Your work is amazing here my brother. Mikrotik is not fun and game and you make it simple. I have been looking for this for so long cause I didn't wanna let go of the mikrotik. I almost gave up. and today i just bumped into your videos and i was able to create a basic guest network in seconds. with no IT knowledge. because you are explaining as you do. love your wok my bro thank you.
Thank you for your videos. Great work. I wanted to ask you why it is needed to create a bridge and then put the vlan and wlan in it. What ia the diference between your solution and putting the ip and dhcp directly to the vlan20 interface. So the simplest solution is just to create a wlan guest and assign ip and dhcp and if we need more secure environment we create a vlan on top of wlan and create the network we want... Cant understand the need of the bridge. Looks like a loop
I was wondering the same thing. Is it a thing with routerOS? I was thinking Create bridge-guest and vlan20 then assign vssid to bridge-guest or something like that. Am i right? is the way you do more efficient?
Great Video as always but comparing this with the Guest WiFi tutorial (without any VLANs) one cannot understand the benefits. Could you explain which are the benefits of using VLAN? It seems that all the rest of the steps we need to do them.
Tu tutorial me ha ayudado a crear mi primer vlan, desde un router mikrotik configurado de fábrica, lo único que tuve que agregar en la lista de interface(interface list) el nuevo vlan bridge (en la LAN del Bridge general, sólo agregué a la lista este vlan bridge) para que me dejara pasar internet, pero todo muy bien...
Awesome. Even though, the video was made in July 2017 and the OS has been updated multiple times since then, it still works (in December 2018). I have been searching for the correct way to set up VLAN for guests. Most are outdated. Only the guidelines mentioned in this video worked for me. I can't thank you enough.
Thank you for the excellent guide. I expected clients in different vlans to not be able to see (ping) each other but that is not the case. There must be a default bridge somewhere that connects all the VLANS. How do I prevent each VLAN from seeing the other VLANS. This would be a most excellent next step to build on this VLAN guide.
Hi, thank you so much for the tutorial! I did everything you explained and everything is working. I have two questions. Should I set firewall rules that should prevent clients in guest WiFi network from communicating with clients in the private WiFi network and whether a rule should be created that prevents clients in a WiFi private network from communicating with clients on a guest WiFi network?
Thank you for sharing this tutorial. Could you please show us, how to configure these under RouterOS 7.13? As we all know, wireless conception and menu are changed. Thanks.
Hi TSJ. Thanks for sharing this video brother, It has been extremely useful for me, not just this but all of them, I'm getting addicted to your channel. Can I ask you with software do you use for video capturing screen and the yellow/red colors in the interaction of the mouse pointer?
Which step correlates the Guest Wifi Virtual Interface with the VLAN ? Is it the one where you add both the VLAN and Guest Wifi Virtual interface to the Bridge ?
HI I configured second WiFi network for IOT purpose, without vlan. It works perfectly, is isolated from may basic network , I can connect from my network to IOT network but from IOT to my is blocked( set firewall rule) What is a benefit of using vlan ?
I would very much like to see a tutorial on VLAN trunking also. I find your way of explaining better than anyone I have found related to Mikrotik. Thank you for what you do!
could u do a video on how to create a VLan for a nano station M2 is connected to Mikro tik rounter and also the additional settings you have to enable to set up the VLan for the nano station using as a station remotely
HI thanks for your excellent video. At 2:40 did you forget to check the "Use Service Tag" checkbox or is it ok to leave it unchecked? Thanks and keep up the excellent work!
Hi I did this two times and I don't see the SSID active though it clearly shows it is enabled, I have also rebooted the router to no avail. Any ideas? My router is RouterBOARD 962UiGS-5HacT2HnT. Thanks!
Hello, thank you for this tutorial, If possible i would like to ask you one question, I did exactly the same thing as you did in video, everything works just fine but when I tried to use wireshark on VLAN the sniffed packets didnt have any VLAN ID in them, so my question is, did I messed up somewhere or does something strip the VLAN ID out of packet before it even reaches the wireshark ? Thank you for your answer
Could you please make a tutorial on how to set up CAPsMan ? Usually we have 2-3 APs at home and it is good if we can manager them centrally. thank you !
Hi, nice videos, thanks! I'm practicing to build a network in a 3 floor apartment to share internet with my neighbours. I'm doing with an RB750GL and i have connected one AP with 3 SSID with VLAN. I have 3 subnet with their ouwn DHCP server and all have internet. My problems is that the networks aren't isolated and all can see everyone. Eth1 has 192.168.1.2 conected to my default router 192.1681.1. Eth2 is 192.168.100.1 and is the lan where i have connected all AP (eth3, eth4, eth5 has master port on Eth2). My vlans 11,12,13 has their subnet 192.168.11.X, 192.168.12.X and 192.168.13.X given by the dhcp server on the mikrotik. How I can Isolate the Vlans to create a Lan in every floor? Thanks
firstly i wanna say thank you for your videos im learning and your vids are the best you explain everything, secondly i want to know what are the lease time cane you explain it you set it to 5 minutes what hapens after 5 minutes
May i ask, why when i click Wireless tap on the left side menu. I can not see the "wlan1". Is my routet brokend or do i have to enable it some here? Im using RB450. Thank you.
In the video you show adding the vlan20 to the virtual ap interface,and then the same vlan and virtual interface you set up in a bridge.Will this not create a loop?
Here you do some wrong. You are using two bridge_ports. One is connecting Guest_wlan and Bridge 20. The other is connecting Vlan20 and Bridge 20. The first bridge_port is doing nothing, so it can be removed. A better solution would be to remove the use VLAN tag on interface Guest_wlan (no tag), remove VLAN20 that connects to Guest_wlan and bridge_port connecting VLAN20/Bridge20. Then using only one bridge_port Guest_wlan/Bridge 20. This way you get an own guest network without needing to use VLAN tag at all.
Just got a mikrotik myself and been scratching my head over this VLAN stuff. It was easy on OpenWRT. I want the default untagged for all ports and tagged guest on one port for my AP. I can get the addresses out but my guest can't reach the internet. hmm
@@adeelhussain7092 forum.mikrotik.com/viewtopic.php?f=2&t=138232 This is how I set vlans (minus the dhcp and firewall rules, to keep it simple): /interface bridge add name=bridge1 protocol-mode=none vlan-filtering=yes /interface ethernet set [ find default-name=ether1 ] comment="UPLINK - TRUNK" set [ find default-name=ether2 ] comment="DOWNLINK - TRUNK" set [ find default-name=ether3 ] comment="DOWNLINK - TRUNK" set [ find default-name=ether4 ] comment="ACCESS PORT VL10" set [ find default-name=ether5 ] comment="ACCESS PORT VL98" (note: this doesn't do anything, purely information) /interface vlan add interface=bridge1 name="Network Device" vlan-id=3 add interface=bridge1 name="IT Admins" vlan-id=5 add interface=bridge1 name="Servers & Office" vlan-id=10 add interface=bridge1 name="CCTV" vlan-id=35 add interface=bridge1 name="Hotspot" vlan-id=98 /interface bridge port add bridge=bridge1 interface=ether1 add bridge=bridge1 interface=ether2 add bridge=bridge1 interface=ether3 add bridge=bridge1 interface=ether4 pvid=10 add bridge=bridge1 interface=ether5 pvid=98 /interface bridge vlan add bridge=bridge1 tagged=bridge1,ether1,ether2,ether3 vlan-ids=3,5,10,35,98 (note: trunk or hybrid ports add to tagged. Whatever you don't tag will automatically be assigned as access port. The native vlan for the access port will follow the pvid in interface bridge port) Note: Update your ROS version to the latest. About 1-1.5yr ago mikrotik changed the way bridge handles vlans. The old method had different bridges for different vlans. The new method only has one bridge for all vlans (my method above).
TKSja, can you please give a hand ? I´ve been trying to setup a "guest" Wifi using the same Wifi AP´s working today. My work Wifi have a 192.168.20.x range and i want that the guest use a 172.16.20.X . I setup the DHCP server to give the 172 ip addresses since i already have a DHCP server for my 192 network. My router is already configured with a secondary ip address in order to route the 172 connections to internet. It is possible to work this way, im using a RB951Ui-2HhD
Yo bro first of all very nice videos insanely helpfull, i got a question for you. I have a mikrotik router, and i made a hotspot bridge for ethernet 3 ( wich is my wireless ap ), ip range 192.168.6.x, and they are only able to use the internet for an hour this will be my guest network. But now i still want to use this acces point for my own internet aswell can i assign another iprange to that port? My wireless AP does support vlan, so can i make another vlan on the same port ( ethernet 3 ) so my other wireless network has another ip adress, subnet and wont let me go to the landing page that my guest network gives me? I know it might be a hard question but uve been very helpfull so far, so maybe you know this aswell. Thanks! Subbed liked
wiki.mikrotik.com/wiki/Manual:VLANs_on_Wireless That`s working. Only need remember, add port as " untagged" and select pvid in /bridge ports "click on properly interface" and in tab "vlan" type number: pvid (numeber vlan as untagged) In otherwise not working.
bro i follow your over gateway video but loadblancing is not work when i download some thing 1 wan traffic show and 2 wan is not working when i disable wan 1 then wan2 is working means failover working but not speed balancing can u help me through Teamviewer? i have 4+4 mb of Internet i need balance speed 8mb in idm how its possible?
Load balancing is not bonding, therefore you will not get the full speed by downloading a single. Because this uses PCC (Per Connection Classification), each connection (eg download) will go over WAN1 and if you start another then it will be done of the other WAN2. Try opening multiple UA-cam videos or downloads in separate browser windows and you will see both WAN 1 & 2 used.
TKSJa mean i need to configure my mikrotik as a bonding!! 2 different internet connection to mikrotik port 1 Wan 4mb and 4mb Wan 2 and Lan port 5 is output 8mb like that? how configure i need script!
get a fast vpn that allows multiple logins on the same user (or use a vps and setup multiple accounts for dialing in) create multiple vpn connections and bond them together.
john Lohan People who are on a guest network if properly implemented are not able to acces your router, server or other clients. This usually isnt like an in home scenario though
john Lohan he explains it perfectly in this video if u have seperate vlans the clients on the different vlan wont be able to communicate, you can also add rules to wired clients
When you have a chance I would love to see you illustrate the hotspot and paypal connection. so one can process payments through paypal. I think its the safests way cause i trust paypal and i don't wanna take physical vouchers. I have the link here if you perhaps wanna look at it. he info from wiki.mikrotik. I'm just struggling to follow. but i think you may explain it better while you do it. I'd love it if you can. (wiki.mikrotik.com/wiki/User_Manager/User_payments) If you scroll down the PayPal section will be about in the middle of the page.
Your work is amazing here my brother. Mikrotik is not fun and game and you make it simple. I have been looking for this for so long cause I didn't wanna let go of the mikrotik. I almost gave up. and today i just bumped into your videos and i was able to create a basic guest network in seconds. with no IT knowledge. because you are explaining as you do. love your wok my bro thank you.
You are welcome.
Thank you for your videos. Great work.
I wanted to ask you why it is needed to create a bridge and then put the vlan and wlan in it. What ia the diference between your solution and putting the ip and dhcp directly to the vlan20 interface.
So the simplest solution is just to create a wlan guest and assign ip and dhcp and if we need more secure environment we create a vlan on top of wlan and create the network we want...
Cant understand the need of the bridge. Looks like a loop
I was wondering the same thing. Is it a thing with routerOS? I was thinking Create bridge-guest and vlan20 then assign vssid to bridge-guest or something like that. Am i right? is the way you do more efficient?
Great Video as always but comparing this with the Guest WiFi tutorial (without any VLANs) one cannot understand the benefits. Could you explain which are the benefits of using VLAN? It seems that all the rest of the steps we need to do them.
Tu tutorial me ha ayudado a crear mi primer vlan, desde un router mikrotik configurado de fábrica, lo único que tuve que agregar en la lista de interface(interface list) el nuevo vlan bridge (en la LAN del Bridge general, sólo agregué a la lista este vlan bridge) para que me dejara pasar internet, pero todo muy bien...
Gracias
Awesome. Even though, the video was made in July 2017 and the OS has been updated multiple times since then, it still works (in December 2018). I have been searching for the correct way to set up VLAN for guests. Most are outdated. Only the guidelines mentioned in this video worked for me. I can't thank you enough.
Wow! the best, it's very clear and easy to understand. Thank you.
Thanks for providing this tutorial, very nice and understandable explanation.
You are welcome!
Thank you for the excellent guide. I expected clients in different vlans to not be able to see (ping) each other but that is not the case. There must be a default bridge somewhere that connects all the VLANS. How do I prevent each VLAN from seeing the other VLANS. This would be a most excellent next step to build on this VLAN guide.
I got this done. Use the firewall. Forward rule.
Hi, thank you so much for the tutorial! I did everything you explained and everything is working. I have two questions. Should I set firewall rules that should prevent clients in guest WiFi network from communicating with clients in the private WiFi network and whether a rule should be created that prevents clients in a WiFi private network from communicating with clients on a guest WiFi network?
This might help ua-cam.com/video/UsgJFhkHB9g/v-deo.html
Thanks for the video, really appreciate it!
Thank you for sharing this tutorial. Could you please show us, how to configure these under RouterOS 7.13? As we all know, wireless conception and menu are changed. Thanks.
Well, I'm a bit confused. What if I want a few ports of VLAN101 forward to VLAN202? Is it possible or are they completely unreachable?
Amazing, thanks for share the knowledge
You are welcome
wow what can i say you are the best at this thank you
What is the reason for putting a vlan and ap in bridge. What does the bridge do.
Declan Marks better vlan filtering in one bridge
Any chance of demonstrating VLAN in CAPsMAN?
Thanks for sharing this video. It has been quite useful to me, appreciated.
Hi TSJ. Thanks for sharing this video brother, It has been extremely useful for me, not just this but all of them, I'm getting addicted to your channel. Can I ask you with software do you use for video capturing screen and the yellow/red colors in the interaction of the mouse pointer?
Which step correlates the Guest Wifi Virtual Interface with the VLAN ? Is it the one where you add both the VLAN and Guest Wifi Virtual interface to the Bridge ?
HI I configured second WiFi network for IOT purpose, without vlan. It works perfectly, is isolated from may basic network , I can connect from
my network to IOT network but from IOT to my is blocked( set firewall rule) What is a benefit of using vlan ?
Hi Ja, this is using a Mikrotik router which has built in WiFi correct? What about a router with no wifi, which uses external Wireless Access Points?
Hey there. Great video. Is there a possible way of isolating the two networks so one cannot connect to the other. At the moment i can ping the two.
Great vídeo, do you know If this configuration work with UniFi access point?
Thanks for the video!
hi thanks for this, could you pliz do a video on mpls configurations on mikrotik
love this. helped me. thanks
Awesome tutorials, thank you for taking the time to make them. Will you be make a tutorial for VLAN trunking?
I would very much like to see a tutorial on VLAN trunking also. I find your way of explaining better than anyone I have found related to Mikrotik. Thank you for what you do!
Thank you very much for this tutorial and all your tutorials. I am studying them in order to better customize my MikroTik router. ^^
Better bridge vlan filtering. Newer configurations this is. Instead obsolete bridge +vlan
Hi, I'm still learning and a bit new to mikrotik. But I followed all the steps, but I can not see the wireless SSID on my wireless devices
Thank you for help
Very good this video! Parabéns! Brasil!
could u do a video on how to create a VLan for a nano station M2 is connected to Mikro tik rounter and also the additional settings you have to enable to set up the VLan for the nano station using as a station remotely
Thank you for the vidéo.
You are welcome
Vlan to end-devices should be untagged. If is select "tag" this devices not connect, with this interface.
TKSJa How are you? hope you're fine, inform us what happen to you. Pls. don't leave us, we really need you dude, we really love your tutorials.
HI thanks for your excellent video. At 2:40 did you forget to check the "Use Service Tag" checkbox or is it ok to leave it unchecked? Thanks and keep up the excellent work!
Hi I did this two times and I don't see the SSID active though it clearly shows it is enabled, I have also rebooted the router to no avail. Any ideas? My router is RouterBOARD 962UiGS-5HacT2HnT. Thanks!
Hello, thank you for this tutorial, If possible i would like to ask you one question, I did exactly the same thing as you did in video, everything works just fine but when I tried to use wireshark on VLAN the sniffed packets didnt have any VLAN ID in them, so my question is, did I messed up somewhere or does something strip the VLAN ID out of packet before it even reaches the wireshark ? Thank you for your answer
I have noticed this also, I think it is because we are using only one router so everything happens internally to the bridge.
Could you please make a tutorial on how to set up CAPsMan ? Usually we have 2-3 APs at home and it is good if we can manager them centrally. thank you !
Noted.
Hi, nice videos, thanks! I'm practicing to build a network in a 3 floor apartment to share internet with my neighbours. I'm doing with an RB750GL and i have connected one AP with 3 SSID with VLAN. I have 3 subnet with their ouwn DHCP server and all have internet. My problems is that the networks aren't isolated and all can see everyone. Eth1 has 192.168.1.2 conected to my default router 192.1681.1. Eth2 is 192.168.100.1 and is the lan where i have connected all AP (eth3, eth4, eth5 has master port on Eth2). My vlans 11,12,13 has their subnet 192.168.11.X, 192.168.12.X and 192.168.13.X given by the dhcp server on the mikrotik. How I can Isolate the Vlans to create a Lan in every floor? Thanks
firstly i wanna say thank you for your videos im learning and your vids are the best you explain everything, secondly i want to know what are the lease time cane you explain it you set it to 5 minutes what hapens after 5 minutes
Hello. I am looking for something like this vlan via wifi. What model is this? Thanks.
May i ask, why when i click Wireless tap on the left side menu. I can not see the "wlan1".
Is my routet brokend or do i have to enable it some here? Im using RB450.
Thank you.
+Tan pn This router does not have WiFi.
The guest wifi doesn't have Internet access.
Same As Tutorial 86... no internet access for Guest Wifi!
Strange
In my case, it helped: disabled "drop" rule for "forward" :)
What is the default setting of wlan1? station or AP bridge???
In the video you show adding the vlan20 to the virtual ap interface,and then the same vlan and virtual interface you set up in a bridge.Will this not create a loop?
No it shouldn't, you can try it with and without and let me know.
Here you do some wrong. You are using two bridge_ports. One is connecting Guest_wlan and Bridge 20. The other is connecting Vlan20 and Bridge 20. The first bridge_port is doing nothing, so it can be removed. A better solution would be to remove the use VLAN tag on interface Guest_wlan (no tag), remove VLAN20 that connects to Guest_wlan and bridge_port connecting VLAN20/Bridge20. Then using only one bridge_port Guest_wlan/Bridge 20. This way you get an own guest network without needing to use VLAN tag at all.
When I connect to that wifi, I don't have internet...???
Why did you create a new bridge for vl20 instead of adding it to the existing bridge. Is this based on the older Ros version?
Just got a mikrotik myself and been scratching my head over this VLAN stuff. It was easy on OpenWRT. I want the default untagged for all ports and tagged guest on one port for my AP. I can get the addresses out but my guest can't reach the internet. hmm
@@adeelhussain7092
forum.mikrotik.com/viewtopic.php?f=2&t=138232
This is how I set vlans (minus the dhcp and firewall rules, to keep it simple):
/interface bridge
add name=bridge1 protocol-mode=none vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] comment="UPLINK - TRUNK"
set [ find default-name=ether2 ] comment="DOWNLINK - TRUNK"
set [ find default-name=ether3 ] comment="DOWNLINK - TRUNK"
set [ find default-name=ether4 ] comment="ACCESS PORT VL10"
set [ find default-name=ether5 ] comment="ACCESS PORT VL98"
(note: this doesn't do anything, purely information)
/interface vlan
add interface=bridge1 name="Network Device" vlan-id=3
add interface=bridge1 name="IT Admins" vlan-id=5
add interface=bridge1 name="Servers & Office" vlan-id=10
add interface=bridge1 name="CCTV" vlan-id=35
add interface=bridge1 name="Hotspot" vlan-id=98
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4 pvid=10
add bridge=bridge1 interface=ether5 pvid=98
/interface bridge vlan
add bridge=bridge1 tagged=bridge1,ether1,ether2,ether3 vlan-ids=3,5,10,35,98
(note: trunk or hybrid ports add to tagged. Whatever you don't tag will automatically be assigned as access port. The native vlan for the access port will follow the pvid in interface bridge port)
Note: Update your ROS version to the latest. About 1-1.5yr ago mikrotik changed the way bridge handles vlans. The old method had different bridges for different vlans. The new method only has one bridge for all vlans (my method above).
hi!!! please how to assign an ip address to a CAP interface in the CAPs Manager router?
Hmm . Just create virtual Wlan. Than create IP also dhcp ... than assign interface to virtual Wlan.
Why bother create vlan ?
Did i miss something ?
Security? Separate trusted traffic from potentially untrusted?
Nice!
TKSja, can you please give a hand ? I´ve been trying to setup a "guest" Wifi using the same Wifi AP´s working today. My work Wifi have a 192.168.20.x range and i want that the guest use a 172.16.20.X . I setup the DHCP server to give the 172 ip addresses since i already have a DHCP server for my 192 network. My router is already configured with a secondary ip address in order to route the 172 connections to internet. It is possible to work this way, im using a RB951Ui-2HhD
Yes it can work that way without any issues.
Does this also give you a direct vlan connection through ethernet cable?
No
Yo bro first of all very nice videos insanely helpfull, i got a question for you.
I have a mikrotik router, and i made a hotspot bridge for ethernet 3 ( wich is my wireless ap ), ip range 192.168.6.x, and they are only able to use the internet for an hour this will be my guest network.
But now i still want to use this acces point for my own internet aswell can i assign another iprange to that port? My wireless AP does support vlan, so can i make another vlan on the same port ( ethernet 3 ) so my other wireless network has another ip adress, subnet and wont let me go to the landing page that my guest network gives me?
I know it might be a hard question but uve been very helpfull so far, so maybe you know this aswell.
Thanks! Subbed liked
These video should help
MikroTik Tutorial 7 - ua-cam.com/video/XJlSnpTrbyg/v-deo.html & ua-cam.com/video/vkOg6J5_naI/v-deo.html
MikroTik Tutorial 12 - ua-cam.com/video/6G6dWF1nipY/v-deo.html
MikroTik Tutorial 41 - ua-cam.com/video/QlCC5b7dSlI/v-deo.html
for guest must configure firewall ..
Thanks :)
You are welcome
wiki.mikrotik.com/wiki/Manual:VLANs_on_Wireless
That`s working. Only need remember, add port as " untagged" and select pvid in /bridge ports "click on properly interface" and in tab "vlan" type number: pvid (numeber vlan as untagged)
In otherwise not working.
Hi, is it possible to set a time limit for each guest that logs into the network.
This feature is only available when you are running a Hotspot.
are you from harvard?
cause you know you are a machine men
how to increase dhcp lease time in mikrotik my lease time is 00:10:00
How would I configure a trunk port in RouterOS? For example, I need several VLAN tags on mikrotik to talk to the VLANs i've created in pfSense?
Dave Robson Read wiki.mikrotik.com there find all information.
hi how can register for training
This is just two bridges, the VLAN is redundant.
There is no need to click "apply" when you plan to follow it up immediately with "OK", you clearly don't know what the difference is between the two.
bro i follow your over gateway video but loadblancing is not work when i download some thing 1 wan traffic show and 2 wan is not working when i disable wan 1 then wan2 is working means failover working but not speed balancing can u help me through Teamviewer? i have 4+4 mb of Internet i need balance speed 8mb in idm how its possible?
Load balancing is not bonding, therefore you will not get the full speed by downloading a single. Because this uses PCC (Per Connection Classification), each connection (eg download) will go over WAN1 and if you start another then it will be done of the other WAN2. Try opening multiple UA-cam videos or downloads in separate browser windows and you will see both WAN 1 & 2 used.
TKSJa i have two connection 4mb + 4mb i need to combine the speed and output in one lan in idm 8mb shows how its possible?? which method i use??
+Hassan Zaheer Tutorials حسن ظہیرسبق Bonding
TKSJa mean i need to configure my mikrotik as a bonding!! 2 different internet connection to mikrotik port 1 Wan 4mb and 4mb Wan 2 and Lan port 5 is output 8mb like that? how configure i need script!
get a fast vpn that allows multiple logins on the same user (or use a vps and setup multiple accounts for dialing in) create multiple vpn connections and bond them together.
Why DNS on DHCP 8.8.8.8? and 8.8.4.4?
Why did you call VLAN ID 20 ?
The DNS is just preference. In order for vlan to communicate they must have the same ID.
Please what is the important of guest wifi ?
Segmenting your network for better security.
Please can you explain me very what you say by segmenting my network for better for security ?
john Lohan People who are on a guest network if properly implemented are not able to acces your router, server or other clients. This usually isnt like an in home scenario though
nandozieee trachiostoma is it possible to the wired clients ?
john Lohan he explains it perfectly in this video if u have seperate vlans the clients on the different vlan wont be able to communicate, you can also add rules to wired clients
When you have a chance I would love to see you illustrate the hotspot and paypal connection. so one can process payments through paypal. I think its the safests way cause i trust paypal and i don't wanna take physical vouchers. I have the link here if you perhaps wanna look at it. he info from wiki.mikrotik. I'm just struggling to follow. but i think you may explain it better while you do it. I'd love it if you can. (wiki.mikrotik.com/wiki/User_Manager/User_payments) If you scroll down the PayPal section will be about in the middle of the page.
noted
hi my freind.
how apply this to all interface? I want to configure this guest on LAN and Wifi user!!!
reply please