Hi, is it possible to install plugins with mikrotik router running openwrt?
Need network wide adblock badly...

I think it is about time you redo your VLAN config. Multiple bridges is so 5 years ago. One bridge to rule them all.

People, I got TM VoIP working on Android phone again.
This is despite they closed the loophole by simply disabling VLAN 400 from being forwarded to LAN 1.

The technique is simple, and works even better than last time because we no longer need to dstnat to the Android phone.
The reason is because it was double NAT. Once on the Mikrotik, the second time on the ONU. Yes, the ONU actually perform NAT on the VoIP VLAN.

First add 2 static route in the ONU. Assuming:
192.168.88.0/24 = Your daily usage network
192.168.1.1 = ONU IP Address
192.168.1.10 = Router IP Address

If your setup is different, adjust accordingly. Here is the screenshot of the ONU static routing



After you are done, add a static route to your router. It will work on any router this time since no NAT is required.



Android phone configuration unchanged. Just make call.

it is even better now. If you can VPN home, you can make call via TM number. Previously this cannot be done due to the need for dstnat.

Forwarding VLAN 400 no longer works because TM no longer tag it.
No, the NAT rule is no longer required because we are doing pure routing.
Technically when you add a static route to both the ONU and your Mikrotik, it is not on WAN Interface List, unless you annotate it that way. If so, then you need to adjust your firewall rules accordingly.
The reason is your PPPoE is the WAN link. But the native VLAN of the port itself is not a WAN link.

I have since updated my static route setting by not specifying the default gateway. Reason is I noticed they do change and render the route invalid. Specifying the interface is enough for it to work. Also note my route for Wireguard.