Messages

I got access again, no harm done. Added the parent and running all vlans over sfp+. Still looking for my AP, its still in hiding..

I have tagged vlan 10-20-30-99 on mikrotik ether 2 and they all work fine, but have no mgmt access it at the moment. Setup vlans and "open" ssid on my Grandstream 7665 prior, and LAN had it accessible through dhcp before..

I do not quite understand but to get management access configure an IP address on some untagged port and connect your management PC to that at first. You can also configure the bridge itself on the Mikrotik as untagged for the VLAN that is your management network and configure a DHCP client for that.

All more Mikrotik than OPNsense questions it seems to me, honestly.

Sure it's unrelated, i can use my AP mgmt when its eventually getting a ip from dhcp on 99. But for now i'm stuck there.

I need to use a backup as opnsense is down now, because i want to use sfp+ :(

You need to configure a port on the Mikrotik as untagged VLAN 10 (? that what your AP should be in?) and connect the AP there. On the link between Mikrotik and OPNsense VLAN 10 should be tagged. Same for all VLANs.

Just changed  vlan99 from igc2 to ix0, and yeah opnsense crashed as usual..! Changed the the mikrotik on sfpplus1 to tagged as well..

Thx for the Bridge lesson..

I have tagged vlan 10-20-30-99 on mikrotik ether 2 and they all work fine, but have no mgmt access to it at the moment. Setup vlans and "open" ssid on my Grandstream 7665 prior, and LAN had it accessible through dhcp before..

You don't need a bridge on OPNsense. OPNsense is not a switch like the Mikrotik. Just set all VLAN interfaces with the SFP+ as parent. What would you need a bridge for? Then plug in Mikrotik trunk port.

I won't bridge anything in opnsense. Dunno why i did - did not work as i intended anyway.

You can of course place all your VLANs on a single SFP+ port. Just make sure not to assign the untagged port itself to anything like "LAN" or "OPT1" and use tagged VLANs only. Then do the same on the switch - all VLANs tagged for the trunk port. If the switch insists there must be a "native VLAN" or "PVID", use something unused like 999 or so.

I have to try again. Wifi Speed on my AP unmanaged switch was 100Mbps, testing my opnsense with LAN and vlan99 on icg2 and vlan10 on sfp+(ix0) got me 900+(GREAT).

Now i have fully configured my mikrotik and i'm back at 100Mbps - dunno what happened here. AP was accessable through LAN before, now that i changed to vlan99, i can only find it as neighbor, dhcp won't fetch it, tried a static mapping but did not work.. 

Since you have many ports, I would start from a fresh config, and set one of the 2.5g ports to be a "management" port that doesn't have any of your vlans. Connect a computer directly to that port and use it to set up the trunked vlans and wan on your other ports, this might allow you to skip setting up a bridge.

Or I'm not understanding what you want to do, which is possible.

I have a offbridge mgnt port on the mikrotik, that stays and works fine. Bridged mode works fine on the mikrotik, and preferable. I tried bridging on the opnsense and nothing worked here either. Just want to try to get on using 1 trunk 10gb sf+ from the qotom-->mikrotik. But i have bricked it everytime i tried doing a bridge or using sfp+.

I wanted to use 1 trunk 10gb sfp+ but my opnsense config bricked when moving all vlans 10-99 and lan, and used igc2 for the initial setup. So i used no lagg and no brigde and used 2 trunk interfaces to my mikrotik crs328. Igc2 with LAN and vlan 99, and 10gb sfp+ with vlan 10-20-30-40. I have no mgmt vlan access to my AP. So i think i need just 1 trunk, preferable sfp+ ix0...

Hello

I have a qotom 1u baremetal opnsense (5*2.5gbe rj45 4*sfp+). With igc 4 as WAN and igc 2 as LAN. I have tried multiple times to add all interfaces to One sfp+ after final config, it won't save and eventually resets my config. I have now got a "working" config with the use of 2 ports, LAN and vlan99 on icg2 and 4 other vlans on ix0 (sfp+). Why can't i get just one sfp+ with all interfaces to work - what am i doing wrong?