2
/interface wireless cap
set certificate=request discovery-interfaces=ether1 enabled=yes interfaces=\
wlan1
/ip address
add address=172.28.45.253/23 interface=vlan1 network=172.28.45.0
/system leds
set 0 interface=wlan1