...
MLAG (Multi-chassis Link Aggregation Group) implementation in RouterOS allows configuring LACP bonds on two separate devices, while the client device believes to be connected on to the same machine. This provides a physical redundancy in case of switch failure. All CRS3xx, CRS5xx series switches, and CCR2116, CCR2216 devices can be configured with MLAG using the RouterOS version 7.
Both peers establish the MLAG interfaces and update the bridge host table over peer-port using ICCP (Inter Chassis Control Protocol). RouterOS ICCP does not require an IP configuration, but it should be isolated from the rest of the network using a dedicated untagged VLAN. This untagged VLAN can be configured with vlan-filtering and pvid. Peer ports can also be configured as LACP bonding interfaces.
...
When peer-port is running and ICCP is established, the primary device election happens. The peer with the lowest bridge MAC address will be acting as a primary device and system-id will be selected. This system-id is used for STP BPDU bridge identifier and LACP system ID. The MLAG requires enabled STP or RSTP protocol, the MSTP is not supported. Use the same STP priority and the same STP configuration on dual-connected bridge ports on both nodes. When MLAG bridges are elected as STP root, then both devices will show as root bridges under the bridge monitor.
| Info |
|---|
The MLAG is not compatible with L3 hardware offloading. When using MLAG, the L3 hardware offloading must be disabled. |
...
| Code Block | ||
|---|---|---|
| ||
# Peer1 /interface bridge add name=bridge1 vlan-filtering=yes /interface bridge port add bridge=bridge1 interface=sfp-sfpplus1 pvid=99 add bridge=bridge1 interface=client-bond # Peer2 /interface bridge add name=bridge1 vlan-filtering=yes /interface bridge port add bridge=bridge1 interface=sfp-sfpplus1 pvid=99 add bridge=bridge1 interface=client-bond |
| Warning |
|---|
The MLAG requires enabled STP or RSTP protocol, the MSTP is not supported. Use the same STP priority and the same STP configuration on dual-connected bridge ports on both nodes. |
In this example, client-bond interfaces are using the default untagged VLAN 1 (the default pvid=1 is set). In order to send these packets over peer ports, we need to add them as tagged VLAN 1 members. Notice that the default pvid value for the peer ports was changed in the previous step, it is important to include the peer ports in all the VLANs that are used on other bridge ports, this includes the untagged and tagged VLANs. Below are configuration commands for both peer devices:
...
Property | Description |
|---|---|
| status (connected | connecting | disabled) | The MLAG status. |
system-id (MAC address) | The lowest MAC address between both peer bridges will be used as the system-id. This system-id is used for (R)STP BPDU bridge identifier and LACP system ID. |
active-role (primary | secondary) | The peer with the lowest bridge MAC address will be acting as a primary device. The |
Sub-menu: /interface bonding
...