MikroTik

iredden

Hello; I am trying to setup a dedicated CAPSMAN server VM. When my clients connect, they cannot get on the appropriate VLAN set. I have followed the appropriate guides on these forums and unable to make it work. The VM has the following interfaces: 1. VLAN99 (aka mgmt) 2. VLAN20 3. VLAN30 4. VLAN99 ...

iredden

Does this look better? # Trunk Ports 1,2,5,6,16 # Access Ports 10,11 # ####################################### # Naming ####################################### # name the device being configured /system identity set name="fibre-switch" ####################################### # Bridge #####...

iredden

You've got it mostly wrong. Read through this tutorial , that's the way it should be done (and is HW offloaded on your CRS317). How do I have it mostly wrong? I got the commands FROM that tutorial. If you read that tutorial, look at the router.rsc, you'll see the similarities in the VLAN numbering....

iredden

I can't figure out why I can't get VLAN's to work properly on my CRS317. It works great on my CRS125! I've read several great articles on the forums, battled this for weeks but I always get the same result.... nothing accessible/pingable as soon as I turn on vlan filtering. On my CRS125, I have a XS...

iredden

/interface vlan set interface=bridge1 fixed it.

iredden

/interface ethernet switch vlan add ports=ether1,ether20,ether21,ether22,ether23,ether24,sfp1 vlan-id=10 learn=yes add ports=ether1,ether20,ether21,ether22,ether23,ether24,sfp1 vlan-id=20 learn=yes add ports=ether1,ether20,ether21,ether22,ether23,ether24,sfp1 vlan-id=30 learn=yes add ports=ether1,s...

iredden

For CRS125: according to manual, config is missing appropriate list of vlan/port membership in /interface ethernet switch vlan ... so I guess all VLANs are somehow unknown.

Are you saying it's somehow a broken implementation?

Whats the performance impact going to bridged vlans?

iredden

Hi Mikrotik Forums! I need your help with VLAN'n. I have little hair left and continue to pull it out. Over the path month, I have read everything I can about VLAN with Mikrotik (especially on the CRS125's chipset) but fail to have any kind of success making it work with my hEX setup. I hail from th...

iredden

I've come to the realization, I need more speed! REF: https://forum.mikrotik.com/viewtopic.php?f=2&t=132537 REF: https://forum.mikrotik.com/viewtopic.php?f=2&t=135434 REF: https://forum.mikrotik.com/viewtopic.php?f=2&t=135425 Providers Modem: http://www.dslreports.com/speedtest/34420003....

iredden

Thx Sindy, I gathered that as well. I put a sniffer on 'devbox' (my secondary pppoe interface), and performed a ping. I see the ping (dst 8.8.8.8, src 174.xx.83.83). This tells me the connection marking and routing is working. I also see the nat rule (Outbound NAT for 192.168.2.4) working. However, ...

iredden

Which USB 3.0 ethernet adapters work with RouterOS?

I have an Intel NUC that I'd like to use as my router. When I boot from netinstall, I get the no network adapters found error.

Thanks!

iredden

Still similar behavior even with routes added. I was 'adding default route' on the pppoe client. Route /ip route add distance=1 gateway=devbox routing-mark=devbox-rm add distance=1 gateway=synology routing-mark=synology-rm add distance=1 gateway=pppoe-out1 /ip firewall filter add action=accept chain...

iredden

That only half works. Here is my configuration: /ip firewall filter add action=accept chain=input protocol=icmp add action=accept chain=input connection-state=established add action=accept chain=input connection-state=related add action=drop chain=input in-interface-list=!LAN log=yes add action=fast...

iredden

this works, but is not 100% what I want: /ip firewall nat add action=masquerade chain=srcnat comment="main nat" dst-address=!192.168.2.1 out-interface-list=WAN src-address=192.168.2.0/24 add action=masquerade chain=srcnat comment=PORT-FORWARD-80-INTERNAL dst-address=192.168.2.10 dst-port=8...

iredden

Hi Mikrotik Forums! I need help with NAT/Hairpin NAT. /ip firewall nat add action=masquerade chain=srcnat comment="main nat" dst-address=!192.168.2.1 out-interface-list=WAN src-address=192.168.2.0/24 add action=dst-nat chain=dstnat comment=PORT-FORWARD-80 protocol=tcp dst-port=80 dst-addre...

iredden

dude! Fixed.

iredden

Hi Forums! I have a Routerboard HAP-AC with a fairly vanilla configuration. For Internet, I am using a PPPOE client attached to VLAN 35. I connect, my machines behind the unit have Internet access and everything seems fine. However, the speed is considerably less than what I get directly connected t...

iredden

Hi There! Hopefully someone can help me figured this one out. I have a CRS125 that has no configuration on it other than a single bridge (bridge1) that all ports belong to it. It also has a dhcp-client for obtaining an IP configuration from the LAN - 192.168.1.246. It's named 'switch'. I setup a pac...

iredden

You could add DHCPv6 server on RouterOS and configure it to hand out prefixes (with /56, you have enough to do it). Then on another machine you'd use DHCPv6 client to get prefix and then finally DHCPv6 server to give out addresses. Do you have an example? I have 2 hAP AC's back to back. One is the ...

iredden

How would I get the pool into a separate dhcp v6 server to supply my hosts?

I added the addresses to the interfaces.

iredden

Hi All, My ISP finally is giving out IPv6 addresses and a /56!! My hAP AC test box gets an address, throw the /56 to the pool and does not serve clients addresses. [admin@Router] /ipv6 pool> print detail Flags: D - dynamic 0 D name="rogers-ipv6" prefix=AAAA:AAAA:AAAA:A00::/56 prefix-length...

iredden

Hello, I am interested in RouterBoard products as I have used them in the past and always were reliable routers packed with tons of features. The router I am interested in is the cloud core router. The infrastructure looks like: -[ INTRANET CLOUD ]---[ CCR ROUTER AND GATEWAY ]----------[ GIGANEWS VY...

iredden

Here is the scenario: WAN1 IP: 1.114.229.3/22 Gateway: 1.114.228.1 WAN2 IP: 1.230.160.168/27 Gateway: 1.230.160.161 I have DHCP-client setup the following: /ip dhcp-client add add-default-route=yes default-route-distance=1 disabled=no host-name=router interface=WAN1 use-peer-dns=no use-peer-ntp=no a...

iredden

I'll give that a try, but might take some time to script/implement.

Thanks.

--Ian.

iredden

Yes you can, but what would stop someone from changing their IP to a static IP to have full speed?

iredden

We require to be able to shape on our system by MAC address and have separate differing upload and download speeds. However, the current rules I have grabbed from the documentation to tag packets by MAC, appear to treat all traffic as both rather than upload and download. Here are the rules we are c...

iredden

Works on 2.9.10.

email me at razorjack at gmail dot com
I'll give ya a hand getting it working.

iredden

Wrote this for fun! Wanting to graph signal levels externally in RRDTOOL. Enjoy! ps -- Mikrotik 2.8.28, PHP 4.4.1, and NET-SNMP 5.1 <pre> <?php # /-----------------------------------\ # | Written By: Ian Redden | # | Date: December 21st, 2005 | # \-----------------------------------/ # # $host = ip ...

iredden

For a small fee (im a starving student) I can coding one up for ya.

razorjack at gmail {dot) com

iredden

nov/15/2005 22:43:07 system started nov/15/2005 22:43:08 Prism firmware loading: OK nov/15/2005 22:43:08 omni-wireless: 00:12:17:CD:BA:47 connected nov/15/2005 22:43:09 omni-wireless: 00:0C:41:3A:3E:9C connected nov/15/2005 22:43:09 home-link: unauth or missing data sender, 00:02:6F:39:65:14 > nov/1...

iredden

What card FULLY supports 2.9 with no side-effects? We are currently using 2.9 with Prism Cards, and also the Netgear WGT311 (which with more than 15 users, has severe lag or packet loss problems). The issues on the netgear is almost like someone has skewed the MSS/MTU setting on the Mikrotik. Our am...

iredden

We are having the exact same issues. Our CPE devices are everything from OpenWRT WRT54G's, Tranzeo CPE's, Mikrotik CPE's, to YDI EtherAnt 2's & 3's. If Mikrotik CPE's are having issues, I know its 2.9 and now any kind of hardware. Because our mikrotik is the heart and soul of our business (WISP)...

iredden

bump, for all the people emailing me asking for this.

iredden

Anybody?

echo.....

iredden

Will Mikrotik RouterOS support 802.11i / WPA2 ?

I see support for WPA-PSK in the current 2.9.

iredden

My understand of WDS was it immediately cut every WDS link's throughput in half. Using 802.11b, and given its half duplex, that wouldnt be much more than 3Mbps.

Am I missing something?

iredden

All at the same speed? Using PCQ (Per Connection Queueing). I wrote a script that generates the Mikrotik console commands from a MySQL database and then connects via SSH to the box, and sends the commands. First it create an IP Firewall Mangle rule based on their MAC address, then associates flow to...

iredden

I modified an ssh/cron that looks for duplicates. Right now it just reports as its only an IDS, but was looking at authenticating our wireless into a real radius database (not just using the access-list) and only allowing one login at a time. There are times when I have left our access-list off for ...

iredden

Very Cool utility. Been looking for something like this for awhile. Why? I dunno.

Why the name, "The Dude" ?

iredden

Having serious throughput issues with 2.8.24. The AP in question is running approximately 30-40 customers using a dual DSL backhaul link for approximately 5-6MBps. None of the customers see any issues with latency, etc ... but the perfectionist I am, I notice it. Connected to a Netgear WG311T Athero...

iredden

Weird. Try setting up a proxy server, relay to it through the mikrotik, then see if it works.

Also, what browser on Mac OS?

iredden

Have already spoken to them, and they are looking at adding Napster support. However, the packets that are originating from our network appear to be a mass exploitation attempt. The data being sent (roughly decoded) "GET xxxxxxxxx C:\Documents and Settings\". The header of the packet is al...

iredden

Studying digital forensics at the college level, I could easily ramble on all day on things to try, however here are a few: - setup a linux box on the same network as your hotspot, and use a free IDS software such as snort - fork the traffic from the mikrotik sniffer to a pc running ethereal, tcpdum...

iredden

Another update.

iredden

The following is a user hammering our system with napster. 17:47:10.479959 xx-153-hse.wireless.xxxxxxx.xx.xx.62296 > SA-Lib50-165.xxxxxx.edu.6699: . ack 2193203501 win 63974 (DF) 17:47:10.479979 xx-153-hse.wireless.xxxxxxx.xx.xx.62296 > SA-Lib50-165.xxxxxx.edu.6699: . ack 1 win 63974 (DF) 17:47:10.5...

iredden

I did an update on the ssh-cmd. I noticed a bug when I was coding my dhcp push and bandwidth shaper push from my mysql database. My scripts would write all the correct commands to the text file, but the ssh-cmd would only half the time send half the cmds then quit mysteriously. Its fixed now and wor...

iredden

I hacked away at this based on someone elses code. I found this script on the Internet with no credit to it! Thanks to whoever wrote the original script. EDIT: http://www.dysan.net/Perl/lg.php -- Original script. You put a file named monitor.passwd in your etc directory.... /etc/monitor.passwd: admi...

Search found 47 matches

CAPMANS and VLAN's (not routing traffic)

Re: VLAN's on CRS317

Re: VLAN's on CRS317

VLAN's on CRS317

Re: Need help with VLAN on a CRS125/hEX

Re: Need help with VLAN on a CRS125/hEX

Re: Need help with VLAN on a CRS125/hEX

Need help with VLAN on a CRS125/hEX

Need recommendations on a FAST mikrotik box (1Gb link)

Re: port forwarding help needed - 2 WAN's

USB 3.0 Ethernet

Re: port forwarding help needed - 2 WAN's

Re: port forwarding help needed - 2 WAN's

Re: port forwarding help needed - 2 WAN's

port forwarding help needed - 2 WAN's

Re: Slow speeds on Gigabit Fiber (MTU/MSS Issue?)

Slow speeds on Gigabit Fiber (MTU/MSS Issue?)

CALEA/TZSP/Sniffing

Re: Need IPv6 help getting DHCP v6 working

Re: Need IPv6 help getting DHCP v6 working

Need IPv6 help getting DHCP v6 working

Routerboard w/ VPN Client to IPSEC/L2TP Server

Problem load balancing (PCC) with IP's assigned by DHCP

Argh, MAC Address mangling / queue

[CONTRIB] php/snmp wireless signal levels

2.9.XXX nightmares.

802.11i / WPA2

Shaper not support napster?

[CONTRIB] ssh perl script - automate batch commands *UPDATED