Hi,
i have RB1100AHx2 as capsman, RB951G-2HnD and wAP as cap's. Problem that i have is after we have power failure i can't connect to wifi of wAP. I try to reboot it, restore it, reboot capsman,... Nothing helps.
Can you tell me what steps to take to fix this. In the logs i see that wAP connects to capsman, just no client can't connect to it. Btw the RB951G-2HnD works without a problem. Do you think i have a bad unit (wAP)?
Tnx.
edit:
I see that wAP doesn't have any dns servers and can't resolve names...
Re: Wifi on wAP stops working after power failure
I assume you're using wireless-cm2 package.
Do you see anything in wireless, capsman debug logs?
Steps I'd follow to rule out a bad unit:
1.- Upgrade ROS to current channel.
2.- Check the wAP firmware (System > Routerboard) and upgrade it if needed
3.- export its config, and reset it to no defaults, reload config
If problem persist, do a netinstall.
If problem persists, make a supout while the problem is happening and send it to support.
Do you see anything in wireless, capsman debug logs?
Steps I'd follow to rule out a bad unit:
1.- Upgrade ROS to current channel.
2.- Check the wAP firmware (System > Routerboard) and upgrade it if needed
3.- export its config, and reset it to no defaults, reload config
If problem persist, do a netinstall.
If problem persists, make a supout while the problem is happening and send it to support.
Re: Wifi on wAP stops working after power failure
Thanks,
yes i'm running the latest ROS and firmware. Using wireless-cm2.
Today i've tried with no defaults and then reloading config but with no luck.
I see that this happens when i want to connect to the wifi. For every connection to the wifi.
On capsman:
[::ffff:10.0.0.3:49396,Join,[00:0C:42:8C:xx:xx]] joined, provides radio(s): 00:0C:42:8C:xx:xx
3C:D0:F8:5B:xx:xx@cap3 connected
ether8: bridge port received packet with own address as source address (00:0c:42:8c:xx:xx), probably loop
3C:D0:F8:5B:xx:xx@cap3 disconnected, interface disabled
On cap (wAP):
CAP sent max keepalives without response
CAP selected CAPsMAN MikroTik-rack (::ffff:10.0.0.1:5246)
CAP joined MikroTik-rack (::ffff:10.0.0.1:5246)
CAP connected to MikroTik-rack (::ffff:10.0.0.1:5246)
CAP disconnected from MikroTik-rack (::ffff:10.0.0.1:5246)
yes i'm running the latest ROS and firmware. Using wireless-cm2.
Today i've tried with no defaults and then reloading config but with no luck.
I see that this happens when i want to connect to the wifi. For every connection to the wifi.
On capsman:
[::ffff:10.0.0.3:49396,Join,[00:0C:42:8C:xx:xx]] joined, provides radio(s): 00:0C:42:8C:xx:xx
3C:D0:F8:5B:xx:xx@cap3 connected
ether8: bridge port received packet with own address as source address (00:0c:42:8c:xx:xx), probably loop
3C:D0:F8:5B:xx:xx@cap3 disconnected, interface disabled
On cap (wAP):
CAP sent max keepalives without response
CAP selected CAPsMAN MikroTik-rack (::ffff:10.0.0.1:5246)
CAP joined MikroTik-rack (::ffff:10.0.0.1:5246)
CAP connected to MikroTik-rack (::ffff:10.0.0.1:5246)
CAP disconnected from MikroTik-rack (::ffff:10.0.0.1:5246)
Re: Wifi on wAP stops working after power failure
What is the "latest" ROS version you're using? there are several release channels...
You seem to have a loop on your caps bridge, so in turn RSTP disables the cap interface, double check your setup, or post an export here.
You seem to have a loop on your caps bridge, so in turn RSTP disables the cap interface, double check your setup, or post an export here.
Re: Wifi on wAP stops working after power failure
I have ROS 6.34.3 on all 3 of them.
What export would be important, supout? From cap or capsman?
Tnx for helping!
What export would be important, supout? From cap or capsman?
Tnx for helping!
Re: Wifi on wAP stops working after power failure
A configuration export from the capsman controller and another from the cap, I meant a
also a
From a new terminal on each (edit out the serial number from that last command if desired).
How is that cap wired to the controller?
Code: Select all
/export hide-sensitive
Code: Select all
/system routerboard print
How is that cap wired to the controller?
Re: Wifi on wAP stops working after power failure
I think i've captured all below. Cap is wired to manager port 3.
CAPMAN
CAP:
CAPMAN
Code: Select all
[admin@MikroTik-rack] > /system routerboard print
routerboard: yes
model: 1100AHx2
serial-number: xxxxxxxxxx
firmware-type: p2020
factory-firmware: 3.18
current-firmware: 3.24
upgrade-firmware: 3.24
[admin@MikroTik-rack] >
[admin@MikroTik-rack] > /export hide-sensitive
# mar/26/2016 11:27:42 by RouterOS 6.34.3
# software id = W6W4-Y7PS
#
/caps-man channel
add band=2ghz-b/g/n name=mansarda_ch
add band=2ghz-b/g/n name=wap_ch
add band=2ghz-b/g/n name=guest_ch
/interface ovpn-client
add connect-to=xxx mac-address=02:A0:DD:B6:06:5E max-mtu=1350 name=\
ovpn-out1 user=xxxx
/interface bridge
add admin-mac=00:00:00:00:00:01 auto-mac=no name=bridge1
add name=bridge2
/interface ethernet
set [ find default-name=ether12 ] speed=1Gbps
set [ find default-name=ether1 ] speed=1Gbps
set [ find default-name=ether2 ] speed=1Gbps
set [ find default-name=ether3 ] comment=wAP
set [ find default-name=ether4 ]
set [ find default-name=ether9 ]
/interface pppoe-client
add add-default-route=yes default-route-distance=1 disabled=no \
interface="WAN - ether12" max-mru=1480 max-mtu=1480 name=pppoe-out1 \
service-name=xxxx user=xxxx
/ip neighbor discovery
set "WAN - ether12" comment=SIOL
set ether1 comment="AP - Mansarda"
set ether2 comment=xxx
set ether3 comment=wAP
set ether4 comment=xxx
set ether9 comment=xxx
set pppoe-out1 comment=xxx
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm name=mansarda_sec
add authentication-types=wpa2-psk encryption=aes-ccm name=wap_sec
add authentication-types=wpa2-psk encryption=aes-ccm name=guest_sec
/caps-man configuration
add channel=mansarda_ch country=slovenia datapath.bridge=bridge1 mode=ap \
multicast-helper=full name=mansarda_cfg security=mansarda_sec ssid=MATRIX
add channel=wap_ch country=slovenia datapath.bridge=bridge1 mode=ap \
multicast-helper=full name=wap_cfg security=wap_sec ssid=MATRIX
add channel=guest_ch country=slovenia datapath.bridge=bridge2 mode=ap name=\
guest_cfg security=guest_sec ssid="MATRIX - guest"
/caps-man interface
add arp=enabled channel=mansarda_ch comment="WiFi - mansarda - MATRIX" \
configuration=mansarda_cfg disabled=no l2mtu=1600 mac-address=D4:CA:6D:DA:BD:FD \
master-interface=none mtu=1500 name=cap1 radio-mac=D4:CA:6D:DA:BD:FD security=\
mansarda_sec
add arp=enabled channel=guest_ch comment="WiFi - mansarda - MATRIX - guest" \
configuration=guest_cfg disabled=no l2mtu=1600 mac-address=D6:CA:6D:DA:BD:FD \
master-interface=cap1 mtu=1500 name=cap2 radio-mac=00:00:00:00:00:00 security=\
guest_sec
add arp=enabled channel=wap_ch comment="WiFi - klet - MATRIX" configuration=wap_cfg \
disabled=no l2mtu=1600 mac-address=00:0C:42:8C:F7:A6 master-interface=none mtu=\
1500 name=cap3 radio-mac=00:0C:42:8C:F7:A6 security=wap_sec
add arp=enabled channel=guest_ch comment="WiFi - klet - MATRIX - guest" \
configuration=guest_cfg disabled=no l2mtu=1600 mac-address=02:0C:42:8C:F7:A7 \
master-interface=cap3 mtu=1500 name=cap4 radio-mac=00:00:00:00:00:00 security=\
guest_sec
/ip neighbor discovery
set cap1 comment="WiFi - mansarda - MATRIX"
set cap2 comment="WiFi - mansarda - MATRIX - guest"
set cap3 comment="WiFi - klet - MATRIX"
set cap4 comment="WiFi - klet - MATRIX - guest"
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip ipsec proposal
set [ find default=yes ] enc-algorithms=aes-128-cbc
/ip pool
add name=dhcp ranges=10.0.0.2-10.0.0.44
add name=openvpnpool2 ranges=10.0.0.49-10.0.0.50
add name=dhcp_guest ranges=192.168.0.10-192.168.0.15
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=dhcp1
add address-pool=dhcp_guest disabled=no interface=bridge2 name=dhcpguest
/ip pool
add name=openvpnpool1 next-pool=openvpnpool2 ranges=10.0.0.45-10.0.0.46
/ppp profile
add local-address=openvpnpool1 name=openvpnprofile remote-address=openvpnpool1
/system logging action
set 1 disk-file-name=""
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=mansarda_cfg \
slave-configurations=wap_cfg,guest_cfg
/interface bridge port
add bridge=bridge1 interface=ether13
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 interface=ether9
add bridge=bridge1 interface=ether10
add bridge=bridge1 interface=ether11
add bridge=bridge1
add bridge=bridge1
/interface l2tp-server server
set enabled=yes use-ipsec=yes
/interface ovpn-server server
set certificate=mikrotik cipher=blowfish128,aes128,aes192,aes256 default-profile=\
openvpnprofile enabled=yes require-client-certificate=yes
/interface sstp-server server
set default-profile=default-encryption enabled=yes
/ip address
add address=10.0.0.1/24 interface=bridge1 network=10.0.0.0
add address=192.168.0.1/24 interface=bridge2 network=192.168.0.0
/ip arp
add address=10.0.0.15 interface=bridge1 mac-address=\
00:22:4D:AD:53:32
add address=10.0.0.10 interface=bridge1 mac-address=\
00:E0:4C:80:1A:50
add address=10.0.0.13 interface=bridge1 \
mac-address=00:04:20:1A:F9:68
add address=10.0.0.20 interface=bridge1 mac-address=\
00:A0:03:FD:F2:64
add address=10.0.0.26 interface=bridge1 mac-address=\
C4:9A:02:42:42:BC
add address=10.0.0.27 interface=bridge1 mac-address=\
3C:D0:F8:5B:0D:26
add address=10.0.0.28 interface=bridge1 mac-address=\
84:38:38:14:47:4C
add address=10.0.0.29 interface=bridge1 mac-address=\
74:2F:68:5C:A8:AD
add address=10.0.0.14 interface=bridge1 mac-address=\
18:FE:34:FB:1F:2D
add address=10.0.0.30 interface=bridge1 mac-address=\
08:11:96:19:6A:50
add address=10.0.0.9 interface=bridge1 mac-address=\
00:15:61:F1:C2:F2
add address=10.0.0.11 interface=bridge1 mac-address=B8:27:EB:A8:C0:A4
add address=10.0.0.2 interface=bridge1 mac-address=\
D4:CA:6D:DA:BD:F9
add address=10.0.0.3 interface=bridge1 mac-address=\
00:0C:42:8C:F7:A6
/ip cloud
set ddns-enabled=yes
/ip dhcp-client
add add-default-route=no dhcp-options=hostname,clientid interface="WAN - ether12"
/ip dhcp-server lease
add address=10.0.0.14 always-broadcast=yes mac-address=\
18:FE:34:FB:1F:2D server=dhcp1
add address=10.0.0.30 client-id=1:8:11:96:19:6a:50 mac-address=\
08:11:96:19:6A:50 server=dhcp1
add address=10.0.0.9 mac-address=00:15:61:F1:C2:F2 server=dhcp1
/ip dhcp-server network
add address=10.0.0.0/24 gateway=10.0.0.1 netmask=24
add address=192.168.0.0/24 gateway=192.168.0.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=208.67.222.222,208.67.220.220
/ip dns static
add address=10.0.0.10 name=tower
add address=10.0.0.1 name=mrack
add address=10.0.0.2 name=mwifi
add address=10.0.0.11 name=kodi
add address=10.0.0.15 name=fibaro
/ip firewall address-list
add address=78.31.8.0/22 comment=spotify.com list=OVPN
add address=78.31.12.0/22 comment=spotify.com list=OVPN
add address=23.92.96.0/22 comment=spotify.com list=OVPN
add address=23.92.104.0/22 comment=spotify.com list=OVPN
add address=23.92.100.0/22 comment=spotify.com list=OVPN
add address=194.71.232.0/22 comment=spotify.com list=OVPN
add address=194.71.148.0/22 comment=spotify.com list=OVPN
add address=194.68.28.0/22 comment=spotify.com list=OVPN
add address=194.68.183.0/24 comment=spotify.com list=OVPN
add address=194.68.181.0/24 comment=spotify.com list=OVPN
add address=194.68.176.0/22 comment=spotify.com list=OVPN
add address=194.68.169.0/24 comment=spotify.com list=OVPN
add address=194.68.116.0/24 comment=spotify.com list=OVPN
add address=194.14.177.0/24 comment=spotify.com list=OVPN
add address=194.132.196.0/22 comment=spotify.com list=OVPN
add address=194.132.176.0/22 comment=spotify.com list=OVPN
add address=194.132.162.0/24 comment=spotify.com list=OVPN
add address=194.132.152.0/22 comment=spotify.com list=OVPN
add address=194.103.36.0/22 comment=spotify.com list=OVPN
add address=194.103.13.0/24 comment=spotify.com list=OVPN
add address=194.103.10.0/24 comment=spotify.com list=OVPN
add address=193.235.51.0/24 comment=spotify.com list=OVPN
add address=193.235.32.0/24 comment=spotify.com list=OVPN
add address=193.235.232.0/22 comment=spotify.com list=OVPN
add address=193.235.224.0/24 comment=spotify.com list=OVPN
add address=193.235.206.0/24 comment=spotify.com list=OVPN
add address=193.235.203.0/24 comment=spotify.com list=OVPN
add address=193.234.240.0/22 comment=spotify.com list=OVPN
add address=193.182.8.0/21 comment=spotify.com list=OVPN
add address=193.182.7.0/24 comment=spotify.com list=OVPN
add address=193.182.3.0/24 comment=spotify.com list=OVPN
add address=193.182.244.0/24 comment=spotify.com list=OVPN
add address=193.182.243.0/24 comment=spotify.com list=OVPN
add address=193.181.4.0/22 comment=spotify.com list=OVPN
add address=193.181.184.0/23 comment=spotify.com list=OVPN
add address=193.181.180.0/22 comment=spotify.com list=OVPN
add address=192.165.160.0/22 comment=spotify.com list=OVPN
add address=192.121.53.0/24 comment=spotify.com list=OVPN
add address=192.121.140.0/24 comment=spotify.com list=OVPN
add address=192.121.132.0/24 comment=spotify.com list=OVPN
add address=194.132.198.0/24 list=OVPN
add address=69.53.255.0/24 comment=netflix list=OVPN
add address=69.53.249.0/24 comment=netflix list=OVPN
add address=69.53.246.0/24 comment=netflix list=OVPN
add address=69.53.245.0/24 comment=netflix list=OVPN
add address=69.53.243.0/24 comment=netflix list=OVPN
add address=69.53.242.0/24 comment=netflix list=OVPN
add address=69.53.239.0/24 comment=netflix list=OVPN
add address=69.53.238.0/24 comment=netflix list=OVPN
add address=69.53.237.0/24 comment=netflix list=OVPN
add address=69.53.236.0/24 comment=netflix list=OVPN
add address=69.53.234.0/24 comment=netflix list=OVPN
add address=69.53.232.0/23 comment=netflix list=OVPN
add address=69.53.231.0/24 comment=netflix list=OVPN
add address=69.53.230.0/24 comment=netflix list=OVPN
add address=69.53.229.0/24 comment=netflix list=OVPN
add address=69.53.226.0/24 comment=netflix list=OVPN
add address=69.53.225.0/24 comment=netflix list=OVPN
add address=69.53.224.0/24 comment=netflix list=OVPN
add address=66.197.128.0/17 comment=netflix list=OVPN
add address=64.120.128.0/17 comment=netflix list=OVPN
add address=45.57.5.0/24 comment=netflix list=OVPN
add address=45.57.4.0/24 comment=netflix list=OVPN
add address=45.57.3.0/24 comment=netflix list=OVPN
add address=45.57.2.0/24 comment=netflix list=OVPN
add address=45.57.0.0/17 comment=netflix list=OVPN
add address=37.77.191.0/24 comment=netflix list=OVPN
add address=37.77.190.0/24 comment=netflix list=OVPN
add address=37.77.189.0/24 comment=netflix list=OVPN
add address=37.77.188.0/24 comment=netflix list=OVPN
add address=37.77.187.0/24 comment=netflix list=OVPN
add address=37.77.186.0/24 comment=netflix list=OVPN
add address=37.77.185.0/24 comment=netflix list=OVPN
add address=37.77.184.0/24 comment=netflix list=OVPN
add address=23.246.9.0/24 comment=netflix list=OVPN
add address=23.246.8.0/24 comment=netflix list=OVPN
add address=23.246.7.0/24 comment=netflix list=OVPN
add address=23.246.63.0/24 comment=netflix list=OVPN
add address=23.246.62.0/24 comment=netflix list=OVPN
add address=23.246.6.0/24 comment=netflix list=OVPN
add address=23.246.59.0/24 comment=netflix list=OVPN
add address=23.246.58.0/24 comment=netflix list=OVPN
add address=23.246.57.0/24 comment=netflix list=OVPN
add address=23.246.56.0/24 comment=netflix list=OVPN
add address=23.246.55.0/24 comment=netflix list=OVPN
add address=23.246.54.0/24 comment=netflix list=OVPN
add address=23.246.51.0/24 comment=netflix list=OVPN
add address=23.246.50.0/24 comment=netflix list=OVPN
add address=23.246.5.0/24 comment=netflix list=OVPN
add address=23.246.49.0/24 comment=netflix list=OVPN
add address=23.246.48.0/24 comment=netflix list=OVPN
add address=23.246.47.0/24 comment=netflix list=OVPN
add address=23.246.46.0/24 comment=netflix list=OVPN
add address=23.246.44.0/24 comment=netflix list=OVPN
add address=23.246.43.0/24 comment=netflix list=OVPN
add address=23.246.42.0/24 comment=netflix list=OVPN
add address=23.246.41.0/24 comment=netflix list=OVPN
add address=23.246.40.0/24 comment=netflix list=OVPN
add address=23.246.4.0/24 comment=netflix list=OVPN
add address=23.246.39.0/24 comment=netflix list=OVPN
add address=23.246.38.0/24 comment=netflix list=OVPN
add address=23.246.37.0/24 comment=netflix list=OVPN
add address=23.246.36.0/24 comment=netflix list=OVPN
add address=23.246.32.0/20 comment=netflix list=OVPN
add address=23.246.31.0/24 comment=netflix list=OVPN
add address=23.246.30.0/24 comment=netflix list=OVPN
add address=23.246.3.0/24 comment=netflix list=OVPN
add address=23.246.29.0/24 comment=netflix list=OVPN
add address=23.246.28.0/24 comment=netflix list=OVPN
add address=23.246.28.0/22 comment=netflix list=OVPN
add address=23.246.27.0/24 comment=netflix list=OVPN
add address=23.246.26.0/24 comment=netflix list=OVPN
add address=23.246.25.0/24 comment=netflix list=OVPN
add address=23.246.24.0/24 comment=netflix list=OVPN
add address=23.246.23.0/24 comment=netflix list=OVPN
add address=23.246.22.0/24 comment=netflix list=OVPN
add address=23.246.20.0/24 comment=netflix list=OVPN
add address=23.246.2.0/24 comment=netflix list=OVPN
add address=23.246.19.0/24 comment=netflix list=OVPN
add address=23.246.18.0/24 comment=netflix list=OVPN
add address=23.246.17.0/24 comment=netflix list=OVPN
add address=23.246.16.0/24 comment=netflix list=OVPN
add address=23.246.15.0/24 comment=netflix list=OVPN
add address=23.246.14.0/24 comment=netflix list=OVPN
add address=23.246.13.0/24 comment=netflix list=OVPN
add address=23.246.12.0/24 comment=netflix list=OVPN
add address=23.246.11.0/24 comment=netflix list=OVPN
add address=23.246.10.0/24 comment=netflix list=OVPN
add address=23.246.0.0/18 comment=netflix list=OVPN
add address=208.75.77.0/24 comment=netflix list=OVPN
add address=208.75.76.0/24 comment=netflix list=OVPN
add address=207.45.73.0/24 comment=netflix list=OVPN
add address=207.45.72.0/22 comment=netflix list=OVPN
add address=198.45.63.0/24 comment=netflix list=OVPN
add address=198.45.62.0/24 comment=netflix list=OVPN
add address=198.45.61.0/24 comment=netflix list=OVPN
add address=198.45.58.0/24 comment=netflix list=OVPN
add address=198.45.57.0/24 comment=netflix list=OVPN
add address=198.45.56.0/24 comment=netflix list=OVPN
add address=198.45.55.0/24 comment=netflix list=OVPN
add address=198.45.54.0/24 comment=netflix list=OVPN
add address=198.45.53.0/24 comment=netflix list=OVPN
add address=198.45.52.0/24 comment=netflix list=OVPN
add address=198.45.50.0/24 comment=netflix list=OVPN
add address=198.45.49.0/24 comment=netflix list=OVPN
add address=198.45.48.0/24 comment=netflix list=OVPN
add address=198.38.99.0/24 comment=netflix list=OVPN
add address=198.38.98.0/24 comment=netflix list=OVPN
add address=198.38.97.0/24 comment=netflix list=OVPN
add address=198.38.96.0/24 comment=netflix list=OVPN
add address=198.38.125.0/24 comment=netflix list=OVPN
add address=198.38.124.0/24 comment=netflix list=OVPN
add address=198.38.123.0/24 comment=netflix list=OVPN
add address=198.38.122.0/24 comment=netflix list=OVPN
add address=198.38.121.0/24 comment=netflix list=OVPN
add address=198.38.120.0/24 comment=netflix list=OVPN
add address=198.38.119.0/24 comment=netflix list=OVPN
add address=198.38.118.0/24 comment=netflix list=OVPN
add address=198.38.117.0/24 comment=netflix list=OVPN
add address=198.38.116.0/24 comment=netflix list=OVPN
add address=198.38.115.0/24 comment=netflix list=OVPN
add address=198.38.114.0/24 comment=netflix list=OVPN
add address=198.38.113.0/24 comment=netflix list=OVPN
add address=198.38.112.0/24 comment=netflix list=OVPN
add address=198.38.111.0/24 comment=netflix list=OVPN
add address=198.38.110.0/24 comment=netflix list=OVPN
add address=198.38.109.0/24 comment=netflix list=OVPN
add address=198.38.108.0/24 comment=netflix list=OVPN
add address=198.38.102.0/24 comment=netflix list=OVPN
add address=198.38.102.0/23 comment=netflix list=OVPN
add address=198.38.100.0/24 comment=netflix list=OVPN
add address=192.173.96.0/20 comment=netflix list=OVPN
add address=192.173.80.0/20 comment=netflix list=OVPN
add address=192.173.64.0/24 comment=netflix list=OVPN
add address=192.173.64.0/20 comment=netflix list=OVPN
add address=192.173.112.0/20 comment=netflix list=OVPN
add address=185.9.190.0/23 comment=netflix list=OVPN
add address=185.9.188.0/24 comment=netflix list=OVPN
add address=185.2.223.0/24 comment=netflix list=OVPN
add address=185.2.222.0/24 comment=netflix list=OVPN
add address=185.2.221.0/24 comment=netflix list=OVPN
add address=185.2.220.0/24 comment=netflix list=OVPN
add address=108.175.47.0/24 comment=netflix list=OVPN
add address=108.175.46.0/24 comment=netflix list=OVPN
add address=108.175.44.0/24 comment=netflix list=OVPN
add address=108.175.43.0/24 comment=netflix list=OVPN
add address=108.175.42.0/24 comment=netflix list=OVPN
add address=108.175.41.0/24 comment=netflix list=OVPN
add address=108.175.40.0/24 comment=netflix list=OVPN
add address=108.175.39.0/24 comment=netflix list=OVPN
add address=108.175.38.0/24 comment=netflix list=OVPN
add address=108.175.35.0/24 comment=netflix list=OVPN
add address=108.175.34.0/24 comment=netflix list=OVPN
add address=108.175.33.0/24 comment=netflix list=OVPN
add address=108.175.32.0/24 comment=netflix list=OVPN
add address=98.124.148.0/24 comment=pandora list=OVPN
add address=58.137.133.0/24 comment=pandora list=OVPN
add address=208.85.47.0/24 comment=pandora list=OVPN
add address=208.85.46.0/24 comment=pandora list=OVPN
add address=208.85.46.0/23 comment=pandora list=OVPN
add address=208.85.44.0/24 comment=pandora list=OVPN
add address=208.85.43.0/24 comment=pandora list=OVPN
add address=208.85.42.0/24 comment=pandora list=OVPN
add address=208.85.42.0/23 comment=pandora list=OVPN
add address=208.85.41.0/24 comment=pandora list=OVPN
add address=208.85.40.0/24 comment=pandora list=OVPN
add address=199.116.167.0/24 comment=pandora list=OVPN
add address=199.116.166.0/24 comment=pandora list=OVPN
add address=199.116.165.0/24 comment=pandora list=OVPN
add address=199.116.164.0/24 comment=pandora list=OVPN
add address=199.116.164.0/23 comment=pandora list=OVPN
add address=198.22.2.0/24 comment=pandora list=OVPN
add address=23.23.191.0/24 comment=netflix list=OVPN
add address=194.132.196.212 comment=spotify.com list=OVPN
add address=193.235.232.0/24 comment=spotify list=OVPN
add address=95.180.157.179 comment=spotify list=OVPN
add address=79.125.18.91 comment=squeezebox list=OVPN
add address=79.125.18.68 comment=squeezebox list=OVPN
add address=79.125.111.32 comment=squeezebox list=OVPN
add address=46.137.90.12 comment=squeezebox list=OVPN
/ip firewall filter
add chain=input comment="Accept established connections" connection-state=\
established log-prefix=ACCEPT
add chain=input comment="Accept related connections" connection-state=related
add chain=input comment="allow l2tp" dst-port=1701 protocol=udp
add chain=input comment="allow pptp" dst-port=1723 protocol=tcp
add chain=input comment="allow sstp" dst-port=443 protocol=tcp
add chain=input dst-port=1194 protocol=tcp
add action=drop chain=input comment="Drop invalid connections" connection-state=\
invalid
add chain=input comment=UDP protocol=udp
add chain=input comment="Allow limited pings" limit=50/5s,2:packet protocol=icmp
add action=drop chain=input comment="Drop excess pings" protocol=icmp
add chain=input comment="SSH for secure shell" dst-port=22 protocol=tcp
add chain=input comment=winbox dst-port=8291 protocol=tcp
add chain=input comment="From Mikrotikls network" src-address=159.148.172.192/28
add chain=input comment="From our private LAN" src-address=10.0.0.0/8
add action=log chain=input comment="Log everything else" log-prefix="DROP INPUT"
add action=drop chain=input comment="Drop everything else"
add action=drop chain=forward comment="Drop from guest to MATRIX" in-interface=\
bridge2 log=yes out-interface=bridge1
/ip firewall mangle
add action=mark-routing chain=prerouting dst-address-list=OVPN log-prefix=\
openvpn-usa new-routing-mark=OVPN src-address=0.0.0.0/0
/ip firewall nat
add action=masquerade chain=srcnat out-interface=pppoe-out1
add action=masquerade chain=srcnat log-prefix=OVPN out-interface=ovpn-out1
add action=masquerade chain=srcnat comment="masq. vpn traffic" src-address=\
192.168.89.0/24
add action=masquerade chain=srcnat src-address=192.168.0.0/24
add action=dst-nat chain=dstnat comment=Transmission dst-port=54321 in-interface=\
pppoe-out1 log-prefix=Transmission protocol=tcp to-addresses=10.0.0.10 \
to-ports=54321
add action=masquerade chain=srcnat comment=Siemens dst-address=10.0.0.20 dst-port=\
80 out-interface=bridge1 protocol=tcp src-address=10.0.0.0/24
add action=dst-nat chain=dstnat dst-address=193.77.x.x dst-port=8081 \
log-prefix=Siemens protocol=tcp to-addresses=10.0.0.20 to-ports=80
add action=masquerade chain=srcnat comment=OwnCloud dst-address=10.0.0.10 dst-port=\
8000 out-interface=bridge1 protocol=tcp src-address=10.0.0.0/24
add action=dst-nat chain=dstnat dst-address=193.77.x.x dst-port=8000 \
log-prefix=OwnCloud protocol=tcp to-addresses=10.0.0.10 to-ports=8000
add action=masquerade chain=srcnat dst-address=10.0.0.10 dst-port=8000 \
out-interface=bridge2 protocol=tcp src-address=192.168.0.0/24
/ip route
add check-gateway=ping distance=1 gateway=ovpn-out1 routing-mark=OVPN-mark scope=10 \
target-scope=30
add disabled=yes distance=1 gateway=10.0.0.3,10.0.0.2
add distance=1 dst-address=224.0.1.20/32 gateway=10.0.0.2
/ip service
set telnet disabled=yes
set www address=10.0.0.0/24
set ssh disabled=yes
/ip traffic-flow target
add dst-address=10.0.0.30 port=1234 version=5
/ip upnp
set enabled=yes
/ip upnp interfaces
add interface=bridge1 type=internal
/ppp profile
set *FFFFFFFE local-address=192.168.89.1 remote-address=*2
/ppp secret
add name=xxx profile=openvpnprofile service=ovpn
/routing pim interface
add interface=ether4
/routing pim rp
add address=10.0.0.2
/system clock manual
set time-zone=+01:00
/system identity
set name=MikroTik-rack
/system ntp client
set enabled=yes primary-ntp=192.2.1.117 secondary-ntp=193.2.1.92
/tool graphing queue
add
/tool graphing resource
add
/tool netwatch
add host=10.0.0.30
/tool sniffer
set filter-direction=tx streaming-server=10.0.0.30
[admin@MikroTik-rack] > Code: Select all
[admin@MikroTik-wap] > /system routerboard print
routerboard: yes
model: RouterBOARD wAP 2nD
serial-number: xxxxxxxxx
firmware-type: qca9530L
factory-firmware: 3.24
current-firmware: 3.29
upgrade-firmware: 3.29
[admin@MikroTik-wap] >
[admin@MikroTik-wap] > /export hide-sensitive
# mar/26/2016 11:29:41 by RouterOS 6.34.3
# software id = A3W4-L0LL
#
/interface bridge
add name=bridge-local
/interface wireless
# managed by CAPsMAN
# channel: 2412/20-Ce/gn(20dBm), SSID: MATRIX, CAPsMAN forwarding
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce \
distance=indoors frequency=auto mode=ap-bridge name=wlan1-local ssid=\
MikroTik-8CF7A6 wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip ipsec proposal
set [ find default=yes ] enc-algorithms=aes-128-cbc
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/system logging action
set 1 disk-file-name=log
/interface bridge port
add bridge=bridge-local interface=ether1-gateway
add bridge=bridge-local interface=wlan1-local
/interface wireless cap
set bridge=bridge-local caps-man-addresses=10.0.0.1 enabled=yes interfaces=\
wlan1-local
/ip address
add address=10.0.0.3/24 interface=bridge-local network=10.0.0.0
/ip dhcp-client
add default-route-distance=0 dhcp-options=hostname,clientid interface=\
ether1-gateway
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=10.0.0.3 name=router
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" disabled=yes \
out-interface=ether1-gateway
/ip route
add distance=1 gateway=10.0.0.1
/system identity
set name=MikroTik-wap
/system leds
set 0 interface=wlan1-local
/system routerboard settings
set cpu-frequency=650MHz protected-routerboot=disabled
[admin@MikroTik-wap] >
Re: Wifi on wAP stops working after power failure
Forgot to ask: have you used backups (not exports) to replicate configuration between the 951s now or in the past?
There is anything else wired to cap3?
There is anything else wired to cap3?
Re: Wifi on wAP stops working after power failure
This is odd (two last empty entries)
what does appear on winbox?
Things to try:
change bridge1 admin-mac to that of ether1 for example.
Try removing the bridge and recreating it;
Alternatively, make ether1 master for ether2-5, ether6 master of ether7-10, and add ether1,6,11,12,13 part of the bridge.
Is the bypass switch between ether10-11in the O position?
Code: Select all
/interface bridge port
add bridge=bridge1 interface=ether13
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 interface=ether9
add bridge=bridge1 interface=ether10
add bridge=bridge1 interface=ether11
add bridge=bridge1
add bridge=bridge1
Things to try:
change bridge1 admin-mac to that of ether1 for example.
Try removing the bridge and recreating it;
Alternatively, make ether1 master for ether2-5, ether6 master of ether7-10, and add ether1,6,11,12,13 part of the bridge.
Is the bypass switch between ether10-11in the O position?
Re: Wifi on wAP stops working after power failure
It was labeled as "unknown". Bypass switch is in "0".
I have recreated bridge like you wrote. Added only 1,6,11,.. and made 1 and 6 master ports.
Still the same in the logs. Port 8 is where i have cap connected.
I have recreated bridge like you wrote. Added only 1,6,11,.. and made 1 and 6 master ports.
Still the same in the logs. Port 8 is where i have cap connected.
Last edited by snoopy86 on Sat Mar 26, 2016 4:53 pm, edited 1 time in total.
Re: Wifi on wAP stops working after power failure
I have turned on "Local forwarding" on this cap and now it works. Do you know how to fix this without using local forwarding?
Re: Wifi on wAP stops working after power failure
You said this was working fine, but started to happen after a power failure?
I'd do a netinstall on cap3, I suspect it may be "misbehaving".
I can't see how or why a loop may occur in your situation, but that's what ROS thinks and that's why it disables the interface.
I'd do a netinstall on cap3, I suspect it may be "misbehaving".
I can't see how or why a loop may occur in your situation, but that's what ROS thinks and that's why it disables the interface.
Re: Wifi on wAP stops working after power failure
It started working again. I made reset with the button on the wAP and then loaded old settings. Strange..
Now i have a problem that i cant see other computers when on openvpn. I guess it has something to do with modifying the bridge to use master ports.
Now i have a problem that i cant see other computers when on openvpn. I guess it has something to do with modifying the bridge to use master ports.
Re: Wifi on wAP stops working after power failure
arp mode (proxy-arp) maybe? IP assignment to the bridge?
Re: Wifi on wAP stops working after power failure
Changed bridge from enabled to proxy-arp and now it works. Tnx!