MikroTik

Community discussions
https://forum.mikrotik.com/

Ruckus R500 not working Mikrotik Hotspot

https://forum.mikrotik.com/viewtopic.php?t=146398

Page 1 of 1

Ruckus R500 not working Mikrotik Hotspot

Posted: Tue Mar 12, 2019 3:35 pm
by blwongyy
Hi,
I have deploy Mikrotik router RB1100AHX2 with hotspot, and using to 10 units Ruckus AP R500 (standalone) & 10 units EnGenius AP. both wifi SSID tag VLAN10.
Problem is when users connect to Ruckus AP got connection issue, but users connect to EnGenius AP can online.
Before that was using other hotspot gateway working with this Ruckus AP & EnGenius AP.
Do I need to do some setting in Mikrotik to allow Ruckus AP (AP in management vlan can online)? Please help.

Regards,
Max

Re: Ruckus R500 not working Mikrotik Hotspot

Posted: Wed Mar 13, 2019 1:56 am
by yogender
I hope management and user VLAN are different and accessible. Secondly, the changes that you pushed to Ruckus through management VLAN got implemented (it can get stuck if the AP is not reachable).
I would check the VLAN tag on SSID again. There is no specific setting for Ruckus in Mikrotik (check your switch ports for VLAN tagging and work towards router for firewall/NAT/routing)

Re: Ruckus R500 not working Mikrotik Hotspot

Posted: Wed Mar 13, 2019 2:45 am
by blwongyy
Hi Yogender,
my vlan setting for management & user is different, refer below.
management vlan = VLAN 1 (IP range: 10.10.30.0/24 all device can online)
User WiFi = VLAN 10 (IP range : 10.71.0.0/24)

switch port set as trunk port. (untag vlan1, tagged vlan 10)

mikrotik firewall setting:-
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=yes
/ip firewall mangle
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=yes
add action=accept chain=pre-hotspot disabled=yes dst-address-type=!local hotspot=auth
add action=masquerade chain=srcnat out-interface=ether1
add action=masquerade chain=srcnat src-address=10.10.30.0/24
add action=masquerade chain=srcnat comment="masquerade hotspot network" src-address=10.71.0.0/24
add action=dst-nat chain=dstnat dst-port=80 in-interface=ether1 protocol=tcp to-addresses=10.10.30.2 to-ports=80
add action=dst-nat chain=dstnat dst-port=22 in-interface=ether1 protocol=tcp to-addresses=10.10.30.2 to-ports=22

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 192.168.8.1 1
1 ADC 10.10.30.0/24 10.10.30.1 LAN 0
2 ADC 10.71.0.0/24 10.71.0.1 Guest 0
3 ADC 192.168.8.0/24 192.168.8.2 ether1 0
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/