MikroTik

paris9

There's also relatively new state "untracked". It's meant for packets you want to get through router without connection tracking. The usual way to deal with them is to accept untracked together with established and related, and it's safe, because packets don't become untracked unless you ...

paris9

Would there ever be a reason to use “connection-state=new” below the line “action=drop connection-state=invalid” ? For example, if at the top of my forward rules I say: add chain=forward action=accept connection-state=established,related add chain=forward action=drop connection-state=invalid Is it n...

paris9

It seems like something is not right because this article (https://wiki.mikrotik.com/wiki/Manual:RouterBOARD_settings) states that "protected-routerboot=enabled will disable any access to the RouterBOOT configuration settings over a console cable and disables operation of the reset button to ch...

paris9

I am shipping a configured vanilla RouterBoard 850Gx2 to a customer and I want to ensure that if the router ends up in the wrong hands that only the hardware is stolen. In other words, I want to ensure the best possible protection for the /system scripts which contains secret keys, etc. I read in an...

paris9

It works! When the Internet is disconnected and I browse to http://www.local.net, the site stumbles at first because it's looking for one remote javascript lib that's not being served locally (this is my issue) and then everything else loads lightning fast. Then, when I connect the Internet everythi...

paris9

Ok, I will try on the Input chain.

paris9

Thanks! I made the changes to the regexp and layer7 is working now, but there is still no speed improvement. Here are the results: Setup: /ip firewall filter chain=output action=reject reject-with=icmp-port-unreachable protocol=udp layer7-protocol=local.net dst-port=53 log=yes log-prefix="(53 r...

paris9

Thanks for the explanation and help. I just got the last reply while about to reply with the below info, so I will send this anyway and still look into the new information. I am not seeing anything in the OUTPUT chain while the Internet is disconnected. I only see the OUTPUT chain when the Internet ...

paris9

Can anyone reproduce my original post? I am wondering if this is a ROS issue?

paris9

Thanks for the help, unfortunately that has not solved my issue. I tried adding local.net to the static address and also the layer7 suggestion. The problem as originally described still stands. I should note that I have tried on several PC's and a MacBook all with the firewalls and virus protection ...

paris9

Hello! This is a DNS Server related issue. Thanks for any help:) Problem: I have a web server named http://www.local.net on the LAN. I have entered a static dns entry for this server into /ip dns static. I am accessing http://www.local.net from a PC that is also on the LAN. When the Internet is conn...

paris9

The output is one array because one bug is present??? if the value is 9,364,244,108 the output is treated as array, because "," are present??? 9 364 244 108 or the final number can be greather than one integer number and array is used to storing the value? integer can be only between +2,1...

paris9

The output is one array because one bug is present??? if the value is 9,364,244,108 the output is treated as array, because "," are present??? 9 364 244 108 or the final number can be greather than one integer number and array is used to storing the value? integer can be only between +2,1...

paris9

ROS Version: 6.34.3 (stable) /interface ethernet :put [:typeof [get ether1 tx-bytes]] This used to produce an integer as shown in this documentation, but now it's a three-part array. http://wiki.mikrotik.com/wiki/Manual:Interface/Ethernet Can anyone help with the documentation/definition for the out...

paris9

It says that it can't get CRL (revocation list). So from the look of it, without any testing, I'd it's either: a) you included CRL URL in your certificate, it's not accessible and RouterOS is probably right to complain b) there is no such thing in your certificate, RouterOS invented it out of nothi...

paris9

Hello, Any help would be appreciated :D I created my own CA and server certificate and installed them into apache2. Note that this is not a self-signed certificate, but a CA and server certificate signed by the CA. Firefox, Internet Explorer, and Chrome all recognizing the server certificate and CA ...

paris9

Thank you! You solved my problem

paris9

The output below currently gives me the hex to ascii conversion for one and a string for the other.
How can I get "A" as the result for both of the statements below?

{
:put "\41";

:local a "41";
:put "\\$a";
}

Output:
A
\41

paris9

I have been trying out your script and was wondering if you could help me with a problem. I have been unable to get a match with php's md5 for messages lengths over 55 chars. If you could provide any insight as to why this might be it would be greatly appreciated. I have included two debug logs, one...

paris9

Update: I configured the same device with RouterOS 6.10 with NO change in results - same problems. Next, I configured my Linux Laptop for 100m full duplex no negotiation - same problems. Next, I noticed that the light for ether3 was not coming on like for ether2, 4, and 5. -The interface is not show...

paris9

Help! :D ENVIRONMENT: -RouterBoard 952-2n -RouterOS 6.9 PROBLEM: I have been trying to setup dhcp-server for ether3, 4 and 5. -When I connect my Windows7 laptop, ether3,4, and 5 deliver an appropriate dhcp address- no problem! -When I connect my Linux laptop, ether4 and 5 deliver an appropriate dhc...

paris9

So here is an update on this: I have worked around the problem by reading the "/system routerboard" values into global variables- I read them once now. However, it is my guess that this is a firmware related issue.

paris9

Thanks everyone for the responses. It makes sense, no battery.. I can work around that

paris9

So the clock defaults to dec/31/2001 until its fully booted?

paris9

Hello again :) This is my environment: # ROS version: 6.9 # RB firmware: 3.10 When I boot the router and look at my log, I see that the clock shows December 31, 2001 for the first 14 seconds or so and then changes to the correct date and time. Is this by design or do I need to configure something? h...

paris9

Hi, This is my environment: # ROS version: 6.9 # RB firmware: 3.10 I am running a simple repetition test on the following commands. After reboot the script takes less than a second to execute. However, after numerous repetitions it takes minutes and eventually my router freezes and reboots. This is ...

paris9

Thanks for verifying this

I am going to update!

I just updated and it works great!!!

paris9

This post was answered in http://forum.mikrotik.com/viewtopic.php?f=9&t=81432

paris9

Thank you

I am running version 6.7

paris9

Anyone? What am I doing wrong here?

paris9

This is the output that I would like to see: pear=Mikrotik peach=Abe apple=12345 However, the script below is giving me this output: 0=pear;0=Mikrotik 1=peach;1=Abe apple=12345 Any ideas why? { :local arr {""}; \ :set arr {\ "apple"=12345 ;\ "pear"=[/system identity get...

paris9

This is the output that I would like to see: pear=Mikrotik peach=Abe apple=12345 However, this is what I am receiving: 0=pear;0=Mikrotik 1=peach;1=Abe apple=12345 Any ideas why? The script: { :local arr {""}; \ :set arr {\ "apple"=12345 ;\ "pear"=[/system identity get n...

Search found 32 matches

Re: STATEFULL FIREWALL RULE QUESTION [SOLVED]

STATEFULL FIREWALL RULE QUESTION [SOLVED]

Re: protected-routerboot=enabled

protected-routerboot=enabled

Re: /IP DNS QUESTION

Re: /IP DNS QUESTION

Re: /IP DNS QUESTION

Re: /IP DNS QUESTION

Re: /IP DNS QUESTION

Re: /IP DNS QUESTION

/IP DNS QUESTION

Re: /interface ethernet get tx-bytes is now an Array with three items?

Re: /interface ethernet get tx-bytes is now an Array with three items?

/interface ethernet get tx-bytes is now an Array with three items?

Re: https check-certificate howto with self-created ca/cert

https check-certificate howto with self-created ca/cert

Re: Please help with a string conversion

Please help with a string conversion

Re: Script MD5 Hash Generator

Re: DHCP FOR ETHER3 WORKS ON WINDOWS7 BUT NOT ON LINUX - HEL

DHCP FOR ETHER3 WORKS ON WINDOWS7 BUT NOT ON LINUX - HELP

Re: Performance Problems with /System routerboard get model

Re: Date changes during bootup

Re: Date changes during bootup

Date changes during bootup

Performance Problems with /System routerboard get model

Re: Array Problem

Re: Data Type: Array, os 6.7, key => value

Re: Array Problem

Re: Array Problem

Array Problem

Data Type: Array, os 6.7, key => value