[ho1Aetoo]

It looks correct at first glance, but you can't see all the settings.

The VAPs must not have an IP address and must be set to “default.”

Otherwise, you can give the WLAN client a manual IP address and see if it connects (to rule out a DHCP problem).

You should also try it without SFE/NSS stuff. (This is known to cause strange problems.)

I've also read about a lot of problems in the current build threads regarding the mr7350 – so who knows?

[foz111]

Thanks for looking and replying ho1Aetoo.
Sorry didn't post images as the config was the same as your pics above apart from the vlan id's.

Correct, the problematic VAP's are default (bridged) in wireless interface
I have a VAP wlan0.4, set up as unbridged with IP in wireless interface and dhcpd to test & that works as expected.

DHCP doesn't seem to be the issue, because if I add the VAPs to vlan id 1 they connect and work as expected, I assume the issue was a DD-WRT firmware issue somewhere, I have the same problem with the same config on my spare Dynalink that I have tried so it's not just on this mr7350 router.

One thing i noticed, may not be related, but maybe, on the mr7350 from a factory reset the wpa3 doesn't seem to work on wlan0 & wlan1 (like its the wrong password) but if I configure them to wpa2 and then use wpa3 on wlan0.1 & 1.1 VAP's they connect fine.

But the problematic vlan's, I've tried/tested WPA2, 3 and even without shared key any and they still don't connect once there added to 15 or 16

Tested all forms of SFE, currently disabled, with QCA NSS enabled, none allow the problematic vaps to connect from my testing.

[ho1Aetoo]

Well, br0 is a different VLAN and has a different DHCP server.
To rule out VLAN and DHCP problems, assign the clients a manual IP address and see if they connect...
(this is how you do it)

If the VAPs ever had an IP address, it must be deleted in the settings (the default setting is not sufficient).

If an IP address is stored in the GUI, it must be deleted..

[foz111]

The VLAN's work correctly over Ethernet, giving out the correct IP's so I don't believe that dhcp is the issue, but I will test later giving a wireless client a static IP on the correct subnet just to see if that lets it connect.

Has been reconfigured after nvram erase && reboot a few times as has the Dynalink with the same issue so shouldn't have any stuck nvram settings left over.

Added: Giving a wireless client a fixed IP on the correct subnet, still throws me out prompting me as if the password is incorrect.

[ho1Aetoo]

Then it seems to be something specific to the router.
It seems that something is not working properly with the WLAN and virtual WLAN interfaces in the newer builds for the AX routers.

As I said, I have no idea.
I've only read in the build threads that several people have reported such problems.

[foz111]

Agreed and confirmed. Same config working correctly on R7800 DD-WRT v3.0-r61981 std (07/29/25)
seems an ax router issue, hopefully BS will find this thread and fix issue that seems to have been an issue for some builds now

[mflorezm]

Hi Guys,

I have a linksys EA8500 too. So, if not possible to config DSA on AX MX4200, I will try on EA8500.

my ISP needs tagged VLANID 100 (PPPoE) and tagged VLANID 101 for VoIp. Wan.100 is working with PPPoE but I need way to connect VLAN101 on the same WAN and link it LAN1 port as it was working on old R8500.

Attached is my netgear R8500 working VLAN config if anyone can take a look and help me to achieve the same result as the image below on EA8500.

Thanks,

Mauricio F.

[foz111]

4 months on and DSA still broken on ax routers, is this ever going to get fixed? seems odd that it works as it should on r7800 but never fixed on the later ax routers.