Community discussions

MikroTik App

Search found 72 matches

by regardtv
Sat Dec 12, 2015 11:42 pm
Forum: General
Topic: Settting up 8 IP address subnet. XXX.XXX.XXX.248/29
Replies: 2
Views: 2276

Re: Settting up 8 IP address subnet. XXX.XXX.XXX.248/29

Hi, Maybe a quick intro to subnetting is apporpriate based on your subject line - below a quick breakdown using a couple of examples: Network: 192.168.0.0/30 HostMin: 192.168.0.1 HostMax: 192.168.0.2 Broadcast: 192.168.0.3 Hosts/Net: 2 Network: 192.168.0.0/29 HostMin: 192.168.0.1 HostMax: 192.168.0....
by regardtv
Sat Dec 12, 2015 11:29 pm
Forum: Beginner Basics
Topic: RB2011 with 2 WANs
Replies: 2
Views: 1296

Re: RB2011 with 2 WANs

Hi, First off the masquerade rules simply allow for the natting. Making decisions on which path the traffic should take would be accomplished using mangle rules or potentially /ip route rules http://wiki.mikrotik.com/wiki/Per-Traffic_Load_Balancing <-- This is a good introduction close to what you w...
by regardtv
Sat Dec 12, 2015 11:23 pm
Forum: General
Topic: Troubleshotting 100% CPU usage
Replies: 4
Views: 1431

Re: Troubleshotting 100% CPU usage

Hi JJX, Debugging this one can be a bit hit and miss but I'd take a look at a few things: 1) RB433 isn't the fasted device around - ie averaging more than 20-30Mbps is going to suffer imo 2) Dynamic routing protocols like bgp can sometimes eat things alive if RAM is tight (check available RAM [/syst...
by regardtv
Mon Oct 21, 2013 11:16 pm
Forum: General
Topic: V5.1 High CPU, TX Drops on Vlans
Replies: 13
Views: 4930

Re: V5.1 High CPU, TX Drops on Vlans

Did anyone ever find a specific fix for the tx-drops only on vlans? running current v6 and we're experiencing the issues using decent hardware with intel e1000 drivers
by regardtv
Mon Jun 24, 2013 6:43 pm
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

There are still issues on v5.25 with the route cache. If you are using route redistribution for static routes (for example) then even if you delete a route from the routing table, the route will sometimes get advertised as redistributed. Disabling the peer and then enabling the peer does not do the...
by regardtv
Thu Jun 13, 2013 11:52 pm
Forum: General
Topic: v6.0 released
Replies: 320
Views: 97004

Re: v6.0 released

Ok, my problem with DNS is caused by fact that DNS on CCR is not multithreading and it's reaching 100% single core load. Manson, While I agree it would be great for all daemons to be fully multi-threaded I must concur with one of the previous posters - making the CCR your network's main DNS recurso...
by regardtv
Thu Jun 13, 2013 11:45 pm
Forum: General
Topic: RouterOS 6.1 released
Replies: 198
Views: 74837

Re: RouterOS 6.1 released

Anyone having trouble with routerboot upgrade? It shows I am out of date but upgrading does not change the current version. No error message, nothing in log.
I trust you rebooted the router after the upgrade - otherwise the change won't have applied ;-)
by regardtv
Thu Jun 13, 2013 11:02 pm
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

nz_monkey,

Thanks for the confirm - just a question - you running a mixed Cisco & Mikrotik BGP environment? I'm trying to localise as far as a I can and my "all mikrotik" testbed is just not able to recreate it.

My production environment is mixed Cisco/Mikrotik on the iBGP side.
by regardtv
Tue May 28, 2013 12:13 am
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

Hi , Thanks for the reply. All information (including multiple sup-outs) included in Ticket#2013052366000443 ( yes, origional subject incorect ;-) Just to add to that for the rest of the Mikrotik user base: [Client] --eBGP-->[RouterA] --iBGP-->Core[RouterB & RouterC] --iBGP-->[IXP Edge RouterD] ...
by regardtv
Thu May 23, 2013 12:53 pm
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

Bad news guys - x86 RouterOS 6.0 still has the route cache bug. We receive a customer route via EBGP (1); forward it internally on our IBGP (2) to one of our peering edges(3). This edge then EBGPs with a number of peers (4). Even after removal of the announce by (1) the edge (3) continues to announc...
by regardtv
Tue Apr 30, 2013 10:40 pm
Forum: Forwarding Protocols
Topic: BGP Multipath support
Replies: 0
Views: 1279

BGP Multipath support

Hi Mikrotik Team, With the FIB fixes (still testing - but looking god) the next big feature required is proper BGP Multipath. With multiple routes of equal weight in IGP ECMP works perfectly - but if we have two equal routes in iBGP & eBGP only one path is used. See - https://learningnetwork.cis...
by regardtv
Mon Apr 29, 2013 5:11 pm
Forum: General
Topic: VRRP Preempt Delay
Replies: 1
Views: 3052

Re: VRRP Preempt Delay

Hi Gearhead, What we found to be most stable in production is to rather establish a BGP session on each router with their next-hop defined as the VRRP IP. That way the failure has no impact on traffic flow. It also allows for a more consistent 'ready state'. In other words there's no question in reg...
by regardtv
Thu Apr 25, 2013 10:12 pm
Forum: General
Topic: Mikrotik as source of DNS Amplification attacks
Replies: 31
Views: 15825

Re: Mikrotik as source of DNS Amplification attacks

I think you're missing the point ....

I have no problem doing the firewalling - as we always do - I'm trying to improve usability in a product that is becoming commodity - professional does not have to equal non-user-friendly.
by regardtv
Wed Apr 24, 2013 11:36 pm
Forum: RouterBOARD hardware
Topic: CLOUD CORE ROUTER
Replies: 1373
Views: 1186425

Re: CLOUD CORE ROUTER

Unfortunately, No. You can not restart service or process. All you can is disable/enable queues or restart router itself. A couple of times a day I wish I had the 'devel' login to be able to kick some services in the balls and just restart them. SNMP is one I specifically wish I could restart - but...
by regardtv
Wed Apr 24, 2013 11:27 pm
Forum: RouterBOARD hardware
Topic: CCR or RB1100 ?
Replies: 2
Views: 2093

Re: CCR or RB1100 ?

First i think CCR is already stable than read it is a pre-production hardware, and there is a lot of complain in this forum abour CCR. My company have about 3000 User and max internet connection about 300 Mbps, i only use it for bgp full route. Is RB1100Hx2 is a already production hardware and stab...
by regardtv
Wed Apr 24, 2013 11:11 pm
Forum: Scripting
Topic: WiFi schedule with virtual AP to URL redirect
Replies: 2
Views: 1810

Re: WiFi schedule with virtual AP to URL redirect

Hi Chipper, What you're asking for is rather a firewall rule than actually turning the VAP on and off I suspect ;-) This will allow the kids to still connect to the AP but they get reminded of their appropriate access hours. If that's your intent then you should have a reasonably straight forward ta...
by regardtv
Wed Apr 24, 2013 11:04 pm
Forum: RouterBOARD hardware
Topic: Suggest a RB for home usage with wifi (G/N)
Replies: 1
Views: 889

Re: Suggest a RB for home usage with wifi (G/N)

Hi there, While I'd typically recommend the 751G-2HnD I too have had some issues with range on these units. The nice thing is that if a customer does have a range problem you can connect an external antenna on it without issues. The Gig ports also obviously make sense if you're needing to push >100M...
by regardtv
Wed Apr 24, 2013 8:47 am
Forum: Wireless Networking
Topic: Multiple Access Points Same Access List?
Replies: 2
Views: 1222

Re: Multiple Access Points Same Access List?

Currently the best approach for us to use a linux cron job which actually connects to each AP and pushes the access lists via the API. I wish there was a filter action to add to address list but I've not come across that. One set of tests we ran we used bgp to distribute with a specific community. W...
by regardtv
Wed Apr 24, 2013 12:45 am
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

What's new in 6.0rc14: *) route - automatically repair FIB inconsistencies; I wonder whether it will fix those 'stuck routes'... This fix should potentially fix the problem when BGP route is withdrawn from routing table, but router still routes packets via that non existent route. /me impatiently w...
by regardtv
Wed Apr 24, 2013 12:25 am
Forum: General
Topic: Mikrotik as source of DNS Amplification attacks
Replies: 31
Views: 15825

Re: Mikrotik as source of DNS Amplification attacks

Most of RouterBOARD products are intended for professionals. And has minimal configuration to allow easier access to the router. SOHO RouterBOARDS have default configuration that can be easily used and is more intended for not so experienced users have default rule to deny all connection from inten...
by regardtv
Wed Apr 03, 2013 11:30 am
Forum: General
Topic: Mikrotik as source of DNS Amplification attacks
Replies: 31
Views: 15825

Mikrotik as source of DNS Amplification attacks

Hi All, With the press around DNS amplification we took another look at some of the 'culprits' and of the reality is that any Mikrotik with "Allow Remote Requests" will fall into this category. Its a simple enough fix - add a /ip firewall rule on the input table blocking requests from non-...
by regardtv
Mon Mar 18, 2013 10:05 pm
Forum: General
Topic: [99% SOLVED] VRRP strange behaviour on RB 1100 AH X2
Replies: 9
Views: 4278

Re: VRRP strange behaviour on RB 1100 AH X2

Hi There. First off, have a look at the Mikrotik wiki page - http://wiki.mikrotik.com/wiki/VRRP - in regards to VRRP. You'll note that they require the actual VRRP IP to be defined as a /32 not a /24. I've seen some very weird stuff when this is not done. So, first off, try setting the actualy VRRP-...
by regardtv
Fri Mar 01, 2013 8:49 am
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

Yes it is still an old code, but we did some major fixes. I tried to reproduce bug in lab without success, someone get? During lab testing yesterday I was able to reproduce (but its not consistent) - will try push v6rc11 to the units and see if I can get it to break again This bug has cost me custo...
by regardtv
Thu Feb 14, 2013 2:45 pm
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

Hi Kurt, To the best of my knowledge v6 is still currently running the old routing code base - I'm not willing to put v6 into my main production network at this point to test it. I do know there were plans from Mikrotik on a new routing-test package but haven't seen or heard anything of late. Maybe ...
by regardtv
Thu Feb 14, 2013 12:08 pm
Forum: General
Topic: v6.0rc9 released
Replies: 59
Views: 22901

Re: v6.0rc9 released

both rc8 and rc9 downloads contain 'openflow' package which you need to install for OpenFlow support
Quite right - unwrapped my CCR1036 this morning, installed RC9 and saw the Openflow package ;-)
by regardtv
Wed Feb 13, 2013 8:55 am
Forum: General
Topic: v6.0rc9 released
Replies: 59
Views: 22901

Re: v6.0rc9 released

Morning All!

I was very excited when I took at look at the Changelog for rc8 and saw initial Openflow support ... but now Changelog has been updated and that's no longer visible ....

I'd appreciate being involved in any Openflow testing ;-)

R
by regardtv
Wed Nov 21, 2012 3:25 pm
Forum: RouterBOARD hardware
Topic: CCR1036 vs Other vendors
Replies: 7
Views: 6795

Re: CCR1036 vs Other vendors

Hi Everyone, We build networks for a living (and have our own in a couple of places) and make extensive use of the units in/at/near the core. Specific experiences: As a rule we use the most cost effective option unless we have no choice with kit - this means the Mikrotik units feature very highly. U...
by regardtv
Thu Nov 15, 2012 12:47 am
Forum: General
Topic: PPP auth via external LDAP?
Replies: 2
Views: 2172

Re: PPP auth via external LDAP?

Hi. If the LDAP 'source' is actually Microsoft Active Directory - then look at using Microsoft's IAS feature set as that's technically a radius and I guess it could work - I have not tested that. The other option is to use something like FreeRadius with OpenLDAP behind it - something along the lines...
by regardtv
Thu Nov 15, 2012 12:44 am
Forum: General
Topic: Help .. Routerboard generating own traffic on internet side
Replies: 2
Views: 1309

Re: Help .. Routerboard generating own traffic on internet s

I'd suggest you see if you have "/ip proxy" enabled - if you do, firewall it so only your interal IPs can get to it.
by regardtv
Thu Nov 15, 2012 12:42 am
Forum: General
Topic: Strange NAT connections
Replies: 1
Views: 936

Re: Strange NAT connections

Hi,

On a terminal "/ip proxy print" - is that enabled - if so you have an open web proxy ;-) Other than that recreate the rule without the 0.0.0.0/0 since the to-address should technically be either an actual address on the unit or not set at all.
by regardtv
Wed Nov 14, 2012 11:56 pm
Forum: RouterBOARD hardware
Topic: Advise on x86 hardware for bgp
Replies: 7
Views: 3702

Re: Advise on x86 hardware for bgp

Just remember that the route cache bug is currently still present in Mikrotik's routing bits - this can potentially come to bite you. Typically this occurs if you see some bgp sessions/links flap and you get a stack of announce/withdraws hitting the router - routes then get 'stuck' and even if they ...
by regardtv
Wed Oct 17, 2012 12:36 am
Forum: General
Topic: VLAN Trunk
Replies: 4
Views: 1795

Re: VLAN Trunk

Something like this then: /interface vlan add name=eth1.vlan100 interface=ether1 vlan-id=100 add name=eth1.vlan101 interface=ether1 vlan-id=101 add name=eth1.vlan102 interface=ether1 vlan-id=102 add name=eth1.vlan103 interface=ether1 vlan-id=103 /interface bridge add name=br_vlan100 add name=br_vlan...
by regardtv
Tue Oct 16, 2012 3:18 pm
Forum: Beginner Basics
Topic: Mikrotik Squid origin IP problem
Replies: 4
Views: 2476

Re: Mikrotik Squid origin IP problem

Why are you still using: 1 chain=srcnat action=masquerade src-address=192.168.11.0/24 2 chain=srcnat action=masquerade src-address=192.168.10.0/24 3 chain=srcnat action=masquerade src-address=192.168.9.0/24 ? You have a NAT on anything going out to the internet, so no need to NAT anything else. Once...
by regardtv
Tue Oct 16, 2012 12:28 am
Forum: General
Topic: Slow Upload Speeds on Internet Port
Replies: 41
Views: 40770

Re: Slow Upload Speeds on Internet Port

Hi - I'd tend to agree with NetworkPro -- that being said:

MSS settings adjusted as well or only MTU on the Routerboard? When running via the routerboard - are you the only user connected during testing?

How are you running the tests -- proper iperf or similar I trust?
by regardtv
Mon Oct 15, 2012 9:57 am
Forum: General
Topic: forcin https protocol instead http protocol on some websites
Replies: 28
Views: 4342

Re: forcin https protocol instead http protocol on some webs

i wonder why they did it this way :D thx m8 Another reason is quite simply system resources overhead - doing all communications via SSL (from the server end) adds a bit of load to their servers. In any environment using SSL where it is needed - and only where it is needed - is ideal - unless you ha...
by regardtv
Mon Oct 15, 2012 9:51 am
Forum: General
Topic: [request] CoA for PPPoE/PPTP
Replies: 34
Views: 17432

Re: [request] CoA for PPPoE/PPTP

Hi Everyone. For the most part the DM/PoD works just as well in reality. In our scenario most/all customers use CPE/desktops that are configured to redial automatically. So, you send the PoD/DM message. User disconnects. When they reconnect they get new package details via Radius. YES - I agree it w...
by regardtv
Sat Oct 13, 2012 11:30 pm
Forum: General
Topic: VLAN Trunk
Replies: 4
Views: 1795

Re: VLAN Trunk

Hi If by VLAN 1 you mean "/int vlan add vlan-id=1" then I'm not surprised you hare having issues. VLAN1 is also considered the 'native' VLAN. If by VLAN1 you simply mean the 1st of the VLANs - then bridging could/should work. Since you have an RB 1200 I'd also take a look at: http://wiki.m...
by regardtv
Sat Oct 13, 2012 11:10 pm
Forum: Wireless Networking
Topic: Ubiquiti and Mikrotik VLANs
Replies: 11
Views: 8520

Re: Ubiquiti and Mikrotik VLANs

Hi cbrown,

Client facing wise maybe not -- but if those UBNT's are to be used for any trunking/backhauling at all - they will ;-) Had the issue not 3 weeks ago where we had to get a set of VLANs across a UBNT P2P connection with Tiks both sides. If the WDS is not set the VLANs passing is an issue.
by regardtv
Sat Oct 13, 2012 6:44 pm
Forum: Wireless Networking
Topic: Ubiquiti and Mikrotik VLANs
Replies: 11
Views: 8520

Re: Ubiquiti and Mikrotik VLANs

Just an important note that maybe needs more highlighting - You MUST configure the "WDS" (either a tick box or in the Wireless mode drop down) for the VLAN passing to work as it should. Also, if using any of the Nanobridge or Rocket units an upgrade to 5.5.2 is highly recommended. Once tho...
by regardtv
Sat Oct 13, 2012 12:56 pm
Forum: Beginner Basics
Topic: Mikrotik Squid origin IP problem
Replies: 4
Views: 2476

Re: Mikrotik Squid origin IP problem

Hi I presume you directly typing the address of the proxy into the user's browsers? The reason for this is that the users in 10.0/24 do not go via the router to get to the squid box -- since they are on the same subnet they simply directly speak to the box and the box responds directly to them. Cust...
by regardtv
Fri Oct 12, 2012 2:59 pm
Forum: General
Topic: Skype bypassing Hotspot
Replies: 2
Views: 1159

Re: Skype bypassing Hotspot

have tested this and skype didn't connect. I'd guess that skype is not using your vpn tunnel and is rather using the native connection you are using to carry the ovpn tunnel over.
by regardtv
Fri Oct 12, 2012 2:48 pm
Forum: General
Topic: VRRP on PPPOE Server
Replies: 4
Views: 3476

Re: VRRP on PPPOE Server

Max, You are referring to 2 separate redundancy issues and you should deal with them separately. First off - using BGP on a VRRP IP is messy at best and plain painful the rest of the time - I've had lots of debugging issue there before ;-) I'd suggest the following setup: http://www.vdvyver.net/shar...
by regardtv
Fri Oct 12, 2012 2:03 pm
Forum: General
Topic: Problem with ssh client, user option not working
Replies: 6
Views: 4810

Re: Problem with ssh client, user option not working

Actually what you describe sounds exactly right from a security perspective unless you also imported the SAME keys for the admin user? Realise that if you are trying to ssh to a remote machine you are utilising your private key on the local mikrotik box even if you specify a 'user' to connect as. As...
by regardtv
Fri Oct 12, 2012 1:59 pm
Forum: RouterBOARD hardware
Topic: Looking for an ADSL solution
Replies: 1
Views: 981

Re: Looking for an ADSL solution

Hi, Simplest and most cost effective solution is to buy the cheapest ADSL modem you can find that supports bridging - Huawei has one for under 16USD. Set it up as a bridge and then dial pppoe from the mikrotik. Added advantage is that when the adsl is taken out by lighting you get to replace the che...
by regardtv
Fri Oct 12, 2012 1:43 pm
Forum: General
Topic: MK Squid issues
Replies: 2
Views: 3590

Re: MK Squid issues

Hi, At a guess I'd say that *.*.136.254 has been tagged on the internet as an open proxy. Those are all internet side connections trying to connect TO 136.254 and abuse its open relay. From what you've indicated 136.254 is in your static range - how did you check that the IP doesn't exist? Use / Che...
by regardtv
Thu Oct 11, 2012 12:37 pm
Forum: General
Topic: Help with MTU settings
Replies: 1
Views: 1375

Re: Help with MTU settings

1st off -- for the most part if you're using Routerboards the L2MTU is the important aspect. For non-mikrotik units however some trial and error may be required. Rule of thumb 1 - When using MPLS ... configure the biggest bloody MTU your gear can handle ;-) Rule of thumb 2 - Each MPLS label/VLAN wil...
by regardtv
Thu Oct 11, 2012 12:20 pm
Forum: General
Topic: time server problems
Replies: 2
Views: 1054

Re: time server problems

On your windows PC - do a wireshark/tcpdump. I suspect the same problem as what we are seeing with the SNMP on 5.20..... Example: Lets say your client is 192.168.1.20 and router has multiple IPs [192.168.1.1(LAN) ; 10.10.10.10(WAN)]. Client send NTP req to router. Router responds but doesn't use 192...
by regardtv
Thu Oct 11, 2012 3:04 am
Forum: General
Topic: Routeros intercepting web traffic
Replies: 5
Views: 2612

Re: Routeros intercepting web traffic

Hi John, Could you open Winbox and take a look at IP/HOTSPOT under Servers is there an enabled service there? Based on the firewall comments I'm seeing in your post it 'feels' like you had/have a hotspot active on the Mikrotik. If that's the case its possibly doing a captive portal for you. Could be...
by regardtv
Thu Oct 11, 2012 2:54 am
Forum: General
Topic: Feature request - TCP optimalization
Replies: 7
Views: 3834

Re: Feature request - TCP optimalization

Hi NetworkPro.

I'll ask one of my team to put together a Youtube video and post here.

Regardt
by regardtv
Thu Oct 11, 2012 2:52 am
Forum: General
Topic: VRRP on PPPOE Server
Replies: 4
Views: 3476

Re: VRRP on PPPOE Server

Max, you come right with the issue?
by regardtv
Thu Mar 08, 2012 6:55 pm
Forum: General
Topic: v5.14 released
Replies: 73
Views: 27126

Re: v5.14 released

HI all
Sorry but i need *.zip for 5.14 version.
plis can someone give me it?
Simply go to http://www.mikrotik.com/download.html -- select a "specific platform" such as 500 series and you'll have the zip file as an option.....
by regardtv
Thu Mar 08, 2012 6:40 pm
Forum: General
Topic: 10000 Concurrent session on hotspot service
Replies: 3
Views: 1979

Re: 10000 Concurrent session on hotspot service

Hi, Let me give you a pointer then as doing more is rather involved and is more in line with what a consultant would/should provide. What I'm thinking of here is a MAC src address based load balancer. Implementing this would allow you to balance traffic across a number of Mikrotik hotspot controller...
by regardtv
Wed Mar 07, 2012 11:35 am
Forum: General
Topic: 10000 Concurrent session on hotspot service
Replies: 3
Views: 1979

Re: 10000 Concurrent session on hotspot service

Hi This would be a function of firewall rules, NAT and queues eating the hardware alive. I'd certainly recommend you take another look at your network topology and rather deploy multiple hotspot controllers and aggregate the customer base across that. Use Radius on the back-end to create the common ...
by regardtv
Thu Feb 16, 2012 1:37 am
Forum: Scripting
Topic: Rouge MikroTik Server Killer Ready!
Replies: 6
Views: 2978

Re: Rouge MikroTik Server Killer Ready!

Hi, I agree that your script could work - but simply turning off his IP neighbour discovery would prevent your from blocking him. I'd suggest you look into client isolation. Turning that on at the AP level will prevent the person from seeing other broadcasts -- if that's not an option you could look...
by regardtv
Mon Feb 13, 2012 3:04 pm
Forum: Wireless Networking
Topic: assistance in setting custom channel
Replies: 2
Views: 1247

Re: assistance in setting custom channel

Hi, I've not had to do this for some years so my info might be outdated ;-) First off - the 40Mhz channel width and custom frequencies for that matter are TOTALLY wifi card dependant. So if the card EPROM does not indicate it as possible channels Mikrotik won't be able to set to those channels. In a...
by regardtv
Mon Feb 13, 2012 2:53 pm
Forum: General
Topic: bridge only PPPoE packets or PPPoE relay server
Replies: 1
Views: 1483

Re: bridge only PPPoE packets or PPPoE relay server

Without going into too many specifics the simplest in your case could be to use the bridge filters available on Mikrotik.

Add the appropriate ports to a bridge; then review the bridge filters and only allow the specified frame types.
by regardtv
Mon Feb 13, 2012 2:11 pm
Forum: Beginner Basics
Topic: how to redirect to and from squid server ????
Replies: 2
Views: 3652

Re: how to redirect to and from squid server ????

Is this squid in fully transparent mode you - then you need to consider L2 redirect or policy routing.

Otherwise you could simply look at http://aacable.wordpress.com/2011/12/30 ... nce-guide/ as a good start.
by regardtv
Wed Feb 08, 2012 12:53 am
Forum: General
Topic: BGP - Network not being advertised.
Replies: 4
Views: 1594

Re: BGP - Network not being advertised.

Synchronize allows you to only advertise a route when your iBGP or OSPF actually knows how to route it. There are a number of scenarios in which this makes sense. Most recently I used this when building some failover routes. Two routers connect to an upstream and have different paths (multiple routi...
by regardtv
Wed Feb 08, 2012 12:44 am
Forum: Forwarding Protocols
Topic: BGP Question
Replies: 7
Views: 2969

Re: BGP Question

Glad I cloud help mate. Sometimes trying to figure stuff out at odd times of day is a lonely place to be ;-)
by regardtv
Thu Feb 02, 2012 11:14 pm
Forum: The User Manager
Topic: CoA in userman 5.12 to change rate-limit
Replies: 3
Views: 3674

Re: CoA in userman 5.12 to change rate-limit

Hi there. We don't make use of usermanager - rather we have our own external RADIUS servers. In the case of the Mikrotik we invariable rather send a PoD as that works. On reconnection the user is then in the appropriate package. On Cisco's CoA works - same code on the Mikrotik's doesn't seem too hap...
by regardtv
Thu Feb 02, 2012 12:37 am
Forum: Forwarding Protocols
Topic: BGP Question
Replies: 7
Views: 2969

Re: BGP Question

Hi, A /21 is simply 8 /24 subnets aggregated. As such splitting this to specific providers is simply a matter of bgp filters for the relevant providers. Setup a BGP session to each provider. Add all the /24's to your bgp networks. Setup filters for the specific /24's you want to announce to each of ...
by regardtv
Thu Feb 02, 2012 12:25 am
Forum: General
Topic: v5.12 released
Replies: 144
Views: 38005

Re: v5.12 released

to make compact work, some parts where made as default configuration that cannot be removed. use disable instead. /snmp community do not have "enable/disable" option or what is the syntax of the CLI command for disabling default community? I came across this earlier tonight and was somewh...
by regardtv
Sat Dec 24, 2011 10:44 pm
Forum: Forwarding Protocols
Topic: BGP Filter
Replies: 2
Views: 1302

Re: BGP Filter

Another option would be to use a jump rule.

This could allow you to centrally manage the rules you want while still having a number of individual rules per peer. We use this for our bogon and transit vs peering announces.
by regardtv
Sat Dec 24, 2011 10:01 pm
Forum: Forwarding Protocols
Topic: Stuck Routes on Route Cache
Replies: 103
Views: 56602

Re: Stuck Routes on Route Cache

Hi, This specific bug is causing some frustrations for me as well. It appears that the stale route remains in cache for as long as any IP sessions are trying to make use of the path. In this regard think of any TCP connections that might need to time out etc - the route could therefore stay in cache...
by regardtv
Sat Dec 24, 2011 9:41 am
Forum: General
Topic: BGP Default route propagation
Replies: 3
Views: 2958

Re: BGP Default route propagation

Default route is propagated if default-originate parameter is set. The same behavior as cisco. Hi mrz, Actually, that's not correct - in the Mikrotik case you 'originate' - you do NOT propagate the existing default route. As such the ASPATH and community information does not propagate. In addition,...
by regardtv
Wed Dec 21, 2011 10:24 pm
Forum: General
Topic: BGP Default route propagation
Replies: 3
Views: 2958

BGP Default route propagation

Hi Guys. We're using only BGP on a number of networks (both eBGP and iBGP). One of the recurrent issues we have is that default route cannot be propagated - are we seriously the only people that miss this feature? I'm really not in the mood for deploying more Cisco's at the edge ;-) Thoughts anyone? R
by regardtv
Fri Apr 01, 2011 11:18 am
Forum: General
Topic: Stop counting quota / data limits for updates of OS or AV
Replies: 2
Views: 1090

Re: Stop counting quota / data limits for updates of OS or A

Hi, You are referring to an ability to not account specific source/destination IP ranges - a feature many of us in the ISP space are looking for. Cisco's ISG funcationality can do that - and much more. I've requested this sort of feature capability before but don't expect it any time soon as there i...
by regardtv
Wed Oct 27, 2010 5:05 pm
Forum: General
Topic: LLDP
Replies: 136
Views: 68937

Re: LLDP

and what will this give over existing /ip neighbors and /ipv6 neighbors coupled with, for exmaple, dude monitoring of the network? It looks more like something will be left to dust with no real use. Sadly, it looks the same as with scsi drives - everyone needed it and still there is no response if ...
by regardtv
Wed Oct 27, 2010 4:55 pm
Forum: General
Topic: SCSI and SAS support in RouterOS
Replies: 104
Views: 42910

Re: SCSI and SAS support in RouterOS

All we can do, is include the standard driver. If it doesn't work, we can't do much.
Hi normis.

Based on a quick count from everyony posting in this thread I'd say the next driver for inclusion should likely be the cciss driver.

I have hardware on hand to test that with.

Regardt
by regardtv
Thu Jun 10, 2010 11:27 pm
Forum: General
Topic: feature request : GRE tunnel
Replies: 56
Views: 33455

Re: feature request : GRE tunnel

After fighting more interconnections with GGSN's I had to revert to another CISCO (damn)....

Guys, GRE support (as in direct GRE tunnel compatible with Cisco) would be a life saver....
by regardtv
Tue Nov 06, 2007 5:47 pm
Forum: General
Topic: ROS 3.0rc9 SNMP Bugs
Replies: 4
Views: 2383

ROS 3.0rc9 SNMP Bugs

Hi Guys, Bug report: Only the 1st SNMP community string added to the SNMP server works To recreate: 1) Enable SNMP Server in SNMP Settings 2) Add community string of choice -- SNMP queries work at this point 3) Add additional string of choice -- SNMP query against (2) still works but against (3) it ...
by regardtv
Mon Sep 04, 2006 10:40 pm
Forum: Wireless Networking
Topic: What happened to the channels above 2.5Ghz?
Replies: 21
Views: 5333

...