Community discussions

MikroTik App

Search found 241 matches

by valens
Mon Jul 23, 2012 8:05 pm
Forum: Scripting
Topic: How Can I Access to SXT remotely, without public Ip
Replies: 1
Views: 1245

Re: How Can I Access to SXT remotely, without public Ip

So, your problem is because the public ip address always change on those machine? You can try to set up pptp client on those sxt, dial out to your other mikrotik router somewhere else. Make sure the router have permanent public ip address. If you want to access the sxt, you can login to the router f...
by valens
Fri Apr 15, 2011 2:59 pm
Forum: General
Topic: quetree & PCQ
Replies: 4
Views: 1693

Re: quetree & PCQ

Hello Zoem,

I make a presentation at MUM EU 2011 and also at MUM ID 2011 about PCQ.

http://mum.mikrotik.com/presentations/HU11/valens.pdf

there is one page on that presentation that explain limit and total limit in PCQ.
by valens
Fri Oct 02, 2009 2:20 pm
Forum: General
Topic: need help in NAT
Replies: 4
Views: 1116

Re: need help in NAT

Have you out all ip 202.X.X.0-202.X.X.7 on the wan interface ?
by valens
Mon Aug 24, 2009 7:35 am
Forum: Beginner Basics
Topic: HTB Que tree set up for home use
Replies: 2
Views: 1332

Re: HTB Que tree set up for home use

When you only have 512 kbps upload traffic, don't make 1mbps max-limit. Set the max-limit equal with total traffic you have.
by valens
Mon Aug 24, 2009 7:30 am
Forum: General
Topic: load balancing over multiple gateways not working?
Replies: 1
Views: 1084

Re: load balancing over multiple gateways not working?

You need to add default route for the router itself.

/ip route add dst-address=0.0.0.0/0 gateway=uplink1,uplink2

or just use any gateway.
by valens
Mon Aug 24, 2009 7:27 am
Forum: Wireless Networking
Topic: NLOS Probem
Replies: 6
Views: 1670

Re: NLOS Probem

ozzielad,

LOS and fresnel zone is mandatory in 802.11abg protocol.
by valens
Mon Jan 26, 2009 9:21 pm
Forum: Beginner Basics
Topic: How to allow Internet access, but keep Private Lan invisible
Replies: 14
Views: 19209

Re: How to allow Internet access, but keep Private Lan invisible

If you want to block the connection one-way, you can add "connection-state=new"

/ip firewall filter
add chain=forward action=drop src-address=10.0.0.0/24 dst-address=10.0.1.0/24 connection-state=new
by valens
Thu Jan 22, 2009 7:29 am
Forum: General
Topic: RB600 to RB1000 migration..help!
Replies: 1
Views: 744

Re: RB600 to RB1000 migration..help!

you can just set RB600 as a bridge wireless AP. It will be the same if you use cable to interface of RB1000.
If you want to use 2 ethernet on RB1000 connected to 2 APs, move the hotspot service to a bridge, and put those two ethernet as member of bridge port.
by valens
Thu Jan 22, 2009 7:25 am
Forum: Beginner Basics
Topic: Very 'bad' parents in simple queues
Replies: 4
Views: 1496

Re: Very 'bad' parents in simple queues

I don't think there is a bug related with this case.
by valens
Thu Jan 22, 2009 7:24 am
Forum: Wireless Networking
Topic: nstreame2 help?
Replies: 6
Views: 1764

Re: nstreame2 help?

you can try to set manual data rate. just choose 54 for all links.
by valens
Wed Jan 21, 2009 6:33 am
Forum: Wireless Networking
Topic: nstreame2 help?
Replies: 6
Views: 1764

Re: nstreame2 help?

what frequency do you use for both links?
by valens
Tue Jan 20, 2009 2:35 pm
Forum: Scripting
Topic: Script to Clear cache periodicaly
Replies: 3
Views: 4796

Re: Script to Clear cache periodicaly

and make sure to disable the dstnat/redirection rule before those lines, and enable it again after.
by valens
Tue Jan 20, 2009 2:32 pm
Forum: Scripting
Topic: Script to Clear cache periodicaly
Replies: 3
Views: 4796

Re: Script to Clear cache periodicaly

I try to test on 3.18 (sorry, doesn't have same version to test):

/ip proxy set enabled=no
/ip proxy clear-cache
/ip proxy set enabled=yes

it works!
by valens
Tue Jan 20, 2009 2:25 pm
Forum: Wireless Networking
Topic: nstreame2 help?
Replies: 6
Views: 1764

Re: nstreame2 help?

The power is too high. It's better to make it -50 to -60.
Make sure you choose quite far frequency for each interface.
Have you try to load the traffic? if there is no traffic, some times data rate goes down.
Have you try to set data rate manually ?
by valens
Tue Jan 20, 2009 2:20 pm
Forum: Wireless Networking
Topic: In NStreme Dual, how we also running on 2 ethernet card???
Replies: 2
Views: 1042

Re: In NStreme Dual, how we also running on 2 ethernet card???

Just put each card for every PC, and bridge all interface together.
Use EoIP for the Dual Nstream interface to be able bridged.
by valens
Tue Jan 20, 2009 12:48 pm
Forum: Beginner Basics
Topic: Very 'bad' parents in simple queues
Replies: 4
Views: 1496

Re: Very 'bad' parents in simple queues

When I make parent in queue, usually I put empty parameter on parent. Just put the limit.

Parent
- child - connection 1
- child - connection 2
- child - connection 3
- child - connection 4
by valens
Wed Nov 19, 2008 8:29 am
Forum: Wireless Networking
Topic: This question is Awesome!
Replies: 13
Views: 3152

Re: This question is Awesome!

if you want the client automatically choose the AP, use same SSID.
if you want to do it manually, use different SSID
by valens
Tue Nov 18, 2008 2:23 pm
Forum: General
Topic: What's the best way to queue this?
Replies: 3
Views: 1753

Re: What's the best way to queue this?

It's better you make a parent queue and put 20 Mbps as the limit-at and max-limit.
For both child queue, put limit-at=10mbps and max-limit=15mbps.
if both client run together, they will have max 10 mbps each.
by valens
Tue Nov 18, 2008 2:20 pm
Forum: General
Topic: 2 routers and 2 internet connections
Replies: 4
Views: 1280

Re: 2 routers and 2 internet connections

You don't need 2 routers to do load balance. Just put those 2 backbone on one router, and also the LAN network. So you need at least 3 ethernet port on your router. You can just split the connection base on protocol/port using mangle or policy route.
by valens
Tue Nov 18, 2008 2:18 pm
Forum: Wireless Networking
Topic: This question is Awesome!
Replies: 13
Views: 3152

Re: This question is Awesome!

Please make a proper title for your next topic.

For your wireless, I suggest you use same SSID with different frequency. You don't need to use mesh or wds.
by valens
Tue Nov 18, 2008 2:16 pm
Forum: Beginner Basics
Topic: Interface Settings
Replies: 2
Views: 1230

Re: Interface Settings

for standart configuration, use enable. unless you want to force all client have to get IP address from DHCP.
by valens
Tue Nov 18, 2008 2:02 pm
Forum: General
Topic: Is (( PRIORITY )) Really working ???
Replies: 188
Views: 51784

Re: Is (( PRIORITY )) Really working ???

yes, QoS and Priority is WORKING in MIKROTIK.

for priority, do you make parent queue for the priority rules ? If you don't have one, Router will think that you have unlimited bandwidth, so no matter what priority that connection has, router will pass the traffic.
by valens
Fri Mar 07, 2008 9:48 am
Forum: General
Topic: Mikrotik Crash After 2 ou 3 hours
Replies: 6
Views: 1578

Re: Mikrotik Crash After 2 ou 3 hours

are you using routerboard or PC?
sometimes, if you use high power wireless cards, the power is not enough for all cards.
you an also monitor the CPU load and see if it reach 100%.... so you need more powerful board.
by valens
Fri Mar 07, 2008 9:33 am
Forum: Beginner Basics
Topic: how to connect to RB when Ehternet1 interface is disabled ?
Replies: 7
Views: 2372

Re: how to connect to RB when Ehternet1 interface is disabled ?

yes, you can remote PC using serial cable,
but maybe you have to set several settings on PC BIOS before you can use it.
by valens
Sat Feb 09, 2008 8:04 am
Forum: Beginner Basics
Topic: why mark conn then mark packet?
Replies: 4
Views: 2212

Re: why mark conn then mark packet?

If you want to do mark for source or destination IP Address, and you don't have any NAT on your firewall, you don't have to use Conn-Mark. You can do it with Packet Mark. If you want to mark protocol and port, it's better you use Conn-Mark first, as after handshaking, the port number will change. We...
by valens
Sat Feb 09, 2008 7:56 am
Forum: General
Topic: ROS 3.2 on x86
Replies: 13
Views: 2944

Re: ROS 3.2 on x86

I have several machines (PC, RB230) now running ROS 3.2 and have no problem.
by valens
Tue Sep 18, 2007 3:39 am
Forum: General
Topic: bandwidth ratio
Replies: 14
Views: 4399

Re: bandwidth ratio

yes, they are all 1:4.
by valens
Mon Sep 17, 2007 1:30 pm
Forum: General
Topic: band for the customers
Replies: 6
Views: 1492

Re: band for the customers

you can not do download, if you can not send request.
by valens
Mon Sep 17, 2007 1:24 pm
Forum: General
Topic: bandwidth test at specific UDP port
Replies: 3
Views: 1396

Re: bandwidth test at specific UDP port

with current bandwidth test application, I don't think you can do that.
by valens
Mon Sep 17, 2007 12:01 pm
Forum: General
Topic: Load Balance with Fail Over
Replies: 14
Views: 11237

Re: Load Balance with Fail Over

sure, why not?
by valens
Mon Sep 17, 2007 9:56 am
Forum: Beginner Basics
Topic: How to link 2 networks
Replies: 4
Views: 2142

Re: How to link 2 networks

if both network connected to the same router, you don't have to set any rule to make any machine can ping to other machine on other network. make sure each machine use proper default gateway. router will route this 2 networks. but if you want to run application using widows file sharing, you have to...
by valens
Mon Sep 17, 2007 9:51 am
Forum: General
Topic: Load Balance with Fail Over
Replies: 14
Views: 11237

Re: Load Balance with Fail Over

sometimes, problem happen not in the next gateway, but somewhere in internet.
check gateway feature in static route, check only the connection to the gateway.
if you want to set a fail over system and check your line further,
you have to use netwatch and do scripts if gateway problem happen.
by valens
Mon Sep 17, 2007 9:47 am
Forum: General
Topic: ping latency high
Replies: 6
Views: 1933

Re: ping latency high

you can make a specific mangle/queue for icmp,
so when client use all quota,
icmp traffic still work fine.
by valens
Mon Sep 17, 2007 9:45 am
Forum: General
Topic: band for the customers
Replies: 6
Views: 1492

Re: band for the customers

I think, it show that your configuration work perfectly. You have to understand, each data transaction use both upload and download. Client send request to server, this is upload traffic, and then server will respond and sending data back to the client (download traffic). If you don't have upload qu...
by valens
Mon Sep 17, 2007 9:40 am
Forum: General
Topic: bandwidth ratio
Replies: 14
Views: 4399

Re: bandwidth ratio

1024 kbps, 1:4 if you have 4 clients : parent queue : limit-at=1024kbps, max-limit=1024kbps child queue 1 : limit-at=256kbps, max-limit=1024kbps child queue 2 : limit-at=256kbps, max-limit=1024kbps child queue 3 : limit-at=256kbps, max-limit=1024kbps child queue 4 : limit-at=256kbps, max-limit=1024k...
by valens
Mon Sep 17, 2007 9:36 am
Forum: General
Topic: Separate bandwidth control
Replies: 5
Views: 1772

Re: Separate bandwidth control

If you do the traffic limit on the AP, you make different queue for each traffic, using in-out-interface as parameters.
by valens
Fri Sep 14, 2007 12:11 pm
Forum: General
Topic: how to make cash server between ipdslam and wan router
Replies: 2
Views: 989

Re: how to make cash server between ipdslam and wan router

what's your problem? have you read the manual?
by valens
Fri Sep 14, 2007 12:07 pm
Forum: General
Topic: How to Share Internet Connection?
Replies: 7
Views: 2658

Re: How to Share Internet Connection?

why don't try to connect directly to MT ?
by valens
Fri Sep 14, 2007 12:04 pm
Forum: General
Topic: Bridge
Replies: 5
Views: 1533

Re: Bridge

for ethernet, just do bridge.
for wireless, use WDS or EoIP or pseudobridge on ver 3.0
by valens
Thu Sep 13, 2007 2:14 pm
Forum: General
Topic: Web Proxy Caching Performance setting !
Replies: 7
Views: 2337

Re: Web Proxy Caching Performance setting !

ashish, how many MB of bandwidth do you have ?
i'm interested to know what kind of machine we should use for xx MB of traffic.
by valens
Thu Sep 13, 2007 1:33 pm
Forum: General
Topic: Web Proxy Caching Performance setting !
Replies: 7
Views: 2337

Re: Web Proxy Caching Performance setting !

I have not test, but MT said they have a new platform for web-proxy in ver 3.00xx
Please try to test the v3.
by valens
Thu Sep 13, 2007 1:30 pm
Forum: General
Topic: IP Accounting not work in 3.0rc4
Replies: 10
Views: 1892

Re: IP Accounting not work in 3.0rc4

sergejs,

We have use this tools since 2.3.15, and already integrated with our billing system.
We have no problem at all in using this tool.

Please confirm, if MT will fix this missing on the next version, or it will be removed from RoS x86 version?

thank you.
by valens
Thu Sep 13, 2007 12:47 pm
Forum: General
Topic: Mikrotik + Web Proxy Queueing is Impossible ?
Replies: 101
Views: 37196

Re: Mikrotik + Web Proxy Queueing is Impossible ?

Hello all friends.....! I just know this interesting discussion. Quite surprise, my wiki topic, and also my pdf become reference on this topic. My presentation is based on MT ver 2.9, and once again, it's not possible to know which traffic is MISS and which traffic is HIT. I'm glad in ver 3.0 we can...
by valens
Thu Sep 13, 2007 12:15 pm
Forum: Beginner Basics
Topic: can i assign Hostname for my Router !
Replies: 7
Views: 13533

Re: can i assign Hostname for my Router !

in addition of using DNS cache, you can also redirect DNS query trafic to the DNS cache.
so, whatever DNS server configured in the client, they will do query to your DNS cache.
by valens
Wed Sep 12, 2007 9:30 pm
Forum: General
Topic: [Urgent] Load Balance With Web Proxy
Replies: 9
Views: 3265

Re: [Urgent] Load Balance With Web Proxy

as web-proxy is a local process, you need to utilize chain output in mangle. add these rules to firewall mangle. chain=output out-interface=!LAN action=mark-connection new-connection-mark=odd passthrough=yes connection-state=new nth=1,2,0 chain=output out-interface=!LAN action=mark-routing new-routi...
by valens
Fri Aug 24, 2007 9:59 am
Forum: Wireless Networking
Topic: mini-itx motherboard to replace slow routerboards
Replies: 12
Views: 2882

Re: mini-itx motherboard to replace slow routerboards

RB333 should be better than RB532, even the CPU clock is the same.
RB333 have different CPU architecture and also have QUICC co-processor. So, it's not only a 333MHz board. It's faster.
by valens
Fri Aug 24, 2007 9:53 am
Forum: Beginner Basics
Topic: Speeding up the browsing
Replies: 8
Views: 9449

Re: Speeding up the browsing

With Local Web Proxy, you can use:

1. Simple Queue will work just fine. You don't need special setting.

2. With mangle and queue tree, you need to add several mangle. Check this link.
by valens
Thu Aug 23, 2007 5:48 am
Forum: General
Topic: Super channel available frequencies
Replies: 10
Views: 5247

Re: Super channel available frequencies

sure, it will work.
please make sure to use proper antenna according to frequency you use.
by valens
Wed Aug 08, 2007 6:03 am
Forum: Beginner Basics
Topic: Auto login
Replies: 4
Views: 2907

Re: Auto login

What type of remote login?
You can use simple script to login (using username and password) through telnet,
or if you want more advance, you can use API.
by valens
Wed Aug 08, 2007 6:01 am
Forum: RouterBOARD hardware
Topic: 532A
Replies: 6
Views: 2377

Re: 532A

You can use 2 high power card with 48 Volt adaptor.
You need the high CPU clock rate when you need to pass more throughput.
by valens
Wed Aug 08, 2007 5:57 am
Forum: General
Topic: Can I mange FTP Traffic in order to use policy routing?
Replies: 5
Views: 1456

Re: Can I mange FTP Traffic in order to use policy routing?

Once you conn-mark the first packet, you can do packet-mark (base on the conn-mark) for FTP traffic.
by valens
Tue Aug 07, 2007 8:56 am
Forum: General
Topic: Firewall: DROP all INPUT, any chance to get in?
Replies: 2
Views: 1348

Re: Firewall: DROP all INPUT, any chance to get in?

You can login using MAC-Telnet or MAC-Winbox.
Or also serial console.
by valens
Tue Aug 07, 2007 8:54 am
Forum: RouterBOARD hardware
Topic: Ragarding 532A
Replies: 2
Views: 1395

Re: Ragarding 532A

The default CPU clock for RB532A r5 now is 399 MHz.
For old version, you can try to upgrade this CPU clock to 399.
by valens
Mon Aug 06, 2007 8:19 pm
Forum: Beginner Basics
Topic: Route question
Replies: 4
Views: 1915

Re: Route question

From the router, can you ping 200.110.219.129?

If yes, maybe your ISP forgot to route the rest of your IP to your router.
Ask them to tracert to your LAN IP
by valens
Mon Aug 06, 2007 7:52 pm
Forum: General
Topic: IP Problems
Replies: 6
Views: 1519

Re: IP Problems

Make your network in 1 subnet so each machine can connect each other.
You can do it with bridge, WDS, or EoIP, depend on your detail config.
by valens
Mon Aug 06, 2007 7:41 pm
Forum: Wireless Networking
Topic: 1.5km link 108mbps
Replies: 8
Views: 2337

Re: 1.5km link 108mbps

is it 8 MegaByte/second, or 8 megabit / second?

for 8 megabit/second... it's not hard to reach with Mikrotik.

But for 8 MegaByte/second.... you need to be perfect and ideal.
by valens
Mon Aug 06, 2007 7:36 pm
Forum: Wireless Networking
Topic: LAN can ping WAN??
Replies: 4
Views: 1684

Re: LAN can ping WAN??

Hi, It's what UPnP (universal Plug & Play) for. No matter how you set IP on your laptop/PC, you can connect to the hotspot gateway (after entry the username and password). IP configuration on laptop will be ignored by the router. This feature makes it's easier the manage a hotspot area, we don't...
by valens
Tue Jul 24, 2007 10:14 pm
Forum: Wireless Networking
Topic: R52H any review ?
Replies: 6
Views: 1731

Re: R52H any review ?

I just tried it indoor. So far this card work as it should be. Several db below SR, in 2.x and also 5.x GHz. I tried to load the card for 2 days... and still work fine.
by valens
Mon Jul 02, 2007 7:23 pm
Forum: Beginner Basics
Topic: [help] 2 internet gateway + webproxying
Replies: 3
Views: 2324

Re: [help] 2 internet gateway + webproxying

you can try to mark-routing using chain=output
by valens
Mon Jul 02, 2007 7:19 pm
Forum: Beginner Basics
Topic: [help] 2 internet gateway
Replies: 7
Views: 4488

Re: [help] 2 internet gateway

@winet: 1. ROUTE MARK /ip firewall mangle add chain=forward src-address-list=localclients protocol=XXXX dst-port=XXX action=mark-routing new-routing-mark=YYYY 2. NAT (put this rule above other NAT rule) /ip firewall nat add chain=src-nat src-address-list=localclients protocol=XXXX dst-port=XXX out-i...
by valens
Mon Jul 02, 2007 7:07 pm
Forum: Beginner Basics
Topic: Please Help .. Redirect Port
Replies: 2
Views: 2103

Re: Please Help .. Redirect Port

you can use destination-nat
by valens
Tue Jun 26, 2007 9:40 am
Forum: General
Topic: Prioritize traffic avoiding setting max limits
Replies: 1
Views: 1047

Re: Prioritize traffic avoiding setting max limits

You can exclude FTP traffic before doing queue for all other traffic.
You can do it using mangle / connection mark.
by valens
Tue Jun 26, 2007 9:13 am
Forum: Beginner Basics
Topic: Problem with Queue Trees
Replies: 2
Views: 2163

Re: Problem with Queue Trees

please submit your mangle and queue tree rules.
by valens
Tue Jun 26, 2007 9:09 am
Forum: Beginner Basics
Topic: Missing A RouterOS Package?
Replies: 2
Views: 2053

Re: Missing A RouterOS Package?

In RB500 (and I think also in RB1xx), you can only use webproxy-test package.
There is no webproxy package.
This package will enable IP PROXY application, not IP WEB-PROXY.
by valens
Thu Jun 21, 2007 7:07 am
Forum: Beginner Basics
Topic: Explain please about MASQUERADE and Bandwidth limit
Replies: 3
Views: 3008

Re: Explain please about MASQUERADE and Bandwidth limit

if you use simple queue, you don't have to do mangle.
You can just point the target address, and put limit on uplink and downlink.
by valens
Thu Jun 21, 2007 7:05 am
Forum: Beginner Basics
Topic: simple queue ????
Replies: 3
Views: 2318

Re: simple queue ????

what's your setting ?
by valens
Thu Jun 21, 2007 7:03 am
Forum: Beginner Basics
Topic: Question: Link / 2 legs / 3,7 and 0,7 km / Configuration?
Replies: 5
Views: 2571

Re: Question: Link / 2 legs / 3,7 and 0,7 km / Configuration?

oh, ic.... so should go with repeating your signal on AP2.
by valens
Wed Jun 20, 2007 10:25 am
Forum: General
Topic: 2 public IP one interface
Replies: 4
Views: 1672

Re: 2 public IP one interface

you can use dst-nat to map 1 public IP to 1 local IP Address.
by valens
Wed Jun 20, 2007 10:15 am
Forum: Beginner Basics
Topic: Question: Link / 2 legs / 3,7 and 0,7 km / Configuration?
Replies: 5
Views: 2571

Re: Question: Link / 2 legs / 3,7 and 0,7 km / Configuration?

I prefer AP3 connected directly to AP1, not through AP2.
by valens
Wed Jun 20, 2007 10:06 am
Forum: Beginner Basics
Topic: simple queue ????
Replies: 3
Views: 2318

Re: simple queue ????

Hi, you should understand, every TCP data packet, required uplink and downlink. HTTP download doesn't mean you don't need uplink traffic. The client still need uplink to send HTTP request, and after handshake process, then it makes downlink traffic. In your case, maybe you need to open more uplink p...
by valens
Fri Jun 15, 2007 8:43 pm
Forum: RouterBOARD hardware
Topic: how to achive superchannels in licence level 4
Replies: 1
Views: 1427

Re: how to achive superchannels in licence level 4

You should buy Custom Freq license.
by valens
Mon Jun 04, 2007 2:29 pm
Forum: General
Topic: Ubiquity Card
Replies: 13
Views: 2963

Re: Ubiquity Card

If you give information about software-id and license-key, your reseller should be able to give you new license-key.
Or, you need to contact the reseller where you bought your RoS.
by valens
Mon Jun 04, 2007 2:21 pm
Forum: Beginner Basics
Topic: help me please
Replies: 2
Views: 2152

Re: help me please

first, you need to upgrade to the latest version :)
by valens
Sat Jun 02, 2007 7:50 am
Forum: General
Topic: How to shape local traffic?
Replies: 15
Views: 4254

Re: How to shape local traffic?

For mangle, do not specify out-interface. Just left it blank.
by valens
Thu May 31, 2007 7:23 pm
Forum: General
Topic: Export list of online computers
Replies: 6
Views: 1844

Re: Export list of online computers

another way, you can make a mangle/firewall filter to add src-address to address-list for any protocol and connection the make, and set any time for deleted from address-list (ex: 5 minutes). and you can do print for that address-list.
by valens
Thu May 31, 2007 7:08 pm
Forum: General
Topic: Simple question about different queue type integration
Replies: 1
Views: 866

Re: Simple question about different queue type integration

You have to look at IP Flow diagram on Manual.
Simple queue (I think dynamic queue will be the same with simple queue, IMHO) will placed on global-in and global-out chain.
With queue tree, usually we put them on interface (latest process on IP flow)
by valens
Thu May 31, 2007 7:03 pm
Forum: General
Topic: Bandwith shaping with mangle and address lists problems
Replies: 9
Views: 3026

Re: Bandwith shaping with mangle and address lists problems

do you have web-proxy on the ROS?

for queue tree, if you use proxy, for uplink you have to use parent global-in
by valens
Thu May 31, 2007 8:21 am
Forum: Scripting
Topic: Changing ip address
Replies: 3
Views: 1589

Re: Changing ip address

you you use masquerade, you don't have to specify the ip address.
it will automaticlly using the new IP address.
by valens
Thu May 31, 2007 8:14 am
Forum: General
Topic: How to shape local traffic?
Replies: 15
Views: 4254

Re: How to shape local traffic?

please copy-paste your rule. mangle, queue....
by valens
Thu May 31, 2007 8:07 am
Forum: General
Topic: BGP peering accross two mikrotik's
Replies: 3
Views: 1224

Re: BGP peering accross two mikrotik's

yes, it should be "established".
what version of ROS do you use?
check also TTL. this should be the number of nodes between two servers.
by valens
Fri Apr 20, 2007 9:15 am
Forum: General
Topic: New to mikrotik Have a question.
Replies: 2
Views: 993

sure, why not?
make you MT as bridge.
by valens
Wed Apr 04, 2007 8:31 pm
Forum: General
Topic: Routing between 2 Mikrotik Routers
Replies: 3
Views: 1695

I think what you need is a simple static route from one router to another router, explaining which network should go to which gateway.

I don't suggest using dynamic routing if you don't understand static route clearly.
by valens
Sun Feb 11, 2007 6:06 pm
Forum: General
Topic: routing proxy
Replies: 2
Views: 1019

do you mean destination-nat ?
by valens
Sun Feb 11, 2007 4:27 am
Forum: General
Topic: Asking for Queue Burst
Replies: 11
Views: 2565

In this case, when you only have one sub-queue, using parent is is not useful.
Parent queue will be useful if you have several sub-queues, parent will handle queue of total usage of sub-queues.
by valens
Sun Feb 11, 2007 4:13 am
Forum: General
Topic: 2 Gateways - How to redirect traffic
Replies: 35
Views: 10887

do you remove src-address for all rules ?
remove only for mangle #9 ... web-proxy.
by valens
Sat Feb 10, 2007 8:22 pm
Forum: General
Topic: MT as a SHAPER
Replies: 10
Views: 2513

It should work. You can use prerouting for limiting downlink and uplink, just specify different interface.
For uplink, use interface gateway, and for downlink, use interface local.
by valens
Sat Feb 10, 2007 2:42 pm
Forum: General
Topic: limit PPPOE users
Replies: 5
Views: 2366

You can set at PPP profile... Limit | Only One:yes
by valens
Sat Feb 10, 2007 12:39 pm
Forum: General
Topic: 2 Gateways - How to redirect traffic
Replies: 35
Views: 10887

don't use source address.
please see my post before.
by valens
Sat Feb 10, 2007 5:46 am
Forum: General
Topic: Port forwarding for entire subnet
Replies: 6
Views: 3482

You can use netmap to do 1 to 1 address translation.
by valens
Sat Feb 10, 2007 5:44 am
Forum: Wireless Networking
Topic: URGENT: How do I assign public to my clients?
Replies: 4
Views: 1532

It's better you use different subnet for each interface. don't use sub-subnet.
by valens
Sat Feb 10, 2007 5:20 am
Forum: General
Topic: [Suggestions] Web-Proxy and Packet-Mark
Replies: 0
Views: 1434

[Suggestions] Web-Proxy and Packet-Mark

As we know, web-proxy in v3 is a new re-written proxy by Mikrotik. In several topics, there are discussion about how to do queue or routing based on web-proxy. Example: 1. To make different queue rule for traffic HTTP MISS or HIT. Now, this can not be done with mangle, but I think should be possible...
by valens
Sat Feb 10, 2007 5:10 am
Forum: General
Topic: is it possible???
Replies: 3
Views: 1380

Hmmm...... I don't thing you can do it right now in Mikrotik, as MIME-TYPE is handle by web-proxy, and routing is handle by mangle/routing.
by valens
Sat Feb 10, 2007 5:08 am
Forum: General
Topic: MT as a SHAPER
Replies: 10
Views: 2513

You need to do connection-mark first, and use it while you do packet-mark. 1 chain=prerouting protocol=tcp dst-port=80 action=mark-connection new-connection-mark=http-conn passthrough=yes 2 chain=prerouting protocol=tcp dst-port=80 connection-mark=http-conn action=mark-packet new-packet-mark=Http pa...
by valens
Sat Feb 10, 2007 4:59 am
Forum: General
Topic: 2 Gateways - How to redirect traffic
Replies: 35
Views: 10887

9 ;;; Web Proxy
chain=output protocol=tcp dst-port=80
action=mark-routing new-routing-mark=Web passthrough=no
by valens
Fri Feb 09, 2007 7:52 pm
Forum: General
Topic: Asking for Queue Burst
Replies: 11
Views: 2565

When you set max-limit = burst threshold, and your client take all traffic as max-limit all the time, there is no change the client will have burst. Burst is useful for client who doesn't always take the max-limit. If you want the client have burst, even if they use all the max-limit, you can set bu...
by valens
Fri Feb 09, 2007 4:55 am
Forum: General
Topic: 2 Gateways - How to redirect traffic
Replies: 35
Views: 10887

:)

You need to post the complete rule of your mangle, in order us to help you.
It's really not enough to troubleshot while you only say "route-mark = web"
by valens
Fri Feb 09, 2007 4:49 am
Forum: General
Topic: 2 Gateways - How to redirect traffic
Replies: 35
Views: 10887

Post your mangle route-mark
by valens
Thu Feb 08, 2007 2:20 pm
Forum: General
Topic: Up&Down unlimit from WebProxy.
Replies: 10
Views: 2672

If you redirect all TCP:80 traffic to web-proxy, there will NOT be any direct HTTP traffic.
All traffic will go through proxy, either the proxy already have the cache or proxy will request from internet.
by valens
Thu Feb 08, 2007 2:15 pm
Forum: General
Topic: Asking for Queue Burst
Replies: 11
Views: 2565

You don't need to change the order, as those are parent and sub queue.

If you want more burst, make burst threshold lower.
With your setting, it will make the traffic always on 64 kbps, burst happend only in the first 6 or 7 seconds.
by valens
Sun Jan 28, 2007 1:15 pm
Forum: General
Topic: Can't set limit-at to zero in simple queue?
Replies: 15
Views: 3213

I don't know why you can not do it,
but I think 1 will be the same with 0.
No one can feel any different.
by valens
Sun Jan 28, 2007 1:14 pm
Forum: Wireless Networking
Topic: Winbox error
Replies: 3
Views: 1696

If you are connecting to IP Address, should not be any problem.
But if you do mac-connection, I prefer to use only one interface on laptop (or PC), and disable other interfaces.
by valens
Sun Jan 28, 2007 1:09 pm
Forum: General
Topic: Block non dhcp users?
Replies: 7
Views: 1968

I'm not quite sure, but is "static arp" same with "static dhcp"?
by valens
Sat Jan 27, 2007 10:37 pm
Forum: General
Topic: a site through a proxy
Replies: 1
Views: 870

You can use address list, mangle, and static route based on route-mark.
by valens
Sat Jan 27, 2007 9:44 pm
Forum: General
Topic: Queue tree and simple queue flow?
Replies: 3
Views: 2244

You can do mangle + queue tree on forward for prioritizing the traffic, and using global in/out to manage the user.
by valens
Wed Jan 24, 2007 9:54 am
Forum: General
Topic: Block non dhcp users?
Replies: 7
Views: 1968

arp ... reply-only

router will server only client that got IP Address from DHCP.
If you put IP Address staticly on the client, the router won't answer.
by valens
Wed Jan 24, 2007 2:00 am
Forum: Wireless Networking
Topic: WISP Information
Replies: 3
Views: 1349

if you want to use 400 mwatt card, I suggest SR2 or SR5.
by valens
Wed Jan 24, 2007 1:57 am
Forum: General
Topic: Need help of Expert...
Replies: 10
Views: 2461

yes, queue burst can do like that....
by valens
Wed Jan 24, 2007 1:55 am
Forum: General
Topic: Block non dhcp users?
Replies: 7
Views: 1968

arp ... reply-only
by valens
Wed Jan 24, 2007 1:52 am
Forum: Scripting
Topic: mikrotik without hotspot & pppoe
Replies: 3
Views: 2031

Use DHCP, you can bind mac-address to IP Address manually.
by valens
Thu Jan 18, 2007 1:09 pm
Forum: General
Topic: Newbie WISP
Replies: 3
Views: 1410

Change IP Address on WAN interface to /30 (back yo back), and put the /27 on LAN interface. You should tak to your provider to do this.
by valens
Thu Jan 18, 2007 10:47 am
Forum: General
Topic: MikroTik User Meeting conference in POLAND, January 2007
Replies: 41
Views: 14737

I will come to this MUM... with almost 15 hours flight and 13 hours connecting time at frankfurt.
Anyone can give information how to get to the hotel from airport? If I have to use taxi, how much it will cost ? Thx in advance!
by valens
Wed Jan 17, 2007 8:44 am
Forum: General
Topic: Need a consultant for BGP setup
Replies: 6
Views: 1860

Hi, From your bandwidth usage, I suggest : 1. You advertise 1 /24 to the HTTP provider, and you make a good proxy server to handle all http request. And set this as transparant. 2. You advertise the other /24 to the other provider. All client should use these IP, not the proxy block IP. 3. You can a...
by valens
Mon Jan 15, 2007 12:37 pm
Forum: General
Topic: Ask for Mikrotik
Replies: 1
Views: 827

by valens
Fri Dec 22, 2006 9:24 am
Forum: General
Topic: Routing via webproxy
Replies: 9
Views: 2883

IMHO, I don't thing you can do it.
After routed to proxy, the src-address is the local router IP Address,
not the original IP Address.
by valens
Wed Dec 13, 2006 5:13 pm
Forum: Wireless Networking
Topic: Mikrotik AP soft Version
Replies: 6
Views: 1550

It also depend on how users use the internet.
1 user can make ping 2000 ms if he use all the throughput
by valens
Tue Dec 12, 2006 11:14 am
Forum: General
Topic: 2 bgp peer auto failover how to?
Replies: 2
Views: 1426

You can try to advertise different subnet size to each peer. For example (your IP are 10.0.0.0 - 10.0.1.255 or /23): Peer A for 10.0.0.0/24 Peer B for 10.0.0.1/24 You can advertise to : Peer A: - 10.0.0.0/24 - 10.0.0.0/23 Peer B: - 10.0.0.1/24 - 10.0.0.0/23 So if you have peer problem with Peer A, 1...
by valens
Tue Dec 12, 2006 11:08 am
Forum: General
Topic: Bridge wlan1 (station) and wlan2 (ap) on the same RB
Replies: 7
Views: 2393

The detail is not enough to know where the error is.
But from the tracert result, I guess you should add several static routes (back to source IP) on several router in side B, after router 10.0.52.2.
by valens
Mon Dec 11, 2006 11:18 pm
Forum: General
Topic: Newbie: 4 wan links
Replies: 1
Views: 1094

I suggest you can install the demo router,
and try examples in WIKI.

If you have problem, read the manual... and then you can ask again in this forum.
by valens
Sat Dec 09, 2006 6:01 am
Forum: General
Topic: Load balance 1WAN + 2LAN
Replies: 4
Views: 1878

ECMP should work great, as long as you don't have any src-nat on those two links.
by valens
Thu Dec 07, 2006 9:43 pm
Forum: General
Topic: 3 Ip public and 30 IP private
Replies: 8
Views: 2619

The sample in the wiki is not really the same with your problem.
But you can modify from it.
http://wiki.mikrotik.com/wiki/Load_Balancing
by valens
Wed Dec 06, 2006 4:53 pm
Forum: General
Topic: 3 Ip public and 30 IP private
Replies: 8
Views: 2619

If all those IP in the same subnet, you can only use one ethernet card. If it's /32 IP, as it's in different subnet, you can use 3 cards, or you can also use 1 card. About load balance all of your connection, you can see on MT wiki, using conn-track, nth, and src-nat each conn-track to each public IP.
by valens
Fri Dec 01, 2006 10:48 am
Forum: General
Topic: DNS Configuration In MT 2.9.29
Replies: 6
Views: 1712

What's the problem?
You can just set it...

primary-dns: 202.xxx.xxx.21
secondary-dns: 202.xxx.xxx.22
allow-remote-requests: yes
cache-size: 2048KiB
cache-max-ttl: 1w
cache-used: 20KiB

And yes, you add also static IP for DNS server
by valens
Fri Dec 01, 2006 10:45 am
Forum: General
Topic: 2 Gateways problem once again
Replies: 3
Views: 1452

I have not check this solution, but maybe this will work for your case.
You put the static default route to table, and route mark the traffic for non office IP. So, when PPPoE client connected, and add default rout, it will only effect the office network, not the other network.
by valens
Tue Nov 28, 2006 6:22 am
Forum: General
Topic: dsn cache and dynamic dns
Replies: 4
Views: 1589

and giving the browsing high priority than downloading and other trafik ?
use mangles and queue
so how can we really improve the browsing speed ?
hmmm.... buy more bandwidth :)
by valens
Sat Nov 25, 2006 9:08 am
Forum: General
Topic: bandwidth control help me
Replies: 3
Views: 1392

it's better you upgrade to newer version first.
by valens
Mon Nov 20, 2006 12:07 pm
Forum: General
Topic: 2 ISP Problem
Replies: 2
Views: 1369

by valens
Fri Nov 03, 2006 8:34 am
Forum: General
Topic: Proxy + PCQ = strange results !!!!!!
Replies: 9
Views: 2861

Yes, you already make it.
by valens
Fri Nov 03, 2006 5:13 am
Forum: General
Topic: Proxy + PCQ = strange results !!!!!!
Replies: 9
Views: 2861

What is the strange thing, and what do you expect ? 2 name="1-Local-down" parent=localnet packet-mark=down-packet limit-at=600000 queue=pcq-download priority=2 max-limit=600000 burst-limit=0 burst-threshold=0 burst-time=0s 3 name="3-Proxy download" parent=localnet packet-mark=Pro...
by valens
Thu Nov 02, 2006 3:37 pm
Forum: General
Topic: Proxy + PCQ = strange results !!!!!!
Replies: 9
Views: 2861

I didn't see any strange thing from your example. Both rules are for client, not for proxy. One rule is for direct connection, and the other is for down traffic through proxy. You can not compare also the statistic in the winbox by downloding small file or several seconds test. The refresh time of t...
by valens
Thu Nov 02, 2006 6:49 am
Forum: General
Topic: Proxy + PCQ = strange results !!!!!!
Replies: 9
Views: 2861

is the mangle counting correctly ?
by valens
Wed Nov 01, 2006 7:55 pm
Forum: General
Topic: Proxy help..
Replies: 8
Views: 1844

:)

NOT only with IP.... many ways!
mac address, hotspot, PPPoE, etc.

Please read the manual ;)
by valens
Tue Oct 31, 2006 9:33 am
Forum: Wireless Networking
Topic: R52 Cards not working in station mode?
Replies: 4
Views: 1667

should be no problem with r52
by valens
Mon Oct 30, 2006 7:52 pm
Forum: General
Topic: Is it possible with RouterOS?
Replies: 3
Views: 1585

Sure it's possible to do it by address-list, but there are several problems. But, how if the user using NAT and have several computer behind the NAT. Only the first user get redirected. Another thing, is the user using local address assigned by DHCP? Do they use a recycle address ? Once the IP inser...
by valens
Sun Oct 29, 2006 6:32 pm
Forum: Wireless Networking
Topic: Block file sharing on WDS network
Replies: 7
Views: 3051

You can try to disable the default forward in wireless setting.
And do bridge filter also.
by valens
Sun Oct 29, 2006 11:46 am
Forum: General
Topic: How i get OID in queue tree
Replies: 2
Views: 2428

/queue tree print oid Flags: X - disabled, I - invalid 0 name=.1.3.6.1.4.1.14988.1.1.2.2.1.2.16777216 packet-mark=.1.3.6.1.4.1.14988.1.1.2.2.1.3.16777216 bytes=.1.3.6.1.4.1.14988.1.1.2.2.1.5.16777216 packets=.1.3.6.1.4.1.14988.1.1.2.2.1.6.16777216 1 name=.1.3.6.1.4.1.14988.1.1.2.2.1.2.16777217 pack...
by valens
Sun Oct 29, 2006 9:16 am
Forum: Wireless Networking
Topic: Is it correct to use the same SSID on one tower?
Replies: 5
Views: 1807

The problem will arise, when one CPE see two access point (with the same SSID) with almost the same signal level. This can make the client connected to one and then move to the other one, back and forth.
by valens
Sun Oct 29, 2006 9:12 am
Forum: Wireless Networking
Topic: Help with very simple routed AP setup
Replies: 5
Views: 1530

I think it's a static route problem. You miss to a / sevaral static route rule(s) on the router. But sorry, I can not tell you which one u missed, unless you make your network diagram, and and print your setup more detail here.
by valens
Sun Oct 29, 2006 8:35 am
Forum: General
Topic: mangle, connection and mark
Replies: 3
Views: 1620

The PCQ will still work for the client. No problem, as long as you make correct mangle and choosing the right interface as queue parent.
by valens
Sat Oct 28, 2006 11:40 pm
Forum: General
Topic: License Limitation or Setting Some Where ?
Replies: 2
Views: 1269

Have you tried the bandwidth test ? It can show prediction of how big your wireless link is. You can compare this data with the occupied link after you put 25 IP phone.
by valens
Sat Oct 28, 2006 5:52 pm
Forum: General
Topic: can i install many harddrive and using the cache on..???
Replies: 2
Views: 1231

I think now you can only use 1 additional harddrive, beside the system drive.
by valens
Fri Oct 27, 2006 8:08 am
Forum: Wireless Networking
Topic: Access-Point Indoor or outdoor in bridge mode
Replies: 3
Views: 1561

because this is a mikrotik specific forum, i have to say that the cheapest CPE is RB112 + R52 :)
by valens
Fri Oct 27, 2006 7:59 am
Forum: General
Topic: deny internet user search router os computer
Replies: 7
Views: 2557

do you mean neighbor viewer or winbox-mac ?
you can turn off the mac service.
by valens
Fri Oct 27, 2006 7:51 am
Forum: Wireless Networking
Topic: How to setup a transparent bridge without WDS
Replies: 10
Views: 3224

if you know how to work with DFS, it's a good feature to use. :)
by valens
Fri Oct 27, 2006 7:49 am
Forum: Scripting
Topic: Address-list dynamic->static
Replies: 13
Views: 11493

tomy, you should read the manual of ROS scripting.

don't see only the last line, the first line there is FOREACH ... it's the loop.
by valens
Fri Oct 27, 2006 12:05 am
Forum: Scripting
Topic: Address-list dynamic->static
Replies: 13
Views: 11493

Yes, Sam.
It's not a perfect script.
Just to give a picture how to do it.

;)
by valens
Thu Oct 26, 2006 11:08 pm
Forum: Wireless Networking
Topic: is it possible to code this schema
Replies: 1
Views: 1000

First RB112, need 1 CM9. Mode : AP-bridge, Band 5GHz, wds enable

Second RB112, need 2 CM9.
first CM9: mode: station WDS, wds enable, band 5ghz
second CM9 : mode ap-bridge, band 2.4ghz.
put all interface in bridge.

so, you need 2 RB112 + 3 CM9
by valens
Thu Oct 26, 2006 11:00 pm
Forum: General
Topic: ports blocked
Replies: 1
Views: 1034

by valens
Thu Oct 26, 2006 10:58 pm
Forum: General
Topic: Mikrotik working along with a cache server?
Replies: 2
Views: 1197

sure, as long as you know how to set it.
by valens
Thu Oct 26, 2006 10:56 pm
Forum: Scripting
Topic: Address-list dynamic->static
Replies: 13
Views: 11493

:foreach i in=[/ip firewall addr find list=dynamic-list ]\
   do= { \
      :set w [/ip fire addr get $i address]
      /ip fire add rem [/ip fi add find address=$w]
      /ip fire add add list=static-list address=$w
}

CMIIW
by valens
Thu Oct 26, 2006 5:44 pm
Forum: Scripting
Topic: variables from other server
Replies: 1
Views: 1415

I don't think it's possible using ROS scripting.
But you can make a simple PHP or any other language to do that.
Checking on other server first.... than telnet to the router and disable the rule.
by valens
Thu Oct 26, 2006 5:40 pm
Forum: Wireless Networking
Topic: How to setup a transparent bridge without WDS
Replies: 10
Views: 3224

make the datarate static. if you need 5 mbps in total, make the datarate at least twice. use the G or G-Turbo mode. disable the DFS if you make a long range link (>15 km), set the ack-timeout manually. see the table on manual. try to test the throughput using bandwidth test, see if you already got g...
by valens
Thu Oct 26, 2006 5:34 pm
Forum: General
Topic: hotspot not working
Replies: 1
Views: 1487

You should try to make a regular DHCP first, before implement the hotspot.
Try the DHCP setting (IP Pool, etc etc) while turning off the hotspot.
by valens
Thu Oct 26, 2006 5:32 pm
Forum: General
Topic: question about dst-nat. how to change source-ip?
Replies: 2
Views: 1400

if you already set the default gateway on the client, and src-nat on the router correctly, it should work.
by valens
Thu Oct 26, 2006 5:29 pm
Forum: General
Topic: forward all traffic betwen wan and hosts behind masquarade
Replies: 1
Views: 1044

You need bridge network.
With mikrotik as wireless client, you can not simply make it as bridge network, unless you have access to the WAN Access Point, and make WDS setting, or bridge EoIP.
by valens
Thu Oct 26, 2006 5:20 pm
Forum: General
Topic: mangle, connection and mark
Replies: 3
Views: 1620

for downstream packet, if you are using src-nat or masquerading, you have to use connection mark first, and then packet mark. Why? The translation process of src-nat will be held at almost the last step in the router. So when the packet come from the internet, no way to know to whom the client have ...
by valens
Thu Oct 26, 2006 9:28 am
Forum: Wireless Networking
Topic: How to setup a transparent bridge without WDS
Replies: 10
Views: 3224

How big the throughput you need?
To decrease lack performance, you have tune up your wireless setting.
Put static datarate, etc etc.
by valens
Thu Oct 26, 2006 9:10 am
Forum: General
Topic: denying extensions
Replies: 1
Views: 1080

I think it will depend on the PTP itself.
But most of the time, PTP will use different way,
so you can not filter it using web-proxy.
by valens
Thu Oct 26, 2006 8:47 am
Forum: General
Topic: isp doesn't allow user to share their adsl line
Replies: 19
Views: 4940

Have you try to share?
Try first... and if you technical problem, maybe we can discuss later.
by valens
Thu Oct 26, 2006 8:45 am
Forum: General
Topic: 2 wans but not for loadbalancing
Replies: 2
Views: 1418

Hi,

You have to specify the different between BROWSING and DOWNLOADING.
Both action is using TCP Port 80. Remember, most of the time in RouterOS, we will talk in layer3.
by valens
Wed Oct 25, 2006 3:25 pm
Forum: Wireless Networking
Topic: How to setup a transparent bridge without WDS
Replies: 10
Views: 3224

use EoIP + Bridge.
by valens
Wed Oct 25, 2006 2:20 pm
Forum: General
Topic: AP Client
Replies: 20
Views: 4931

Welcome RB133 and RB133c 8)
by valens
Wed Oct 25, 2006 12:05 pm
Forum: General
Topic: WinBox Simple Queues colored icons
Replies: 11
Views: 13288

when you see it's red all the time....
it means it's the time to ask your client to pay for service upgrade :)
by valens
Wed Oct 25, 2006 4:11 am
Forum: General
Topic: need help issue with ISP 1:1 Internet Connection
Replies: 2
Views: 1317

I don't think this is the proper forum for your problem, as it's not related with Mikrotik at all. But I think you can show the data to the ISP, and ask them to solve it. But be careful, if you can not download full T1 from 1 source, it doesn't mean the problem must be your ISP. The problem can be a...
by valens
Wed Oct 25, 2006 4:04 am
Forum: General
Topic: Weird Static Routing Question
Replies: 12
Views: 3076

Maybe you can use bridge for both ethernet?
You still can do bandwidth management and firewalling.
by valens
Mon Oct 02, 2006 12:26 pm
Forum: General
Topic: 3.0 beta 1 is out!
Replies: 42
Views: 12968

colorful terminal :)

I tried the x86 version.
anyone found a big different in this beta version ?

in wireless setting, the frequency combo box is gone.
we have to type the frequency manually.
by valens
Mon Aug 28, 2006 10:21 pm
Forum: General
Topic: Does mangle+queue work if web proxy is running?
Replies: 7
Views: 5214

yes, but you have set apropriate mangle and chain accordingly.
by valens
Sat Jun 17, 2006 12:47 pm
Forum: Wireless Networking
Topic: poe injector replacements
Replies: 3
Views: 1288

The pasive PoE from Mikrotik should be fine. IMHO, it's a generic thing, many online store sell it.
For power surge, I'm using APC.
by valens
Sat Jun 17, 2006 12:43 pm
Forum: General
Topic: Route and NOT NAT
Replies: 6
Views: 2053

please copy paste :

/interface print
/ip address print
/ip route print
by valens
Sat Jun 10, 2006 6:13 pm
Forum: General
Topic: Total bandwith
Replies: 3
Views: 1446

I think the uplink traffic won't be a problem. You still have enough pipe for 10 users.

For downlink, use the queue tree. You can make a parent queue, so the router knows that you only have 512000 speed. Put all other queue inside the parent queue. Put limit-at as 51200 and max-limit as 56000.
by valens
Fri Jun 09, 2006 1:33 pm
Forum: Wireless Networking
Topic: HOTSPOT_.NPK
Replies: 2
Views: 984

U can upgrade to 2.9.25 ...
With routeros module, you will have that hotspot feature again.
by valens
Fri Jun 09, 2006 1:31 pm
Forum: Wireless Networking
Topic: Please Urgently Help RB 532 can't work in two rooms
Replies: 12
Views: 2443

What antenna are u using in room?
What's the signal strength when u place both box side by side?
Do u want to put those boxes with 5km distance with the same antenna u are using inside the rooms?
C'mon..... be realistic!
by valens
Fri Jun 09, 2006 1:29 pm
Forum: Wireless Networking
Topic: Best setup for long distance P2P links
Replies: 13
Views: 7446

Don't forget to set ack-timeout depend on the distance
by valens
Fri Jun 09, 2006 1:28 pm
Forum: Wireless Networking
Topic: Configuring RB112 for AP Bridge and what about the client??
Replies: 7
Views: 2192

It's on the manual. Use EoIP or WDS
http://www.mikrotik.com/docs/ros/2.9/in ... #4.13.21.2
by valens
Fri May 19, 2006 9:08 pm
Forum: Wireless Networking
Topic: Network Design
Replies: 6
Views: 1772

If you set Automatic IP Setting on client interface (Windows), it will automaticly request a new address setting. You don't need to write a script
by valens
Fri May 19, 2006 8:56 pm
Forum: General
Topic: Firewall rule with no protocol specified ?
Replies: 2
Views: 915

you have to set protocol if you want to use dst-port
by valens
Tue May 16, 2006 7:06 pm
Forum: General
Topic: DHCP Clients only allowed to open permitted pages
Replies: 6
Views: 2179

You can do it with simple firewall rule. src-address=[ip-pool] dst-address=xxxxxxx action=accept src-address=[ip-pool] dst-address=xxxxxxx action=accept src-address=[ip-pool] dst-address=xxxxxxx action=accept src-address=[ip-pool] dst-address=xxxxxxx action=accept src-address=[ip-pool] dst-address=x...
by valens
Mon May 15, 2006 5:29 pm
Forum: Wireless Networking
Topic: Network Design
Replies: 6
Views: 1772

Routed network will do better than bridge. The broadcast traffic will not go to whole network. If you put DHCP, the client will change AP (if one have trouble) without any problem. The IP subnet will change, but I'm sure they will not know and care, as long as they can connect.
by valens
Fri May 12, 2006 12:26 am
Forum: The Dude
Topic: Question / Suggestion
Replies: 1
Views: 1602

You can do it with The Dude. You need to acticate history for each service you want to monitor.
by valens
Fri May 12, 2006 12:20 am
Forum: General
Topic: traffic priority
Replies: 10
Views: 2651

I think there is no way to make QOS base on percent.
You need to define, how many kbps/mbps for each traffic.
You can do it with mangle, and then use the packer mark on queue tree.
by valens
Fri May 12, 2006 12:18 am
Forum: General
Topic: lost my password
Replies: 9
Views: 173951

With netinstall, you can choose not to keep old config.
It will reset the config and also the password
by valens
Fri May 12, 2006 12:15 am
Forum: The User Manager
Topic: userman not working?
Replies: 7
Views: 6106

It's weird. Userman works fine for me.
Have you try to open it on different browser?
by valens
Wed May 10, 2006 6:19 pm
Forum: General
Topic: Can't access certain web pages!!!
Replies: 15
Views: 10437

Have you try to do several checking? Ping, tracert, etc?
by valens
Wed May 10, 2006 6:15 pm
Forum: General
Topic: Routing Question
Replies: 4
Views: 1340

So, you need to make EoIP to make a bridge network.
by valens
Wed May 10, 2006 7:20 am
Forum: General
Topic: Routing Question
Replies: 4
Views: 1340

You can just make a simple static route to route the traffic.
by valens
Wed May 10, 2006 1:06 am
Forum: Wireless Networking
Topic: Mikrotik wireless facts "problems" <-- sorry
Replies: 28
Views: 6221

I was not trying to use many type of cards. I love CM9 and R52, and they works very good for me.
by valens
Wed May 10, 2006 12:58 am
Forum: General
Topic: Web Proxy queue
Replies: 11
Views: 3941

Maybe you can try this example P > FIREWALL > MANGLE 0 ;;; up traffic chain=prerouting in-interface=LAN src-address=192.168.0.4 action=mark-packet new-packet-mark=test-packet-up passthrough=no 1 chain=forward src-address=192.168.0.4 action=mark-connection new-connection-mark=test-conn passthrough=ye...
by valens
Wed May 10, 2006 12:43 am
Forum: General
Topic: 2 ISP in 1 LAN and policy routing
Replies: 4
Views: 2385

If you want certain traffic goes and back on the same pipe, you need to do SRC-NAT to IP Address given from that ISP. You can not just route the traffic, unless you do BGP and you can choose which IP blocks advertise though one ISP and another ISP.
by valens
Wed May 10, 2006 12:33 am
Forum: General
Topic: IP Public behind my Mikrotik
Replies: 8
Views: 3435

There are several ways to do that: 1. You can try to split your IP blocks to several smaller subnet, and do routing for the second subnet you put behind the router. 2. You can use dst-nat to translate request to certain IP Address to one of local IP Address. You can still host, for example webserver...
by valens
Thu May 04, 2006 12:23 am
Forum: General
Topic: redirect pppoe
Replies: 3
Views: 1171

try to set mt2 as bridge and make sure there is not routing/nat on wireless equipment
you can also try to make EoIP from MT2 to MT1, and do bridge for that EoIP with appropriate ethernet
by valens
Wed May 03, 2006 11:53 pm
Forum: General
Topic: mac filtering lesson for newbie needed
Replies: 11
Views: 3363

If you only need to block (not queue) un-authorized mac-address, you can try to use this script > ip firewall filter > add chain=forward in-interface=LAN src-mac-address=11:22:33:44:55:66 action=accept ..... repeat for evey mac-address you need to allow ..... and at last, you need to add drop filter...
by valens
Wed May 03, 2006 11:52 pm
Forum: General
Topic: mac filtering lesson for newbie needed
Replies: 11
Views: 3363

> ip firewall filter
> add chain=forward in-interface=LAN src-mac-address=11:22:33:44:55:66 action=accept
..... repeat for evey mac-address you need to allow
..... and at last, you need to add drop filter
> add chain=forward in-interface=LAN action=drop
by valens
Wed May 03, 2006 8:43 pm
Forum: General
Topic: Big PPPOE Problem
Replies: 7
Views: 2178

I think this is not the PPPoE problem. Have you tried the setting without PPPoE with 2 users connected to a switch after an AP station? This is bridge problem, where AP client can not pass the second client mac address. Mikrotik will see only the first mac-address. You need to set a NAT on the wirel...
by valens
Wed May 03, 2006 8:40 pm
Forum: Wireless Networking
Topic: BIG PPPOE PROBLEM
Replies: 8
Views: 2605

I think this is not the PPPoE problem. Have you tried the setting without PPPoE with 2 users connected to a switch after an AP station? This is bridge problem, where AP client can not pass the second client mac address. Mikrotik will see only the first mac-address. You need to set a NAT on the wirel...
by valens
Wed May 03, 2006 8:29 pm
Forum: Wireless Networking
Topic: How do I..set this route/bridge up?
Replies: 1
Views: 1014

Looks it is possible.
What is your problem?

Maybe you can try using 1 RB112 with 2 minipci, or if you need more bandwidth, using one RB532 with 2 minipci.
by valens
Wed May 03, 2006 7:13 pm
Forum: General
Topic: Mac authentication
Replies: 2
Views: 1187

The great thing about Mikrotik is the manual is quite complete, more than 500 printed pages.
The bad thing about Mikrotik is the manual is complete, makes many people too lazy to read it.
by valens
Tue May 02, 2006 7:49 pm
Forum: General
Topic: REAL --- FAKE
Replies: 24
Views: 6473

If you just want to make network A ping network B with a router in between, :

1. Turn off all firewall rule and NAT
2. Set gateway (default) of client computer to IP on the router on each interface.
by valens
Tue May 02, 2006 11:07 am
Forum: General
Topic: REAL --- FAKE
Replies: 24
Views: 6473

Yes, your masq filter is wrong...
by valens
Mon May 01, 2006 8:38 pm
Forum: General
Topic: Hotspot & MAC authentication
Replies: 5
Views: 2861

I see, I didn't tought about it.
Maybe you can try to make a script on your payment web, after you add the the mac address on radius, the script will do telnet/ssh to the router, and delete the mac-address. So it will authenticate again. Not very easy, but I'm sure it's do able.
by valens
Mon May 01, 2006 8:34 pm
Forum: General
Topic: REAL --- FAKE
Replies: 24
Views: 6473

1. Your Firewall filter no 0 is really weird.

2. Do you have any NAT/MASQ rules? Maybe there are some missconfig there.
by valens
Mon May 01, 2006 5:35 pm
Forum: General
Topic: Hotspot & MAC authentication
Replies: 5
Views: 2861

After you add the mac-address, don't redirect the user to the login page, but redirect the user to the page they want to browse before the payment process.
by valens
Mon May 01, 2006 6:02 am
Forum: General
Topic: REAL --- FAKE
Replies: 24
Views: 6473

paste your config here
by valens
Mon May 01, 2006 5:45 am
Forum: General
Topic: transparent traffic shaper
Replies: 35
Views: 12025

Eric, please do not confuse with limit-at, max-limit, priority, or parent in my script. The script I pasted in here only small peace of the whole script in my box. Very complicated if I have to explain one by one. Answering your question: 1. We are doing connection mark, and then packet mark. This i...
by valens
Sun Apr 30, 2006 9:38 pm
Forum: RouterBOARD hardware
Topic: Can't ping/telnet into Routerboard 532...
Replies: 3
Views: 2105

Do you do bridge for the PTP wireless?

You have to implement WDS or EoIP to make bridge on Mikrotik wireless client.
by valens
Sun Apr 30, 2006 8:45 pm
Forum: General
Topic: route traffic
Replies: 1
Views: 916

1. read the manual
2. if you can not do it, show your config here.
by valens
Sun Apr 30, 2006 8:40 pm
Forum: General
Topic: REAL --- FAKE
Replies: 24
Views: 6473

I think you have basic networking problem. Have you set the default route of each machine properly? What is the default route for the real network machine? Maybe you can try to do trace route to see where the traffic go.
by valens
Sun Apr 30, 2006 8:34 pm
Forum: General
Topic: transparent traffic shaper
Replies: 35
Views: 12025

Screen Capture:

Image
by valens
Sun Apr 30, 2006 8:33 pm
Forum: General
Topic: transparent traffic shaper
Replies: 35
Views: 12025

[valens@BM] interface> pr Flags: X - disabled, D - dynamic, R - running # NAME TYPE RX-RATE TX-RATE MTU 0 R ether1 ether 0 0 1500 1 R ether2 ether 0 0 1500 [valens@BM] interface bridge port> pr Flags: X - disabled, I - inactive, D - dynamic # INTERFACE BRIDGE PRIORITY PATH-COST 0 ether1 bridge1 128...
by valens
Fri Apr 28, 2006 8:13 pm
Forum: Wireless Networking
Topic: Multiple frequencies and bad performances
Replies: 19
Views: 7613

For me, it's weird.

I have RB230 with RB14 using 4 CM9/R52 cards, and it can work together. Yes, it's not 22 mbps each, but I got better than 1 mbps each with All card using 2.4 GHz.
by valens
Fri Apr 28, 2006 7:26 pm
Forum: General
Topic: lizence gone.....
Replies: 2
Views: 1061

is the software-id change or still the same?
if you bought the license from reseller, contact them, they should have backup of your license key.
or send email to support@mikrotik.com, dan inform them your software-id
by valens
Fri Apr 28, 2006 2:45 pm
Forum: Wireless Networking
Topic: ap's dont see it
Replies: 3
Views: 1224

I mean, make a test comparasion on the ground.
If one of the equipment have much smaller signal, I think it's hardware or cable or connector problem. You have to fix or replace it.
by valens
Fri Apr 28, 2006 2:10 pm
Forum: General
Topic: transparent traffic shaper
Replies: 35
Views: 12025

It DO work.
by valens
Thu Apr 27, 2006 11:37 pm
Forum: Wireless Networking
Topic: ap's dont see it
Replies: 3
Views: 1224

Have you check both AP on the ground, give them same small helical antenna and connect to the same AP. Same distance, and see the signal strength. Maybe you have problem in connector or cable.
by valens
Thu Apr 27, 2006 11:30 pm
Forum: General
Topic: transparent traffic shaper
Replies: 35
Views: 12025

I'm using Mikrotik 2.9.20 using transparant bridge, and every thing work fine. I'm using this config since 2.9.1
by valens
Thu Apr 27, 2006 9:22 pm
Forum: General
Topic: MUM: USA
Replies: 68
Views: 14692

Normund... oh.... my face on the brochure :oops:
by valens
Sun Apr 23, 2006 9:06 pm
Forum: General
Topic: Buring images to a CF Card in windows xp
Replies: 10
Views: 2903

There are several ways you can try:

1. Use CF to IDE Converter. Put CF on converter, and install it using CD-Boot installer. After finish installing, move CF to the board.

2. Using netinstall. But I never tried this before on Soekris board.
by valens
Sat Apr 22, 2006 10:24 pm
Forum: General
Topic: WDS vs bridge advantage?
Replies: 3
Views: 1720

pekr : thx for remembering me. :)
by valens
Sat Apr 22, 2006 10:22 pm
Forum: Wireless Networking
Topic: HOTSPOT disturbing network
Replies: 3
Views: 1409

You should put hotspot and regular network on different interface.
Or for regular user, you can try PPPoE.
User can choose if they want to login through hotspot or PPPoE.
by valens
Sat Apr 22, 2006 10:14 pm
Forum: General
Topic: How to drop an IP address
Replies: 6
Views: 1981

Isnt your rule will drops every ip except one pair MAC+IP ? I mean it will work only for one client. Im using construction with lotof pass rules. One pass rule for one MAC+IP pair. At the end i have one rule to drop everyting whats not equal to previous passing rules. Gotmoh, I didn't check my scri...
by valens
Sat Apr 22, 2006 10:12 pm
Forum: General
Topic: How to drop an IP address
Replies: 6
Views: 1981

Mahendra:
update to the newest version.
2.9.x have ip address list feature.
by valens
Sat Apr 22, 2006 12:40 am
Forum: General
Topic: FTP multiple logins
Replies: 7
Views: 1985

Check the FTP Server configuration.
I don't think it's the problem on Mikrotik.
If one user can login, it means the D-NAT / Routing / Firewall in Mikrotik correctly configured.
by valens
Fri Apr 21, 2006 11:05 pm
Forum: General
Topic: How to drop an IP address
Replies: 6
Views: 1981

Friend, you should read the manual first before asking here.

But, you can try using mac address protection:
/ip firewall filter add src-mac-address=[client mac address] src-address=![client correct ip address] action=drop
by valens
Sun Feb 26, 2006 2:14 pm
Forum: General
Topic: WDS vs bridge advantage?
Replies: 3
Views: 1720

pekr, you should use bridge, not WDS to put 2 interface in one router into same subnet. You need STP only if you have a bridge loop, so you can set priority, like a routing in route traffic.

Bridge vs routing? You can see the different only if your traffic high enough.
by valens
Sun Feb 26, 2006 1:46 pm
Forum: General
Topic: Multiple ISP IP addresses on an Interface and policy routing
Replies: 5
Views: 2408

If you are not using NAT (just plain routing), you can use several IPs from different ISP on one interface. But I didn't suggest this, as it will make big bridge network across several ISPs, and sometimes, you can have trouble with broadcast traffic. You can do route-mark and then do several default...
by valens
Sun Feb 26, 2006 1:37 pm
Forum: General
Topic: Beware, clients can see your graphs !
Replies: 2
Views: 2079

No thing to worry.
It's very easy to block user from seeing the graph.
You can make ACL for each graph
by valens
Thu Dec 22, 2005 10:10 am
Forum: General
Topic: What am i doing wrong with logging?
Replies: 5
Views: 1755

check the firewall rule. you have to enable log for each rule.
by valens
Thu Dec 22, 2005 9:41 am
Forum: General
Topic: Just for info: Let's create a "I'm at the MUM 2006"
Replies: 25
Views: 5846

djape,

I just got confirmation from my travel agent, that I got chech visa.
I use invitation from Mikrotik, a long with MUM brochure.
by valens
Thu Dec 15, 2005 7:20 pm
Forum: General
Topic: Just for info: Let's create a "I'm at the MUM 2006"
Replies: 25
Views: 5846

I booked the plane and hotel already.
Just waiting for the VISA.
by valens
Sun Dec 11, 2005 9:54 pm
Forum: Wireless Networking
Topic: Athereos RB52 - Long Range
Replies: 5
Views: 2787

do you mean superchannel ?

it's can be use only if you have licence with custom frequency.
by valens
Sun Dec 11, 2005 9:07 pm
Forum: Scripting
Topic: Hotspot Challange: 2 hour per day limit?
Replies: 4
Views: 2931

sorry, wrong posting of mine
by valens
Tue Nov 22, 2005 9:54 pm
Forum: RouterBOARD hardware
Topic: Real world experience with multiple 400mw mPCI cards?
Replies: 16
Views: 6720

If you want to use more than 2 SR cards, you can try to use high voltage power adaptor (48 V)
by valens
Wed Jul 13, 2005 11:36 am
Forum: General
Topic: Hotel AP Recommendations
Replies: 6
Views: 2138

When you are using Mikrotik OS to do DHCP or Hotspot for the client, I think it's better to use one the high power interface, such as Prism 300 mWatt PCMCIA, or SR2 miniPCI card. The price for those cards are cheaper than a good 2,4 Access Point hardware.
by valens
Wed Jul 13, 2005 11:31 am
Forum: General
Topic: Connecting different Atheros Wireless Chipset
Replies: 5
Views: 2085

Uldis,

So, there is no change to connect these cards using the custom freq?
by valens
Tue Jul 12, 2005 11:08 pm
Forum: General
Topic: Connecting different Atheros Wireless Chipset
Replies: 5
Views: 2085

Sorry that I can reply this topic just now. on 5211 chipset, if we are doing : /interface/wireless/info we get the list of the freq we can use, and here are : name="wlan2" interface-type=Atheros AR5211 supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps, 36Mbps,48Mbps,54Mbps 2ghz-b-channe...
by valens
Tue Jul 12, 2005 11:00 pm
Forum: Wireless Networking
Topic: Problem with bridge and wireless
Replies: 2
Views: 2732

Problem with bridge and wireless

Hi, I found a strange condition when installing RB230 outdoor with bridge. Here is the configuration: Client1 ------ Router 1 ------(wireless)------Router2 ------ Client2 Im using Atheros 5211 chipset on both router, and using 2,5 GHz freq. I put all interface on bridge1. Result : - Client1 can ping...
by valens
Wed May 18, 2005 6:37 pm
Forum: General
Topic: Connecting different Atheros Wireless Chipset
Replies: 5
Views: 2085

Connecting different Atheros Wireless Chipset

I try to use 3 different Atheros minipci cards. 5211, 5212, and 5213.
When I use them in 2.4 GHz range, both card have different frequency for each channel. Is there any way to connect these different card?
by valens
Wed May 18, 2005 6:31 pm
Forum: General
Topic: Setting Failover with 2 ISP on 1 router
Replies: 1
Views: 1788

you can do in another way.
set all interface up.
do network watch for the first ISP.
if UP do script1
if down do script2

script1:
set default gateway to ISP 1

script2:
set default gateway to ISP 2
by valens
Wed May 18, 2005 6:28 pm
Forum: General
Topic: Mikrotik not allowing 2 ISP's with load balancing.
Replies: 7
Views: 3084

First, drop all drop firewall rule, and make sure that the default is allow/accept.
Then try to ping from a machine that is in same subnet with the interface host the ip you want to ping. If this work, it means your interface setting works fine, and maybe there is routing problem.