VLAN Compatibility with Mikrotik Switchs

Started by PWCDC, February 16, 2021, 02:54:07 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 16, 2021, 02:54:07 AM Last Edit: February 16, 2021, 03:34:39 AM by PWCDC
Hello,

Has anyone used their OPNSense router with Mikrotik CSS switches (swOS)?

I have a very basic lab set up with a OPNSense box and a CSS-610-8G. Everything works exactly as I would expect, except when I get to VLANS. At that point everything completely stops working.

The lab OPNSense has two VLANS set up (100 and 200), with DHCP set up for each (192.168.100.1/24 and 192.168.200.1/24) respectively. I've set these up, assigned them to an interface (port 3), and plugged that interface into the switch (port 1).

I've added the two VLANs to the VLANS screen, and then chosen port 2 for 100 and port 3 for 200.

I would assume that if I plug a device into each one of these ports, I should get an address from the DHCP server of the respective pool. But I don't even get assigned an IP.

I'm not sure if I am missing something on the opnsense side of the mikrotik side.

Anyone have any suggestions?


Edit:

So upon further testing, it seems to be just the DHCP that is not working with the VLAN. If I assign the computer a static address within the range of the VLAN, and then plug it into the port assigned for that VLAN, everything works fine. 
February 16, 2021, 05:04:09 AM #1
Okay. Disregard.

Apparently Mikrotik switches currently have a bug out of the box where DHCP request packets are getting blocked/dropped on VLANs.

This is a new CSS610 switch, on version 2.12. I ended up fixing it by deep diving into their forums, finding a random semi-recent thread that mentioned a unpublished release candidate. I eventually got the switch updated to an RC of 2.13 and everything started working as expected.

I can see why Mikrotik devices are so divisive in their reception. I'm certainly put off by them after this.
February 22, 2021, 11:55:32 AM #2
I have a Mikrotik 326-24G-2S+RM with swOS 2.12 and its works fine with Vlans.
but when a swap the NIC off the OPNsense to a mellanox connectx-3 Pro, OPNsense is trying to give those devices on the Vlan an IP address from the lan dhcp (this is blocked by the switch because selected ports are vlan only)
and the vlan dhcp server have static ip addresses for those devices...
(i haven't tested by set a static ip on the devices itself, they all use dhcp, i control static ip addresses on OPNsense itself.)
Print
Go Up Pages1
User actions