I have deployed an OmniTik5ac.
It acts as the NV2 Master, with default authenticate off.
All Sectors are syncing, and so far everything is playing well.
My real concern is : will there be unwanted broadcasts outside of the sync beaconing which may interfere with data broadcast from the slave sectors? P.S. to Mikrotik: would be nice if there was an NV2 beaconing mode as opposed to AP-Bridge. If, and only if, the OmniTik Master works in this configura...
We have many sectors which use NV2 and have had good success with NV2. With that said there are issues with Sync loss. We are using 30deg RF elements twistport horns with the Shielded RB Enclosures. I believe that this limits the sectors from hearing the beacons affecting Sync. What is the feasibili...
I have figured it out.
turns out the more specific route (ie. largest netmask or smallest subnet) is chosen over the larger subnet.
I have to filter the routes to discard smaller subnets from the prefix.
I have 2 bgp peers which advertise the same ASN. Peer 1 advertises a single /20 Peer 2 advertises a /20 and several /24s I have set the distance of the peer 1 routes to a lower value, yet the routes still prefer peer 2. It seems to prefer the smaller subnet first. I would like to prefer the peer 1 r...
The router I am installing has no video so ROS was installed on an x86 device which has video but ethernets are not recognized. I was pasting the key after moving the drive to the headless router. I installed the drive back into the original x86 device, manually entered the key, and it worked. Moved...
New x86 based router, installed ROS6.44 from ISO, and purchased new L6 license key.
Paste/Import key several times, and every time it reports no valid license.
Any suggestions as support seems to be having problems replying to me.
Turns out after rebooting my PC everything works fine again. Once I reboot the CRS328 the problem returns and I must reboot any devices attached to it to clear the problem. When the problem is present, Torching the SFP+ port connected to our main router, cures the problem while torch is running. Thi...
In my personal office I replaced an RB4011 which I was using as a switch, to a CRS328-24P-4s+. The new CRS328 is connected to an CCR1072-1G-8S+, through a pair of 10G transceivers and SM fiber. On the CRS328 I have a bridge with the SFP+ port added as a port as well as 1 ethernet port. My PC is conn...
I recently upgraded From ROS 6.3something to 6.40.2.
Now I can not log into the dude using any user/passwords.
I continually get login failed: invalid user name or password (6)
Flow analysis is just not fast enough to detect most DDOS attacks. We use Wanguard from andrisoft. Fiber from our uplinks first goes through an optic splitter and from the splitter out1 goes to our border router and out2 goes to an optic transceiver which Wanguard uses to sniff the packets in real t...
Can somebody at Mikrotik please confirm: As I understand it the APs have to either have GPS, or be on the same subnet, or both, in order to sync. If GPS is required then I would have to assume that a USB GPS device needs to be added. If neither is necessary, then please explain how they can magicall...
When a CPE has gone down for whatever reason the pppoe session is closed, however the dynamic server remains with an unknown interface. When the pppoe session is attempts to reconnect, it fails because the pool is already exists. This appears to be an inherent problem for making IPV6 work over pppoe...
This is the Complete history of the problem. I use eoip runnels often and never have had problems with them. Recently I created on which did not transport data. The tunnel was from a CCR1072 across an x86 with ROS to another x86 ROS router. When I could not get the EOIP tunnel moving traffic I creat...
The MTU is set 4 1500. If it were in fact the MTU the IP ping would have not gotten replies either. I am simply asking if anyone with an x86 with ROS 6 and sfp ports can verify this behaviour. The sfp card I have is a hotlava 4 port sfp card. Routers in question are the Maxxwave Corei7 Router as wel...
I have a few x86 routers using ROS v6 (6.34, 6.32, and 6.36). All of them have SPF cards. When I ping 1500 byte packets via IP the pings are replied too. When I MAC ping 1500 byte packets the pings timeout. If I lower the packet size to 498 bytes the MAC pings are replied too. Can anyone confirm thi...
Would it be too much to ask, if the log for a disconnection of a pppoe connection can include the server it disconnected from.
This would make diagnostics much easier.
I would venture to guess that the ros6.35 has problems with ethernet on CloudCore routers. I have Ether1 Flapping, which only started to flap after upgrade, the router it is connected to receives no Link Partner Advertisments. Also SFPplus1 was set to No Autonegotiate at 1gps, after upgrade it must ...
OK; so now the SXT gets a /63 assigned to testpool. Now ether1 needs a /64 for PD, and another /64 is needed by the DHCPv6 server. How do you propose I split the pool? EDIT: It would probably be preferred that the Dynamic-Static be heavily weighted as opposed to 1=no weight? Dynamic-Static sounds pa...
I can put the DHCP-Client on the Wireless interface and have a second DHCPv6 server on the pppoe-servers bridge. The problem with this is the Dynamic Static route with a distance of 1. Why not let OSPFv3 do the routing? or have an option in the DHCP server to not create Dynamic Static route for assi...
I have Mikrotik Clients (SXT) which connect with pppoe. The client then assigns IPv4 and IPV6 addresses to the users home routers. The home routers I have encountered require both PD and DHCPv6 addresses to work with IPV6. I would like to have 2 dhcp clients on my pppoe-out interface so that the SXT...
Using 10MHz wide channels aren't you?
If you were using 5MHz wide channels you would see the "ghosts" on both sides of your channel.
You can just ignore it...
EDIT:
No sorry.. I see that you are using 20 wide.
Have never seen this on 20MHz wide channels.
Go to the interface you see this on using winbox and have a look at the RX Stats tab.
Are there FCS errors?
If so check cables, Ends, Arrestors, POEs, etc.
Try gently cleaning the pins and wires on Ethernet ports and ends with a BURNISHING BRUSH.
If all else fails try a new ethernet port.
Not sure about icmp but amplified attacks use UDP and are delivered regardless of you dropping them. This continues to flood the upstream bandwidth. I have had attacks of over 1Gps take me down, and upstream speeds unknown but took out 10Gbps upstream. The only defense is DDOS mitigation software wh...
My setup is as follows: RB(PPPOE server) --- Ethernet --- RB(AP Sector *bridged*) --- Wireless --- RB Client(PPPOE client) Client gets a LLv6 address and a ipv6 default route to pppoe-out1 (with no gateway address) If I ping the LLv6 address of the PPPOE Server from the client through wlan interface...
I put a ubnt tough switch inbetween my tik and air fibre.
No more fcs errors on tik, but the tough switch reports rx errors on the port connected to the air fibre.
This is clearly an air fibre problem.
Have seen this on approx. 80% of all air fibre deployed.
WHMCS works great.
Just have to do some scripting and customization using mikrotik APIs and all is good.
Our WHMCS portal provides daily usage summary.
Invoices bill for bandwidth overages etc.
several older RB2011LS-IN routers deployed with no issues. Have recently purchased and deployed a few RB2011L-IN routers and these routers are doing just that. They will route traffic then after a several hours to days the Gigabit Switch group seems to disconnect from the CPU and begins switching al...
I have installed v6rc3 on a RB2011LS.
According to the latest newsletter this RB supports the new cable-test feature.
When I monitor as per the newsletter, no length/open/short information is displayed.
The Wavion has settings to hide the ssid just as any other AP. Be sure to also use 802.11 as the protocol. Use RTS/CTS on the client also. Your best to set the SSID manually. When scanning, you may not see the AP at a very high signal level as the Wavion must establish the parameters for a beam, and...
setup pppoe server on each pop which hands out public IPs.
use ospf to route the public IPs over your private ip routes.
At your gateway nat everything that is not a public IP.
Has anyone with this problem simply tryed to recompress the pins on the cat5 connectors?
Have seen many a cable test good then not be able move current, and all the time having to do with loosed pins on the cat5 ends.
Cracked insulators on the power lines can cause arcing which can impact a link. Power lines themselves can but not to the extent that you describe. Sounds like something is not quite right with your link. With the equipment you have outlined you should be able to acheive those signal levels at many ...
Order yourself some attenuators to attenuate your signals on both ends of the link.
By doing this you increase the polar seperation and end up with much better CCQ.
If you use pppoe you the client will get a /32 (a single IP).
This IP as routed via OSPF, allowing you to use x.x.x.1-x.x.x.254 to assign to your clients.
Sounds to me like your measure you distance at ground level.
If so then you are most certainly overshooting, if it is at 80feet.
Is it a laptop you are testing with?
grounding loops are cause due to a potential difference from one ground point to another ground point. This is due to resistance at the point(s) of connection.(ie. Bolt points of a tower) To avoid grounding loops in audio many installers will solder connectors following crimping. Oxidation on connec...
The dc power supplies are isolated from ground due to the decoupling of the transformer. The transformer is then grounded directly to the power companies ground. The only reason for grounding loops would be poor conductance of the ground, ie. Relying on the bolted sections of a tower to ground. Ulti...
The mac addresses will be different for each ether interface so that not likely the problem.
The problem is most likely the profile for each pppoe-client is default.
or possibly the default route having to paths to the same gateway.
Use a smart charger to charge the battery banks. On the load side use a Xantrex controller as a load controller to protect the batteries. There are 2 point of views on the load controller and protection of batteries. My view... Better to protect your investment in batteries, for the few minutes you'...
Before they do any changes, they must first clean things up. The User-Manager still continues to use 2 databases. Try clearing stats in web, and you will notice the stats in the console continue to accumulate without having been cleared. Lots and Lots of clean-up to do. As well User-Manager developm...
That is the worst advise possible!!!
You have obviously NEVER tryed this......
You can attempt this, however, be prepared for hours (possibly days in our case) of adding profiles for each user through the web interface (the only way).
power is constant. it is like having a litre of water pour it into a wide glass and the level of the water is low; pour it into a narrow glass and the water level is high. Get a simple book on audio amplifiers and get a grasp of power, it really is simple. 10db using a 5MHz channel is going be relat...
The signal to noise should not be effected by fresnal encroachment, however the integrity of the signal will most certainly be affected. What is being refered to as the 1st fresnal is the full field or full power. The second Fresnal is the half power or ~70% field. Encroachment into the first frezna...
Looks identical to one of ours. It was confirmed that an electrical transformer approx. 30 meters away was directly hit and this was the result. The surge went through the electrical wiring and through the poe to the RB. The radio card which was in use continues to work like a champ, while we had to...
Correct me if I am wrong..... You are trying to connect several sector antennas to a single radio? If this is true use a signal splitter. If you use a signal 2 output splitter the output power is dropped by 3db on each output. a 3way is about 4.5db loss, adn a 4way is 6 db loss. so if you are using ...
It is because V5 requires a User have a profile defined. Unfortunately there is now way in which to add the profile from the command line making V5 usermanager completely useless unless 1) you ar just starting out and only have a few clients to enter 2) self abusive and wish to add profiles to thous...
Those settings are dependant upon your profiles.
The server profile should have a local address as well as the dns servers defined.
I have noticed that in many examples these appear to be missing.
When I had stated So when setting up IPV6 it must be tackled by completely ignoring the IPV4 setup (with some exceptions [not going there]). Here is an example: He can bond 2 dsl lines, but also create a virtual bridge over IPV4 to a machine Not on his physical network. That virtual bridge CAN bridg...
If rudy is doing the nating then he just has to run dual stack. I have Natted, as well as Public unNatted IPV4 as well as a dual stack IPV6. IPV6 must be viewed as another internet (Internet 2.0). Completely incompatable to IPV4 (Internet 1.0). It just happens to work over the same Physical media. S...
As far as delivery of address space to the client, I am also perplexed, aside from giving them a subnet and have them self confgure their own routers. As an ISP you control the addressing assigned to the clients outer interfaces, but are there not legal ramifications and liabilties in having control...
Best thing to do is to start to conceptualize IPV6 and worry about the symantics later. First off, I would recommend thinking of IPV4 as Hexidecimal (ie FF:FF:FF:FF = 255.255.255.255). Now IPv6 is simply 4 hex digits 8 times as oppose to ipV4 being 2 Hex digits 4 times (ie ffff:ffff:ffff:ffff:ffff:f...
uhhhh.... :? Don't do that!!! Easy way to overheat/overdrive the amp and/or create noise. You need to keep in mind that the output power is the total power out both connectors at a standard 20MHz wide signal. 25db - ~3db for Dual connector - ~3db for 40MHz wide channel = ~ 19db It likely not precise...
The User manager Web interface does not correlate to the terminal commands either. If I reset-counters from the command line, then print the user details, the stats are reset. The web interface stats only reset if reset from the web interface. This is a real problem as I have extensive scripting to ...
My APs are set to access A Usermanager router for Radius. Have created a new 5.2 Router with Usermanager, imported a database from v3 user-manager and set an AP to use the new user-manaager. My Users on the AP are now not authenicating, the AP`s radius log shows Profile not found error. So within Us...
WHMCS works well.
You have to be prepared to do some Mikrotik API coding in PHP to integrate UserManager with WHMCS.
Or if using a radius server write some PHP SQL code in order to integrate.
Every situation requires different settings. It is not just something that can be exchanged. I would venture to guess that the rx signal on either end of that 500m connection is stronger than -50. First thing I would recommend is to lower your tx-power in increments and check your speeds. Work to tr...
We have a pair of systems with i5 QuadCore with 8 Copper GigE Ports.
We can run Bandwidthtest from device to device and do 1Gbps in both directions without going over 2% CPU resource, and that is with connection tracking on.
Wake on Lan is an etremely simple packet.
If it does not work, I would recommend testing the capabilities of your device you wish to wake using a PC application on the local net of the device.
There are MANY free WOL packages with source code available.
My recommendation is to split your pppoe-pool into 2 seperate pools. One for dynamic assignment and the other for static assignment. Statically assign ips to your client from the static pool by specifying an IP to each ppp user/profile. Once assigned you can delete the <pppoe-user> interface from th...
System Specs: Dual Core Atom D510, 2Gig Ram, 120Gig sata2 SSD. User manager doesn't work as the changelog would indicate. [admin@Test] > tool [admin@Test] /tool> user-man [admin@Test] /tool user-manager> user [admin@Test] /tool user-manager user> pr Flags: X - disabled, A - active, I - incomplete er...
1 <1 ms <1 ms <1 ms 2001:470:1f11:bbe::1 2 31 ms 29 ms 57 ms QuickStream-1.tunnel.tserv9.chi1.ipv6.he.net [2001:470:1f10:bbe::1] 3 28 ms 27 ms 27 ms gige-g3-4.core1.chi1.he.net [2001:470:0:6e::1] 4 50 ms 51 ms 46 ms 10gigabitethernet2-4.core1.nyc4.he.net [2001:470:0:4e::2] 5 120 ms 118 ms 127 ms 10g...
instead of the following: $API->write('/ip/hotspot/user/set', false); $API->write('=name=mv99', false); $API->write('=password=phptest'); Do the following: $API->write('/tool/user-manager/user/print', false); $API->write('?name=mv99'); Then parse out from the return data the field .id and use the va...
from your web browser access the router by IP.
On the page that is displayed, download winbox.
I would recommend upgrading to 4.16 first as it is the latest V4 version and it will include the latest recommended version of winbox downloadable through the web interface of the router board.
Try unselecting some of your lowest datarates.
Retransmits may cause datarate scaling. which will at times be worse for performance than the retransmits.
If you are dealing frequently with long term outages which a UPS does not accomodate, then perhaps you should consider a Backup Generator with a Bypass switch to your panel.
Please fix the watchdog so that it creates a supout file.
This way the NV2 protocol can be debugged.
This would allow me to have the supout available from the client as well as the AP.
It also reboots the client and AP so minimal downtime is experienced.
I can verify that on 433 and 411 Routerboards all appears to be working well so far. The posted V5rc1 is performing Excellent over the Prerelease V5rc1. We are using NV2 nstreme on 2.4GHz-10MHz. We also have a backhaul link we are testing using 5GHz-only-N using NV2-nstreme and wds, and it is perfor...
Torch always has 0 bps for TX.
WatchDog Timer will trigger if an IP address is specified, even though enabled is unchecked.
NV2 still freezes from time to time.
The client is also a transmitter, however the ack timeout on the client should be set for the client distance. Only the AP should be set for the furthest. As for rts/cts Just set the AP for cts to self. As far as nstreme; it has come a long way, and performs rather well. With that said, nstreme does...
Use WPA2 PSK and aes cmm for your unicast and group cyphers. Use a complex string for your Key. Using aes offloads the work onto the wireless card, which has descrete logic to handle the encryption. If you merely use encryted pppoe tunnels then the router board is tasked to handle encryption. Hence ...
pppoe encryption is just encrytion over the tunnel.
If someone can connect to the AP they will potentially try and try and try again to do whatever it is they want to do.
This can and will effect the performance of your AP.
Every transmition requires a receive of an acknowledgement (does not matter which radio Client or AP). The ack timeout is the amount of time from transmition before an ack can be expected to be received. If this does not happen withing the acktimeout setting, the the transmitted packet is assume to ...
Set your ACK timeout on your AP to be that of your furthest Client (Highest ACK timeout).
When the ACK go above this number the client will disconnect automatically.
Pretty Much the same. You do however need to consider ice loading when figuring the load aspects of the tower. Signals 2.4, and 5.8.... Never had problem with signal degredation, with exception to thick, fast, and wet sleet. Rain is much worse to deal with. It is possible to get snow and ice build u...
It is disheartening that this thread turned into something other than the problem at hand. I already changed antenna, no luck Already changed polarity V to H, no luck Is it possible if the RX Sensitivity in AP side was damaged ? So AP could not hear Client clearly. Please advice. I already changed a...
Routers just pass the data on to the next hop, therefore routing public addresses is not a problem at all.
I would suggest using OSPF for the routing protocol and use PPPoE to connect the device (Biometric Scanner).
Have your Gateway provider route the public address through your gateway address.
Be sure to open terminal window and type: sys rou upg answer yes, then do a system reboot. This ensures that the boards firmware is up to date. If you continue to experience the problem, try reseating the radio cards. If the problm persists the try moving the cards to a different mpci slot. If still...
On a side note regarding multiple radio cards in a single enclosure: RF signals bounce around within an enclosure, these reflections can also cause gain within the enclosure. Good practice in these scenarios is to line the inner surfaces of the enclose with microwave absorbing materials. The drawbac...
Do a uni-direction test in one direction then in the other.
Post the ccqs in from each test.
I would be inclined to think that one direction is impacted more than the other.
This would indicate that one antenna is too close to another antenna on a near frequency.
SOLAR BLAST: A magnetic filament on the sun erupted yesterday, May 24th, and the blast hurled a coronal mass ejection (CME) in the general direction of Earth. NASA's Solar Dynamics Observatory recorded the action around the blast site in 10xHDTV resolution: http://www.spaceweather.com Possibility.....
If you use a charge controller and run off battery you could use one of these (see link below) to sense the primary supply, when it is no longer available it can toggle a relay which switches over to the secondary supply, when the it senses the primary it will switch back automatically. You have to ...
By vertical seperation the assumption must be made that it is on a vertical structure ie. tower.
On building tops the option may be either vertical or horizontal.
Spacial diversity is the key.
Which is better is dependant upon the environment.
SNR = Signal to noise ratio.
Signal-to-noise ratio compares the level of a desired signal to the level of background noise. The higher the ratio, the less obtrusive the background noise is
A goal would be to maintain all your backhauls with 20db or more Signal to noise.
Truth of matter is that full duplex can only TRUELY be accomplished with ASIC or discrete logic.
Once a CPU is introduced, TRUE duplex is not possible, but EXTREMELY close.
Technically yes, I know this. I have reverse engineered integrated curcuits, so TECHNICALLY I am VERY aware of what the limitations are. When some one asks for 100Mbps full duplex, they are usually asking for 100Mbps Symetrical. And much of the time they are only interested in the TECHNICAL details ...
If you notice: When using a 5Mhz wide channel you will see 2 lobes (or ghosts). When using a 10Mhz wide channel you will only see 1 lobe (or ghost). you simply ultimately reduced the amount of interference between your sectors by going to a 10 Mhz wide channel. Also you increased your range by 3db (...
I agree that anything 802.11 is half duplex by nature. With that said; When I can do a routerboard to routerboard TCP speedtest over N and accomplish 90Mbps UP and 90Mbps Down simultaneously, then I would have to make a statement that it is purdy dang close to full duplex for the likes of me. With q...
Set the center channels into the scan list. Take advantage of it, as that is why it is there. When the signal is good enough you will see signal lobes on 5 and 10 Meg channels. It would appear that it does not matter which radio cards are in use. It seems that using bandpass filters degrades the per...
Had the same problem. Did a reset config on the wireless interface of my AP. Then reset it up. Everything worked fine afterwords. After apgrade of client the only option is to do the reset and reconfig using script. Be careful to reenable the interface in the script, as a reset config disables the i...
If I am not mistaken the RTS/CTS is off by default.
Uncheck the off box.
This will enable the client to request to send data.
The problem you are encountering is due to the fact that this client continues to broadcast, ultimately deafening the AP to the other clients.
Peltier Junctions are super easy to impliment and all one has to do is reverse the polarity and it becomes a cooler instead of a heater. With that said it is true that the operating temp range is more than sufficient. Longevity isn't even a concern, as by the time the rb fails, it is time to upgrade...
The chains need best seperation or isolation. Having different polarities nets you easy seperation. Alternatively you can space your antennas for seperation, but with this you need ALOT of seperation. N is designed for multipath and seperation nets you a better multipath senario, however seperation ...
Just a suggestion, as I have never tryed this. You should be able to specify the ip address for your users using user manager. Even though it is a single subnet on the hotspot treat it like 2 subnets and asign the users to a secific subnet. In the firewall rules you can mark-routing based upon subnet.
Have you tryed a re-aim after or around sunset?
If you can be aimed to remain up at night, and it drops during the day, then there is surely something affecting the microwave field.
Over much longer distances I can achieve those signals from a 19db panel to a 5db omni. Something else is wrong. Is it truely a clear line of sight? At what heights are your antennas mounted? The reason I ask, is that the freznel does have to be taken into account. What kind of environment, country ...
High power antennas are the best way to go.
Better front to back, less side lobing, smaller beam width, etc, etc.
Price, weight, loading, and realestate being the only true sticking points.
from the serial console does the ether port display as registered when pluged into a switch, router or device?
If so then it is possible I am not correct.
I am only giving a possible scenario, you must continue your diagnostics and verify waranty etc.
Nat based on the ip address instead of interface.
You may require multiple nat rules.
Just do not nat the public IPs.
Also be sure that your provider appropriately routes those IPs to your routers IP.
Sorry JP, but that is not necessarily true. Reflections can be strong enough to cause the LNA to become saturated causing the low signal strengths. Metal structures can be troublsome. Try lowering the Output power and see if the receive strength increases. Metal distorts magnetic fields. Microwave c...
Add up the total wattage required for all devices including router board, and power loss over the cable.
The convert back to Current for the supply voltage.
I see a few postings with ping times; Are these ping times just across the wireless 'N' link?
If so 60-69 ms is terrible.
Keeping latencies down is important also.
The poor ccq on the bad ap should give it away. If the card has 2 antenna connectors try the alternate, and remember to change it in the wireless settings. Next try changing the card. If that still does not work then replace LMR cabling with New. Then Pigtails. Then Antennas. If all these steps stil...
Bizarre that one would have to upgrade the license even though it showed Level 4 as the license.
The only noticable change was that the R52N is now being recognized.
Ok. In all the ranter somebodies request when unheard. regarding the R5(2)N card not being recognized by the Router OS V4beta3. I also have encountered this. I have yet to see a real R52N card work. It it beyond comprehension that some cards are recognized and some are not. Is it a batch problem? If...
I have dude server installed on a 433auh. I want to run a script on the 433auh on a notification. can this be done and how. execute on server is not listed. [edit] Would really like to access rb433auh connected gsm device for sms. Cell Carrier sms page requires authentication. email server requires ...
Depends upon how your network is set up.
If you have a form of authentication through radius or usermanager, then you could view the users session data which should tell you the IP address of the AP they are connected to.