You are here

MikroTik CSS106 / RB260GSP config for AREDN

17 posts / 0 new
Last post
KM4DC
KM4DC's picture
MikroTik CSS106 / RB260GSP config for AREDN

The attached documents my setup for a MikroTik CSS106/RB260GSP switch. This is a 5 port (with optional SFP) managed switch with POE-in on port 1 and POE-out available on ports 2-5. I wrote this up because the switch is quite different from other switches I've used.  The result presented here is still a work in progress, but it seems to work OK. Comments welcomed. I paid about $60 for the switch.
The solution allows Internet (Port1) access for the AREDN node (port2) and Ports 3-5. It does not allow Internet access from the WAN side of the AREDN node. Ports 3-5 can access the AREDN node and mesh network and the Internet.  The switch is powered from its 24 volt power supply. POE is provided to the AREDN node via port 2.

73, Don, KM4DC
 

K9CQB
K9CQB's picture
I like the possible future use of fiber runs on this
Don,
What I really love about this RB260GSP switch is that it has an SFP for fiber. I hope we can eventually get the SPF port enumerated and operating inside the AREDN firmware. It would allow us to run fiber between devices that might be too long to run for Ethernet like:
1. Running up to 3-4km of fiber over the top of a mountain or ridge to link 2 valleys between two AREDN nodes
2. Running a fiber link 300-500 feet through a building up to a rooftop AREDN node
3. Running fiber into a government facility (County EOC) that doesn’t allow an AREDN RF link on their roof where they need to link into the AREDN network
 
Also, fiber runs and links can be far less power hungry than RF or Ethernet, which is good for emergency power situations.

-Damon K9CQB
K6CCC
K6CCC's picture
I like the RB CSS106 switches

I have two of the CSS106 switches in service in my home LAN (along with two Mikrotic CSS326 swithes and two RB750 routers).  One is the older RB260 and the other is the newer CSS106.  Neither is being used for AREDN, and also neither is the POE version. Unlike your setup, I am using the SFP port on both, however it is for Ethernet - not fiber.  Both have been in service for several years without issue.  Both are used in less than ideal environmental situations.  One is inside a brick column in my front yard, and the other is in the attic where my measured high temp last summer was 151 degrees F.

Looking at your configuration settings looks reasonable to me.  Good point about AREDN node not being able to power up and supply a DHCP address fast enough.  Your solution is perfect under that situation.  I have all of my switches set for static IP.

I'm not sure I understand Damon's comment about getting the SFP enumerated inside the AREDN firmware.  Unless I'm missing something, there is no need to have the AREDN node to even be aware of what the transport media is.  It's simply an Ethernet connection from the AREDN node to the switch.  Beyond that, does not matter.  If you are linking two AREDN radios (your example #1), it's just a DtD link.  If you are extending the AREDN LAN to remote computer devices (your examples #2 &  #2), it's just a LAN connection.  The media type does not matter.  In the most simple situation, the switch is being used as nothing but a media converter.  If there are more devices plugged into the switch, then of course the switch functions are being used.

 

K9CQB
K9CQB's picture
Good catch - these have no radio in them.

Yep - my bad. I had a momentary lapse. For some reason I thought this switch had a 2.4GHz radio in it similar to the RB951. In fact it looks identical to the RB951Ui-HnD (same case). But , because it has no radio, you can just use the stock MikroTik OS and run fiber all day long.

-Damon K9CQB

K6CCC
K6CCC's picture
Yep, same case

Makes sense.  Yes, a bunch of the smaller Mikrotik devices use the same case.  I now have the two RB250 / CSS106 switches, two RB750 routers, and now two hAP AREDN radios that all look the same.  If they were not in separate locations, I would have a hard time telling them apart without a careful look.  I do like them however...
 

AJ6GZ
HEX PoE

Also look at the HEX PoE which is also 5 ports of Gigabit + SFP. However it runs RouterOS instead of SwitchOS, so you get all of the features which is quite amazing how much they've crammed into RouterOS. I use that model on almost all my sites.

nc8q
nc8q's picture
RB260GSP VLAN2 DtD config help?

I have been able to configure DtD/VLAN2 in the Netgear GS-108E and 3COM 3C1720X devices,
but the SwOS on the Mikrotik RB260GSP it too different for me to grasp.
Anyone have a configuration for this device for
4 Nodes (POE'ed and DtD'ed) and 1 Trunk (4 VLANS) or similar?
I do not need any WAN/LAN ports configured on the RB260GSP,
I can configure LAN (& WAN?) ports at the other end of the Trunk.
If I had a sample configuration with 2 or more DtD'ed nodes, I think I could extrapolate.
Anyone configured VLAN2 on the RB260GSP?

Chuck
 

K6CCC
K6CCC's picture
Stand by for screen captures.

Stand by for screen captures...
 

K6CCC
K6CCC's picture
Here are some screen captures

Here are some screen captures that should help you.  Because this forum is https, if you are using a recent version of Chrome, you will not see my embedded screen captures because the website they are posted on is not secure, I have included direct links to each image.
This is a CSS106-1G-4P-1S that is used as a DtD hub for three AREDN radios (ports 2, 3, & 4) with the switch providing PoE to the three Rockets.  Port 1 is a trunk that connects to my home network and provides me a separate VLAN connection (VLANs 11, 12, & 13) to each radio.  My router gets an IP from each AREDN node, and has routing tables such that I can get to the LAN port of each radio from my home computer.  VLAN 201 is the management LAN for the switch.  Any questions, feel free to ask.




http://extraphotos.info/mikrotik/CSS106_Link.png


http://extraphotos.info/mikrotik/CSS106_VLAN.png


http://extraphotos.info/mikrotik/CSS106_VLANs.png


http://extraphotos.info/mikrotik/CSS106_System.png

nc8q
nc8q's picture
RB260GSP config for AREDN

Many thanks Jim.
That is like what I want. :-)
I don't understand the 'management port', but the rest matches what I want.
I may return with questions on the management port later.
Chuck

nc8q
nc8q's picture
Configure RB260GSP for AREDN

Jim:

I tried your configuration and it did not work (as I expected it to work).
I set this up with a SXTsq on port 2 and 3. They powered up.
Plugged port 1 into the trunk port on my switch (3Com 3c17204).
None of the SXTs appeared on my network.
I could not find a GUI on 192.168.201.7 or 192.168.88.1 on port 1, 4, or 5.
I reset the switch to defaults.

Chuck


.

K6CCC
K6CCC's picture
The SXTs don't appear on your

The SXTs don't appear on your network.  My router gets DHCP addresses from all three of those AREND nodes (along with several others).  The router then build routing table entries to those IP ranges, so it knows how to route to them.  I also have firewall rules to limit what devices can access those routes.
Here is part of the routing table in the router.



The first one is my default route to the internet.  The next two are my (normal) hAP AREDN node.  The second one of those specifies that any IP in the /28 range for my hAP gets routed via that.  The first of the entries for my hAP is a entry that I put in that specifies that any 10.x.x.x address routes via the hAP.  The next three are the three rockets with their IP ranges and at the right is the IP that will be used for the sourse address (the IP of the router).
Note, I am NOT using a typical home router.

As for the Management IP and VLAN, all of my switches use an IP on my 192.168.201.x network with is VLAN 201.  My restricting management of the switch to the 201 VLAN, means that someone on AREDN for example could not take over the switch because they are on the wrong VLAN.  I can give a longer explanation.
 

nc8q
nc8q's picture
The SXTs don't appear on your network.

Hi, Jim:

 Thanks for the effort.
What I was hoping for was a POE version of a Netgear GS-105E.
What you describe is beyond my capacity.
73, Chuck
 

K6CCC
K6CCC's picture
If all you need it to do is a

If all you need it to do is a dumb switch that will provide POE, it will do that just as well.
 

nc8q
nc8q's picture
VLAN switch that provides POE

Hi, Jim:

 I was hoping for both VLANs (like the Netgear GS-105E) and POE (like the Ubiquiti N-SW).
When you indicated that my nodes would not appear on the network, I got lost.
("The SXTs don't appear on your network.")

 I have 2 active nodes POE'ed in the unattached garage, one with 2 Raspberry Pis; a Meshchat and a PBX.
The POE feature would reduce the number of POEs in use, the VLAN would allow me to put the
Pis in the house via trunking to an inside the house VLAN switch.
I am currently using a 48 port VLAN switch (3Com 3C17204) in the garage and another one in the house.
I am assuming that the RB260GSP would draw far less power.

Chuck


 

K6CCC
K6CCC's picture
I think there is some lack of

I think there is some lack of communication.  Can you either give me a phone call or give me your number and I'll call you.

nc8q
nc8q's picture
RB260GSP_4Nodes+POE_4VLANs_DtD

A big thank you to Jim K6CCC.
Port 1 can be connected to a DtD port of an existing VLAN switch (hAP, AR150/300/750) or
Port 1 can be used as a 'Trunk' to another VLAN switch providing individual LAN access to each Radio port and DtD linking
(Netgear GS105E/108E or similar).

This is an indoor device.
 

Sheet 1: LINK

  Port 1 Port 2 Port 3 Port 4 Port 5 SFP
Name Trunk Radio 1 Radio 2 Radio 3 Radio 4  

 

Sheet 2: VLAN

  Trunk Radio 1 Radio 2 Radio 3 Radio 4 SFP
Ingress            
VLAN Mode optional optional optional optional optional optional
VLAN Receive any any any any any any
Default VLAN ID 1 11 12 13 14 1
Force VLAN ID            
Egress            
VLAN Header leave as is leave as is leave as is leave as is leave as is leave as is

 

Sheet 3: VLANs

VLAN ID IVL IGMP Snooping Trunk Radio 1 Radio 2 Radio 3 Radio 4 SFP
2 - - leave as is leave as is leave as is leave as is leave as is leave as is
11 - - add if missing always strip not a member not a member not a member leave as is
12 - - add if missing not a member always strip not a member not a member leave as is
13 - - add if missing not a member not a member always strip not a member leave as is
14 - - add if missing not a member not a member not a member always strip leave as is

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer