rule="if (bgp-as-path XXXXX || bgp-as-path AAAA || bgp-as-path BBBB || bgp-as-path CCCC) {reject;};"rule="if (bgp-as-path XXXXX) {reject;}"
Anyone looked at this one yet? Performance? Also, I recall this was added on one of the 17.x versions, is this now in 17.2?*) l3hw - added initial HW offloading for VXLAN on compatible switches (additional fixes)
Can't. And ditto. If I need a loopback, I'll create one :)How do i delete loop back interface? i am not interested in
Of course. The tunnel is in a Running state.You have configured tunnels on both sides ?
Then Mikrotik should check that, when setting the identity and not accept spaces (and other characters that doesn't belong there) :)It would always be best to adhere to common hostname format standards as system identity translates to hostname of the device.
Also no response on my support ticket. Seems that is the norm these days.I reported it to support in March (SUP-110901) but never got any response.
And clearly you haven't read the forum posts.../routing/route print detail
Hire me as a QA engineer, and I will "try" it for you. Not my job, and not on my networks.Try 7.10.2 - works nicely.
Uhm, no? ISPs should not, ever, be filtering traffic. Not their responsibility. If my ISP blocks port 123 (or any port for that matter), I'll be cancelling services very promptly thereafter.Come on guys! It is "quite common" that an ISP blocks all traffic from UDP port 123
Nothing to do with Mikrotik. This is networking 1-0-1... Any router, will give you the exact same result.So I finally figured it out. Dam Mikrotik, that was a brain twister.
Restarting a core network device, holding millions of BGP routes, is not a way to 'solve' a problem. Glad it works for you though.I suggest you scheduling a reboot every 7/14 days in the night to refresh the routers. I solved in this way when I got bricked 4011...
Works fine here...Hi,
Upgrading from 6.48.x to 7.1.x - NTP client not working... stuck on waiting.
Oh yes - that's the other thing I do by default. admin username is deleted / renamed.- are you seriously using "admin" ?
/routing filter ?Cisco, Juniper, Huawei, Alcatel, etc... all have the option to create a "prefix-list" for filters. I'm surprised Mikrotik doesn't offer this option...
Wouldn't that also run every day on the first month?:if ([/system clock get date]~"/01/") do={
#place instructions here
};
LOLOnce per three years is more than enough.
Those are switches, not routers.CRS326
CRS112
CRS305
?
I'm sure it will be resolved in v7![]()
+1I guess us moving into Mimosa was the right decision in the end.
Yes - that's precisely why the topic says Denial of Service, and not ExploitThis is not an exploit.
/ip firewall address-list add address=127.0.0.1 comment="_TEST_" list="test" timeout=00:02:00
Because the OP *specifically* mentions MM fiber?Why 300 meters. With S+31DLC10D single mode sfp+ 10km. It is compatibleAs long as you're within the 300m distance limitation, yes. No reason why it won't work.
+1Sounds like your ISP is doing it wrong, very wrong in fact.
That's also true yes. x86 does not support vxmnet3, so no 10G.I think you are limited to E1000 cards if you use x86 but if you use CHR you can use vxmnet3 which will give more performance.
VMWare Workstation no. You'd need to use ESXi (vSphere).Does VMWare (Running inside Windows 10 PRO) support TRUNK interfaces? and How to achieve that?
Ah yes, of course. Thanks!On RB951-2n (R2) ether1 default L2MTU is 1600, that's why only ether2 appear in the export.
There's nothing pretty about it. It's a HUGE PITAYou forgot that RouterOS terminal by default will output pretty lines with colour codes
Perhaps, but max clients != even distributionThere should be a option to specify max amount of stations per AP
And IPv6 filter on dst-address doesn't work at all in WinboxHello!
RouterOS "ip route print where dst-address in x.x.x.x/z" is fast. But for a reason the same for ipv6 is slow (when the number of routes is large).
Please, make ipv6 route lookups fast as well.