I am in the same scenario and solved by: |Site 1| --> |Internet| --> |Ubuntu OpenVPN| --> |Site 2|, |Site 3|, |Site 4| All of them can ping the other sites. 1. Use VPS (Ubuntu LTS) with a static public IP. --> Mine is vultr.com get the cheapest VPS that give you a static IPv4 2. Install OpenVPN 3. C...
Is there a way to set an IPv6 DNS address like the ipv4 dns option... example: "IP > DHCP Server > Networks > Choose an Address > Set DNS Servers"? Is there an IPv6 equivalent option? or it will be a feature? I am asking because if i set SLAAC with DHCPv6 Server then my devices picks the I...
You don't need static DNS. Some devices already support DNS from RA (Linux, even Windows 10 for about a year now), but RouterOS doesn't have many configuration options for that (it just takes what's in "/ip dns"). But stateless DHCPv6 works in RouterOS and few versions back, DHCPv6 option...
I remember it used to be recommended to give /48 to every customer. It's easy to work with (whole one part between two colons belongs to customer for subnetting) and while it's huge overkill for most customers, there's enough addresses to go around. Regular ISP starts with /32, it's enough for 65k ...
A /64 provision is a little mean from your ISP. I guess at one level you should be happy that the ISP provides any IPv6 connectivity, many still don't. The ISP I use provides a routed /48, with a seperate /64 Network Discovery Prefix. This is used to automatically address the WAN interface of my Ro...
It's good that it works, but only /64 sucks. It looks like awful lot of addresses at first (and it is), but yes, it's one subnet and it's not supposed to be divided in smaller ones. While possible, many devices know only how to work with /64 and autoconfiguration (I mean, if they support IPv6 at al...
All right. I have: Upgraded RouterOS to latest version (6.42.6). Enabled the IPv6 package. Set up a DHCP client entry on WAN1 requesting an address and prefix; it has received an address and prefix which correspond to what my ISP is showing in my Internet gateway. Set up a DHCP server entry on the ...
Finally fixed...
The solution was to put the ISP router in bridge mode, because the /64 is for one subnet only.
The ISP router was already using the only /64 available to me, so the Mikrotik did not get a chance to see the internet.
Thanks for helping.
I did that configuration...
I don't know if the problem is because the prefix the ISP gave me is a /64.
Also the ISP router is in routing mode and not in bridge mode.
Can that be a problem?
I can get IPv6 addresses on my computers, but i can not ping or browse the internet using IPv6. My current configuration is as follows: 1) Get Ipv6 prefix /ipv6 dhcp-client add add-default-route=yes interface=internet-ether10 pool-name=internet-ipv6 request=prefix use-peer-dns=no Then in pool i can ...
I already setup a Raspberry Pi to monitor my home network. (Monitoring via Web) Using NFDUMP and NfSen. Setup example: http://terraltech.com/installation-and-configuration-of-nfdump-and-nfsen-on-ubuntu/ Notes: I had to copy 3 files to the bin directory. (Do this if you get an installation error 'fro...
Hi guys, I am using mikrotik Os v5.24, and i want to monitor my traffic and keep the record stored in a file or a database. (No packet capture) I am looking for something like this: http://farm6.static.flickr.com/5181/5621641846_707c8783eb_b_d.jpg Via web or application. I want a freeware tool that ...
Hi, you need in your QoS to set Type PCQ. I have a website with this setup example: look this: http://mikrotik.romelsan.com/ then the example: http://mikrotik.romelsan.com/home/qos-tree There is the example code, and the screenshots... you just have to change the IPs , interface , and the bandwidth ...
Mmm... Anything that have a parent will have the same rules passed to childs... Childs can have their on rules and will not pass to other same level childs. As i am aware of... Priority applies to childs. I have posted an example that creates a Tree QoS using PCQ without affecting Lan connections ju...
Thanks, I didn't know that this was called hairpin-nat or Nat/WAN Reflection to some others... Anyway it works 100% Positive Karma for both of you :) So, the solution was: /ip firewall nat add chain=dstnat dst-address=xxx.xxx.xxx.xxx protocol=tcp dst-port=80 \ action=dst-nat to-address=192.168.0.6 a...
My current situation is as follows: I have a mikrotik RB2011 router with routeros 5.20 assigned a public IP. Inside the network is a VLAN and a NAS. So, WAN= xxx.xxx.xxx.xxx (yourname.no-ip.org) LAN = 192.168.0.0/24 NAS = 192.168.0.6 From the LAN i have flawless internet access, and can browse to NA...
There are many reasons: 1) I want to learn about setting up VLANS using (Mikrotik) (I tried the manual but failed) 2) I want to separate ARP. (In other maps) 3) By learning this i will isolate my wireless guest network without using hotspot function. I just need to understand the VLAN basic Setup. I...
Hi,
How would you setup 3 simple Vlans like this?
Just 1 RouterOs
1 single Vlan per eth port.
All of them must have internet connection, via WAN (eth10)
VLANS Untagged
QoS Tree is easier... Assuming you want to limit Internet Speed: If not then you can make little changes to suit your needs Change this one part "YOUR_WAN_INTERFACE" to your Internet Interface Name. /ip firewall mangle add chain=prerouting src-address=30.30.246.1/24 action=mark-connection ...
Study QoS Tree first, then simple queue rules will be easy, because it also uses a parent child structure. So, Case Example: * Later you will be able to setup rules against services or entire networks Important Device = 192.168.6.100 unlimited speed Secondary Device = 192.168.6.150 limited (Download...
I don't recommend HTTP for Wan Administration. Anyway, copy and paste this code to the winbox terminal. /ip firewall filter add action=accept chain=input comment="HTTP WAN Admin" dst-port=80 protocol=tcp Note: It is better to use WinBox, SSH, HTTPS for WAN Administration. Cheers, Dont forg...
If you want to gain access from WAN to your WinBox, you have to create a rule in the Firewall Filter section. Ex: Copy and paste this line to your WinBox Terminal /ip firewall filter add chain=input comment="WinBox Wan Administration" dst-port=8291 protocol=tcp action=accept Note: By defau...
Good question. Normally you just navigate a server using the local name or local server ip + port. And if you want to test the connection only (No login) it's ok to use external proxy, TOR or VPN. But in your case the rule you set will have Mikrotik Os to resolve the dyndns ip... For Solution Read a...
QoS Tree by @RomelSan: Case Example. I have: Core LAN: 192.168.6.0/24 ether2-Core Family LAN: 192.168.7.0/24 ether3-Family Guest HotSpot: 192.168.5.0/24 ether4-HotSpot-Cisco WAN: internet-ether10 -------------------------------------------------------- My PC is: 192.168.6.100 Synology NAS: 192.168....
Setup example: (This will only adjust WAN traffic) Adjust to your needs. Assuming you have: WAN = 203.x.x.x LAN = 192.x.x.x Then: /queue simple add name=InternetQoS target-addresses=0.0.0.0/0 comment="WAN queue" /queue simple add name=Group1 priority=6 target-addresses=192.168.6.0/24 max-l...
The bandwidth isn't divided into equal parts. You need create PCQ queues for incoming and outgoing traffic. /queue type add name="Download" kind=pcq limit=2M pcq-classifier=dst-address /queue type add name="Upload" kind=pcq limit=400k pcq-classifier=src-address /queue simple set...
Hi, i have the current setup: LAN1: 192.168.6.0/24 Interface: ether2-Core LAN2: 192.168.7.0/24 Interface: ether3-Family LAN3: 192.168.5.0/24 Interface: ether4-Core-Cisco WAN: ISP DHCP Interface: internet-ether10 My Internet Speed is: Download: 6.1mbps Upload: 1.5mbps I followed the wiki documentatio...
BackwardsCire! Thanks! My settings works now! Trying for hours :p and for remote administration via WinBox i used: /ip firewall filter add action=accept chain=input comment="WinBox Wan Administration" disabled=no \ dst-port=8291 protocol=tcp It works, but now i am wondering.... How can you...