MikroTik

lele

Back on this. It's the table, breaks rr even on v4. /routing bgp template add address-families=ip as=65531 cluster-id=10.50.50.1 disabled=no name="test -v4" router-id=10.50.50.1 routing-table=main /routing bgp connection add address-families=ip as=65531 connect=yes disabled=no listen=yes l...

lele

Hello, I am not sure I understand how values in BGP templates are applied to connections. Let's take the router-id as an example: if I am using winbox while creating/editing a connection from a template that has a router-id , if I hit the "apply" button the router-id is copied in the conne...

lele

I'm having similar problems since upgrading to from 7.08 to 7.16 with multiple cap ax and hap ax3 devices. For me, It seems the errors mostly occur with Intel hardware, older Apple devices(iPhone 11 and 13) and older Android(TV) devices. I concur. I am fighting these days with WiFI issues on hap ax...

lele

It has 209 of them. Thought you could extrapolate from one example, since they’re all the same but for the name and address. Obviously I was wrong.
(also, the snippet above with the outgoing announces shows several peers)

lele

show your bgp connections configuration. /routing bgp template add address-families=ipv6 as=8224 cluster-id=8.2.2.4 disabled=no input.filter=ibgp_v6_rr_restricted_in name=reflector-v6 nexthop-choice=propagate \ output.filter-chain=ibgp_v6_rr_restricted_out router-id=195.72.193.8 routing-table=refle...

lele

Coming back with some more information: - all the routes in the reflector ( /ipv6/route/print ) have the originating routers loopback as next-hop, or the public p2p network between the gateway and the customer/peer/subnetwork. - the template is of course ibgp, sets local.role=ibgp-rr, nexthop-choice...

lele

These are the routes IN the reflector: Screenshot from 2024-12-23 17-57-56.png These are the announces out of the reflector. 2a01:2d8::b1 is the reflector's IPv6. 0 peer=v6-uni-abg-cri-bb-ar1-1 dst=2a01:2d8:aca0::/48 afi=ipv6 local-pref=100 med=100 nexthop=2a01:2d8::b1 origin=0 as-path=sequence 6552...

lele

I can't control the next hop of every announce that's coming from rr-clients, but some _do_ have nexthop self. Despite that every single reflected route on the clients has the reflector loopback address as next-hop. Appreciate trying to help, but I stand that a reflector should never, ever change th...

lele

Thanks for the suggestion. I tried. It doesn't.

lele

Shouldn't it be exactly the opposite? An RR (by definition) should propagate learned routes to clients and keep the original next-hop, not replace it with self, which is what is doing here.

lele

Hello,
trying to set up an IPv6 BGP reflector with ROS 7.17rc3.

Clients get the routes, but next-hop is always set to the reflector itself. Have found posts from 2022 detailing similar issues, but setting next-hop in a filter, as they suggest, is *not* an option. Is this still unfixed, then?

lele

Thanks, sirbryan, that’s some interesting information. We have been facing issues during tests with the specific brand of DWDM sfps we are using, that went away with 7.17. And that’s why we’re introducing a system with rc software in production. So going to older versions could be an issue, here. Th...

lele

We considered the 2216 as border routers for several months, and always pushed the decision back due to the issues we were seeing with BGP and v7 in other, smaller, set ups. In the end, we ditched them as borders in favour of refurb MX204s. But we hoped to use them as backbone/core. This is proving ...

lele

CCR2216 can do hardware offload to 120k IPv4 route4s and about 20k IPv6 routes. Shouldn't it fall back to CPU routing? You don't get to do large amount of traffic with more than 120k destinations at once, so routing the least use with the CPU should be okay-ish. Anyways, if I understand what sirbry...

lele

We have a number of aging CCR1072 we're in the process of reconfiguring on the live network, and keep meeting issues with changing MTU on ethernet interfaces (or vlans) that seem not to be reflected in the hardware. The new MTU is shown in the cli/gui, the system *thinks* the new value is set, but f...

lele

We are in the process of deploying 4 CCR2216s as "backbone" routers, replacing the aging 1072s. They are basically used as L3 switches, no firewall (just basic input firewall), no nat, no conntrack, single table. Just several fast ports with traffic going trough, connecting the border with...

lele

Aggregates on ROSv7 is similar to JunOS. I stumbled upon this today trying to set up routing between two MX204s and two CCR2216s. Correct me if I am wrong. It's similar in the sense that both need to somewhat declare the aggregate, but in the case of junos 'aggregate' or 'announce' routes, they'd b...

lele

FYI, managed to somewhat reproduce it, it’s definitely heavy traffic related, and only the interfaces with large MTU would lock up, that’s what made sfpp1 different. Still present in 6.49.13.

lele

Hello, this is weird. we have a CCR1072 still in production as a border router in a regional IX. It runs latest 6.49 (although this happened with different versions), does one BGP full view plus about 50 smaller peers, and pretty much nothing else except for IGP and input (-> to the router) firewall...

lele

Just an heads up. Last night I upgraded one of our two BGP route reflectors from 7.11.2 to 7.12.1. They have about 200+ iBGP peers/clients, the device in question is a 2004 running v7. For reference the other is a 1072 running on v6. The RR has been quite stable for months apart for minor issues, on...

lele

That exactly how I am doing it now, works, but update and delete operations typically take two requests as i need to get the *id first. Was considering caching *ids externally, so i could operate on those directly, as long as the device state appears to be coherent. Can always fall back to "saf...

lele

My goal is to insert blocks of configuration into an already manually configured system. Such blocks are like firewall/nat rules/lists, new interfaces, routes etc. I need to be able to change, remove these configuration snippets when external conditions change without disrupting the operation. And r...

lele

Hello, I couldn't find any documentation on on the persistence of internal ids (the *HEX type id) that are returned by APIs for referencing objects. Is it safe to assume they will not change for a given object unless the object is deleted/recreated? If I create an object by the API, is it safe to st...

lele

That is a very general statement you are stating. There are plenty of reports but not all can be attributed to ROS, many can be misconfiguration. When you say fix will come at 7.11, it is understood that some particular fix will come at 7.11. It's a general statement for sure. But 7.10 still has so...

lele

Please let us know if you are aware of any issues with current 7.x version on your setups. Just to name an handful that comes to mind: - So far (admittedly before 7.2, we haven't been trying that yet) we haven't had a single 6 > 7 upgrade that did not need manual adjustments to work as intended. Ma...

lele

As v7.x is a little different than v6, currently fix backporting might take unreasonable amount of time, and it should not be expected at v6 at the particular moment. Ah yes "long term support". So correct me if I am wrong. We're left to choose if we want to keep rebooting our production ...

lele

Obviously not, that is why I am asking to explain when flapping bgp session is more beneficial than just setting up properly bgp input. In the typical case, when you have hundreds of heterogeneous peers, filtering is not always feasible for a number of them. The last line of defense against someone...

lele

If you are not receiving full BGP feeds, then typically you know what prefixes should be advertised and as mentioned before proper setup of input.accept-* parameters will not allow flooding of unwanted prefixes and session is never dropped. IF you are receiving full bgp feed from the router then se...

lele

Any update guys ? Does anyone getting reboots with vi stable ? For me, it's still rebooting with v7.1.1 Everbody I know with this issue has had it gone entirely since 7.1.1, except for you. Probably there are two reasons for the reboots, one is fixed by 7.1.1 and the other is possibly configuration...

lele

sorry misread the original post. max-prefix-limit most likely will not be added.

You got to be kidding, right?

lele

Hey, i have the same Problem with my RB3011. With ROS6 i have with src nat, 40 Firewall rules, some mangle and two queue rules 200Mbit/s from my ISP and with ROS7 only 150Mbit/s. The CPU is then at 75-85% and with ROS6 only at 20% An RB3011 is my home's main router, doing bgp, ospf, dhcp, firewall,...

lele

Ros7?

6.49.2

lele

We have about 40 CCR2004s in production. Only two of them are rebooting regularily. Plus a third that has rebooted only once. Still, we can't determine what is making these two reboot. They aren't the most loaded device in the network or the most articulated configuration. All they do is: - an handf...

lele

I have upgraded an RB750 to 6.31. Since the upgrade, one of the ethernet ports is flapping "no link"/"link ok" every 10 seconds and is obviously showing very poor performance. The log also registers link down, link up events. The LED stays lit. The ethernet in question is connect...

lele

So, using NTP on CCR is sure to be the largest contributing factor, but it's not 100% limited to that scope. While unrelated bugs can't be ruled out, this specific issue is tied to the processing of a leap second event from the NTP subsystem to the linux kernel. So it can not happen if you are not ...

lele

Given what happened. I would try and simulate the addition of a leap second on the CCRs well before june 30.

Now, tell me I did not warn you.

lele

There is at least a report of spurious leap seconds observed in Italy on march 31, 23.59.60, with a possible explaination: http://lists.ntp.org/pipermail/pool/2015-April/007338.html Given what happened. I would try and simulate the addition of a leap second on the CCRs well before june 30. cheers, L.

lele

Since it has been mentioned, there *is* something weird concerning leap seconds that *could* be related. We had a number of Linux hosts incorrectly adding a leap second last night: 2015-04-01T01:59:59.003687+02:00 fe-a-01 kernel: [9475817.256006] Clock: inserting leap second 23:59:60 UTC we are stil...

Search found 38 matches

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Inconsistency in BGP templates > connections values

Re: "not responding" - f.k.a. SA Query timeout

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

Re: ROS7 and BGP IPv6 Reflectors, still broken?

ROS7 and BGP IPv6 Reflectors, still broken?

Re: CCR2216 - Issues

Re: CCR2216 - Issues

Re: CCR2216 - Issues

CCR1072 on 6.49.1x+ not setting the actual MTU to the displayed value

Re: CCR2216 - Issues

Re: BGP Aggregate-Address alternative in Mikrotik

Re: CCR1072 on 6.49 suddenly stops forwarding traffic on most interfaces

CCR1072 on 6.49 suddenly stops forwarding traffic on most interfaces

Re: v7.12.1 [stable] is released!

Re: Internal IDs, persistence

Re: Internal IDs, persistence

Internal IDs, persistence

Re: v7.10 [stable] is released!

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

Re: ROS 7.1 BGP max-prefix-limit missing

Re: ROS 7.1 BGP max-prefix-limit missing

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

Re: ROS 7.1 BGP max-prefix-limit missing

Re: v7.1.1 is released!

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

6.31 on RB750, ethernet flapping

Re: Leap second bug present on TILE devices?

Re: all CCR crashed

Re: all CCR crashed

Re: all CCR crashed