MikroTik

technonotux

Hi, I am having RB2011UIAS-RM with ROS Version 6.34.1 Issue: I have configured hotspot with local radius and user manager, limits configured in user manager are not working, i have checked in queues, queues are getting created for each user, but setuped limites are not working, please go through the...

technonotux

There is a situation, i just figured out from IT staff, that there is no additional slot available for adding extra ethernet card in the Squid (ipcop), so current solution may not be feasible ? pl find if there is any other way

technonotux

Thanks but squid box is not fully configurable, its a ipcop firewall where squid configuration limited

technonotux

Main router is Linux Box with Squid Configured, i can add static route in that, i assume your suggestion is as follows. Main Router : WAN Interface: - Goes to ISP with public IP LAN Interface(192.168.1.1/24) : - Connected to Mikrotik RB2011 on Ether3 (192.168.1.2/24) Mikrotik RB2011 : Ether2 (192.16...

technonotux

in case of double NAT, i cannot apply content filter managed by main router ? what's the other option ? is it possible to do same subnet iprouting without NAT ?

or is there any better content filer solution on mikrotik ? except (open dns as i cannot apply per ip policy)

technonotux

Thanks for the reply zerobyte I think the controlled ARP entry solution is the best because it requires zero scripting and zero maintenance - it just works, and it forces users to get DHCP if they want to get on the Internet. I configured that setup in GNS3 and it worked like a champ and was brain-...

technonotux

Any clue ?

technonotux

Hi, I have configured hotspot on RB2011, i have 50 computers in LAN i would like to allow every one to do local file & printer sharing i.e. SMB/CIFS, Netbios without hotspot authentication with Full Bandwidth (No Capping) , even after logging with limited bandwidth user profile and i want user t...

technonotux

Thanks for the reply zerobyte 1) If i use Hotspot with MAC-Authentication how can i allow unauthenticated users to access Windows SMB Shares(NetBIOS) of other PC's & some websites without authentication. 2) I agree with both of your solutions, but isn't it possible through Bridge Firewall Filter...

technonotux

Any clue on the issue ? Pl update

technonotux

Hello, Scenario LAN PCs=========Mikrotik-RB2011ui2hnd-RM ( Configured as bridge )==========DHCP=====Main-Router I have created mikrotik bridge between 2 networks my DHCP server resides on other end, where we have reserved IP address based on MAC address, and not having any Layer2 / 3 switch in netwo...

technonotux

Hi, Pradeep Your trick worked !!! Thank you Success! My Mikrotik is back in working condition!! Thank you all RB951G2HnD, Thank you so much for your guidance. Dallen, You gave me the most important ingredient - hope... Mikrotik support just left me hanging with "Use NetInstall". But hearin...

technonotux

It probably has something to do with LDP or MPLS in general - but I wouldn't think it should crash the router. Did you try upgrading to latest ROS? Honestly, I think your current setup is a little cleaner this way so unless you're just losing sleep to know why it was rebooting, I would leave things...

technonotux

It probably has something to do with LDP or MPLS in general - but I wouldn't think it should crash the router. Did you try upgrading to latest ROS? Honestly, I think your current setup is a little cleaner this way so unless you're just losing sleep to know why it was rebooting, I would leave things...

technonotux

If i enable all 4 sites which are in same bridge along with ether1(physical interface) at RB450G Central site, router reboots frequently, when i checked log it shows the following. System rebooted because of kernel failure Out of memory condition was detected Router was rebooted without proper shut...

technonotux

... if i configure same horizon vpls interfaces in HUB then i am not able to ping A to B pl explain This is long - if you just want a fix for your problem, skip to TLDR below..... Split horizon means block interfaces on the same horizon from seeing each other. It's the opposite of what you might th...

technonotux

You should put all 4 sites on the same horizon at the hub site, and on sites A and B, configure a direct peering between them. ::NOTE:: Make certain that at site A, you put Hub and Site B on the same horizon, and that on site B, you put site A and Hub on the same horizon. Make sure that router at s...

technonotux

Drawing1.png This is how I understand your topology. I also understand that the ISP only allows communication directly between hub and spoke - a point-to-multipoint topology. If you use bridging with split horizon, then the sites on the same horizon will not be able to communicate with each other (...

technonotux

Thank you very much zerobyte for very specific explanation, i have successfully established VPLS with horizon bridge and it is working well, i am also trying your given solution on different site of mine, i will keep this post updated with the status.

technonotux

Which one is best Horizon bridging or virtual ethernet interfaces in separate bridges

technonotux

as there are multiple ports to exclude like 8291, 80, 22, 21 etc.. which RouterOS uses, is there any other simple way to exclude in single / multiple rule put before you nat range rule something like.. /ip firewall nat add chain=dstnat protocol=tcp dst-port=22,80,8291 action=accept Thanks it solved...

technonotux

as there are multiple ports to exclude like 8291, 80, 22, 21 etc.. which RouterOS uses, is there any other simple way to exclude in single / multiple rule

technonotux

Make accept rules for these ports in input chain.

i already have following accept rule for the port 8291 but when i forward all ports the LAN ip, i loose Winbox(8291) connection what could be the reason ?
/ip firewall filter add action=accept chain=input disabled=no dst-port=8291 protocol=tcp

technonotux

I am using RB450G with PPPOE-Client Internet connection with public ip, i have forwarded all ports using the /ip firewall nat add chain=dstnat protocol=tcp dst-port=1-65535 action=dst-nat to-addresses=192.168.1.101 to-ports=1-65535 /ip firewall filter add action=accept chain=input disabled=no dst-po...

technonotux

Thank for the reply, i got your point now i have confusion which one is best Horizon Bridging or else i can have virtual ethernet interface and bridge them separately which one is good option please suggest

technonotux

Hi, My Network Scenario is as follows. Site -1 : RB750G=======RB450G(MAIN Router)========RB750G Site -2 : RB750G=======RB450G(MAIN Router)========RB750G Site -3 : RB750G=======RB450G(MAIN Router)========RB750G * Only 1 Main Router is there RB450G, and 6 nos of RB750G My main router is connected to e...

technonotux

Pl suggest sample script to block torrents and management bandwidth per ip/mac

technonotux

You can do detailed firewall on bridge but it is very resource consuming. Do it on the router as it will be more efficient. Use bridge firewall only when it should restrict traffic between bridge members. Hi, Thanks for the reply i understand that if i use it as a router i will get more features, b...

technonotux

Hi, I have following network scenario. LAN PC's =======Mikrotik-RB450G======Squid Proxy=====Internet I want to do bandwidth management per ip/mac basic along with i want to block torrent /p2p download to some ip's how can i achieve the same and what configuration needs to be done, as per my knowledg...

technonotux

i want load balancing with failover

technonotux

Hi,

I am running mikrotik 5.20 on X86 with 3 NIC cards, i would like to configure load balancing with the following scenario.

Local IP: 192.168.0.1 / 24

ISP1: PPPOE
ISP2: 220.118.115.132 (Static IP)

Question:
1) How can configure automatic load balancing in above scenario

technonotux

I would like to setup a campus wifi network which will be having around 10 AP's installed throughout the campus SAME SSID, Channel, Frequency will be configured for roming mode, i need suggestion that is it correct solution ? About Clients: Clients will be using laptops with 802.11b/g/n how much spe...

Search found 32 matches

Hotspot with Usermanager limits not working

Re: Bridge filter MAC whitelist

Re: Bridge filter MAC whitelist

Re: Bridge filter MAC whitelist

Re: Bridge filter MAC whitelist

Re: Bridge filter MAC whitelist

Re: Mikrotik hotspot bypass SMB/CIFS, Netbios from authenticaiton

Mikrotik hotspot bypass SMB/CIFS, Netbios from authenticaiton

Re: Bridge filter MAC whitelist

Re: Bridge filter MAC whitelist

Bridge filter MAC whitelist

Re: New RB951G-2HnD bricked?

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Forward all ports except Mikrotik reserved

Re: Forward all ports except Mikrotik reserved

Re: Forward all ports except Mikrotik reserved

Forward all ports except Mikrotik reserved

Re: Transparently Bridge networks using EOIP or MPLS / VPLS

Transparently Bridge networks using EOIP or MPLS / VPLS

Re: Bandwidth management per IP / MAC & Torrent sites block

Re: Bandwidth management per IP / MAC & Torrent sites block

Bandwidth management per IP / MAC & Torrent sites block

Re: Load balancing 2 ISP PPPOE (ISP1) & Static IP (ISP2)

Load balancing 2 ISP PPPOE (ISP1) & Static IP (ISP2)

Plz suggest : RB711-2hn for Campus Wi-Fi with 18dbi CPE