[Solved] Vlans on switch + 802.11s

Installing and Using OpenWrt
1

I'm asking for help with setting up the vlan. There are 2 repeaters connected to the router via cable (main connection), 5 and 2 GHz (backup connections). Both the home and guest networks work on the router and repeater 1. Only the home network works on repeater 2. When trying to connect to the guest, the device does not receive an IP address. The following messages appear in the router's log:

Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPDISCOVER(br-lan.3) xx:xx:xx:xx:xx:xx
Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPOFFER(br-lan.3) 192.168.3.225 xx:xx:xx:xx:xx:xx
Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPDISCOVER(br-lan.3) xx:xx:xx:xx:xx:xx
Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPOFFER(br-lan.3) 192.168.3.225 xx:xx:xx:xx:xx:xx
Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPREQUEST(br-lan.3) 192.168.3.225 xx:xx:xx:xx:xx:xx
Fri May 2 19:45:25 2025 daemon.info dnsmasq-dhcp[1]: DHCPACK(br-lan.3) 192.168.3.225 xx:xx:xx:xx:xx:xx

What's wrong with Repeater 2 settings?

#router network
config interface 'loopback'
	option device 'lo'
	option proto 'static'
	option ipaddr '127.0.0.1'
	option netmask '255.0.0.0'

config globals 'globals'
	option ula_prefix 'fdef:7753:fd90::/48'
	option packet_steering '1'

config device
	option name 'br-lan'
	option type 'bridge'
	option stp '1'
	option hello_time '4'
	option igmp_snooping '1'
	list ports 'lan1'
	list ports 'lan2'
	list ports 'lan3'
	list ports 'phy0-mesh0.1'
	list ports 'phy0-mesh0.3'
	list ports 'phy1-mesh0.1'
	list ports 'phy1-mesh0.3'

config interface 'lan'
	option device 'br-lan.1'
	option proto 'static'
	option ipaddr '192.168.1.1'
	option netmask '255.255.255.0'
	option ip6assign '60'

config interface 'wan'
	option device 'wan'
	option proto 'dhcp'

config interface 'wan6'
	option device 'wan'
	option proto 'dhcpv6'

config interface 'wwan'
	option proto 'qmi'
	option device '/dev/cdc-wdm0'
	option auth 'none'
	option pdptype 'ipv4'

config bridge-vlan
	option device 'br-lan'
	option vlan '1'
	list ports 'lan1'
	list ports 'lan2'
	list ports 'lan3'
	list ports 'phy0-mesh0.1'
	list ports 'phy1-mesh0.1'

config bridge-vlan
	option device 'br-lan'
	option vlan '3'
	list ports 'lan1:t'
	list ports 'lan2:t'
	list ports 'lan3:t'
	list ports 'phy0-mesh0.3:t'
	list ports 'phy1-mesh0.3:t'

config interface 'gosti'
	option proto 'static'
	option device 'br-lan.3'
	option ipaddr '192.168.3.1'
	option netmask '255.255.255.0'
	option ip6assign '60'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '1'
	option name 'phy0-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '1'
	option name 'phy1-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '3'
	option name 'phy1-mesh0.3'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '3'
	option name 'phy0-mesh0.3'

config device
	option name 'phy0-mesh0'

config device
	option name 'phy1-mesh0'

#repeater 1 network
config interface 'loopback'
	option device 'lo'
	option proto 'static'
	option ipaddr '127.0.0.1'
	option netmask '255.0.0.0'

config globals 'globals'
	option ula_prefix 'fd42:93d2:5a22::/48'
	option packet_steering '1'

config device
	option name 'br-lan'
	option type 'bridge'
	option stp '1'
	option igmp_snooping '1'
	option hello_time '4'
	list ports 'lan1'
	list ports 'lan2'
	list ports 'lan3'
	list ports 'lan4'
	list ports 'phy0-mesh0.1'
	list ports 'phy0-mesh0.3'
	list ports 'phy1-mesh0.1'
	list ports 'phy1-mesh0.3'

config interface 'lan'
	option device 'br-lan.1'
	option proto 'static'
	option ipaddr '192.168.1.2'
	option netmask '255.255.255.0'
	option gateway '192.168.1.1'
	list dns '192.168.1.1'
	option delegate '0'

config interface 'wan'
	option device 'wan'
	option proto 'dhcp'

config bridge-vlan
	option device 'br-lan'
	option vlan '1'
	list ports 'lan1'
	list ports 'lan2'
	list ports 'lan3'
	list ports 'lan4'
	list ports 'phy0-mesh0.1'
	list ports 'phy1-mesh0.1'

config bridge-vlan
	option device 'br-lan'
	option vlan '3'
	list ports 'lan1:t'
	list ports 'lan2:t'
	list ports 'lan3:t'
	list ports 'lan4:t'
	list ports 'phy0-mesh0.3:t'
	list ports 'phy1-mesh0.3:t'

config interface 'gosti'
	option proto 'none'
	option device 'br-lan.3'
	option defaultroute '0'
	option delegate '0'

config interface 'wan6'
	option proto 'dhcpv6'
	option device 'wan'
	option reqaddress 'try'
	option reqprefix 'auto'
	option norelease '1'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '1'
	option name 'phy0-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '3'
	option name 'phy0-mesh0.3'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '1'
	option name 'phy1-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '3'
	option name 'phy1-mesh0.3'

config device
	option name 'phy0-mesh0'

config device
	option name 'phy1-mesh0'

#repeater 2 network
config interface 'loopback'
	option device 'lo'
	option proto 'static'
	option ipaddr '127.0.0.1'
	option netmask '255.0.0.0'

config globals 'globals'
	option ula_prefix 'fd95:84c2:fc2d::/48'
	option packet_steering '1'

config device
	option name 'br-lan'
	option type 'bridge'
	option stp '1'
	option hello_time '4'
	option igmp_snooping '1'
	list ports 'eth0.1'
	list ports 'eth0.3'
	list ports 'phy0-mesh0.1'
	list ports 'phy0-mesh0.3'
	list ports 'phy1-mesh0.1'
	list ports 'phy1-mesh0.3'

config interface 'lan'
	option device 'br-lan.1'
	option proto 'static'
	option ipaddr '192.168.1.3'
	option netmask '255.255.255.0'
	option gateway '192.168.1.1'
	list dns '192.168.1.1'
	option delegate '0'

config interface 'wan'
	option device 'eth0.2'
	option proto 'dhcp'

config interface 'wan6'
	option device 'eth0.2'
	option proto 'dhcpv6'

config switch
	option name 'switch0'
	option reset '1'
	option enable_vlan '1'

config switch_vlan
	option device 'switch0'
	option vlan '1'
	option ports '6t 1 2 3'

config switch_vlan
	option device 'switch0'
	option vlan '2'
	option ports '6t 0'

config bridge-vlan
	option device 'br-lan'
	option vlan '1'
	list ports 'eth0.1'
	list ports 'phy0-mesh0.1'
	list ports 'phy1-mesh0.1'

config bridge-vlan
	option device 'br-lan'
	option vlan '3'
	list ports 'eth0.3:t'
	list ports 'phy0-mesh0.3:t'
	list ports 'phy1-mesh0.3:t'

config interface 'gosti'
	option proto 'none'
	option device 'br-lan.3'
	option defaultroute '0'
	option delegate '0'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '1'
	option name 'phy0-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy0-mesh0'
	option vid '3'
	option name 'phy0-mesh0.3'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '1'
	option name 'phy1-mesh0.1'

config device
	option type '8021q'
	option ifname 'phy1-mesh0'
	option vid '3'
	option name 'phy1-mesh0.3'

config device
	option name 'phy0-mesh0'

config device
	option name 'phy1-mesh0'

config switch_vlan
	option device 'switch0'
	option ports '6t 1t 2t 3t'
	option vlan '3'
2

You don't need 802.11s when you have wired backhaul. And the backup connections are not going to add any value here unless your cables are known to be unreliable (in which case, fix/replace them or simply don't use them at all). If anything, adding wireless backhaul links will cause more problems.

With that said... you have a ton of problems.

Starting with the router - remove all the lines with - in front of them:

Delete all of these:

Similarly, with repeater 1:

Delete all of these:

And for repeater 2:

Delete entirely:

And delete these:

Edit your lan interface so that it looks like this:

config interface 'lan'
	option device 'br-lan'
	option proto 'static'
	option ipaddr '192.168.1.3'
	option netmask '255.255.255.0'
	option gateway '192.168.1.1'
	list dns '192.168.1.1'
	option delegate '0'

Create a bridge for your gosti network:

config device
	option name 'br-gosti'
	option type 'bridge'
	list ports 'eth0.3'

And edit gosti to look like this:

config interface 'gosti'
	option proto 'none'
	option device 'br-gosti'

In addition to all those changes, be sure to completely remove all 802.11s related configurations from /etc/config/wireless.

Restart and test again.

3

This configuration does not suit me, because the cables, or rather the PLC, sometimes work poorly. I can't completely switch to 802.11s either, because repeater 2 is located far from the router and repeater 1, and the wireless network speed is about 10 Mbps, which is suitable for backup, but not for permanent use. Therefore, my question was about the settings, not about changing the network topology. Under the current circumstances, I can't change it yet. If this is not possible without changing the network topology, then all I have to do is change the router.

4

You'll be dealing with bigger issues if you try to run both wired and wireless backhaul.

Regardless of the topology, the radios should never be referenced in the network config file. They only appear in the wireless file. So all of the stuff I told you to delete still applies.

On repeater 3, I noted that you've mixed DSA and swconfig structures, and that won't work... so make the changes I suggested there, too.

5

I have very little experience in setting up a network, but I think I understand why you need to do as you write. I'll try it now.

There is no "switch" section on the router and repeater 1, and then I more or less understood how to configure the vlan. I mixed DSA and swconfig because I don't understand how it works yet. If I only configure swconfig, I don't understand how to tag the traffic of mesh interfaces. And if I use DSA, I don't understand what to change in swconfig.

6

Correct. Those are DSA devices.

The two methods do not mix. repeater 2 is a swconfig based device. I have given you the instructions to fix the problems there.

7

OK, it works over the wire, but not over the wireless connection. I plan to add 2 more repeaters, but I won't connect them by wire in any way. How to connect them via 802.11s with vlans? Both routers are with swconfig.

8

I would suggest a new thread for the mesh specific configuration now that we solved the VLANs on the switch issues.

Thus, for the purposes of this thread:

If your problem is solved, please consider marking this topic as [Solved]. See How to mark a topic as [Solved] for a short how-to.
Thanks! :slight_smile:

9

As @psherman suggests, please start a new thread for "guest networks over mesh backhaul" or something similar.
FYI The mesh11sd package supports guest networks over the mesh backhaul without needing to configure vlans. It also supports "vlan trunk over mesh backhaul" for very complex situations.

Your situation seems like a simple one and a plug and play solution is there for the taking....

10

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.