Hi Guys, i have a very strange issue. I am using shilded RJ45 CAT5e Plugs that i crimp with a KNIPPEX Tool. If i insert the plug into the WAP60G it shows 1 GBit/s, but when i touch the cable (press it deeper into the WAP60G Unit), it goes down to 100 MBit/s. If i pull on the cable, and restart the P...
Okay, i have found the solution.... When exporting the routes, and you are filtering as-path for "beginns with", you have to add your own ASN in first position. So you do not check against the received protocol, it will check against what will sent out to the bgp-peer. That is strange to h...
This does not work for me - but why? if ( bgp-as-path "^65022" ) { accept; } This results, that the BGP-Announcements from AS65022 are not forwarded. If i specifiy the IP-Network from that ASN, it will work. So the RegEX is not working for me. Screenshot 2023-09-29 003549.jpg These Routes ...
Hi Guys, is it me or is it ROSv7 that drives me crazy? I add a BGP Template. I use that created template in new BGP-Connection. I click OK and all the parameters from Template will be copied into the new BGP-Connection, instead of being referenced to the template (at view only). When i change the Ro...
Thank you for your hints on that. If i use the bridge to bridge all ports and go to Switch > Ports and do some testings on INGRESS / EGRESS settings. If i set EGRESS to 270M, Download is about 256M, so this is perfect. But on the INGRESS when i set 270M i only get 12M on the client on Upload. Is the...
Hi guys, i am not sure, but i think i have seen this working - but for now it is not: Add a queue with 570M for Up- and Downstream on a simple bridge setup: # 2023-09-01 15:55:06 by RouterOS 7.11.1 # software id = **ELIDED** # # model = RB760iGS # serial number = **ELIDED** /interface bridge add add...
Hi Guys, for CRS326 as a dual psu powered device, there is no log message in the history that the power-supply PSU1 or PSU2 has failed. This is one oft the important information in it security. How should we deal with a failing PSU when we will not being alerted? Model: CRS326-24S+2Q+ Firmware: v7.1...
Okay, i will try 7.11 beta, every day the router stops bgp-routing because of lacking BFD. I have to CTRL-C to abort the /routing/bfd/session/print command. [rack@router.de.seeon.landertsham.cgn] > routing/bfd/session/print Flags: U - up, I - inactive [rack@router.de.seeon.landertsham.cgn] > [rack@r...
Just to drop this hint here: I had a issue with BFD. BGP-Session went down at 03 am and was not coming back. I was able to ssh into the device from a direct neighbor. As i issued /routing/bfd/session print the CLI hangs. Then i did a Port-Forwarding via PUTTY to the malfunction device and run a Winb...
So from that point of view, i should: Add a vlan-interface to bridge Set type of bridge-vlan to TAGGED ONLY Set PVID of bridge1 to 1 Add bridge1 to vlan as tagged port Assign IP-Address to new added vlan-interface replace interface-list for discovery with new added vlan-interface hmmm.... thats loony.
Seeing the new CRS504-4XQ-IN that will be really cool. Swtich-Chip: MARVELL® Prestera® 98DX4310 Multi-Layer Ethernet Switch Also this switch supports Layer-2 Wire-Speed Switching engine with large MAC table Layer-3 Wire-Speed Routing engine with large LPM table CAPWAP overlay support Virtualization ...
Hi Guys, i was testing 6.49.x and 7.10.x on an CRS317 and CRS326 both firmwares were not able to correctly display there neighbours. Configuration: Interface west and east transports vlans 2220-2229 and 2250 ... VLAN 2250 is my Management-VLAN Interface bridge1 vlan-filtering is turned on and the in...
CRS317 do. Is there any prove that CRS317 do VxLAN in Hardware on the SwitchChips ASIC? Because the documentation of ROS 6 and 7 do not tell anything about that. There is VxLAN flagged to be done on CPU only. https://help.mikrotik.com/docs/display/ROS/L3+Hardware+Offloading#L3HardwareOffloading-Mon...
Hi Guys, i have two SSIDs they share the same identical first part of characters. The W60G-Client jumps between both Devices with unique SSIDs. SSID on AP #1: rsm-connect.net-de-frei-feuerweh SSID on AP #2: rsm-connect.net-de-frei-feuerwehr-lokwelt SSID on STA: rsm-connect.net-de-frei-feuerwehr-lokw...
Also discovering the same issue. This is unbelievable. Running v7.8 Now i have changed to RSA, the import will work, but the login fails: root@trafficgrapher:~/bin/auth# ssh -v -i /root/bin/auth/remote-access_new.rsa remote-user@172.16.15.240 OpenSSH_8.4p1 Debian-5+deb11u1, OpenSSL 1.1.1n 15 Mar 202...
having 200+ Managed addresses in WinBox and on every entity there is "Autosave Session" activated. How can i change that for all 200+ sessions in once?
My adresses-file is password saved, so it is encrypted and i can not modify the file by a file-editor.
As Wireless is a core business of MikroTik, I would have expected something like this to be added years ago. But it never happened. This is what OLSR is for. Mikrotik can make a fork of it and implement some sensors. We had this routing-protocol running on Ubiquiti Hardware with sensors for AirMax-...
Ah okay that seems legit. So i am not able to insert multiple bgp routes to the FIB, because BGP will do a preselection wich routes will be inserted in FIB. And this selection is prior then the metrics. So i need to change the MED / LOCAL-PREF values, to get the personally preferred route installed.
Hey Guys, mikrotik drives me crazy these days... From one pitfall to another. ROS Documentation about VxLAN says: dont-fragment (disabled | enabled | inherit; Default: disabled) But in CLI and in WinBox there is no such option? What is the MTU of a VxLAN Interface? 1464 i guess? So Inner-MSS is 1420...
is this the Mellanox extension (MAGP) or a completely separate linux implementation with similar functionality? Conntrackd is only a daemon that inter-exchange flow-based connection tracking to one or more routers via multicast protocol. With that technique you are able to setup a active/active/act...
IGMP Snooping is not enabled. Used the switch configuration as is from default. Only did IP and VLAN Settings. # jan/02/1970 16:04:52 by RouterOS 7.7 # software id = U627-VMD4 # # model = CRS326-24S+2Q+ # serial number = AEF60B43726E /interface bridge add admin-mac=C4:AD:34:CF:F2:60 auto-mac=no comm...
Yeah i will send you the support-ticket as far as i can. But i have a related question: Is it possible that the Slave dont have the synced connections in his own conntrack-table? Our setup looks like this: Download.png Green = Upstrem to the Internet - works Blue = Downstream from the Internet - wor...
Hi Guys, running v.6.49.7 on top of CRS326-24S+2Q+ sometimes i have to restart the switch because it is not forwarding IPv6 multicast traffic anymore. In this case, no neighbor discovery is possible, also IPv6-RA is not possible anymore. With tcpdump -eni eth0 ip6 on the servers they connected to th...
There should be a repository where we can get all the drivers needed to bake a own linux kernel. I can dispense the WinBox when i have plain access to the linux console. But i need a reliable hardware at a good pricepoint where mikrotik comes into the game. But there are no alternative firmwares ava...
My CCR2004 is keeping rebooting every 30-50 Minutes. I am stuck on v6 because of missing BFD. I am not able to upgrade to v7 as long as BFD is not working.
@Mikrotik... release your software on github and let the community work on it as -community-edition... And for Features that will be cool, you can port the changes to your main codebase. This is so annoying. CCR2004 is not stable with v6 (packet-loss) only in v7 the device acts like a router. But la...
Hi Guys, i am using VRRP with Connection-Tracking and have discovered an issue with the NAT-Table. I have two routers (Router A - VRRP Master) and (Router B - VRRP Slave). Both routers are configured identical - running rsc-script on both routers, only changing fixed Interface-IP-Addresses. There is...
Yeah, i had also thoughts this way, that i have to define an interface-list, but when i am doing this, then i can not see one single device in discovery. You are right, when not using PVID on bridge1, but using VLAN-Tagged on Bridge-Interface and adding a VLAN-Interface to bridge1 that will solve th...
Hi Guys, the Mikrotik device discovery tool on CRS326-24S+2Q+ and the broadcast daemon on hEX S have some issues when using VLAN with VLAN-Aware-Hardware. Both devices uses VLANs with the new configuration-style via BRIDGE-VLAN. So lets start with an example configuration on hEX S: bridge is native ...
we tried version 7.2.3 on our seminar now, without success Oh my gosh. That can not be serious. This implementation and bug-fixing policy by Mikrotik is that what i hate the most. There is no possibility to use that devices for professional purposes. But the hardware is able to. Only the software i...
(change from the default "auto" to "yes")? After changing both to routers to yes, the message is gone, but there is no initial sync after booting R2 (Backup). 16:58:00 system,info router rebooted 16:58:10 vrrp,info vrrp.voip-router now BACKUP 16:58:10 vrrp,info vrrp.voip-router ...
Also i see the following information in log after Reboot (marked interesting log entity with >>>>): currently running 7.2rc3 on both routers. 14:46:15 system,info router rebooted 14:46:15 vrrp,info vrrp.voip-router now BACKUP 14:46:15 vrrp,info vrrp.voip-router starting CONNTRACK SLAVE >>>> 14:46:15...
Okay, i beleave that there is no initial sync? I am right? For my point of view only new connections will be synchronized to the Backup-Router? EDIT: And if there was a SIP-Connection this information is not synchronized between Master <> Backup Router. When a new session will be established at port...
We are considering decoupling sync connection tracking from VRRP, and make connection syncing a standalone feature that users may set up in any way they want. This sounds greate. But i have an another question: While R1 is VRRP Master and CONNTRACK Master, should i see the connections on the BACKUP...
Hi Guys, we have a bridge and assigned 3 ports to them (ether1, ether2, sfp). Sometimes the device looses connection to devices on ether1 and ether2. If you disable and enable ether1 / ether2 it will not solve the issue. You have to completely reboot the whole hEX-S Board. Now i have found " le...
I thought that v7 is the first ROS that support BGP with multipath (ECMP). This makes me a little bit angry. Currently i use Ubiquiti Routers to achive ECMP with BGP. I moved many routers to Mikrotik because in some topics ECMP for BGP on Mikrotik was planed for v7.x - and now, this feature is not r...
Hi Guys, how to enable ECMP for BGP routes? > /ip/route/print detail where !inactive Flags: D - dynamic; X - disabled, I - inactive, A - active; c - connect, s - static, r - rip, b - bgp, o - ospf, d - dhcp, v - vpn, m - modem, y - copy; H - hw-offloaded; + - ecmp D b dst-address=0.0.0.0/0 routing-t...
Hi Guys, having an issue with "Neighbor Discovery" when doing VLAN with ROS as it should be. I can not see the CDPs from the Mikrotik-CPE when doing VLAN-Filtering (Bridge VLAN configuration - the NEW way to do this) instead of adding VLAN-Interface to SFP-Interface and bridge it together ...
Okay, there was a switch between (PLANET Fiber Switch) that was blocking Neigh-Discovery-Packets. This was not visible on the first look, because IPv6 was functional for known hosts, but not for new hosts. There were no machanismen installed, so the switch was not acting as it should. After a reboot...
Hey Guys, sorry to hesitate you, but IPv6 on my RB5009UG is driving me crazy. I have a subnet 2a04:df80:0:1580::/64 and this is working - there are many clients connected to that network and are fully functional. Today i have installed a brand new RB5009UG, i can ping it on the LL-Interface-Address ...
Hi Guys, i like to configure some common tasks as interpreting BGP-Communitys for LOCAL-PREF modification. How can i jump from one CHAIN to another and RETURN to the LAST? Or how about running common functions() with arguments? Like BIRD Routing Daemon is doing? Also, where can i find a complete ref...
Is it possible to sync connection tracking state in an active/active setup? I like to peer via BGP with my upstream provider, so i like to have two active bgp sessions and so on to route the traffic from WAN to LAN where the traffic arrives. So there is a possibility of asymmetric routing. Because o...
Hi Guys, i had a fresh install of two CRS354-48G-4S+2Q+RM cross connected via 2x 10G LACP LAG. I did 4 vlan port-groups: 1-12 VLAN 10, 13-24 VLAN 20, 25-36 VLAN 30, 37-48 VLAN40 One switch stopped working on VLAN20, all ports on VLAN20 (13-24) were "deactivated". It was not possible to fin...
Bonding Since RouterOS v6.42 all CRS3xx series switches support hardware offloading with bonding interfaces. Only 802.3ad and balance-xor bonding modes are hardware offloaded, other bonding modes will use the CPU's resources. You can find more information about the bonding interfaces in the Bonding...
Hi Guys, how can i get the switch to do hardware-offloading with "balance-rr" ? What i am doing wrong? Firmware: v6.47.3 Device: CRS326-24S+2Q+ MMM MMM KKK TTTTTTTTTTT KKK MMMM MMMM KKK TTTTTTTTTTT KKK MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK MMM MM MMM III KKKKK RRR RRR OOO ...
Oh yeha, now i see, the config-export was cut in half. Dont know why. I have updated the initial post with the correct config-export. For instance VLAN in this case is not correct and I think this may break the offloading. You need to implement VLAN filtering on the Bridge and add the add the manage...
Your config is way off. The config really needs to be mainly done via the bridge. Here is the link for vlans with bonds on the crs3xx series. https://wiki.mikrotik.com/wiki/Manual:CRS3xx_VLANs_with_Bonds This is exactly how i did the configuration. In most cases, i unpack the switch, and only chang...
Sorry Guys, but is Mikrotik kidding me? I have a CRS326-24S+2Q and i having trouble to get 250 MBit/s out of that switch. All ports are HARDWARE-OFFLOADED, but the CPU goes that high, that the traffic caps at 250 MBit/s. Core fucked up.JPG Why is this happening? Yeah i know i should update firmware ...
I ran into that issue twice. CRS326-24G-2S+ Current Firmware: ROS v6.44.5 The switch locks up and is not able to communicate via IP (SSH, Telnet, MAC-Telnet, WinBox, arping). Only powercycle will bring the switch back into life. We use the SFP1-Port for Upstream with an Fiber-Switch. On the fiber-sw...
I miss that option too. I have a link that is 900m long and the RSSI is fluctuating. Even the link goes down. That there is an A-TPC active is clearly visible. But the programming of that A-TPC mechanismen is not good at all. Every 30 Minutes the link goes down. But is not exactly 30 Minutes. Someti...
I think that Mikrotik have to work on many things to get a real game changer.
Missing L2TPv3 is a nogo. Linux-Kernel supports L2TPv3 so there is only some work in programming wrappers from ROS-Configuration to Unix-Commands.
Hi Guys, i have a 57V powered site. I like to use CRS326-24S+2Q+ in there. As there is no DC-IN currently, what will be the best option to get the switch running with the provided power of 57V? It is bad, that there is no Power-Bay, so you can Switch the AC-Blades to DC-Blades. Is the only way, to o...
Came to that point today and i am disappointed that mikrotik developers are not able to give us some information if that feature is on a todo list or not.
Hi guys, i have a PowerBox Pro mounted outside on the tower. The PowerBox Pro is powered via ETHER-1 POE-IN. There is a Rocket-M5 connected on ether-4 and a PowerBeam M5 connected on ether-5. Both devices will be powered via the PowerBox Pro. The both APs are rebooting randomly at the same time. PoE...
Hi, i have done the scope-settings, but it will not work as expected. Can you please have a look on that? [admin@MikroTik] > ip route print detail Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit ...
Hi Guys, i have two networks on the same LAN: #1 192.168.0.0/29 (The Router is .1) #2 192.168.1.5/29 (All IPs are useable 1-7) There is only one default-gateway on LAN#1 but both networks are on the same LAN (so no VLAN is configured). My Router is 192.168.1.5 and i can do an arp-ping to 192.168.0.1...
Hey Guys, i have a RB4011 with current stable firmware. My SFP is a 1 GbE SFP from FiberStore, branded as JUNIPER. It is a BiDi 1550/1310nm (yellow marked). Per second the link flaps. Also the UI shows (Running, Standby, Running, Standby....) https://youtu.be/-xBT-wZGTe0 The same SFP is funktional i...
@alexcherry what is your configuration looking like? Please send me your configuration i will give a try on that. Agent-Circuit-Id should be configurable with placeholders like %m = MAC-Address of Interface %n = Name of Interface (custom name) %i = ID of Interface XX (eg 01, 02, 03....) The informat...
Hey Gusy, there is issue in your code. When i request the "Hosts"-Tab, the json-output looks like that: [{adr:'fa94f6af57ad',prt:0x01,drp:0x00,mir:0x00,sts:0x07,vid:0x0001}, {adr:'d4ca6d1bf485',prt:0x00,drp:0x00,mir:0x00,sts:0x07,vid:0x0001}, {adr:'dc9fdb28c387',prt:0x01,drp:0x00,mir:0x00,...
Hey Guys, is it possible to get DHCP-Snooping Option 82 running on ROS? We like to add interface-informations to a DHCP-Client-Request (DHCP Option 82). We install Mikrotik Router-Boards in buildings to get more than just one customer connected. To know, which customer have requested a DHCP-Lease we...
i use RB960PGS and power the device via PoE. I use a Ubiquiti PoE-Adapter wich was powering an 5AC Rocket before with Gigabit connection on LAN. After connecting the RB960PGS the interface came up with 100M only.
How can i use Gigabit-Speed with RB960PGS with PoE-IN used?
Hi! I want to limit a customers Ethernet-Port to 200M/50M (down/up). The RouterBoard does strange things, when bridge will enable "Use IP firewalling". # dec/01/2015 15:44:05 by RouterOS 6.33.2 # software id = N68D-40SQ # /interface bridge add name=br1-internet protocol-mode=none /interfac...
Hey Guys! We are using RB260GS and RB260GSP in our Fiber-Network to bring our customers online via Fiber. So our customers are connected to Port 1-5 and the Uplink is via Gigabit-SFP. To limit the bandwith we are using ACL, but we achieved very stupid things when using the FROM and TO Filter the sam...
Hell yeah! What is this for a creepy issue? Why is there no ! / NOT implemented? I also need this Feature. Also there is no ability to select a Out-Interface. I like to limit the bandwith for some destinations. I sell 20/2 MBit to a customer which is connected to a 1 GbE via SFP. But within my Netwo...
Charge the customer for that. Yeah, we do, but we always have a discussion with the customer about the fees. In our General Agreement Terms, there is a special article about manipulating devices owned by the ISP. There also specified the fees for repairing. But if our network goes down (for mainten...
Hi! We use the RB260GS to bring our customers to our Fibre-Network. We use Ethernet-Connection and DHCP. The Bandwidth is limited by RB260GS via Egress rule and ACL-Rule. Some our customers are so cunning, that they use the Hardware Reset-Button to gain 1.000 MBit Connection. That is not what we wan...
Hi! I need to forward DHCP-Requests to a upstream DHCP-Server. I also need the following capabilities to do so: * Set DHCP-Sub-Option "Link Selection" - RFC3527 * Set DHCP-Sub-Option "DHCP Server Identifier Override" - RFC5107 Is Mikrotik capable of these DHCP-SubOptions? If not,...
I think they will have a general problem with SFP and RB260GS!!! RB260GS - SFP Module - Not working - no RX just TX http://forum.mikrotik.com/viewtopic.php?f=17&t=83873#p422216 That is so so annoying! Whe have currently 30 Switches in the field and have 80 pcs encamped. We will immediately stop ...
100m MM patch cord. Unbelievable !!!! After resetting both devices to "Factory defaults" the modules worked. I made 3 power cycles and the Fibre-Link was established and working fine without one interruption. I did not configure anything, after i picked the units from packaging. I have ins...
Sorry, but anything is wrong with the RB260GS. Now i ordered new SFPs with Multimode to test both RB260GS units. Both SFP-LED are on, but there is no data communication between both devices. I tested both SPFs in two TP-LINK Switches and in DELL Switches. In both switches, the modules worked fine. S...
The Module provides 19dB of output. The physical attenuation is at 12dB, so 7dB is enough for the link to work. I replaced the TP-Link MC220L with a RB260GS, the link comes up but i have no RX. On Side A, the SFP-Link-LED is on. On Side B the LED is off.. That is odd. SFP Auto Negotiation Module Pre...
Currently i am using TPLINK-MC220L. This Device supports only modules up to 10km.
I have installed a 40 km Module, but after 15km the signal were loss.
Now i like to use RB260GS. Is this Model able to power up a 40km SFP Module?
I also have problems with loops. But my setup is very simple and was working, before i used RB250GS! I think, there is a problem. Also a friend told me, that his RB250GS was stop working after few days. My Network-Setup: HP ProCurve 1700-8G PORTS | | | | | | | | 1 2 3 4 5 6 7 8 V1 V1 V2 V2 V2 V2 T2,...
Now i am really confused. I've tested to input the value 1250000 in the input-field but the last zero was not taken. So the input-field was only 125000. Today, it was working. I don't know why ;) Wishlist for Bandwidth-Limitation: * Accept values 128k, 6M, 12M, 20M (kBit, MBit) * Set field-size to 8...
Hi all! How can i limit a port to 10 MBit down and 1 MBit up? The wiki told me that the values in egress & ingress are in bps (so i think bytes per second?) but i am not able to add so high values to the Input-Field. 10 MBit = 10 * 1000 * 1000 / 8 = 1.250.000 bps But i am only able to write 125....
Because the MikroTik SXT G-5HnD offers Gigabit Ethernet and was sold with 200 MBits real TCP throughput declaration. SXT 5HnD is a low cost, high speed 5GHz wireless device. Dual polarization 802.11n and Nv2 TDMA technology help to achieve even 200Mbit real throughput speed http://www.mikrotik-shop....
I have the same problem! running SwOS 1.6 and can see DHCP-Discoverys (255.255.255.255 ff:ff:ff:ff:ff:ff) on VLAN2 from a client that is connected to VLAN1 on the same RB250GS Switch. /---------------------------\ | SWITCH RB250GS 5-Port | | Ports | | 1 2 3 4 5 | \---------------------------/ | | | ...
Yes. CCQ was bad but now it is at 98%. NV2 was enabled all the time. Also NStream is enabled as seen in other howto. I've spent lot of time to understand how MikroTik Hardware is working, and spent a lot of in HowTos also. This is my configuration on the "Station Bridge" side: http://dl.dr...
Dear MikroTik Users! I am very new to the MikroTik Hardware. I switched from UBNT NanoBridges M5 22dBi to MikroTik SXT G-5HnD and have some questions about latency. Before i switched from UBNT to MikroTik, my ping was between 1.2ms and 2.5ms with AirMAX (TDMA) enabled. To setup both MikroTik SXT G-5...