https://i.ibb.co/L80WY9v/pesqueiro.png What makes RouterOS alone create as many rules with the "place hotspot rules here" comment? The problem is that these rules appear at first by overlapping the 2 rules I need at the top. I think I was able to create a startup script to move to the top...

++1

I was with the configuration below: /routing bgp instance set default as=XXXXXX client-to-client-reflection=no disabled=yes router-id=XXX.XX.68.X add as=XXXXXX client-to-client-reflection=no name=VIVO out-filter=vivo-out router-id=XXX.XX.69.X routing-table=VIVO add as=XXXXXX client-to-client-reflect...

Maybe dynamic is a nullable field, but is not a nomal condition for other dynamics in the system. /interface pppoe-server add name=pppoe-in1 service="" user=teste NOT WORK print where dynamic=no NOT WORK remove [find dynamic=no] WORK print where !dynamic NOT WORK remove [find !dynamic] WOR...

Hi,

I upgraded many SXT clients, in some ones NAT option on QuickSet is uncheck.
Some field technicians reported unable to check NAT options and solution is downgrade to v6.40.5.
I could not identify the similarity between cases.
Someone with the same problem?

Tried to do some script based update of ROS version on 100's of RB (mostly 951 and 2011). As I run /system package update install via terminal I start to see percents of upgrade progres switch is not what I need, for if I run it via telnet from remote server the connection will stay online until th...

It's not absolutely true.
Server name is send on tls header.
But all other information are encrypted.
Search for SNI Extension to the TLS. (Server Name Identification)

Enviado de meu SM-G800H usando Tapatalk

Search for:
IP accounting
Trafic Flow
Pack Sniffer

Enviado de meu SM-G800H usando Tapatalk

After update RB 750 v.6.38 to 6.39.1 is di. Nothig help .......reset or hardware reset. Netinstall not help too. Blink only power light.

My mAP broken too

Enviado de meu SM-G800H usando Tapatalk

Mu backup was missing to!

Enviado de meu SM-G800H usando Tapatalk

Isolate by connection transmited bytes. Search on Wiki for Heavy traffic

Enviado de meu SM-G800H usando Tapatalk

I Found problem, was in api library, its solved.
https://github.com/f5eng/mikronode-ng/issues/17

Today, Hotspot Walled Garden use DNS cache to pass all request to IP resolved from DNS, when HTTPS request is made. Google and Facebook use same servers for many services. Put Facebook/Google API com Walled garden is same to put all services. And is important option to disable actual DNS use for Wal...

OK but on firsts bytes. On first push packet

Enviado de meu SM-G800H usando Tapatalk

I won't claim to understand it, but certificate is not encrypted so common name/alt name can be read from it. You're right, but mikrotik uses the DNS cache and frees everything going to a particular IP regardless of the requested hostname. I'm facing problem with this here, my provider has a google...

I understand that mikrotik cannot lookup inside the packets to see the real request destination by Host header. But the hotspot code can have an option to check the DNS resolutions (yes All DNS resolutions are being made by the mikrotik) and when there are an resolution for a name in walled garden ...

Boa noite senhores, estou com problemas com ip válido, pois as operadoras estão com poucos ips disponíveis e repassam ips iniciando em 100.0.0.0 e assim o Cloud do MK não se atualiza com o IP correto e perco acesso a uma câmera IP que está rodando atrás de uma RB com ppp para a USB do Modem 3g da V...

To explain my problem I created with some RBs that I have at home a very reduced and objective scenario. Basically the problem occurs across my network where I have 2 routes. If I register on The Dude an equipment then I change my route, SNMP stops working. In the examples of the prints the commands...

I Use version 6.37 no secure.

Enviado de meu SM-G800H usando Tapatalk

Hi, I'm facing a problem that seems defect crash electric, but has occurred three times in the last month which leaves me concerned. I wonder of you will agree that it is defective. 1) In a POP: Nano -> Ominitik (PA 5.8) -> Groove (PA 2.4) All ports in bridge, Groove stopped, clients fell, but Omini...

Hi, I'm writing a script to get the result scan every 5s. I use mikronode-ng but I think this is a problem RouterOS. By sending the second command CPU lock in 100% it only happens if I send the parameter "rounds". When sending =duration=3 for example it does not. I'm completely disconnecti...

I do that.

http://blog.mazolini.com.br/2014/02/mik ... r.html?m=1

Enviado de meu SM-G800H usando Tapatalk

OK I NAT only client IP, not a BGP router IP.

Enviado de meu SM-G800H usando Tapatalk

I have 2 routers with BGP divulge one / 22 and different / 23 in each. I have one client with internal ip, I need to do NAT for specific ip. The download is the router 2, however need to upload it for the router 1. Say: 10.1.1.2 -> 203.0.113.2 I checked: / Ip settings September rp-filter = no tcp-sy...

Search for:
/system schedule
/tool fetch

Enviado de meu SM-G800H usando Tapatalk

Using wireless sniffer I can capture 802.11 protocol over TZSP protocol.
But when NV2is active mixed among the data SSID is visible in some packets.
Someone has a dissector for NV2?

References:
http://wiki.mikrotik.com/wiki/Manual:In ... ss#Sniffer
http://wiki.mikrotik.com/wiki/Manual:Nv2

Insert Flags on result of API interface wireless scan.

Enviado de meu SM-G800H usando Tapatalk

Its possible I use. Facebook and Google+. Redirect clients to external php site with is previous authorized for OAUTH in this social networking. Without a server you no have url for redirect work or authorize oAuth. It's no easy but work. The easy is share some content with Facebook to have trial. E...

This is HSTS is a Android Chrome fail.

Enviado de meu SM-G800H usando Tapatalk

If i may jump into conversation. From what i notices MikroTik really loves when feature description is set in stone - so there are actual "Internet Standard". From what i was able to find on this topic is: a) http://tools.ietf.org/id/draft-bagnulo-behave-nat64-03.txt "This Internet-D...

I am creating a hotspot and needed to force the user to go through my page before login. I did the redirect, but if the customer call direct GET / login?Username=T-<mac> he can access. I would like to add a token in the http header or qurey-path or use the Referer header. For this thought of using t...