Hello,
Figure is my configuration:Here's the SXT LTE6 kit configuration:
Here's the AP ac lite configuration:
Everything works only when I block the interface VLAN man in hAP ac lite. When I unblock it, the connection to the hAP ac lite sometimes starts to drop and the connection to it disappears, no longer pings, unavailable via WinBox, no internet, although the SXT LTE6 kit manages fine all the time.
So I have some questions:
1. Where might the problem be?
2. The SXT LTE6 kit interface VLAN net doesn't have a DHCP client, but gets an additional external IP address. This must be the case when using passthrought?
3. Maybe then I need to delete the DHCP client on the SXT LTE6 kit on the interface VLAN man. Maybe the IP address would be obtained from the DHCP server hAP ac lite anyway?
4. Can I upgrade the RouterOS version to 7.18 for hAP ac lite?
Thanks.
Figure is my configuration:Here's the SXT LTE6 kit configuration:
Code:
# 2025-03-02 08:38:06 by RouterOS 7.18# software id = xxx## model = SXTR# serial number = xxx/interface lteset [ find default-name=lte1 ] allow-roaming=no band=""/interface lte apnset [ find default=yes ] passthrough-interface=net passthrough-mac=auto \ use-peer-dns=no/interface vlanadd interface=ether1 name=man vlan-id=2add interface=ether1 name=net vlan-id=3/ip dhcp-clientadd interface=man/system noteset show-at-login=no/system clockset time-zone-name=xxx/xxxCode:
# mar/01/2025 16:40:03 by RouterOS 6.49.18# software id = xxx## model = RB952Ui-5ac2nD# serial number = xxx/interface bridgeadd name=bridge/interface bridge portadd bridge=bridge interface=ether1add bridge=bridge interface=ether2add bridge=bridge interface=ether3add bridge=bridge interface=ether4add bridge=bridge interface=wlan1add bridge=bridge interface=wlan2add bridge=bridge interface=man/interface listadd name=LANadd name=WAN/interface list memberadd interface=bridge list=LANadd interface=net list=WAN/interface vlanadd interface=ether5 name=man vlan-id=2add interface=ether5 name=net vlan-id=3/interface wirelessset [ find default-name=wlan1 ] antenna-gain=3 band=2ghz-b/g/n channel-width=\ 20/40mhz-Ce country=xxx disabled=no distance=indoors mode=ap-bridge \ security-profile=myWifi ssid=xxx wireless-protocol=802.11set [ find default-name=wlan2 ] antenna-gain=3 band=5ghz-a/n/ac \ channel-width=20/40/80mhz-XXXX country=xxx disabled=no distance=\ indoors mode=ap-bridge security-profile=myWifi ssid=xxx \ wireless-protocol=802.11/interface wireless security-profilesset [ find default=yes ] supplicant-identity=MikroTikadd authentication-types=wpa2-psk mode=dynamic-keys name=myWifi \ supplicant-identity=MikroTik wpa2-pre-shared-key=xxx/ip addressadd address=192.168.88.1/24 interface=bridge network=192.168.88.0/ip dhcp-clientadd disabled=no interface=net use-peer-dns=no/ip dhcp-serveradd address-pool=dhcp_pool0 disabled=no interface=bridge lease-time=30m name=\ dhcp1/ip dhcp-server networkadd address=192.168.88.0/24 dns-server=8.8.8.8,9.9.9.9 gateway=192.168.88.1/ip dnsset servers=8.8.8.8,9.9.9.9/ip firewall filteradd action=accept chain=input comment="accept established,related,untracked" \ connection-state=established,related,untrackedadd action=drop chain=input comment="drop invalid" connection-state=invalidadd action=accept chain=input comment="accept ICMP" in-interface=net \ protocol=icmpadd action=accept chain=input comment="allow Winbox" in-interface=net port=\ 8291 protocol=tcpadd action=accept chain=input comment="allow SSH" in-interface=net port=22 \ protocol=tcpadd action=drop chain=input comment="block everything else" in-interface=netadd action=fasttrack-connection chain=forward comment=\ "fast-track for established,related" connection-state=established,relatedadd action=accept chain=forward comment="accept established,related" \ connection-state=established,relatedadd action=drop chain=forward connection-state=invalidadd action=drop chain=forward comment=\ "drop access to clients behind NAT from WAN" connection-nat-state=!dstnat \ connection-state=new in-interface=net/ip firewall natadd action=masquerade chain=srcnat out-interface=net/ip neighbor discovery-settingsset discover-interface-list=LAN/ip pooladd name=dhcp_pool0 ranges=192.168.88.2-192.168.88.254/ip serviceset telnet disabled=yesset ftp disabled=yesset www disabled=yesset ssh port=2200set api disabled=yesset winbox address=192.168.88.0/24/ip sshset strong-crypto=yes/system clockset time-zone-name=xxx/xxx/system routerboard settingsset auto-upgrade=yes/tool bandwidth-serverset enabled=no/tool mac-serverset allowed-interface-list=LAN/tool mac-server mac-winboxset allowed-interface-list=LANSo I have some questions:
1. Where might the problem be?
2. The SXT LTE6 kit interface VLAN net doesn't have a DHCP client, but gets an additional external IP address. This must be the case when using passthrought?
3. Maybe then I need to delete the DHCP client on the SXT LTE6 kit on the interface VLAN man. Maybe the IP address would be obtained from the DHCP server hAP ac lite anyway?
4. Can I upgrade the RouterOS version to 7.18 for hAP ac lite?
Thanks.
Statistics: Posted by Debeselis — Sun Mar 02, 2025 1:42 pm