Community discussions

Search found 32 matches

by wispmikrotik
Mon Apr 23, 2018 5:24 pm
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 204
Views: 73083

Re: Advisory: Vulnerability exploiting the Winbox port

When the tool gets your password, it has full access and installs some kind of tools. That is kind of strange, because when I know the password of my router I still cannot install that kind of tools! So there are multiple faults here. On MT specific hardware and using WINBOX -- winbox -- gains root...
by wispmikrotik
Mon Apr 23, 2018 2:59 pm
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 204
Views: 73083

Re: Advisory: Vulnerability exploiting the Winbox port

We have discovered a new RouterOS vulnerability affecting all RouterOS versions since v6.29. How it works : The vulnerability allowed a special tool to connect to the Winbox port, and request the system user database file. Versions affected : 6.29 to 6.43rc3 (included). Updated versions in all rele...
by wispmikrotik
Sat Apr 21, 2018 8:32 pm
Forum: General
Topic: winbox vulnerable! Unusual login to routers [SOLVED]
Replies: 44
Views: 5804

Re: winbox vulnerable! Unusual login to routers [SOLVED]

1.Set user name and password with combination with cyrillic alphabet after that remoove or disable user - admin ! 2.Change the port numbers for ssh , winbox etc. 3.Set strog crypto for ssh 4.Set ACL 5.Set 3 attempts login to black list and deny attempts with RAW 6,Disable all other non-useable serv...
by wispmikrotik
Sat Apr 21, 2018 1:50 am
Forum: General
Topic: winbox vulnerable! Unusual login to routers [SOLVED]
Replies: 44
Views: 5804

Re: winbox vulnerable! Unusual login to routers [SOLVED]

just to stop the attackers, create a whitelist IP address for example call Support and the the raw firewall /ip firewall raw add action=drop chain=prerouting dst-port=22,80,8291 log=yes protocol=tcp src-address-list=!Support Hello, I had configured that at 3 attempts d access blocked the ip, but ha...
by wispmikrotik
Sat Apr 21, 2018 1:43 am
Forum: General
Topic: winbox vulnerable! Unusual login to routers [SOLVED]
Replies: 44
Views: 5804

Re: winbox vulnerable! Unusual login to routers [SOLVED]

I have already notified the mikrotik support, I could not send the support file because the router is blocked.
@normis, mikrotik team can you check this immediately?
this is very serious.
by wispmikrotik
Sat Apr 21, 2018 12:49 am
Forum: General
Topic: winbox vulnerable! Unusual login to routers [SOLVED]
Replies: 44
Views: 5804

Re: winbox vulnerable! Unusual login to routers [SOLVED]

Hello everyone, The same thing happened to me today. https://i.imgur.com/qhhClKy.png What's happening mikrotik team? Any security problem not notified? bug or backdoor? AS131149 103.1.220.0/23 LJ Hosting Co., LTD IP Address 103.1.221.29 Hostname 103-1-221-29.static.ip.net.tw Name Servers a.g-dns.com...
by wispmikrotik
Thu Apr 12, 2018 7:16 pm
Forum: Forwarding Protocols
Topic: Firewall Mangle - Action [passthrough vs accept] [SOLVED]
Replies: 7
Views: 465

Re: Firewall Mangle - Action [passthrough vs accept] [SOLVED]

To tell the truth, I'm little lost in the description in first post. You have jump in prerouting and target chain has only one rule with action=passthrough, so it basically does nothing, only increases counter for passthrough rule, reaches end of chain and returns to prerouting, where it continues ...
by wispmikrotik
Thu Apr 12, 2018 12:55 pm
Forum: Forwarding Protocols
Topic: Firewall Mangle - Action [passthrough vs accept] [SOLVED]
Replies: 7
Views: 465

Re: Firewall Mangle - Action [passthrough vs accept] [SOLVED]

It is not assumed that the action=passthrough should to be " if packet is matched by the rule, increase counter and go to next rule" And action=accept stops processing and does not go to next rule , so that's major difference. Hi, Of course, that's what I do not want, that does not pass the followi...
by wispmikrotik
Thu Apr 12, 2018 12:53 pm
Forum: Forwarding Protocols
Topic: Firewall Mangle - Action [passthrough vs accept] [SOLVED]
Replies: 7
Views: 465

Re: Firewall Mangle - Action [passthrough vs accept] [SOLVED]

Hello, What's your question and what are you trying to achieve? Ad you said, passthrough is only for accounting, nothing more. Regards Envoyé de mon LG-H812 en utilisant Tapatalk Hi, I need that when you get from rule 0 and make the jump and go to rule 2 action=passthrough follow the following rule...
by wispmikrotik
Thu Apr 12, 2018 1:33 am
Forum: Forwarding Protocols
Topic: Firewall Mangle - Action [passthrough vs accept] [SOLVED]
Replies: 7
Views: 465

Firewall Mangle - Action [passthrough vs accept] [SOLVED]

Hi, I have the following problem with the mangle and the action=passthrough , I am routing all the traffic through the VPN, but with a JUMP rule I avoid using the VPN to get to the WEB Server. I put the network scheme: https://i.imgur.com/MVbPZwk.png - Config RB850gx2: [rtc@wispmikrotik] /ip firewal...
by wispmikrotik
Fri Apr 06, 2018 1:26 am
Forum: RouterBOARD hardware
Topic: mAP Lite WiFi problems out of the box
Replies: 4
Views: 351

Re: mAP Lite WiFi problems out of the box

Hi,

I have a few units of these and they work perfectly. As the partner says, can it be your defective unit?


Regards.
by wispmikrotik
Fri Apr 06, 2018 1:21 am
Forum: RouterBOARD hardware
Topic: RB850GX2 temperature
Replies: 1
Views: 218

RB850GX2 temperature

Hi, Greetings to all, I wanted to know what is the ambient temperature and the normal CPU temperature on this board, and above all at what time should I worry about the high temperature? [xxx@wispmikrotik] system health print voltage: 23.7V temperature: 57C cpu-temperature: 64C Regards.
by wispmikrotik
Mon Mar 26, 2018 9:19 pm
Forum: General
Topic: NAT 1:1 VPS
Replies: 1
Views: 125

NAT 1:1 VPS

https://i.imgur.com/Czgv7bd.png Hi, I am trying to configure a public ip from a VPS to my office router. Redirect the traffic of an IP Public X.X.86.175 through a VPN to the mikrotik of my office without success. VPS: IP Public: X.X.86.175 IP VPN to Office: 10.8.8.1 Office: IP VPN to VPS: 10.8.8.2 ...
by wispmikrotik
Sat Sep 23, 2017 8:47 pm
Forum: Virtualization
Topic: Transfer license [SOLVED]
Replies: 2
Views: 827

Re: Transfer license [SOLVED]

Setup new CHR install and get it connected to your Mikrotik account. Log into Mikrotik account and click on CHR licenses. Find desired license and click transfer. Transfer to system ID has a drop down box that lists all applicable ID's on your account. You should see your new ID from the new instal...
by wispmikrotik
Sat Sep 23, 2017 8:28 pm
Forum: Virtualization
Topic: Transfer license [SOLVED]
Replies: 2
Views: 827

Transfer license [SOLVED]

Good,

I have a VPS server running a router mikrotik CHR, after fault in the server, have decided to change hardware, so I lost the license.

Is it possible to transfer the license to the new server?


Regards.
by wispmikrotik
Sat Sep 23, 2017 3:50 pm
Forum: RouterBOARD hardware
Topic: Bytes o bits - Traffic total mikrotik
Replies: 1
Views: 309

Bytes o bits - Traffic total mikrotik

why mikrotik shows the total traffic in bytes?
in the traffic tab of the Ethernet interface 1, the total tx / rx bytes. It means that the brand is 60Gbytes is equal to 480 gbits?

Image

the total actual traffic measured in bits would be that? 480Gbits?


Regards.
by wispmikrotik
Mon Sep 04, 2017 11:44 am
Forum: RouterBOARD hardware
Topic: Metal 52 + RF elements [PtP] [SOLVED]
Replies: 6
Views: 598

Re: Metal 52 + RF elements [PtP] [SOLVED]

Good, I wanted to ask if it is possible to make a link of 11.5km with the following equipment: 1 -) Metal 52SHPacn + RF-Elements Direct 21-5G https: //www.landashop.com/wrl-rf-d215.html 2 -) LHG 5ND Se I'm not going to use a protocol AC but I do not care. OK, easy to calculate: 9dBm from Metal + 21...
by wispmikrotik
Sat Sep 02, 2017 9:19 pm
Forum: RouterBOARD hardware
Topic: Metal 52 + RF elements [PtP] [SOLVED]
Replies: 6
Views: 598

Re: Metal 52 + RF elements [PtP] [SOLVED]

What is your allowed EIRP?
1W maximum
by wispmikrotik
Fri Sep 01, 2017 10:45 pm
Forum: RouterBOARD hardware
Topic: Metal 52 + RF elements [PtP] [SOLVED]
Replies: 6
Views: 598

Re: Metal 52 + RF elements [PtP] [SOLVED]

What are your Needs for this Links?
With 10 mb is enough, the question is whether the link can be made. Bandwidth is not a problem.
by wispmikrotik
Fri Sep 01, 2017 9:48 pm
Forum: RouterBOARD hardware
Topic: Simultaneous clients - mAP Lite [SOLVED]
Replies: 2
Views: 440

Re: Simultaneous clients - mAP Lite [SOLVED]

40 clients is quite a lot.
Why are you looking for the smallest/cheapest possible device with small antennas and targeted as personal AP?
What is the area of your clients? One big room? One floor? Several buildings?
Thanks, discarded the mAP Lite, I will use a more powerful model.
by wispmikrotik
Fri Sep 01, 2017 9:43 pm
Forum: RouterBOARD hardware
Topic: Metal 52 + RF elements [PtP] [SOLVED]
Replies: 6
Views: 598

Metal 52 + RF elements [PtP] [SOLVED]

Good, I wanted to ask if it is possible to make a link of 11.5km with the following equipment: 1 -) Metal 52SHPacn + RF-Elements Direct 21-5G https: //www.landashop.com/wrl-rf-d215.html 2 -) LHG 5ND Se I'm not going to use a protocol AC but I do not care. And on the same link connect 1 km: 1 -) Meta...
by wispmikrotik
Fri Sep 01, 2017 9:33 pm
Forum: RouterBOARD hardware
Topic: Simultaneous clients - mANT 19S [SOLVED]
Replies: 3
Views: 411

Re: Simultaneous clients - mANT 19S [SOLVED]

Thanks @pukkita
by wispmikrotik
Fri Sep 01, 2017 1:41 am
Forum: RouterBOARD hardware
Topic: RB850gx2 - PBX
Replies: 0
Views: 308

RB850gx2 - PBX

Good, I currently have five bank branches routed with five rb850gx2, I have come up with the need to implement a small pbx (asterisk), with five sip extensions and two simultaneous calls, and I thought I could do it with metarouter, but ohhh I find that ppc multicore does not support Metarouter. I r...
by wispmikrotik
Fri Sep 01, 2017 1:28 am
Forum: RouterBOARD hardware
Topic: Simultaneous clients - mANT 19S [SOLVED]
Replies: 3
Views: 411

Simultaneous clients - mANT 19S [SOLVED]

Good morning everyone, I bring a question about the mANT 19S product: 1 -) I have a FTTH of 150Mb / 150Mb: - The bandwidth limit and QoS is performed on an rb3011 with PCQ + Adress-List 2 -) Bandwidth calculations for 80 clients: Group A: 70 users, 80% CIR, 3 overbooking, 6Mb per user: ABw = { CIR /...
by wispmikrotik
Sat Aug 26, 2017 6:57 pm
Forum: RouterBOARD hardware
Topic: Simultaneous clients - mAP Lite [SOLVED]
Replies: 2
Views: 440

Simultaneous clients - mAP Lite [SOLVED]

Good morning everyone, I bring a question about the mAP Lite product: 1 -) I have a FTTH of 50Mb / 50Mb: - The bandwidth limit and QoS is performed on an rb3011 with PCQ + Adress-List 2 -) Bandwidth calculations for 40 clients: Group A: 30 users, 80% CIR, 3 overbooking, 3Mb per user: ABw = { CIR / o...
by wispmikrotik
Fri Aug 25, 2017 11:31 pm
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Re: Product mAP Lite - Very HOT [SOLVED]

Is router has a default configuration? Are there default firewall rules? What mode Quick set is imposed? AP, Wisp? He should not get hot No. It is configured accordingly, no default configuration or fast configuration. Optimized in packages, in configuration, does not exceed 1% of CPU and is burnin...
by wispmikrotik
Thu Aug 24, 2017 10:33 am
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Re: Product mAP Lite - Very HOT [SOLVED]

Or is the usb just to power the router?
It is just for power.

//A
Thanks
by wispmikrotik
Thu Aug 24, 2017 2:09 am
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Re: Product mAP Lite - Very HOT [SOLVED]

You don't have to remove the magnets. The previous poster referenced an old issue in the first production batch where the magnet could cause ethernet packet loss when attached to a ferrous surface. It only affected a few units, and has been fixed a long time ago. The usb can be used for a 3G dongle...
by wispmikrotik
Wed Aug 23, 2017 4:24 pm
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Re: Product mAP Lite - Very HOT [SOLVED]

i'm using a couple of them and i'm not complaining. very good product. You don't need to power through both ports. only one is enough. also check this thread : https://forum.mikrotik.com/viewtopic.php?t=104540 I removed the magnets of mine. Then it is solved by removing the magnets? Then what kind ...
by wispmikrotik
Wed Aug 23, 2017 12:36 pm
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Re: Product mAP Lite - Very HOT [SOLVED]

CPU frequency is not at default setting? How do you power them? Poslano z mojega X1030X z uporabo Tapatalk The CPU frequency is factory default. They are connected both by POE and by usb that the routerboard brings. With both it gets too hot. I have also noticed that it costs a lot to upload youtub...
by wispmikrotik
Tue Aug 22, 2017 7:38 pm
Forum: RouterBOARD hardware
Topic: Product mAP Lite - Very HOT [SOLVED]
Replies: 11
Views: 904

Product mAP Lite - Very HOT [SOLVED]

Good morning everyone, I just purchased 2 mAP Lite ( https://mikrotik.com/product/RBmAPL-2nD ) for two rooms in a small hotel. http://i.imgur.com/W74HjFP.jpg The "problem" is that the small routerboard is very very hot , I understand: - That this is normal because of its small size? - Affect the use...
by wispmikrotik
Tue Apr 25, 2017 10:54 am
Forum: General
Topic: Mangle v6
Replies: 0
Views: 563

Mangle v6

Good to all, First of all, excuse my language. I have some doubts about the mangle in routerOS v6. I have a WAN interface ether1 (ftth 120/10) and 3 LAN interfaces (ether2, vlan 10 and vlan 11). I am trying to configure a QoS system in version 6 + HTB, the problem I encounter is when using the globa...