Multiple DHCP server and local IP address config questions

EnglishInfix · Tue Apr 23, 2024 2:45 am

Hello all,

I am brand new to RouterOS but have a decent amount of experience with IOS-XE and Vyos/Ubiquiti. I am setting up my first router and had some questions on DHCP server configuration.

I have 6 VLANs created as listed below:

VLAN10 - 10.100.10.0/24
VLAN20 - 10.100.20.0/24
VLAN30 - 10.100.30.0/24
VLAN40 - 10.100.40.0/24
VLAN50 - 10.100.50.0/24
VLAN160 - 172.16.0.0/24 (Mangement, router bridge interface lives here at 172.16.0.2/24)

I want clients on all 6 networks to be able to broadcast DHCP DISCOVER requests and receive an OFFER from the DHCP server on the router.

Working with just VLAN10 so far, I have:

/ip/pool/add name=dhcp_vlan10 ranges=10.100.10.11-10.100.10.99
/ip/dhcp-server/network/add address=10.100.10.0/24 dns-server=10.100.10.100,10.100.10.110 gateway 10.100.10.1

The next step in the Manual Configuration example in the documentation is to add an IP address to the DHCP interface:

/ip address add address=192.168.88.1/24 interface=bridge1 network=192.168.88.0

So, a couple of questions here. I already have a "local" bridge set up between the VLAN160 interface and the CPU at 172.16.0.2/24. I have it at .2 because the VLAN interface is at .1 - can the local bridge be set up as .1 as well or will that cause a conflict? Can DHCP be at .1 as well? And will I need to set up any kind of DHCP relay or DHCP helper address on the other VLAN interfaces in order for them to be able to reach the DHCP server?

Edit: It's possible I don't completely understand the purpose of the bridge interface entirely. I am understanding it to be the bridge between the network and the local CPU, but perhaps that is not correct?

Here is a dump of my config if it makes more sense that way:

# jan/02/1970 01:59:15 by RouterOS 7.7
# software id = G9PV-AJBM
#
# model = CCR2004-16G-2S+
# serial number = [REDACTED]
/interface bridge
add name=local
/interface bonding
add comment="Internal Switching Trunk" mode=802.3ad name=bond1 slaves=\
    ether10,ether11,ether12,ether13
add comment="Sparklight WAN Transport" mode=802.3ad name=bond2 slaves=\
    ether1,ether2
/interface vlan
add comment="Internal Network" interface=bond1 name=vlan10 vlan-id=10
add comment="Guest Network" interface=bond1 name=vlan20 vlan-id=20
add comment="Server Network" interface=bond1 name=vlan30 vlan-id=30
add comment="Internal Wireless Network" interface=bond1 name=vlan40 vlan-id=\
    40
add comment="MoCA Bridge Network" interface=bond1 name=vlan50 vlan-id=50
add comment="Network Management" interface=bond1 name=vlan160 vlan-id=160
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_vlan10 ranges=10.100.10.11-10.100.10.99
/port
set 0 name=serial0
set 1 name=serial1
/interface bridge port
add bridge=local interface=vlan160
/ip address
add address=10.100.10.1/24 interface=vlan10 network=10.100.10.0
add address=10.100.20.1/24 interface=vlan20 network=10.100.20.0
add address=10.100.30.1/24 interface=vlan30 network=10.100.30.0
add address=10.100.40.1/24 interface=vlan40 network=10.100.40.0
add address=10.100.50.1/24 interface=vlan50 network=10.100.50.0
add address=172.16.0.1/24 interface=vlan160 network=172.16.0.0
add address=172.16.0.2/24 interface=local network=172.16.0.0
/ip dhcp-server network
add address=10.100.10.0/24 dns-server=10.100.10.100,10.100.10.110 gateway=\
    10.100.10.1
/system identity
set name=POC994-RoutingCore
/system routerboard settings
set enter-setup-on=delete-key

Note: I'm aware my config is currently insecure and has no filter rules, it is only connected by serial console right now

Multiple DHCP server and local IP address config questions

Multiple DHCP server and local IP address config questions

Who is online