I'm new to OpenWRT and still confused by how DSA works. Most tutorials use the older builds with no DSA, and that doesn't help.
I have a Linksys EA8300 as primary router running 23.05.02, and configured to support a main lan (vlan 1), and two different guest networks vlan 101 called iot where devices can only access the internet, vlan 102 caller camera where devices cannot access the internet. This all works, and also works well with one of my old routers running AsusWRT Merlin as a dumb AP and configured to send vlan tagged traffic on one of the EA8300 ports. The EA8300 is the only DHCP server running, assigning 192.168.2.x for the main lan, 192.168.10.x for vlan 101 and 192.168.20.x for vlan 102. The AP is using a static address of 192.168.2.6 and connected to a tagged port on the EA8300.
I'm now trying to set up an Archer A7 V5.8 as a dumb AP instead of the Asus, and properly tag traffic as vlan 1, vlan 101 and vlan 102. What is confusing me, is that on the Archer, I don't see a lan1 lan2 lan3 lan4 and wan port, but an eth0 with an eth0.1 and eth0.2 vlan, so what I thought I learned from the EA8300 doesn't really apply. And most tutorials don't apply either. Moreover, the tutorials for "Dumb AP with guest" assumes I'll have a DHCP server running on the Archer, which is not what I want.
I have the following configured, and it's working as a "Dumb AP"
config interface 'loopback'
option device 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd87:39a5:056c::/48'
config device
option name 'br-lan'
option type 'bridge'
list ports 'eth0.1'
list ports 'eth0.2'
option bridge_empty '1'
config interface 'lan'
option device 'br-lan'
option proto 'static'
option ipaddr '192.168.2.6'
option netmask '255.255.255.0'
option ip6assign '60'
option gateway '192.168.2.1'
list dns '192.168.1.1'
list dns '192.168.2.1'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option ports '0t 2 3 4 5 1'
option vid '1'
Port 1 seems to be the WAN port, which I use to connect to the EA8300. And I removed the wan interface because I don't think I'll need it for the firewall (if I understand things correctly, there should be no firewall on the AP in my configuration, bridges should take care of everything, then it's up to the main EA8300 to sort things out based on the vlan tags)
I tried various combinations of vlans, bridge devices and ports assignment, but I keep losing access due clearly to configuration mistakes (or, if I keep access, nothing works as it should)
Ideally I'd like to be able to have ports 4 and 5 as untagged ports to connect devices that will be on the main network. Port 3 as vlan 102 and port 2 as vlan 101. Port 1, the WAN port, as uplink to the EA8300 sending tagged traffic. I will then add the necessary wireless interfaces, but for ow I'm focusing on th ebasic bridge/vlan setup.
Appreciate any pointer to get unstuck. I still can't wrap my head around some basic OpenWRT concepts.
I got so lost in the EA8300 and DSA that I assumed all the routers made the transition. The presence of the "Switch" menu under network should have been a dead giveaway, but I was so single-minded thinking about DSA