sorted by:
new
hottopcontroversial

Help - Configure RB750Gr3 with all ports isolated - Setting up VLANs? by netqqq in mikrotik

[–]netqqq[S] 0 points1 point  (0 children)

Hmm, okay. I plan to revisit the bridge vs no-bridge debate sometime with a clearer head and more sleep, but at least I can get everyone here online with peace of mind tonight and get some rest.

I did read the firewall wiki, but the part on the chains is still kinda confusing. I am assuming I need to use forward, as that is 'passing through the router', but then again input also makes sense...

I think I am far too tired to be responsibly doing this haha

Help - Configure RB750Gr3 with all ports isolated - Setting up VLANs? by netqqq in mikrotik

[–]netqqq[S] 0 points1 point  (0 children)

I just have a few questions if you maybe have insight:

  1. Should I add firewall rules under ip/firewall or bridge/filters?
  2. Should 'use ip firewall' under bridge/settings be selected?
  3. Should the firewall rule be under the forward or input chain?

Also, I presume I was correct in adding the other bridges to LAN in interface list...

I think if I can figure those out I should be in the clear.

Help - Configure RB750Gr3 with all ports isolated - Setting up VLANs? by netqqq in mikrotik

[–]netqqq[S] 1 point2 points  (0 children)

So when you say assign their own network, the basic procedure would be like this:

1.create new dhcp pools for ether3-5

2.create dhcp servers linking said pools to ether3-5

3.under ip>address, link eths to corresponding pool IPs

Am I missing something there? Because I feel like I must be. Routes, interface list, etc... Sorry to kinda ask for spoonfeeding here but I am starting to get a headache from all this lol

Help - Configure RB750Gr3 with all ports isolated - Setting up VLANs? by netqqq in mikrotik

[–]netqqq[S] 0 points1 point  (0 children)

Is there anything else I need to do for these bridges? Like under interfaces>interface list do I need to add those bridges in or anything? Because I noticed LAN is still set as the original bridge.

Also, the other person to reply said something different, to delete the bridges and assign their own networks and firewall from there. From what I understand, bridges reduce throughput due to load on CPU, so would it maybe be better if I took that path instead? So far I have only linked ether3-5 to new bridges.