Community discussions

MikroTik App

Search found 56 matches

by falz
Thu Oct 03, 2013 4:02 pm
Forum: General
Topic: DHCP pool shared across multiple VLANs
Replies: 9
Views: 6038

Re: DHCP pool shared across multiple VLANs

It looks like there's a dchp server lease-script and maybe a binding-script (is this v6 only?) If you could pass the interface name to it, it could possibly add or remove the static route upon lease assign/deassign.
by falz
Sun Feb 10, 2013 6:47 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I don't seem to recall many bugfixes being ported back to previous versions, so I'm guessing "no".
by falz
Wed Dec 12, 2012 3:04 am
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I opened a ticket (#2011052866000205) in May 2011 (it's mentioned above) as well as a response from June 2011. Is there any web frontend to their ticket system to see if there's any type of status updates or silently resolved?
by falz
Tue Dec 11, 2012 10:30 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

Ouch.
by falz
Tue Dec 11, 2012 9:36 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

Has anyone tried out the RC's of 6.x to see if this is fixed?
by falz
Tue Sep 18, 2012 12:09 am
Forum: RouterBOARD hardware
Topic: OmniTik UPA: Observations & Issues
Replies: 67
Views: 29081

Re: OmniTik UPA: Observations & Issues

Ah, I missed that. That indeed did the trick, thanks.
by falz
Thu Sep 13, 2012 10:21 pm
Forum: RouterBOARD hardware
Topic: OmniTik UPA: Observations & Issues
Replies: 67
Views: 29081

Re: OmniTik UPA: Observations & Issues

I picked up an Omnitik UPA, it's upgraded to latest 5.20 w/ 2.41 firmware. The command to monitor power output isn't working, it just shows no output: /interface ethernet poe monitor [find] name: ether2 ether3 ether4 ether5 -- [Q quit|D dump|C-z pause] Which is different than what it shows in the wi...
by falz
Sat Sep 08, 2012 7:08 pm
Forum: RouterBOARD hardware
Topic: OmniTik UPA: Observations & Issues
Replies: 67
Views: 29081

Re: OmniTik UPA: Observations & Issues

Considering testing some Omnitik UPA. Other than the LED issue, have the other issues from the original post been addressed with firmware? It appears that many things were changed in 5.20.
by falz
Mon Apr 02, 2012 3:39 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

Correct. Here's a Mikrotik running 5.14: /ipv6 route print where ospf Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, o - ospf, b - bgp, U - unreachable # DST-ADDRESS GATEWAY DISTANCE 0 ADo 2001:d4e0::11:0:0:0:1... fe80::20d:66ff:febb:5... 110 1 ADo 2001:d4e0::11:0:0:...
by falz
Sat Mar 31, 2012 8:37 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I can confirm this as well. Unfortunately the original bug in this thread is still a problem- /128 in OSPF doesn't work. This bug just makes it that much more difficult to troubleshoot.
by falz
Mon Mar 19, 2012 7:08 pm
Forum: General
Topic: Export compact (new in v5.12)
Replies: 76
Views: 42399

Re: Export compact (new in v5.12)

Great addition, I've been hoping this would be added since I've started using Mikrotik devices. Thanks for listening to customer requests.
by falz
Wed Feb 01, 2012 5:59 pm
Forum: General
Topic: Reported interface speed for wireless fixed at 11Mbps
Replies: 2
Views: 910

Reported interface speed for wireless fixed at 11Mbps

I fetch traffic utilization from various Mikrotik devices. There are thresholds in the monitoring systems that will give % utilization based on the maximum interface speed. Wireless interfaces report themself as 11mbps: .1.3.6.1.2.1.2.2.1.5.1 = Gauge32: 11000000 This is on links that can and do go a...
by falz
Thu Jan 19, 2012 4:07 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

The important part IS the prefix length. '1234:1234::1' doesn't work, '1234:1234:1::1' and longer does work. At this point my testing is simply adding address like above to interfaces and pinging it locally to see if it works or not. #1 above doesn't, #2 above does.
by falz
Thu Jan 19, 2012 2:45 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

See my examples above of ipv6 addresses that do work vs those that don't. The ones that don't work aren't even pingable locally so this more than just an OSPF issue.
by falz
Mon Jan 09, 2012 11:07 pm
Forum: General
Topic: Mikrotik DNS server issues with Amazon S3 - low TTL 60sec
Replies: 118
Views: 56927

Re: Mikrotik DNS server issues with Amazon S3 - low TTL 60se

TTL in DNS terms is indeed number of seconds to cache a DNS record:

* Wikipedia - DNS TTL

Amazon keeps the TTL low for various reasons. Mucking with it would likely cause you to be connecting to the wrong IP address.
by falz
Mon Jan 09, 2012 4:06 pm
Forum: General
Topic: Mikrotik DNS server issues with Amazon S3 - low TTL 60sec
Replies: 118
Views: 56927

Mikrotik DNS server issues with Amazon S3 - low TTL 60sec

Hello, I've run in to an issue where a customer using a Mikrotik RB751 running the latest RouterOS 5 (5.8 at the time?) has a lot of issues using Amazon S3 apparently due to the very low TTL that Amazon uses (60 seconds). I've heard of others with this issue as well, is the only workaround to not us...
by falz
Fri Dec 30, 2011 7:53 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

resurrecting this as it's still not fixed. One of my more recent posts in this thread indicated that when I have a /128 assigned to a local interface (bridge as a loopback) it's not even pingable locally. This is still the case with 5.11. I can ping the ipv4 /32 that's on the same interface. fewi, d...
by falz
Thu Dec 29, 2011 5:05 pm
Forum: General
Topic: SNMP CPU Average over time (1, 5 minute)
Replies: 1
Views: 1179

SNMP CPU Average over time (1, 5 minute)

I'm looking for a way to gather CPU stats from RouterOS (on a routerboard) to be averaged over time. I'm getting CPU info from "hrProcessorLoad" / ".1.3.6.1.2.1.25.3.3.1.2.1" The description for this in the MIB is: "The average, over the last minute, of the percentage of tim...
by falz
Sat Dec 17, 2011 1:50 pm
Forum: General
Topic: Routing bug related to BGP blackholing
Replies: 0
Views: 880

Routing bug related to BGP blackholing

This evening I setup BGP blackholing on a network of primarily Cisco. I have a few RB1100s running 4.17 that were getting BGP a few hundred bgp routes. These RB1100s were not getting any configuration related to blackholing but will see the blackholed route. The route that it sees is a /32 and its n...
by falz
Mon Nov 28, 2011 4:45 pm
Forum: The Dude
Topic: 'flash' takes all available CPU with The Dude on RB751
Replies: 4
Views: 5465

Re: 'flash' takes all available CPU with The Dude on RB751

One additional comment. I have 4.0b3 running fine on an RB450 (non-G) which also has 32mb RAM. This device does not experience issues like the RB751 does.
by falz
Thu Nov 24, 2011 4:40 pm
Forum: The Dude
Topic: 'flash' takes all available CPU with The Dude on RB751
Replies: 4
Views: 5465

Re: 'flash' takes all available CPU with The Dude on RB751

I moved to Dude 3.6 and it's been fine. The 'flash' and 'dude' processes go up when you do any type of network scan, but with a few hosts added doing ping and http checks, as well as showing interface speeds it's totally fine.
by falz
Wed Nov 23, 2011 4:26 pm
Forum: The Dude
Topic: 'flash' takes all available CPU with The Dude on RB751
Replies: 4
Views: 5465

'flash' takes all available CPU with The Dude on RB751

I installed The Dude 4.0b3 on a RB751 running 5.7. This is to do some simple ping tests to some servers on the internet. Immediately after the reboot which enabled the Dude (before it had any configuration), I see: /tool profile NAME CPU USAGE wireless all 0% ethernet all 0.5% console all 0.5% flash...
by falz
Thu Oct 20, 2011 7:12 pm
Forum: General
Topic: DHCP relay not forwarding requests
Replies: 12
Views: 13396

Re: DHCP relay not forwarding requests

5.8 will have dhcp fixes. I didn't think this was worth creating a new thread, but I can't get DHCP to work reliably at all in 5.7. This scenario has two Mikrotiks. One is an access point using Virtual Access Points with VLANS. The request goes to a different Mikrotik that's the DHCP server. Steps ...
by falz
Wed Oct 19, 2011 7:22 pm
Forum: General
Topic: Trunking multiple VLANs to multiple interfaces
Replies: 2
Views: 3189

Re: Trunking multiple VLANs to multiple interfaces

I was able to get this to work. The key was adding multiple VLANs to a single bridge, add multiple ethernet interfaces to that bridge. This led me to a new issue where I'm stuck. Each of these VLANs is intended to be associated with a Virtual Access Point. From what I read, you do that by associatin...
by falz
Wed Oct 19, 2011 12:37 am
Forum: General
Topic: Trunking multiple VLANs to multiple interfaces
Replies: 2
Views: 3189

Trunking multiple VLANs to multiple interfaces

I'm attempting to configure RouterOS to have multiple VLAN interfaces with IP addresses, aka SVI in Cisco world. However, I'm also trying to have these VLANs available from multiple physical interfaces. This seems well documented until you get the 'multiple interfaces' part. I've tried various thing...
by falz
Wed Aug 31, 2011 6:04 pm
Forum: General
Topic: SSH connection reset by peer to all 5.x, not 4.x
Replies: 4
Views: 5212

Re: SSH connection reset by peer to all 5.x, not 4.x

Excellent! I don't have a way to test this currently but thanks for the fix.
by falz
Sat Aug 20, 2011 1:27 am
Forum: Wireless Networking
Topic: Mixed a/n Clients on OmniTIk behaviour
Replies: 3
Views: 1252

Re: Mixed a/n Clients on OmniTIk behaviour

I replaced one side of a 1km SXT to SXT link with an Omnitik. The Omnitik saw the SXT at around 90db and couldn't register a connection at all. hopefully you have better luck!
by falz
Fri Aug 19, 2011 3:14 pm
Forum: General
Topic: Omnitik- reset to defaults
Replies: 3
Views: 9937

Re: Omnitik- reset to defaults

I left it off overnight, plugged it in this morning and it was at its default config. Whatever I did yesterday to reset it but required some period of being powered off. At no point yesterday did I get the blinking LEDs indicating that it was resetting however. Perhaps these LEDs don't flash if they...
by falz
Thu Aug 18, 2011 8:22 pm
Forum: General
Topic: Omnitik- reset to defaults
Replies: 3
Views: 9937

Omnitik- reset to defaults

I'm having difficulty resetting an Omnitik to defaults. The instructions here: http://routerboard.com/pricelist/download_file.php?file_id=302 indicate that you should hold the reset button down during boot until an LED flashes to reset configuration. I've done this with no luck. I've tried pressing ...
by falz
Wed Aug 17, 2011 6:27 pm
Forum: General
Topic: Monitor VPN using SNMP
Replies: 2
Views: 5553

Re: Monitor VPN using SNMP

Thanks for the response, I wasn't aware of the 'print oid' feature, good to know. This is a somewhat unique scenario, the VPNs and networks we're monitoring are customer networks where we've deployed Mikrotiks as CPEs and we don't directly have access to the inside of the network but do do the devic...
by falz
Tue Aug 16, 2011 3:00 am
Forum: General
Topic: Monitor VPN using SNMP
Replies: 2
Views: 5553

Monitor VPN using SNMP

Is there a way to get information about IPSec peers via SNMP? I'd like to monitor if VPNs are up based on remote-peer or installed-sa existing. If this is not possible any type of script that could run on the mikrotik and either log or email if a VPN were to go down would help. Edit: my fallback pla...
by falz
Mon Aug 15, 2011 2:52 am
Forum: General
Topic: SSH connection reset by peer to all 5.x, not 4.x
Replies: 4
Views: 5212

Re: SSH connection reset by peer to all 5.x, not 4.x

found the fix. It's a combination of what OpenSSH considers a 'broken implimentation' of SSH by Mikrotik (as well as other vendors such as Juniper) and OpenSSH 5.1. The Changelog shows: http://www.openssh.org/txt/release-5.2 * Due to interoperability problems with certain broken SSH implementations,...
by falz
Mon Aug 15, 2011 2:19 am
Forum: General
Topic: ROS 5.4 SSH closes SSH connection immediately?!?
Replies: 4
Views: 2365

Re: ROS 5.4 SSH closes SSH connection immediately?!?

I'm having the same issue, I posted a thread here with details before I saw this one: * http://forum.mikrotik.com/viewtopic.php?f=2&t=54223 We appear to be running the same OpenSSH version, although it's on a different platform. I'll test a different version and see if the issue persists. Edit: ...
by falz
Sun Aug 14, 2011 11:43 pm
Forum: General
Topic: SSH connection reset by peer to all 5.x, not 4.x
Replies: 4
Views: 5212

SSH connection reset by peer to all 5.x, not 4.x

I have some odd issues with some Routerboards. SSHing to them from a host disconnects after authenticating as follows: > ssh username@10.170.1.15 username@10.170.1.15's password: Read from remote host 10.170.1.15: Connection reset by peer Connection to 10.170.1.15 closed. But the same username/passw...
by falz
Sun Aug 14, 2011 11:04 pm
Forum: General
Topic: Antenna poles/masts and mounting brackets
Replies: 2
Views: 1366

Re: Antenna poles/masts and mounting brackets

Got this figured out, kept it as simple as possible. I just ended up using 1.5" galvanized conduit, 3/8" Grade 8 bolts, galvanized washers and galvanized nuts to act as spacers. Drilled holes into the steel beams of the building and tapped them using a Tap and Die kit. Turned out just fine...
by falz
Thu Aug 04, 2011 11:01 pm
Forum: General
Topic: Antenna poles/masts and mounting brackets
Replies: 2
Views: 1366

Antenna poles/masts and mounting brackets

I'm looking for a resource to get masts/poles and mounting brackets for outdoor antennas. I've looked at the local hardware store and see these types of items: And the conduit is this, probably 2" but other sizes are available: http://falz.net/static/conduit2.jpg The hangers look like this: htt...
by falz
Thu Jun 09, 2011 3:36 am
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I hadn't heard from Mikrotik support for a while but recieved this email this morning:
Thank you for the report, we will try to fix this issue in one of the nextversions.
by falz
Sat May 28, 2011 7:57 pm
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I've just done so. Interestingly `/system sup-output` also crashes saying "Console has crashed; please log in again." so I was unable to send this file with the support. Also I believe it's more than just OSPFv3- I can't even ping my local /128 IP, although it IS pingable from other OSPFv3...
by falz
Sat May 28, 2011 3:54 am
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

Indeed. as a workaround I'm peering with an interface IP. However most of my routes have /128 loopbacks as their nexthops so the routes are invalid. Basically this makes ipv6 bgp unusable on any Mikrotik on my network.
by falz
Sat May 28, 2011 3:36 am
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

Thanks, you're right. And indeed, I see no /128s from the rest of my network which is primarily Cisco. I do see some /127s and /126s however. Without /128 it appears that I cannot use loopbacks for ipv6 bgp.
by falz
Sat May 28, 2011 2:58 am
Forum: Forwarding Protocols
Topic: OSPFv3 Missing /128 Routes in 5.1
Replies: 73
Views: 25488

Re: OSPFv3 Missing /128 Routes in 5.1

I seem to have the opposite problem. I can see /128s from its OSPFv3 neighbor but I'm unable to find a way to advertise my loopback (bridge) interface's /128. This bridge has no ports associated with it. The same bridge is used for OSPFv2 for IPv4 and works fine when I add a network statement. There...
by falz
Thu Apr 21, 2011 11:03 pm
Forum: General
Topic: v.5.1 release
Replies: 29
Views: 9076

Re: v.5.1 release

I just ran into the 100% cpu issue. How it happened: * Was logged into RB1100 w/ 5.1 via SSH. * Was going to /ip neighbor discovery to check settings. In the middle of typing the command the SSH session became unresponsive. * SSH'd in via another console, it authenticated immediately but the console...
by falz
Wed Feb 09, 2011 9:11 pm
Forum: General
Topic: Bandwidth Test Questions
Replies: 5
Views: 1422

Re: Bandwidth Test Questions

I can confirm this issue as well. Tried a bandwidth test in RoS 4.16 and it doesn't work. I did an `nmap` of udp 2000 and it says closed. I've tested in every way I can think- making sure firewall filters are off, with and without auth, a few different Routerboards. Edit: Also when I set the protoco...
by falz
Thu Nov 18, 2010 11:53 pm
Forum: General
Topic: RANCID Config Backup
Replies: 20
Views: 25099

Re: RANCID Config Backup

Thanks, makes sense. For what it's worth I joined the RANCID mailing list to post a request to add their patch to be official. It may gain more traction if other Mikrotik+RANCID users were to chime in and say they use this functionality. * http://www.shrubbery.net/pipermail/rancid-discuss/2010-Novem...
by falz
Thu Nov 18, 2010 7:10 pm
Forum: General
Topic: RANCID Config Backup
Replies: 20
Views: 25099

Re: RANCID Config Backup

Chiming in that that patch works fine for me, tested on routerboards running 4.11. It doesn't patch cleanly against the current version so I wrote a little page and have the files available for download here: * Docs: http://falz.net/tech/rancid-mikrotik * Files: http://falz.net/static/rancid/ One th...
by falz
Mon Aug 16, 2010 4:12 pm
Forum: General
Topic: Feature Request: *really* support SNMP v2C
Replies: 18
Views: 7462

Re: Feature Request: *really* support SNMP v2C

According to the release notes for RouterOS v5 Beta 6, bulk get has been added: *) snmp - added GETBULK support, no more table caching - solves problems with huge tables, routing tables currently are not available; I haven't tested it yet. * http://www.mikrotik.com/download/CHANGELOG_5 * http://foru...
by falz
Mon Aug 16, 2010 4:08 pm
Forum: Wireless Networking
Topic: Maximum # of wireless users on an RB493 with R52nM
Replies: 3
Views: 1619

Re: Maximum # of wireless users on an RB493 with R52nM

Thanks. Is there any type of setting where I can hard code a limit on the number of devices that can register? I'll have several RB's with the same SSID, the hope is that I can max it at some number (let's say 30) and it will refuse connections and the client will attempt to register with a differen...
by falz
Wed Aug 11, 2010 3:33 pm
Forum: Wireless Networking
Topic: Maximum # of wireless users on an RB493 with R52nM
Replies: 3
Views: 1619

Maximum # of wireless users on an RB493 with R52nM

Does anyone have a ballpark figure as to how many wireless users a RB493 with an R52nM ruinning 802.11B can support? This would be for general internet browsing on a relatively slow uplink of < 10mbps. No file shares or other p2p traffic between the clients themselves. It would also be running WDS b...
by falz
Mon Aug 09, 2010 9:55 pm
Forum: General
Topic: Feature Request: *really* support SNMP v2C
Replies: 18
Views: 7462

Re: Feature Request: *really* support SNMP v2C

I was attempting to use v2c on various routerboards. 'snmpwalk' using v2c gets responses but MRTG's configmaker does not. I sniffed the traffic to discover that it doesn't respond to getBulkRequest as the original poster points out. Could we get an official response as to weather real snmp v2c suppo...
by falz
Mon Jul 12, 2010 6:19 pm
Forum: General
Topic: Multiple SNMP Communities with same name not permitted
Replies: 2
Views: 1271

Re: Multiple SNMP Communities with same name not permitted

That should work. I guess I already do have such a filter setup to only permit IP traffic destined to the Mikrotik from approved IPs so this may work already.
by falz
Mon Jul 12, 2010 6:07 pm
Forum: General
Topic: Multiple SNMP Communities with same name not permitted
Replies: 2
Views: 1271

Multiple SNMP Communities with same name not permitted

It appears that RouterOS uses the SNMP community name as a unique value and will not allow multiple. I require multiple values to allow multiple subnets to poll the device via SNMP. The only workaround I'm aware of is allowing a larger subnet such as 0.0.0.0/0 (which is the default) but I'm not happ...
by falz
Thu Jul 08, 2010 10:37 pm
Forum: General
Topic: RouterOS 5 licensed hardware
Replies: 4
Views: 1711

Re: RouterOS 5 licensed hardware

Perfect, I'm seeing upgradeable-to: v5.x on some (RB433) and v6.x on others (RB493AH) so I think I'm good for a while.
by falz
Thu Jul 08, 2010 10:25 pm
Forum: General
Topic: RouterOS 5 licensed hardware
Replies: 4
Views: 1711

Re: RouterOS 5 licensed hardware

if your license allows upgrade upto version N, then you may use also version (N+1)beta, but not (N+1)release
Interesting that it can run betas. Is that to entice you to buy an upgrade license (can you buy an upgrade license?) or is this licensing scheme intended to deprecate old hardware?
by falz
Thu Jul 08, 2010 7:38 pm
Forum: General
Topic: RouterOS 5 licensed hardware
Replies: 4
Views: 1711

RouterOS 5 licensed hardware

I have a question about RouterOS license levels and which RouterOS versions they can run. It's discussed on these pages: * http://wiki.mikrotik.com/wiki/Manual:License_levels * http://wiki.mikrotik.com/wiki/Manual:All_about_licenses Using an RB493 as an example, its spec sheet says it runs RouterOS ...
by falz
Fri Sep 25, 2009 4:25 pm
Forum: Wireless Networking
Topic: Hotspot setup with encryption
Replies: 2
Views: 1173

Re: Hotspot setup with encryption

That is really my question. I don't have a full understanding of WPA/WPA2 and what types of authentication/encryption methods it supports. I was hoping that there were some type of wireless encryption that will permit anyone to associate to it without a preshared key and simply encrypt the data. All...
by falz
Thu Sep 24, 2009 5:56 pm
Forum: Wireless Networking
Topic: Hotspot setup with encryption
Replies: 2
Views: 1173

Hotspot setup with encryption

I've setup a RB433 for use as a 802.11g hotspot with RADIUS user/pass authentication. To test, I set the security profile to have no encryption. This all works fine. I now would like to encrypt the signal between the client and Mikrotik using WPA or WPA2. Is there any way to add this WITHOUT some ty...