I gave up on VLANs and used a separate bridge
Unfortunately I had problems with the bridge not routing to my boundary router (probably because untagged traffic was bridged to it)
The way I resolved the issue was after creating a bridge on the ax2 and the Audience I then created another bridge on the boundary router and linked them all together using EoIP on the untagged network.
It's not a perfectly seamless switching between ax2 and audience, like it is on the primary untagged network but it's only for guests so I'm not too bothered about a 1-2 second drop before switching AP.
Unfortunately I had problems with the bridge not routing to my boundary router (probably because untagged traffic was bridged to it)
The way I resolved the issue was after creating a bridge on the ax2 and the Audience I then created another bridge on the boundary router and linked them all together using EoIP on the untagged network.
Code:
[admin@boundary] interface eoip add name=eoip-ax2 remote-ip=192.168.0.2 tunnel-id=1[admin@boundary] interface eoip add name=eoip-audience remote-ip=192.168.0.3 tunnel-id=2[admin@boundary] interface bridge add guest-bridge frame-types=admit-only-untagged-and-priority-tagged vlan-filtering=yes[admin@boundary] interface brdge port add bridge=guest-bridge interface=eoip-ax2[admin@boundary] interface brdge port add bridge=guest-bridge interface=eoip-audience[admin@boundary] ip address add interface=guest-bridge ... ip pool ... ip dhcp-server ... blah blah[admin@ax2] interface eoip add name=eoip-ax2 remote-ip=192.168.0.1 tunnel-id=1[admin@ax2] interface bridge add guest-bridge frame-types=admit-only-untagged-and-priority-tagged vlan-filtering=yes[admin@ax2] interface brdge port add bridge=guest-bridge interface=eoip-ax2[admin@ax2] interface wifiwave2 configuration unset numbers=3,4 datapath.vlan[admin@ax2] interface wifiwave2 configuration set datapath.brigge=guest-bridge numbers=3,4[admin@audience] interface eoip add name=eoip-audience remote-ip=192.168.0.1 tunnel-id=2[admin@audience] interface bridge add guest-bridge frame-types=admit-only-untagged-and-priority-tagged vlan-filtering=yes[admin@audience] interface brdge port add bridge=guest-bridge interface=eoip-audienceStatistics: Posted by ojnab — Wed Jan 17, 2024 11:44 pm