Mikrotik Group specializes in networking solutions and devices.
Mikrotik Group specializes in networking solutions and devices.
Still any Mikrotik users out there ? I just exchanged my RB2011UiAS-2HnD-IN for the MikroTik RB4011iGS+5HacQ2HnD-IN I am using a RB962UiGS-5HacT2HnT hAP ac as a secundary accesspoint for the far end of the house. I am using a MikroTik Cloud Smart Switch 326-24G-2S+RM to connect most of my hardware (with my desktop and my unraid server connected via SFP+ DAC cables from FS.COM. This is really amazing hardware.. Would be very nice to see one reviewed. There is a small learning curve (ahum), but if you get thru it you basically understand network a whole lot better then you used to..
Are you operating that CRS326 in RouterOS or SwitchOS configuration? I have three hAP AC units (not hAP AC2) installed in CAPsMan for all my wireless devices, and I’m also using the switches for VLAN isolation ports. Having a single device that functions both as a managed switch and an AP in each area is ideal. I find CAPsMan’s capabilities limited compared to other AP/controller solutions—it mainly configures the APs, but they remain independent, so it doesn’t accommodate the latest roaming standards (802.11k, 802.11r, 802.11v). There are additional constraints, but this is the primary issue I’m facing right now.
My core switch is a CRS125. I prefer it because it includes a full router built-in, which I’ve configured as a backup using VRRP. I don’t like the complexity involved in setting up the switch side—with CRS1 switches you can manage VLAN settings through the bridge interface, but with CRS3 switches you’re essentially programming the switch chip directly. As someone experienced with various switches and routers, I find the VLAN configuration process on this device outdated and cumbersome. The newer bridge menu seems more intuitive, though I don’t have any devices that support it for testing.
My router is an RB1100AHx4 Dude Edition, sharing the same CPU as the RB4011 but differing significantly in other aspects. At the moment, I’m not utilizing its internal storage features. Both the router and switch are configured with VRRP so that if the router fails, the switch takes over. This setup is intentional. The router shares power with my servers; the switch, ISP modem, and one AP’s POE injector run on a separate UPS. This ensures network resilience during outages—minimizing impact even though the router consumes relatively little power.
In the long term, I plan to swap in Unifi APs and switches once Unifi releases Wifi 6 APs. I’ll keep the RB1100AHx4 as my router. For the core switch, I’m uncertain what to choose. For simplicity, I’d consider a Unifi switch, but I don’t want to sacrifice the backup router function. There are rumors about a future Layer 3 switch from Unifi; if true and VRRP-compatible, it could be a viable path. Otherwise, I might opt for a used HP switch for the core. A new CRS3 switch could also be an alternative.
This remains my main concern about Mikrotik. It frustrates me with how much is required for basic VLAN setup. On top of that, the different modes needed for FIB lookup and the fact that some models shift the work to the CPU only makes things worse. I don’t see it being easy to change its configuration. They should understand that many users dislike it—it’s mentioned in almost every other forum thread.
They understood it and added the Bridge VLAN Filtering feature (which is why the Master-Port disappeared). Have you tested it with devices that support this? It seems much improved, though I haven’t found anything compatible yet. The documentation notes it applies only to CRS3 series: https://wiki.mikrotik.com/wiki/Manual:In...Offloading
We have around a dozen CRS300 units in place. The filter reduces the setup complexity, though there remain some unusual behaviors in the filtering process that cause frustration.
You're experiencing issues with your RB751G-2HnD not functioning properly when setting up a Simple Queue. It seems like the system is stuck in fast mode, and you've tried disabling it via IP settings but still aren't seeing any queues. Have you checked the firewall rules or looked into any recent updates?
I'd be happy to explain further. The main issue we're encountering is that the new CRS300 devices are limited in their ability to handle multiple bridges simultaneously during hardware offload. This restriction isn't present in older models like CRS100 and CRS200. However, this limitation can often be managed effectively using VLAN configurations.
Software manages Simple Queues, so any offloading to hardware—like Fasttrack—will bypass queues. If you access the CLI and run /ip firewall then type export, you can view all active rules. You're welcome to remove personal data before sharing it; I'll investigate what might be causing your problems. Perhaps repeat this step under /queue as well.