Community discussions

MikroTik App

Search found 129 matches

by _saik0
Thu Jan 06, 2022 3:29 am
Forum: General
Topic: route lookup implicit catch-all not working
Replies: 1
Views: 872

route lookup implicit catch-all not working

I have a VRF with a directly connected interface and a few static routes, and a main table with a default route. Looking at the FIB wiki https://wiki.mikrotik.com/wiki/Manual:IP/Route#Forwarding_Information_Base there's an implicit catch-all rule where lookup for routes that don't exist in a VRF is ...
by _saik0
Thu Jan 06, 2022 2:14 am
Forum: Forwarding Protocols
Topic: VRF route leaking with main table
Replies: 1
Views: 2721

VRF route leaking with main table

Is it possible to route leak a VRF table and the main table? I have a main table that has OSPF routes and I have a VRF. I want to leak everything from the main table towards the VRF, and from VRF i just need to leak directly connected routes. I know I can do it over mangle, route policy rules, stati...
by _saik0
Mon Sep 10, 2018 3:20 am
Forum: General
Topic: IPv6 Routing Mark in Firewall > Mangle Rules
Replies: 60
Views: 21812

Re: IPv6 Routing Mark in Firewall > Mangle Rules

Still nothing? Same with v6 NAT. transparent proxy and IPS/IDS implementation depend on this.
Iptables has that feature for a long time, i don't understand why exactly ROS7 is necessary.
by _saik0
Sat Feb 17, 2018 3:22 pm
Forum: General
Topic: directed broadcast and nat
Replies: 5
Views: 2885

Re: directed broadcast and nat

ancient bump...
by _saik0
Tue Nov 07, 2017 11:05 pm
Forum: General
Topic: directed broadcast and nat
Replies: 5
Views: 2885

Re: directed broadcast and nat

bump
by _saik0
Sun Sep 17, 2017 3:47 pm
Forum: General
Topic: CCR temperature reading problem
Replies: 3
Views: 1692

Re: CCR temperature reading problem

Warranty from the distributor is long since expired :/
by _saik0
Sun Sep 17, 2017 2:40 pm
Forum: General
Topic: CCR temperature reading problem
Replies: 3
Views: 1692

CCR temperature reading problem

Just noticed that one of my CCR's (CCR1036-12G-4S) doesn't display the temperature properly. Basically got two exact same model CRRs on same firmware (3.39) and ROS 6.38.7 and the problematic one shows: > system health pr fan-mode: auto use-fan: main active-fan: main cpu-overtemp-check: yes cpu-over...
by _saik0
Thu Aug 17, 2017 9:46 pm
Forum: General
Topic: directed broadcast and nat
Replies: 5
Views: 2885

Re: directed broadcast and nat

Can someone from MT comment on this?
by _saik0
Wed Aug 16, 2017 1:12 am
Forum: General
Topic: directed broadcast and nat
Replies: 5
Views: 2885

directed broadcast and nat

I have a very specific issue, i want to make my dumb aircon to be discoverable outside its broadcast domain. Basically the APP that does the discovery performs a directed broadcast (they could obviously just use a plain broadcast) inside its subnet and discovers the air con. After a simple discovery...
by _saik0
Thu Aug 03, 2017 12:10 am
Forum: General
Topic: RB2011 packet loss on larger packets over wifi
Replies: 2
Views: 1065

Re: RB2011 packet loss on larger packets over wifi

Hmmmm
But those are mostly on 2412
Are they really interfering this much on 2437 ?
I must admit I am puzzled how people even use wifi in a crowded apartment building. I can't imagine I have such a bad situation..

Is there anything I can do here, tweak certain parameters, anything except going 5G?
by _saik0
Wed Aug 02, 2017 7:03 pm
Forum: General
Topic: RB2011 packet loss on larger packets over wifi
Replies: 2
Views: 1065

RB2011 packet loss on larger packets over wifi

I'm experiencing issues with wifi with packets larger than 500-600Byte. Basically 15-20% packet loss with ICMP 1000Byte packets. So it isn't a MTU issue, rather something wrong with the radio on the RB itself. Smaller packets are not dropped. Tried both 6.40 and latest bugfix release. Same behaviour...
by _saik0
Sun Oct 02, 2016 3:01 pm
Forum: General
Topic: DHCPv6-client broken since v6.34
Replies: 7
Views: 3836

Re: DHCPv6-client broken since v6.34

Wait what?

A dynamic PD with 24hr reset and every time you are assigned a different v6 prefix?
Is your ISP stupid or what?
by _saik0
Sun Aug 21, 2016 2:43 pm
Forum: General
Topic: Slow IPSec tunnel and windows machines
Replies: 11
Views: 4364

Re: Slow IPSec tunnel and windows machines

Actually with aes256ctr i'm getting more like 50-60Mbps (even with multiple tcp connections!). Win some, lose some... it's like a game with ipsec Here some UDP stats: aes256cbc: ------------------------------------------------------------ Server listening on UDP port 5001 Receiving 1470 byte datagra...
by _saik0
Wed Aug 17, 2016 9:42 pm
Forum: General
Topic: Slow IPSec tunnel and windows machines
Replies: 11
Views: 4364

Re: Slow IPSec tunnel and windows machines

I can confirm i'm definitely getting better throughput with sha1/aes256ctr (aes128ctr gives similar performance) on windows machines. I'm getting around 70Mbps in either direction both with linux and windows. This is a huge improvement for windows, yet it's about 20-30% worse for linux to linux. Aft...
by _saik0
Tue Aug 16, 2016 9:52 pm
Forum: General
Topic: replace Windows PPTP VPN
Replies: 12
Views: 3190

Re: replace Windows PPTP VPN

From my experience l2tp/ipsec works ok between a windows client and mt server although like pe1chl said, it can be tricky when behind NAT.
Can mac do OpenVPN? Personally i'd go with that with a dedicated server/vm for this purpose.
At least until ROS7 ;)
by _saik0
Tue Aug 16, 2016 9:11 pm
Forum: General
Topic: Slow IPSec tunnel and windows machines
Replies: 11
Views: 4364

Slow IPSec tunnel and windows machines

Hello, I'm experiencing slow transfter speeds when a Windows machine (7 and 10 tested) is involved. The setup: PC1@LAN1 --- CCR1036 ---(pppoe)---ISP--- (pppoe)---CCR1036 --- PC2@LAN2 | ------------- l2tp/ipsec -------------- | Both sites are connected to the same ISP with pppoe (mtu 1492) 100/100Mbp...
by _saik0
Mon Feb 22, 2016 9:05 pm
Forum: Announcements
Topic: v6.32.4 [bugfix] is released!
Replies: 24
Views: 20954

Re: v6.32.4 [bugfix] is released!

but what about RB2011?

There's clearly write sectors info on older ROS.
by _saik0
Sun Feb 21, 2016 4:22 pm
Forum: Announcements
Topic: v6.32.4 [bugfix] is released!
Replies: 24
Views: 20954

Re: v6.32.4 [bugfix] is released!

Uh where do you see sector writes? Did the location change? On my CCRs with 6.34.2 and RB2011 on 6.32.3 sector writes info is missing under /system resources. On my old RB2011 on 5.24 sector writes are visible under resources They are also visible on a x86 6.30.4. I didn't even notice this until the...
by _saik0
Wed Feb 17, 2016 12:50 am
Forum: General
Topic: 6.16 import stops when there is a duplicate entry
Replies: 15
Views: 12679

Re: 6.16 import stops when there is a duplicate entry

Thank you!
Was also thinking the same - add an option (or make it default) to continue executing/importing the config after an error.
by _saik0
Tue Feb 16, 2016 11:02 pm
Forum: General
Topic: LLDP
Replies: 136
Views: 68942

Re: LLDP

Also strongly support the notion to add support for LLDP.
It's standard and supported by most vendors nowadays.
by _saik0
Sun Jan 31, 2016 3:05 pm
Forum: General
Topic: Dynamic IPSEC Phase1/Phase2 proposal
Replies: 6
Views: 3292

Re: Dynamic IPSEC Phase1/Phase2 proposal

That was never an issue. Of course i could do it by hand but since both of my locations are on dynamic IP, i have to rely heavily on scripting in order to achieve the same thing. When one of the addresses changes I need to edit GRE interface, ipsec peer and finally ipsec policy on both locations. It...
by _saik0
Sun Jan 31, 2016 4:55 am
Forum: General
Topic: Dynamic IPSEC Phase1/Phase2 proposal
Replies: 6
Views: 3292

Re: Dynamic IPSEC Phase1/Phase2 proposal

Phase1 is exactly the issue here.
Namely GRE interface with ipsec secret enabled creates a dynamic ipsec peer.
That dynamic ipsec peer uses sha1-3des/aes128 for phase1 and that cannot be changed.
There should be an option inside GRE interface to define phase1/phase2 (group actually).
by _saik0
Wed Jan 27, 2016 8:39 pm
Forum: RouterBOARD hardware
Topic: CCR IPSec performance
Replies: 41
Views: 25818

Re: CCR IPSec performance

It was a single TCP connection per direction with TCP MSS clamping for the GRE tunnel, IPSec in transport mode.
So in the end the actual MTU for the tunnel is 1426B.

all devices were connected with a single 1Gbps link.
by _saik0
Tue Jan 26, 2016 8:35 pm
Forum: RouterBOARD hardware
Topic: CCR IPSec performance
Replies: 41
Views: 25818

Re: CCR IPSec performance

So i've finally bought two of CCR1036 and am currently trialing them for GRE/IPSec VPN connectivity. Using 6.34rc41 this is the result of running iperf in dualtest TCP mode. PC1 ---- CCR1 --- [gre/ipsec_sha1_aes256cbc] --- CCR2 ---- PC2 http://i.imgur.com/8EEZ7ZK.gif?1 I'm releaved that the CCR is a...
by _saik0
Fri Jan 15, 2016 8:52 pm
Forum: General
Topic: VRF aware management services (winbox, ssh, http)
Replies: 2
Views: 2170

VRF aware management services (winbox, ssh, http)

Is it possible to have at least winbox/ssh VRF aware so that one could access the router through both primary and backup ISP (e.g. 3G stick) at the same time? Assigning ppp interface and a default gw to backup_mgmt-vr works and ICMP seem to respond properly. But not winbox/ssh... 0 A S dst-address=0...
by _saik0
Thu Jan 14, 2016 1:23 am
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 52879

Re: v6.33.5 [current] is released!

Just upgraded both of my CCR1036.

IPSEC issue still present - [Ticket#2015122766000277] CCR IPSEC in-state-sequence-errors
Left duplex iperf tests for a few hours and was greeted with a downed tunnel and state sequence errors.
by _saik0
Fri Jan 08, 2016 10:21 pm
Forum: General
Topic: v6.33.3 [current] is released!
Replies: 59
Views: 25798

Re: v6.33.3 [current] is released!

Is there any info on issues with IPSEC in CCR? To be precise - [Ticket#2015122766000277] CCR IPSEC in-state-sequence-errors Basically few hours after the tunnel had been established (actually next morning), it gets terminated one of the routers had increasing in-state-sequence-errors under ipsec sta...
by _saik0
Tue Dec 29, 2015 2:28 pm
Forum: General
Topic: Dynamic IPSEC Phase1/Phase2 proposal
Replies: 6
Views: 3292

Re: Dynamic IPSEC Phase1/Phase2 proposal

bump
by _saik0
Sat Dec 26, 2015 12:16 am
Forum: General
Topic: Dynamic IPSEC Phase1/Phase2 proposal
Replies: 6
Views: 3292

Dynamic IPSEC Phase1/Phase2 proposal

Is it possible to define default Phase1/Phase2 proposals for dynamic policies, e.g. ipsec enabled within GRE and L2TP config? I want to use sha1/aes256cbc for my GRE tunnels but sha1/aes128 is the default. For Phase2 apparently only the "Default" proposal can be altered to get the desired ...
by _saik0
Sun Nov 22, 2015 8:57 pm
Forum: RouterBOARD hardware
Topic: CCR IPSec performance
Replies: 41
Views: 25818

Re: CCR IPSec performance

Thanks for the input!

Well yes, that pretty much answers my question and confirms my fears...

Seems i'd really be better of with two multi-core x86 servers/workstations :/
Yes it can handle a lot more than 500Mbps
Comments?
by _saik0
Sun Nov 22, 2015 1:12 pm
Forum: RouterBOARD hardware
Topic: CCR IPSec performance
Replies: 41
Views: 25818

Re: CCR IPSec performance

I'm planning on getting two CCR1036 for connecting two sites via VPN and need to have answers... So in the end, did ANYONE succeed in creating a single IPSec/L2TP(or GRE) tunnel between two say CCR1036 and got 500Mbps+ between two clients from two routed networks behind those two CCRs ? There's a mi...
by _saik0
Wed Aug 26, 2015 1:48 pm
Forum: Announcements
Topic: v6.30.4 bugfix release
Replies: 103
Views: 40490

Re: v6.30.4 bugfix release

Ah very nice, was actually worried MT had abandoned the promised bugfix track as 6.31 was released and 6.32rcs started appearing... A very basic question, currently i'm on 6.30.2 release but winbox doesn't show update track choice (bugfix, and current), so i'd have to manually download the npk and d...
by _saik0
Sun Aug 16, 2015 8:56 pm
Forum: Announcements
Topic: v6.30.2 bugfix release
Replies: 147
Views: 58928

Re: v6.30.2 bugfix release

I'm still having constant router reboots, whenever my PPPoE connection is reset. A week or so ago (ROS x86 6.28) i had almost daily reboots, ALWAYS exactly when my ISP PPPoE connection gets reset (24hrs mandatory reconnect). I'm suspecting this has to do either with PPPoE or more likely IPsec as the...
by _saik0
Tue Apr 07, 2015 12:38 am
Forum: General
Topic: Cloud Core IPSEC performance
Replies: 15
Views: 9708

Re: Cloud Core IPSEC performance

Hmm, strongly considering buying a ccr1009 to replace my rb2011 for a 100/100 link. My setup relies on l2tp over ipsec, so i've been reading a lot about ipsec throughput on ccr1009. Turns out many people have issues and there are LOTS of threads regarding ccr and ipsec. Beside you two guys, what thr...
by _saik0
Mon Apr 06, 2015 7:52 am
Forum: General
Topic: Suggestions for IPv6 configuration
Replies: 4
Views: 2207

Re: Suggestions for IPv6 configuration

Did you try running DHCPv6 client on the ROS x86 router on the LTE interface? The only correct solution to this is if you get DHCPv6 PD advertised. Then you can split that prefix into smaller subnets if necessary and/or assign it to your LAN-bound interface. If you get no PD, then perhaps you could ...
by _saik0
Mon Apr 06, 2015 3:39 am
Forum: General
Topic: l2tp server bindings not respected on reconnect
Replies: 1
Views: 772

l2tp server bindings not respected on reconnect

I'm noticing that sometimes on reconnecting a l2tp session, server bindings aren't respected and a new dynamic l2tp server interface is created, e.g. <l2tp- username > even though I created static bindings for certain usernames. This is an issue for firewall rules. Anyone else noticed this? Using an...
by _saik0
Tue Mar 31, 2015 11:05 pm
Forum: Announcements
Topic: v6.28 final RC testing
Replies: 92
Views: 46490

Re: v6.28 final RC testing

pppoe - fixed crash when big ppp packets with were sent over EOIP; Could explain the symptoms of this issue? Your router could either have a high memory usage or reboot itself. Hmmm... just upgraded from 5.14 to 6.27 and had two sudden reboots in the last 3 days. I do have a pppoe client session to...
by _saik0
Fri Mar 20, 2015 7:29 pm
Forum: General
Topic: RB2011 IPSec throughput
Replies: 7
Views: 9156

Re: RB2011 IPSec throughput

Hm,

Was expecting a bit more :/
by _saik0
Thu Mar 19, 2015 9:56 pm
Forum: General
Topic: RB2011 IPSec throughput
Replies: 7
Views: 9156

Re: RB2011 IPSec throughput

Anyone?
by _saik0
Mon Mar 16, 2015 11:48 pm
Forum: General
Topic: RB2011 IPSec throughput
Replies: 7
Views: 9156

Re: RB2011 IPSec throughput

hm, ipsec statistics doesn't seem to show any rapidly increasing counters. I do have some static values tho: > /ip ipsec statistics print in-errors: 0 in-buffer-errors: 0 in-header-errors: 0 in-no-states: 21399 in-state-protocol-errors: 27 in-state-mode-errors: 0 in-state-sequence-errors: 73 in-stat...
by _saik0
Sun Mar 15, 2015 12:43 am
Forum: General
Topic: RB2011 IPSec throughput
Replies: 7
Views: 9156

RB2011 IPSec throughput

Can anyone say what is the typical throughput with AES128 IPsec configuration for RB2011? Currently i'm getting 100% CPU with NAT masquerade, 20-30 firewall rules, IPSec/L2TP VPN connection with about 20Mbps transfer. I was expecting a bit more than that.... On the other end of the same VPN is a x86...
by _saik0
Thu Aug 07, 2014 8:11 pm
Forum: General
Topic: v6.18
Replies: 109
Views: 41025

Re: v6.18

Still same issues regarding IPsec like in 6.17.
L2TP/IPSec tunnels disconnecting and only SA policy flush helps - no log messages indicating problems visible.
by _saik0
Tue Jul 29, 2014 10:33 pm
Forum: Forwarding Protocols
Topic: OSPF database table
Replies: 1
Views: 1736

OSPF database table

Is it possible to see the OSPF database with all possible routes?

"routing ospf route" shows only the ospf routes that are actually installed in the routing table.
I'd like to see all the alternative paths not installed in the routing table...
by _saik0
Tue Jul 29, 2014 5:58 pm
Forum: General
Topic: Feature Request: OpenVPN [ovpn] udp tunnels
Replies: 249
Views: 139046

Re: Feature Request: OpenVPN [ovpn] udp tunnels

Oh, we're making progress!
Few years ago it was almost written in stone that no UDP support is ever planned.
Those are good news, at least they are considering it now.
by _saik0
Wed Jul 23, 2014 1:49 am
Forum: General
Topic: Switch chip - port security
Replies: 11
Views: 9290

Re: Switch chip - port security

I edited the first post for more clarification...

I want to drop all incoming packets with MAC other than aaaa.bbbb.cccc just like port security on e.g. cisco switch works. Switchport functionality only.
by _saik0
Wed Jul 23, 2014 1:44 am
Forum: General
Topic: Switch chip - port security
Replies: 11
Views: 9290

Re: Switch chip - port security

Thanks for the fast response!

Uh this should be a switchport functionality so no CPU involved...
by _saik0
Wed Jul 23, 2014 1:34 am
Forum: General
Topic: Switch chip - port security
Replies: 11
Views: 9290

Switch chip - port security

RB2011UAS-2HnD with latest OS/fw. Is it possible to set static mac address for a certain switch port so that no other host/mac is allowed - much like port security? It doesn't seem to be possible to define a rule to drop any mac address under /interface ethernet switch host With host entry to drop m...
by _saik0
Tue Jul 22, 2014 1:31 am
Forum: General
Topic: v6.16/v6.17
Replies: 187
Views: 63041

Re: v6.16/v6.17

Did an upgrade from 6.15->6.17 with 3.18 fw. IPSec behavior is again like on 6.14, SAs don't get updated properly and only SA flush helps. L2TP/IPSEC/OSPF VPNs in question. Also SNMP, not getting interface traffic info anymore. MT, it's like children playing with the code... 6.x is terrible from wha...
by _saik0
Wed Jun 11, 2014 10:16 pm
Forum: General
Topic: v6.14 released
Replies: 114
Views: 37770

Re: v6.14 released

I seriously hope that torrent comment "yes why not" way sarcastic...

Any improvements on IPSec in 6.14?
Since 6.13 SAs keep dying and only flush every few hours helps.
by _saik0
Mon May 19, 2014 7:38 pm
Forum: General
Topic: v6.13 released!
Replies: 176
Views: 65815

Re: v6.13 released!

OSPF failing for me is just the result of L2TP tunnel terminating again as a result of IPSec failing. Anyhow, as i described above, similar issues - IPSec indeed seems very unstable in the whole 6.x release. In fact it's getting worse with every new version. Fully support you on that one mate, MT st...
by _saik0
Mon May 19, 2014 3:37 pm
Forum: General
Topic: v6.13 released!
Replies: 176
Views: 65815

Re: v6.13 released!

Hi, Don't know if there should be a separate topic, but here goes. I'm running a L2TP/IPSec/OSPF VPN between multiple MikroTik 2011UAS routers. I'm having issues on 6.13 where I have to frequently flush SAs to reconnect dropping L2TP connections. On 6.10 this happened from time to time, but on 6.13 ...
by _saik0
Thu Apr 17, 2014 2:46 am
Forum: General
Topic: RB2011 unaccessible - possibly related to ipsec/l2tp/ospf
Replies: 1
Views: 927

RB2011 unaccessible - possibly related to ipsec/l2tp/ospf

I'm experiencing issues similar to what is described in the following topic: http://forum.mikrotik.com/viewtopic.php?f=2&t=83293 system: rb2011uas-2hnd ros: 6.12, 6.10 The router simply isn't accessible over ethernet/wifi after a while. I still didn't have the time to connect over the console on...
by _saik0
Sat Apr 05, 2014 5:03 pm
Forum: General
Topic: RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x
Replies: 4
Views: 1962

Re: RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x

Anyone?
Issue still very present...

Steps to reproduce:
1. have NAT masquerade
2. initiate UDP upstream LAN->MT->internet (e.g. iperf -c ping.online.net -u -b 100K)
3. observe crash
by _saik0
Fri Mar 21, 2014 9:42 pm
Forum: General
Topic: RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x
Replies: 4
Views: 1962

Re: RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x

It's a RB2011UiAS-2HnD-IN with firmware 3.12 # mar/21/2014 20:29:39 by RouterOS 6.10 # software id = GZAT-21EX # /interface bridge add l2mtu=1598 name=bridge-local protocol-mode=none add name=loopback protocol-mode=none /interface ethernet set [ find default-name=ether1 ] name=ether1-master-local se...
by _saik0
Fri Mar 21, 2014 8:58 pm
Forum: General
Topic: RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x
Replies: 4
Views: 1962

RB2011 crashes on UDP /w NAT masq - both 5.x and 6.x

I'm performing throughput testing with iperf on a PC and when testing upstream UDP the router crashes instantly. When testing downstream UDP, there are no issues. PC->RB(nat)->Internet The packet rate I try doesn't matter, even few KB/s cause the same issue. RB has NAT masquerade configured. Running...
by _saik0
Wed Mar 05, 2014 6:52 pm
Forum: General
Topic: Feature Request: IPSEC Improvements
Replies: 148
Views: 45237

Re: Feature Request: IPSEC Improvements

VTI++

IPSec in transport mode with a tunnel upon it, almost impossible if you are dealing with dynamic IPs on all sites ...
by _saik0
Wed Mar 05, 2014 2:35 am
Forum: General
Topic: IPsec between sites using dynamic routing
Replies: 2
Views: 1237

IPsec between sites using dynamic routing

Hi, I have L2TP/IPsec tunnels between multiple sites (all of them are on dynamic ip ...) like this, all of those have site2site VPN setup. siteA-----siteB----siteC |__________________| Currently I have a completely static setup but am thinking of using OSPF. Is it possible to have an alternative rou...
by _saik0
Sat Nov 02, 2013 12:38 am
Forum: General
Topic: Double QoS for v6 is possible
Replies: 71
Views: 53973

Re: Double QoS for v6 is possible

Can someone please clarify this for me. I'm trialing ROS 6.x and got confused regarding QoS. I was running double QoS on 5.x - mangle prerouting + global-in to prioritise traffic - mangle forwarding + global-out for PCQ to give each client equal bw Just like found on many MT presentations and docume...
by _saik0
Sat Nov 02, 2013 12:05 am
Forum: Beginner Basics
Topic: Importing CA causes CPU to go 100
Replies: 1
Views: 881

Importing CA causes CPU to go 100

I am currently trialing ROS 6.x and noticed that when trying to import a certificate CPU ends up at 100%.
It's a clean netinstall using the latest 6.5 version.

Certainly a bug?
by _saik0
Fri Aug 09, 2013 3:12 pm
Forum: General
Topic: Problem while creating backup
Replies: 27
Views: 13001

Re: Problem while creating backup

I did a netinstall directly to 5.25
No problems afterwards.
by _saik0
Tue Jun 25, 2013 5:55 am
Forum: General
Topic: Huawei E1752 on 2011UAS
Replies: 2
Views: 1479

Huawei E1752 on 2011UAS

Has anyone had success combining these two? Im on 5.25 but theres nothing in /system/ports. Only serial0 for the console.. The Huawei is recognized in /system/resources/usb though. The wiki mentions E1762 as supported, but then again i've seen posts of people claiming they got 1752 workin (different...
by _saik0
Fri Jun 14, 2013 1:04 pm
Forum: General
Topic: Problem while creating backup
Replies: 27
Views: 13001

Re: Problem while creating backup

Just to report on my progress regarding this issue. I also contacted support and got the same answer as @macsrwe. The tricky part was to actually get the RB2011 to netboot/etherboot. After spending at least an hour I managed to reinstall using netboot. Reapplied the configuration using the exported ...
by _saik0
Wed Jun 12, 2013 11:02 pm
Forum: General
Topic: Does some one encounter this problem on 2011?
Replies: 6
Views: 2153

Re: Does some one encounter this problem on 2011?

Hmmm.... Recently (actually i'm running the unit for a few months) i've started experiencing loss of connection between the left (gigabit switch) port group 1-5 and the CPU. The ports on the 100Mb switch work fine tho. Phy on machines seems working but no way to access the RB from those ports. I got...
by _saik0
Wed Jun 12, 2013 10:54 pm
Forum: General
Topic: Problem while creating backup
Replies: 27
Views: 13001

Problem while creating backup

Hi all, I've found some rather old posts concerning this issue but that was back on 3.x sw version and we're now at 5.x (6.x even). While saving the backup (configuration) using the '/system backup save' command I end up getting: > system backup save Saving system configuration Configuration backup ...
by _saik0
Tue Apr 30, 2013 1:10 am
Forum: Wireless Networking
Topic: 2.4GHz crowded - which channel/width to choose
Replies: 2
Views: 1650

Re: 2.4GHz crowded - which channel/width to choose

So far i know using channels other than 1, 6 and 11 (actually 1, 5, 9, 13 for 11g) @2.4G is a big no-no as it brings more interference due to the fact single connection uses ~20MHz width and each channel is only 5MHz. But.. I'm at rather loose terms with my knowledge on wireless networks so hopefull...
by _saik0
Mon Apr 29, 2013 11:45 pm
Forum: Wireless Networking
Topic: 2.4GHz crowded - which channel/width to choose
Replies: 2
Views: 1650

2.4GHz crowded - which channel/width to choose

Hi all, This is the situation i'm having right now at my place: http://www.deviantpics.com/images/2013/04/29/ssid_scan_20130429.th.png 'gbit6wlan' is my SSID. My RB is RB2011UAS-2HnD. Currently using CH1+5 in 802.11n mode @2.4Ghz. What channel would you suggest I choose? CH13 is out of the question ...
by _saik0
Sun Apr 07, 2013 8:53 pm
Forum: General
Topic: IPsec - encapsulated and actual traffic visible at same time
Replies: 2
Views: 2309

Re: IPsec - encapsulated and actual traffic visible at same

Ok so I may have found the reason and a workaround... The forwarding chain isn't supposed to see the IPsec traffic as encryption happens after postrouting chain. Since I marked traffic in forwarding chain before it was encrypted, that mark must have been copied to the ipsec packet itself and the glo...
by _saik0
Sun Apr 07, 2013 7:48 pm
Forum: General
Topic: IPsec - encapsulated and actual traffic visible at same time
Replies: 2
Views: 2309

Re: IPsec - encapsulated and actual traffic visible at same

Maybe the best way to describe my problem is this: http://www.deviantpics.com/images/2013/04/07/mikrotik_ipsec2.png As you can see in mangle rules 'all-us' is upload traffic marked in forward chain. It should also catch traffic from l2tp interface. The red/blue marked line in mangle is the only plac...
by _saik0
Sun Apr 07, 2013 3:27 am
Forum: General
Topic: IPsec - encapsulated and actual traffic visible at same time
Replies: 2
Views: 2309

IPsec - encapsulated and actual traffic visible at same time

Hi, I'm trying to mark the actual traffic encrypted with IPsec (tunneled) so i can perform QoS. I'm using queue-tree, forwarding chain and global-out. Interface ether10-gateway is for WAN and includes NATting. Interface l2tp-site1site2_cli is L2TP towards site2. Traffic between local subnets on site...
by _saik0
Fri Apr 05, 2013 12:29 am
Forum: General
Topic: [SOLVED] Mangle packet counters
Replies: 1
Views: 1538

Re: [SOLVED] Mangle packet counters

I suspect the issue was related to the fact i'm using masquerade/nat so the connection tracking didn't like the combination of the rules. I'm successfully using these rules now: (...) add action=mark-connection chain=prerouting connection-bytes=0-500000 \ new-connection-mark=http_req-conn port=80,44...
by _saik0
Fri Apr 05, 2013 12:16 am
Forum: General
Topic: IPv6 mangle layer7-protocol
Replies: 0
Views: 787

IPv6 mangle layer7-protocol

How come there's no layer7-protocol matching available for IPv6?

I managed to nicely mark youtube traffic using a couple of layer7-protocol rules, but can't do that for IPv6 :(
The 'content' mangle filter doesn't help.
by _saik0
Mon Apr 01, 2013 1:53 pm
Forum: General
Topic: [SOLVED] Mangle packet counters
Replies: 1
Views: 1538

[SOLVED] Mangle packet counters

Hi, I'm having issues with packet counters on the mangle rules. Packet counters for mangle marking rules in the prerouting chain don't get incremented when forwarding chain overwrites those markings i.e. when I start a 10Mbps http download the global-out (forward) is seeing the whole traffic. But at...
by _saik0
Mon Apr 01, 2013 1:23 am
Forum: General
Topic: MIKROTIK RB2011UAS-2HND performance
Replies: 4
Views: 1928

Re: MIKROTIK RB2011UAS-2HND performance

90Mbps ?!

Wow... I'm getting only 30Mbps at MOST (11n) on a 2011UAS in a crowded apartment building with ~40-50 APs around...
After (and if ever) I get to sort things out with QoS, i'm definitely going to investigate the WiFi.
by _saik0
Thu Mar 21, 2013 12:37 pm
Forum: General
Topic: QoS - PCQ and prioritisation with NAT
Replies: 4
Views: 2924

Re: QoS - PCQ and prioritisation with NAT

Someone PLEASE help?

Thanks!
by _saik0
Mon Mar 11, 2013 5:27 pm
Forum: General
Topic: QoS using mangle rules... please check my work!
Replies: 5
Views: 6400

Re: QoS using mangle rules... please check my work!

Then you could possibly help with the issue I have. Like I said I'm following the Megis approach. I tried to setup QoS in 2 steps: 1. prioritisation (prerouting packet mangling - global-in HTB), 2. PCQ (forward packet mangling - global-out HTB) I'm experiencing the issue where prerouting rules don't...
by _saik0
Mon Mar 11, 2013 2:01 am
Forum: General
Topic: QoS - PCQ and prioritisation with NAT
Replies: 4
Views: 2924

Re: QoS - PCQ and prioritisation with NAT

anyone?

or is everyone at MUM? :)
by _saik0
Sun Mar 10, 2013 2:46 pm
Forum: General
Topic: QoS using mangle rules... please check my work!
Replies: 5
Views: 6400

Re: QoS using mangle rules... please check my work!

Can you explain those "no packet quantifiers" comments? I'm also following the Megis approach but apparently traffic/packet counters for prerouting mangle rules don't work when forwarding rules for same traffic are applied. Can the prerouting marked packets in global-in HTB still get prior...
by _saik0
Sat Mar 09, 2013 2:34 pm
Forum: General
Topic: QoS - PCQ and prioritisation with NAT
Replies: 4
Views: 2924

QoS - PCQ and prioritisation with NAT

Hi, As most of the people that went to investigate QoS, I started with the presentation from Megis. The PCQ is mostly clear, even though I had to investigate further to configure this properly for a NATting router. The config for the PCQ part was inspired by this thread: http://forum.mikrotik.com/vi...
by _saik0
Mon May 07, 2012 12:11 am
Forum: General
Topic: Q: VPN L2TP/IPSec
Replies: 30
Views: 8461

Re: Q: VPN L2TP/IPSec

Someone should rename this topic to a more meaningful name.

Anyhow, same problem here with L2TP/IPSec and multiple clients behind one public IP. Is there really no solution or workaround?

OpenVPN w/ mikrotik isn't a solution since UDP support is missing; PPTP on the other hand isn't secure.
by _saik0
Mon Apr 16, 2012 7:50 pm
Forum: General
Topic: dns problem for incomming vpn users
Replies: 27
Views: 32733

Re: dns problem for incomming vpn users

I wouldn't mind that DNS suffix can't be supplied from MT to the client, but the problem is that my W7 l2tp client with manually configured dns suffix looses that config once the client connects. The DNS suffix can't be applied not even manually on a windows client. Is there a way around that at lea...
by _saik0
Thu Mar 15, 2012 2:16 pm
Forum: General
Topic: Feature Request: OpenVPN [ovpn] udp tunnels
Replies: 249
Views: 139046

Re: Feature Request: OpenVPN [ovpn] udp tunnels

A rather disappointing turn of events for OpenVPN. UDP support seems essential to me. Why even implement it in such a limited way, it's not like this helps much. I would suggest pumping up the "votes" on the wiki request page: http://wiki.mikrotik.com/wiki/MikroTik_RouterOS/Feature_Request...
by _saik0
Sat Mar 10, 2012 1:13 am
Forum: General
Topic: IPSec and rsa signature
Replies: 0
Views: 1417

IPSec and rsa signature

I was able to successfully configure and connect with L2TP/IPSEC/NAT-T/PSK from a windows7 client. Using ROS5.14 Next i tried to setup a rsa signature mode for ipsec peer. I created a CA, server and client rsa cert/key pairs (pem format for mikrotik), imported the CA.crt, server and client cert/key ...
by _saik0
Thu Mar 08, 2012 11:40 pm
Forum: General
Topic: NAT-T & IPSec Issues still exist
Replies: 25
Views: 15664

Re: NAT-T & IPSec Issues still exist

I can also confirm that L2TP+IPSEC+PSK+NAT-T+ ROS 5.14 works with windows registry modification and main-l2tp peer setting.
What about certificates instead of PSK?
by _saik0
Sun Mar 04, 2012 6:25 pm
Forum: General
Topic: IPSEC and NAT-T problem
Replies: 60
Views: 58526

Re: IPSEC and NAT-T problem

Did anyone actually managed to connect mikrotik with public IP and client behind NAT using L2TP/IPSec/NAT-T on 5.x? When the client isn't behind NAT it works without problems on 5.14, but when it's behind NAT I simply cannot get it to work... A confirmation that it really is working and a complete c...
by _saik0
Sun Mar 04, 2012 5:46 pm
Forum: General
Topic: NAT-T & IPSec Issues still exist
Replies: 25
Views: 15664

Re: NAT-T & IPSec Issues still exist

Hi,

Right now on ROS 5.14 and apparently l2tp+ipsec (preshared key) + client behind NAT doesn't work.
When the client isn't behind NAT everything goes smoothly...
Did anyone ever managed to get the above setup (client behind NAT) working??
by _saik0
Sat May 07, 2011 8:03 am
Forum: General
Topic: DSL pppoe-client reconnect and netwatch
Replies: 1
Views: 1795

DSL pppoe-client reconnect and netwatch

I have a DSL connection to my ISP that forces reconnect every 24hrs and the ipv4 WAN address changes. I'm updating my DNS and tunnel IPs with a script that is triggered by netwatch. Sadly i simply can't get it to always work like that. I have netwatch configured to ping a known outside IP every 2 se...
by _saik0
Wed Apr 27, 2011 1:04 am
Forum: General
Topic: DDNS + DHCP question
Replies: 1
Views: 1114

Re: DDNS + DHCP question

actually my question is...
can mikrotik's dhcp upon host ip negotiation send hostname + ip to a bind server?
I know that /tool dns-update exists... but is there a possibility to run it automatically upon host registers itself on dhcp?
by _saik0
Tue Apr 26, 2011 9:56 pm
Forum: Scripting
Topic: Hurricane Electric DDNS Script
Replies: 2
Views: 1774

Re: Hurricane Electric DDNS Script

I added the page on wiki: http://wiki.mikrotik.com/wiki/Dynamic_D ... ectric_DNS
It's also listed under scripting category.

Enjoy
by _saik0
Tue Apr 26, 2011 9:20 pm
Forum: General
Topic: Mark wireless traffic
Replies: 3
Views: 1094

Re: Mark wireless traffic

Yes... i knew that too but hoped some small differences exist :\
by _saik0
Tue Apr 26, 2011 9:13 pm
Forum: General
Topic: Mark wireless traffic
Replies: 3
Views: 1094

Re: Mark wireless traffic

bump
by _saik0
Tue Apr 26, 2011 9:12 pm
Forum: General
Topic: DDNS + DHCP question
Replies: 1
Views: 1114

DDNS + DHCP question

Does such a setup have any point: http://www.semicomplete.com/articles/dynamic-dns-with-dhcp/ ? Currently I got some important hosts assigned a static IP via DHCP and also got them a static DNS entry with a suffix ".home". In both scenarios you'd have to manually edit DHCP and assign ip->m...
by _saik0
Tue Apr 26, 2011 5:07 pm
Forum: General
Topic: IPv6 and DNS
Replies: 28
Views: 19487

Re: IPv6 and DNS

what do you expect. windows xp is 10 years old. you can only hope for another service pack.
erm w7 also doesn't accept the dns parameter...
One sad thing: even iphone accepts it seems
by _saik0
Sun Apr 24, 2011 11:20 pm
Forum: General
Topic: IPv6 and DNS
Replies: 28
Views: 19487

Re: IPv6 and DNS

Anyhow... would be nice if mikrotik finally added DHCPv6 with an option to only update DNS if address already autoconfigured. Something like a AdvOtherConfigFlag flag where all parameters except IP would be given. That way autoconfig would work per default and DHCPv6 would help windows hosts to get ...
by _saik0
Sun Apr 24, 2011 7:45 pm
Forum: General
Topic: IPv6 and DNS
Replies: 28
Views: 19487

Re: IPv6 and DNS

So basically (not talking about DHCPv6), IPv6 stateless autoconfig doesn't currently offer extensions for DNS config? I mean I realise mikrotik passes DNS in RADVD but since it's still not a IETF standard there's no official support eg. Windows. I see there's a IETF draft from 2001 (!) about DNS sta...
by _saik0
Sat Apr 23, 2011 8:32 pm
Forum: General
Topic: Mark wireless traffic
Replies: 3
Views: 1094

Mark wireless traffic

Is it possible to make some mangle/filter rule that would mark wireless traffic that is on the same subnet as wired? Currently there's an unmanaged switch that connects mikrotik router with the rest of the wired clients as well as an AP. So far i know the AP (WL-5460AP) isn't able to mark traffic. S...
by _saik0
Sun Apr 17, 2011 2:11 am
Forum: Scripting
Topic: Hurricane Electric DDNS Script
Replies: 2
Views: 1774

Hurricane Electric DDNS Script

In case somebody uses the HE.net DNS service that recently added DDNS support here's the script I use. Just check your ROS supports fetch url parameter. # Update Hurricane Electric DDNS IPv4 address :local ddnshost "dyndnshost" :local key "key" :local updatehost "dyn.dns.he....
by _saik0
Sun Apr 17, 2011 1:59 am
Forum: Scripting
Topic: netwatch and multiple scripts
Replies: 1
Views: 1427

netwatch and multiple scripts

Is it possible to add multiple up/down-scripts in netwatch?
eg. up-script="script1;script2"

I know it's possible to write a script that combines both scripts but that would be tedious...

Any hint?
by _saik0
Wed Feb 16, 2011 2:00 pm
Forum: General
Topic: WOL
Replies: 7
Views: 1584

Re: WOL

simple ethernet if (local side of a adsl connection)
by _saik0
Wed Feb 16, 2011 8:17 am
Forum: General
Topic: WOL
Replies: 7
Views: 1584

Re: WOL

yes and yes.

wake on lan gui from depicus' site works without problems.
Tried to use packet sniffer to check if the packet gets sent but no luck :/
by _saik0
Wed Feb 16, 2011 1:18 am
Forum: General
Topic: WOL
Replies: 7
Views: 1584

Re: WOL

Sorry to use your topic but the title suits...

Got ROS 3.30.
I'm trying to use WOL but have been unable to make it work.
i'm using the syntax /tool wol <mac> interface=<if>
Nothing happens... anyone been successful on using WOL on this version?
by _saik0
Sat Dec 04, 2010 4:26 am
Forum: General
Topic: DNS caching and static entries
Replies: 0
Views: 709

DNS caching and static entries

I'm using mikrotik as dns caching server for my local network (all DNS requests are redirected to mikrotik). I added few static enties for my hosts such as host1.local, host2.local etc. The problem is, when resolving such a domain name from a W7 PC (tried two different PCs) there's a delay of around...
by _saik0
Sat Nov 20, 2010 5:14 am
Forum: General
Topic: QoS for ADSL link
Replies: 5
Views: 3261

Re: QoS for ADSL link

Could you now post a bit more detailed setup with those simple queues and few other traffic prioritising rules?

Thanks
by _saik0
Fri Nov 19, 2010 11:21 pm
Forum: General
Topic: QoS for ADSL link
Replies: 5
Views: 3261

Re: QoS for ADSL link

Are u using NAT masquerading? If so, isn't the problem here with queue type Internet_Upload? "InternetIface" only sees one srcNATed IP address so it can't group traffic by it's real local IP address... You would have to use global-out as it's the only one aware of real IP addresses i think...
by _saik0
Fri Nov 19, 2010 5:04 pm
Forum: General
Topic: QoS for ADSL link
Replies: 5
Views: 3261

Re: QoS for ADSL link

anyone?
by _saik0
Tue Nov 09, 2010 3:52 am
Forum: General
Topic: QoS for ADSL link
Replies: 5
Views: 3261

QoS for ADSL link

Sadly I cannot delete topics I created so bare with me... Mods are free to delete my last QoS topic. Got ADSL link and am behind NAT masquerading. Firstly, can somebody point me to a working and tested ADSL QoS setup on mikrotik? I was trying to follow the Megis QoS Best practice ( link ) but encoun...
by _saik0
Tue Nov 09, 2010 12:23 am
Forum: General
Topic: QoS and Queue Tree
Replies: 3
Views: 1553

Re: QoS and Queue Tree

@staff
please delete thread as I want to start another one but from a different point of view..
Thanks
by _saik0
Mon Nov 08, 2010 2:20 pm
Forum: General
Topic: QoS and Queue Tree
Replies: 3
Views: 1553

Re: QoS and Queue Tree

The rules for FTP work when using unencrypted FTP because i'm marking a whole connection that gets started when accesing remote 21 port. I'm getting upload traffic on the Queue tree rule 4 (ftp_ul).
by _saik0
Mon Nov 08, 2010 6:53 am
Forum: General
Topic: QoS and Queue Tree
Replies: 3
Views: 1553

QoS and Queue Tree

I'm trying to setup a simple per protocol QoS: ftp, http and ssh. Here's my setup: [saiko@core] /ip firewall mangle> pr Flags: X - disabled, I - invalid, D - dynamic 0 chain=forward action=change-mss new-mss=1452 tcp-flags=syn protocol=tcp in-interface=pppoe-out1 tcp-mss=1453-65535 1 chain=forward a...
by _saik0
Mon Nov 08, 2010 5:23 am
Forum: General
Topic: mangle: forward chain problem
Replies: 2
Views: 1808

Re: mangle: forward chain problem

Hmmm... MIGHT have discovered the problem. Since i'm connected to pppoe there's an option to change MSS. Indeed there are 2 rules for mangle (only shown with print all in console): [vobelic@core] > ip firewall mangle print all Flags: X - disabled, I - invalid, D - dynamic 0 D chain=forward action=ch...
by _saik0
Mon Nov 08, 2010 4:30 am
Forum: General
Topic: mangle: forward chain problem
Replies: 2
Views: 1808

mangle: forward chain problem

I'm experiencing weird problems when using mangle rules with forwarding chain. I tried to setup a simple PCQ rule. ROS 3.30, ADSL connection with NAT (masquerade)... 10.1.0.0/24 is the LAN network behind the NAT pppoe-out1 is the ADSL connection When mangle rules 10 and 11 are active as it's the cas...
by _saik0
Mon Nov 01, 2010 4:56 pm
Forum: General
Topic: DNS and ipv6
Replies: 3
Views: 2801

Re: DNS and ipv6

I presume ipv6 DNS servers don't handle A records? Had a strange situation just a while ago. I have some static DNS cache entries (to ipv4 addresses) on mikrotik and the client (W7) had manually configured DNSv6 server pointing to mikrotik. Yesterdays I was able to resolve those ipv4 addresses from ...
by _saik0
Mon Nov 01, 2010 4:47 pm
Forum: General
Topic: Few questions about ipv6 and fw/filtering
Replies: 8
Views: 2072

Re: Few questions about ipv6 and fw/filtering

Here's the working ipv6 firewall filter: 0 X chain=input action=drop connection-state=invalid 1 chain=input action=accept connection-state=established 2 chain=input action=accept connection-state=related 3 chain=input action=accept protocol=udp 4 chain=input action=accept protocol=icmpv6 5 chain=inp...
by _saik0
Mon Nov 01, 2010 4:25 pm
Forum: General
Topic: DNS and ipv6
Replies: 3
Views: 2801

DNS and ipv6

There are few things I don't understand. Using XP/7 on my network that is ipv6 enabled (stateless autoconfig). The router is connected to ipv6 trough HE 6to4 tunnel. Clients get EUI64 address and the network prefix from the router. Routing and all works. The thing I noticed, the ipv6 DNS server isn'...
by _saik0
Sat Oct 30, 2010 6:03 am
Forum: General
Topic: Few questions about ipv6 and fw/filtering
Replies: 8
Views: 2072

Re: Few questions about ipv6 and fw/filtering

How would you collect data when active-connections isn't available for ipv6?
by _saik0
Sat Oct 30, 2010 4:35 am
Forum: General
Topic: Few questions about ipv6 and fw/filtering
Replies: 8
Views: 2072

Re: Few questions about ipv6 and fw/filtering

If input manages packets whose destination is one of the router's IPs...
Then WHY did it matter when i eg disabled rule no. 5 in the setup i showed on the beginning?

With rule 5 disabled ping didn't pass, with rule 5 enabled i was able to ping the ip cam from outside.
How come?
by _saik0
Sat Oct 30, 2010 3:49 am
Forum: General
Topic: Few questions about ipv6 and fw/filtering
Replies: 8
Views: 2072

Re: Few questions about ipv6 and fw/filtering

Damn what a rookie mistake :s

Um but still what's with rule 0?
by _saik0
Sat Oct 30, 2010 2:25 am
Forum: General
Topic: Few questions about ipv6 and fw/filtering
Replies: 8
Views: 2072

Few questions about ipv6 and fw/filtering

This is my ipv6 firewall filter: [@core] /ipv6 firewall filter> pr Flags: X - disabled, I - invalid, D - dynamic 0 X chain=input action=drop connection-state=invalid 1 chain=input action=accept connection-state=established 2 chain=input action=accept connection-state=related 3 chain=input action=acc...
by _saik0
Sun Oct 17, 2010 1:09 am
Forum: General
Topic: 6to4 tunnel on a dynamic endpoint
Replies: 6
Views: 5032

Re: 6to4 tunnel on a dynamic endpoint

Already added myself :)
by _saik0
Sun Oct 17, 2010 12:52 am
Forum: General
Topic: 6to4 tunnel on a dynamic endpoint
Replies: 6
Views: 5032

Re: 6to4 tunnel on a dynamic endpoint

I may have found the solution:

Instead of SixXS I'll have to use Tunnelbroker.net

http://ipv4.tunnelbroker.net/ipv4_end.php

And a mikrotik script that updates IPv4 address of my endpoint:
http://wiki.mikrotik.com/wiki/Hurricane ... nt_updater
by _saik0
Sat Oct 16, 2010 11:20 pm
Forum: General
Topic: 6to4 tunnel on a dynamic endpoint
Replies: 6
Views: 5032

6to4 tunnel on a dynamic endpoint

I want to setup a 6to4 tunnel using SixXS IPv6 tunnel broker service. My IPv4 connection to my ISP is a forced dynamic IP configuration (forced 24h reset). I came upon this wiki page for setting a tunnel: https://www.sixxs.net/wiki/RouterOS Is it possible to setup this using a dynamic ip endpoint? H...
by _saik0
Sat Oct 16, 2010 10:49 pm
Forum: General
Topic: Loading backup from older version
Replies: 1
Views: 779

Loading backup from older version

I have a backup file from pre 3.x version and want to load it into 3.x version.
Is that possible, I mean is the backup file format compatible?

Thanks
by _saik0
Wed Nov 14, 2007 6:32 pm
Forum: General
Topic: ICMP ping blocked
Replies: 1
Views: 999

Re: ICMP ping blocked

ignore PLEASE!

seems my STUPID ISP actually blocked ping to itself ....
by _saik0
Wed Nov 14, 2007 6:59 am
Forum: General
Topic: ICMP ping blocked
Replies: 1
Views: 999

ICMP ping blocked

just noticed that i can't be pinged from the outside
checked my firewall and UDP and ICMP is allowed
using PPPoE client with ADSL modem for outside connection

any clue what i'm missing?

thanks
by _saik0
Fri Oct 05, 2007 11:51 pm
Forum: General
Topic: graphing stats for specific IP
Replies: 3
Views: 2222

Re: graphing stats for specific IP

Yes you can. One user can see his own ip address's graph. tools --> graphing --> Queue rules --> queue (name) -- allow address (one address other than all) Note: you need to add ip/name on simple queue thanks! also is it possible to present graphs in B/s, not in b/s ? thanks in advanced
by _saik0
Fri Oct 05, 2007 12:56 am
Forum: General
Topic: graphing stats for specific IP
Replies: 3
Views: 2222

graphing stats for specific IP

can separate graphs be created for a specific IP to gather statistics?

like one graph shows stats for PC on 192.168.1.11 and the other for the PC on 192.168.1.12?


currently i can only set allowed addresses used to gather traffic stats and output them on one graph only


many thanks
by _saik0
Wed Sep 26, 2007 5:09 am
Forum: General
Topic: dhcp-server leases - problem with client-id
Replies: 1
Views: 1354

dhcp-server leases - problem with client-id

hi all i tried adding some static IP's and if i defined a custom client-id (instead of the mac address) the clients didn't want to catch that IP i defined but were acting as if the dhcp static lease wasn't defined what's up with that? i thought client-ip was something optional and any custom string ...
by _saik0
Wed Aug 29, 2007 3:17 pm
Forum: Scripting
Topic: DDNS with changeIP
Replies: 2
Views: 1562

Re: DDNS with changeIP

thx!

netwatch script was what i was searching for :>
by _saik0
Tue Aug 28, 2007 10:30 pm
Forum: Scripting
Topic: DDNS with changeIP
Replies: 2
Views: 1562

DDNS with changeIP

Wanted to know if there's a way to invoke the script that reports the IP on every boot/reboot or dsl line reconnect?
also what's that policy setting while creating new scripts ?

thanks in advanced
by _saik0
Tue Aug 28, 2007 3:44 pm
Forum: General
Topic: RealTek RTL8169 Gigabit Ethernet driver missing !!!
Replies: 4
Views: 2609

Re: RealTek RTL8169 Gigabit Ethernet driver missing !!!

same here! tho i'm using 2.9.27 does anyone know if there's a solution to that? i tried 4 ethernet cards so far!!!! d-link 550TX (i think) drops packages like mad, 2 weren't recognized, one 10Mbps realtek can't be enabled (reports failure (6), and the newest (linksys but actually it's got realted 81...