I tried searching the forums and there is quite a few posts regarding VLANs and firewall rules. However, throw CAPsMAN in the mix and things look different. Let me address my main points of confusion: - To have your traffic on your CAPs go anywhere you have to create a bridge on the CAPsMAN, even wh...

I'm running a CAPsMAN managed network. The CAPs broadcast two SSIDs, one of which, "freifunk", is unencrypted and has its traffic tagged with VLAN ID 66. The other one is encrypted and its traffic is untagged. I have a switch that takes care of separating the 66 traffic from the other traf...

I, too, use macOS¹ and would very much appreciate a 64 Bit version of The Dude. Winbox 64 Bit works rather well using wine and I am mildly optimistic that The Dude would too.

¹ voluntarily

The examples are working now. However, the output is nowhere near as nice as what the regular print does. Unfortunately it seems that "as-value" is mandatory in order to get a string. Without it it just returns the empty string and prints to the terminal (or a file). The file approach woul...

Thanks for your input! I actually really like the output of print. It makes nice tables, properly aligns things, it's great. What's so bad about using it? In my case I am actually interested in all or most of the data shown in print's output. Also, I don't get your code examples. They don't seem to ...

I'm making my routers send me an e-mail and I'd like to include things like the output of /system routerboard print or /ip address print : /ip address print Flags: X - disabled, I - invalid, D - dynamic # ADDRESS NETWORK INTERFACE 0 D 192.168.1.72/24 192.168.1.0 bridgeLocal However, trying to concat...

Edit: Scroll down to below the screenshot for the solution. Yeah I have set it up exactly like you describe. It’s really odd. Server: /interface/wireguard export hide-sensitive # sep/30/2021 22:52:51 by RouterOS 7.1rc4 # software id = 2QED-STSN # # model = RBD25G-5HPacQD2HPnD /interface wireguard a...

Maybe I just didn't get your OP right when you wrote that the traffic is trapped in the Audience? My feeling was that Umbra can ping 192.168.66.1, which would prove the tunnel itself to be working allright (which the configurations suggest), but it cannot get anywhere else. Oh no, you definitely go...

Taking a mental step back, I'm not sure how much the active connection status of my wireguard client really says. If I omit specifying the endpoint I can still activate the tunnel and the client will say it's active. I guess I'm not yet familiar enough with how WireGuard works. Apparently it doesn't...

Unfortunately that didn't fix it :( Your explanation makes a ton of sense in my head and is exactly along the lines of what I was suspecting. The fritzbox at 192.168.1.1 is the default gateway, indeed, alas the NAT rule doesn't seem to fix the problem. Bummer! For completeness sake, here's the NAT r...

Here's a compact export without sensitive details. I also removed all of the CAPsMAN stuff. Most of the config is firewall, it's mostly the default firewall and thinking about it I could probably just drop the firewall completely since this router has no direct WAN connection. Anyways, here goes: # ...

tl;dr: yes, yes, yes. Im assuming gateway A and gateway B are standard consumer routers? Yes, both are AVM Fritz!Box devices. A brand of routers particularly common in Germany. They aren't the worst but I'm ready to move on. They have a few tricks up their sleeve but nothing like MikroTik routers. D...

Right, here's the network layout:

I'm trying to set up a Wireguard server on an Audience. I set up port forwarding on the (different) router connected to the internet and I can connect from my Wireguard client to the server. However, from there I can't get anywhere else. My traffic seems to be stuck on the Audience router. DNS is no...

Hu, I had no idea, thanks for clarifying! That was indeed what I was after. However, thinking about it more, what about the hap switching between 2.4 vs. 5Ghz depending on what's better, just like smartphones etc. do? It would be using only one radio for connecting to the foreign wifi at the same ti...

Thanks a bunch! I got it to work and it works quite well! Also thanks for explaining the problem with bridging. That explains a lot, actually. I also toyed around with bridging the 2.4 and 5 GHz wlan together hoping this would make the hap use both radios to connect to the foreign wifi but only one ...

Thanks for posting your solution here, I was scratching my head at why it didn't find my script and your post gave me the needed hint: You have to remove the ".rsc" extension in the command but have to have it on the file system: /system reset-configuration run-after-reset=provision That w...

tl;dr: There is wifi. There's an ethernet cable. I want my Mikrotik device to bridge¹ the two together. There's a DHCP server in the wifi network which I'd like to use. Same goes for the gateway behind which lies the internet. Longer version: Say you are renting a holiday home for a week or two and ...