@rextended Thank you very much for your explaination: everything is clear. My trouble was about the reason because the behaviour was different when using pick (IP shown) or not (empty string shown). Now the behaviour is back to the expected: both syntax give back the single IP configured to the inte...

Hi, suddently few days ago in routeros 6.48.3 the command "/ip address get " didn't work anymore. More in details, I used to get the dynamic address of PPPoE interface as follows: /ip address get [find interface=pppoe-vdsl ] address After 21/07/2021 it gives empty string, and nothing has c...

Hi,

this problem seems to be back with 6.27 (see image below).
Any news about this can be fixed with upcoming 6.28?
I didn't find any info in the RC changelog....

Many thanks in advance for your help.

Currently there is no way to pass params to function. Thanks for your answer. :( I wonder how can I avoid writing hundreds of functions and probes, all identical except for silly parameters like disk label (C, D, /var....), threshold (100, 1000....) and so on. Does anybody have ideas? Many thanks i...

Hi, does anyone know how to pass parameters to a function? I'd like to write a single custom function (e.g.: disk_free_space) and pass to it a parameter, in order to use it into different probes using different values: a) Probe: server_disk_warning disk_free_space(2000) b) Probe: server_disk_alert d...

headless? I am looking at doing this as a daemon so i can connect to it remotely. might be time to start hacking

Hey, I'm VERY interested on this (dude server on headless/no-graphics linux box)...

Did you get any result on your hacking?

TKX,

Riccardo

Hi, I have a network with many devices, and when some new are added I'd like to manually run a command to populate a new network map. Then, new items detected in this map will be manually moved to the live maps according to their position/role.... Does anybody know how to do that? (new-devices-only ...

Hi, I had 2 issues, cross-related: 1) Keep a graph of bandwidth used by web-proxy service 2) Limit that bandwidth to a maximum amount First I setup the issue 1): Mangle the packets involved in the traffic (download and upload): / ip firewall mangle add chain=output action=mark-packet new-packet-mark...

i think that defeats the purpose of using radius, if there are a lot of users to do this for. I'm no expert on radius, isnt there a way to hand back a firewall filter chain to put on a user ? you could then put those users thru a special chain that firewalled things the way you wanted. As far as I ...

Hi, I'd like to know how to setup firewall filter rules based on PPTP users (the users are external, authenticated via Radius and external Windows Domain Controller). For instance, after successful connection I have both user1 and user2 (dynamic interfaces pptp-user1 and pptp-user2); I need to setup...

Hi Sergejs, first of all thank you for your help, it solved most of my problems. Just some clarification are needed: 3) the syntax about the img seems correct but it doesn't work whatever is the path. For instance, if I config this: src="/umw/toplogo.jpg" it works, but if I config this: sr...

No answer at all.... :( Maybe because I forgot to say that partial answers are welcome, too! :) In the mean time I found by myself some answer or workaround: 1) about inactivity timeout I found idle-timeout keyword in /ip hotspot that should work, but unfortunately windows send a lot of packets in b...

Very Important for me. I vote "Yes"
Riccardo

Hi all, I'm starting to use the usermanager infrastructure with hotspot, and here is some important questions: 1) I want to enable some "inactivity timeout" on every user, so if he doesn't logout it's credit doesn't vanish. How to change that timeout to a short value (like 5 minutes)? 2) I...

I solved my problem with the help of Sergejs (Thanks! :) ) and an update by myself: some "policy based routing" is needed because the interconnection between the two MT is not the default route in any of them. So about the routing the following configuration was successful: / ip route add ...

Hi all, The scenario is: I have a server that is currently visible from Internet (DSL1) through a Mikrotik (MT1) using a public IP address (IP1). The need is to make this server temporarily visible from a new IP too (IP2) through a second DSL line connected (DSL2) to a second Mikrotik (MT2). The two...

NAT does not have chain=output, there are 'dstnat' and 'srcnat' chains. True, but I can create a new chain, and once created it appears together with SRC-NAT and DST-NAT SRC-NAT replaces SRC-address (usually performed on packets that are originated from natted network). DST-NAT replaces DST-address...

How can I change dst address of some TCP sessions originated by MT web-proxy? The web-proxy is configured as transparent (w/parent proxy), and some sessions (but not all) to parent should be changed as dst-ip. I tried to create a new output chain using jump action: > chain=output dst-address=<old-ip...

What I meant was Server Headers, not in the body of the response... Great! It works! :P That means the way is right, ant I only have to choose the right string to use as content selector... If you mark a connection with one mark you cannot give it another mark - so maybe you are marking it and then...

Is this in a shared hosting environment? Yep. Maybe you can add headers to their site that identify it easier for MT to find. Nop. We have no control over the content put by our customers on their services... The way you are doing it should mark all connections to that site correct? I wanted to, bu...

Hi all, I have several virtualhost on same webserver (single IP). Question: How can I shape a specific bandwidth to each of them? I tried with mangle and content field in this way: chain=forward in-interface=External dst-address=192.168.1.1 protocol=tcp dst-port=80 content=domain1.com action=mark-co...

I totally agree! (of course.... :) About this thread I started, I could highlight 2 main "improving areas" about MT VRRP: 1) "VR associations" between interfaces We could reserve an ethernet port on each box to connect via cross cable: when the heartbeat is missing we can suppose...

Also for me routing is not OK on 2.9.14. BGP peer connection is put in "unknown" state, and no route is received from my peer. Same thing with 2.9.12 and 2.9.13; to recover to a working condition I have to fall back to 2.9.11. I'm going to write to MT support, I have a supout.rif detailing...

Hi, I need to build a VRRP configuration with a pair of MT equipped with 4 interfaces each. The MT configuration of a single vr group doesn't allow to move several addresses on different interfaces (although that's obviously needed to correctly handle a router with 4 interfaces: external, internal, ...

Problem solved, the cause was a missing rule onto remote firewall (not MT)..... now it works great, but not (yet) behind a NATting ADSL router.

Any hints?

Riccardo Leonardi

Hi, I would evaluate an IPSEC tunnel between MT and a WatchGuard box, running standard IPSEC. I managed to correctly build the tunnel and it works great from Watchguard box to MT only: on the other way it seems the MT doesn't forward the outgoing packets to the tunnel. If I ping from 192.168.1.x (wa...