It's kicked off again this week, 172,000 requires for cloud.mikrotik.com to our DNS provider and a tonne to Google's public DNS too.

In the DNS traffic flare reported in the recent posts (October), the Mikrotik boxes are running 6.43.2. Curiously, the number of DNS requests made for cloud.mikrotik.com has gone back done to the background level: The only changes on the box in that time is to use the force update cloud option and t...

I've configured all 3 Mikrotik boxes on our network to sniff DNS traffic and forward it a host running tcpdump. The requests for cloud.mikrotik.com appear directly on the PPPoE interface of that's our link to the external world. No requests at all from the two other Mikrotik routers acting as bridge...

Puzzling update. For no obvious reason, my mikrotik hardware with IP/cloud disabled is back to generating tens of thousands of DNS requests to cloud.mikrotik.com. So far today 129,442 DNS requests for cloud.mikrotik.com and yesterday 88,907. Two days ago it was idling at 1,442 requests per day and t...

As a follow-up, the rate of DNS requests for cloud.mikrotik.com reported by OpenDNS has dropped down to just 1400 per day. It appears to have done this just at the time I started streaming packet captures. I have no traces with the peak rate. In those traces, I see queries for cloud.mikrotik.com goi...

Thanks Steve I think I'm starting from about where you suggest: /ip cloud print ddns-enabled: no update-time: no /system ntp client print enabled: yes primary-ntp: 139.143.5.30 secondary-ntp: 193.150.34.2 server-dns-names: mode: unicast poll-interval: 15m active-server: 193.150.34.2 last-update-from...

Hi all We have 2 mikrotik routers in our home - a Hex POE and a Wap AC. We just move home and ISP and switched to use OpenDNS to provide family controls. OpenDNS provides stats on number of DNS queries. For the four days since we've moved to OpenDNS we have ~172,800 DNS lookups per day for cloud.mik...

Yes, the homes affected are quite close to a common transformer. The HomePlug AV generation adapter advertise 300m reach and I'd estimate that there's less than 30m of cabling from either home to the transformer. I thought it was quite interesting tracking this issue down so have written it up publi...

We were feeding the neighbours cats today so I took a look at their networking setup: 1) Their ISP provided router has the MAC address of the router advertising IPv6. The ISP says they do not support IPv6 for consumers. 2) The neighbour has Trendnet AV Homeplug adapters, we have TP-Link. The hole se...

GOT HOMEPLUG? ALWAYS, ALWAYS CHANGE YOUR HOMEPLUG NETWORK NAME! <tl;dr> Sorry folks, this is nothing to do with any Mikrotik gear. It appears to stem from the use HomePlugAV in the house to extend ethernet into other rooms. Changing the HomePlug network name appears to have removed this issue. I wa...

The image URL is a filtered snapshot from wireshark:
https://pasteboard.co/GB4H7n5.png

Looking a bit closer, it looks like there is a device on the network that will unexpectedly tunnel IPv6. https://pasteboard.co/GB4H7n5.png The network is configure as 10.0.0.0/24. But there's a device with a SAGEM OUI mac address that ARPs for 192.168.1.0/24 address. The mac address of this device i...

The thought that this might be a weird tunneling interaction, but if I capture the traffic with a port mirroring switch I see IPv6 native traffic on the wire in wireshark looking at the mirrored port, e.g. 167 8.371006 2a00:23c4:7329:f400:24a3:77:a96c:d0d6 2a00:1450:4009:80f::200e ICMPv6 94 Echo (pi...

Hi folks We noticed our router seems to be forwarding IPv6 over our PPPoE connection to the outside world. This was a bit surprising as we had not enabled IPv6 nor installed the module. We installed the module and disabled everything and attempted to block it in the firewall and still we seem to hav...

Current OS: 6.39.2
Current Firmware: 3.34

Hello I've been using a Hex POE at home and in comparison to the ISP provided router, we see way more issues with TCP streams having out-of-order packets and duplicate ACKs. I've been capturing traces with a mirroring switch that lie between an XBox One and the router-under-test. I'm running the Xbo...

Thanks for flagging this, I've got that as #0 rule now.

It's been great getting all the help here today, everyone's input has been super helpful. There's a bit of a steep learning curve with the gear, but I'm pretty excited about it.

Best regards
mrzipf

Awesome! That does the trick. Thank you for the help here, much appreciated.
mrzipf

Hi, I have this in the config: [admin@MikroTik] /ip firewall nat> print Flags: X - disabled, I - invalid, D - dynamic 0 chain=srcnat action=masquerade out-interface=ether1 log=no log-prefix="" which I got from https://wiki.mikrotik.com/wiki/How_to_configure_a_home_router#Masquerade Does th...

Hi folks First day with a hap ac lite. I'm trying to use it as a home router with an ISP that we connect to via pppoe. I've managedmake it work as an access point hanging off the hardware we're retiring, and can set up the pppoe client okay, but can't get traffic flowing from hosts on the home netwo...

Okay, just found I put the IP address rather than the MAC address into the "Connect To:" box the right thing happens.

Thanks.

Network addresses on the PC are: Ethernet adapter Ethernet: Connection-specific DNS Suffix . : Link-local IPv6 Address . . . . . : fe80::b453:e134:b7ff:85c1%9 IPv4 Address. . . . . . . . . . . : 192.168.1.37 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.16...

Aha, appears on ether 2, thank you!

However, I get "ERROR: could not connect to 192.168.88.1" when attempting to connect now.

Hi folks I've have my first outing with a hap ac lite this morning and it's ended up in a state where WinBox 3.11 doesn't list the device. I've tried the obvious stuff: 1) power cycling 2) changing cables 3) checking windows firewall (and deleting and re-enabling there). 4) tried a reset with the bu...