Hello ,


I have a CRS125 24G and i want to use to extend my Catalyst 6500 l3 device in another Rack . I have connected Mikrotik to a trunk port. I want to configure for start a management port.

In the 6500 i have for example pre-configured VLAN1 which is a vlan i use for management of devices. So i want in port 24 of Mikrotik to assign an IP from this VLAN and also the vlan1 so i can manage it with ssh or winbox from some computers behind the catalyst 6500.

I have some HP Procurve switches with the same setup and it works without any problems but i can't understand well how to do it in MIkrotik. Any help please ?

Thanks

Any help please?

Thanks

Ip addresses is the one (switch) thing you can't do on the switch chip.

On my CRS125 I've set up a management address by:

/interface bridge
add name=br-vMGMT

/interface vlan
add interface=ether1-master-local name=vMGMT-ether1-master-local vlan-id=1

Note: My config uses everything slaved to ether1 (so the above would work for port 24 or any other port), and the lower level vlan switch tagging/access is done in "/interface ethernet switch"

/ip address
add address=X.X.X.X./X interface=br-vMGMT network=X.X.X.X

You can tag or access on a port by port basis in "/interface ethernet switch" level:

/interface ethernet switch vlan
add ports="ether24,switch1-cpu" vlan-id=1 # Do use switch1-cpu for vlans with ips

If you want this port 24 trunked/tagged:

/interface ethernet switch egress-vlan-tag
add tagged-ports=ether24 vlan-id=1

Or for access:

/interface ethernet switch ingress-vlan-translation
add new-customer-vid=1 ports=ether24

For vlan security:
/interface ethernet switch
set drop-if-invalid-or-src-port-not-member-of-vlan-on-ports= #all trunk ports
set forward-unknown-vlan=no

I am still new to Mikrotik, so others feel free to check for errors.

Hope this helps,

- P