Community discussions

Search found 250 matches

by Redmor
Thu Sep 26, 2019 3:09 pm
Forum: General
Topic: SMTP filter
Replies: 2
Views: 252

Re: SMTP filter

Hi,

Try use "limit=10,5:packet" and see if it help.
Tried with 30,5 and seems working, thanks.
by Redmor
Thu Sep 26, 2019 1:21 pm
Forum: General
Topic: SMTP filter
Replies: 2
Views: 252

SMTP filter

Hi I'm trying to filter port 25 for my natted customers, but Spamhaus keeps blocking my IPs for spam. I'm using the following rules: /ip firewall filter add action=add-src-to-address-list address-list=SPAM address-list-timeout=1h \ chain=forward comment=SPAM connection-limit=30,32 dst-port=25 limit=...
by Redmor
Mon Jun 03, 2019 12:59 pm
Forum: General
Topic: Dude SNMP help
Replies: 0
Views: 199

Dude SNMP help

Hello, I'm trying to monitor port status up or down with Dude. I can do that using an SNMP type probe, but I want to use a function type probe and it isn't working. Working: https://i.ibb.co/VTfDqrZ/Cattura.png Not working (missing probe configuration, but isn't important) https://i.ibb.co/dQNdhsx/C...
by Redmor
Sat Mar 23, 2019 3:07 pm
Forum: Wireless Networking
Topic: extend wifi with another ip range
Replies: 1
Views: 218

Re: extend wifi with another ip range

Don't do that, when changing AP the client needs to change IP, so reconnection is slowered.
By the way set wlan1 as station, add DHCP client to wlan1, create a virtual AP in ap-bridge mode and configure the new network on the Virtual AP (DHCP, gateway...) and masquerade new network.
by Redmor
Sat Mar 23, 2019 3:04 pm
Forum: Wireless Networking
Topic: enable-nstreme does what?
Replies: 1
Views: 322

Re: enable-nstreme does what?

It's a legacy setting, it does the same as setting wireless-protocol=nstreme.
If you need to use nstreme set wireless protocol and leave unchecked that checkbox.
by Redmor
Sat Mar 23, 2019 2:41 pm
Forum: Wireless Networking
Topic: Import or calculate radiation patterns
Replies: 0
Views: 249

Import or calculate radiation patterns

Hi all, I'm making a program and I need to import radiation patterns in it. The only inputs I can provide are the ones I can find in datasheets. I don't need to draw it again, but the program should be able to do it. How can I do this? For calculation, please if you can provide an example, I'm not a...
by Redmor
Sun Mar 10, 2019 12:47 am
Forum: General
Topic: Getting PTP links appearing in traceroute
Replies: 1
Views: 182

Re: Getting PTP links appearing in traceroute

The only way is to route them instead of using bridges.
by Redmor
Sun Mar 10, 2019 12:45 am
Forum: General
Topic: VLAN across PPPoE clients
Replies: 7
Views: 368

Re: VLAN across PPPoE clients

You already posted how to do that, just create a vlan on the ethernet you need and bridge it together with EoIP. 1500 MTU that you can set with EoIP is a bit fake, you can set it to 1500 in EoIP settings, but when I do that I face problems with upload traffic. Try to set it and if you find troubles ...
by Redmor
Fri Mar 08, 2019 11:57 pm
Forum: General
Topic: VLAN across PPPoE clients
Replies: 7
Views: 368

Re: VLAN across PPPoE clients

I think first option is the best, I already do something similar for centralized hotspot.
Remember that MTU will drop to 1438 with EoIP over vlan, if you don't need L2 the best option is VPN site to site, otherwise I don't see a better solution than first.
by Redmor
Mon Mar 04, 2019 3:49 pm
Forum: Announcements
Topic: v6.44 [stable] is released!
Replies: 219
Views: 36386

Re: v6.44 [stable] is released!

PWR-Line port on hAP
by Redmor
Wed Feb 27, 2019 12:04 am
Forum: General
Topic: Security issue when Winbox exposed
Replies: 68
Views: 5954

Re: Security issue when Winbox exposed

So, if you don't have allowed addresses in Winbox IP service, but you have an input accept filter rule with address list for 8291, you're vulnerable?
only from the accept list ips
For real? Only from them?
by Redmor
Tue Feb 26, 2019 8:23 pm
Forum: General
Topic: Security issue when Winbox exposed
Replies: 68
Views: 5954

Re: Security issue when Winbox exposed

So, if you don't have allowed addresses in Winbox IP service, but you have an input accept filter rule with address list for 8291, you're vulnerable?
by Redmor
Tue Feb 26, 2019 9:05 am
Forum: General
Topic: Hotspot Apple Login Page HELP!
Replies: 19
Views: 2339

Re: Hotspot Apple Login Page HELP!

Answer to my quotes: Don't you have MVNO? When Iliad arrived in Italy, prices dropped down. I pay 5.99€ for 50GB, Vodafone made a MVNO to lower prices in my country, even other operators did that. By the way hotels can give away Wi-Fi password, if someone wants to buy drugs on Internet he can always...
by Redmor
Sun Feb 24, 2019 3:49 pm
Forum: General
Topic: The Dude Chart bug?
Replies: 0
Views: 336

The Dude Chart bug?

Hi, I have an sfp that does at least 300 Mbps rx and 100 Mbps tx. I made an snmp link that in label shows the correct speed, but in graph it never goes up 100-120 Mbps rx. Is this a bug or am I doing something wrong? In graph I use builtin Data Source. Why so much difference between link label and g...
by Redmor
Sun Feb 24, 2019 2:35 pm
Forum: General
Topic: How do I enable my network for IPv6
Replies: 5
Views: 494

Re: How do I enable my network for IPv6

sebastia I don't know so much about IPv6 and I can tell for sure that all I can find on forum didn't help me, but there aren't MTCIPv6E made by favorite trainer this year, so I need to wait. I have an IPv4 network with OSPF connecting every tower, PPPoE server in the tower's RB that connects every A...
by Redmor
Sun Feb 24, 2019 12:50 pm
Forum: General
Topic: How do I enable my network for IPv6
Replies: 5
Views: 494

Re: How do I enable my network for IPv6

There's a course for IPv6, MTCIPv6E, that I recommend if you really want to learn.
An answer from a forum user or MK support is nothing compared to a course made by a trainer.
by Redmor
Sat Feb 23, 2019 8:01 pm
Forum: General
Topic: Hotspot Apple Login Page HELP!
Replies: 19
Views: 2339

Re: Hotspot Apple Login Page HELP!

We're in 2019 and mobile operators sell 50GB/month for 5€, who needs hotspots anymore?
by Redmor
Fri Feb 22, 2019 1:26 am
Forum: General
Topic: Hotspot Apple Login Page HELP!
Replies: 19
Views: 2339

Re: Hotspot Apple Login Page HELP!

The problem appears because iPhone tries to load captive.apple.com, but I think if you have 4G and you're connected to an hotspot, then captive.apple.com is reachable and captive portal won't trigger. Have you tried disabling 4G? If in that case works, you should study a way to make iPhones believe ...
by Redmor
Tue Feb 19, 2019 8:56 am
Forum: Wireless Networking
Topic: Why is B band not active even if wireless set to B/G/N?
Replies: 5
Views: 476

Re: Why is B band not active even if wireless set to B/G/N?

Same happens with 5GHz, channel 20MHz ac but n and a clients can connect.
by Redmor
Mon Feb 11, 2019 10:44 pm
Forum: General
Topic: ROS v6.43.x Hacked using same old vulnerability
Replies: 2
Views: 781

Re: ROS v6.43.x Hacked using same old vulnerability

Destroy RB and buy a new one.
by Redmor
Mon Feb 11, 2019 10:42 pm
Forum: Announcements
Topic: v6.43.12 [stable] is released!
Replies: 49
Views: 12334

Re: v6.43.12 [stable] is released!

Just one improvement? Can't you add some Easter egg when releasing this kind of stable?
by Redmor
Fri Feb 08, 2019 8:00 pm
Forum: Wireless Networking
Topic: Issues with 5ghz DynaDish, QRT and Mant
Replies: 1
Views: 260

Re: Issues with 5ghz DynaDish, QRT and Mant

I always had 10dBm difference between tx and rx with Disc Lite, 5dB difference with LHG and sometimes QRTs, but never with Dynadish.
by Redmor
Fri Feb 08, 2019 7:57 pm
Forum: Scripting
Topic: MAC Telnet in scripts
Replies: 5
Views: 579

Re: MAC Telnet in scripts

Sometimes I have to change parameters for clients connected to a PTMP, but with PPPoE server on another RB, I don't know which client is on that PTMP, so MAC Telnet in script would be useful in that case
by Redmor
Fri Feb 08, 2019 8:16 am
Forum: Wireless Networking
Topic: 802.11ax [SOLVED]
Replies: 118
Views: 19563

Re: 802.11ax [SOLVED]

I only use ARMs as clients and I don't see any problem.
I have throughput problem even with mibsbe in some cases, especially for client upload, or with NetMetal + mANT I only get 50Mbps throughput when with other vendors I get 200Mbps, but I think it's a mANT problem.
by Redmor
Fri Feb 08, 2019 8:13 am
Forum: Scripting
Topic: MAC Telnet in scripts
Replies: 5
Views: 579

Re: MAC Telnet in scripts

Can you SSH with scripts or API? I've tried without success.
by Redmor
Thu Feb 07, 2019 9:57 pm
Forum: Scripting
Topic: MAC Telnet in scripts
Replies: 5
Views: 579

MAC Telnet in scripts

I would like to MAC Telnet in scripts, don't you?
by Redmor
Thu Feb 07, 2019 9:29 pm
Forum: Wireless Networking
Topic: 802.11ax [SOLVED]
Replies: 118
Views: 19563

Re: 802.11ax [SOLVED]

I'd prefer to see ax based protocol than Wave 2 ac
by Redmor
Thu Feb 07, 2019 9:06 pm
Forum: Wireless Networking
Topic: 802.11ax [SOLVED]
Replies: 118
Views: 19563

Re: 802.11ax [SOLVED]

Come on MikroTik support, at least tell us if you're planning something or not.
by Redmor
Thu Feb 07, 2019 8:20 pm
Forum: General
Topic: Severe port flapping on CRS328-24P-4S+ and CRS317-1G-16S+
Replies: 145
Views: 19439

Re: Severe port flapping on CRS328-24P-4S+ and CRS317-1G-16S+

I ever had bad experiences with CRSs port flapping and I don't use them anymore, both ethernets and SFPs.
Sometimes on CCRs ports go totally down, disabling and enabling them solves the problem.
by Redmor
Thu Feb 07, 2019 8:16 pm
Forum: General
Topic: Address List Between Devices
Replies: 2
Views: 401

Re: Address List Between Devices

I don't think you can do that with MK, but if you use API and a program you can update them.
For example to update manually you can make a PHP program that connects to every IP specified in an array and then add an IP to a specific address list.
by Redmor
Wed Feb 06, 2019 11:34 am
Forum: Scripting
Topic: API getall routing-mark main [SOLVED]
Replies: 2
Views: 421

Re: API getall routing-mark main [SOLVED]

Thank you, it works.
by Redmor
Wed Feb 06, 2019 11:12 am
Forum: Scripting
Topic: API getall routing-mark main [SOLVED]
Replies: 2
Views: 421

API getall routing-mark main [SOLVED]

Hello, I'm trying to get the default route with routing mark main using API, but returned array is empty Code with routing mark main. $gateway=$API->comm('/ip/route/getall', array('?dst-address'=>'0.0.0.0/0', '?distance'=>'1', '?routing-mark'=>'main')); I see that, if I don't specify routing mark, t...
by Redmor
Mon Feb 04, 2019 8:28 am
Forum: Announcements
Topic: February Newsletter #87
Replies: 65
Views: 14530

Re: February Newsletter #87

What about CCR1036-12G-4S+?
by Redmor
Sun Feb 03, 2019 6:56 pm
Forum: General
Topic: Two SSID, Two DHCP servers
Replies: 13
Views: 941

Re: Two SSID, Two DHCP servers

I don't use VLAN for separate wireless networks with CAPsMAN, I just need to add the guest ones in another bridge on CAPsMAN RB manager, my guests can't even see L2 neighbors because in the guest bridge there aren't ethernets.
by Redmor
Thu Jan 31, 2019 9:45 pm
Forum: Wireless Networking
Topic: 802.11ax [SOLVED]
Replies: 118
Views: 19563

802.11ax [SOLVED]

Is MikroTik planning to make some new antennas with 802.11ax protocol?
by Redmor
Wed Jan 30, 2019 8:17 am
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

After this explanation I'm totally sure that is an hardware problem.
Can't you call or email your vendor to be more sure about that, before return?
by Redmor
Wed Jan 30, 2019 12:57 am
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

Are you using scanner, freq. usage or snooper? Because the first one doesn't show you AP that haven't 802.11, Nstreme or Nv2 (it's like scanning for Wi-Fi using a smartphone, you can't see Nv2 networks). Use freq. usage or snooper to find out if there's an AP in the same frequency. The problem with ...
by Redmor
Tue Jan 29, 2019 10:36 pm
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

The fact that config is the same makes me think that is an hardware problem for sure. When you reboot there's a frequency change? Maybe you have a 5GHz antenna near 4011 that is using a proprietary protocol different from Nv2 and 802.11 and you can't see it from scan, 4011 selects the same frequency...
by Redmor
Tue Jan 29, 2019 9:24 pm
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

The only strange thing that I see in your config is eap-method="", is that set and blank? If yes, unset it, even if isn't causing the problem.
Try to swap them or buy a third one, apply the same config and see if the problem still happens.
If the problem is solved, you can return your 4011 to vendor.
by Redmor
Tue Jan 29, 2019 9:02 pm
Forum: General
Topic: High number of established connections for one address
Replies: 20
Views: 1407

Re: High number of established connections for one address

Thanks for the replies! So if I am downloading a file from the Internet, say CentOS 7 DVD or something larger that takes a few hours on slower Internet, would it kill that after 30 minutes? If not, maybe it would work.
No TCP established timeout doesn't close connection every 30 minutes.
by Redmor
Tue Jan 29, 2019 8:56 pm
Forum: General
Topic: RouterOS on X86 10Gb autonegotiaton problems
Replies: 2
Views: 710

Re: RouterOS on X86 10Gb autonegotiaton problems

Disable auto negotiation, there's no difference.
If the link has to go to 10Gbps and rate goes to 1Gbps then you'll have the same problem has it is down.
by Redmor
Tue Jan 29, 2019 8:54 pm
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

Remember that support hasn't so much experience on the field than some forum users, and also time. I can say for sure that having special characters in SSID (@ for example) or both WPA and WPA2 with tkip and AES cause connection issues to iPhones, I don't know if people from support have this user e...
by Redmor
Tue Jan 29, 2019 8:48 pm
Forum: General
Topic: SXT LTE not reconnecting
Replies: 8
Views: 1314

Re: SXT LTE not reconnecting

In my case lte1 is registered and has got IP address, but traceroute can't even reach nexthop.
Solved with watchdog to 8.8.8.8 for now.
by Redmor
Tue Jan 29, 2019 8:46 pm
Forum: General
Topic: Don't buy Mikrotik hardware! NO SUPPORT
Replies: 15
Views: 1468

Re: Don't buy Mikrotik hardware! NO SUPPORT

DON'T buy any hardware from Mikotik, NO SUPPORT AT ALL. I agree, but only when it comes to their RBSXTLTE3-7 and RBwAPR-2nD&R11e-LTE. I've been talking to their support about the routers loosing LTE connection and can't reconnect. All their support stopped end of 2018. Makes me wonder if its their ...
by Redmor
Tue Jan 29, 2019 8:43 pm
Forum: General
Topic: PPPoE: Peer is not responding
Replies: 22
Views: 16884

Re: PPPoE: Peer is not responding

Hello my friend i have 5000 active PPPOE session on Mikrotik without any problem. peer not responding log usually happen when client have low bandwidth or error. and i have a question.are you upgrade your router? and what license you use? 5K on the same RB? Oh God... By the way I noticed that havin...
by Redmor
Tue Jan 29, 2019 8:33 pm
Forum: General
Topic: [Formal Complaint] Support is ignoring my problem for 3 weeks
Replies: 28
Views: 1825

Re: [Formal Complaint] Support is ignoring my problem for 3 weeks

Can you provide us /export hide-sensitive for both 4011? Have you upgraded to last stable? Also firmware? If you swap 4011s (physically and configuration), the problem also happens in the good one or still happens in the "bad" one? When swapped, if problem happens in the good one it's a config probl...
by Redmor
Tue Jan 29, 2019 8:22 am
Forum: General
Topic: Italy MUM
Replies: 8
Views: 608

Re: Italy MUM

We have matter.
by Redmor
Tue Jan 29, 2019 12:27 am
Forum: Forwarding Protocols
Topic: Traffic Engineering guide
Replies: 0
Views: 442

Traffic Engineering guide

I'm looking for a very detailed guide for Traffic Engineering.
Can someone link me a guide? I have to wait a year for next MTCINE.
I would like to know how to dynamic route through TE tunnels.
by Redmor
Tue Jan 29, 2019 12:25 am
Forum: Forwarding Protocols
Topic: How to prioritise traffic on Eth1 untill full then use Eth2 as overflow
Replies: 3
Views: 432

Re: How to prioritise traffic on Eth1 untill full then use Eth2 as overflow

If you can make it work go for TE, I never made it work but I think it's the best solution.
by Redmor
Tue Jan 29, 2019 12:21 am
Forum: General
Topic: DHCP philosophy - where/what is it best served by?
Replies: 9
Views: 653

Re: DHCP philosophy - where/what is it best served by?

Remember that the less you do, the more you can blame the others and sell your services.
"DHCP isn't working? It's because I didn't do your AD server."
"You got a virus? It's because that guy sold you a bad firewall, buy one from me."
by Redmor
Tue Jan 29, 2019 12:10 am
Forum: General
Topic: Italy MUM
Replies: 8
Views: 608

Re: Italy MUM

... We have the sea, pizza, hot women, hot men, hot (fill in the blank)... Dear anav, you are not much better than Redmor. In modern era, mentioning any gender is sexistic and offensive. I mean - how do you dare to assume someone's gender? In addition, adjective "hot" is objectifying person based o...
by Redmor
Mon Jan 28, 2019 11:50 pm
Forum: General
Topic: Italy MUM
Replies: 8
Views: 608

Re: Italy MUM

Redmor, you are showing your age. No young person in this day an age, would make such gender specific sexist remarks (girls??)LOL. I have reworded your post for the modern era...... What about doing the next MUM in Italy? We have the sea, pizza, hot women, hot men, hot (fill in the blank)... This f...
by Redmor
Mon Jan 28, 2019 8:55 pm
Forum: General
Topic: Italy MUM
Replies: 8
Views: 608

Italy MUM

What about doing next MUM in Italy?
by Redmor
Mon Jan 28, 2019 8:51 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

You can't use anymore country settings and frequency mode different from regulatory domain.
by Redmor
Mon Jan 28, 2019 8:49 pm
Forum: General
Topic: Limit upload connection by SIZE.
Replies: 4
Views: 455

Re: Limit upload connection by SIZE.

Try to block adding out interface.
by Redmor
Mon Jan 28, 2019 8:29 pm
Forum: General
Topic: Schedule to enable/disable interface
Replies: 2
Views: 339

Re: Schedule to enable/disable interface

Can't you hire someone to do the job? It's plenty of people looking for a job out there.
by Redmor
Mon Jan 28, 2019 8:25 pm
Forum: General
Topic: Don't buy Mikrotik hardware! NO SUPPORT
Replies: 15
Views: 1468

Re: Don't buy Mikrotik hardware! NO SUPPORT

Hi, I'm afraid to say this, but DON'T buy any hardware from Mikotik, NO SUPPORT AT ALL. For more than a year problem with Mikrotik WAPac and WiFi clients with broadcom chipset. Emailed a lot, given all necessary info, no results, last emails don't have any response! You're probably using a wrong co...
by Redmor
Sun Jan 27, 2019 10:32 pm
Forum: General
Topic: bulk update for interface with 180 VLANs
Replies: 1
Views: 307

Re: bulk update for interface with 180 VLANs

:foreach i in=[/interface vlan find] do={/interface vlan set $i interface=BondingInterface1}

This script changes ALL vlans
by Redmor
Fri Jan 25, 2019 8:18 am
Forum: General
Topic: pasting .rsc on a blank slate router
Replies: 4
Views: 495

Re: pasting .rsc on a blank slate router

Script should be pasted even if you disconnect.
If you want to be sure change /system identity at the end, so you will have a feedback.
by Redmor
Fri Jan 25, 2019 8:16 am
Forum: General
Topic: No country [SOLVED]
Replies: 4
Views: 624

Re: No country [SOLVED]

Hi, can you tell me how I have to do it?
/interface wireless set wlan1 frequency-mode=superchannel scan-list=4900-6100
by Redmor
Fri Jan 25, 2019 8:14 am
Forum: General
Topic: Which types of ports would you like to see for a high speed router
Replies: 168
Views: 25922

Re: Which types of ports would you like to see for a high speed router

I would like a CCR 1036 with 4 SFP+
by Redmor
Thu Jan 24, 2019 9:50 pm
Forum: General
Topic: Address list in allowed addresses
Replies: 6
Views: 497

Re: Address list in allowed addresses

TIP : If you don't see it in a pull-down menu after its creation, you can't use it. Address-list is in the firewall section, and is usable only for firewall configs. The idea is interesting though!! Cheers, In some cases I have allowed addresses in an address list, in those cases I have to write th...
by Redmor
Thu Jan 24, 2019 9:47 pm
Forum: General
Topic: Auto MTU for VPNs
Replies: 0
Views: 269

Auto MTU for VPNs

Why there's no auto MTU for PPTP, SSTP and L2TP like PPPoE?
I've found after several tries that default 1450 is too big for LTE and was causing slow upload, setting it to 1440 solved the problem.
by Redmor
Thu Jan 24, 2019 9:45 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability or hack?

RouterOS can’t know which config is added by you, which added by rogue user, so either you check the config by hand or clear all of it. RouterOS can remove tools and scripts and such

But in /export it's easy to see what a rogue user did.
by Redmor
Thu Jan 24, 2019 8:21 am
Forum: General
Topic: Address list in allowed addresses
Replies: 6
Views: 497

Re: Address list in allowed addresses

example please.
/user set admin allowed-addresses=address_list instead of IPs, for example I have an address list that already contains same IPs that are in allowed addresses.
by Redmor
Wed Jan 23, 2019 10:13 pm
Forum: General
Topic: UDP SIP INVITEs fragmenting through EoIP
Replies: 8
Views: 538

Re: UDP SIP INVITEs fragmenting through EoIP

Stay with default MTU (1458 for EoIP 1438 if running PPPoE through it) or use VPLS tunnels, with them you can set MTU to 1500 or higher.
by Redmor
Wed Jan 23, 2019 10:11 pm
Forum: General
Topic: Address list in allowed addresses
Replies: 6
Views: 497

Address list in allowed addresses

I would like to use address list in allowed addresses fields, what do you think?
by Redmor
Wed Jan 23, 2019 9:55 pm
Forum: General
Topic: What about January newsletter?
Replies: 1
Views: 286

What about January newsletter?

What about January newsletter? I bet this is the time for Nv3 and ROS 7
Support reply if there will be Nv3 or ROS 7 this time :D
by Redmor
Wed Jan 23, 2019 5:27 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability or hack?

1) I ALWAYS said that this hacked RB, even if behind dst-nat, has got the firewall that I've posted, so it isn't opened to the internet, access is restricted. 2) I don't use default username admin 3) I don't use backup files or exports to reconfigure, I have exports but I rewrite whole configuration...
by Redmor
Wed Jan 23, 2019 3:39 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability or hack?

normis https://blog.mikrotik.com/security/new-exploit-for-mikrotik-router-winbox-vulnerability.html there's a point that says: "Regardless of version used, all RouterOS versions that have the default firewall enabled, are not vulnerable" Is my firewall as sure as denconf? Please tell me what do you...
by Redmor
Tue Jan 22, 2019 9:48 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability or hack?

Anav ... should mrz explain again and again and step by step what to do when you are hacked or could expect that autor is aware of https://blog.mikrotik.com/ "Regardless of version used, all RouterOS versions that have the default firewall enabled, are not vulnerable" I want to know what makes defc...
by Redmor
Tue Jan 22, 2019 9:43 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability or hack?

Currently there is no new known winbox port vulnerabilities. If you are sure that after first hack you reinstalled the route rand changed login credentials, then contact support. There are cases that routers get "hacked" even after upgrade, because already stolen credentials was not changed. mrz, a...
by Redmor
Tue Jan 22, 2019 9:41 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability

I agree, until you know more that title is speculation and unnecessary. It could be just as accurate to state, IM AN INSECURE ADMIN HELP. Why would you leave WInbox open to the internet? Did you at least use Port Knocking techniques? Why was access not via VPN. Was the router hacked previously and ...
by Redmor
Tue Jan 22, 2019 3:37 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability

I agree, until you know more that title is speculation and unnecessary. It could be just as accurate to state, IM AN INSECURE ADMIN HELP. Why would you leave WInbox open to the internet? Did you at least use Port Knocking techniques? Why was access not via VPN. Was the router hacked previously and ...
by Redmor
Tue Jan 22, 2019 3:31 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

Re: 6.43.8 vulnerability

Guys, please. 1. If the reason is unknown, it's not an hack until you spot what's wrong in config 2. I have the same config everywhere 3. Winbox is not open to the world, I have an accept rule with src-address list public IPs that I use to connect (exactly 4) to connect. 4. Everything in input is dr...
by Redmor
Tue Jan 22, 2019 1:58 pm
Forum: General
Topic: 6.43.8 vulnerability or hack?
Replies: 31
Views: 6670

6.43.8 vulnerability or hack?

I have a RB that has been attacked twice in two months. I don't have an export, but: 1. RB is dst-natted with port 8292 to 8291 2. There's a simple firewall that drops invalid connection, then accepts connections from src-address list, accepts icmp, established, related and drops input. 3. Only winb...
by Redmor
Sun Jan 20, 2019 1:18 pm
Forum: General
Topic: No country [SOLVED]
Replies: 4
Views: 624

Re: No country [SOLVED]

Set superchannel and scan-list 4900-6100
by Redmor
Sat Jan 19, 2019 3:00 pm
Forum: General
Topic: PWR-Line AP coordinator selection
Replies: 0
Views: 308

PWR-Line AP coordinator selection

Should coordinator be the PWR-Line that is wired connected to the router or can be every PWR-Line? That's the question that made me set CCO MAC selection as always on PWR-Line connected to the router and as never or auto to the others. I've noticed that, if always CCO PWR-Line goes down, with the ot...
by Redmor
Sat Jan 19, 2019 3:11 am
Forum: General
Topic: Help with home networks
Replies: 4
Views: 373

Re: Help with home networks

Yes, I can use "create enabled" with CAPsMAN, but I wouldn't have ap-bridge...
by Redmor
Sat Jan 19, 2019 1:10 am
Forum: General
Topic: Help with home networks
Replies: 4
Views: 373

Re: Help with home networks

central cmdb? ;-)
DBs should be updated by people, never trust people.
by Redmor
Sat Jan 19, 2019 12:59 am
Forum: General
Topic: MULTI ISP SETTING
Replies: 2
Views: 319

Re: MULTI ISP SETTING

Recursive routing is the answer.
by Redmor
Sat Jan 19, 2019 12:56 am
Forum: General
Topic: How to copy a dynamic route?
Replies: 2
Views: 341

Re: How to copy a dynamic route?

Can't you make it static? You should provide type of route and current configuration.
by Redmor
Sat Jan 19, 2019 12:54 am
Forum: General
Topic: Help with home networks
Replies: 4
Views: 373

Help with home networks

I need to know if there's a best way to know the exact number of APs in a customer home. For example, a coworker installed 3 APs and one goes down, but as you know, customer never knows the exact number of APs in his home and thinks that there's something not working. I log into the router and in ne...
by Redmor
Fri Jan 18, 2019 11:06 pm
Forum: General
Topic: Mode button to run script
Replies: 1
Views: 297

Mode button to run script

There's a way to make mode button run a script in "/system script" on event?
I would like to modify script when I need instead of rewrite it entirely.
by Redmor
Fri Jan 18, 2019 11:04 pm
Forum: General
Topic: RB951G-2HnD MTU problem [SOLVED]
Replies: 14
Views: 883

Re: RB951G-2HnD MTU problem [SOLVED]

Leave MTU as is.
If you need more MTU try to use VPLS tunnels.
by Redmor
Mon Jan 14, 2019 12:41 am
Forum: General
Topic: Mikrotik wifi no internet when connected with 2 bars
Replies: 1
Views: 248

Re: Mikrotik wifi no internet when connected with 2 bars

Try to change frequency sometimes it happens when auto frequency selection choose 2412.
by Redmor
Sun Jan 06, 2019 5:24 am
Forum: General
Topic: much difference between tx / Rx
Replies: 4
Views: 401

Re: much difference between tx / Rx

Try to downgrade if you updated.
If nothing changes, it means you can't transmit well as before because of noise, remember you aren't using Dynadish but SXT.
by Redmor
Sun Jan 06, 2019 5:22 am
Forum: General
Topic: LHG LTE, differences between LTE and 4G models?
Replies: 1
Views: 279

LHG LTE, differences between LTE and 4G models?

What are the differences between LHG LTE and 4G models, except for gain?
by Redmor
Sat Jan 05, 2019 5:33 pm
Forum: General
Topic: BGP + PPPoE Mikrotik CCR and MTU Problem
Replies: 2
Views: 289

Re: BGP + PPPoE Mikrotik CCR and MTU Problem

I have 1480 MTU on every RB in my network and I don't have this issue, it isn't the cause of the problem
By the way if you want 1500 MTU set MRRU to 1504 in both PPPoE server and clients.
by Redmor
Fri Jan 04, 2019 8:30 am
Forum: General
Topic: Bandwith test works just in one direction
Replies: 3
Views: 334

Re: Bandwith test works just in one direction

Are those routers connected with ethernet?
If yes, are ethernets in full-duplex?
by Redmor
Fri Jan 04, 2019 12:36 am
Forum: Wireless Networking
Topic: wAP LTE Kit: lte1 interface does not register to austrian A1 network (static ip-APN) [SOLVED]
Replies: 9
Views: 2251

Re: wAP LTE Kit: lte1 interface does not register to austrian A1 network (static ip-APN) [SOLVED]

For the WAP LTE that needs a user authentication there is a need for a LTE firmware upgrade to v008. Please see the attachment how to do the LTE firmware upgrade. The LTE firmware upgrade can only be executed via active LTE connection as the LTE modem is connecting to the firmware server. How do th...
by Redmor
Fri Jan 04, 2019 12:36 am
Forum: Wireless Networking
Topic: wAP LTE Kit: lte1 interface does not register to austrian A1 network (static ip-APN) [SOLVED]
Replies: 9
Views: 2251

Re: wAP LTE Kit: lte1 interface does not register to austrian A1 network (static ip-APN) [SOLVED]

For the WAP LTE that needs a user authentication there is a need for a LTE firmware upgrade to v008. Please see the attachment how to do the LTE firmware upgrade. The LTE firmware upgrade can only be executed via active LTE connection as the LTE modem is connecting to the firmware server. Thanks a ...
by Redmor
Fri Jan 04, 2019 12:34 am
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Bug is solved in newer wAPs because they come out with LTE firmware v8, you have v1. Ask support@mikrotik.com the guide to upgrade wAP's LTE firmware, and always upgrade wAPs to last stable version. You're referring to this? https://wiki.mikrotik.com/wiki/Manual:Interface/LTE#Modem_firmware_upgrade...
by Redmor
Fri Jan 04, 2019 12:31 am
Forum: Wireless Networking
Topic: real p2p performance of DISC Lite5 ac
Replies: 3
Views: 622

Re: real p2p performance of DISC Lite5 ac

You can use Disc Lite as a frisbee, as a dish for dinner, as an Halloween Mask, as a friend on a desert island, but don't use it for PTP, PTMP or everything else that involves its wlan1.
by Redmor
Fri Jan 04, 2019 12:25 am
Forum: General
Topic: PPTP server problem
Replies: 7
Views: 719

Re: PPTP server problem

You should use your public IP to connect from the outside instead of 192.168.178.210, you can't reach that IP from Internet. The masquerade rule you used is useless in this case. Are you trying to make a VPN to connect to your LAN? Assume your public IP is 1.2.3.4, do the following: 1. Choose a priv...
by Redmor
Thu Jan 03, 2019 9:06 pm
Forum: General
Topic: PPTP server problem
Replies: 7
Views: 719

Re: PPTP server problem

Looks like 192.168.178.201 isn't src-natted, can you post your 750 configuration?
by Redmor
Thu Jan 03, 2019 1:48 am
Forum: General
Topic: PPTP server problem
Replies: 7
Views: 719

Re: PPTP server problem

Are you sure that your ISP isn't blocking pptp servers?
by Redmor
Thu Jan 03, 2019 1:47 am
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Re: Should MikroTik make more powerful antennas and wireless protocols in 2019?

You know that we will not see new kernel on current RBs? Update actual RBs or make new ones with new kernel, better hardware and so on, what's the best choice for MK that is selling their products?
Come on, it's not so different than smartphones.
by Redmor
Wed Jan 02, 2019 12:44 am
Forum: General
Topic: No proxy-arp working on l2tp client active
Replies: 7
Views: 544

Re: No proxy-arp working on l2tp client active

Not sure about proxy-arp, a MK Trainer said to me during MTCNA course to not use it with VPNs, so I found another way.

It is recommended on the wiki, however.
If something is on the Wiki it doesn't mean it's the word of God and no one can say that there are better ways.
by Redmor
Tue Jan 01, 2019 11:00 pm
Forum: General
Topic: No proxy-arp working on l2tp client active
Replies: 7
Views: 544

Re: No proxy-arp working on l2tp client active

The fact that is both client and server should not make this problem. I suggest to post remaining configuration (I don't see mangle) and wait for someone else to answer, I never tried this configuration with both client and server, I always had configuration like L2TP client in another client. Is a ...
by Redmor
Tue Jan 01, 2019 8:07 pm
Forum: General
Topic: No proxy-arp working on l2tp client active
Replies: 7
Views: 544

Re: No proxy-arp working on l2tp client active

I don't think it's a routing problem because you have same network for LAN and L2TP, so there's nothing to route, or maybe you're marking LAN connections using only src-address and you don't have dst-address (for example !LAN Network), in that case you mark everything and you wouldn't neither be abl...
by Redmor
Tue Jan 01, 2019 1:10 pm
Forum: General
Topic: vlan VS eoip tunnel [SOLVED]
Replies: 1
Views: 376

Re: vlan VS eoip tunnel [SOLVED]

If you can, use vlan.
EoIP is made to bring you L2 in a L3 environment, no need to use that if you're already L2.
Plus EoIP slowers MTU, this means packet fragmentation.
by Redmor
Tue Jan 01, 2019 12:17 pm
Forum: General
Topic: My firewall block dns\ntp\google- can someone see why?
Replies: 11
Views: 898

Re: My firewall block dns\ntp\google- can someone see why?

You have a drop forward but as I see you don't accept forwarding connections for ports 443, 53, icmp and NTP.
by Redmor
Mon Dec 31, 2018 3:48 am
Forum: General
Topic: Port forwarding with PPPOE doesn't work
Replies: 2
Views: 556

Re: Port forwarding with PPPOE doesn't work

in-interface should be PPPoE client, or you can use dst-address (your public IP) instead of that.
to-ports value is unnecessary, you should use that when internal port is different from external one.
by Redmor
Mon Dec 31, 2018 3:42 am
Forum: General
Topic: No proxy-arp working on l2tp client active
Replies: 7
Views: 544

Re: No proxy-arp working on l2tp client active

Avoid using proxy ARP and same network for LAN and VPN.
Choose a different /24, you can use the same local address for every client, and if you need to reach LAN clients from VPN just masquerade.
by Redmor
Sun Dec 30, 2018 3:38 am
Forum: General
Topic: reset mikrotik password
Replies: 2
Views: 255

Re: reset mikrotik password

please help me to reset mikrotik password without loose configuration, I have a backup file , the mikrotik is configured 2015 and i think is with old system. please help me If you added it on Dude with correct password you can select the device, copy with CTRL+C and then if you paste in a txt you'l...
by Redmor
Sun Dec 30, 2018 3:37 am
Forum: General
Topic: Arp ping vs. ip ping
Replies: 4
Views: 514

Re: Arp ping vs. ip ping

Ether5 is allocated ip address of 192.168.25.1 , the ubiquiti radio attached to this interface is a rocketM2 in bridge mode as access point with ip 192.168.25.2. I can connect to all clients gui on this subnet but not the ap directly connected to ether5.... I get no response from it but no problem ...
by Redmor
Sat Dec 29, 2018 12:44 pm
Forum: General
Topic: Full Speed only with many Connections
Replies: 10
Views: 636

Re: Full Speed only with many Connections

Hello, I have an MT router CCR1016. Connected is a Cisco CMTS C4 for cable internet. Customers on this CMTS have between 200-400 MB of Internet download. Unfortunately, the downloads come with a single download only about 60-80 Mbit / s. In a speed test with 20 simultaneous TCP connections, the boo...
by Redmor
Thu Dec 27, 2018 1:35 pm
Forum: General
Topic: Traffic Generator >1Gbps
Replies: 2
Views: 264

Re: Traffic Generator >1Gbps

Try to make a bandwidth test in UDP, you won't use single core like TCP.
by Redmor
Thu Dec 27, 2018 1:32 pm
Forum: General
Topic: Strange internet issue with Sony TV
Replies: 9
Views: 566

Re: Strange internet issue with Sony TV

I will make that change. But the issue is for wired connection not wifi. Except for firewall rules I don't see nothing strange or that can block your TV. You can: 1. Try to disable firewall and see if the problem happens again 2. Try to disable "Bridge fast path" in /bridge settings, I had some pro...
by Redmor
Thu Dec 27, 2018 1:19 pm
Forum: General
Topic: IP Firewall Nat
Replies: 2
Views: 319

Re: IP Firewall Nat

You can make two firewall rules with: 1. chain forward 2. protocol 3. dst-port 4. src-mac address 5. action accept Repeat this one for every mac address you need, you can't make lists (if I remember correctly) Second one: 1. chain forward 2. protocol 3. dst-port 4. action drop Specify in-interface o...
by Redmor
Thu Dec 27, 2018 1:14 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

My lte does not register 0:59:52 echo: lte,async,raw lte1: sent AT+CSQ 00:59:52 echo: lte,async,raw lte1: rcvd +CSQ: 99,99 [admin@MikroTik] > 00:59:55 echo: lte,async,raw lte1: sent AT+EEMGINFO? 00:59:55 echo: lte,async,raw lte1: rcvd OK 00:59:55 echo: lte,async,raw lte1: sent AT+CSQ 00:59:55 echo:...
by Redmor
Thu Dec 27, 2018 1:39 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

RouterBOARD 941-2nD, after upgrade from 6.43.6:
After fresh setup of L2TP/IPsec with pre-shared secret, clients cannot connect to VPN if pre-shared secret contains more than 4 characters :-/
Please write OS of devices, I have a similar problem but only with Windows.
by Redmor
Thu Dec 27, 2018 1:37 am
Forum: General
Topic: Strange internet issue with Sony TV
Replies: 9
Views: 566

Re: Strange internet issue with Sony TV

Here is my config. Any help would be greatly appreciated. I have been pulling my hair our with this one device! # dec/26/2018 18:12:51 by RouterOS 6.42.10 # software id = RUX4-KZDK # # model = CRS125-24G-1S # serial number = 63220561215C /interface bridge add name=bridge1 /interface ethernet set [ ...
by Redmor
Wed Dec 26, 2018 9:27 pm
Forum: General
Topic: Strange internet issue with Sony TV
Replies: 9
Views: 566

Re: Strange internet issue with Sony TV

CRSs are mainly made for switching, they can also be used as routers, but I suggest to take a RB750 and let it do routing stuff, while CRS does only switching.
by Redmor
Wed Dec 26, 2018 8:35 pm
Forum: General
Topic: RouterOS 5.2 to Current [SOLVED]
Replies: 8
Views: 1003

Re: RouterOS 5.2 to Current [SOLVED]

You should use version 6.40.8 bugfix and then update to last stable.
With 5.25 check for updates provides 6.40.8.
by Redmor
Wed Dec 26, 2018 8:32 pm
Forum: General
Topic: Cannot connect to four (!!) brand new (!!) CCR1016-12G
Replies: 1
Views: 191

Re: Cannot connect to four (!!) brand new (!!) CCR1016-12G

1. Try a different port
2. Try a different switch
3. Remove the "switch"
4. Are you sure it is a switch?
by Redmor
Wed Dec 26, 2018 5:45 pm
Forum: General
Topic: Help choosing a router
Replies: 4
Views: 375

Re: Help choosing a router

You can try RB4011, it's like RB3011 but has the CPU of a 1100AHx4, plus there's the version with Wi-Fi
by Redmor
Tue Dec 25, 2018 11:46 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

strods I'm not saying that this change is wrong, it should work like that, but: 1. Write it in changelog 2. If you have to update and set regulatory domain for countries, why removing superchannel with country set instead of unsetting country with superchannel set? I don't think this change is corr...
by Redmor
Mon Dec 24, 2018 10:36 pm
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Re: Should MikroTik make more powerful antennas and wireless protocols in 2019?

Guys, please... If 6.44 would be renamed to version 7.0, it won't solve all the problems. First we need new hardware, a Net Metal costs 150$ or something near that? That's the top of MK antennas, if you look to other vendors you can buy the equivalent of a Disc Lite with only 150$. There isn't so m...
by Redmor
Mon Dec 24, 2018 3:45 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

You are right that there could have been two ways to adjust the inaccurate setting for some users. We chose to adjust towards compliance, not towards incompliance. If user has set a country, he possibly wanted to be compliant already. I've CPE scheduled to autoupgrade via scheduler script "/system ...
by Redmor
Mon Dec 24, 2018 2:18 pm
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Re: Should MikroTik make more powerful antennas and wireless protocols in 2019?

Guys, please... If 6.44 would be renamed to version 7.0, it won't solve all the problems. First we need new hardware, a Net Metal costs 150$ or something near that? That's the top of MK antennas, if you look to other vendors you can buy the equivalent of a Disc Lite with only 150$. There isn't so m...
by Redmor
Mon Dec 24, 2018 4:07 am
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Re: Should MikroTik make more powerful antennas and wireless protocols in 2019?

Guys, please... If 6.44 would be renamed to version 7.0, it won't solve all the problems. First we need new hardware, a Net Metal costs 150$ or something near that? That's the top of MK antennas, if you look to other vendors you can buy the equivalent of a Disc Lite with only 150$. There isn't so mu...
by Redmor
Sun Dec 23, 2018 9:20 pm
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Re: Should MikroTik make more powerful antennas and wireless protocols in 2019?

I think it all depends on company's vision, what it wants to achieve / represent, and also business cases for each of the solutions, how big a market is there for it and how much will it cost in R&D. Technically it is just a matter of priority, right knowledge (which you can hire if necessary) & ef...
by Redmor
Sun Dec 23, 2018 8:36 pm
Forum: General
Topic: 6.43.8 secure update script
Replies: 1
Views: 425

6.43.8 secure update script

Hi all, I want to share the script I made to update to 6.43.8 without losing CPEs. With new 6.43.8, if you have a country set, you can't use manual-tx-power or superchannel anyome. What this mean? It means that if you upgrade to 6.43.8, the update changes superchannel frequency mode to regulatory do...
by Redmor
Sun Dec 23, 2018 8:21 pm
Forum: General
Topic: Should MikroTik make more powerful antennas and wireless protocols in 2019?
Replies: 19
Views: 1530

Should MikroTik make more powerful antennas and wireless protocols in 2019?

Hi all, I'm writing this topic to let users write about what they expect for the future and to let staff read different opinions. First, something that everyone loves: RouterOS. I think everyone agree that RouterOS is the best OS for antennas, you can take a RB and if you want it to make coffee, you...
by Redmor
Sun Dec 23, 2018 1:44 pm
Forum: General
Topic: 3 PPPOE same wan
Replies: 4
Views: 352

Re: 3 PPPOE same wan

I think there's something wrong in mangle, with these you're marking connections that are coming in, not those going out to pppoe2 or 3. Can you please post a screenshot of the connection in connection tracking? You should make a mangle with src address 192.168.88.0/24 protocol and port you natted f...
by Redmor
Sun Dec 23, 2018 1:08 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

strods I'm not saying that this change is wrong, it should work like that, but: 1. Write it in changelog 2. If you have to update and set regulatory domain for countries, why removing superchannel with country set instead of unsetting country with superchannel set? I don't think this change is corr...
by Redmor
Sun Dec 23, 2018 12:45 pm
Forum: General
Topic: PPPoE client help needed
Replies: 3
Views: 286

Re: PPPoE client help needed

Ciao Michele, da un punto di vista di configurazione dovrebbe bastare fare una VLAN con VLAN ID 835 sull'interfaccia dove colleghi FTTH e poi fare un PPPoE Client sulla VLAN, per quanto riguarda il collegamento non sono sicuro che basti collegare una 2011 per farlo funzionare o serva altro.
by Redmor
Sun Dec 23, 2018 12:25 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

You are right that there could have been two ways to adjust the inaccurate setting for some users. We chose to adjust towards compliance, not towards incompliance. If user has set a country, he possibly wanted to be compliant already. When will you understand that it is now impossible to conform? U...
by Redmor
Sat Dec 22, 2018 9:46 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

You are right that there could have been two ways to adjust the inaccurate setting for some users. We chose to adjust towards compliance, not towards incompliance. If user has set a country, he possibly wanted to be compliant already. I don't think that a user using superchannel with a country set ...
by Redmor
Sat Dec 22, 2018 2:35 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

strods I'm not saying that this change is wrong, it should work like that, but:
1. Write it in changelog
2. If you have to update and set regulatory domain for countries, why removing superchannel with country set instead of unsetting country with superchannel set?
by Redmor
Sat Dec 22, 2018 3:36 am
Forum: General
Topic: 3 PPPOE same wan
Replies: 4
Views: 352

Re: 3 PPPOE same wan

You should mark route the packets and then add default route with the chosen routing mark. For example /ip route add gateway=pppoe2 routing-mark=wan2 Use mark route in action of routing mark, I don't remember the exact syntax for the command, but you can use dst-address your LAN Network and the port...
by Redmor
Sat Dec 22, 2018 3:26 am
Forum: General
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 11
Views: 2403

Re: 6.43.8 UPDATE ALERT READ BEFORE UPDATE

I am very unfancy with wireless with only two capACs I do not even use capsman. Also each one has wlan1 = 2.4ghz for smart devices wlan2 = 5AC for a. home wifi and b. (virtual) VWLAN for guest wifi In both 2ghz cases on vlan In both virtual VWLAN cases on vlan Not sure if upgrade will affect them a...
by Redmor
Sat Dec 22, 2018 3:09 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

Has anyone at Mikrotik investigated this report??
viewtopic.php?f=2&t=143065
It isn't a report, is a decision.
You should use only regulatory domain in some countries, but when you face to low quality transmission and TDMA, and occupied frequencies, what else can you do?
by Redmor
Sat Dec 22, 2018 3:04 am
Forum: General
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 11
Views: 2403

Re: 6.43.8 UPDATE ALERT READ BEFORE UPDATE

Well I do have two CapACs, but I am holding off upgrading until mikrotik responds. Thats why I said Thanks!!! I fear they are already into the schnapps because they have not responded. :-( You can always remove country before update, I'm not worried about this decision, but at least it should be wr...
by Redmor
Sat Dec 22, 2018 2:57 am
Forum: Wireless Networking
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 5
Views: 961

Re: 6.43.8 UPDATE ALERT READ BEFORE UPDATE

Christmas surprise ;)
....
In my dreams MT sell wireless division to another company ....CAMBIUM :) . Don't troll more please.
I'm absolutely serious, try to update and see what happens.
by Redmor
Sat Dec 22, 2018 2:56 am
Forum: General
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 11
Views: 2403

Re: 6.43.8 UPDATE ALERT READ BEFORE UPDATE

I was going to believe the OP due to his credentials at the bottom of the post but then I saw he was from Italy, and had second thoughts, probably steering his ferrari with his left foot while checking out his WINBOX connection with his Iphone 10 in one hand and drinking wine out of the bottle in t...
by Redmor
Fri Dec 21, 2018 10:11 pm
Forum: Wireless Networking
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 5
Views: 961

6.43.8 UPDATE ALERT READ BEFORE UPDATE

Something that MikroTik forgot to write in changelog that is more important than everything else: If you had set a country and use frequency mode superchannel, updating to 6.43.8 will set regulatory domain. What does this mean? If you don't use frequencies in default scanlist, you are going to lose ...
by Redmor
Fri Dec 21, 2018 10:11 pm
Forum: General
Topic: 6.43.8 UPDATE ALERT READ BEFORE UPDATE
Replies: 11
Views: 2403

6.43.8 UPDATE ALERT READ BEFORE UPDATE

Something that MikroTik forgot to write in changelog that is more important than everything else: If you had set a country and use frequency mode superchannel, updating to 6.43.8 will set regulatory domain. What does this mean? If you don't use frequencies in default scanlist, you are going to lose ...
by Redmor
Fri Dec 21, 2018 9:47 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 33797

Re: v6.43.8 [stable] is released!

Thank you very much for this present!
Now if I have a country set I can only use regulatory domain and default scanlist, a real pain in the a*s.
That should be in changelog!
by Redmor
Wed Dec 19, 2018 8:28 am
Forum: Wireless Networking
Topic: Google Home AP Isolation
Replies: 5
Views: 2248

Re: Google Home AP Isolation

Local forwarding makes wlans to forward traffic like you're not using CAPsMAN, you can see that because you need to bridge wlans when in local forwarding.
Maybe it was horizon that was blocking Google Home and cast, I don't use it and neither local forwarding and I can cast.
by Redmor
Tue Dec 18, 2018 8:54 am
Forum: Wireless Networking
Topic: Google Home AP Isolation
Replies: 5
Views: 2248

Re: Google Home AP Isolation

AP isolation: Wi-Fi clients can't talk to each other without passing through the router, it's the function that blocks casting. In MK isn't called like that, but is default forward. Default forward: Flagged: no AP Isolation Unflagged: AP Isolation, you can't use Chromecast In CAPsMAN it's called "cl...
by Redmor
Tue Dec 18, 2018 8:51 am
Forum: Wireless Networking
Topic: USB LTE modem with external IP functionality?
Replies: 7
Views: 654

Re: USB LTE modem with external IP functionality?

You can still set up a VPN to route your public IP.
by Redmor
Tue Dec 18, 2018 8:49 am
Forum: General
Topic: 2 ip same mac in arp list but different mac in dhcp lease?
Replies: 1
Views: 211

Re: 2 ip same mac in arp list but different mac in dhcp lease?

It happens when you use repeaters, and you made one.
by Redmor
Mon Dec 17, 2018 12:25 am
Forum: Wireless Networking
Topic: Bridge port received packet with own address as source, probably loop
Replies: 44
Views: 39460

Re: Bridge port received packet with own address as source, probably loop

Probably is admin Mac address that causes the loop.
Try to set one instead of auto mac, for example I set ether1 Mac as admin Mac on AP and wlan1 on station
by Redmor
Mon Dec 17, 2018 12:18 am
Forum: General
Topic: EoIP + DHCP Issue [SOLVED]
Replies: 9
Views: 982

Re: EoIP + DHCP Issue [SOLVED]

In order to ping 192.168.78.1 from inside Mik2 I need to add a route in Mik2 and route all traffic to 192.168.78.1 from the pptp interface. But even when I do that, the DHCP is not working. 1. Try SSTP, it has a larger MTU 2. Set keepalive on both eoip tunnels 3. Try to set DHCP server and gateway ...
by Redmor
Sun Dec 16, 2018 9:25 am
Forum: Wireless Networking
Topic: Google Home AP Isolation
Replies: 5
Views: 2248

Re: Google Home AP Isolation

AP isolation is Default forward disabled in wlan1 or client to client forwarding in Capsman. If you're using local forwarding maybe you should enable them both, otherwise without local forwarding enable only client to client forwarding.
by Redmor
Sat Dec 15, 2018 8:49 pm
Forum: Wireless Networking
Topic: USB LTE modem with external IP functionality?
Replies: 7
Views: 654

Re: USB LTE modem with external IP functionality?

Buy wAP, LtAP or LHG LTE
by Redmor
Wed Dec 12, 2018 7:18 pm
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

Re: PWR-Line AP request for comment

Redmor, we sell them as single units, so you can set them as you want. Yes, you can set one master and 7 slaves.
I thought you sell them in couple, good to know.
Thank you very much.
by Redmor
Wed Dec 12, 2018 7:15 pm
Forum: General
Topic: if else won't run script but run on terminal !
Replies: 17
Views: 1473

Re: if else won't run script but run on terminal !

Never address items with index! Replace "0" with find command:
:if ([/ip route get [ find where gateway=ether1 ] active] = true) do={/lcd interface display ether1} else={/lcd interface display ether7}
Check if the condition is correct...
Well you can if you print :D
by Redmor
Wed Dec 12, 2018 6:48 pm
Forum: General
Topic: SIP SPA112 and MK registration issue
Replies: 0
Views: 230

SIP SPA112 and MK registration issue

Hello, I'm using a Cisco ATA SPA112 for VoIP and I don't know why sometimes they fail registration, after being registered for days. They're connected with a static local IP, I don't have PPPoE on them. They're are connected to a MK CPE and I can see from Connection tracking that the SPA112, when it...
by Redmor
Wed Dec 12, 2018 12:16 am
Forum: General
Topic: Arp ping vs. ip ping
Replies: 4
Views: 514

Re: Arp ping vs. ip ping

If you use last stable RouterOS try to disable Allow Fast Path in bridge settings (not fast forward, you have to look for a button "Settings" in bridge list menu)
by Redmor
Wed Dec 12, 2018 12:13 am
Forum: General
Topic: 6.43.7 bootloop on hAP AC
Replies: 2
Views: 359

Re: 6.43.7 bootloop on hAP AC

Reset won't solve installation issues.
If you can't access even after reset, buy a new hAP, it isn't expensive as a CCR.
by Redmor
Wed Dec 12, 2018 12:07 am
Forum: Wireless Networking
Topic: Newbie: LHG 5ac only hitting 100mbps
Replies: 30
Views: 2049

Re: Newbie: LHG 5ac only hitting 100mbps

Man you can't have 95Mbps both down and up, it's too much perfect.
You're bandwidth testing passing through a 100Mbps Ethernet for sure, or you have a queue set to 100Mbps.
by Redmor
Wed Dec 12, 2018 12:03 am
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

Re: PWR-Line AP request for comment

PL7411-2nD is available already. My first batch of it is on it's way and is expected on 12/19. So far the mentioned leaflet is the only info available. Once I get it I will perform some tests :) "Expected" in December means they'll arrive in January, but please post screenshots and photos when they...
by Redmor
Wed Dec 12, 2018 12:01 am
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

Re: PWR-Line AP request for comment

Seriously? Somebody needs better sleep, I think. You can buy WiFi single band wall warts since more than 10 years! So what? All IoT things are still single chain 2GHz, all arduino and smart bulbs, thermostats and what not. Those are the weakest devices that can't reach your main AP from the bedroom...
by Redmor
Tue Dec 11, 2018 11:58 pm
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

Re: PWR-Line AP request for comment

I want to answer to every comment: 1. Wife: I don't have a wife, but if you're here writing, then you're able to teach your wife to DON'T TOUCH RBs unless you call home and ask for a reboot. 2. Children: I don't have children, but if you're here writing then you're able to teach your children to DON...
by Redmor
Tue Dec 11, 2018 8:56 am
Forum: General
Topic: if else won't run script but run on terminal !
Replies: 17
Views: 1473

Re: if else won't run script but run on terminal !

Try to write only script name instead of /system script run, I never used it to run scripts from schedulers
by Redmor
Tue Dec 11, 2018 8:28 am
Forum: General
Topic: if else won't run script but run on terminal !
Replies: 17
Views: 1473

Re: if else won't run script but run on terminal !

These does not work: :put [/ip route get 0 active = no] expected end of command (line 1 column 29) :len [/ip route get 0 active] > 0 expected end of command (line 1 column 30 Try :if ([ :len [/ip route get 0 active]]>0), can't remember the right syntax, you also have to set right spaces to make it ...
by Redmor
Tue Dec 11, 2018 8:24 am
Forum: General
Topic: DHCP client script execution
Replies: 6
Views: 1344

Re: DHCP client script execution

I'll report what Wiki says: Script that will be executed after lease is assigned or de-assigned. Internal "global" variables that can be used in the script: leaseBound - set to "1" if bound, otherwise set to "0" leaseServerName - dhcp server name leaseActMAC - active mac address leaseActIP - active...
by Redmor
Mon Dec 10, 2018 10:34 pm
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

Re: PWR-Line AP request for comment

Not available yet, search for PL7411-2nD: The PWR-LINE AP is a wireless access point with a single Ethernet port , a built-in 802.11b/g/n WiFi radio and capability to connect to other PWR-LINE devices through the electrical lines in your premises. Details and pictures: https://i.mt.lv/cdn/rb_files/...
by Redmor
Mon Dec 10, 2018 8:48 pm
Forum: Wireless Networking
Topic: PWR-Line AP request for comment
Replies: 16
Views: 1768

PWR-Line AP request for comment

Someone has already bought PWR-Line APs?
They have two ethernets?
Someone can post screenshots of interfaces and other particular menus?
by Redmor
Mon Dec 10, 2018 8:45 pm
Forum: General
Topic: ❓ what's the best solution for OSPF and PPPoE service
Replies: 30
Views: 4711

Re: ❓ what's the best solution for OSPF and PPPoE service

The answer is NSSA and filters.
by Redmor
Mon Dec 10, 2018 8:43 pm
Forum: General
Topic: if else won't run script but run on terminal !
Replies: 17
Views: 1473

Re: if else won't run script but run on terminal !

I can't remember if [/ip route get 0 active] is boolean or not.
Try to :put [/ip route get 0 active] and :put [/ip route get 0 active=no], if the second doesn't return false use :len [/ip route get 0 active]>0 to trigger :if
by Redmor
Mon Dec 10, 2018 8:38 pm
Forum: General
Topic: Cannot upgrade v6.42.3 to v6.45.3
Replies: 3
Views: 408

Re: Cannot upgrade v6.42.3 to v6.45.3

There is no version 6.45.3.
Maybe his IP Cloud is in the future and he is John Titor.
John can you tell us about ROS v7?
by Redmor
Mon Dec 10, 2018 8:36 pm
Forum: General
Topic: DHCP client script execution
Replies: 6
Views: 1344

Re: DHCP client script execution

I'll report what Wiki says: Script that will be executed after lease is assigned or de-assigned. Internal "global" variables that can be used in the script: leaseBound - set to "1" if bound, otherwise set to "0" leaseServerName - dhcp server name leaseActMAC - active mac address leaseActIP - active ...
by Redmor
Sun Dec 09, 2018 2:11 pm
Forum: Wireless Networking
Topic: Nv2 Sync Mode Not working
Replies: 6
Views: 1331

Re: Nv2 Sync Mode Not working

https://wiki.mikrotik.com/wiki/Manual:Nv2#Configuration_example I used this document when processing. I tried "nv2 sync" mode in one location, it did not work. Actually it seems to work, but the clients are not connected. I installed two "SXT G-5HPacD r2" acess points at my office. I did the same t...
by Redmor
Sat Dec 08, 2018 8:51 pm
Forum: General
Topic: EoIP + DHCP Issue [SOLVED]
Replies: 9
Views: 982

Re: EoIP + DHCP Issue [SOLVED]

Tried that, but still nothing. Same behavior.
1. If you use a static IP, can you ping gateway?
2. Are you using keepalive? If no, enable it.
by Redmor
Wed Dec 05, 2018 8:06 pm
Forum: General
Topic: Active backup, bonding with vlans ?
Replies: 2
Views: 412

Re: Active backup, bonding with vlans ?

There's VRRP that is used to backup RBs with same configuration, I don't know if it's your case, try configure it and see what happens.
by Redmor
Wed Dec 05, 2018 12:09 am
Forum: General
Topic: Two interfaces to same router, different costs
Replies: 3
Views: 345

Re: Two interfaces to same router, different costs

Hi Redmor, thank you very much for your quick answer. Exactly, what do you mean by The only way to do that with OSPF is to have shortest paths for the traffic you need (only specific subnets) from one interface, and the rest from the other. Could you please show me an example? I can play on middle ...
by Redmor
Tue Dec 04, 2018 11:54 pm
Forum: General
Topic: What is main differences between stable and long-term? [SOLVED]
Replies: 7
Views: 4000

Re: What is main differences between stable and long-term? [SOLVED]

Stable is the current version of ROS that is good enough to use, with new features and older bugs corrected (there're new ones)
Long term should be a version mostly bug free, with new features added later "without" bugs and bug correction.
by Redmor
Tue Dec 04, 2018 11:50 pm
Forum: General
Topic: EoIP + DHCP Issue [SOLVED]
Replies: 9
Views: 982

Re: EoIP + DHCP Issue [SOLVED]

Yes, I had a similar problem with gateway IP on a bridge and other IP from same subnet reaching gateway through eoips, disabled fast path on all Bridges and I was able to ping.
by Redmor
Tue Dec 04, 2018 8:57 am
Forum: General
Topic: Static route not working
Replies: 8
Views: 596

Re: Static route not working

I tried a lot of thing for failover. But nothing seems to be work perfectly. can you suggest something which will work perfectly?
Recursive routing as I suggested in previous post.
by Redmor
Tue Dec 04, 2018 8:56 am
Forum: General
Topic: EoIP + DHCP Issue [SOLVED]
Replies: 9
Views: 982

Re: EoIP + DHCP Issue [SOLVED]

Hello all! Goal: Use the Mik2 eth4 to get a 192.168.78.0/24 IP from the bridge1 DHCP Server in Mik1 Problem: Even though the EoIP interface connection is established, when I connect a PC to eth4 (Mik2) I cant get an IP address from Mik1. Few notes: 1) The Mik1 pptp client doesn't force any default ...
by Redmor
Mon Dec 03, 2018 9:29 pm
Forum: Wireless Networking
Topic: Help with Use Case
Replies: 2
Views: 391

Re: Help with Use Case

If you can wait MK is releasing Powerlines with Ethernet and wireless.
by Redmor
Mon Dec 03, 2018 9:19 pm
Forum: General
Topic: Static route not working
Replies: 8
Views: 596

Re: Static route not working

I think my problem was not clearly mentioned. Forget about netwatch. My simple issue is I have 2 WAN connection. I want to ping a particular host x.x.x.x through wan1. I used the below option in my router. But I am able to ping x.x.x.x even my wan1 link is down. /ip route add dst-address=208.67.222...
by Redmor
Mon Dec 03, 2018 8:29 pm
Forum: General
Topic: Two interfaces to same router, different costs
Replies: 3
Views: 345

Re: Two interfaces to same router, different costs

You have to use mangle and mark (packet, connection and route, also only route) for tunnel and then make a static route with routing mark for the tunnel. There's no other way to make what you want with OSPF, you can't simply take the path you want. The only way to do that with OSPF is to have shorte...
by Redmor
Mon Dec 03, 2018 5:01 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Re: Improve PTMP download

Even with a fully implemented and well working TDMA I would not expect you to be able to manage a 10Mb upload from one client whilst still providing anywhere near 70Mb to the others as download. For the cost of a single CPE it's worth keeping your 16 customers happy so 1 doesn't ruin the experience...
by Redmor
Mon Dec 03, 2018 4:59 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Re: Improve PTMP download

A while back ratio feature was added to give priority to up or download

See: viewtopic.php?f=21&t=132181
Already tried with no difference.
by Redmor
Sun Dec 02, 2018 2:11 pm
Forum: Wireless Networking
Topic: sign from under rain
Replies: 2
Views: 388

Re: sign from under rain

You have to be in line of sight with the tower, so a -68 signal with trees in the middle would really drop even with wind.
Avoid trees and get a better signal and rain wouldn't disconnect stations.
by Redmor
Sun Dec 02, 2018 1:03 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Re: Improve PTMP download

Your problem is ARM processor + NV2 protocol . It hurts thousands of people, but Mikrotik does not solve it :( See: https://forum.mikrotik.com/viewtopic.php?f=7&t=136002 Even if I use NetMetal as AP? I'm using LDF 5 ac as CPE for tests, but NetMetal isn't arm. By the way this arm issue it's probabl...
by Redmor
Sat Dec 01, 2018 7:56 pm
Forum: General
Topic: Some IP's are starting to stop working over VPN but work fine over local LAN
Replies: 1
Views: 223

Re: Some IP's are starting to stop working over VPN but work fine over local LAN

You should not use same subnet for VPNs and LAN.
The poor ARP tablet is going to find your VPN clients in LAN.
Use different subnets and route/NAT to make them talk.
by Redmor
Sat Dec 01, 2018 7:54 pm
Forum: General
Topic: SRCNAT with multiple WAN IP addresses (>2)
Replies: 4
Views: 419

Re: SRCNAT with multiple WAN IP addresses (>2)

1. Make two interface list WAN1 and WAN2 with respective vlans.
2. Set NAT with out interface list WAN1 or WAN2 and masquerade
by Redmor
Sat Dec 01, 2018 7:49 pm
Forum: General
Topic: speedtets using 1 core [SOLVED]
Replies: 7
Views: 582

Re: speedtets using 1 core [SOLVED]

Thanks for your detailed and well explained reply. Is this a limitation with Mikrotik? as other routers I used always distributed among all cores even though speed test is a single connection Maybe other routers provide only multiple TCP connection count. Did you noticed differences between speedte...
by Redmor
Sat Dec 01, 2018 4:10 pm
Forum: General
Topic: DHCP Offering Lease Without Success
Replies: 35
Views: 9400

Re: DHCP Offering Lease Without Success

This happens to my costumers when they connect other routers with default configuration and a second DHCP server is active for LAN. Make sure that there aren't other routers connected via WAN interface and with DHCP server disabled. For example, TP-Link repeaters have DHCP server "auto", when your D...
by Redmor
Sat Dec 01, 2018 4:03 pm
Forum: General
Topic: speedtets using 1 core [SOLVED]
Replies: 7
Views: 582

Re: speedtets using 1 core [SOLVED]

Thanks for your detailed and well explained reply. Is this a limitation with Mikrotik? as other routers I used always distributed among all cores even though speed test is a single connection Maybe other routers provide only multiple TCP connection count. Did you noticed differences between speedte...
by Redmor
Sat Dec 01, 2018 3:14 pm
Forum: General
Topic: Alternate route through VPN
Replies: 3
Views: 404

Re: Alternate route through VPN

Try to use SSTP instead of L2TP, with a larger MTU you should improve performance.
by Redmor
Sat Dec 01, 2018 3:05 pm
Forum: General
Topic: cast videos / multicasting discovery / layer2 traffic
Replies: 1
Views: 210

Re: cast videos / multicasting discovery / layer2 traffic

As far as I know you need to be L2 for casting and in the same Wi-Fi network. Don't know if what you want is possible, but you can still try to use EoIP tunnels and bridge them in your LANs. Buy a mAP Lite to do so when you're away. With a mAP Lite you can make SSTP VPN to your home and then establi...
by Redmor
Sat Dec 01, 2018 3:00 pm
Forum: General
Topic: speedtets using 1 core [SOLVED]
Replies: 7
Views: 582

Re: speedtets using 1 core [SOLVED]

Hi Guys. First time Mikrotik user and I really like it, I have a HEX to play around and learn before buying the CCR version, I got everything working but I can't understand 1 thing, why is speedtest.net maxing out only 1 core but for example speed test in DSL reports uses all cores? so in speedtest...
by Redmor
Sat Dec 01, 2018 2:47 pm
Forum: Wireless Networking
Topic: Why Mikrotik isn't improving its wireless like Ubiquiti and Cambium?
Replies: 5
Views: 879

Why Mikrotik isn't improving its wireless like Ubiquiti and Cambium?

Why Mikrotik isn't improving its wireless like Ubiquiti and Cambium? WISPs that abandoned MK say that Ubiquiti AirMAX can even make coffee and Cambium even some "pleasure job for boys" that I won't write here because I would be banned ;). Apart jokes, why making new CRSs and LTE stuff? Make some new...
by Redmor
Sat Dec 01, 2018 2:40 pm
Forum: Wireless Networking
Topic: Mikrotik wi-fi and Iphone = problem
Replies: 69
Views: 45252

Re: Mikrotik wi-fi and Iphone = problem

Have problem with Mikrotik Groove A52 and all Iphone devices Before installing Mikrotik have worked TP-link , no problems with wi-fi We install Mikrotik and iPhone stops work normaly Internet after a while. I wrote many times tickets, tech support does not help. I tried to change the country, the c...
by Redmor
Sat Dec 01, 2018 2:36 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Re: Improve PTMP download

I would be very tempted to install an additional piece of hardware to serve this client on their own link leaving your large sector for the others. It's that upload with TDMA that is affecting you. I doubt there is very little you can do to mitigate it doing this other than splitting the load. I kn...
by Redmor
Sat Dec 01, 2018 2:32 pm
Forum: Wireless Networking
Topic: Capsman and automatic SSID configuration??
Replies: 3
Views: 478

Re: Capsman and automatic SSID configuration??

Because i would like to get to know the physical possition of each and every one AP without having to physically uninstall the AP to view the S/N or MAC address. Why you don't set only identity on APs while you install and use same SSID? If you use "create enabled" you can see which one is down and...
by Redmor
Sat Dec 01, 2018 2:28 pm
Forum: Wireless Networking
Topic: Problem with CAPsMan, and CAPs
Replies: 3
Views: 520

Re: Problem with CAPsMan, and CAPs

Try to enable local forwarding mode.
by Redmor
Sat Dec 01, 2018 2:22 pm
Forum: Wireless Networking
Topic: NV2 vs Nstreme PTP (netmetal5 vs QRT)
Replies: 6
Views: 1359

Re: NV2 vs Nstreme PTP (netmetal5 vs QRT)

I recommend to use 802.11 because: 1. Nv2 calculates time slots for new transmissions even if you have a PTP, so your upload would be lower. 2. With Nstreme I've noticed that PTP disconnects (tried with 2km link and 20km link), but you have more thourghtput. 3. With two Dynadish I've achieved 30Mbps...
by Redmor
Thu Nov 29, 2018 3:36 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Re: Improve PTMP download

With protocol NV2? Clients have what antenna? CCQ is good? Nv2 First client (70Mbps download one) has got LDF 5 ac with 40cm parabolic antenna, signal -51/-50, CCQ 85/87% with 99% tx/rx while doing traffic. Second client (10Mbps upload that is causing the problem) has got SXTsq5, signal -45/-43, CC...
by Redmor
Wed Nov 28, 2018 6:28 pm
Forum: Wireless Networking
Topic: Improve PTMP download
Replies: 11
Views: 1179

Improve PTMP download

Hello, I have a sector antenna PTMP with a NetMetal and 16 clients connected with signals betwenn -45/-48 and -60/-65 both tx and rx. If the PTMP doesn’t receive so much, a client can do up to 70Mbps download. If I have a client that makes 10Mbps upload to that PTMP, the download of the other client...
by Redmor
Wed Nov 07, 2018 3:14 pm
Forum: Forwarding Protocols
Topic: 6to4 first configuration
Replies: 5
Views: 1174

Re: 6to4 first configuration

1-5: You need to advertise dns for your deviced: IPv6 --> ND 6: Yes, that is normal. DHCPv6 is ROS is currently incapable of handing addresses - only prefixes. All the addresses on another RB have to be configured manually, got by SLAAC, or picked from prefix pool. So you can: 1) assign the address...
by Redmor
Sat Nov 03, 2018 5:15 pm
Forum: Forwarding Protocols
Topic: 6to4 first configuration
Replies: 5
Views: 1174

6to4 first configuration

Hello, I'm trying to set up 6to4 to have IPv6 connectivity, and I've encountered some problems. I have a public static IPv4 for my home network. Let's start with configuration: IPv4 1.2.3.4 (example) IPv6 2002:0102:0304::/48 DNSv6 2001:4860:4860::8888 and 2001:4860:4860:8844 /interface 6to4 add disa...
by Redmor
Tue Oct 23, 2018 1:04 pm
Forum: RouterBOARD hardware
Topic: RB 4011 is fanless?
Replies: 6
Views: 1134

RB 4011 is fanless?

RB 4011 is fanless?
Can I use it on towers during summer?
by Redmor
Fri Oct 05, 2018 8:44 am
Forum: Wireless Networking
Topic: wAP LTE experience
Replies: 5
Views: 751

Re: wAP LTE experience

We use the couple of them, we are able to set custom APNs. The only issue I have with these units are the WiFi coverage, it's pretty weak. You're able to use custom APNs because with newer wAPs LTE's firmware is already updated to v8. I had to nat it for MK's support when it was v1. What do you mea...
by Redmor
Thu Oct 04, 2018 7:05 pm
Forum: Wireless Networking
Topic: wAP LTE experience
Replies: 5
Views: 751

wAP LTE experience

Hello everyone, I want to share my experience with wAP LTE. I bought 2 wAP LTE Kit International in 2017 with ROS 6.40.x, the first problem I've noticed was that they weren't working with custom APN (other APNs for mobile carrier's resellers). After MK's support entered in my wAP they've updated LTE...
by Redmor
Wed Sep 26, 2018 4:13 pm
Forum: Scripting
Topic: Mikrotik synthesizer/piano programs
Replies: 18
Views: 3701

Re: Mikrotik synthesizer/piano programs

I've tried it with songs in MP3 converted to MIDI and the result isn't so good, I have as result notes with very high length.
I've attached Highway to Hell instrumental generated with the program.
by Redmor
Mon Sep 17, 2018 3:40 pm
Forum: Wireless Networking
Topic: Nv2 best performance
Replies: 6
Views: 1139

Re: Nv2 best performance

Try auto tdma 55 fixdownlink auto mcs and re. Ptmp. Ptp - tdma 2ms mcs on what you have.
Except for fixed-downlink 55 I've tried dynamic downlink 80% tdma period 3ms and other settings default, but I can't see improvements, especially in noisy cases.
by Redmor
Mon Sep 17, 2018 3:39 pm
Forum: Wireless Networking
Topic: Nv2 best performance
Replies: 6
Views: 1139

Re: Nv2 best performance

It would be a useful tutorial directly from Mikrotik
I really want to see a tutorial from MK, I think everyone would love to see it.
by Redmor
Mon Sep 17, 2018 10:51 am
Forum: Wireless Networking
Topic: Nv2 best performance
Replies: 6
Views: 1139

Nv2 best performance

Someone has got a Bible that says how to get best performance with Nv2?
by Redmor
Sun Aug 05, 2018 10:21 am
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

I want more details in changelog, I can't upgrade all my APs everytime I see "Nv2 improvements". Do not upgrade if you use WDS. I'm not using WDS, but I would like to see an improvement in Nv2 sync too. Support said that if a client sees two APs in sync, throughput will be terrible. How am I suppos...
by Redmor
Thu Jul 12, 2018 2:42 pm
Forum: General
Topic: Block HTTPS sites
Replies: 11
Views: 1895

Re: Block HTTPS sites

Please listen to the people saying this is not possible. If anyone could redirect HTTPS, what's to stop anyone on the internet doing that to google or a banking website? Redirecting HTTPS is only possible if you also own all the client devices and have installed a MITM root certificate into the OS....
by Redmor
Thu Jul 12, 2018 9:00 am
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Hello All and support team I have the same issue whit wap lte kit work fine whit all mobile operator whitout authentication but non work with authentication PAP or CHAP . +CME ERROR 100 (unknow error) I have tested the rb wap lte kit at november 2017 whit same issue. I wait patient the new os and f...
by Redmor
Thu Jul 12, 2018 8:53 am
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

I want more details in changelog, I can't upgrade all my APs everytime I see "Nv2 improvements".
by Redmor
Sat Jun 30, 2018 6:25 pm
Forum: General
Topic: Bandwith of multiple PPPoE link
Replies: 2
Views: 388

Re: Bandwith of multiple PPPoE link

I think that you can't aggregate two pppoe clients like two ethernets in bonding.
What you can do is route traffic to pass through one client or another, for example servers on 60/20 and PCs on 160/60.
by Redmor
Sat Jun 30, 2018 6:12 pm
Forum: Announcements
Topic: v6.42.5 [current]
Replies: 124
Views: 23072

Re: v6.42.5 [current]

I have to admit that Nv2 has been improved, but are you going to implement a madder TDMA protocol? I have co-workers that say "If you have 100Mbps on an AP and 100 clients connected, with TDMA you can give 100Mbps to them all simultaneously, slowing latency", I know that this is pure theory, but in ...
by Redmor
Sat Jun 30, 2018 6:02 pm
Forum: General
Topic: ATTACKS TO UDP PORT 53 (DNS)
Replies: 6
Views: 4932

Re: ATTACKS TO UDP PORT 53 (DNS)

You could accept DNS only from LAN if you're on a client, as default configuration firewall does. /ip firewall add action=accept chain=input comment=DNS dst-port=53 in-interface=LAN-interface protocol=udp add action=accept chain=input comment=DNS dst-port=53 in-interface=LAN-interface protocol=tcp a...
by Redmor
Sat Jun 30, 2018 5:57 pm
Forum: General
Topic: Restore corrupted Routerboard with damaged Eth1
Replies: 6
Views: 870

Re: Restore corrupted Routerboard with damaged Eth1

Throw away the RB, if it has been hit by a thunderstrike there's no software update that could solve the problem.
P.S. if you update from version 5 to 6 you have to upgrade to bugfix version of 6, for example 5.25 check for updates makes download 6.40.8 bugfix.
by Redmor
Sat Jun 30, 2018 5:54 pm
Forum: General
Topic: Block HTTPS sites
Replies: 11
Views: 1895

Block HTTPS sites

Hello,

I have to block HTTPS connection for costumers that don't pay and redirect every connection to a page that says "You forgot to pay this month" and other things.
How can I do that?
by Redmor
Fri May 18, 2018 12:05 am
Forum: Announcements
Topic: v6.42.2 [current]
Replies: 65
Views: 14519

Re: v6.42.2 [current]

Upgraded from 6.41.2 on a CRS125-24G-1S to 6.42.1 yesterday and found this morning that "fasttrack" connections were dropping a large percentage of packets. Disabling the firewall rules that tagged the connection as fasttrack eliminated the packet loss. Upgraded to 6.42.2 today, and the problem sti...
by Redmor
Fri May 18, 2018 12:00 am
Forum: Wireless Networking
Topic: 2 Mikrotiks on same subnet use just one DHCP for Wifi
Replies: 5
Views: 689

Re: 2 Mikrotiks on same subnet use just one DHCP for Wifi

Got this configuration. Main Mikrotik with 192.168.88.1 with DHCP server enabled second mikrotik which I am using only as switch + wifi AP(WAN port emty). Got DHCP server disabled and configured his IP in networking on 192.168.88.10 my default route is to forward everything to bridge interface. Whe...
by Redmor
Thu May 17, 2018 11:52 pm
Forum: Announcements
Topic: v6.42.2 [current]
Replies: 65
Views: 14519

Re: v6.42.2 [current]

No NV2 changes in 6.42.2? There are enough topics with problems (6.42.1) ...
Wirelessly talking I only saw improvements.
I'm not telling that Nv2 is perfect now, because it really should be rewritten and sync should really be revised.
WISP need Nv3, but at least we saw some improvements.
by Redmor
Thu May 17, 2018 11:45 pm
Forum: Announcements
Topic: v6.42.2 [current]
Replies: 65
Views: 14519

Re: v6.42.2 [current]

There are changes - related to new products. *Please try to keep this topic strictly related to the problems which were not present in 6.42.1 and are in 6.42.2. When will new wAP LTE come out? I have bought wAP R with LTE module, that's strange because they shouldn't have it, so I guess it was made...
by Redmor
Wed May 16, 2018 11:42 am
Forum: General
Topic: SIP connection problem (Cs or C not SACs) [SOLVED]
Replies: 4
Views: 1125

Re: SIP connection problem (Cs not SACs) [SOLVED]

Edit: Firewall solution isn't working. I'm trying this: /ip route rule add action=lookup-only-in-table src-address=SIP client IP table=voip action=lookup-only-in-table should prevent SIP client to go through Internet PPPoE NOT WORKING: I have a solution: /ip firewall filter add action=drop chain=for...
by Redmor
Fri May 11, 2018 11:44 am
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

You mean clients of Sector A should not see clients of Sector B? If so, that's fair enough. And it's achievable with quality antennas with good F/B ratios. But sync is advantageous only on ABAB or ABCD setups. I wonder how MT sync implementation compares with GPS based syncing.. What with NV2 sync ...
by Redmor
Fri May 11, 2018 11:02 am
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

What with NV2 sync ? Is someone use in production NV2 sync (master-slave) and reuse same frequency on "behind" sectors on the same tower ? Are this function work OK or not ? As I stated before, if a client sees two or more AP in sync, it will go bad. I have some clients that can see 4 of them becau...
by Redmor
Tue May 08, 2018 11:57 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

Are you certain about this? I had always thought that scan-list has no effect in AP modes? Just curious why you have set the scan-list=5000-6000 as this results in the AP to listen to all frequencies between 5-6GHz - we when using 20Mhz channels set our AP's -/+ 20Mhz above and below the AP frequen...
by Redmor
Tue May 08, 2018 11:54 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

Just done a test on a NetMetal 5 (921UAGS-5SHPacD) with 28 clients associated that runs on v.6.42.1 and latest firmware. AP radio is on 'only-N', 20/40MHz Ce, NV2 protocol, some fixed MCS rates, Hw. Retries = 3, 75% dynamic downlink mode and tdma 2ms period size. I have one client with SEXTANT (v6....
by Redmor
Wed May 02, 2018 12:49 pm
Forum: General
Topic: SIP connection problem (Cs or C not SACs) [SOLVED]
Replies: 4
Views: 1125

Re: SIP connection problem (Cs not SACs) [SOLVED]

I read the workaround, but remove the PPPoE client isn't a solution, why it should work sometimes and other times it shouldn't?
That's not the solution
by Redmor
Wed May 02, 2018 12:12 am
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 45652

Re: v6.42.1 [current]

I saw that now I can download automatically the new RB firmware with "Auto upgrade", there's also a way to auto reboot?
by Redmor
Wed May 02, 2018 12:07 am
Forum: General
Topic: SIP connection problem (Cs or C not SACs) [SOLVED]
Replies: 4
Views: 1125

SIP connection problem (Cs or C not SACs) [SOLVED]

Hello, I have a problem with SIP connections and I can't determine what's causing it. Here's the RB's configuration for SIP: My RB has got two pppoe-clients, one for Internet connection with NATs and queues on server, and one only for VoIP without NAT or queues on the server. I have two separate LAN...
by Redmor
Tue May 01, 2018 11:48 pm
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 86
Views: 19966

Re: Future of LTE products, user feedback requested

I would like to see an hEX/wAP hybrid, an hEX with LTE module, or wAP with 4 ports, would be really appreciated. I'd also like to see a mobile LTE RB for Wi-Fi, I don't know the exact name or those things. Another thing: I wrote to support because wAP wasn't able to connect with custom APNs and you ...
by Redmor
Thu Apr 19, 2018 1:30 pm
Forum: Announcements
Topic: v6.42 [current]
Replies: 147
Views: 28130

Re: v6.42 [current]

I can't see any improvement on Nv2 PTMP, someone have some tests and can share AP and client configuration?
did you upgrade AP and stations, or only AP ?
I've upgraded AP and two of three stations connected, only RouterOS
by Redmor
Thu Apr 19, 2018 10:18 am
Forum: Announcements
Topic: v6.42 [current]
Replies: 147
Views: 28130

Re: v6.42 [current]

LTE Interface does not work in 6.42 http://up.vbiran.ir/uploads/10446152406381834859_2018-04-18_19-26-59.png http://up.vbiran.ir/uploads/39057152406382010066_2018-04-18_19-30-02.png I have upgraded 3 wAP and lte interface works, try to reset RB or downgrade to another stable and then upgrade again.
by Redmor
Tue Apr 17, 2018 6:16 pm
Forum: Announcements
Topic: v6.42 [current]
Replies: 147
Views: 28130

Re: v6.42 [current]

Redmor - In order to see improvements you must upgrade AP devices. Please note that in most cases you can see the difference only, if there are more than 10 stations connected (number can vary, it can be more and it can be less than 10). What do you mean with "upgrade", isn't 6.42 enough? I have to...
by Redmor
Tue Apr 17, 2018 4:42 pm
Forum: Announcements
Topic: v6.42 [current]
Replies: 147
Views: 28130

Re: v6.42 [current]

I can't see any improvement in Nv2 PTMP, someone have some tests and can share AP and client configuration?
by Redmor
Wed Mar 21, 2018 5:09 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53363

Re: Significant improvement for wireless Nv2 PtMP

In the setup we had a R11e-5HnD as AP and Clients was SXTsq Lite5
In BAND - N? Channel width? 40Mhz? TDMA = 2ms or AUTO? More info about config please...
band=5ghz-a/n channel-width=20/40mhz-Ce un TDMA - 2m
Please send us a backup file or an export of that AP, it will be my Bible.
by Redmor
Fri Feb 23, 2018 9:48 pm
Forum: Wireless Networking
Topic: NV2 sync works but destroys performance
Replies: 8
Views: 1835

Re: NV2 sync works but destroys performance

I've asked to MK support the reason of this drop, they said that clients that are more than one AP are going ti have problems.
This feature isn't very useful, I always fine costumers that are more APs from the same tower.
by Redmor
Sun Dec 24, 2017 11:24 pm
Forum: RouterBOARD hardware
Topic: wAP LTE KIT - not connecting to GSM network
Replies: 8
Views: 3669

Re: wAP LTE KIT - not connecting to GSM network

Good evening, I have got the same issue with 6.40.5 stable and I've asked to support for help. Now with 6.41 everything should work, even if you're using custom APN and login that are not directly provided by your mobile carrier. Things you have to do are: 1. Upgrade wAP to 6.41 stable 2. Upgrade fi...
by Redmor
Wed Oct 25, 2017 8:52 am
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Has this issue been resolved? Did the Test Firmware help?
Partially yes, with the new LTE firmware and RC one of my two SIMs connected with my APN.
by Redmor
Mon Oct 16, 2017 11:05 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

The difference between wAP and other Mikrotik RB LATE is that I need to set a DHCP-Client on LTE interface to make everything work, but with wAP I can't. I saw the passthrough-interface option, but it's not exactly my case because I need an IP on LTE and DHCP on wlan. I don't know why it works, the ...
by Redmor
Wed Oct 11, 2017 4:01 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Before the output file I want to say what have I done. v. 6.40.4. Default APN of mobile carrier in LTE and everything works. Custom APN brought from mobile carrier, username e password taken from APN server, pap authentication and it doesn't work. A thing that I'm not able to do is a DHCP client on...
by Redmor
Tue Oct 10, 2017 9:56 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Before the output file I want to say what have I done. v. 6.40.4. Default APN of mobile carrier in LTE and everything works. Custom APN brought from mobile carrier, username e password taken from APN server, pap authentication and it doesn't work. A thing that I'm not able to do is a DHCP client on...
by Redmor
Mon Oct 09, 2017 10:34 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

Re: wAP LTE Kit International APN problem [SOLVED]

Before the output file I want to say what have I done. v. 6.40.4. Default APN of mobile carrier in LTE and everything works. Custom APN brought from mobile carrier, username e password taken from APN server, pap authentication and it doesn't work. A thing that I'm not able to do is a DHCP client on ...
by Redmor
Fri Oct 06, 2017 9:19 pm
Forum: Wireless Networking
Topic: wAP LTE Kit International APN problem [SOLVED]
Replies: 24
Views: 5919

wAP LTE Kit International APN problem [SOLVED]

I have to configure a wAP and I have some problems with APNs. If I use the APN of the SIM vendor everything works fine, but when I put ISP reseller's APN, username and password LTE interface doesn't connect. I have also noticed that I can assign an IP to LTE with DHCP-Client, I can't select the inte...
by Redmor
Tue Jun 06, 2017 7:59 pm
Forum: Wireless Networking
Topic: Wireless Handover between two WLANs
Replies: 3
Views: 812

Re: Wireless Handover between two WLANs

Hi. In my house i have the same scenario What you are trying to do is called band-steering, this is not available as easily set button option in mikrotik, so you have to make it. If there is not control in Access Point side, the client will choose the better signal, But it depends too of the client...
by Redmor
Wed May 31, 2017 7:54 pm
Forum: Wireless Networking
Topic: Wireless Handover between two WLANs
Replies: 1
Views: 279

Wireless Handover between two WLANs

I'm trying to do something really strange and I'm going to explain my network configuration as best as I can. I have a CPE on my roof, that I'm using as a router and DHCP server, connected to a PoE out port to an hAP AC lite (it's connected to PoE out so I can use one power supply for both router an...
by Redmor
Wed May 31, 2017 7:53 pm
Forum: Wireless Networking
Topic: Wireless Handover between two WLANs
Replies: 3
Views: 812

Wireless Handover between two WLANs

I'm trying to do something really strange and I'm going to explain my network configuration as best as I can. I have a CPE on my roof, that I'm using as a router and DHCP server, connected to a PoE out port to an hAP AC lite (it's connected to PoE out so I can use one power supply for both router an...