Tony_C, see this thread for a possible solution (you can combine the Mgmt VLAN 100 with VLAN 1 which corresponds to VLAN 20 in the linked thread). The trick is to use a Mgmt VLAN on the CPEs to force the CPE handling VLAN-tagged frames. You can also set the Mgmt VLAN of EAPs to avoid untagged frames on trunks at all, so the PVIDs of the trunk ports don't matter.

Tony_C wrote

After reding this article, I tried to pull the private network out of the default VLAN 1 and make it VLAN 10 and set the managemnet to VLAN 10. As soon as I did this, I lost complete communication with the CPE's and EAP and no trafiic at all seemed to flow.

No, leave the private network in VLAN 1 and set management VLAN to 1 (just combine private and management networks).

If you want to use VLAN 10 instead, you would need to change all access ports on your switch for the private network to VLAN 10 / PVID 10. Before doing so, just assign one (access) port of the switch to VLAN 10/PVID 10 and change your laptop's connection from the port in VLAN 1/PVID 1 to the port in VLAN 10/PVID 10 to have access to the CPEs.

I just did use other VLAN numbers b/c I don't use VLAN 1 at all and I use a separate network only for management, but you can leave all as is with your VLANs if you already use VLAN 1 for the private network. You then must set the management VLAN to 1, too, b/c the EAPs and CPEs itself (not only the WLAN for the private network) are in the private network in your config.

There is nothing wrong with your setup using VLAN 1.

Tony_C wrote

The devices in VLAN 1 sometimes cannot get a valid IP address either

Are you sure this is caused by the directional link of the CPEs? What is the evidence you have for this? Packet loss? If so, it should appear on other occasions, too. If it is really packet loss, you can load the CPE status page and check signal quality and other parameters at the time this packet loss happens. It's difficult to say what causes packet loss w/o further investigation.

Common recommendations are to set the parameters correctly and – most important – align the CPE's antennas properly. Use the antenna alignment tool to adjust them. You also need a free line of sight, that means there must be no obstacles whatsoever in between the two CPEs. Use following wireless parameters:

• WiFi mode: 802.11n-only,
• Channel: either Auto or the most unused channel (check using built-in WiFi survey),
• Channel width: 20 MHz,
• MAXtream: disabled,
• Distance setting: either Auto or actual distance + 0.1km.

If the link is still unreliable, there could be to much interferences, e.g. in a dense-populated area. Also make sure that the EAP110-OD does not interfere with the CPE210. Use different channels for both EAP and CPE. You can aslso use the built-in spectrum analyzer of the CPE210 to view channel usage at your location.

Tony_C wrote

I get a call from the holiday camp saying that all syatems are down, they are connected to the AP but are receiving no IP address. Fortunately the guy in charge is quite IT savvy and does his own analysis before calling me.

Tell him to set a static IP to his laptop/PC next time and to try whether the the remote CPE and the router can be pinged. If yes, the issue is caused by the DHCP server. If no, the wireless link might be down (would be the next step to test when DHCP fails).