AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers
75
RouterOS v3 Configuration and User Guide
4.4
VLAN Interfaces
Document revision:
1.2 (Mon Sep 19 13:46:34 GMT 2005)
Applies to:
V2.9
4.4.1
General Information
Summary
VLAN is an implementation of the 802.1Q VLAN protocol for RouterOS. It allows you to have multiple
Virtual LANs on a single ethernet or wireless interface, giving the ability to segregate LANs efficiently. It
supports up to 4095 vlan interfaces, each with a unique VLAN ID, per ethernet device.
A VLAN is a logical grouping that allows end users to communicate as if they were physically connected
to a single isolated LAN, independent of the physical configuration of the network. VLAN support adds a
new dimension of security and cost savings permitting the sharing of a physical network while logically
maintaining separation among unrelated users.
Specifications
Packages required:
system
License required:
Level1 (limited to 1 vlan)
,
Level3
Submenu level:
/interface vlan
Standards and Technologies:
VLAN (IEEE 802.1Q)
Hardware usage:
Not significant
Related Topics
•
IP Addresses and ARP
Description
VLANs are simply a way of grouping a set of switch ports together so that they form a logical network,
separate from any other such group. It may also be understood as breaking one physical switch into
several independent parts. Within a single switch this is straightforward local configuration. When the
VLAN extends over more than one switch, the inter-switch links have to become trunks, on which
packets are tagged to indicate which VLAN they belong to.
You can use RouterOS to mark these packets as well as to accept and route marked ones.
As VLAN works on OSI Layer 2, it can be used just as any other network interface without any
restrictions. VLAN successfully passes through regular Ethernet bridges.
You can also transport VLANs over wireless links and put multiple VLAN interfaces on a single wireless
interface. Note that as VLAN is not a full tunnel protocol (i.e., it does not have additional fields to
transport MAC addresses of sender and recipient), the same limitation applies to bridging over VLAN as
to bridging plain wireless interfaces. In other words, while wireless clients may participate in VLANs put
on wireless interfaces, it is not possible to have VLAN put on a wireless interface in
station
mode
bridged with any other interface.
Additional resources
http://www.ieee802.org/1/pages/802.1Q.html
http://en.wikipedia.org/wiki/IEEE_802.1Q
4.4.2
VLAN Setup
Submenu level:
/interface vlan
Property Description
arp
(disabled | enabled | proxy-arp | reply-only; default:
enabled
) - Address Resolution Protocol mode
disabled
- the interface will not use ARP protocol
enabled
- the interface will fully use ARP protocol
proxy-arp
- the interface will be an ARP proxy