1. Ensure that VLAN 10 and VLAN 20 are configured identically (tagged) on both the router (RB4011iGS+) and the main switch (CRS328-24P-4S+). Check VLAN IDs, tagging modes, and port configurations to ensure they match on both devices.
2. Port Configuration on Router and Switch:
- On the router (RB4011iGS+), configure the ports connected to the switch (CRS328-24P-4S+) as "trunk ports". Trunk ports carry tagged traffic for multiple VLANs.
- Set VLAN 1 as untagged (PVID) and VLAN 10, VLAN 20 as tagged on these ports.
3. Port Isolation and VLAN Filtering:
- Ensure that VLAN 1 remains untagged on all ports as planned, including the trunk ports between the router and the switch.
- Use VLAN filtering or isolation features on both devices to prevent VLAN leakage:
- On MikroTik devices, this typically involves setting up VLAN interfaces (`/interface vlan`), VLAN filtering rules (`/interface ethernet switch vlan`), and ensuring proper VLAN membership (`/interface ethernet switch egress-vlan-tag`).
By following these steps and ensuring consistent VLAN configuration between your MikroTik devices, you should be able to prevent tagged VLAN traffic from leaking into the untagged VLAN and successfully trunk VLANs between switches.
2. Port Configuration on Router and Switch:
- On the router (RB4011iGS+), configure the ports connected to the switch (CRS328-24P-4S+) as "trunk ports". Trunk ports carry tagged traffic for multiple VLANs.
- Set VLAN 1 as untagged (PVID) and VLAN 10, VLAN 20 as tagged on these ports.
3. Port Isolation and VLAN Filtering:
- Ensure that VLAN 1 remains untagged on all ports as planned, including the trunk ports between the router and the switch.
- Use VLAN filtering or isolation features on both devices to prevent VLAN leakage:
- On MikroTik devices, this typically involves setting up VLAN interfaces (`/interface vlan`), VLAN filtering rules (`/interface ethernet switch vlan`), and ensuring proper VLAN membership (`/interface ethernet switch egress-vlan-tag`).
By following these steps and ensuring consistent VLAN configuration between your MikroTik devices, you should be able to prevent tagged VLAN traffic from leaking into the untagged VLAN and successfully trunk VLANs between switches.
Statistics: Posted by flintham12 — Fri Jan 10, 2025 9:19 pm