Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




179 posts

Master Geek
+1 received by user: 3


Topic # 145487 19-May-2014 17:04
Send private message

I've read on Geekzone that the Microtik 750 is a good option to add vlan tagging to the WAN port of the AirPort Extreme (which does not support the required VLAN tagging).

Has anyone attempted to replace the Telecoms supplied Technicolor with the Microtik and bridge it with the Apple AirPort Extreme?

If so, do you have the specific steps required to configure the Microtik using WebFig? I'm ok with the AirPort side of things and configuring the PPPoE details, but WebFig is a bit more daunting.

Any help much appreciated.



View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
407 posts

Ultimate Geek
+1 received by user: 212

Subscriber

  Reply # 1048281 19-May-2014 17:59
Send private message

I can't help with that, but I'm just curious - you didn't buy that Airport for your new connection, did you? Because there are much better, more integrated solutions out there.





27279 posts

Uber Geek
+1 received by user: 6709

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1048295 19-May-2014 18:15
Send private message

No idea using webfig because I've never even looked at it despite using Mikrotik gear daily.

Basically you need to assign VLAN10 to the interface you're using for the WAN and then create a bridge with VLAN10 and another Ethernet port that you wish to connect the router to as members.



 
 
 
 




179 posts

Master Geek
+1 received by user: 3


  Reply # 1048323 19-May-2014 18:54
Send private message

sbiddle: No idea using webfig because I've never even looked at it despite using Mikrotik gear daily.

Basically you need to assign VLAN10 to the interface you're using for the WAN and then create a bridge with VLAN10 and another Ethernet port that you wish to connect the router to as members.




Ok, I'll have a go. Is there a better way to configure it that WebFig? I'm just using that because it's already on the Routerboard 750.



179 posts

Master Geek
+1 received by user: 3


  Reply # 1048325 19-May-2014 18:55
Send private message

ripdog: I can't help with that, but I'm just curious - you didn't buy that Airport for your new connection, did you? Because there are much better, more integrated solutions out there.


Already had the AirPorts. But to be honest, they're excellent routers/access points (and I've used and configured many): very reliable (never need rebooting except for firmware updates), work as expected, and extend seamlessly and easily.

27279 posts

Uber Geek
+1 received by user: 6709

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1048344 19-May-2014 19:19
Send private message

JonoNZ:
sbiddle: No idea using webfig because I've never even looked at it despite using Mikrotik gear daily.

Basically you need to assign VLAN10 to the interface you're using for the WAN and then create a bridge with VLAN10 and another Ethernet port that you wish to connect the router to as members.




Ok, I'll have a go. Is there a better way to configure it that WebFig? I'm just using that because it's already on the Routerboard 750.


I only ever use Winbox and a combination of the GUI and/or command line depending on what I'm doing.





3684 posts

Uber Geek
+1 received by user: 1392

Subscriber

  Reply # 1048351 19-May-2014 19:32
Send private message

Download Winbox and connect with that.

But instead of just using it to tag a VLAN why not use it as your main router? Then just use the Airport as a switch & wireless.

If you factory default the RB750 it will load the default config. This makes ether1 the WAN port (with a DHCP client) and bridges ether2-5 for the LAN. It configures NAT, the firewall and puts a DHCP server on the LAN. When you log in for the first time with Winbox it will tell you what it is configured with.

Then all you do is remove the DHCP client from the WAN. Create a VLAN interface on ether1 and then put a PPPoE client on the VLAN interface. You will also need to change the NAT masquerade rule to go to the new PPP interface.

After that just configure your Airport in 'Access Point' mode (which turns of NAT, firewall, DHCP etc.



179 posts

Master Geek
+1 received by user: 3


  Reply # 1048414 19-May-2014 21:06
Send private message

chevrolux: Download Winbox and connect with that.

But instead of just using it to tag a VLAN why not use it as your main router? Then just use the Airport as a switch & wireless.

If you factory default the RB750 it will load the default config. This makes ether1 the WAN port (with a DHCP client) and bridges ether2-5 for the LAN. It configures NAT, the firewall and puts a DHCP server on the LAN. When you log in for the first time with Winbox it will tell you what it is configured with.

Then all you do is remove the DHCP client from the WAN. Create a VLAN interface on ether1 and then put a PPPoE client on the VLAN interface. You will also need to change the NAT masquerade rule to go to the new PPP interface.

After that just configure your Airport in 'Access Point' mode (which turns of NAT, firewall, DHCP etc.


Thanks! I'll have a go.

My understanding is that I need the Microtik as the AirPort does not support VLAN tagging.

3684 posts

Uber Geek
+1 received by user: 1392

Subscriber

  Reply # 1048521 20-May-2014 07:20
Send private message

Yep that is correct. The mikrotik can be configured as a switch that simply adds the vlan tag. But it is such a good router so why waste it?



179 posts

Master Geek
+1 received by user: 3


  Reply # 1049896 20-May-2014 16:53
Send private message

chevrolux: Download Winbox and connect with that.

But instead of just using it to tag a VLAN why not use it as your main router? Then just use the Airport as a switch & wireless.

If you factory default the RB750 it will load the default config. This makes ether1 the WAN port (with a DHCP client) and bridges ether2-5 for the LAN. It configures NAT, the firewall and puts a DHCP server on the LAN. When you log in for the first time with Winbox it will tell you what it is configured with.

Then all you do is remove the DHCP client from the WAN. Create a VLAN interface on ether1 and then put a PPPoE client on the VLAN interface. You will also need to change the NAT masquerade rule to go to the new PPP interface.

After that just configure your Airport in 'Access Point' mode (which turns of NAT, firewall, DHCP etc.


Thanks again for your help.

This isn't actually my connection, it's for a friend. I have VDSL2 and the Technicolor can easily be bridged and there are no VLAN tagging issues so this solution is a bit new to me.

I popped around and tried the Microtik I had pre-configured last night, I couldn't get it to work. I can get the PPPoE and Wan interface working ok, connected and online. It looks like the LAN side DHCP wasn't working either, and no internet on the AirPort.

I was also a bit lost on the NAT masquerade rule -- I couldn't see that in the Microtik configuration UI.

I tried Winbox but it doesn't seem that different from Winfig which is already on the router - I general prefer the browser interfaces, less stuff to install. Having said that I might try Winbox again tonight just to make sure I'm making things as easy for myself as possible :)

I'll go through it all again tonight (unfortunately offline and not with Fibre available).

Does anyone know if Telecom can remove the VLAN tagging requirement? I see Now Internet can do that, that would solve my problem I think as I could just plug the AirPort Extreme directly into the ONT using PPPoE on the AirPort.

Any screenshots of that process described above would really help. :)

Thanks again for all the advice.

27279 posts

Uber Geek
+1 received by user: 6709

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1049908 20-May-2014 17:03
Send private message

Telecom don't offer untagged UNI.


Mr Snotty
8083 posts

Uber Geek
+1 received by user: 4053

Moderator
Trusted
Lifetime subscriber

  Reply # 1049950 20-May-2014 17:42
Send private message

I've configured tonnes of Mikrotiks on UFB w/ VLAN Tagging successfully but I am using these as routers and not as a dumb bridge. It is rather easy to do however I've only ever done it via Winbox / the CLI.






179 posts

Master Geek
+1 received by user: 3


  Reply # 1050084 20-May-2014 21:00
Send private message

Ok, I have reset the Microtik and configured in using WinBox and accepted its default settings. Here are some screen shots of the config I have. I can't find the NAT Masquarading settings. Also, should I expect to see a bridge defined?

Interfaces
Interfaces

VLAN
VLAN

PPPoE Client
PPPoE Client


Bridge
Bridge

3684 posts

Uber Geek
+1 received by user: 1392

Subscriber

  Reply # 1050097 20-May-2014 21:10
Send private message

You will find the NAT settings under IP, Firewall. You just simply won't have internet access if it isn't masquerading to the correct interface.

If you defaulted it (which looks like you did) DHCP will be configured, you should be in the 192.168.87.0/24 range (i think).

When you made the PPPoE client did you tick "Use Peer DNS"? This will use the DNS servers provided by Telecom and save you setting them manually.



179 posts

Master Geek
+1 received by user: 3


  Reply # 1050114 20-May-2014 21:15
Send private message

chevrolux: You will find the NAT settings under IP, Firewall. You just simply won't have internet access if it isn't masquerading to the correct interface.

If you defaulted it (which looks like you did) DHCP will be configured, you should be in the 192.168.87.0/24 range (i think).

When you made the PPPoE client did you tick "Use Peer DNS"? This will use the DNS servers provided by Telecom and save you setting them manually.


Excellent, thanks, that helps a lot --  and very much appreciated.

It's a title tricky this as I'm configuring this at my place, then taking it around (with laptop) to try and minimise the time taken to configure onsite.

I have turned on 'Use Peer DNS'.

NAT configuration:

NAT

If this looks ok, I'll give it another go onsite.

27279 posts

Uber Geek
+1 received by user: 6709

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1050126 20-May-2014 21:24
Send private message

Your masquerade rule should be using your internet connection as the out interface, which in this case will be the PPPoE



 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Geekzone Live »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.