Community discussions

MikroTik App

Search found 383 matches

  • 1
  • 2
by cylent
Mon Sep 02, 2019 9:09 am
Forum: General
Topic: not working: IKEv2_EAP_between_NordVPN_and_RouterOS
Replies: 12
Views: 4527

Re: not working: IKEv2_EAP_between_NordVPN_and_RouterOS

I have to correct myself. I wrote using source adress was not possible on a single router/device and that was not correct. I am using more than one tunnel at the same time so I never was able to use source address. In your case you have to choose one of them, and as you use a range of your local ne...
by cylent
Sun Sep 01, 2019 11:49 pm
Forum: General
Topic: not working: IKEv2_EAP_between_NordVPN_and_RouterOS
Replies: 12
Views: 4527

Re: not working: IKEv2_EAP_between_NordVPN_and_RouterOS

You was mixing routing and connection marking. I would start again with the info page of Mikrotik self and only use connection marking. i dont think so. nevertheless, i may reset the router and start again. cause this is just frustrating me. [admin@...] /ip firewall mangle> print Flags: X - disable...
by cylent
Sun Sep 01, 2019 10:37 pm
Forum: General
Topic: not working: IKEv2_EAP_between_NordVPN_and_RouterOS
Replies: 12
Views: 4527

Re: not working: IKEv2_EAP_between_NordVPN_and_RouterOS

Change to: /ip ipsec mode-config add connection-mark=nord name=NordVPN responder=no /ip firewall mangle add action=mark-connection chain=prerouting new-connection-mark=nord passthrough=yes src-address=192.168.88.10-192.168.88.254 Offered a router setup to put yours in. i added the parameters you ex...
by cylent
Sun Sep 01, 2019 12:21 pm
Forum: General
Topic: not working: IKEv2_EAP_between_NordVPN_and_RouterOS
Replies: 12
Views: 4527

Re: not working: IKEv2_EAP_between_NordVPN_and_RouterOS

This is not the solution, but you should not use mark-routing when using a single router. Only Connection marking (mark-connection) is to be used. The IKEv2 joins the WAN and has so no separate interface and only uses the dynamic NAT to get the traffic to the WAN. so whats the solution then? the ma...
by cylent
Sun Sep 01, 2019 5:51 am
Forum: General
Topic: not working: IKEv2_EAP_between_NordVPN_and_RouterOS
Replies: 12
Views: 4527

not working: IKEv2_EAP_between_NordVPN_and_RouterOS

can someone assist me in this. i dont know what i am missing or doing wrong. i followed the guide here and was successful to every part BUT i am not sure why theres no connection or what i am missing to make this work. https://support.nordvpn.com/Connectivity/Router/1360295132/Mikrotik-IKEv2-setup-w...
by cylent
Fri Feb 08, 2019 7:57 am
Forum: General
Topic: Route clients via pptp client connection. How?
Replies: 0
Views: 826

Route clients via pptp client connection. How?

This should be simple but I am not having any success. I formatted the router and plugged in the lan cable and accepted the default configuration mikrotik suggests. The lan cable coming in from the adsl modem into port 1 on the mikrotik router. Wireless and internet works. Now, I want to add a clien...
by cylent
Sun Mar 08, 2015 5:38 pm
Forum: General
Topic: Pcc detection by isp
Replies: 1
Views: 839

Re: Pcc detection by isp

all the mikrotik professionals have no answer?

how odd.
by cylent
Mon Mar 02, 2015 5:32 pm
Forum: General
Topic: Pcc detection by isp
Replies: 1
Views: 839

Pcc detection by isp

I am curious and some providers have claimed that they can detect clients that take advantage of using pcc... Is this possible?
by cylent
Wed Jul 23, 2014 11:23 pm
Forum: General
Topic: split lan into 3 sections for 3 pppoe out
Replies: 1
Views: 941

split lan into 3 sections for 3 pppoe out

What i want to do is very simple for some but is confusing for me. Basically I have 3 pppoe (WAN) connections. I have a local Hotspot subnet of 192.168.99.0/24 I want to split these guys up so a range of 192.168.99.2 to 192.168.99.50 goes to PPPOE1 192.168.99.51 to 192.168.99.100 goes to PPPOE2 and ...
by cylent
Sat Feb 08, 2014 5:51 pm
Forum: Beginner Basics
Topic: Two WAN routers on one LAN
Replies: 2
Views: 1431

Two WAN routers on one LAN

Whats a good way to share two gateways (routers) on one LAN? What i mean is i have two WAN connections. One static IP and one PPPoE ... right now i am running off the Static IP and all is well. I want to add the second connection which is the PPPoE and have my LAN benefit from both. At times the PPP...
by cylent
Sun Jan 05, 2014 6:50 pm
Forum: Wireless Networking
Topic: wifi on routerboard is bad compared to ubnt picostation
Replies: 2
Views: 1846

wifi on routerboard is bad compared to ubnt picostation

ok the subject says it all. i'll explain. i've been struggling with the wifi on my routerboard which has a AR5213 mini-pci card. when the wifi (AR5213) on the routerboard is active and i use it from my laptop and i ping the routerboard i get mad crazy pings of 100's to 500's to 1000's and even lots ...
by cylent
Sun Dec 22, 2013 8:20 pm
Forum: Wireless Networking
Topic: ping to router very high on G/N mode.
Replies: 2
Views: 1392

Re: ping to router very high on G/N mode.

Thanks for the reply, JP_Wireless

as i said this is also the same exact problem on the rb2011 which has a built in wifi. they are both (the rb600 and the rb2011) using version 6.7....
by cylent
Sun Dec 22, 2013 7:03 pm
Forum: Wireless Networking
Topic: ping to router very high on G/N mode.
Replies: 2
Views: 1392

ping to router very high on G/N mode.

This is a weird one. at least for me. I am having trouble with switching my wifi to anything other than B mode. if i switch to G my ping rockets from 1-10ms to 200ms+ with freezes randomly on the laptop/android/anything. if i switch to B/G/N same thing N by itself. same thing. The only thing that wo...
by cylent
Mon Jul 29, 2013 2:47 pm
Forum: General
Topic: src address 255.255.255.255 and dst 0.0.0.0 causing traffic
Replies: 1
Views: 2562

src address 255.255.255.255 and dst 0.0.0.0 causing traffic

This is an odd one.

In my /tool torch i see traffic being generated from "SRC Address: 255.255.255.255" and "Dst Address: 0.0.0.0/0"

What could this be and how do trace/fix?

please advise.
by cylent
Wed Jul 17, 2013 6:26 am
Forum: General
Topic: force rootmac on bridge
Replies: 0
Views: 605

force rootmac on bridge

quick question ... i have a bridge type setup in my environment. almost all of my routers are merely bridges. so for example my main router that does everything (hotspot and pppoe + provide internet) has ports 2-6 bridged. then i have a 9 port rb2011 connected to the main router above via cable. the...
by cylent
Tue Jul 16, 2013 3:29 pm
Forum: General
Topic: Slow net from Rb751 connected to main router
Replies: 2
Views: 1152

Re: Slow net from Rb751 connected to main router

RB751: /interface bridge add admin-mac=D4:CA:6D:80:B7:FF ageing-time=5m arp=enabled auto-mac=no disabled=no forward-delay=15s l2mtu=1600 max-message-age=20s mtu=1500 name=bridge-local priority=\ 0x8000 protocol-mode=rstp transmit-hold-count=6 /interface ethernet set 0 arp=enabled auto-negotiation=ye...
by cylent
Mon Jul 15, 2013 11:32 pm
Forum: General
Topic: Slow net from Rb751 connected to main router
Replies: 2
Views: 1152

Slow net from Rb751 connected to main router

Please first see attached picture. The problem: The RB751 Access point is getting a Lan cable from the router above. All ports on the access point are bridged (wifi also) ... I've given the bridge on the RB751 an IP address on a different subnet though, 192.168.160.5/24. There is no route or any co...
by cylent
Sun Jul 14, 2013 7:39 pm
Forum: General
Topic: equal bandwidth sharing for users + rule to override
Replies: 0
Views: 613

equal bandwidth sharing for users + rule to override

I am trying to follow the example at the end of this page : http://www.mikrotik.com/testdocs/ros/2.9/root/queue_content.php#6.54.6.3 for my router. Now. the question remaining is this: ok so i setup that example for an 11meg up 11meg down connection. i have a boss who wants to be ONTOP of these rule...
by cylent
Thu Feb 21, 2013 5:30 am
Forum: General
Topic: basic port foward easily achieved by cheap routers. NOTonMT
Replies: 11
Views: 2779

Re: basic port foward easily achieved by cheap routers. NOTo

ether5 is 192.168.8.2/29

server is 192.168.8.1/29
by cylent
Thu Feb 21, 2013 12:24 am
Forum: General
Topic: basic port foward easily achieved by cheap routers. NOTonMT
Replies: 11
Views: 2779

Re: basic port foward easily achieved by cheap routers. NOTo

The server (192.168.8.1) is on an interface thats no where near the hotspot/pppoe on the mikrotik.

Ether1 is for net.
Ether5 is for the server (192.168.8.1)
ports 6-11 are bridged to make one port and thats what the hotspot/pppoe is on.
by cylent
Wed Feb 20, 2013 8:39 pm
Forum: General
Topic: basic port foward easily achieved by cheap routers. NOTonMT
Replies: 11
Views: 2779

Re: basic port foward easily achieved by cheap routers. NOTo

I don't want to sound rude but that's not much help. I've already created that rule missing only the external ip as in the example 69.69.69.69
The problem here is how can a simple cheap routes be it tp_link or linksys do what's needed so easily while I can't do it in RouterOS
by cylent
Wed Feb 20, 2013 4:34 pm
Forum: General
Topic: basic port foward easily achieved by cheap routers. NOTonMT
Replies: 11
Views: 2779

basic port foward easily achieved by cheap routers. NOTonMT

I've been fighting with this issue for a few days now. I have a server behind my RB1100 that has HotSpot/PPPoE. All seems to be working just fine for the MTRouter which is great. I just need to port forward port 8787 so when i type my external IP with port 8787 (1xx.224.27.xxx:8787) it sends me to m...
by cylent
Sun Feb 03, 2013 9:25 am
Forum: General
Topic: Unknown MAC in hotspot with many IPs
Replies: 0
Views: 570

Unknown MAC in hotspot with many IPs

I have an odd problem thats somewhat confusing. One mac addresses connected with different IP addresses issued from the DHCP server. The MAC address database says its a "Sony Ericsson Mobile Communications" device. So i figured it's a phone. But why does it have so many IPs and all of them...
by cylent
Sat Jan 19, 2013 4:33 pm
Forum: General
Topic: route per "content" to different gateway
Replies: 0
Views: 531

route per "content" to different gateway

Ok this should be simple and straight forward. /ip firewall mangle chain=prerouting action=mark-routing new-routing-mark=facebook passthrough=n> in-interface=Users-br-6-10 content=facebook basically we are looking for packets that contain the work "facebook" and mark routing for them then ...
by cylent
Thu Jan 17, 2013 12:49 am
Forum: Beginner Basics
Topic: copy config from rb493 to rb1100
Replies: 1
Views: 757

copy config from rb493 to rb1100

Whats the easiest way to copy the config from a rb493 to a rb1100 without doing everything manually?

i know the export command however the port numbers and mac address are different on the two routers.

please advise.
by cylent
Sun Jan 13, 2013 9:56 pm
Forum: General
Topic: Recommendation for a home wifi system (a/n and b/g/n)
Replies: 4
Views: 1448

Recommendation for a home wifi system (a/n and b/g/n)

I need to setup wifi at a house thats actually more of an office. every room is an office... somewhat. so signal is literally very important. I wanted to have dual radios (a/n and b/g/n) in a few routerboards ... the only one that looks/is easy to setup is the rb2011-wifi but thats only 2.4 and i ne...
by cylent
Thu Jan 10, 2013 3:18 am
Forum: General
Topic: a way around multiple pppoe logins from one mac
Replies: 7
Views: 3379

Re: a way around multiple pppoe logins from one mac

Are you trying to use some kind of free service? If the bearer circuit can support 30 x PPPoE then it would be a lot easier if you could just pay the ISP for 30x bandwidth on one session.... its not free service. unfortunately the guy in charge says its a system wide policy and not worth the hassle.
by cylent
Wed Jan 09, 2013 7:16 pm
Forum: General
Topic: a way around multiple pppoe logins from one mac
Replies: 7
Views: 3379

Re: a way around multiple pppoe logins from one mac

What do you want to achieve? - Your goal is to deliver ISP logins to your network, is it correct? - Once router is added between your clients and your ISP, I guess you can simply add PPPoE client to outgoing interface and setup PPPoE server on router and provide clients with PPPoE service (locally ...
by cylent
Wed Jan 09, 2013 7:13 pm
Forum: General
Topic: vifX and ether1 on bridge cant see pppoe server
Replies: 1
Views: 620

Re: vifX and ether1 on bridge cant see pppoe server

anybody got any ideas? this is soo frustrating.
by cylent
Wed Jan 09, 2013 2:49 am
Forum: General
Topic: vifX and ether1 on bridge cant see pppoe server
Replies: 1
Views: 620

vifX and ether1 on bridge cant see pppoe server

Ok this is somewhat a mess... i expected it to work and it isnt working. i have 30 virtual ethernet ports. all in one bridge with ether1 this is bridge1. i then created pppoe-dialout-client accounts. on each pppoe-client account i chose vif1, vif2 and so on. but it cant find the pppoe server. only i...
by cylent
Mon Jan 07, 2013 6:17 pm
Forum: General
Topic: a way around multiple pppoe logins from one mac
Replies: 7
Views: 3379

Re: a way around multiple pppoe logins from one mac

I'm not sure I correctly understand your description. However, if ISP PPPoE server has restrictions for one mac and single login, it is more correctly to contact them and ask about possible solutions. If you have your own router between ISP and clients, put PPPoE client on public interface and dist...
by cylent
Sun Jan 06, 2013 6:30 am
Forum: General
Topic: RB1100AH issues on 6.0rc6
Replies: 2
Views: 897

Re: RB1100AH issues on 6.0rc6

anybody?
by cylent
Sat Jan 05, 2013 8:42 pm
Forum: General
Topic: RB1100AH issues on 6.0rc6
Replies: 2
Views: 897

RB1100AH issues on 6.0rc6

I purchased a RB1100AH today in hopes it'd be sufficient for what i want. i installed on it 6.0rc6 however i noticed a few oddities. 1) In the interfaces menu there is no "Virtual Ethernet" option. Its simply is not there.... its missing. on my home rb2011 the menu IS there. why is it miss...
by cylent
Fri Jan 04, 2013 5:25 pm
Forum: General
Topic: a way around multiple pppoe logins from one mac
Replies: 7
Views: 3379

a way around multiple pppoe logins from one mac

Hello All. After some time trying to figure out the reason to my multiple-pppoe gateway issue i found the problem to be "one session per host" is enabled. On my test bed I created a pppoe server and my test router. Obviously i wanted to make it as close to what the provider has as possible...
by cylent
Fri Jan 04, 2013 4:46 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

i am so happy i found the problem. on my test pppoe server i had "one session per host" selected and thus it wasnt allowing multiple pppoe sessions to work at the same time. now my fear is the ISP may have that option selected also and i am probably sure they do. is there a way to have eac...
by cylent
Fri Jan 04, 2013 2:02 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

Ok i rearranged everything into one subnet. still having the same 1 pc pauses while another goes then the other pauses. my question is in the nat rules do i have to specify the "out-interface" to be the pppoe-out connection corresponding to that rule? also in the mangle rules should the in...
by cylent
Thu Jan 03, 2013 11:36 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

ok ok ok now i understand. one subnet 192.168.10.0/24 and separate mangle rules with "src-address=192.168.10.2-192.168.10.5" for each mangle rule and then go with that. this is great! no need to worry about dhcp problems and only one gateway as you said. i'll proceed to try this. in refere...
by cylent
Thu Jan 03, 2013 10:47 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

As far as I see the 3 different subnets are all on the same physical network so quite what purpose they server is a mystery to me. You can specify IP ranges in the Src Address field of a mangle rule - so why not keep it simply and just use one subnet? I suspect that you went down that path because ...
by cylent
Thu Jan 03, 2013 9:09 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

part1: ok great i'll have to try again. i figured each subnet would be a pppoe-out connection. and it makes life easier on the mangle and nat rules in the src address box. for each subnet i want to have 3 pcs (192.168.10.2-192.168.10.5) 20.2-20.5 and so on. i am not sure i follow you on one subnet ...
by cylent
Thu Jan 03, 2013 8:33 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

i appreciate you assisting me on this issue, CelticComms lets pause on that routing issue for a minute and delve into the dhcp networks one. obviously i'd want a dhcp server with multiple pools to server the users. i can setup a dhcp server with a starting pool and have pool1 be next and pool2 and s...
by cylent
Thu Jan 03, 2013 7:26 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

e.g. add disabled=no distance=1 dst-address=192.168.10.0/29 gateway=LAN-Bridge routing-mark=\ 10users scope=30 target-scope=10 add disabled=no distance=1 dst-address=192.168.20.0/29 gateway=LAN-Bridge routing-mark=\ 20users scope=30 target-scope=10 add disabled=no distance=1 dst-address=192.168.30....
by cylent
Thu Jan 03, 2013 2:34 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

I suggest that you add routing entries to the relevant 192.168.x.y subnets with the appropriate routing marks
I don't understand can u pls show example
by cylent
Thu Jan 03, 2013 12:39 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

heres the problem so far. one machine would continue working and the would drop yet on the winbox it shows both PPPoE connections (clients) as connected. As if its giving machine B priority and ignoring machine A. They should both be working together. Yes. All PPPoE connections are going out on the ...
by cylent
Wed Jan 02, 2013 8:57 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

Re: lan users --> multiple pppoe gateways

i am not sure about pcc.
the thing is each bunch of clients have to go via one pppoe link cause each pppoe link only has so much bandwidth thus the next 3 or 4 people have to be on a different pppoe link.
by cylent
Wed Jan 02, 2013 8:09 pm
Forum: General
Topic: lan users --> multiple pppoe gateways
Replies: 18
Views: 4494

lan users --> multiple pppoe gateways

Ok here goes I would like your feedback if this is possible with RouterOS on a RB600 (as an example) To start with I have 16 users at the work location. Then i have 4 PPPoE accounts for internet access from the provider. What i want is to create 4 subnets each allowing ONLY 4 (ips) users. so i figur...
by cylent
Wed Jun 27, 2012 12:16 pm
Forum: Beginner Basics
Topic: is this doable? pppoe multiwan / multiple subnets
Replies: 5
Views: 2021

Re: is this doable? pppoe multiwan / multiple subnets

anybody want to help with this please?
can anyone help me with the mangle rules, please?
by cylent
Fri Apr 06, 2012 6:47 pm
Forum: General
Topic: block traffic from specific sites.
Replies: 4
Views: 2535

Re: block traffic from specific sites.

i tried to mark packets and apply a queue using mangle and content on "au.download.windowsupdate.com" and the mangle rule had hits but it didnt work. example sites: ardownload.adobe.com a1410.phobos.apple.com au.download.windowsupdate.com swcdn.apple.com a474.phobos.apple.com wl.dlservice....
by cylent
Fri Apr 06, 2012 6:08 pm
Forum: General
Topic: block traffic from specific sites.
Replies: 4
Views: 2535

block traffic from specific sites.

this may sound too easy for some but its not something i can figure out. lets say i want to block windowsupdate.com or download.windowsupdate.com or phobos.apple.com the problem is these sites dont have one ip address. most have 10 or even more and theres no way to figure them all out to drop traffi...
by cylent
Wed Apr 04, 2012 2:42 pm
Forum: General
Topic: layer7 regexp
Replies: 1
Views: 1022

layer7 regexp

how do you type the following for layer7 regexp matching?

http://www.yahoo.com/

or

http://www.facebook.com/

or

http://live.login.com

?
by cylent
Wed Apr 04, 2012 2:38 pm
Forum: General
Topic: mangle content catpure anaysis..
Replies: 0
Views: 758

mangle content catpure anaysis..

I am trying to use wireshark to sniff the traffic so i can fill in the mangle content field properly. i am basically trying to see what the packet says for yahoo and by the picture attached i am seeing its separating things. when i type the word in the "mangle content" box. do i type in &q...
by cylent
Wed Apr 04, 2012 7:15 am
Forum: Scripting
Topic: Need Help In Layer7 || isolation between Browsing , download
Replies: 41
Views: 26407

Re: Need Help In Layer7 || isolation between Browsing , down

very nice.

now i get to catch all those .cab windows updates machines!
by cylent
Tue Apr 03, 2012 3:27 pm
Forum: General
Topic: [SOLVED]An Interesting Challenge... ~or~ Choking Youtube...
Replies: 6
Views: 4043

Re: [SOLVED]An Interesting Challenge... ~or~ Choking Youtube

this is a wonderful solution...

dont know how people wont start abusing it because you maybe giving priority to lets say facebook.com and all of a sudden they are feeding crap from that.

it would also be nice to unify or lessen the rules?
by cylent
Tue Apr 03, 2012 1:03 pm
Forum: General
Topic: give some websites at different speeds to the user
Replies: 4
Views: 1282

Re: give some websites at different speeds to the user

anybody got any feedback on this?

again; i want to basically give www.msn.com or whatever.com full speed instead of the limit set on the user.

is this even possible?
by cylent
Mon Apr 02, 2012 10:40 pm
Forum: General
Topic: give some websites at different speeds to the user
Replies: 4
Views: 1282

give some websites at different speeds to the user

is it possible to mangle a website location for example http://www.gmail.com and give it to the user at higher speed?

unfortunately because i have disabled masquerading and i am forwarding all my clients to my squid cache its not an option to use the web proxy which will probably do what i want...
by cylent
Sun Apr 01, 2012 11:21 am
Forum: General
Topic: web proxy account spam
Replies: 4
Views: 1576

Re: web proxy account spam

like this?

X ;;; proxy is NOT a Open Proxy
chain=input action=drop protocol=tcp in-interface=Net-5 dst-port=8080
by cylent
Sun Apr 01, 2012 11:19 am
Forum: General
Topic: give users cached squid files at full speed
Replies: 3
Views: 1975

Re: give users cached squid files at full speed

thanks, i actually referred back to your guide and it worked wonderfully.

except not for pppoe users.
by cylent
Sun Apr 01, 2012 7:15 am
Forum: General
Topic: web proxy account spam
Replies: 4
Views: 1576

Re: web proxy account spam

does nobody know how to filter this so it wont show?
by cylent
Sun Apr 01, 2012 5:12 am
Forum: General
Topic: give users cached squid files at full speed
Replies: 3
Views: 1975

give users cached squid files at full speed

ok so i am configuring my squid box to cache files that are large in size. for example, .exe, .dmg, .ipa and so on. the only problem is the mikrotik router downloads these files to the user at regular speeds. since they are from my local network i need them to be at full speeds. can we set a rule th...
by cylent
Sat Mar 31, 2012 8:39 pm
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

Re: block rogue dhcp traffic

tjc: wow. literally. wow! this feature is absolutely amazing! it found two servers on my network instantly!!!! a tp-link and a netgear. but i am 100% sure i disabled those after finding them. i wonder ... now for the scripting. can you show us by script on how to block these two macs? please :D :mrg...
by cylent
Sat Mar 31, 2012 9:02 am
Forum: General
Topic: web proxy account spam
Replies: 4
Views: 1576

web proxy account spam

in my system logging i have:

10 account memory

yet i keep seeing these annoying messages that filling the log window :: (see attached)
by cylent
Sat Mar 31, 2012 7:15 am
Forum: General
Topic: Connect to one website always through just one Provider
Replies: 3
Views: 935

Re: Connect to one website always through just one Provider

wow what a disaster

mt really has no simple way to do things for those inexperienced.
you have to do 4 things to perform 1 task.

prerouting, postrouting, in, out, ..... does it end?
by cylent
Fri Mar 30, 2012 10:09 pm
Forum: General
Topic: masquerade all users except for one.
Replies: 5
Views: 1316

Re: masquerade all users except for one.

whats the ! do i never quite understood that?
by cylent
Fri Mar 30, 2012 9:41 pm
Forum: General
Topic: masquerade all users except for one.
Replies: 5
Views: 1316

Re: masquerade all users except for one.

i assume /32 makes it only one pc?
do i really need to put /32? cant it just be 192.168.5.15 ?
by cylent
Fri Mar 30, 2012 6:47 pm
Forum: General
Topic: forward all traffic and use router only for hotspot/pppoe
Replies: 1
Views: 1010

forward all traffic and use router only for hotspot/pppoe

i am trying to basically use my pfsense installation to do some, if not, most of the firewalling for me and my users. currently i am forwarding all http traffic by mangling it to pfsense to keep track of users activity via these rules: /ip firewall mangle chain=prerouting action=mark-routing new-rou...
by cylent
Fri Mar 30, 2012 6:23 pm
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

Re: block rogue dhcp traffic

what about disabling forwarding on the wireless link ? or is that irrelevant?
by cylent
Fri Mar 30, 2012 2:54 pm
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

Re: block rogue dhcp traffic

wow thanks for that great reply, jvr. this would be my very first time working on vlans... doesnt sound all that difficult.. i think option 3 would be to work on creating a firewall filter on the sxts. currently i have the system setup like this: main office internet --sxt bridge <--> sxt station br...
by cylent
Fri Mar 30, 2012 11:19 am
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

Re: block rogue dhcp traffic

Feklar: sadly the most powerful managed switch my company has is a poweredge 2748 and it doesnt have anything near that feature. jvr: yes. via switch so (question-1)what i dont understand still is this: i have a dhcp server running on my network for hotspot. the clients all have dhcp ips issued to t...
by cylent
Thu Mar 29, 2012 8:32 pm
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

Re: block rogue dhcp traffic

thank you for the quick reply. i have done this so far... i have enabled authoritative=yes on my dhcp server in routeros then i set a filter rule ;;; rogue dhcp chain=input action=drop protocol=udp src-address=192.168.0.0/16 src-port=67-68 whats funny about this rule is i am seeing traffic grow rapi...
by cylent
Thu Mar 29, 2012 7:49 pm
Forum: General
Topic: block rogue dhcp traffic
Replies: 18
Views: 26770

block rogue dhcp traffic

hello all. today i had a problem wtih rogue dhcp traffic from users plugging in their routers returning dhcp onto my hotspot causing a problem. i found this in the wiki however i dont use a bridge as in the example. can someone help please? http://wiki.mikrotik.com/wiki/Bridge_Filter_-_Blocking_DHCP...
by cylent
Wed Mar 28, 2012 9:57 am
Forum: General
Topic: masquerade all users except for one.
Replies: 5
Views: 1316

masquerade all users except for one.

how can i disable nat for one specific user on the network? for example my hotspot network is 192.168.5.0/24 well i have user 192.168.5.15 who i need to disable masquerading for because i am creating a mangle rule to mark routing for and pass it elsewhere. the problem is the main masquerading rule i...
by cylent
Tue Mar 27, 2012 12:47 pm
Forum: General
Topic: cache hit from squid as well as webproxy
Replies: 1
Views: 2232

cache hit from squid as well as webproxy

I have somewhat succeeded in this but half way i am trying to push out whats in the proxy cache at full speeds to the user over-riding their speed limit. first, i have hotspot and pppoe on my router. i have then enabled transparent proxy with: ;;; transparent proxy chain=dstnat action=redirect to-po...
by cylent
Sat Mar 24, 2012 8:07 pm
Forum: Scripting
Topic: example script to change speed at given time
Replies: 1
Views: 863

example script to change speed at given time

can someone please demonstrate by example a simple script to change port speed at a given time?

so for example at 8am change ether1 to 2Mb speed.
by cylent
Tue Mar 20, 2012 5:09 am
Forum: Forwarding Protocols
Topic: Adsl multi link (Aggregation)
Replies: 3
Views: 2648

Re: Adsl multi link (Aggregation)

it wont be 3 links = 1 speed.
it'll be "pick the best one" or "random" at times.

the sad answer is: it'll never work. and you'll always end up using the slowest link out of the 3 or you'll end up overloading one and the other 2 get unused.
by cylent
Tue Mar 20, 2012 4:33 am
Forum: General
Topic: Thundercache
Replies: 20
Views: 10981

Re: Thundercache

its absolute rubbish. i wasted a whole day messing with it and it did what for me? NOTHING! hardly did it ever cache anything. it kept saying every website i went to had dynamic content and is not cache'able. and thats true because the web today is all dynamic. gone are the days of yahoo.com or msn....
by cylent
Mon Mar 19, 2012 3:33 pm
Forum: General
Topic: syslog program to keep track of things.
Replies: 3
Views: 1099

Re: syslog program to keep track of things.

hmm. didnt know it had that feature. i'll give it a shot.
by cylent
Sun Mar 18, 2012 2:43 pm
Forum: General
Topic: send "logoff" to http://192.168.0.50/logout
Replies: 3
Views: 2691

Re: send "logoff" to http://192.168.0.50/logout

so in the end... whats the working solution ? :? :lol:
by cylent
Sun Mar 18, 2012 9:10 am
Forum: General
Topic: Thundercache
Replies: 20
Views: 10981

Re: Thundercache

ah. so its a script. now i know why when you google thundercache you get so many results...

i dont care about youtube caching. i want a script that opens concurrent sessions.
by cylent
Sat Mar 17, 2012 9:08 pm
Forum: General
Topic: send "logoff" to http://192.168.0.50/logout
Replies: 3
Views: 2691

send "logoff" to http://192.168.0.50/logout

what would be the best way to perform the following?

a user to type in "logout" in the address bar for internet explorer, chrome, firefox, and get the hotspot logoff page?
so i type in "logoff" and i get sent to http://192.168.0.50/logout

is this a static ip or a proxy redirect?
by cylent
Sat Mar 17, 2012 9:00 pm
Forum: General
Topic: syslog program to keep track of things.
Replies: 3
Views: 1099

syslog program to keep track of things.

ok so i decieded to transfer all my users database to a radius server (Radius Manager 4). and while its a great product i feel like i am lacking the ability to keep track of the logs. if i enable in the logging "Radius --> memory" i cant keep track of anything! i mean fine i can enable hot...
by cylent
Fri Mar 16, 2012 9:39 pm
Forum: General
Topic: Hotspot page for mobile phone!
Replies: 4
Views: 5660

Re: Hotspot page for mobile phone!

cool idea. keep up the good work.
by cylent
Wed Mar 14, 2012 6:57 pm
Forum: General
Topic: forward hotspot/pppoe ip to proxy.
Replies: 2
Views: 2053

Re: forward hotspot/pppoe ip to proxy.

Hi, Squid see the IP 192.168.7.5 because you are routing your client. try to do this modify at your settings: chain=srcnat action=masquerade src-address=192.168.99.0/24 dst-address=![IP of your squid server] out-interface=Net-5 so this replaces the other masquerade rule ? and all the other rules in...
by cylent
Wed Mar 14, 2012 3:40 pm
Forum: General
Topic: forward hotspot/pppoe ip to proxy.
Replies: 2
Views: 2053

forward hotspot/pppoe ip to proxy.

I am trying to accomplish this and i have followed Syed Janazaibs' guide on how to do it except on my setup i only have ONE external and thats going directly to my untangle filter. In the guide he has two externals -- one going to the proxy and one going to the net. my setup is simple: we have Hotsp...
by cylent
Thu Mar 08, 2012 8:38 pm
Forum: The User Manager
Topic: Refill Card
Replies: 18
Views: 9685

Re: Refill Card

this is a great product and it puts usermanager to shame. of course who was expecting usermanager to be anything but a toy is in for a surprise.

still though what other products are there to compete with RADman?
by cylent
Thu Mar 08, 2012 8:09 pm
Forum: The User Manager
Topic: UM 5.7 not showing active users
Replies: 4
Views: 3534

Re: UM 5.7 not showing active users

how funny. :lol: :lol:

posted jan 24th and today is march 8th. still no reply.

this is very awful from mikrotik.

still though the answer is its probably a bug. log out, log back in and it shows users.
by cylent
Thu Mar 08, 2012 1:03 pm
Forum: The User Manager
Topic: Active sessions and Active users NOT refreshing.
Replies: 5
Views: 3559

Active sessions and Active users NOT refreshing.

1 A sessions
&
1 A users

even though there is no one logged in and i forced the user off (disconnect) it still shows that ...

only after i logout and log back in does it correctly show 0.

is this a bug or a feature? shouldnt it refresh the number when no user is active?
by cylent
Thu Mar 08, 2012 9:09 am
Forum: General
Topic: failed to add queue. Rate limit problem in user manager
Replies: 0
Views: 558

failed to add queue. Rate limit problem in user manager

I am having trouble adding rate limits into user manager profiles. These rate limits work fine under hotspot profiles. i am merely trying to duplicate them so i can use user manager instead ... for some reason however its failing to add the queue. also, why is it a small "k" isnt acceptabl...
by cylent
Wed Mar 07, 2012 5:09 am
Forum: Wireless Networking
Topic: PPPoE + Hotspot + DHCP bridged over SXTs
Replies: 2
Views: 1122

Re: PPPoE + Hotspot + DHCP bridged over SXTs

doesnt matter. went ahead and did it and it worked.
by cylent
Tue Mar 06, 2012 7:21 pm
Forum: Wireless Networking
Topic: PPPoE + Hotspot + DHCP bridged over SXTs
Replies: 2
Views: 1122

PPPoE + Hotspot + DHCP bridged over SXTs

hello all.

quick question,

is the illustration in the diagram attached workable?

multiple pppoe users + hotspot + dhcp bridged over two sxts ...
workable?
by cylent
Sat Feb 25, 2012 6:01 pm
Forum: General
Topic: pppoe client not working
Replies: 3
Views: 1209

Re: pppoe client not working

the only difference i have is nat masquerade set to source ip 192.168.10.0/24.

what do you mean : nat on ppp-out interface? can you show rule please?
by cylent
Sat Feb 25, 2012 10:31 am
Forum: General
Topic: pppoe client not working
Replies: 3
Views: 1209

pppoe client not working

you'd think this would be easy to setup... but its not. i am dedicating a full routerboard to be a pppoe client for my home network. i've setup pppoe client with the proper username and password i've enabled NAT masquerading and i've setup a small dhcp server. the only problem is it sits there sayin...
by cylent
Sat Feb 25, 2012 8:16 am
Forum: Beginner Basics
Topic: is this doable? pppoe multiwan / multiple subnets
Replies: 5
Views: 2021

Re: is this doable? pppoe multiwan / multiple subnets

can anyone help me with the mangle rules, please?
by cylent
Fri Feb 24, 2012 3:22 pm
Forum: Beginner Basics
Topic: is this doable? pppoe multiwan / multiple subnets
Replies: 5
Views: 2021

Re: is this doable? pppoe multiwan / multiple subnets

Sure. For DHCP just set several dhcp pools and set them in chain ' when one is used up it will switch to next. To route specific users to specific pppoe interface you have to use mark routing. It's pretty much basic setup that you may learn form manual. In principle, you use mangle to set routing m...
by cylent
Fri Feb 24, 2012 12:43 pm
Forum: Beginner Basics
Topic: is this doable? pppoe multiwan / multiple subnets
Replies: 5
Views: 2021

is this doable? pppoe multiwan / multiple subnets

I would like your feedback if this is possible with RouterOS on a RB600 (as an example) To start with I have 16 users at the work location. Then i have 4 PPPoE accounts for internet access from the provider. What i want is to create 4 subnets each allowing ONLY 4 (ips) users. so i figured i'd use th...
by cylent
Wed Feb 08, 2012 7:28 pm
Forum: General
Topic: gateway timeout -- web proxy with parent proxy
Replies: 1
Views: 1397

gateway timeout -- web proxy with parent proxy

odd problem ;; on my routeros i have configured a rule to make transparent proxy redirect all traffic via web-proxy. then on web-proxy i enabled parent proxy and put in my TMG (Forefront Threat Management Gateway) ip and port. now. everything started to work and i can see all traffic working fine vi...
by cylent
Sat Jan 07, 2012 7:32 am
Forum: General
Topic: RX Limiting not supported on this interface.
Replies: 3
Views: 6319

Re: RX Limiting not supported on this interface.

This is interesting for me too cause i need to limit rx and tx.
tx limiting is not an issue because i can limit that and that works.
however rx. why cant we limit rx?

is there another way around this though? perhaps a simple queue?
by cylent
Thu Jan 05, 2012 9:44 pm
Forum: General
Topic: port doesnt show traffic... its master port does.
Replies: 1
Views: 562

Re: port doesnt show traffic... its master port does.

[[update: i disabled the master port setting on the ports and added them all to one bridge. its working as intended and traffic is passing through just fine.]]
by cylent
Thu Jan 05, 2012 9:23 pm
Forum: General
Topic: port doesnt show traffic... its master port does.
Replies: 1
Views: 562

port doesnt show traffic... its master port does.

ok i have to admit this is a cheap and lame way of turning a Mikrotik 493G device into a "managed" switch but i am limited when it comes to money. the problem is this: on the ports it doesnt show the traffic. it only shows the traffic on master port for the port selected. so if i am passin...
by cylent
Sun Dec 04, 2011 4:50 am
Forum: General
Topic: cant reach rb250g switch even though its on same subnet
Replies: 4
Views: 1301

Re: cant reach rb250g switch even though its on same subnet

Assign f.ex 192.168.6.0/24 as the extra network on the wan side, change the rb250 to 192.168.6.0/24 network. But yes, it does not make any sense to have the 192.168.5.0/24 on both sides of of the firewall. You either have to change the the network on the wan or lan side, or make another solution wi...
by cylent
Sat Dec 03, 2011 2:24 pm
Forum: General
Topic: cant reach rb250g switch even though its on same subnet
Replies: 4
Views: 1301

Re: cant reach rb250g switch even though its on same subnet

Do you use the same subnet on both sides of the firewall. Change to a different subnet on rb250 and assign one extra address to the firewall on the wan side. i was thinking about that... changing the ip on the rb250 however to what? the rb250 is on the external interface for the TMG box. what do yo...
by cylent
Sat Dec 03, 2011 9:53 am
Forum: General
Topic: cant reach rb250g switch even though its on same subnet
Replies: 4
Views: 1301

cant reach rb250g switch even though its on same subnet

the subject says it (sort of) the setup for my network is a simple one. i am using the rb250g switch to be the main source for the internet. so internet --> rb250g switch --> firewall tmg switch --> domain --> users. even if i log into the firewall tmg machine i cant ping the rb250g switch! it has a...
by cylent
Thu Dec 01, 2011 12:01 pm
Forum: General
Topic: RB493G switch 8 ports
Replies: 14
Views: 6556

Re: RB493G switch 8 ports

It will work as one switch, but actually its two switches bridged together: switch <-> bridge <-> switch. i did a bandwidth test and the CPU rose to the roof (100%). good news is i was getting 400mb (50MB). not the best but still a useable number. certainty does defeat the name "Gigabit port&q...
by cylent
Thu Dec 01, 2011 9:40 am
Forum: General
Topic: RB493G switch 8 ports
Replies: 14
Views: 6556

Re: RB493G switch 8 ports

by the way the blink button doesnt do anything . ... i assume a cable has to be plugged in for it to do its function? back to the subject; for ether 1 i slaved 6,7,8,9 for ether 2 i slaved 3,4,5 then i bridged ether 1 and ether2. this should work... Right? now i have one switch? second question; i n...
by cylent
Wed Nov 30, 2011 2:24 pm
Forum: General
Topic: RB493G switch 8 ports
Replies: 14
Views: 6556

Re: RB493G switch 8 ports

Ether1,ether6-ether9 ports are connected to switch-chip1, ether2-ether5 are connected to switch-chip2. Any of the port from switch-chip1 or switch-chip2 can be configured as master-port by assigning assign other port from the same switch as its slave port. There can only be one master-port per each...
by cylent
Wed Nov 30, 2011 1:57 pm
Forum: General
Topic: RB493G switch 8 ports
Replies: 14
Views: 6556

Re: RB493G switch 8 ports

It is not possible to switch 8 ports in single switch group. However you can make ether1+ether6-ether9 and ether2-ether5 switch groups and then bridge the master-ports. can you please explain this part a bit more? so ether1 and ether6 are the master ports and 7-9 are slaves to 1 2-5 are slaves to 6...
by cylent
Wed Nov 30, 2011 1:53 pm
Forum: SwOS
Topic: cant upgrade 250gs
Replies: 2
Views: 2428

Re: cant upgrade 250gs

that worked. thanks.
by cylent
Wed Nov 30, 2011 1:50 pm
Forum: SwOS
Topic: cant upgrade 250gs
Replies: 2
Views: 2428

cant upgrade 250gs

so i just picked up a 250gs today. Its a cute little box for a cheap price. i tried to upgrade it to the latest 1.6 software however it keeps sitting there saying: Upgrading...(Please do not interrupt) this goes on for like an hour or so. also, is the firmware upgrade file, swos-1.6.lzb supposed to ...
by cylent
Wed Nov 30, 2011 7:51 am
Forum: General
Topic: rb600 5.9 missing interface settings/options.
Replies: 3
Views: 791

Re: rb600 5.9 missing interface settings/options.

The RB600 has no switch chip. Why you want to set master port?

Sent from my GT-N7000 using Tapatalk
interesting. yet it still works as a switch by grouping all ports into a bridge.
by cylent
Wed Nov 30, 2011 4:18 am
Forum: General
Topic: a routerboard to switch
Replies: 4
Views: 1504

Re: a routerboard to switch

My opinion: If you need a switch, buy a switch.
i want to make the routerboard into a switch so i can use it somewhat like a cisco.
cisco switches are very very expensive.
by cylent
Wed Nov 30, 2011 12:30 am
Forum: General
Topic: rb600 5.9 missing interface settings/options.
Replies: 3
Views: 791

rb600 5.9 missing interface settings/options.

well this is interesting.

i have a rb600a unit. i upgraded it to 5.9 and all went fine.
except in the interface settings i am missing a lot of options.
for example theres no master port option to create a switch

theres just so many options missing.

why?
by cylent
Tue Nov 29, 2011 10:56 pm
Forum: General
Topic: RB493G switch 8 ports
Replies: 14
Views: 6556

Re: RB493G switch 8 ports

It is not possible to switch 8 ports in single switch group. However you can make ether1+ether6-ether9 and ether2-ether5 switch groups and then bridge the master-ports. thats interesting. i was considering purchasing this rb for this purpose. now if i bridge ALL ports will it make all ports a switch?
by cylent
Tue Nov 29, 2011 10:54 pm
Forum: General
Topic: a routerboard to switch
Replies: 4
Views: 1504

a routerboard to switch

hello all. after a recent arp attack i had happen on my LAN i was advised to use a routerboard as a fancy "Cisco" switch. the idea of course is to monitor traffic via torch or any other means... although still somewhat a bit of a new area to me and after searching i figured out its a simpl...
by cylent
Thu Nov 03, 2011 7:53 am
Forum: General
Topic: HotSpot with Windows 2003 Active Directory
Replies: 3
Views: 1680

Re: HotSpot with Windows 2003 Active Directory

i know this is an old topic but i just had to point out how this idiot (akram) has a cracked version of routeros 3.22 running (in the screenshot). should be banned from the forums as far as i am concerned. :D
by cylent
Sat Aug 27, 2011 9:33 pm
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

thanks for the help so far.

anybody want to help out on this one, please?
by cylent
Sat Aug 27, 2011 8:57 am
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

sorry its not working for me. the minute i disable masquerading i cant open any website then or ping or anything. both your rules are 17 & 18 in the attached picture... masquerading is disabled and i have no net. if 17 & 18 are both enabled i get nowhere ... if even one of them is enabled i ...
by cylent
Thu Aug 25, 2011 5:15 pm
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

If you need the Untangle server to see the real IP address of the Hotspot client you have to exempt the Hotspot network from having its source IPs translated when being forwarded to the Untangle server. Add this: /ip firewall nat add chain=srcnat dst-address=192.168.5.1 src-address=192.168.99.0/24 ...
by cylent
Thu Aug 25, 2011 3:09 pm
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

ok heres the problem. most of my junk rules i have disabled and deleted so all that stands now are the hotspot rules made by the routeros system and your rule. my untangle box here is 192.168.5.1 [admin@MikroTik] > /interface print detail Flags: D - dynamic, X - disabled, R - running, S - slave 0 na...
by cylent
Thu Aug 25, 2011 11:58 am
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

doesnt work. in the web filter log it'll only show the routeros box external ip.
routeros isnt passing through the private ip for the filter to see.
by cylent
Wed Aug 24, 2011 1:13 pm
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Re: Forward private ip to filter

It's not masquerading. Masquerading is source NAT. You're trying to change where the packet is going to, so you need destination NAT. Assuming the web filter server has inside IP address 1.1.1.1: [code]/ip firewall nat add chain=dstnat protocol=tcp dst-port=80,8080,8888 action=dst-nat to-address=1....
by cylent
Wed Aug 24, 2011 10:40 am
Forum: Forwarding Protocols
Topic: Forward private ip to filter
Replies: 12
Views: 3993

Forward private ip to filter

hello all. i am installing a new untangle web filter server to basically do some filtering for web content. my plan is to set it up like this: internet <--> untangle <--> routeros <--> users. obviously the untangle box will have the public ip for the internet and the routeros will be inside of a pri...
by cylent
Wed Mar 16, 2011 2:12 pm
Forum: Beginner Basics
Topic: Transfer settings to new router
Replies: 1
Views: 2853

Transfer settings to new router

hello all i have new router that i bought (rb493ah) that i want to replace my rb600. I want to move ALL my settings to the new one. i was thinking of doing it by hand but thats so tedious. is there any easy way to do this? i looked at /export but the mac addresses are different and can cause a mess ...
by cylent
Wed Feb 23, 2011 7:37 am
Forum: General
Topic: DHCP Assigned and Deassigned
Replies: 10
Views: 23965

Re: DHCP Assigned and Deassigned

What time is set for Lease?
3d 00:00:00
by cylent
Wed Feb 09, 2011 8:49 pm
Forum: General
Topic: rb600a cpu usage
Replies: 0
Views: 545

rb600a cpu usage

this is very frustrating and i cant figure out why the cpu is always rising ... i have my RB600A setup for basic PPPoE server and i have hotspot on it too but most my users (no more than 30) logon via PPPoE. maybe 2 or 3 via hotspot. [admin@MikroTik] /system resource> print uptime: 1d6h24m38s versio...
by cylent
Wed Feb 09, 2011 5:00 pm
Forum: General
Topic: DHCP Assigned and Deassigned
Replies: 10
Views: 23965

DHCP Assigned and Deassigned

can someone help me figure out why this is happening... i am getting messages in the log like: dhcp1 deassigned 192.168.99.9 from <MAC ADDRESS> dhcp1 assigned 192.168.99.9 from <MAC ADDRESS> and so on... why is this happening and how to fix it? this is on a RB600 with RouterOS 4.16 Thanks
by cylent
Mon Dec 27, 2010 10:23 am
Forum: General
Topic: upgrade to 5.x from 4.11 (x86)
Replies: 1
Views: 1764

upgrade to 5.x from 4.11 (x86)

hello all. i am considering upgrading my current x86 4.11 router to 5.x due to webcfg interface. i like it and would like to take the plunge. i also wanted to ask (since i use the current web proxy).. has it improved in 5.x? is the web proxy more efficient? (this is a x86 pc as i said) please advise.
by cylent
Mon Sep 13, 2010 2:48 pm
Forum: Beginner Basics
Topic: forward internal ip to opendns for reports
Replies: 1
Views: 791

forward internal ip to opendns for reports

hello all. quick question .... i have an internal 172.16.0.0/24 pppoe network and i am using opendns filtering. it works great but because i am natting all ips show up as one. is it possible to forward the internal ip to opendns so that when i see the opendns report i see the 172.16.0.x ip that was ...
by cylent
Tue Sep 07, 2010 7:03 pm
Forum: Beginner Basics
Topic: Web Proxy is using a lot of Bandwidth
Replies: 7
Views: 1983

Re: Web Proxy is using a lot of Bandwidth

I am using this on a production router v3.30 Is this an issue that has been fixed in the newer versions, 4.10 maybe ?
no
by cylent
Sat Sep 04, 2010 4:20 pm
Forum: Beginner Basics
Topic: Web Proxy is using a lot of Bandwidth
Replies: 7
Views: 1983

Re: Web Proxy is using a lot of Bandwidth

this happened to me too. i called the isp and was complaining why my net was so slow. they said my upload was pretty much full (i had 3.25down/.75up) ... it was very very counter-productive. my version was 4.5 and i am on a RB600A ...... i dont know if this issue is reflected on version 5beta? this ...
by cylent
Sat Sep 04, 2010 4:01 pm
Forum: General
Topic: mikrotik pppoe with untangle
Replies: 1
Views: 934

Re: mikrotik pppoe with untangle

anybody?
by cylent
Fri Sep 03, 2010 9:45 pm
Forum: General
Topic: mikrotik pppoe with untangle
Replies: 1
Views: 934

mikrotik pppoe with untangle

hello all. i tried to get some help from the untangle people for this but no one knew how to get this done. untangle has a mode called bridge mode, as demonstrated on their website; http://wiki.untangle.com/index.php/Introduction#Untangle_Server_as_a_Bridge setup is simple: net -> mikrotik router ->...
by cylent
Mon May 24, 2010 2:32 pm
Forum: Beginner Basics
Topic: PPPoE Routing Drama
Replies: 1
Views: 1020

PPPoE Routing Drama

Ok this one is a difficlut one for me and I really am having trouble setting it up. Basically what i want to do is the following: setup a basic PPPoE server on my X86 Mikrotik Router system. for each two users on the pppoe server I want them to be routed via a PPPoE out client account. so for exampl...
by cylent
Fri Apr 16, 2010 1:55 pm
Forum: General
Topic: block a website (partially) with webproxy
Replies: 2
Views: 905

Re: block a website (partially) with webproxy

ok i got it.

thank you very much!!!
by cylent
Fri Apr 16, 2010 10:58 am
Forum: General
Topic: block a website (partially) with webproxy
Replies: 2
Views: 905

block a website (partially) with webproxy

although this one seems logically a simple one to solve its confusing me. what i want to do is block a partial part of the website via the web proxy. for example lets say i have http://www.msn.com/news/ all i want to do is block /news/ what i have done so far in the "ACCESS" page for the w...
by cylent
Sat Mar 06, 2010 10:16 am
Forum: General
Topic: web proxy with CF not working
Replies: 2
Views: 910

Re: web proxy with CF not working

never mind. it started to work.

i just played around with enabling and disabling the firewall NAT rule for the transparent proxy. it makes 0 sense but whatever. RouterOS Bug i guess.
by cylent
Sat Mar 06, 2010 8:05 am
Forum: General
Topic: web proxy with CF not working
Replies: 2
Views: 910

web proxy with CF not working

Ok this is ridiculously lame because for some reason i have no idea why its not working. My system is very very basic... nothing fancy. RB600 with Hotspot (no logon just a page with info) (10.1.1.1/24) i then have PPPoE server (172.16.0.0/24) both the above networks are bound to ether2 ether1 is for...
by cylent
Thu Jul 30, 2009 11:33 pm
Forum: Wireless Networking
Topic: r52n tx power low?
Replies: 5
Views: 2034

r52n tx power low?

hi all i obtained the r52n minipci module and was told it was similar to the r52h but when i plugged into the 433ah and booted it up (after upgrading to 4beta and updating key) its tx power in 5ghz mode is only 18dBm. from what i know 18 = 65mW ... this makes it nothing but a r52 with n capabilities...
by cylent
Mon Jul 13, 2009 7:54 pm
Forum: Wireless Networking
Topic: WDS - HowTo?
Replies: 4
Views: 2046

Re: WDS - HowTo?

ether1, 2, 3, 4 or however many + the wlans need to be part of the bridge.
by cylent
Fri Jul 03, 2009 3:31 pm
Forum: Wireless Networking
Topic: 5.8ghz non-overlapping channels
Replies: 0
Views: 911

5.8ghz non-overlapping channels

still new to the whole 5.8Ghz channel spectrum thing and was wondering if anyone had a graph or pic of the non-overlapping channels ?

thanks
by cylent
Fri Jul 03, 2009 2:52 pm
Forum: Wireless Networking
Topic: XR5 and Super Channels
Replies: 8
Views: 2786

Re: XR5 and Super Channels

Thank you. That makes sense.

I always wondered what i should populate the scan-list box with. now i know and i am able to use more channels.
by cylent
Fri Jul 03, 2009 12:04 pm
Forum: Wireless Networking
Topic: XR5 and Super Channels
Replies: 8
Views: 2786

Re: XR5 and Super Channels

hmm. thats funny. when i do this i get a virtual ap added thats disabled.
even if i enable it i cant see an ap that i set to 5745 for example. what gives?
by cylent
Mon Jun 29, 2009 11:21 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

Chupaka, Thanks for the clarification. I did the "Update.." key and it then said the router needs to be restarted. i assume that did it ... no way to verify yet since i dont have a r52n card at this time also, i noticed one of my routers had the "Old software ID" field with a num...
by cylent
Mon Jun 29, 2009 6:56 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

it's 'Buy a new key...', I think... 'Update License Key' do not ask any info... it just updates a key automatically The button label has been changed. in 3.x you had: Buy new key Update licnese key well now in 4.x you have: Upgrade/Get new key Update License key essentially though the "Buy new...
by cylent
Mon Jun 29, 2009 4:11 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

You also need to upgrade the ROS to 4.0beta3. Older versions do not support 802.11n cards. Can you ping the internet from your routerboards? If not, assign then IP addresses to them and put a gateway for that network on your router. We assign private networks to our bridged radio groups and each ra...
by cylent
Mon Jun 29, 2009 4:06 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

i am glad i made you laugh but the fact of the matter is i am not too keen on the routerboard operating system and wireless stuff as much as you. i am still learning. i also find the ros very lacking in documentation. i mean this isnt like a regular os where i can buy a book online or whatever and l...
by cylent
Mon Jun 29, 2009 2:29 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

what do u mean? doesnt "n" work with only one antenna?

this is getting annoying .. the fact that we need more than one antenna for nstreme and now "n"
by cylent
Mon Jun 29, 2009 1:52 am
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

so is 4.0b3 enough for n and level 4?
by cylent
Sun Jun 28, 2009 11:59 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

Re: upgrade for n

the thing is running as a bridge so it has no net access...
by cylent
Sun Jun 28, 2009 12:37 pm
Forum: General
Topic: upgrade for n
Replies: 15
Views: 2437

upgrade for n

I have purchased two R522 (outdoor routerboard 433's in flat panel enclosure) and they came with level 4 license.

I am considering getting two R52n's to take advantage of the n technology.

do i need to upgrade both of these to level 5 now?

pls advise!
by cylent
Sat Jun 20, 2009 12:24 am
Forum: General
Topic: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)
Replies: 9
Views: 4061

Re: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)

with or without using proxy?
i dont know u tell me which way works better?
by cylent
Fri Jun 19, 2009 6:51 pm
Forum: General
Topic: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)
Replies: 9
Views: 4061

Re: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)

load balancing is when some connections go through one link, another - through other one
ya but can you make the router split up loading a web page into two links?
by cylent
Fri Jun 19, 2009 6:06 pm
Forum: General
Topic: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)
Replies: 9
Views: 4061

Re: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)

so how does load balancing work exactly?
if i setup two pppoe connections and then through my lan i begin to load a web page on a computer does the router force both pppoe connections to assist in loading the web page?
by cylent
Fri Jun 19, 2009 9:56 am
Forum: General
Topic: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)
Replies: 9
Views: 4061

Re: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)

Thanks I doubt these guys know how to even enable such option though. is there a simple way for me to find out without asking them? in the document it says: " To enable Multilink PPP, simply specify multiple interfaces in “interfaces” property, it will bundle them together, if PPPoE server allo...
by cylent
Fri Jun 19, 2009 2:21 am
Forum: General
Topic: Link Aggregation (Network Bonding, Link Boding, Wan Bonding)
Replies: 9
Views: 4061

Link Aggregation (Network Bonding, Link Boding, Wan Bonding)

Is it possible to setup a router to do Link aggregation as in combine two OR more PPPoE connections then Nat them to the local Lan ?

Thanks!

(if possible pls provide example)

http://www.ecessa.com/pages/solutions/s ... dwidth.php
by cylent
Wed Jun 17, 2009 5:11 pm
Forum: General
Topic: features for 4?
Replies: 8
Views: 2169

Re: features for 4?

anybody? not even a link?
by cylent
Wed Jun 17, 2009 12:27 pm
Forum: General
Topic: features for 4?
Replies: 8
Views: 2169

features for 4?

where i can see about the features in version 4?

Thanks
by cylent
Wed Jun 17, 2009 1:00 am
Forum: Wireless Networking
Topic: Bridge out to client
Replies: 2
Views: 1081

Re: Bridge out to client

rstp

http://en.wikipedia.org/wiki/Rapid_Span ... e_Protocol

enable it under bridge settings.

i think that should fix it...
by cylent
Mon Feb 09, 2009 9:33 pm
Forum: Beginner Basics
Topic: How to make rb433ah Strictly an access point. No more.
Replies: 4
Views: 1350

Re: How to make rb433ah Strictly an access point. No more.

so after i do a full reset of the board there usually is no bridge?

then what?
by cylent
Sat Feb 07, 2009 6:15 pm
Forum: Beginner Basics
Topic: How to make rb433ah Strictly an access point. No more.
Replies: 4
Views: 1350

How to make rb433ah Strictly an access point. No more.

Hi I currently use the RB433ah for a hotspot system. well just now i downloaded a firewall/hotspot system and i need the rb433ah to be nothing more than a wireless ap / pass traffic. i'll have the real server do everything else like hotspot/dhcp/virus scanning and so on so how to accomplish this by ...
by cylent
Tue Dec 02, 2008 12:39 pm
Forum: General
Topic: passing http requests with internal ip address
Replies: 3
Views: 1042

passing http requests with internal ip address

hi i would like to know if theres a way to pass the http request that goes through the routeros with the internal ip address. my setup is like this: Hotspot system --> untangle router (for filtering and such) --> internet the problem is when i look at the logs at the untangle router it shows the ext...
by cylent
Sun Sep 21, 2008 6:46 pm
Forum: Beginner Basics
Topic: I want to use ipv6 with pppoe
Replies: 7
Views: 1713

Re: I want to use ipv6 with pppoe

and the advantage to all this "headache" is ???
by cylent
Sun Sep 21, 2008 6:42 pm
Forum: Beginner Basics
Topic: HELP - HOW TO DOWNGRADE FROM 3.13 TO 2.9.51
Replies: 8
Views: 3198

Re: HELP - HOW TO DOWNGRADE FROM 3.13 TO 2.9.51

first make sure your device supports v2.9 - most new RB models dont
does rb433ah support 2.9?
also, where can i download 2.9 from?
the main download page on the mikrotik.com page doesnt have anything old. all new.
by cylent
Sat Sep 20, 2008 11:26 pm
Forum: Wireless Networking
Topic: Hardware Retries
Replies: 3
Views: 6404

Re: Hardware Retries

I'll jump in on this if i may.... I think the faq doesnt exactly tell you what to do. it gives you a very vague answer to very common questions. for example: What is CCQ and how are the values determined? Client Connection Quality (CCQ) is a value in percent that shows how effective the bandwidth is...
by cylent
Sat Sep 20, 2008 10:58 pm
Forum: Wireless Networking
Topic: Wireless encription use - poll ! :)
Replies: 7
Views: 2252

Re: Wireless encription use - poll ! :)

i am using wep.
not because its better
not because its not crackable
but because it puts less overhead on the data stream going to the clients
last thing i need is a bottleneck

and because hotspot is basically hackable so i have no choice but to do encryption.
by cylent
Wed Sep 17, 2008 1:44 am
Forum: Wireless Networking
Topic: station-wds and wds-slave difference
Replies: 7
Views: 11997

Re: station-wds and wds-slave difference

but i do want clients to connect to wirelessly. isnt that what station-wds is supposed to be for? to expand the network by having multiple antennas in different locations? Expanding wireless network, you can use station-wds. One peer uses mode [ap-]bridge, second peer station-wds on one wireless in...
by cylent
Tue Sep 16, 2008 12:40 am
Forum: Wireless Networking
Topic: station-wds and wds-slave difference
Replies: 7
Views: 11997

Re: station-wds and wds-slave difference

WDS-Slave is identical to AP-Bridge with the single exception that the WDS-Slave will first scan around like a station to see if it finds an AP with the appropriate SSID and then uses that frequency for running in AP-Bridge mode (yes it's running as an ap-bridge even through you have it set to WDS-...
by cylent
Sun Sep 14, 2008 2:01 am
Forum: Wireless Networking
Topic: wds problem
Replies: 4
Views: 1373

Re: wds problem

the distance is about 1km between the station (rb333) and the ap-bridge (rb433). its not far at all but where i live theres lots of interference caused by people blasting wifi amplifiers. When i said i couldnt connect i was standing on the same roof as the vertical antenna (on the right side of the ...
by cylent
Sat Sep 13, 2008 5:33 pm
Forum: Wireless Networking
Topic: station-wds and wds-slave difference
Replies: 7
Views: 11997

station-wds and wds-slave difference

What exactly is the real difference between "Station-WDS" and "WDS-Slave" ? the description in the manual is rather vague. I currently have a WDS system and my main 433 is set to AP-Bridge. The 333 is set to Staion-WDS Would it be safe to switch the station-wds to wds-slave and n...
by cylent
Sat Sep 13, 2008 12:00 pm
Forum: Wireless Networking
Topic: wds problem
Replies: 4
Views: 1373

Re: wds problem

anybody?
by cylent
Sat Sep 13, 2008 2:19 am
Forum: Wireless Networking
Topic: wds problem
Replies: 4
Views: 1373

wds problem

today i ventured into the wds arena where i created my first near working system. basically i got everything working. my problem is this: if i stand on the roof near the omni antenna (the vertical one on the right side) with a laptop in my hand i can see the signal very strong however it comes and g...
by cylent
Fri Sep 12, 2008 10:26 pm
Forum: Beginner Basics
Topic: routing headache
Replies: 2
Views: 1200

Re: routing headache

ok well i managed to get this working and it was rather easy! for some reason i was having a problem with both routerboards having identical mac addresses for the interfaces. very odd and i have no idea how it happened. after reseting the mac addresses and each RB having its own proper mac address f...
by cylent
Fri Sep 12, 2008 10:19 pm
Forum: General
Topic: rb433ah and rb333 port mac addresses the same
Replies: 3
Views: 998

Re: rb433ah and rb333 port mac addresses the same

the stickers were different but both routerboards had identical macs.

i reset the macs both by doing /interface ethernet ether1 reset mac command on all interfaces and on both.

now they are ok ... they have different macs
by cylent
Fri Sep 12, 2008 3:47 am
Forum: Beginner Basics
Topic: routing headache
Replies: 2
Views: 1200

routing headache

ok this one maybe simple for some but its giving me a headache. any help is greatly appreciated. heres the deal. i have a rb433ah acting as a hotspot server and a pppoe server. its working fine and the net works ok. now. i want to add a rb333 to the mix. i want ether1 on the rb333 to be the net port...
by cylent
Fri Sep 12, 2008 3:31 am
Forum: General
Topic: rb433ah and rb333 port mac addresses the same
Replies: 3
Views: 998

rb433ah and rb333 port mac addresses the same

this sounds very weird but its true i have a routerboard 433ah and a rb333 i have in my winbox the mac address for my rb433ah which i log into all the time today i connected my old 333. i looked on the back at the mac address sticker and the macs are the same as those of the 433ah what is going on h...
by cylent
Thu Sep 11, 2008 8:57 am
Forum: General
Topic: please help me setup wds
Replies: 2
Views: 1110

Re: please help me setup wds

anybody?
by cylent
Thu Sep 11, 2008 1:59 am
Forum: General
Topic: please help me setup wds
Replies: 2
Views: 1110

please help me setup wds

Ok so i have the following: RB433AH with a R52 going to a 14db omni antenna. i also have a rb333 with another omni antenna. i want the the rb333 to work with the 433ah since the 433 is my main hotspot (everything). i created a virtual AP on the 433AP and made it dynamic WDS. Now on the 333 I put in ...
by cylent
Mon Sep 08, 2008 2:22 pm
Forum: Beginner Basics
Topic: wep key hack attempt?
Replies: 6
Views: 3894

Re: wep key hack attempt?

i had a feeling you guys were going to say that (about him not being on my access list) but guess what? hes not on my customer list and even the mac address is random ... in other words, its a fake .. it doesnt show up here: http://www.coffer.com/mac_find/?string=00:4F:62:1A:15:A0 all valid mac addr...
by cylent
Mon Sep 08, 2008 2:06 pm
Forum: Beginner Basics
Topic: wep key hack attempt?
Replies: 6
Views: 3894

wep key hack attempt?

I am using a wep key on my wireless hotspot system. i know its only 64bit and i really dont want to go with anything higher like 128 or wpa ... i looked at my log today and i found a huge repetition of someone trying to connect. could this be someone trying to break my key? 13:17:48 wireless,debug w...
by cylent
Sat Sep 06, 2008 1:59 am
Forum: Wireless Networking
Topic: WinBox Tx Power display seems 10 dB low
Replies: 17
Views: 10817

Re: WinBox Tx Power display seems 10 dB low

fine.

so now...

if i get a xr2 would i notice better performance with my wireless clients vs the engenius card i have now?
by cylent
Fri Sep 05, 2008 11:02 pm
Forum: Wireless Networking
Topic: WinBox Tx Power display seems 10 dB low
Replies: 17
Views: 10817

Re: WinBox Tx Power display seems 10 dB low

There are lot of wireless cards that doesn't have correct tx-power value written in the cards eeprom. Thats why the they have this offset 10db or some different number. Currently we don't have any plans to add this offset in our driver for other wireless cards. in other words you're being biased! u...
by cylent
Tue Sep 02, 2008 4:52 pm
Forum: Wireless Networking
Topic: Different WEP key on each customer
Replies: 3
Views: 1683

Re: Different WEP key on each customer

i tried doing that (the acl list part) and it doesnt work. i set a private key like so and it doesnt care even if the user has a different key it still allows him to connect 2 ;;; tester mac-address=00:02:6F:4D:AA:FA interface=wlan1 signal-range=-120.120 authentication=yes forwarding=no ap-tx-limit=...
by cylent
Tue Sep 02, 2008 3:05 pm
Forum: Wireless Networking
Topic: Multiple WEP keys, HOWTO?
Replies: 3
Views: 2417

Re: Multiple WEP keys, HOWTO?

i am trying to do this myself but i am unsuccessful. i disabled "Default authenticate" from the interface (wlan1) then i added a access list profile with a private key for user1. i enabled "authenticate" in the access list for the user even though my key is different he is still ...
by cylent
Thu Aug 28, 2008 11:38 pm
Forum: General
Topic: microSD goes away after system reboot
Replies: 1
Views: 846

Re: microSD goes away after system reboot

i hate to bump this again but this is a real problem for me and its definitely causing me serious issues.

anybody?
by cylent
Thu Aug 28, 2008 4:10 pm
Forum: General
Topic: microSD goes away after system reboot
Replies: 1
Views: 846

microSD goes away after system reboot

we live in a place where nothing is stable. power outages happen that cause the device to reset. unfortunately with that goes my web-proxy microsd setting. i dont know why but when i re-enter the winbox program the web-proxy no longer shows microSD as an option. i assume this is due to file corrupti...
by cylent
Mon Aug 25, 2008 1:34 pm
Forum: RouterBOARD hardware
Topic: Cache hit DSCP (TOS)
Replies: 5
Views: 8479

Re: Cache hit DSCP (TOS)

Hello, Please i use the mikrotik router OS ver3.1 on my routerboard 230. Please i really don't understand the cache hit DSCP (TOS) what value is best to be used. I use an external cache memory of 1Gb via USB port. Thanks you don't have to use DSCP unless there is a specific reason. what exactly do ...
by cylent
Mon Aug 25, 2008 1:34 pm
Forum: General
Topic: using microsd to cache effectively on rb433ah
Replies: 6
Views: 1776

Re: using microsd to cache effectively on rb433ah

depends on the proxy device speed and cache drive speed. note that these days, a very big part of the internet is server dynamically. there are no static content. all is taken from databases and served via php files, and you can't cache that. you could cache images, but that's about it. the device ...
by cylent
Mon Aug 25, 2008 12:17 pm
Forum: General
Topic: using microsd to cache effectively on rb433ah
Replies: 6
Views: 1776

Re: using microsd to cache effectively on rb433ah

ok fine. forget youtube videos.

how about regular cache like pics on a web page.

i am finding the proxy even with my above settings not working so well. it even causes slow downs some times.
by cylent
Mon Aug 25, 2008 11:16 am
Forum: General
Topic: using microsd to cache effectively on rb433ah
Replies: 6
Views: 1776

Re: using microsd to cache effectively on rb433ah

i wasnt aware of that part ..
but isnt the video file in flv format and there is a special code on the URL? i've noticed that part doesnt change.
by cylent
Mon Aug 25, 2008 3:55 am
Forum: RouterBOARD hardware
Topic: Cache hit DSCP (TOS)
Replies: 5
Views: 8479

Re: Cache hit DSCP (TOS)

bump ?
by cylent
Mon Aug 25, 2008 2:25 am
Forum: General
Topic: using microsd to cache effectively on rb433ah
Replies: 6
Views: 1776

using microsd to cache effectively on rb433ah

I'd like to know if its possible i can use my microSD card plugged into my rb433ah to cache files effectively especially youtube videos. currently my cache settings like look this: [admin@Mikrotik] /ip proxy> print enabled: yes src-address: 0.0.0.0 port: 8080 parent-proxy: 0.0.0.0 parent-proxy-port:...
by cylent
Sat Aug 09, 2008 4:50 pm
Forum: General
Topic: RB433 as captive portal only (hotspot)
Replies: 2
Views: 1214

Re: RB433 as captive portal only (hotspot)

actually it doesnt work.

in the ip->dhcp relay-> status tab i see the requests but 0 responses so it never worked.
by cylent
Sat Aug 09, 2008 3:28 pm
Forum: General
Topic: RB433 as captive portal only (hotspot)
Replies: 2
Views: 1214

RB433 as captive portal only (hotspot)

an odd setup i have to say from the start. something i've never done. currently the way i have it is like this: Smoothwall gateway: RED interface: public ip GREEN interface: 192.168.0.0/24 connected to that is the RB433ah ether1: 192.168.0.3 ether2 (hotspot): 10.5.50.1 ether3 not used all works grea...
by cylent
Fri Aug 01, 2008 12:57 pm
Forum: RouterBOARD hardware
Topic: Cache hit DSCP (TOS)
Replies: 5
Views: 8479

Re: Cache hit DSCP (TOS)

i have a rb433AH and i added a microsd card to it for caching purposes. i am on satellite internet so its vital i am able to use the cache... my two questions are: if i enable: Always from cache will this screw up some times? also, how do you figure out what the best value for the "Cache hit DS...
by cylent
Wed Jul 30, 2008 11:44 pm
Forum: General
Topic: Cached files without queue lmit v3.11
Replies: 16
Views: 3988

Re: Cached files without queue lmit v3.11

this would be great if someone can show some rules on how to set it up?
by cylent
Sun Jul 20, 2008 1:40 pm
Forum: General
Topic: Clock keeps resetting
Replies: 5
Views: 1839

Re: Clock keeps resetting

thanks guys.

that worked. my clock is finally working right.
by cylent
Sun Jul 20, 2008 12:51 pm
Forum: General
Topic: Clock keeps resetting
Replies: 5
Views: 1839

Re: Clock keeps resetting

thanks.

so i set up NTP Client for broadcast?

where does it get its time settings?

pls advise.
by cylent
Sun Jul 20, 2008 10:09 am
Forum: General
Topic: Clock keeps resetting
Replies: 5
Views: 1839

Clock keeps resetting

I dont know what i am doing wrong here but i gave up on this and left it as is. well now is the time when i need my rb333 clock to be correct. so what i have done is this: I goto System ->clock and set the time then hit apply/OK and when I reboot the router it resets back to JAN/01/1970 I am so sick...
by cylent
Fri May 23, 2008 1:04 am
Forum: Scripting
Topic: Deny downlaod of any type bigger than 20Mb
Replies: 3
Views: 2659

Re: Deny downlaod of any type bigger than 20Mb

can someone please give an example of how to set this up?

thanks
by cylent
Sat Apr 26, 2008 2:10 am
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

Re: rb333 as AP only. Nothing else

i guess you're right

if i disable the route i cant ping anything from the /tools ping option
it would say "no route to host"

but on client pc i can browse and do anything else.

hmm....
by cylent
Sat Apr 26, 2008 1:57 am
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

Re: rb333 as AP only. Nothing else

You don't need the static route...
Ya i wouldnt need one if i had bridge1 as a dhcp-client but since its a static ip now i guess i have to...
by cylent
Sat Apr 26, 2008 1:50 am
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

Re: rb333 as AP only. Nothing else

Thanks .. got it working had to do manual stuff for the bridge ip and added a static route. [admin@MikroTik] /ip address> print Flags: X - disabled, I - invalid, D - dynamic # ADDRESS NETWORK BROADCAST INTERFACE 0 192.168.5.3/24 192.168.5.0 192.168.5.255 bridge1 [admin@MikroTik] /interface wireless>...
by cylent
Sat Apr 26, 2008 12:34 am
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

Re: rb333 as AP only. Nothing else

ok i sorta did that i made the wlan1 ap-bridge (already is) disabled hotspot disabled dhcpserver in bridge 1 i have ports: ether2, ether3, wlan1, wlan2 for ether1 i have it set as DHCP CLIENT (gets ip from linux router) Ether1 then gets a DHCP IP. but when i ping 4.2.2.2 OR the router IP (192.168.5....
by cylent
Fri Apr 25, 2008 7:09 pm
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

Re: rb333 as AP only. Nothing else

Thats what i have already but i also have a Hotspot server which of course has a dhcp server and firewall+fitler rules.
by cylent
Fri Apr 25, 2008 6:59 pm
Forum: Wireless Networking
Topic: rb333 as AP only. Nothing else
Replies: 12
Views: 2584

rb333 as AP only. Nothing else

How can i turn my Rb333 to an Access Point only? I have another custom router i need to do all the routing and everything else. I just want to have the rb333 as an access point. No DHCP server No HOTSPOT server No Firewall No NAT JUST access point and pass the the traffic through Ether1 to the route...
by cylent
Thu Apr 17, 2008 8:38 pm
Forum: General
Topic: rb333 + r52 + amp = dhcp + connections dropping
Replies: 7
Views: 1719

Re: rb333 + r52 + amp = dhcp + connections dropping

Ya i agree. There should be some laws but currently there arent any against this sort of Amp Blasting. I did figure out the DHCP problem. I had a WEP key setup but I forgot to select the KEY type (40 bit or 104bit wep) in the Static Keys screen. It had been set to none but there was a key. So it nev...
by cylent
Thu Apr 17, 2008 4:24 pm
Forum: General
Topic: rb333 + r52 + amp = dhcp + connections dropping
Replies: 7
Views: 1719

Re: rb333 + r52 + amp = dhcp + connections dropping

Greetings! You are right about the amp, at least the part about how I feel about them. IMHO, you are just starting a "shouting war" with your neighbor. I don't know what kind of amp you are using, but if you are using it up by the antenna, at least it is on the correct end of the transmis...
by cylent
Thu Apr 17, 2008 8:55 am
Forum: General
Topic: rb333 + r52 + amp = dhcp + connections dropping
Replies: 7
Views: 1719

Re: rb333 + r52 + amp = dhcp + connections dropping

Sounds like interference. 5 watt amp would work. All you are doing is putting more noise in the air ..
ya but before i had an access point connected to the lan port of the mikrotik server (x86)

now, i have the rb333 with its r52. why cant the people who connect obtain an IP?
by cylent
Thu Apr 17, 2008 5:07 am
Forum: General
Topic: rb333 + r52 + amp = dhcp + connections dropping
Replies: 7
Views: 1719

rb333 + r52 + amp = dhcp + connections dropping

Some of you may not approve but an amplifier is something very necessary in my case especially when your neighbor is blasting a 5watt amp. in any case i just recently purchased a rb333 unit with a r52. I have the rb333 connected to a 1 meter calbe connected to the amp injector then 30meter cable goi...
by cylent
Fri Mar 21, 2008 1:43 am
Forum: General
Topic: HotSpots user priorization
Replies: 6
Views: 2428

Re: HotSpots user priorization

this is great however i am finding that with burst when the user opens an HTTP download (a file downloaded via http) he/she is always getting the max burst speed. The user is NOT going down to the MAX speed defined. I also dont seem to understand the purpose of Burst Threshhold and why in the exampl...
by cylent
Thu Mar 13, 2008 10:07 am
Forum: General
Topic: Routing Problems
Replies: 5
Views: 1779

Re: Routing Problems

I am confused as to how you would go about disabling "NAT" without altering hotspot?
by cylent
Thu Mar 13, 2008 12:16 am
Forum: General
Topic: Routing Problems
Replies: 5
Views: 1779

Re: Routing Problems

anybody?

i have lots of customers with this problem and i am getting sick of not knowing the reason.
by cylent
Wed Mar 12, 2008 9:54 am
Forum: General
Topic: Routing Problems
Replies: 5
Views: 1779

Re: Routing Problems

Can't use SSL - almost certainly means double natting... You must NAT only in one location, one time. So add routes to the smoothwall bos so that it knows to route data for your wireless clients to the MT, disbale the natting on the MT, and do all your natting on the smoothwall box - one time only....
by cylent
Wed Mar 12, 2008 8:10 am
Forum: General
Topic: Routing Problems
Replies: 5
Views: 1779

Routing Problems

Hi all. 1st issue: First, please see the attached image (below) to get an idea of my setup. http://img211.imageshack.us/img211/7599/setupvx8.gif My issue is this; PC's connected via WIFI cant open sites like mail.yahoo.com or any encrypted SSL site with yahoo. Yahoo messenger will not open on random...
by cylent
Mon Feb 25, 2008 9:06 am
Forum: General
Topic: Forward ports for sat modem
Replies: 2
Views: 792

Re: Forward ports for sat modem

i dont have any rules setup
thats why i need help
by cylent
Sun Feb 24, 2008 11:56 pm
Forum: General
Topic: Forward ports for sat modem
Replies: 2
Views: 792

Forward ports for sat modem

i have a satellite modem thats connected directly to the NIC labeled Internet on the mikrotik router using a crossover cable. all works fine however the modem has a program called iSite and in order for me to get stats for the modem i need to forward ports 9000-9001 UDP/TCP. I tried all the NAT / fi...
by cylent
Thu Feb 21, 2008 10:08 pm
Forum: General
Topic: winbox for Windows Mobile 5 or 6
Replies: 32
Views: 21259

Re: winbox for Windows Mobile 5 or 6

something like the astaro user interface??? maybe?

its a bit sluggish but its nice.
by cylent
Mon Feb 04, 2008 12:15 pm
Forum: General
Topic: server acting up.
Replies: 12
Views: 3544

Re: server acting up.

so in other words, do these filters cause damage or good to the router and LAN?
Keep them ON or off?
by cylent
Sun Feb 03, 2008 8:47 pm
Forum: General
Topic: "always-from-cache" documentation ?
Replies: 4
Views: 5167

Re: "always-from-cache" documentation ?

always-from-cache is wonderful actually but i wonder if it obeys the rules for like webmail systems like gmail or yahoo mail so as not to load stale content. (old)
by cylent
Fri Feb 01, 2008 10:53 pm
Forum: General
Topic: server acting up.
Replies: 12
Views: 3544

Re: server acting up.

ya but what is it actually dropping? ya. that ip is the router. for example 00:02:52 firewall,info DROP INPUT input: in:IN-NET out:(none), src-mac 00:60:43:81:37:61, proto TCP (SYN), 148.122.184.98:1267->82.211.190.34:2093, len 48 that first ip is a foreign ip. why is it dropping its input? like i s...
by cylent
Fri Feb 01, 2008 5:27 pm
Forum: General
Topic: server acting up.
Replies: 12
Views: 3544

server acting up.

i am noticing this in my log after adding a few rules from the wiki for firewall filter protection 18:26:05 firewall,info DROP INPUT input: in:IN-NET out:(none), src-mac 00:60:43:81:37:61, proto TCP (SYN), 217.145.213.53:1369->82.211.190.34:56392, len 48 18:26:15 firewall,info DROP INPUT input: in:I...
by cylent
Fri Feb 01, 2008 4:36 pm
Forum: General
Topic: block mikrotik routeros 3.1 configuration page
Replies: 2
Views: 1242

block mikrotik routeros 3.1 configuration page

How do i block the mikrotik routeros 3.1 configuration page from showing up when someone types in the router ip?

i have a public ip for the router and when someone types the ip the mikrotik routeros 3.1 configuration page comes up.

how do i stop that?

thanks
by cylent
Wed Jan 30, 2008 4:38 am
Forum: General
Topic: Web Browsing Burst for limited PPPoE users
Replies: 6
Views: 2067

Web Browsing Burst for limited PPPoE users

((This is for version 3.1)) This is an odd request and I hope someone has a solution. I am sure it can be done with mangle and queues but i suck at those two so help! Ok so my users log on by way of PPPoE ... I have different profiles set for the users. So lets say I have profile1 with 5 users on it...
by cylent
Sun Jan 27, 2008 10:44 pm
Forum: General
Topic: Satellite Internet ACK Spoofing
Replies: 9
Views: 3659

Re: Satellite Internet ACK Spoofing

Hi cylent, please check that: http://forum.mikrotik.com/viewtopic.php?f=2&t=21392 , I directly cannot navigate connecting a computer to the modem satelital, the only way is with the application. Try with debian + squid and mikrotik, but I am not able to decipher the form of emulating the aplica...
by cylent
Sun Jan 27, 2008 12:01 pm
Forum: General
Topic: Satellite Internet ACK Spoofing
Replies: 9
Views: 3659

Re: Satellite Internet ACK Spoofing

are you using a DNS cache? i assume you mean the RouterOS dns cache [paul@MikroTik] > /ip dns pr primary-dns: 212.31.224.3 secondary-dns: 212.31.224.2 allow-remote-requests: yes max-udp-packet-size: 512 cache-size: 10048KiB cache-max-ttl: 1w cache-used: 23KiB [paul@MikroTik] > Thats it. I am consid...
by cylent
Sat Jan 26, 2008 11:00 pm
Forum: General
Topic: Satellite Internet ACK Spoofing
Replies: 9
Views: 3659

Re: Satellite Internet ACK Spoofing

The thing thats frustrating is browsing is a bit sluggish ... it takes about 10 or so seconds before a page starts to appear however when it does it comes in fast. same with downloading. it starts off slow then slowly starts to catch up. there must be a way to at least make browsing faster. pls advi...
by cylent
Sat Jan 26, 2008 10:30 am
Forum: General
Topic: Satellite Internet ACK Spoofing
Replies: 9
Views: 3659

Satellite Internet ACK Spoofing

Hello. I connect to the internet using a satellite modem and i know of the latency caused by such systems I've heard of whats called TCP Accelerators. I know what they do is ACK spoofing ... Can this be done somehow with RouterOS? It'd really be a wonderful thing so I dont have to consider buying a ...
by cylent
Tue Jan 15, 2008 11:21 am
Forum: General
Topic: HOTSPOT in RC14 broken
Replies: 7
Views: 2189

Re: HOTSPOT in RC14 broken

normis: when you say i havent completed the configuration what are you referring to? i narrowed it down to the server not communicating with the gateway (satellite modem) at random times or during a power reset if i were to ping the modem it would give me timeout. I am making a support.rif file and ...
by cylent
Tue Jan 15, 2008 9:14 am
Forum: General
Topic: HOTSPOT in RC14 broken
Replies: 7
Views: 2189

Re: HOTSPOT in RC14 broken

Good morning - its like this from almost from beginning of v3.0 - this is feature: jump is read because you don't have any rules in that chain. Other rule is red because you don't have SMTP enabled, and so on, and so forward. And did it actually broke something? - do you have any performance proble...
by cylent
Tue Jan 15, 2008 8:57 am
Forum: Beginner Basics
Topic: ROUTE wont stick.
Replies: 5
Views: 1564

Re: ROUTE wont stick.

Do you have the MT box connected directly to the modem? Or is there a hub/switch between them? I have a box that does not like to bring up its ethernet port unless there is a "hot" connection on the port. Hubs come up fastest and allow the port to indicate connected to something. I think ...
by cylent
Tue Jan 15, 2008 5:11 am
Forum: General
Topic: HOTSPOT in RC14 broken
Replies: 7
Views: 2189

HOTSPOT in RC14 broken

There are a few broken firewall rules in the hotspot firewall rules. Can they be fixed manually? see image below: http://img225.imageshack.us/img225/3963/hotspothy4.th.gif [admin@MikroTik] > /ip firewall nat print all Flags: X - disabled, I - invalid, D - dynamic 0 D chain=dstnat action=jump jump-ta...
by cylent
Mon Jan 14, 2008 11:15 pm
Forum: Beginner Basics
Topic: ROUTE wont stick.
Replies: 5
Views: 1564

Re: ROUTE wont stick.

Is 10.223.167.97 a dynamic address?
No.
Its assigned to my Satellite Modem when its active.
Some times the modem has to be reset because of power outages and the server may start before the modem and so on
by cylent
Mon Jan 14, 2008 9:25 pm
Forum: Beginner Basics
Topic: ROUTE wont stick.
Replies: 5
Views: 1564

ROUTE wont stick.

I am having a problem thats very weird. The route I am setting wont stick as in in /ip route the gateway route loses its "interface" thats used to communicate with my satellite modem. When i come to ping the modem from RouterOS (winbox) it timesout. I am left then doing resets on the serve...
by cylent
Mon Jan 14, 2008 9:07 pm
Forum: Wireless Networking
Topic: best wireless band to use
Replies: 2
Views: 2054

Re: best wireless band to use

well the thing is i thought the chip supports a/b/g whether the manufacturer says so or not

its an EngeniusTech model. Although on the box mine says 3601s its the same as this one:

http://www.engeniustech.com/datacom/pro ... spx?id=175
by cylent
Mon Jan 14, 2008 11:53 am
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

Re: hotspot problems (again)

i added two new lan adapters and ditched the onboard gigabyte one and now the system seems to be ok. [admin@MikroTik] > system resource pci print # DEVICE VENDOR NAME IRQ 0 01:00.0 nVidia Corporation unknown device (rev: 162) 7 1 00:18.3 Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Mi... 0 2 0...
by cylent
Mon Jan 14, 2008 12:07 am
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

Re: hotspot problems (again)

Problem Solved: I dont know why but i found the routing package DISABLED when i went into /system packages print i found the following [paul@MikroTik] system package> print Flags: X - disabled # NAME VERSION SCHEDULED 0 routeros-x86 2.9.50 1 hotspot 2.9.50 2 system 2.9.50 3 X rstp-bridge-test 2.9.50...
by cylent
Sun Jan 13, 2008 11:56 pm
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

Re: hotspot problems (again)

I am not going to go through all the firewall stuff right now, but you should take a look at your dhcp server ip pool. You need to get those IPs in a range where they are localnet to each interface (in the same netmask). Now they are local to neither. ok well i reset again and this time i only crea...
by cylent
Sun Jan 13, 2008 11:33 pm
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

Re: hotspot problems (again)

That is what I thought. /ip dns set allow-remote-requests=yes That should take care of the problem (EDIT:) IF those IPs are in fact valid DNS servers. That still did not solve the problem. i even did a /system reset TWICE when i do a system reset i am performing the following steps: i pull up inter...
by cylent
Sun Jan 13, 2008 9:38 pm
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

Re: hotspot problems (again)

Greetings! Try: /ip dns print Usually the "slow-to-failing login page" problem is due to incorrect dns settings. Thanks for reminding me. I forgot to share those values. They are correct though; [paul@MikroTik] > /ip dns print primary-dns: 10.223.167.97 secondary-dns: 192.168.129.50 allow...
by cylent
Sun Jan 13, 2008 7:51 pm
Forum: Wireless Networking
Topic: hotspot problems (again)
Replies: 12
Views: 12567

hotspot problems (again)

This is sort of part 2 of my previous thread but things are a bit different now. Problem: Hotspot page takes forever to appear and timesout most of the time. I do get an IP on the client machine however the hotspot page takes a very long IF it decides to appear. 99% of the time the hotspot page does...
by cylent
Sat Jan 12, 2008 9:25 pm
Forum: Wireless Networking
Topic: best wireless band to use
Replies: 2
Views: 2054

best wireless band to use

Hi all. I live in a very crowded wifi area and i am starting to distribute internet again to customers however the b and g bands are badly used and people here use amplifiers like theres no tomorrow causing all sorts of disturbance. So. Before I sign up my new clients for my internet service i'd lik...
by cylent
Tue Jan 08, 2008 6:23 pm
Forum: General
Topic: Auto Hotspot Login by client
Replies: 0
Views: 722

Auto Hotspot Login by client

Ok this is an odd request for a howto. I basically use my router to share internet in the home I get my net access from a provider who uses RouterOS and I have to use their hotspot system to log in. Is there a script i can write or a way to auto log in after lets say a power failure? That way my rou...
by cylent
Tue Jan 08, 2008 6:07 pm
Forum: Wireless Networking
Topic: hotspot page not appearing
Replies: 9
Views: 2029

Re: hotspot page not appearing

My bad! I meant masquerade your other ports as ether1. I use /ip firewall nat add chain=src-nat action=masquerade out-interface=ether1 om so it loox like this now [admin@Shahrazad] /ip firewall nat> print Flags: X - disabled, I - invalid, D - dynamic 0 X ;;; place hotspot rules here chain=unused-hs...
by cylent
Tue Jan 08, 2008 4:25 pm
Forum: General
Topic: Upgrading from 2.9.x to 3.0?
Replies: 5
Views: 2601

Re: Upgrading from 2.9.x to 3.0?

I have downgraded my proxy server because after monitoring for like 5 hours, I notice that everything had a delay. Opening webpages, downloading files, etc all took so much time in working. As soon as I downgraded back to 2.9.43 everything worked just fine. Has anyone else seen this problem with th...
by cylent
Tue Jan 08, 2008 4:09 pm
Forum: Wireless Networking
Topic: hotspot page not appearing
Replies: 9
Views: 2029

Re: hotspot page not appearing

so you're saying i should also masquerade ether1? cause right now the only masqueraded networks are the two hotspot ones. first the ip for the interfaces: [admin@Shahrazad] /ip address> print Flags: X - disabled, I - invalid, D - dynamic # ADDRESS NETWORK BROADCAST INTERFACE 0 172.16.0.1/16 172.16.0...
by cylent
Tue Jan 08, 2008 3:21 pm
Forum: General
Topic: Could not get index: fatal error
Replies: 5
Views: 7921

Re: Could not get index: fatal error

i was going to post a similar problem. mine says: "could not get plugin index!" in 2.9.6 i just upgraded to 3.0rc13 and STILL the same error If i change the IP to be dynamic so the hotspot server gives me the IPs then i can connect using 10.0.0.1 but if i try to connect with my PC being st...
by cylent
Tue Jan 08, 2008 2:42 pm
Forum: Wireless Networking
Topic: hotspot page not appearing
Replies: 9
Views: 2029

Re: hotspot page not appearing

i see.

I thought i had set right but it appeared the first primary dns was set to 10.0.0.1 which is the second hotspot server.

i changed it to 192.168.0.1 (the linksys gateway) and it seems to be ok now but still a bit sluggish at loading the hotspot loading page.
by cylent
Tue Jan 08, 2008 10:25 am
Forum: General
Topic: PPPoE Sharing
Replies: 14
Views: 3220

Re: PPPoE Sharing

thank you for defining the term ..
i know to look in the manual but i wouldnt know what to seek

now i know.

thanks again!
by cylent
Tue Jan 08, 2008 9:21 am
Forum: General
Topic: PPPoE Sharing
Replies: 14
Views: 3220

Re: PPPoE Sharing

I wonder if its possible to have multiple pppoe client accounts being shared at the same time? If you mean can you have multiple DSL upstream connections and share that bandwidth to the lan, then yes. i mean have multiple pppoe connections active and share the connection to the lan. ya. how can thi...
by cylent
Mon Jan 07, 2008 6:59 pm
Forum: Wireless Networking
Topic: hotspot page not appearing
Replies: 9
Views: 2029

Re: hotspot page not appearing

well ironically in my first install i checked the packages because i was going to do an upgrade and i noticed the "Routing" package was being installed DISABLED. God knows why. I enabled that and it worked. a new problem arose though when i connect to my wifi network i try to load a page l...
by cylent
Mon Jan 07, 2008 10:56 am
Forum: General
Topic: PPPoE Sharing
Replies: 14
Views: 3220

Re: PPPoE Sharing

I wonder if its possible to have multiple pppoe client accounts being shared at the same time?

pls advise.
  • 1
  • 2