I am using an MK GrooveA on my RV roof as a wlan station to connect to campground AP. wlan1 is setup with dhcp client to take IP from campground when it connects to their AP ether1 is setup as dhcp server that connects to my MK HAP Lite inside the RV HAP is setup in bridge and all my devices take an...
I've checked the ARP list many times and no .136.254 is found. input and forward rules to drop all traffic to/from IP addresses that have not been issued to clients (.136.254 is in this list) In firewall nat there are no rules of any kind Upstream provider not Telemar I'm not sure you found the corr...
MK x86-5.19 - with simple setup WAN Side - Ether1 0.0.0.45/30 ISP -> 0.0.0.46/30 ether1 on MK (WAN) Fiber provider giving 2 class C public IP's routed (0.0.136.0/24 0.0.171.0/24) LAN Side - Ether2 Public IP 0.0.136.1/24 ether2 Public IP 0.0.171.1/24 ether2 Users on LAN with DHCP using Public IP from...
I use the following to help block p2p, I found this a while back searching Google for help on p2p so I can't remember where I found it. Add Layer7 ip firewall layer7-protocol add comment="" name=p2p_www regexp="^.*(get|GET).+\ (torrent|thepiratebay|isohunt|entertane|demonoid|btjunkie|...
Thanks for all the help I was finally able to get this working. Subnet issued by provider XXX.XXX.209.96/27 WAN EHT1 -- XXX.XXX209.98/27 -- arp=proxy-arp LAN ETH2-VLAN300 - 192.168.0.1 -- arp=proxy-arp ip route add dst-address=XXX.XXX.209.120/30 gatewaway=VLAN300 'fake' IP address 192.168.0.1 on VLA...
Chupaka Tried adding a fake IP 192.168.0.1 then tried real IP XXX.XXX.209.120/29 to VLAN300 With either of the IP's on vlan300 the IP Route does become reachable With 192.168.0.1 the route becomes reachable with preferred source of 192.168.0.1 With XXX.XXX.209.120/29 the route becomes reachable with...
Thanks for the replies but I seem to be missing something. XXX.XXX.209.96/27 from fiber provider XXX.XXX.209.97 provider gateway ROS WAN ETH1 = XXX.XXX.209.98/27 -arp=enable ROS LAN ETH2 VLAN100 = 10.1.252.1/22 - ARP=proxy-arp -- Pool = 10.1.252.2-10.1.255.254 -- PPPOE Server VLAN200 = 10.2.192.254/...
X86 ROS 4.2 I have public IP /27 assigned by my fiber provider. XXX.XXX.XXX.96/27 XXX.XXX.XXX.97 Default Gateway XXX.XXX.XXX.98 = ETH-1 Public Interface 10.10.0.1/24 = ETH-2 PPPOE Server PPPOE is working fine for normal client I have a business client asking for service with 4 public IP's What would...
Hi Currently using MT 2.9.51 on x86 (Intel 1U server SR1425BK1 - 3.2ghz / 10gig IDE HDD / 2048ram) PPPoE connections around 3300, CPU runs about 65% during peak client usage. We have 4 of these controlling a segmented network of about 150000 clients. Systems have been rock solid for over a year. Dec...
Have not been using a fan, R333 has locked up 3 more times since my first post and had to be power cycled.
The unit is located in direct sun inside an 12x12x6 outdoor enclosure. I will install 2 fans to see if heat could be the issue.
I picked up the new RB333 for some testing to see how well it would perform against the current AP I use. Setup Cable Modem w/DHCP enabled ------- eth1 RB333 wlan1 >>>>> Laptop ----- = Cat5 LAN connection >>>> = Wireless connection I set eth1 on RB333 with static IP from modem and I can connect with...
the web proxy is there but I don't see a way to disable it in the packages anymore. Also in the web proxy settings the Total Disk Size and Free Disk Space is reading the size of my 512MB CF primary drive running ROS, but I have set web proxy to use a 120GB IDE secondary slave HDD. Should web proxy r...
AAA works fine with DHCP and Hotspot Easy way to turn it on is Winbox Got to Hotspot -> Servers tab -> Profiles -> Choose your Profile for your hotspot In the Profile settings click on the Radius tab and make sure the "Use Radius" and "Accounting" check box is checked, next you n...
ROS 2.9.43 Have hotspot setup on a few x86 boxes. I am getting complaints from 27 customers who are trying to play online games. The error they are complaining about ( HTTP status 417: Expectation Failed ) this happens when they try to load their online game applications. A Google search showed a fe...
We struggled with Trango equipment for the best part of 2 years. After all the problems, firmware fixes that actually made things worse, equipment crashes and advertised ranges that did not even come close; we finally caved in and preformed a $260K overhaul and went to Motorola Canopy. It was the be...
I loaded clean install on version 3beta7 on x86 box in a heavy use production environment running 62 VLAN's and Hotspot. Asus MB W Intel P4 3GHz 1024Mb DDR Memory 1 - 4gig IDE HDD for ROS 1 - 200gig IDE HDD for web cache proxy 4 - Intel Pro 10/100/1000 nic cards ether1 and ether2 were setup to load ...
Sorry if I don't know much in the way of creating this connection. Dude PC (WinXP Pro) = 71.10.10.12 - Public IP ROS (ether1) = 213.10.10.3/25 - Public IP ROS (ether3) = 192.168.0.254/24 Using Winbox to setup the PPTP connection. Enabled PPTP on ROS Created Secret User = test Password = test Service...
PC and ROS have 'true' Public IP addresses. I have 14 "Public IP" addresses from service provider here where the Dude PC is located. I have 254 "Public IP" addresses from VSAT service provider on other end with ROS box. I used the 10.x.x.x IP addresses in first post so I did not ...
I have a remote ROS x86 system that I have been trying to get a PPTP connection setup with PC running DUDE. I need to set the DUDE PC up with a VPN connection so I can use it to monitor the remote ROS unit and local network devices. ether1 = 10.10.1.3/25 - Public ether3 = 192.168.0.254/24 - Local I ...
Looked up the supported NIC list and ordered 30 of Intel Pro/1000GT with chip number i82541PI After installing, the cards seem to work but rather slow. When looking in the resources list, I see where ROS ver.2.9.42 and ver.3.0b7 list the Intel devices but says they are "Unknown Device (rev:5)&q...
normis I have done this to redirect to web server i have set up for this. It works fine as long as I manually move the NAT rule above all the dynamic hotspot rules. The issue I have is on system reboot the NAT rule is again placed below the hotspot dynamic rules and I have to login to each and every...
RouterBoard 112 Press any key within 2 seconds to enter setup.. loading kernel from nand... OK setting up elf image... OK jumping to kernel code Starting... insmod: cannot insert `/lib/modules/2.6.20/misc/fancon.ko': Success (1): Success modprobe: failed to load module fancon Starting services... M...
Paypal uses many differant IP's and trying to add them all is quite a pain. I have used the following in my walled garden for over a year with no issues. paypal.com = allow http://www.paypal.com = allow *.paypal.com = allow paypalobjects.com = allow http://www.paypalobjects.com = allow *.paypalobjec...
MT ver 2.9.42 I am trying to redirect some website IP's to my own web server IP in hotspot. I would like to eventually add a "blocked-page" address list where I can keep a list of blocked sites and redirect all request back to my own web server. Example Blocked Website IP 123.123.123.123 I...
I found http://safefromsites.com They charge a very small fee to use their DNS servers but it does work on MT with hotspot. Why the ScrubIt DNS servers do not work I still have been unable to figure out. I am trying now to figure out how to make the safefromsites Blocked Page redirect to my own page...
Is there any way to disable the MT DNS proxy in Hotspot? I would like to find a solution to this porn issue so that our public solution will be in compliance. ScrubIt seems to offer a "Best Effort" solution that would be very easy to use. Unfortunately they allow users to bring their own l...
I have a hotspot network setup at a public facility that I am being required to block porn sites on. http://www.scrubit.com provides free DNS servers that deny access to these types of sites. ScrubIT DNS IP's are 67.138.54.100 & 207.225.209.66 I use these DNS servers at my home on the Linksys ro...
MT ver 2.9.39 We have a wired network of about 500 in apartment complex. We use a central located 2.9.39 Lev6 MT x86 and using freeradius server located at apartment office to run hotspot, from this we break down into switches and each apartment has wired cat5 connection. Some clients have started t...
I am working on a new version that is ajax based which should be completed in a week or so. Once this is done i may consider releasing if there are enough interest for it.
The MT usermanager is good for small to medium hotspots but I needed something that I could have payments and could not wait for the MT release. I will look at the MT version again when they add the payment option. I use some software I wrote that has PayPal API for user self sign up. It runs on a s...
The average rtt we see is 3500ms ~ 4500ms VSAT Latency to servers is about 1s Radius is set to a 1s delay to help slow down any dos attacks sql sometimes takes 1s to do the query (very large data bases) VSAT Latency back to MT box is about 1s This is of course perfect weather conditions, at our loca...
Is there a reason for this, or is this just something else MT thinks we all need? I don't see why there needs to be a limit on this or at least put a limit that can be used over Satellite links. As it is now we will be stuck using the 2.9.32 ver as a 3s timeout just will not work for us. Our 10s tim...
We have been using MT-2.9.32 on a hotspot setup using satellite connections. Our radius servers are located here in our data center, due to the latency of the VSATs we have MT radius timeout set at 10000ms. We upgraded to MT-2.9.38 last night and since then we have seen errors and timeouts in our lo...
The reason I use Peplink is for load balancing 7 WAN connections. I have 2 in use now and have had no issues with them. As far as having web interface only, I dont have an issue with that as all I use it for is Load Balancing and virtual server setup to redirect ports to my other server and to my MT...
I am setting up my deployments with a Pep-Link 7-WAN load balancer. My sites will have aprox 3000 concurrent users and I dont think a single MT x86 box can handle this amount of users. This is why I need to use several. The load blancers are on public IP's and the MT boxes are sitting on LAN ports 1...
I have tried dst-nat and a few other things I could think of and nothing seems to work. I can't beleive there is no way to make this happen, I would prefer to use MT on 20 or so of my deployments but if I can't access multipule MT units from behind my load balancers I will have to go with other rout...
This does not work, unless I am missing something. This only changes the port at which the MT unit listens on for http traffic. I need to change the actual port that WinBox uses. i.e. from 8291 to 1024 In this way I could set my port foward up. Winbox uses 1024 to connect - I foward port 1024 in my ...
Is it possible to change the port WinBox uses to connect? My install requires the use of 4 - x86 MT systems all sitting behind a Load Balancer. Each with about 500 concurrent users. Load Balancer has public IP X.X.X.X and then gives the following static IP's to my MT boxes. MT 1 = 172.40.0.2 MT 2 = ...
I have tried to find differant ways to get all the accounts to reset automaticaly at a set time but so far have not been able to do it. For this reason we cannot use MT userman. It would be nice to see MT add this function in the userman to allow us the ability to reset all the user counts at a time...
What type of messenger errors are you seeing?
I have had nothing but complaints from 80% of our users with Yahoo, MSN and AIM, I have not thought of this as the problem but now looking at it, I think it could be.
We are even considering moving away from the MT product because of it.
This is what I was after, but hoping there was a way to have the system do this auto at a preset time each day.
Yu can use 'system scheduler' to execute the reset scripts.
In future maybe we will add some scheduled task support in the user manger itself.
Don't want to hijack the thread but it seems we may be asking the same question in a round about way. I have a MT with user manager setup here in the office, can I get our other MT systems in the feild to authenticate the users from this unit? This would be a big plus as our users could then use the...
I use freeRadius and Web server for the user authentication, management, payment and signup, I did add our servers to the walled garden and had no problem.
I am having a problem trying to us WinBox when the router has alot of online users.
Any idea on what I need to do to place WinBox at the top of the priority list over everything else?
I have paypal working in my walled garden by adding the following allow - paypal.com allow - *.paypal.com allow - paypalobjets.com allow - *.paypalobjects.com allow - history.paypal.com allow - *.history.paypal.com allow - paypalssl.doubleclick.net allow - *.paypalssl.doubleclick.net allow - https:/...