MikroTik

moham96

It's not exactly clean either, but it looks like VRRP can be misused not only for multiple DHCP clients, but also for multiple PPPoE clients: /interface vrrp add interface=wan name=vrrp10 v3-protocol=ipv6 vrid=10 add interface=wan name=vrrp11 v3-protocol=ipv6 vrid=11 add interface=wan name=vrrp12 v...

moham96

Can this be achieved by `limit` and `dst-limit` of the mangle mark connection rules of the pcc config?
looking at the docs they seem to be useful in my use case but I don't really understand the parameters that well so not sure if that would help

moham96

/routing/rule
add routing-mark=pppoe1 action=lookup-only-in-table table=pppoe1
add routing-mark=pppoe2 action=lookup-only-in-table table=pppoe2

That seems to work, thanks

moham96

Hello, I have multiple WANs and I'm using them in a PCC load balancing configuration but I noticed that my ISP has set up some sort of burst speed so when I start to download a file I get something like 10x the real speed of the line for a second or two and then the speed drops to the real line spee...

moham96

Any help?

moham96

Hello, I have multiple pppoe-clients running on my device, one of them is set as default and would provide internet connection to devices connected to LAN, the other clients have `add-default-route=no` and i have prerouting rules to mark the traffic from a specifc LAN segment to the corresponding pp...

moham96

Are you using the PPPoE client to establish a WAN connection? If so, why would you put a PPPoE client on a bridge rather than an individual interface? I'm afraid I don't understand the use-case, could you explain it in a little more detail? The reason is because i have multiple subscriptions and in...

moham96

Hello,
I have the ISP line through ether5 to my router, if i setup a pppoe-client on ether5 then it works fine, but if i put ether5 in a bridge and run the pppoe-client on that bridge then it doesn't work, the AC doesn't even reply to the `PADI` packets

Regards

moham96

Hello, I have 8 PPPoE accounts, all from the same ISP, I want to add these PPPoE clients and let them run on the same interface, unfortunately the PPPoE server doesn't like multiple PPPoE connection with the same mac address, a workaround is to make a bridge over the interface and then i can change ...

moham96

Hi, I used the `Lease script example` in the wiki and it's working fine, when i click enable on the dhcp-client i see that the route is added and also see in the log "route added", when i click disable i see the route is removed and the log says "route removed" so far so good. no...

moham96

..., so obviously my ISP is using dst-nat to redirect all request on port 53 to their own servers, ... - router has 208.67.222.222 (on port 53) as a resolver from the router dns settings(obviously not dst-nated) so it connect to 208.67.222.222 directly through the 53 port So the question is, does r...

moham96

The issue of course is that he wants to use opendns via port 5353. It is not possible to set that in the route DNS resolver, only the server can be specified and not the port number. That should really be fixed by MikroTik, That won't be easy to fix, if the routerboard advertises the dns settings w...

moham96

I'm not a fan of that hack either. :) But what I'm trying to say is that as it is now: - client doesn't use router as resolver - router doesn't use the same resolver as client So getting different addresses for same hostname (which uses CDN) is very possible. hmmm, right now i have the dst-nat to t...

moham96

Problem is, it doesn't do what you think. You need the router to use the right resolver (i.e. not ISP's) and client to use router (default is 192.168.88.1; you can have different config) as resolver. What actually happens is that when client gets 192.168.88.1 and tries to use it, dstnat forwards al...

moham96

How about adding "use peer DNS" to the OVPN Client similar to other clients like PPPoE and dhcp client, right now when i establish a connection to the openvpn server I'm forced to have the advertised openvpn dns server, I can disable the dns server on the openvpn server but I would like ot...

moham96

@pe1chl @Sob I probably should've explained why I'm using dst-nat, the reason is that my ISP is advertising his own dns server that they use to block some sites(e.g protonmail.com resolves to 127.0.0.1) and even if i set another resolver i get the same DNS record, so obviously my ISP is using dst-na...

moham96

Akamai is CDN, i.e. huge network with servers all over the world, doing load balancing and stuff. Everything is dynamic. Address of given website is CNAME with decent TTL, but target e7772.g.akamaiedge.net really has only 20 seconds TTL. You might get the same address again and usually you will, bu...

moham96

That is the issue that Sob mentioned above. You need to carefully read and understand it. Basically, this method is not going to work for what you want to do unless you use the MikroTik DNS resolver on all your internal systems. Having "the same DNS server" is NOT going to cut it! You nee...

moham96

I've face another problem, I'm trying to apply a mangle rule to this site: http://processors.wiki.ti.com but I can never get it to work,If I add processors.wiki.ti.com to the address list it adds the ip "23.9.34.154" but if i ping or run dns lookup on the hostname my laptop shows the follo...

moham96

W.r.t. your other suggestion: you have to understand that this method of setting up an address list is not at all related to actual traffic. The DNS queries are made (once everytime the TTL runs down to zero) no matter if there is any related traffic, and any traffic only matches what is in the add...

moham96

It would require to change how it works. Now you give it hostname and router actively resolves it. It's obvious that it can't try to resolve all possible combinations. So it would have to be as you suggest, not actively resolve anything, only look for what's already in cache. But it wouldn't work f...

moham96

Ok, After testing, it seems there is one thing missing from this feature which is adding a wildcard hostnames, so instead of adding wiki.example.com forums.example.com blog.example.com the address list should accept wildcards like .example.com and add dynamic rules to anything in the dns cache and c...

moham96

Wish granted: /ip firewall address-list add address=www.mikrotik.com list=mikrotik add address=forum.mikrotik.com list=mikrotik /ip firewall filter add action=accept chain=forward dst-address-list=mikrotik Wow, Didn't think that was already implemented, do you know what was the first version of Rou...

moham96

Hi, I would like to resurrect this old thread instead of opening a new feature request I'm currently using host based firewall rules to route specific sites to a VPN interface instead of routing everything. the mikrotik wiki has a script to achieve this( a bit of a dirty solution but it works) https...

moham96

Hi, I have a pppoe-client in my mikrotik router, the pppoe server is from cisco, upon successful authentication or error the server sends a message field in the pppoes response that indicate the type of error or success for example: 1- if the pppoe user is already logged in it fails to log in and se...

moham96

Can be either oversight, or perhaps user manager is considered advanced config, which default firewall is not made for and you have to tweak it. The new rule is safer, because it will block access from everywhere except LAN, while the old one blocked only access from WAN. But there can be more (e.g...

moham96

Hi, after setting up hotspot and usermanager in RouterOS I get "Radius server not responding" when trying to login in the hotspot page The issue persist in recent RouterOS versions, 6.39.3 version works fine, 6.44 and 6.44.1 not working. After digging it turns out the issue is in one of th...

moham96

Hi, why doesn't mikrotik push their changes to mainline linux and official openwrt instead of releasing a patch for each version ? I hope Mikrotik engineers can provide us with an answer. this will ensure that the metarouter will always be supported,and maintained by linux kernel experts, all bugs w...

moham96

Or it can be solved from your side by obtaining proper device with big flash disk. Or you can run a virtualization server in your network that allows you whatever you may want to. well if my device was not supposed to run metarouter it shouldn't have metarouter feature enabled and showing in winbox...

moham96

After some testing openwrt is not useable, once i installed nano and python hdd got filled, this could be solved from mikrorik side by either allowing metarouters to be installed on the usb drive or exposing the flash drive to the metarouter so we can setup extroot to use flash drive to install pack...

moham96

Metarouter can not be run from removable drive. It has to be stored internally. You can free used space by removing of unnecessary packages and files. Thanks, i ended up removing all packages except for system,wireless,ppp and dhcp to be able to run one metarouter(my hdd space maxed). unfortunately...

moham96

Hi, I have RB952Ui-5ac2nD-TC I wanted to uninstall some packages to make some space but they were installed as a bundle and i can't uninstall single packges so i downloaded the packages as multiple npk files and uploaded them to the router and after reboot the router is dead not wifi no lan. I tried...

moham96

Hi, i'm trying to run metarouter in my hap ac lite tower, I downloaded openwrt image that's provided in the wiki and put it on flash drive, connected the drive to the router and tried to import the image from winbox but it fails with Couldn't continue - import failed: could not extract ./bin/busybox...

Search found 33 matches

Re: Run different PPPoE clients on the same eth port with different mac address [SOLVED]

Re: load balance lines based on time to use bursts

Re: route traffic to specific pppoe-client and don't hop to the next route [SOLVED]

load balance lines based on time to use bursts

Re: route traffic to specific pppoe-client and don't hop to the next route [SOLVED]

route traffic to specific pppoe-client and don't hop to the next route [SOLVED]

Re: Run a pppoe client on a bridge?

Run a pppoe client on a bridge?

Run different PPPoE clients on the same eth port with different mac address [SOLVED]

dhcp client script acting weird !!

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: Feature requests

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

Re: firewall src add and dst add

[Feature Request] show the pppoes message

Re: Radius server not responding in recent RouterOS

Radius server not responding in recent RouterOS

Re: Metarouter images

Re: run openwrt metarouter on RB952Ui-5ac2nD-TC [SOLVED]

Re: run openwrt metarouter on RB952Ui-5ac2nD-TC [SOLVED]

Re: run openwrt metarouter on RB952Ui-5ac2nD-TC [SOLVED]

how to unbrick rb952 using netinstall can't open the case

run openwrt metarouter on RB952Ui-5ac2nD-TC [SOLVED]