I'm using SwOS lite 2.17 on a MikroTik CSS610-8G-2S+IN Switch. The switch is new and it's my first MirkoTik. Better late than never!
- Port nr. 7 is connected to the LAN port of a standard internet router (Fritzbox 5530).
- Port nr. 7 is configured to be a member of VLAN 34 only (no other VLAN selected) in strict mode/only untagged/default VLAN ID 34/force VLAN ID disabled
- Ports 1&2 are configured as LAG 1 being member of all VLANs (tagged only). They are connected to another switch.
Now I discovered that the Fritzbox received their DHCP requests although Port 7 is strict and not a member of any of these VLANs. I wiresharked it, filtered for that printer's MAC and discovered this: The broadcast packets received in VLAN 3057 on LAG1 are emitted on port 7 although port 7 is not a member of that VLAN: For me at first glance it looks like a bug in SwOS that violates the separation of broadcast domains? Of course I'm considering an error in ISO/OSI layer 8, so my question: Is there some setting I might have overlooked or some concept I might have misunderstood?
I found some reports in this forum about IVL, but I don't have duplicate mac addresses.
If somebody could give me a hint would be great! Thank you & cheers!
Sumpfdotter
--
Addition:
I reproduced this behaviour with pretty default settings: I reset the switch completely and attached only two devices to it. Then I emitted the broadcast packet I caputered (tagged for VLAN 3057) on one device and I received it with the other - that's okay because in default settings all ports are in VLAN mode "optional". Now I set the receiving port to "strict/untagged only" and assigned it to Default VLAN ID 2. Now VLAN 3057 MUST not be received by that port anymore, right? But it did - that dedicated broadcast package was transmitted again. I will file a bug attaching all the files. Support ticket SUP-142030.
