Page 1 of 1
mAP as a simpliest AP
Posted: Mon Jan 09, 2017 5:33 am
by X7Desu
Hi,
I have a hEX as a main router, also bought a mAP Lite to add a wireless functions.
So I want it to act as a simplest transparent "non-smart wireless switch" with no routing and other stuff, only for LAN connection.
But I do not understand, how to configure it properly.
Tried a WISP AP mode, Bridge configuration, static IP from a hEX subnet, no NAT/Firewall/DHCP, all ports are bridged. The mAP is acting strange: sometimes it is impossible to connect via WinBox, clients can't receive a IP from hEX (but they are sometimes visible in hEX DHCP clients list, with a status "pending" or something like that).
Also tried a clean configuration: everything is disabled, ports are bridged. No luck. mAP is visible from a main subnet, but clients can't receive a IP.
The only way I managed it to work, is a default router mode.
Can someone help me with a correct configuration? Thanks.
Re: mAP as a simpliest AP
Posted: Mon Jan 09, 2017 5:59 pm
by gustavomam
Hi.
It looks like a Layer 2 problem. Try to put admin-mac on the bridge in order to have stability.
Please export conf in map lite and Hex
Regards.
Re: mAP as a simpliest AP
Posted: Mon Jan 09, 2017 11:22 pm
by X7Desu
Tried to set the same admin-mac to the bridge, no luck.
The mAP also does not work properly even with a default "Home AP" preset, 1-3000ms ping to WAN (it is stable <1ms WAN ping on hEX), 1-500ms in LAN. Some packages are lost. Totally unusable.
Here it is the both devices backups. Thanks.
Re: mAP as a simpliest AP
Posted: Tue Jan 10, 2017 12:53 am
by janus20
Hi,
Please use /export file=XXX in order to have a clear view of your configs.
kind regards,
Re: mAP as a simpliest AP
Posted: Tue Jan 10, 2017 1:07 am
by X7Desu
Aha, sorry.
hEX
# jan/10/2017 00:05:04 by RouterOS 6.38
# software id = 9BU2-EEY3
#
/interface bridge
add name=bridge1
/interface ethernet
set [ find default-name=ether1 ] mac-address=B8:88:E3:94:C9:84
set [ find default-name=ether2 ] name=ether2-master
set [ find default-name=ether3 ] master-port=ether2-master
set [ find default-name=ether4 ] master-port=ether2-master
set [ find default-name=ether5 ] master-port=ether2-master
/ip neighbor discovery
set ether1 discover=no
/ip pool
add name=dhcp ranges=192.168.0.10-192.168.0.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=defconf
/tool user-manager customer
set admin access=\
own-routers,own-users,own-profiles,own-limits,config-payment-gw
/interface bridge port
add bridge=bridge1 interface=ether2-master
/ip address
add address=192.168.0.1/24 comment=defconf interface=ether2-master network=\
192.168.0.0
/ip dhcp-client
add comment=defconf dhcp-options=hostname,clientid disabled=no interface=\
ether1
/ip dhcp-server network
add address=192.168.0.0/24 comment=defconf gateway=192.168.0.1 netmask=24
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.0.1 name=router
/ip firewall filter
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add action=accept chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" \
connection-state=invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface=ether1
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=input in-interface=ether1
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" \
out-interface=ether1
/ip upnp
set enabled=yes
/system clock
set time-zone-name=Europe/Prague
/system identity
set name="X7 PC"
/system routerboard settings
# Warning: cpu overclocked
set cpu-frequency=840MHz
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master
/tool user-manager database
set db-path=flash/user-manager
mAP (router mode, high ping, packet loss )
# jan/10/2017 00:01:19 by RouterOS 6.38
# software id = I3N2-PEDZ
#
/interface bridge
add name=bridge1
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-g/n channel-width=20/40mhz-eC \
country="czech republic" disabled=no distance=indoors frequency=2442 \
mode=ap-bridge ssid="111" wireless-protocol=802.11 wps-mode=\
disabled
/ip neighbor discovery
set ether1 discover=no
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys \
wpa-pre-shared-key="111" wpa2-pre-shared-key=\
"111"
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=defconf
/interface bridge port
add bridge=bridge1 interface=wlan1
/ip address
add address=192.168.88.1/24 comment=defconf interface=wlan1 network=\
192.168.88.0
/ip dhcp-client
add comment=defconf dhcp-options=hostname,clientid disabled=no interface=\
ether1
/ip dhcp-server network
add address=192.168.88.0/24 comment=defconf gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.88.1 name=router
/ip firewall filter
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add action=accept chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" \
connection-state=invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface=ether1
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=input in-interface=ether1
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" \
out-interface=ether1
/ip upnp
set enabled=yes
/system clock
set time-zone-name=Europe/Prague
/system routerboard settings
# Warning: cpu overclocked
set cpu-frequency=750MHz
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=wlan1
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=wlan1
Re: mAP as a simpliest AP
Posted: Tue Jan 10, 2017 2:29 am
by Sob
Minimal config for transparent AP looks like this:
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys \
wpa-pre-shared-key="111" wpa2-pre-shared-key="111"
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-g/n channel-width=20/40mhz-eC \
country="czech republic" disabled=no distance=indoors frequency=2442 \
mode=ap-bridge ssid="111" wireless-protocol=802.11 wps-mode=disabled
/interface bridge
add name=bridge1
/interface bridge port
add bridge=bridge1 interface=wlan1
add bridge=bridge1 interface=ether1
/ip dhcp-client
add interface=bridge1
No routing, no firewall, no DHCP server, nothing.
Re: mAP as a simpliest AP
Posted: Tue Jan 10, 2017 3:07 am
by X7Desu
Just tried the config above, clients still can't receive a IP.
But DHCP server on hEX is trying to assign it, status "offered":
123.png
Re: mAP as a simpliest AP
Posted: Tue Jan 10, 2017 4:47 am
by X7Desu
Thanks community, the problem was in hEX side (incorrect bridge, I guess).
Now everything works fine.