MikroTik

ezrollin

nobody's noticed this or wanted to turn it off?

ezrollin

Why is my stock router sending out CDP Advertisements?
I've never seen an option to enable them? (I just happened to notice this in WireShark/Ethereal)
thanks

ezrollin

Whats the difference between these 2? thanks

ezrollin

I'm not sure what has changed but using Fedora 20 & WinBox, I can no longer drag and drop any kind of file that I've saved on my Router (under "Files") to my Fedora's folders? I have upgraded to 6.24 but I'm not sure if its not some kind of Fedora-block but I doubt it? I've always wond...

ezrollin

Thats exactly right and that is exactly what I said. Let me explain it to you, of which you are already aware: Since I'm in a contention area I am receiving interference from other wifi devices using the frequencies. Since its all half-duplex and one broadcast domain, I cant transmit or receive unle...

ezrollin

How can I find the real bandwidth or thoroughput of my wifi router in my contention area? RB2011UiAS-2HnD-IN

ezrollin

Yep, it took me a long time and many hours to get comfortable too. I feel your pain

ezrollin

I didnt really read cause it was a lot to read and didnt look like you were asking about a specific subject you need help on except "initial set up". I dont know what your experience and knowledge is with networking. You need to be reading through the WIKI. Forum Designer/Admins should've ...

ezrollin

Sorry I may know a lot of the basics but that doesnt mean I know anything at all in this industry (its not real/practical knowledge). I'm still wanting to learn more about security appliances so that I can feel confident about the security of my equipment. I heard a long time ago that Cisco released...

ezrollin

RouterOS 6.22 but was on old RouterBoard 2011UiAS-2HnD firmware 3.18 when 3.19 is available.

ezrollin

How come when I click backup under files or doing a reset (thus auto backup) it doesn't give me a full backup? It only saves the bare minimum? The only thing that works is a base level export. Thanks

ezrollin

/interface bridge add admin-mac=D4:CA:6D:A2:75:B1 auto-mac=no mtu=1500 name=bridge-local add mtu=1500 name="bridge1 L2TP to PC"/interface bridge nat # in/out-bridge-port matcher not possible when interface (ether1-gateway) is not save # bad packet mark add chain=dstnat in-bridge=bridge-lo...

ezrollin

This is my /dhcp config: /ip dhcp-server add address-pool=dhcp disabled=no interface=bridge-local name=default /ip dhcp-server network add address=192.168.88.0/24 comment="default configuration" dns-server=192.168.88.1 gateway=192.168.88.1 My wifi uses DHCP fine(gets an address) but whenev...

ezrollin

Hi,
I just didnt think that was the correct way to get the system cpu load because when I set it low like 10% and I know I'm actually higher than that, nothing happens.
thanks!

ezrollin

I searched but still having trouble with knowing the syntax to get the cpu-load %.
Am I even close? thanks

:local checkLOAD[/system resource get cpu-load]
if (checkLOAD > 10) do={
:log info "High CPU load"
}

ezrollin

You were right, it was just an IP gone bad! Firewall wasnt blocking it. IANA says that NTP also runs over TCP port 123 but my Tik wasnt using it, it was only using UDP 123 in & output. I put my firewall back to normal cause it was already allowing it previously. I guess I just really needed to s...

ezrollin

RB2011UiAS-2HnD (misbe) Firmware version: 3.18 For some reason, since day 1 I've had problems with the clock and/or sNTP. I dont know what the problem is, but the times/dates will be wrong in some places but yet (sometimes) right in other places. Its like they are not programmed to interact in the R...

ezrollin

MadEngineer, do you have an example of this firewall? a link to the writeup? I understood the timing. I like my new firewall, but I'm definately missing something! anyone know what PeerBlock is? I would love it if I could implement something like that into a hardware appliance (like a switch or rout...

ezrollin

I'm getting an way too many logs of 443 (HTTPS) logs in my "log everything else" (false positives) I bet its just reflexive(aka established) connections and the firewall is not grouping them into the filter #14 (accept established) since its 443 and its accidentally overlooking this. How c...

ezrollin

dang, I did that last night! I guess it finally cleared

ezrollin

How does one reset (clear) the memory logs?
I read it can be done (by tricking it or something) but dont remember how.
Thanks

ezrollin

What is the ! in " !ether1 "? Using this firewall list: http://wiki.mikrotik.com/wiki/Basic_universal_firewall_script add action=add-src-to-address-list address-list=Port_Scanner address-list-timeout=1w chain=input comment="Port Scanner Detect"\ disabled=no protocol=tcp psd=21,3s...

ezrollin

I finally went with this one:
http://wiki.mikrotik.com/wiki/Basic_uni ... all_script
I've actually started figuring out how I can edit and and fix things the way I want!

ezrollin

Another problem was like what Etz was saying.. very first rule cant be DROP INPUT or everythings denied!

ezrollin

Rudios, those "log everything else statements" seems to be crashing my router EVERY TIME I put it in... its logging everything

ezrollin

Is there any way to make the log to disk function not be so jumbled up? It looks all jumbled up when I open it in notepad but when I copy and paste to this forum, it looks perfect. Aug/15/2014 12:24:15 dhcp,critical,error dhcp-client on ether1-gateway lost IP address 192.168.254.2 - lease expired Au...

ezrollin

p.s. default home/soho router configuration is locked down. Everything you add most probably will make it less secure as nothing beats chain=input action=drop interface=<external> So are you saying that rule is a "tcp established" type of rule? OR is that rule meant to be at the very last...

ezrollin

I cut it down to what I think it should've been as "basic" without duplicates: /ip firewall filter add chain=input comment="default configuration" protocol=icmp add chain=input comment="default configuration" connection-state=established add chain=input comment="de...

ezrollin

I see a few duplicates in the default config. Do these rules go from top -> down like in Cisco's ACLs? If so, is there an implicit deny all at the end? Ex: in your post, you have a "drop everything else" in the middle of the settings... how does the processor know when to "drop everyt...

ezrollin

Maybe this is what we are looking for!
http://wiki.mikrotik.com/wiki/Manual:Co ... Management

Its this command:
/system backup save name=BasicRtrBackup

ezrollin

This works, on a scheduler repetitive check (like every 30secs), but I still have a lot to learn! Feel free to help me out! :local scheduleName "IDS_Schedule" # :local i :local startBuf [:toarray [/log find message~"critical" || message~"warning" || message~"login ...

ezrollin

I ONLY use WebFig and Putty. Is there any benefit to using WinBox? I have a safe mode button in WebFig but that doesnt save the entire config. I can copy my text version of my config, but I dont think that saves the entire config either. I keep getting Internal Server Error and kicked out of the Web...

ezrollin

hah, I've locked myself out too, trying to add too much security. I'm not sure how to back up the settings, but I saved my whole router's config so I didnt loose anything important. Hope you get your questions answered. Viva MikroTik!

ezrollin

Couldnt find this in the Manual (I have problems finding what I need)
What are the simple WebFig router types?
Like: CPE, Home AP, PTP Bridge, WISP AP.
Where can I find this info?
sorry for such a dumb question. thanks!

ezrollin

can I get a little help on something so simple, yet fun. Sorry I dont have the time but I eventually will

ezrollin

anyone up for this, want to help me consolidate for a good home wifi AP security? If not I will eventually get around to learning the syntax and config it how i want. thanks

ezrollin

My first sentence says: I wanted to see examples of how to have decent security. I want to learn the syntax. I want to learn how to create IDS/IPS systems. Just diving in head first trying to learn this stuff. I like the CLI but dont understand these chains yet. I will revise it soon. I really enjoy...

ezrollin

actually, I figured it out: " connection-limit " was looking for a netmask : add chain=input protocol=tcp connection-limit=100,255.255.255.0 action=add-src-to-address-list address-list=blocked-addr address-list-timeout=1d I was following the basic firewall/home setup in the online user man...

ezrollin

Sorry, didnt know how to monitor firewall rule stats? You are talking to a complete idiot. I am completely new to RouterOS syntax and scripting. Heck, I havent touched a computer in over 2 years and am jumping right back into networking. PLEASE HELP ME FIX MY SCRIPT/add DDoS,flood events,etc: /syste...

ezrollin

thats what I was wondering, what system would I have to use? NetWatch? WatchDog? Torch? Traffic Mon? IDK I just now started working on MikroTik's O/S today.

Is there a way to enable Fast Reply on this board? Didnt see it in the settings. thanks

ezrollin

I went crazy, because I wanted to see examples of how to have decent security. My config file works fine and everything but I'm not sure if everything works the way its supposed to as the Access Control Lists (ACLs aka firewall rules) maybe in the wrong order and stuff like that? Its all just mushed...

ezrollin

Hi, I'm totally new to Tik language and scripting. Just for fun I want to do this: I'm wanting to make a script that on Critical firewall detection events(basically any severe intrusion,DDoS,Brute Force,syn/ping floods,port scans,etc), it alerts, just by simple beeps. I dont know the syntax or the b...

ezrollin

yep thats one of the ways i tried it. I tried "limit" and "100" and "limit,100" nothing worked. In the Cisco world it has the marker that shows where the error is but this is over my rookie head. The reason I thought the error lied in the connection-limit command was th...

ezrollin

sorry sir, I'm not getting it, can you hold my hand?
which value is the value that requires quotation marks? thanks

ezrollin

/ip firewall filter add chain=input protocol=tcp connection-limit=LIMIT,100 \ action=add-src-to-address-list address-list=blocked-addr address-list-timeout=1d keep getting a "value of limit contains invalid trailing characters" I think its a problem with the connection-limit command. Also,...

ezrollin

So thats why its been turning on and off, thanks!

EDIT: THAT has been my problem this whole time! Stupid auto complete!

ezrollin

Is there any way to manipulate the config file from WebFig or some other GUI like that? thanks!

ezrollin

http://wiki.mikrotik.com/wiki/Home_Firewall I figured out that those ^ scripts/configs must be from older versions of O/S or something cause my router CLI was wanting different syntax (mostly different order). It was expecting different commands. in putty, CTRL+V doesnt do anything at all.. I've bee...

ezrollin

I believe the /import command may get me going! thanks

ezrollin

I like that /export command! I can easily copy/paste that export to WordPad or something, modify it. Can I just paste it directly back in? Mine will have all sorts of complications from pasting to a terminal because of auto-fills. These are Cisco commands= would I have to "WR" or "cop...

ezrollin

Whenever I paste, it autofills what it thinks the command is going to be, it screws it all up.
In cisco you dont have to autofill or hit tab and it will autofill for you.
I could show you
thanks

ezrollin

Hi, I'm a CCNA again and my CCIE friend recommended this company to me so I got the RB2011UiAS-2HnD for my home network. My MikroTik is etherneted to my ISP DSL gateway (which also has a WEP active - I enabled MAC filtering). The ISP DSL gateway only connects TVs to netflix so I'm not worried about ...

Search found 52 matches