Community discussions

MikroTik App
  4. RouterOS
  5. General

Wifi on wAP stops working after power failure

Post Reply
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Wifi on wAP stops working after power failure

Thu Mar 24, 2016 10:23 pm

Hi,

i have RB1100AHx2 as capsman, RB951G-2HnD and wAP as cap's. Problem that i have is after we have power failure i can't connect to wifi of wAP. I try to reboot it, restore it, reboot capsman,... Nothing helps.

Can you tell me what steps to take to fix this. In the logs i see that wAP connects to capsman, just no client can't connect to it. Btw the RB951G-2HnD works without a problem. Do you think i have a bad unit (wAP)?

Tnx.

edit:
I see that wAP doesn't have any dns servers and can't resolve names...
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Fri Mar 25, 2016 2:30 pm

I assume you're using wireless-cm2 package.

Do you see anything in wireless, capsman debug logs?

Steps I'd follow to rule out a bad unit:

1.- Upgrade ROS to current channel.
2.- Check the wAP firmware (System > Routerboard) and upgrade it if needed
3.- export its config, and reset it to no defaults, reload config

If problem persist, do a netinstall.

If problem persists, make a supout while the problem is happening and send it to support.
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Fri Mar 25, 2016 9:44 pm

Thanks,

yes i'm running the latest ROS and firmware. Using wireless-cm2.

Today i've tried with no defaults and then reloading config but with no luck.

I see that this happens when i want to connect to the wifi. For every connection to the wifi.

On capsman:
[::ffff:10.0.0.3:49396,Join,[00:0C:42:8C:xx:xx]] joined, provides radio(s): 00:0C:42:8C:xx:xx
3C:D0:F8:5B:xx:xx@cap3 connected
ether8: bridge port received packet with own address as source address (00:0c:42:8c:xx:xx), probably loop
3C:D0:F8:5B:xx:xx@cap3 disconnected, interface disabled

On cap (wAP):
CAP sent max keepalives without response
CAP selected CAPsMAN MikroTik-rack (::ffff:10.0.0.1:5246)
CAP joined MikroTik-rack (::ffff:10.0.0.1:5246)
CAP connected to MikroTik-rack (::ffff:10.0.0.1:5246)
CAP disconnected from MikroTik-rack (::ffff:10.0.0.1:5246)
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Fri Mar 25, 2016 10:42 pm

What is the "latest" ROS version you're using? there are several release channels...

You seem to have a loop on your caps bridge, so in turn RSTP disables the cap interface, double check your setup, or post an export here.
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 10:16 am

I have ROS 6.34.3 on all 3 of them.

What export would be important, supout? From cap or capsman?

Tnx for helping!
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 12:18 pm

A configuration export from the capsman controller and another from the cap, I meant a
Code: Select all
/export hide-sensitive
also a
Code: Select all
/system routerboard print
From a new terminal on each (edit out the serial number from that last command if desired).

How is that cap wired to the controller?
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 12:45 pm

I think i've captured all below. Cap is wired to manager port 3.

CAPMAN
Code: Select all
[admin@MikroTik-rack] > /system routerboard print
       routerboard: yes
             model: 1100AHx2
     serial-number: xxxxxxxxxx
     firmware-type: p2020
  factory-firmware: 3.18
  current-firmware: 3.24
  upgrade-firmware: 3.24
[admin@MikroTik-rack] > 

[admin@MikroTik-rack] > /export hide-sensitive
# mar/26/2016 11:27:42 by RouterOS 6.34.3
# software id = W6W4-Y7PS
#
/caps-man channel
add band=2ghz-b/g/n name=mansarda_ch
add band=2ghz-b/g/n name=wap_ch
add band=2ghz-b/g/n name=guest_ch
/interface ovpn-client
add connect-to=xxx mac-address=02:A0:DD:B6:06:5E max-mtu=1350 name=\
    ovpn-out1 user=xxxx
/interface bridge
add admin-mac=00:00:00:00:00:01 auto-mac=no name=bridge1
add name=bridge2
/interface ethernet
set [ find default-name=ether12 ]  speed=1Gbps
set [ find default-name=ether1 ] speed=1Gbps
set [ find default-name=ether2 ] speed=1Gbps
set [ find default-name=ether3 ] comment=wAP
set [ find default-name=ether4 ] 
set [ find default-name=ether9 ] 
/interface pppoe-client
add add-default-route=yes default-route-distance=1 disabled=no \
    interface="WAN - ether12" max-mru=1480 max-mtu=1480 name=pppoe-out1 \
    service-name=xxxx user=xxxx
/ip neighbor discovery
set "WAN - ether12" comment=SIOL
set ether1 comment="AP - Mansarda"
set ether2 comment=xxx
set ether3 comment=wAP
set ether4 comment=xxx
set ether9 comment=xxx
set pppoe-out1 comment=xxx
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm name=mansarda_sec
add authentication-types=wpa2-psk encryption=aes-ccm name=wap_sec
add authentication-types=wpa2-psk encryption=aes-ccm name=guest_sec
/caps-man configuration
add channel=mansarda_ch country=slovenia datapath.bridge=bridge1 mode=ap \
    multicast-helper=full name=mansarda_cfg security=mansarda_sec ssid=MATRIX
add channel=wap_ch country=slovenia datapath.bridge=bridge1 mode=ap \
    multicast-helper=full name=wap_cfg security=wap_sec ssid=MATRIX
add channel=guest_ch country=slovenia datapath.bridge=bridge2 mode=ap name=\
    guest_cfg security=guest_sec ssid="MATRIX - guest"
/caps-man interface
add arp=enabled channel=mansarda_ch comment="WiFi - mansarda - MATRIX" \
    configuration=mansarda_cfg disabled=no l2mtu=1600 mac-address=D4:CA:6D:DA:BD:FD \
    master-interface=none mtu=1500 name=cap1 radio-mac=D4:CA:6D:DA:BD:FD security=\
    mansarda_sec
add arp=enabled channel=guest_ch comment="WiFi - mansarda - MATRIX - guest" \
    configuration=guest_cfg disabled=no l2mtu=1600 mac-address=D6:CA:6D:DA:BD:FD \
    master-interface=cap1 mtu=1500 name=cap2 radio-mac=00:00:00:00:00:00 security=\
    guest_sec
add arp=enabled channel=wap_ch comment="WiFi - klet - MATRIX" configuration=wap_cfg \
    disabled=no l2mtu=1600 mac-address=00:0C:42:8C:F7:A6 master-interface=none mtu=\
    1500 name=cap3 radio-mac=00:0C:42:8C:F7:A6 security=wap_sec
add arp=enabled channel=guest_ch comment="WiFi - klet - MATRIX - guest" \
    configuration=guest_cfg disabled=no l2mtu=1600 mac-address=02:0C:42:8C:F7:A7 \
    master-interface=cap3 mtu=1500 name=cap4 radio-mac=00:00:00:00:00:00 security=\
    guest_sec
/ip neighbor discovery
set cap1 comment="WiFi - mansarda - MATRIX"
set cap2 comment="WiFi - mansarda - MATRIX - guest"
set cap3 comment="WiFi - klet - MATRIX"
set cap4 comment="WiFi - klet - MATRIX - guest"
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip ipsec proposal
set [ find default=yes ] enc-algorithms=aes-128-cbc
/ip pool
add name=dhcp ranges=10.0.0.2-10.0.0.44
add name=openvpnpool2 ranges=10.0.0.49-10.0.0.50
add name=dhcp_guest ranges=192.168.0.10-192.168.0.15
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=dhcp1
add address-pool=dhcp_guest disabled=no interface=bridge2 name=dhcpguest
/ip pool
add name=openvpnpool1 next-pool=openvpnpool2 ranges=10.0.0.45-10.0.0.46
/ppp profile
add local-address=openvpnpool1 name=openvpnprofile remote-address=openvpnpool1
/system logging action
set 1 disk-file-name=""
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=mansarda_cfg \
    slave-configurations=wap_cfg,guest_cfg
/interface bridge port
add bridge=bridge1 interface=ether13
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 interface=ether9
add bridge=bridge1 interface=ether10
add bridge=bridge1 interface=ether11
add bridge=bridge1
add bridge=bridge1
/interface l2tp-server server
set enabled=yes use-ipsec=yes
/interface ovpn-server server
set certificate=mikrotik cipher=blowfish128,aes128,aes192,aes256 default-profile=\
    openvpnprofile enabled=yes require-client-certificate=yes
/interface sstp-server server
set default-profile=default-encryption enabled=yes
/ip address
add address=10.0.0.1/24 interface=bridge1 network=10.0.0.0
add address=192.168.0.1/24 interface=bridge2 network=192.168.0.0
/ip arp
add address=10.0.0.15 interface=bridge1 mac-address=\
    00:22:4D:AD:53:32
add address=10.0.0.10 interface=bridge1 mac-address=\
    00:E0:4C:80:1A:50
add address=10.0.0.13 interface=bridge1 \
    mac-address=00:04:20:1A:F9:68
add address=10.0.0.20 interface=bridge1 mac-address=\
    00:A0:03:FD:F2:64
add address=10.0.0.26 interface=bridge1 mac-address=\
    C4:9A:02:42:42:BC
add address=10.0.0.27 interface=bridge1 mac-address=\
    3C:D0:F8:5B:0D:26
add address=10.0.0.28 interface=bridge1 mac-address=\
    84:38:38:14:47:4C
add address=10.0.0.29 interface=bridge1 mac-address=\
    74:2F:68:5C:A8:AD
add address=10.0.0.14 interface=bridge1 mac-address=\
    18:FE:34:FB:1F:2D
add address=10.0.0.30 interface=bridge1 mac-address=\
    08:11:96:19:6A:50
add address=10.0.0.9 interface=bridge1 mac-address=\
    00:15:61:F1:C2:F2
add address=10.0.0.11 interface=bridge1 mac-address=B8:27:EB:A8:C0:A4
add address=10.0.0.2 interface=bridge1 mac-address=\
    D4:CA:6D:DA:BD:F9
add address=10.0.0.3 interface=bridge1 mac-address=\
    00:0C:42:8C:F7:A6
/ip cloud
set ddns-enabled=yes
/ip dhcp-client
add add-default-route=no dhcp-options=hostname,clientid interface="WAN - ether12"
/ip dhcp-server lease
add address=10.0.0.14 always-broadcast=yes  mac-address=\
    18:FE:34:FB:1F:2D server=dhcp1
add address=10.0.0.30 client-id=1:8:11:96:19:6a:50  mac-address=\
    08:11:96:19:6A:50 server=dhcp1
add address=10.0.0.9 mac-address=00:15:61:F1:C2:F2 server=dhcp1
/ip dhcp-server network
add address=10.0.0.0/24 gateway=10.0.0.1 netmask=24
add address=192.168.0.0/24 gateway=192.168.0.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=208.67.222.222,208.67.220.220
/ip dns static
add address=10.0.0.10 name=tower
add address=10.0.0.1 name=mrack
add address=10.0.0.2 name=mwifi
add address=10.0.0.11 name=kodi
add address=10.0.0.15 name=fibaro
/ip firewall address-list
add address=78.31.8.0/22 comment=spotify.com list=OVPN
add address=78.31.12.0/22 comment=spotify.com list=OVPN
add address=23.92.96.0/22 comment=spotify.com list=OVPN
add address=23.92.104.0/22 comment=spotify.com list=OVPN
add address=23.92.100.0/22 comment=spotify.com list=OVPN
add address=194.71.232.0/22 comment=spotify.com list=OVPN
add address=194.71.148.0/22 comment=spotify.com list=OVPN
add address=194.68.28.0/22 comment=spotify.com list=OVPN
add address=194.68.183.0/24 comment=spotify.com list=OVPN
add address=194.68.181.0/24 comment=spotify.com list=OVPN
add address=194.68.176.0/22 comment=spotify.com list=OVPN
add address=194.68.169.0/24 comment=spotify.com list=OVPN
add address=194.68.116.0/24 comment=spotify.com list=OVPN
add address=194.14.177.0/24 comment=spotify.com list=OVPN
add address=194.132.196.0/22 comment=spotify.com list=OVPN
add address=194.132.176.0/22 comment=spotify.com list=OVPN
add address=194.132.162.0/24 comment=spotify.com list=OVPN
add address=194.132.152.0/22 comment=spotify.com list=OVPN
add address=194.103.36.0/22 comment=spotify.com list=OVPN
add address=194.103.13.0/24 comment=spotify.com list=OVPN
add address=194.103.10.0/24 comment=spotify.com list=OVPN
add address=193.235.51.0/24 comment=spotify.com list=OVPN
add address=193.235.32.0/24 comment=spotify.com list=OVPN
add address=193.235.232.0/22 comment=spotify.com list=OVPN
add address=193.235.224.0/24 comment=spotify.com list=OVPN
add address=193.235.206.0/24 comment=spotify.com list=OVPN
add address=193.235.203.0/24 comment=spotify.com list=OVPN
add address=193.234.240.0/22 comment=spotify.com list=OVPN
add address=193.182.8.0/21 comment=spotify.com list=OVPN
add address=193.182.7.0/24 comment=spotify.com list=OVPN
add address=193.182.3.0/24 comment=spotify.com list=OVPN
add address=193.182.244.0/24 comment=spotify.com list=OVPN
add address=193.182.243.0/24 comment=spotify.com list=OVPN
add address=193.181.4.0/22 comment=spotify.com list=OVPN
add address=193.181.184.0/23 comment=spotify.com list=OVPN
add address=193.181.180.0/22 comment=spotify.com list=OVPN
add address=192.165.160.0/22 comment=spotify.com list=OVPN
add address=192.121.53.0/24 comment=spotify.com list=OVPN
add address=192.121.140.0/24 comment=spotify.com list=OVPN
add address=192.121.132.0/24 comment=spotify.com list=OVPN
add address=194.132.198.0/24 list=OVPN
add address=69.53.255.0/24 comment=netflix list=OVPN
add address=69.53.249.0/24 comment=netflix list=OVPN
add address=69.53.246.0/24 comment=netflix list=OVPN
add address=69.53.245.0/24 comment=netflix list=OVPN
add address=69.53.243.0/24 comment=netflix list=OVPN
add address=69.53.242.0/24 comment=netflix list=OVPN
add address=69.53.239.0/24 comment=netflix list=OVPN
add address=69.53.238.0/24 comment=netflix list=OVPN
add address=69.53.237.0/24 comment=netflix list=OVPN
add address=69.53.236.0/24 comment=netflix list=OVPN
add address=69.53.234.0/24 comment=netflix list=OVPN
add address=69.53.232.0/23 comment=netflix list=OVPN
add address=69.53.231.0/24 comment=netflix list=OVPN
add address=69.53.230.0/24 comment=netflix list=OVPN
add address=69.53.229.0/24 comment=netflix list=OVPN
add address=69.53.226.0/24 comment=netflix list=OVPN
add address=69.53.225.0/24 comment=netflix list=OVPN
add address=69.53.224.0/24 comment=netflix list=OVPN
add address=66.197.128.0/17 comment=netflix list=OVPN
add address=64.120.128.0/17 comment=netflix list=OVPN
add address=45.57.5.0/24 comment=netflix list=OVPN
add address=45.57.4.0/24 comment=netflix list=OVPN
add address=45.57.3.0/24 comment=netflix list=OVPN
add address=45.57.2.0/24 comment=netflix list=OVPN
add address=45.57.0.0/17 comment=netflix list=OVPN
add address=37.77.191.0/24 comment=netflix list=OVPN
add address=37.77.190.0/24 comment=netflix list=OVPN
add address=37.77.189.0/24 comment=netflix list=OVPN
add address=37.77.188.0/24 comment=netflix list=OVPN
add address=37.77.187.0/24 comment=netflix list=OVPN
add address=37.77.186.0/24 comment=netflix list=OVPN
add address=37.77.185.0/24 comment=netflix list=OVPN
add address=37.77.184.0/24 comment=netflix list=OVPN
add address=23.246.9.0/24 comment=netflix list=OVPN
add address=23.246.8.0/24 comment=netflix list=OVPN
add address=23.246.7.0/24 comment=netflix list=OVPN
add address=23.246.63.0/24 comment=netflix list=OVPN
add address=23.246.62.0/24 comment=netflix list=OVPN
add address=23.246.6.0/24 comment=netflix list=OVPN
add address=23.246.59.0/24 comment=netflix list=OVPN
add address=23.246.58.0/24 comment=netflix list=OVPN
add address=23.246.57.0/24 comment=netflix list=OVPN
add address=23.246.56.0/24 comment=netflix list=OVPN
add address=23.246.55.0/24 comment=netflix list=OVPN
add address=23.246.54.0/24 comment=netflix list=OVPN
add address=23.246.51.0/24 comment=netflix list=OVPN
add address=23.246.50.0/24 comment=netflix list=OVPN
add address=23.246.5.0/24 comment=netflix list=OVPN
add address=23.246.49.0/24 comment=netflix list=OVPN
add address=23.246.48.0/24 comment=netflix list=OVPN
add address=23.246.47.0/24 comment=netflix list=OVPN
add address=23.246.46.0/24 comment=netflix list=OVPN
add address=23.246.44.0/24 comment=netflix list=OVPN
add address=23.246.43.0/24 comment=netflix list=OVPN
add address=23.246.42.0/24 comment=netflix list=OVPN
add address=23.246.41.0/24 comment=netflix list=OVPN
add address=23.246.40.0/24 comment=netflix list=OVPN
add address=23.246.4.0/24 comment=netflix list=OVPN
add address=23.246.39.0/24 comment=netflix list=OVPN
add address=23.246.38.0/24 comment=netflix list=OVPN
add address=23.246.37.0/24 comment=netflix list=OVPN
add address=23.246.36.0/24 comment=netflix list=OVPN
add address=23.246.32.0/20 comment=netflix list=OVPN
add address=23.246.31.0/24 comment=netflix list=OVPN
add address=23.246.30.0/24 comment=netflix list=OVPN
add address=23.246.3.0/24 comment=netflix list=OVPN
add address=23.246.29.0/24 comment=netflix list=OVPN
add address=23.246.28.0/24 comment=netflix list=OVPN
add address=23.246.28.0/22 comment=netflix list=OVPN
add address=23.246.27.0/24 comment=netflix list=OVPN
add address=23.246.26.0/24 comment=netflix list=OVPN
add address=23.246.25.0/24 comment=netflix list=OVPN
add address=23.246.24.0/24 comment=netflix list=OVPN
add address=23.246.23.0/24 comment=netflix list=OVPN
add address=23.246.22.0/24 comment=netflix list=OVPN
add address=23.246.20.0/24 comment=netflix list=OVPN
add address=23.246.2.0/24 comment=netflix list=OVPN
add address=23.246.19.0/24 comment=netflix list=OVPN
add address=23.246.18.0/24 comment=netflix list=OVPN
add address=23.246.17.0/24 comment=netflix list=OVPN
add address=23.246.16.0/24 comment=netflix list=OVPN
add address=23.246.15.0/24 comment=netflix list=OVPN
add address=23.246.14.0/24 comment=netflix list=OVPN
add address=23.246.13.0/24 comment=netflix list=OVPN
add address=23.246.12.0/24 comment=netflix list=OVPN
add address=23.246.11.0/24 comment=netflix list=OVPN
add address=23.246.10.0/24 comment=netflix list=OVPN
add address=23.246.0.0/18 comment=netflix list=OVPN
add address=208.75.77.0/24 comment=netflix list=OVPN
add address=208.75.76.0/24 comment=netflix list=OVPN
add address=207.45.73.0/24 comment=netflix list=OVPN
add address=207.45.72.0/22 comment=netflix list=OVPN
add address=198.45.63.0/24 comment=netflix list=OVPN
add address=198.45.62.0/24 comment=netflix list=OVPN
add address=198.45.61.0/24 comment=netflix list=OVPN
add address=198.45.58.0/24 comment=netflix list=OVPN
add address=198.45.57.0/24 comment=netflix list=OVPN
add address=198.45.56.0/24 comment=netflix list=OVPN
add address=198.45.55.0/24 comment=netflix list=OVPN
add address=198.45.54.0/24 comment=netflix list=OVPN
add address=198.45.53.0/24 comment=netflix list=OVPN
add address=198.45.52.0/24 comment=netflix list=OVPN
add address=198.45.50.0/24 comment=netflix list=OVPN
add address=198.45.49.0/24 comment=netflix list=OVPN
add address=198.45.48.0/24 comment=netflix list=OVPN
add address=198.38.99.0/24 comment=netflix list=OVPN
add address=198.38.98.0/24 comment=netflix list=OVPN
add address=198.38.97.0/24 comment=netflix list=OVPN
add address=198.38.96.0/24 comment=netflix list=OVPN
add address=198.38.125.0/24 comment=netflix list=OVPN
add address=198.38.124.0/24 comment=netflix list=OVPN
add address=198.38.123.0/24 comment=netflix list=OVPN
add address=198.38.122.0/24 comment=netflix list=OVPN
add address=198.38.121.0/24 comment=netflix list=OVPN
add address=198.38.120.0/24 comment=netflix list=OVPN
add address=198.38.119.0/24 comment=netflix list=OVPN
add address=198.38.118.0/24 comment=netflix list=OVPN
add address=198.38.117.0/24 comment=netflix list=OVPN
add address=198.38.116.0/24 comment=netflix list=OVPN
add address=198.38.115.0/24 comment=netflix list=OVPN
add address=198.38.114.0/24 comment=netflix list=OVPN
add address=198.38.113.0/24 comment=netflix list=OVPN
add address=198.38.112.0/24 comment=netflix list=OVPN
add address=198.38.111.0/24 comment=netflix list=OVPN
add address=198.38.110.0/24 comment=netflix list=OVPN
add address=198.38.109.0/24 comment=netflix list=OVPN
add address=198.38.108.0/24 comment=netflix list=OVPN
add address=198.38.102.0/24 comment=netflix list=OVPN
add address=198.38.102.0/23 comment=netflix list=OVPN
add address=198.38.100.0/24 comment=netflix list=OVPN
add address=192.173.96.0/20 comment=netflix list=OVPN
add address=192.173.80.0/20 comment=netflix list=OVPN
add address=192.173.64.0/24 comment=netflix list=OVPN
add address=192.173.64.0/20 comment=netflix list=OVPN
add address=192.173.112.0/20 comment=netflix list=OVPN
add address=185.9.190.0/23 comment=netflix list=OVPN
add address=185.9.188.0/24 comment=netflix list=OVPN
add address=185.2.223.0/24 comment=netflix list=OVPN
add address=185.2.222.0/24 comment=netflix list=OVPN
add address=185.2.221.0/24 comment=netflix list=OVPN
add address=185.2.220.0/24 comment=netflix list=OVPN
add address=108.175.47.0/24 comment=netflix list=OVPN
add address=108.175.46.0/24 comment=netflix list=OVPN
add address=108.175.44.0/24 comment=netflix list=OVPN
add address=108.175.43.0/24 comment=netflix list=OVPN
add address=108.175.42.0/24 comment=netflix list=OVPN
add address=108.175.41.0/24 comment=netflix list=OVPN
add address=108.175.40.0/24 comment=netflix list=OVPN
add address=108.175.39.0/24 comment=netflix list=OVPN
add address=108.175.38.0/24 comment=netflix list=OVPN
add address=108.175.35.0/24 comment=netflix list=OVPN
add address=108.175.34.0/24 comment=netflix list=OVPN
add address=108.175.33.0/24 comment=netflix list=OVPN
add address=108.175.32.0/24 comment=netflix list=OVPN
add address=98.124.148.0/24 comment=pandora list=OVPN
add address=58.137.133.0/24 comment=pandora list=OVPN
add address=208.85.47.0/24 comment=pandora list=OVPN
add address=208.85.46.0/24 comment=pandora list=OVPN
add address=208.85.46.0/23 comment=pandora list=OVPN
add address=208.85.44.0/24 comment=pandora list=OVPN
add address=208.85.43.0/24 comment=pandora list=OVPN
add address=208.85.42.0/24 comment=pandora list=OVPN
add address=208.85.42.0/23 comment=pandora list=OVPN
add address=208.85.41.0/24 comment=pandora list=OVPN
add address=208.85.40.0/24 comment=pandora list=OVPN
add address=199.116.167.0/24 comment=pandora list=OVPN
add address=199.116.166.0/24 comment=pandora list=OVPN
add address=199.116.165.0/24 comment=pandora list=OVPN
add address=199.116.164.0/24 comment=pandora list=OVPN
add address=199.116.164.0/23 comment=pandora list=OVPN
add address=198.22.2.0/24 comment=pandora list=OVPN
add address=23.23.191.0/24 comment=netflix list=OVPN
add address=194.132.196.212 comment=spotify.com list=OVPN
add address=193.235.232.0/24 comment=spotify list=OVPN
add address=95.180.157.179 comment=spotify list=OVPN
add address=79.125.18.91 comment=squeezebox list=OVPN
add address=79.125.18.68 comment=squeezebox list=OVPN
add address=79.125.111.32 comment=squeezebox list=OVPN
add address=46.137.90.12 comment=squeezebox list=OVPN
/ip firewall filter
add chain=input comment="Accept established connections" connection-state=\
    established log-prefix=ACCEPT
add chain=input comment="Accept related connections" connection-state=related
add chain=input comment="allow l2tp" dst-port=1701 protocol=udp
add chain=input comment="allow pptp" dst-port=1723 protocol=tcp
add chain=input comment="allow sstp" dst-port=443 protocol=tcp
add chain=input dst-port=1194 protocol=tcp
add action=drop chain=input comment="Drop invalid connections" connection-state=\
    invalid
add chain=input comment=UDP protocol=udp
add chain=input comment="Allow limited pings" limit=50/5s,2:packet protocol=icmp
add action=drop chain=input comment="Drop excess pings" protocol=icmp
add chain=input comment="SSH for secure shell" dst-port=22 protocol=tcp
add chain=input comment=winbox dst-port=8291 protocol=tcp
add chain=input comment="From Mikrotikls network" src-address=159.148.172.192/28
add chain=input comment="From our private LAN" src-address=10.0.0.0/8
add action=log chain=input comment="Log everything else" log-prefix="DROP INPUT"
add action=drop chain=input comment="Drop everything else"
add action=drop chain=forward comment="Drop from guest to MATRIX" in-interface=\
    bridge2 log=yes out-interface=bridge1
/ip firewall mangle
add action=mark-routing chain=prerouting dst-address-list=OVPN log-prefix=\
    openvpn-usa new-routing-mark=OVPN src-address=0.0.0.0/0
/ip firewall nat
add action=masquerade chain=srcnat out-interface=pppoe-out1
add action=masquerade chain=srcnat log-prefix=OVPN out-interface=ovpn-out1
add action=masquerade chain=srcnat comment="masq. vpn traffic" src-address=\
    192.168.89.0/24
add action=masquerade chain=srcnat src-address=192.168.0.0/24
add action=dst-nat chain=dstnat comment=Transmission dst-port=54321 in-interface=\
    pppoe-out1 log-prefix=Transmission protocol=tcp to-addresses=10.0.0.10 \
    to-ports=54321
add action=masquerade chain=srcnat comment=Siemens dst-address=10.0.0.20 dst-port=\
    80 out-interface=bridge1 protocol=tcp src-address=10.0.0.0/24
add action=dst-nat chain=dstnat dst-address=193.77.x.x dst-port=8081 \
    log-prefix=Siemens protocol=tcp to-addresses=10.0.0.20 to-ports=80
add action=masquerade chain=srcnat comment=OwnCloud dst-address=10.0.0.10 dst-port=\
    8000 out-interface=bridge1 protocol=tcp src-address=10.0.0.0/24
add action=dst-nat chain=dstnat dst-address=193.77.x.x dst-port=8000 \
    log-prefix=OwnCloud protocol=tcp to-addresses=10.0.0.10 to-ports=8000
add action=masquerade chain=srcnat dst-address=10.0.0.10 dst-port=8000 \
    out-interface=bridge2 protocol=tcp src-address=192.168.0.0/24
/ip route
add check-gateway=ping distance=1 gateway=ovpn-out1 routing-mark=OVPN-mark scope=10 \
    target-scope=30
add disabled=yes distance=1 gateway=10.0.0.3,10.0.0.2
add distance=1 dst-address=224.0.1.20/32 gateway=10.0.0.2
/ip service
set telnet disabled=yes
set www address=10.0.0.0/24
set ssh disabled=yes
/ip traffic-flow target
add dst-address=10.0.0.30 port=1234 version=5
/ip upnp
set enabled=yes
/ip upnp interfaces
add interface=bridge1 type=internal
/ppp profile
set *FFFFFFFE local-address=192.168.89.1 remote-address=*2
/ppp secret
add name=xxx profile=openvpnprofile service=ovpn
/routing pim interface
add interface=ether4
/routing pim rp
add address=10.0.0.2
/system clock manual
set time-zone=+01:00
/system identity
set name=MikroTik-rack
/system ntp client
set enabled=yes primary-ntp=192.2.1.117 secondary-ntp=193.2.1.92
/tool graphing queue
add
/tool graphing resource
add
/tool netwatch
add host=10.0.0.30
/tool sniffer
set filter-direction=tx streaming-server=10.0.0.30
[admin@MikroTik-rack] >
CAP:
Code: Select all
[admin@MikroTik-wap] > /system routerboard print
       routerboard: yes
             model: RouterBOARD wAP 2nD
     serial-number: xxxxxxxxx
     firmware-type: qca9530L
  factory-firmware: 3.24
  current-firmware: 3.29
  upgrade-firmware: 3.29
[admin@MikroTik-wap] > 

[admin@MikroTik-wap] > /export hide-sensitive
# mar/26/2016 11:29:41 by RouterOS 6.34.3
# software id = A3W4-L0LL
#
/interface bridge
add name=bridge-local
/interface wireless
# managed by CAPsMAN
# channel: 2412/20-Ce/gn(20dBm), SSID: MATRIX, CAPsMAN forwarding
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce \
    distance=indoors frequency=auto mode=ap-bridge name=wlan1-local ssid=\
    MikroTik-8CF7A6 wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip ipsec proposal
set [ find default=yes ] enc-algorithms=aes-128-cbc
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/system logging action
set 1 disk-file-name=log
/interface bridge port
add bridge=bridge-local interface=ether1-gateway
add bridge=bridge-local interface=wlan1-local
/interface wireless cap
set bridge=bridge-local caps-man-addresses=10.0.0.1 enabled=yes interfaces=\
    wlan1-local
/ip address
add address=10.0.0.3/24 interface=bridge-local network=10.0.0.0
/ip dhcp-client
add default-route-distance=0 dhcp-options=hostname,clientid interface=\
    ether1-gateway
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=10.0.0.3 name=router
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" disabled=yes \
    out-interface=ether1-gateway
/ip route
add distance=1 gateway=10.0.0.1
/system identity
set name=MikroTik-wap
/system leds
set 0 interface=wlan1-local
/system routerboard settings
set cpu-frequency=650MHz protected-routerboot=disabled
[admin@MikroTik-wap] >
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 12:59 pm

Forgot to ask: have you used backups (not exports) to replicate configuration between the 951s now or in the past?

There is anything else wired to cap3?
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 1:13 pm

This is odd (two last empty entries)
Code: Select all
/interface bridge port
add bridge=bridge1 interface=ether13
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 interface=ether9
add bridge=bridge1 interface=ether10
add bridge=bridge1 interface=ether11
add bridge=bridge1
add bridge=bridge1
what does appear on winbox?

Things to try:

change bridge1 admin-mac to that of ether1 for example.
Try removing the bridge and recreating it;
Alternatively, make ether1 master for ether2-5, ether6 master of ether7-10, and add ether1,6,11,12,13 part of the bridge.
Is the bypass switch between ether10-11in the O position?
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 4:04 pm

It was labeled as "unknown". Bypass switch is in "0".

I have recreated bridge like you wrote. Added only 1,6,11,.. and made 1 and 6 master ports.

Still the same in the logs. Port 8 is where i have cap connected.

Image
Last edited by snoopy86 on Sat Mar 26, 2016 4:53 pm, edited 1 time in total.
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 4:28 pm

I have turned on "Local forwarding" on this cap and now it works. Do you know how to fix this without using local forwarding?
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Sat Mar 26, 2016 4:53 pm

You said this was working fine, but started to happen after a power failure?

I'd do a netinstall on cap3, I suspect it may be "misbehaving".

I can't see how or why a loop may occur in your situation, but that's what ROS thinks and that's why it disables the interface.
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Thu Mar 31, 2016 2:06 pm

It started working again. I made reset with the button on the wAP and then loaded old settings. Strange..

Now i have a problem that i cant see other computers when on openvpn. I guess it has something to do with modifying the bridge to use master ports.
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Wifi on wAP stops working after power failure

Thu Mar 31, 2016 2:13 pm

arp mode (proxy-arp) maybe? IP assignment to the bridge?
Top
 
snoopy86
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 52
Joined: Sat Sep 14, 2013 10:46 pm

Re: Wifi on wAP stops working after power failure

Thu Mar 31, 2016 2:37 pm

Changed bridge from enabled to proxy-arp and now it works. Tnx!
Top
Post Reply
  4. RouterOS
  5. General