Community discussions

MikroTik App

Search found 162 matches

by olivier2831
Wed Nov 24, 2021 4:25 pm
Forum: General
Topic: [Feature Request] More Control over Non-Automatic Negotiation Speeds of SFP+
Replies: 6
Views: 552

Re: [Feature Request] More Control over Non-Automatic Negotiation Speeds of SFP+

What is the use case? Autonegotiation is mandatory in the standards for 1000BASE-T and 10GBASE-T (includes the lesser 2.5GBASE-T & 5GBASE-T rates). Over copper, 10Gb/s can generate a lot of heat. Forcing 2.5 or 5Gb/s may reduce this heat and give increased speed over 1Gb/s. I back this request ...
by olivier2831
Thu Nov 18, 2021 2:05 pm
Forum: General
Topic: Hardware for 10Gbps bandwidth test
Replies: 8
Views: 1134

Re: Hardware for 10Gbps bandwidth test

Not sure if all thunderbolt 10Gbps adapters are equally good. Found https://www.servethehome.com/usb-3-1-gen1-to-5gbe-network-adapter-guide/ for 5Gb/s adapters but no such comparison for 10Gb/s networking. Also found https://www.qnap.com/en/product/qna-t310g1s with Linux support, it seems. I would ...
by olivier2831
Fri Nov 12, 2021 5:56 pm
Forum: Wireless Networking
Topic: DPSK/PPSK individual PSK without preconfig
Replies: 5
Views: 2003

Re: DPSK/PPSK individual PSK without preconfig

However you could configure 2 access methods on the same AP (with a different SSID) and have most devices connected with username/password and reserve the other one for the few devices that cannot do it. Can you specify a VLAN in which each device with an individual PSK would be allocated into ? Th...
by olivier2831
Fri Nov 12, 2021 5:43 pm
Forum: Wireless Networking
Topic: DPSK Dynamic WPA2 PSK support [SOLVED]
Replies: 9
Views: 10078

Re: DPSK Dynamic WPA2 PSK support [SOLVED]

The more I use Mikrotik wireless... The more I love Ruckus.
Which Ruckus AP do you prefer within 100-150 Euros price range ?
by olivier2831
Wed Nov 10, 2021 4:57 pm
Forum: RouterBOARD hardware
Topic: RB 4011 GS+RM SFP+ Port not working on 10gbp
Replies: 3
Views: 1789

Re: RB 4011 GS+RM SFP+ Port not working on 10gbp

I would disable "Auto-Negotiation" and play with the Speeds on the Mikrotik. My 2 cents: Lately, I had unsuccessful experiences trying to (remotely) control the speed/rate between 2 Mikrotik devices connected through an SFP+ 10Gb/s module over a 25m Cat6A copper wire. One of the two boxes...
by olivier2831
Tue Nov 09, 2021 6:38 pm
Forum: General
Topic: How to log ARP table on 6.48
Replies: 0
Views: 520

How to log ARP table on 6.48

Hello,

For compliance reasons, I need to log ARP entries from a 6.48-powered CCR1009.
I need entries such as :

<timestamp> <MAC> <private IP>

How can I do that ?
If necessary I've got a local Debian host I can push entries or files to.

Best regards
by olivier2831
Tue Nov 09, 2021 6:33 pm
Forum: General
Topic: How to log NAT translation on 6.48 ?
Replies: 0
Views: 519

How to log NAT translation on 6.48 ?

Hello, For compliance reasons, I need to log NAT translations occurring on a 6.48-powered CCR1009. I need to log entries such as: <timestamp> <proto> <private_src_ip> <private_src_port> <public_src_ip> <public_src_port> If necessary, I've got a Debian host close to the CCR1009 where I can push log e...
by olivier2831
Tue Nov 09, 2021 6:11 pm
Forum: General
Topic: How do we properly perform CGNAT on a MikroTik Router for customers?
Replies: 23
Views: 4067

Re: How do we properly perform CGNAT on a MikroTik Router for customers?

I m testing with this, but it has some problems with streams plataforms like netflix and microsoftstream.
Can you describe those problems ?
by olivier2831
Tue Nov 09, 2021 1:24 pm
Forum: General
Topic: RB5009 Questions on rackmount kit ? [SOLVED]
Replies: 2
Views: 469

Re: RB5009 Questions on rackmount kit ? [SOLVED]

Looking at the picture you can make short ears and connectors by beaking off/out the parts. If you do that the long ears are destroyed.
I didn't notice this : thank you very much for pointing this !
This solves my first question !

Thanks again
by olivier2831
Tue Nov 09, 2021 11:10 am
Forum: General
Topic: RB5009 Questions on rackmount kit ? [SOLVED]
Replies: 2
Views: 469

RB5009 Questions on rackmount kit ? [SOLVED]

Hello, I've just got a new RB5009 and its rackmount kit. 1. The rackmount kit I bought has K-79 reference on purchase order or billing documents. On its packaging RME5009 is printed. The kit content seems appropriate to mount a single or two RB5009 in a 19'' rack as it includes 2 long ears, 16 screw...
by olivier2831
Mon Nov 08, 2021 2:40 pm
Forum: Beginner Basics
Topic: VLAN configuration RB4011IGS+RM once again
Replies: 17
Views: 1417

Re: VLAN configuration RB4011IGS+RM once again

When I either ping 10.119.0.1 from ether3 or ether7, I've got no answer.
For an unknown reason, my config started to work, so I'm sorry for the noise.

Anyway, may I re-iterate that for reference, IMHO, adding details on the way addresses are set, should help.
by olivier2831
Mon Nov 08, 2021 11:43 am
Forum: Beginner Basics
Topic: VLAN configuration RB4011IGS+RM once again
Replies: 17
Views: 1417

Re: VLAN configuration RB4011IGS+RM once again

Hi everyone, after days of reading how-tos (e.g. https://forum.mikrotik.com/viewtopic.php?t=143620 and many others) and struggling with the configuration I head to you and ask for help. Attached you can find a diagram of the network I want to achieve and an rsc file with the configuration my latest...
by olivier2831
Thu Nov 04, 2021 11:02 am
Forum: General
Topic: Captive Portal API RCF8908
Replies: 11
Views: 1546

Re: Captive Portal API RCF8908

Google, FB and all the other are going to REMOVE LOGIN FROM INTERNAL WEBVIEW.
If this "notification" will not be "focused" nobody will ever be able to login using OAuth2 in a few months
Can you elaborate a bit ?
Any pointer to Google or FB intents on the matter ?
by olivier2831
Wed Nov 03, 2021 5:41 pm
Forum: General
Topic: RB5009 Which firmware to use ?
Replies: 2
Views: 483

RB5009 Which firmware to use ?

Hello, I need to deploy a new router on a remote site. This router must NAT and load balance traffic from for 3 internal LAN to two WAN uplinks (from the same ISP). Each uplink has 500 or 600 Mb/s download capacity. I've just got a brand new RB5009UG+S+IN (with 7.0.5 installed). I'm hesitant to use ...
by olivier2831
Mon Oct 18, 2021 7:21 pm
Forum: General
Topic: Questions on Wiki's PCC page
Replies: 1
Views: 287

Questions on Wiki's PCC page

Hello, After reading it several times, I still have some question on [1]. / ip firewall mangle add chain=prerouting dst-address=10.111.0.0/24 action=accept in-interface=LAN add chain=prerouting dst-address=10.112.0.0/24 action=accept in-interface=LAN With policy routing it is possible to force all t...
by olivier2831
Thu Oct 14, 2021 5:02 pm
Forum: RouterBOARD hardware
Topic: Powering cAP ac from another cAP
Replies: 5
Views: 2102

Re: Powering cAP ac from another cAP

I want to power a cAP ac from another cAP ac with the included 24v power supply, but I noticed that its listed maximum power output on the second port is 500mA. A cAP ac takes up to 13w, which equates to 540mA with 24 volts. Is this power requirement close enough, or is it too risky? Note that the ...
by olivier2831
Wed Oct 13, 2021 11:39 am
Forum: General
Topic: Can't edit PCC settings with WebFig [BUG ?]
Replies: 0
Views: 391

Can't edit PCC settings with WebFig [BUG ?]

Hello, Some times ago I configured a CRS328 that used 3 DSL lines to connect to the Internet. I followed [1] to edit the different rules. Months later, I changed my config when this CRS328 became connected to the Internet through a single FTTH line. Doing so, I mostly disabled existing rules. Now, t...
by olivier2831
Tue Oct 12, 2021 10:00 am
Forum: RouterBOARD hardware
Topic: CRS328 and POE problems (not standard 802.3af?), Flapping Port?
Replies: 5
Views: 1853

Re: CRS328 and POE problems (not standard 802.3af?), Flapping Port?

And I wonder if there is a reason that CRS328 were taken out of the assortment?
CRS328 is unavailable in France, these days.
by olivier2831
Mon Oct 11, 2021 11:56 am
Forum: RouterBOARD hardware
Topic: SFP+ Link Up but no Traffic
Replies: 2
Views: 1777

Re: SFP+ Link Up but no Traffic

Hi I have the following configuration: R1: CCR1072-1G-8S+ on 6.41 with SPF+ port 4 using the following SM Single Strand fibre SFP+ module S+23LC10D. At the other end of this link, across about 2.5km we have the following: R2: CCR1009-7G-1C-1S+ on 6.42.7 with SFP+ port using the following SM Single ...
by olivier2831
Tue Oct 05, 2021 9:13 am
Forum: RouterBOARD hardware
Topic: RB5009 and S-RJ01 SFP speed problem
Replies: 13
Views: 2355

Re: RB5009 and S-RJ01 SFP speed problem

We have seen CRS, RB4011 and RB5009 devices having auto neg issues with fibre and copper 1G SFP modules running in 10G SFP+ ports. Auto neg status never completes, depending on the device at the other end resulting link is reported as none, 100MB or 1GB and is prone to flaps. Connections to media c...
by olivier2831
Mon Oct 04, 2021 7:37 pm
Forum: General
Topic: Feature Request: Forcing 2.5G or 5G on 10G/s interface
Replies: 0
Views: 383

Feature Request: Forcing 2.5G or 5G on 10G/s interface

Hello, Doc [1] says: auto-negotiation (yes | no; Default: yes) When enabled, the interface "advertises" its maximum capabilities to achieve the best connection possible. Note1: Auto-negotiation should not be disabled on one end only, otherwise Ethernet Interfaces may not work properly. Not...
by olivier2831
Fri Oct 01, 2021 5:43 pm
Forum: General
Topic: S+RJ10 overheating: how to reduce to 5Gbs/s ?
Replies: 3
Views: 445

Re: S+RJ10 overheating: how to reduce to 5Gbs/s ?

I was thinking about the following process:

- On central CCR2004,
check all Advertise boxes but 10G box
uncheck Auto-negociation
click OK or Apply

- On leaf (overheating) Netpower 16P
check all Advertise boxes but 10G box
uncheck Auto-negociation
click OK or Apply

Thoughts ?
by olivier2831
Fri Oct 01, 2021 5:30 pm
Forum: General
Topic: S+RJ10 overheating: how to reduce to 5Gbs/s ?
Replies: 3
Views: 445

S+RJ10 overheating: how to reduce to 5Gbs/s ?

Hello, On a remote site, I've got a central CCR2004 connected to two Netpower16P. All 3 devices includes S+RJ10 modules. On one Netpower 16P, I've just discovered an "auto disabled due to overheating" message. 1. What does "disabled" mean in this context as I needed the disabled/...
by olivier2831
Wed Sep 29, 2021 6:56 pm
Forum: General
Topic: [OT] Linux equivalent of MT connection-mark=no-mark ? [SOLVED]
Replies: 3
Views: 682

[OT] Linux equivalent of MT connection-mark=no-mark ? [SOLVED]

Hello, In nftables or iptables language, what could be the equivalent of Mikrotik's connection-mark=no-mark ? Semantic: "if an un- marked packet is received in interface ISP_1, then add mark it with 17 mark" /ip firewall mangle MT implementation addchain=input connection-mark=no-mark in-in...
by olivier2831
Wed Sep 29, 2021 12:46 pm
Forum: Announcements
Topic: Newsletter 102
Replies: 30
Views: 31595

Re: Newsletter 102

How do you exactly cover a building for inventory tracking ?
Do you deploy several Knot devices or do reuse some existing radio infra (WiFi AP with BLE capability) ?
What is the "radio range" of a TG-BT5-IN in a casual situation, with concrete walls, glass doors, ... ?
by olivier2831
Mon Sep 27, 2021 5:22 pm
Forum: General
Topic: Customizing columns in Interfaces/Interface view
Replies: 0
Views: 384

Customizing columns in Interfaces/Interface view

Hello, In 6.48.4 (or other versions), the Interfaces/Interface view shows columns such as: Actual MTU L2 MTU Tx Rx Tx Packets ... I would appreciate to read in this view things like PVID, PoE Priority or PoE out Current. Is it possible to add these columns or remove some existing ones ? Am I the one...
by olivier2831
Thu Sep 23, 2021 9:42 am
Forum: General
Topic: MTP250-53V47-OD availability ?
Replies: 0
Views: 382

MTP250-53V47-OD availability ?

Hello,

When will MTP250-53V47-OD (power supply for Netpower 16P) be available in western Europe countries ?

Best regards
by olivier2831
Wed Sep 22, 2021 12:28 pm
Forum: RouterBOARD hardware
Topic: NetPower 16p.... Rubbish PoE design. Workarounds?
Replies: 9
Views: 1845

Re: NetPower 16p.... Rubbish PoE design. Workarounds?

I love those 16P switches, I run 4 Core power cable up to it. Use 48V and 24V Meanwell redundancy modules so I have power from 2 different sources. One trough battery bank and one from mains. I wish it was able to put more power trough it on 48V as I can't power 16 devices on 48V with the draw we n...
by olivier2831
Wed Sep 22, 2021 9:04 am
Forum: Wireless Networking
Topic: Packetfence (RADIUS) + Hotspot + CAPsMAN + Dynamic VLAN
Replies: 5
Views: 1874

Re: Packetfence (RADIUS) + Hotspot + CAPsMAN + Dynamic VLAN

My goal is to setup a hotel wireless network where guests can roam across any AP in the building but remain in their dedicated room assigned VLAN. I've got a very similar target with the following differences: - I'm planning to use a Freeradius server - I'm planning to use different APs. I've not s...
by olivier2831
Tue Aug 24, 2021 7:35 pm
Forum: General
Topic: How to configure a CCRXXXX as router with VLAN trunk ports ?
Replies: 3
Views: 484

How to configure a CCRXXXX as router with VLAN trunk ports ?

hello, I've got (quite urgent) need for help on setting up a CCRXXXX (currently a CCR2004 vith RouterOS 6.48.4) to act as a router between: - a DHCP-configured Ethernet uplink to the Internet with 1.2.3.4 address - a couple of trunk Ethernet interfaces to 3 other LAN switchs - on LAN switches, are c...
by olivier2831
Sun Aug 22, 2021 11:20 pm
Forum: General
Topic: What if mynetname.net was available for Letsencrypt DNS challenges ?
Replies: 0
Views: 502

What if mynetname.net was available for Letsencrypt DNS challenges ?

Hello, Reading about how to add a Letsencrypt certificate, I observed most used a DNS challenge. As all Mikrotik boxes are shipped with a pre-configured VPN that defines a specific 123456789abcd.sn.mynetname.net-like hostname, would it make sense if this hostname could be used to get an almost out-o...
by olivier2831
Thu Aug 19, 2021 12:09 pm
Forum: General
Topic: CCR2004: Power2 working while Power1 not working [SOLVED]
Replies: 3
Views: 480

Re: CCR2004: Power2 working while Power1 not working [SOLVED] [SOLVED]

Is broken or on transport the internal patch form psu1 to board is off, try to open the case and reconnect the cable. Is not the first time than happen to us... After years those devices are still on without problem. Yes, that was exactly that: an internal plug not fully inserted ! Thank very much ...
by olivier2831
Thu Aug 19, 2021 11:58 am
Forum: General
Topic: CCR2004: Which routerOS version to select ?
Replies: 2
Views: 351

CCR2004: Which routerOS version to select ?

Hello, I'm about to deploy my very first CCR2004-1G-12S+2XS in a remote location. Its mission is to NAT-route traffic to Internet for about 100 simultaneous LAN users (segregated into 3 VLANs). I don't plan to upgrade this box OS without any good reason (repeated failures, major vulnerability, ...)....
by olivier2831
Thu Aug 19, 2021 11:44 am
Forum: General
Topic: CCR2004: Power2 working while Power1 not working [SOLVED]
Replies: 3
Views: 480

CCR2004: Power2 working while Power1 not working [SOLVED]

Hello,

I'm preparing a new CCR2004-1G-12S+2XS i received a couple of days.
It has 2 power supply plugs.
When plugging a power cord in Power1, nothing seems to happen.
When plugging the same cord in Power2, box is starting (lights turning, ...).

Is it a defect or nominal ?

Best regards
by olivier2831
Wed Aug 18, 2021 11:00 am
Forum: General
Topic: Syslog to log NAT/CGN-Nat translations
Replies: 13
Views: 1414

Re: Syslog to log NAT/CGN-Nat translations

NetFlow is the answer here. It will export ("log") all the connection tracking statistics for you. Use NetFlow v9 as it provides a richer set of information, including full NAT details for each connection. Which NATing device did you use with NetFlow ? A Mikrotik device ? If positive, whi...
by olivier2831
Wed Jul 07, 2021 3:58 pm
Forum: RouterBOARD hardware
Topic: SFP+ on the small devices
Replies: 14
Views: 1990

Re: SFP+ on the small devices

8P-2S+ would make sense in some ring-like scenarios. 4P-1S+ would just be ridiculous. I think a four 2.5Gb/s PoE ports with a single SFP+ uplink would also make sense but I only one device to select, I would pick the 8 ports one. 2.5Gb/s is also interesting in WiFi as WiFi bandwidth now theorically...
by olivier2831
Wed Jul 07, 2021 10:29 am
Forum: RouterBOARD hardware
Topic: SFP+ on the small devices
Replies: 14
Views: 1990

Re: SFP+ on the small devices

Yes, a router version of the CSS610 would be helpful. That and the lack of PoE is why it dropped off my list of options for the core switch pretty early on. However, the CSS610 would fit into the "leaf" role from my " holes at the low end of the CSR line " thread. (I'm posting m...
by olivier2831
Wed Jul 07, 2021 10:15 am
Forum: RouterBOARD hardware
Topic: Internal power supplies instead of wall warts
Replies: 9
Views: 2100

Re: Internal power supplies instead of wall warts

"wall warts" may fail, but anyone can replace them and the failure is easy to diagnose. When an internal power supply fails, it often means people will throw the whole device. Replacement PSU is often non-existent and even if it existed, not everyone will be able to open the device and re...
by olivier2831
Wed Jul 07, 2021 10:04 am
Forum: General
Topic: Syslog to log NAT/CGN-Nat translations
Replies: 13
Views: 1414

Re: Syslog to log NAT/CGN-Nat translations

Syslog to log NAT/CGN-Nat translations I hope somebody knows to the answer to the question I am asking. Can I and how do I , log ( syslog and/or syslog to a remote syslog server ) all NAT translations ? Like many ISPs and WISPs , we get copyright notices which state somebody at an IP address downlo...
by olivier2831
Thu Jun 17, 2021 10:32 am
Forum: General
Topic: Hardware recommendation for routing up to 2Gb/s
Replies: 6
Views: 733

Re: Hardware recommendation for routing up to 2Gb/s

My ideal pick would be a 2 (or 4 ports) 2.5Gb ports with RB4011 processing power.
You can build one using SBCs like Hardkernel's H2+ but that is a very path ...

Thanks for all input
by olivier2831
Wed Jun 16, 2021 5:24 pm
Forum: General
Topic: Hardware recommendation for routing up to 2Gb/s
Replies: 6
Views: 733

Hardware recommendation for routing up to 2Gb/s

Hello, I'm looking for a Mikrotik device with: - equipped two 2.5 Gb/s Ethernet (either native or through a SFP+ slot) - able to route a 1 or 2 Gb/s flow applying NAT or firewall rules. I've looked at several product but: - RB4011 is fine but only host a single SFP+ slot, - hEX PoE has no SFP+ slot ...
by olivier2831
Thu Jun 03, 2021 1:05 pm
Forum: Announcements
Topic: v6.47.10 [long-term] is released!
Replies: 150
Views: 36226

Re: v6.47.10 [long-term] is released!

*) poe - do not perform PoE firmware upgrade procedure on RB960 and OmniTik devices without PoE out;
Can you elaborate a bit ?
simpy do not try to upgrade poe firmware on device can not have poe...
That makes sense !
Thanks for this clarification !
by olivier2831
Thu Jun 03, 2021 1:02 pm
Forum: Announcements
Topic: v6.47.10 [long-term] is released!
Replies: 150
Views: 36226

Re: v6.47.10 [long-term] is released!

*) poe - do not perform PoE firmware upgrade procedure on RB960 and OmniTik devices without PoE out; Can you elaborate a bit ? Could it be related to this? https://forum.mikrotik.com/viewtopic.php?f=21&t=169553&p=831920#p831920 Yes, it seems to match. Thanks for replying ! How could I rephr...
by olivier2831
Thu Jun 03, 2021 11:10 am
Forum: Announcements
Topic: v6.47.10 [long-term] is released!
Replies: 150
Views: 36226

Re: v6.47.10 [long-term] is released!

*) poe - do not perform PoE firmware upgrade procedure on RB960 and OmniTik devices without PoE out;
Can you elaborate a bit ?
by olivier2831
Thu Apr 15, 2021 6:12 pm
Forum: General
Topic: Feature Request: PoE monitoring and alterting
Replies: 0
Views: 373

Feature Request: PoE monitoring and alterting

Hello, I'm looking for a mean to prevent some people to unplug PoE powered devices (WiFi access points, cameras, ...) to connect rogue devices (laptop, ...) when physical access can't be denied (corridors, common rooms, ...). These PoE powered devices do not support 802.1X. I was thinking of monitor...
by olivier2831
Thu Apr 15, 2021 5:51 pm
Forum: General
Topic: How to view total PoE power consumption in WebFig ?
Replies: 0
Views: 367

How to view total PoE power consumption in WebFig ?

Hello, For PoE supplying devices (CRS328-24P, ...), you have: - a general view showing stats (Rx/Tx, MTU, Packets, ..) from all interfaces - a detailed view showing the same stats and more, specifically PoE power, voltage and current. 1. Is it possible to read somewhere the sum of all PoE powers ? 2...
by olivier2831
Thu Apr 15, 2021 9:56 am
Forum: General
Topic: LLDP
Replies: 135
Views: 59155

Re: LLDP

+1, this is not an optional thing, it is required in most enterprise environements. Need LLDP-MED, even if it's just an installable package.
I felt LLDP features (without WebFig support) were introduced with 6.48.1 or so.
I don't know if it covered LLDP-MED (nor I didn't test it yet).
by olivier2831
Mon Mar 15, 2021 4:45 pm
Forum: General
Topic: Mikrotik UPS Solution
Replies: 11
Views: 1210

Re: Mikrotik UPS Solution

The original poster said that he has two CRS125 routers and two passive POE injectors running on 24 volts. My original and followup suggestions was to run both the routers and the POE injectors off the same 24 volt battery plant. How do you ideally split current between 4 devices (2xCRS, 2xPoE inje...
by olivier2831
Tue Feb 16, 2021 9:07 am
Forum: RouterBOARD hardware
Topic: Which ROS devices do you expect the most?
Replies: 18
Views: 3073

Re: Which ROS devices do you expect the most?

1) Hex with a SFP+ and 5 1Gb ports,
+1 or alternatively, CSS610-8P-2S+ which was announced in MUM 2019 Europe

mAP or mAP Lite with 5GHz radio

A 4-ports device with Ethernet bypass
by olivier2831
Thu Feb 11, 2021 12:23 pm
Forum: General
Topic: Assign a DNS entry for a DHCP device
Replies: 3
Views: 390

Re: Assign a DNS entry for a DHCP device

Yes, that would be a very useful feature.
by olivier2831
Fri Feb 05, 2021 10:01 am
Forum: General
Topic: Which mAP alternative with 5GHz and 802.3 af capabilities ?
Replies: 6
Views: 721

Re: Which mAP alternative with 5GHz and 802.3 af capabilities ?

I powered a cAP AC with a PoE injector, then connected a Mitel handset to the POE-out port of the cAP AC and it worked fine. I wasn't necessarily expecting the phone to power up as the cAP AC spec says it's passive PoE out. How did you exactly power your cAP AC device ? Using a 48V power supply con...
by olivier2831
Thu Feb 04, 2021 6:44 pm
Forum: General
Topic: Which mAP alternative with 5GHz and 802.3 af capabilities ?
Replies: 6
Views: 721

Re: Which mAP alternative with 5GHz and 802.3 af capabilities ?

Reading back mAP datasheet, I would appreciate if someone could confirm the following setup would work or not:

LAN <--- non-PoE ethernet or wifi ---> mAP with 48V power supply <--- 802.af ethernet ---> IP phone
by olivier2831
Thu Feb 04, 2021 5:54 pm
Forum: General
Topic: Which mAP alternative with 5GHz and 802.3 af capabilities ?
Replies: 6
Views: 721

Which mAP alternative with 5GHz and 802.3 af capabilities ?

Hello, I'm looking for a small device that would bring 802.3af PoE, VPN and 2.4/5GHz wifi to a PoE-powered SIP phone allowing some employees to bring their deskphone at home for tele-working. Current mAP (and a 48V power supply) seems to fit except for 5GHz capability. All Mikrotik wireless alternat...
by olivier2831
Mon Nov 30, 2020 11:24 pm
Forum: Beginner Basics
Topic: Questions on Wiki's Traffic generator page ?
Replies: 0
Views: 316

Questions on Wiki's Traffic generator page ?

Hello, I'm reading CCR1036 Test setup in https://wiki.mikrotik.com/wiki/Manual:Performance_Testing_with_Traffic_Generator#Defaults.2C_routing . 1. Where does pt0 comes from in bellow code ? Should this line be simply removed ? /tool traffic-generator stream add id=0 mbps=700 name=str0 packet-size=60...
by olivier2831
Mon Nov 30, 2020 5:50 pm
Forum: General
Topic: Fiber vs Copper 10Gb/s SFP+ power consumption
Replies: 3
Views: 745

Re: Fiber vs Copper 10Gb/s SFP+ power consumption

Mikrotik don't appear to publish a power consumption figure for the S+AO0005, I would expect it to be less than the regular optical SFPs.
S+AO0005 seems to be fine but a 5m length is not very convenient when connecting devices with a rack.
A 1m S+AO0001 would be much appreciated for this.
by olivier2831
Mon Nov 30, 2020 3:30 pm
Forum: General
Topic: Fiber vs Copper 10Gb/s SFP+ power consumption
Replies: 3
Views: 745

Fiber vs Copper 10Gb/s SFP+ power consumption

Hello, I've read several times 10Gb/s on Copper SFP+ implied noticeable power consumption and heat. Do you have any comparison between Fiber and Copper SFP+ when connecting over 1 Gb/s ? Can S+AO0005 be seen a way to work around power/heat issues without sacrifying throughput when inter-connecting M...
by olivier2831
Wed Sep 23, 2020 11:33 am
Forum: Beginner Basics
Topic: Can't add Unifi Switch
Replies: 4
Views: 1036

Re: Can't add Unifi Switch

Have a Mikrotik hEX RB750Gr3 that I am trying to plug a Unifi 8 port switch into. The Unifi is a managed switch that should get a ip via dhcp. When I connect it to the Mikrotik it never shows up. I have other non managed switches and when I plug them in devices that are plugged into those switches ...
by olivier2831
Wed Sep 23, 2020 11:06 am
Forum: General
Topic: [FEATURE REQUEST] 802.3bt (PoE++) Switch
Replies: 1
Views: 418

Re: [FEATURE REQUEST] 802.3bt (PoE++) Switch

Would love to see Mikrotik release a PoE++ switch. Is there any plans to release such an item?
+1
by olivier2831
Tue Sep 08, 2020 2:01 pm
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 185
Views: 77329

Re: v6.48beta [testing] is released!

Version 6.48beta35 has been released.
...
*) discovery - added "lldp-med-net-policy-vlan" property for assigning VLAN ID (CLI only);
Is this feature enough to automatically assign IP Phones to specific VLAN (ie configuring a VoiceVLAN per port) ?
by olivier2831
Wed Aug 26, 2020 9:26 am
Forum: RouterOS v7 BETA
Topic: Feature Request - Enterprise features like VSS, ZTP, IPv6 L3 HW offloading and SD-WAN
Replies: 13
Views: 2225

Re: Feature Request - Enterprise features like VSS, ZTP, IPv6 L3 HW offloading and SD-WAN

Thanks for the insights!!! Seems that Mikrotik is going in the right track on these features :). My main priorities are ZTP and VSS to have first above the others. Same priorities here: ZTP and VSS. And an other feature not mentioned before: LLDP-MED I would very curious to read about the later one.
by olivier2831
Wed Jul 29, 2020 9:51 am
Forum: General
Topic: Which >96W 48V power supply for netpower16P ?
Replies: 2
Views: 1049

Re: Which >96W 48V power supply for netpower16P ?

Thank you @nz_monkey for the tip: I ordered a Meanwel 48v, 240W DIN-mount power supply and will test it soon. By the way, has anyone ever tried to "split" the output of such power supply for several devices ? On one hand DIN-mount power supplies are quite compact and dedicating one for eac...
by olivier2831
Tue Jul 28, 2020 12:52 pm
Forum: General
Topic: Which >96W 48V power supply for netpower16P ?
Replies: 2
Views: 1049

Which >96W 48V power supply for netpower16P ?

Hello, Netpower16P datasheet mentions "316W max power consumption". Which available power supply would you recommend to get a 150W, 200W or more total output PoE (802.3af/at) budget ? If I'm not mistaken, largest current Mikrotik 48V power supply only provides 96W which means less than 6W ...
by olivier2831
Tue Jul 21, 2020 11:34 am
Forum: RouterBOARD hardware
Topic: Hardware Wishlist
Replies: 18
Views: 7307

Re: Hardware Wishlist

- cAP ax
- 802.3BT switches
For curiosity's sake, which current AP (any brand or model) do comply with this "802.3bt daisy chain" ?
Being able to both pass data (>1 Gb/s) and power (>802.3af) from one AP to next AP would greatly simplify cabling.
by olivier2831
Tue Jul 21, 2020 11:06 am
Forum: General
Topic: mUPS/mUPS Pro plans
Replies: 1
Views: 864

mUPS/mUPS Pro plans

Hello,
I can't see any reference to mUPS (nor mUPS Pro) among official Mikrotik hardware pages.
What are current plans for both ?
Best regards
by olivier2831
Tue Jul 07, 2020 9:30 am
Forum: General
Topic: [OT] Which IPFIX collector on Debian ?
Replies: 3
Views: 1054

Re: [OT] Which IPFIX collector on Debian ?

Thank you very much for replying.

I'll give nfdump a try.
Thanks again
by olivier2831
Mon Jul 06, 2020 11:51 am
Forum: General
Topic: [OT] Which IPFIX collector on Debian ?
Replies: 3
Views: 1054

[OT] Which IPFIX collector on Debian ?

Hello,

Mikrotik devices can produce IPFIX data.
Which Debian installable IPFIX collector would you recommend to collect this data and store in SQL database ?

Best regards
by olivier2831
Mon Jul 06, 2020 11:34 am
Forum: RouterBOARD hardware
Topic: mUPS Pro?
Replies: 2
Views: 1316

Re: mUPS Pro?

yes, there is another thread, it's over 6 months old so time for new!

Is this product going to see the light of day?
Yes, an official statement about mUPS Pro plans, if such still exists, would be very welcome.
by olivier2831
Fri Jul 03, 2020 4:15 pm
Forum: RouterBOARD hardware
Topic: Hardware Wishlist
Replies: 18
Views: 7307

Re: Hardware Wishlist

- 802.3BT switches
May I add that, if my understanding is correct, 802.3bt also brings multi-gigabit (2.5, 5 or 10Gb/s).
Maybe a simple Midspan 802.3bt would also make sense as devices such do not exist, yet.
by olivier2831
Thu Jul 02, 2020 7:56 pm
Forum: General
Topic: Questions about NAT44/RFC7422
Replies: 3
Views: 868

Re: Questions about NAT44/RFC7422

Thank you very much for you very informative answer And what if you have 5000 users ? Deterministic NAT is a poor man's workaround for small networks where you cannot log connection initiation events on an external storage. 1. Alternatively, how can you log connection initiation events on an externa...
by olivier2831
Thu Jul 02, 2020 2:40 pm
Forum: General
Topic: Questions about NAT44/RFC7422
Replies: 3
Views: 868

Questions about NAT44/RFC7422

I've very recently discovered RFC7422 that deals with deterministic NAT. I'm thinking of using RFC7422 to reduce logging requirements when serving 500 devices through a single (or double) Internet connection (FTTH). The way I see this is: "Whenever IP 192.168.0.17 from 192.168.0.0/23 network is...
by olivier2831
Wed Jun 24, 2020 10:32 am
Forum: Announcements
Topic: MikroTik Newsletter June 2020 (#96)
Replies: 29
Views: 12999

Re: MikroTik Newsletter June 2020 (#96)

Hi,

Netpower16 is very welcome addition.

Do we have anything new concerning the CSS610-8P-2S+,announced during MUM2019.
This one would still perfectly fill a need between 5 ports PowerBox and 16 ports Netpower16.

Best regards
by olivier2831
Fri Jun 12, 2020 2:05 pm
Forum: General
Topic: How to keep people from connecting PC instead of Access points or Cameras ?
Replies: 6
Views: 1312

Re: How to keep people from connecting PC instead of Access points or Cameras ?

802.1X is then the only way to go. But it depends on the sort of "endpoint" what capabilities are. If the endpoint has a supplicant you can work with username/password/certificates but for real dumb devices MAC "authentication" is a minimum. In *additional* to that, specific fil...
by olivier2831
Fri Jun 12, 2020 1:28 pm
Forum: General
Topic: How to keep people from connecting PC instead of Access points or Cameras ?
Replies: 6
Views: 1312

How to keep people from connecting PC instead of Access points or Cameras ?

Hello, How would you secure your network if you have devices (Wifi Access Points, Cameras, ...) installed in locations where physical access protection can't be provided (corridors, common rooms, ...) ? Those devices have the common properties: - most if not all are PoE powered, - they hold a tag or...
by olivier2831
Tue Jun 09, 2020 4:51 pm
Forum: General
Topic: How to drop all traffic except traffic to the Internet ? [SOLVED]
Replies: 5
Views: 2926

Re: How to drop all traffic except traffic to the Internet ? [SOLVED]

If you want it to be done exactly as you described (based on ip address ranges) use switch chip access rules: https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Switch_Rules_.28ACL.29 Or bridge firewall: https://wiki.mikrotik.com/wiki/Manual:Interface/Bridge#Bridge_Firewall Another possib...
by olivier2831
Mon Jun 08, 2020 12:31 pm
Forum: General
Topic: How to drop all traffic except traffic to the Internet ? [SOLVED]
Replies: 5
Views: 2926

How to drop all traffic except traffic to the Internet ? [SOLVED]

Hello, For a building hosting students, I'm trying to replicate current wireless policy with Mikrotik switches. Currently, a student guest WiFi device can only communicate with non-RFC1918 devices (all traffic to RFC1918 addresses ie 192.168.0.0, 172.16.0.0, 10.0.0.0 is discarded by WiFi AP). How ca...
by olivier2831
Fri May 29, 2020 12:22 pm
Forum: General
Topic: How Eth interface for DSL upstream access in PPPoE setup ?
Replies: 1
Views: 667

How Eth interface for DSL upstream access in PPPoE setup ?

Hello,

I've got the following setup:
Internet --- ISP --- DSL Modem --- Mikrotik router --- LAN

How can I configure WAN ethernet interface for both:
- acting as PPPoE client as required by ISP
- acting as DHCP client to configure DSL Modem

What are the basic steps for this ?

Best regards
by olivier2831
Tue Feb 18, 2020 3:57 pm
Forum: RouterOS v7 BETA
Topic: CRS3xx MC-LAG in RouterOS 7
Replies: 19
Views: 7888

Re: CRS3xx MC-LAG in RouterOS 7

EVPN multihoming is better than MC-LAG
MC-LAG is dead.
I've never heard about EVPN before.
After reading about it, it does seem to be very interesting.
Thanks for mentioning it here !
by olivier2831
Fri Jan 31, 2020 9:08 am
Forum: Announcements
Topic: MikroTik newsletter January 2020 (#93)
Replies: 26
Views: 27979

Re: MikroTik newsletter January 2020 (#93)

I hoped to hear news about:
CRS354-48P-4S+2Q+RM (with PoE)
CSS610-8P-2S+ (announced last year)

Maybe, next time
by olivier2831
Mon Dec 30, 2019 3:58 pm
Forum: RouterOS v7 BETA
Topic: CRS3xx MC-LAG in RouterOS 7
Replies: 19
Views: 7888

Re: CRS3xx MC-LAG in RouterOS 7

We are researching ways how to implement MC-LAG
@Reinis:
Hi,
Do you have any specific information about this MC-LAG feature ?
Should it come with RouterOS 7 first as this thread title implies, or may it come with 6.4X ?
Thanks in advance
by olivier2831
Fri Nov 29, 2019 9:43 am
Forum: General
Topic: The sad state of OpenVPN
Replies: 12
Views: 5519

Re: The sad state of OpenVPN

1) OpenVPN client with weak cyphers and password auth
Yes but ciphering can be quite CPU-intensive and RouterOS covers a wide range of hardware.
by olivier2831
Thu Oct 17, 2019 5:30 pm
Forum: General
Topic: LLDP-MED support in RouterOS 6.46 or 7
Replies: 0
Views: 628

LLDP-MED support in RouterOS 6.46 or 7

Hello,

Is there anything to mention about LLDP-MED support in either RouterOS 6.46 or later 7 ?

Best regards
by olivier2831
Mon Aug 26, 2019 6:05 pm
Forum: Beginner Basics
Topic: How to effectively configure 6 hEX units ?
Replies: 5
Views: 1583

Re: How to effectively configure 6 hEX units ?

Configure 1 how you want it. Do an /export and then do a full reset on the others and import the .rsc file you made from the first one. Which would cover all but last two OP's points (SSH keys and password) ... those two are only possible to automate by using (binary) backups which should not be us...
by olivier2831
Mon Aug 19, 2019 7:24 pm
Forum: Beginner Basics
Topic: How to effectively configure 6 hEX units ?
Replies: 5
Views: 1583

How to effectively configure 6 hEX units ?

Hello, I need to configure 6 hEX PoE UNITS as basic "VLAN enabled switches". Configuration details i need to set, are: - custom settings: - fixed private address (eg 192.168.1.221/24) replacing factory-set 192.168.88.1/24 - common settings: - do not act as DHCP or DNS server - no DNS cache...
by olivier2831
Mon Aug 19, 2019 2:50 pm
Forum: SwOS
Topic: Support for MC-LAG/Port bonding across chassis?
Replies: 3
Views: 5673

Re: Support for MC-LAG/Port bonding across chassis?

I am planning my core switch with 10Gbps, and need MC-LAG or similar function which can bond port across two switch chassis for HA or redundancy. If aggregating bandwith is not required (ie having one port in standby mode is acceptable) maybe alternatives that do not depend on switch features can b...
by olivier2831
Mon Aug 12, 2019 12:30 pm
Forum: Announcements
Topic: Newsletter #90
Replies: 55
Views: 30001

Re: Newsletter #90

Though I'm also really interested in the new outdoor switches (CSS610-8P-2S+, CRS318-16P-2S+, CRS318-16Fi-2S), is there any prediction as to when they'll be released?
+1 for outdoor switches availability prediction
by olivier2831
Fri Jul 26, 2019 6:30 pm
Forum: General
Topic: Feature Request TR-069 CPE
Replies: 86
Views: 37675

Re: Feature Request TR-069 CPE

For ISP - it is not a problem. For ex. you have 30000 rb951ui and tr-069. But some of them - under the NAT. So, you have 2 options - vpn and stun. I prefer stun. Clear?
Yes, I agree, TR069 and Zero-touch configuration are not to be confused.
by olivier2831
Thu Jul 25, 2019 6:53 pm
Forum: General
Topic: Feature Request TR-069 CPE
Replies: 86
Views: 37675

Re: Feature Request TR-069 CPE

+1 for STUN
To keep plug-n-play feature of TR069-Annex G-enabled router, a public STUN server address or hostname should, by default, be configured in Mikrotik router default config, right ?
Does such public STUN server exist or do you think Mikrotik should operate its own STUN server ?
by olivier2831
Tue Jul 23, 2019 6:18 pm
Forum: General
Topic: LLDP
Replies: 135
Views: 59155

Re: LLDP

Agree 100%. It is a fundamental requirement in any enterprise switch.
+1 for LLDP-MED which really simplify things.
by olivier2831
Mon Jul 08, 2019 2:58 pm
Forum: General
Topic: CSS610-8P-2D+OUT availability
Replies: 3
Views: 1164

Re: CSS610-8P-2D+OUT availability

Considering the only reference to that part number I can find is this one thread, you'll have to be more specific at what device your looking at. Do you have a link to the announcement for it? Yes, I should have been explicit on this. My question relates to the product announced in page 38 of the [...
by olivier2831
Mon Jul 08, 2019 11:48 am
Forum: General
Topic: CSS610-8P-2D+OUT availability
Replies: 3
Views: 1164

Re: CSS610-8P-2D+OUT availability

Can we have a rough estimee of its availability ?
Anyone ?
by olivier2831
Tue Jul 02, 2019 7:18 pm
Forum: General
Topic: CSS610-8P-2D+OUT availability
Replies: 3
Views: 1164

CSS610-8P-2D+OUT availability

Hello,

I read announcement of CSS610-8P-2D+OUT switch.
I find it a very attractive product in WiFi setups where it could simplify a lot cabling topologies.

Can we have a rough estimee of its availability ?

Best regards
by olivier2831
Mon Jun 17, 2019 5:27 pm
Forum: Beginner Basics
Topic: Explain RSTP priority and path-cost [SOLVED]
Replies: 1
Views: 2072

Explain RSTP priority and path-cost [SOLVED]

Hello, I'm currently testing RSTP between two 6.44.3 instances. I'm not familiar at all with STP and the likes. I looked at first example (the one involving switches SW1, SW2, SW3 and SW4 and hosts A and B) in RSTP Wiki page (see [1]). 1. I can read that SW1 settings rely on priority while SW4 rely ...
by olivier2831
Mon Jun 17, 2019 9:51 am
Forum: Wireless Networking
Topic: How replace a failing Wireless Wire Dish unit ?
Replies: 2
Views: 906

Re: How replace a failing Wireless Wire Dish unit ?

Besides admin users, IP addresses, for normal management, etc,you will have to configure the following as a minimum to get the link up: 1. Mode: "Bridge" or "Station Bridge" depending which one you replacing 2: SSID 3: SSID Password Yes I forgot the last two ones. In a couple of...
by olivier2831
Sun Jun 16, 2019 5:43 pm
Forum: Wireless Networking
Topic: Configuring a Wireless Wire Dish as a switch ?
Replies: 2
Views: 1077

Configuring a Wireless Wire Dish as a switch ?

Hello, I hope my question will not sound too stupid for experienced people but in a PtP setup linking a secondary building to a main one where all resources (DHCP server, WAN, ...) are located, is it possible to configure both master and slave units of Wireless Wire Dish as switches ? WAN ---- Main ...
by olivier2831
Sun Jun 16, 2019 5:34 pm
Forum: Wireless Networking
Topic: How replace a failing Wireless Wire Dish unit ?
Replies: 2
Views: 906

How replace a failing Wireless Wire Dish unit ?

Hello, My first Wireless Wire Dish is about to enter production in a couple of days. Both "dishes" arrived pre-configured : one unit as master, the other as slave. What should I prepare in case master or slave unit has a non-recoverable hardware issue ? Ideal steps include: - configuring s...
by olivier2831
Sun Jun 16, 2019 5:11 pm
Forum: Beginner Basics
Topic: Interconnecting two CRS324 through two different links
Replies: 0
Views: 633

Interconnecting two CRS324 through two different links

Hello, I'm about to install two CRS324 units in two buildings :one CRS324 in main building, one in secondary building. Main building hosts two WAN connections while secondary building has none. Both building can be interconnected through two different dedicated links: - one made of a Wireless Wire D...
by olivier2831
Fri Jun 07, 2019 4:43 pm
Forum: Wireless Networking
Topic: Experience with PtP Wireless Wire Dish link
Replies: 3
Views: 1650

Re: Experience with PtP Wireless Wire Dish link

Complementing my previous message, I installed a 130m PtP Wireless Dish Link.
Rough measures (with iperf and a pair of PCs) showed 900Mb/s throughput, with a sunny weather.
This link will enter production at the end of June.
by olivier2831
Wed May 29, 2019 7:14 pm
Forum: Wireless Networking
Topic: Experience with PtP Wireless Wire Dish link
Replies: 3
Views: 1650

Experience with PtP Wireless Wire Dish link

Hello, I've read in this [1] thread, some kind of survey regarding PtMP W60g performance. Some commented their own experience in a PtP setup. 1. Can I ask here, to sum up here your experiences with a Wireless Wire Dish link in Point-to-Point setup ? Do you have disconnections ? How often ? Do they r...
by olivier2831
Mon May 27, 2019 12:54 pm
Forum: Beginner Basics
Topic: Advice on backing a 60GHz link with a private DSL line
Replies: 2
Views: 1015

Re: Advice on backing a 60GHz link with a private DSL line

With 60m clear LOS you van espect 1GBit with Wireless Wire you don’t need the dish
What are the technical downsides of using a Dish instead of a Wire ?
by olivier2831
Fri May 24, 2019 4:48 pm
Forum: Beginner Basics
Topic: Troubeshooting Performance testing
Replies: 3
Views: 1038

Re: Troubeshooting Performance testing

This will send traffic from TG, through DUT and back to TG.
Am I correct this only involves one DUT interface ?
When would prefer to use such traffic as opposed to traffic going in through one interface and leaving through another ?
by olivier2831
Fri May 24, 2019 3:46 pm
Forum: Beginner Basics
Topic: Troubeshooting Performance testing
Replies: 3
Views: 1038

Re: Troubeshooting Performance testing [SOLVED]

I could at last get some positive testing. Referring to [1], I simply had to run both r12 and r21 traffic to have "quick tx-template ..." command stop displaying "100% Lost". (Previously, I ran r12 traffic alone, as a first step). I hope this would help others [1] https://wiki.mi...
by olivier2831
Fri May 24, 2019 3:36 pm
Forum: Beginner Basics
Topic: Advice on backing a 60GHz link with a private DSL line
Replies: 2
Views: 1015

Advice on backing a 60GHz link with a private DSL line

Hello, I'm designing a setup for which a 60GHz radio link will be installed between two buildings. One building host ISP lines while the "remote" has no ISP line at all. Building are 60m from each other and I expect a 300Mb/s throughput through this 60GHz radio (Wireless Wire Dish). There ...
by olivier2831
Fri May 24, 2019 1:46 pm
Forum: Beginner Basics
Topic: crs125-24g-1s-2hnd 100% cpu load when i am doing speedtest
Replies: 8
Views: 1820

Re: crs125-24g-1s-2hnd 100% cpu load when i am doing speedtest

...
For self-switch test:
http://prntscr.com/nqzskg
I'm currently doing load testing with CRSXXX devices.
Which command did you use to produce the above report ?
by olivier2831
Wed May 22, 2019 11:12 am
Forum: Beginner Basics
Topic: Troubeshooting Performance testing
Replies: 3
Views: 1038

Troubeshooting Performance testing

Hello, I'm discovering https://wiki.mikrotik.com/wiki/Manual:Performance_Testing_with_Traffic_Generator . I tried to reproduce these tests in my lab but failed miserably Before defining tests with /tool traffic-generator packet-template commands, what are the appropriate set of commands to run on Tr...
by olivier2831
Tue May 14, 2019 4:00 pm
Forum: Beginner Basics
Topic: Re-phrase o a warning on Wiki PCC page
Replies: 3
Views: 818

Re-phrase o a warning on Wiki PCC page

Hello, Reading [1] again and again, I still don't understand the following sentence: With policy routing it is possible to force all traffic to the specific gateway, even if traffic is destined to the host (other that gateway) from the connected networks. This way routing loop will be generated and ...
by olivier2831
Mon May 13, 2019 11:34 am
Forum: Beginner Basics
Topic: 6.44: DHCP server becomes invalid when removing ether2 from bridge
Replies: 8
Views: 1365

Re: 6.44: DHCP server becomes invalid when removing ether2 from bridge

BTW, my friend @anav has a point here.... CRS3xx can HW offload VLAN filtering and using VLANs to simply partition the switch into several L2 domains might be actally better than using several bridges (I'm not sure if limit of single bridge per device being HW accelerated applies to CRS3xx as well)...
by olivier2831
Sat May 11, 2019 6:41 pm
Forum: Beginner Basics
Topic: Questions on Wiki's PCC page [SOLVED]
Replies: 8
Views: 1355

Re: Questions on Wiki's PCC page [SOLVED]

1) LAN means local network, it depends on what your config uses. With default one, it's bridge. 2) Same thing, you can use both bridge as individual interface, or interface list if it's defined (I think default config has it). 3) Passthough tells router, when rule matches, if processing stops (pass...
by olivier2831
Sat May 11, 2019 6:11 pm
Forum: Beginner Basics
Topic: Questions on Wiki's PCC page [SOLVED]
Replies: 8
Views: 1355

Re: Questions on Wiki's PCC page [SOLVED]

Do you really want me to post here to PCC examples of PCC where in one case passthrough = no is used for everything and in the other passthrough = yes for everything from legitimate sources. IMHO, posting those examples should be helpful at least for me, as I couldn't successfully the referenced on...
by olivier2831
Fri May 10, 2019 7:44 pm
Forum: Beginner Basics
Topic: Questions on Wiki's PCC page [SOLVED]
Replies: 8
Views: 1355

Re: Questions on Wiki's PCC page [SOLVED]

May I add the following question: add chain=prerouting in-interface=LAN connection-mark=no-mark dst-address-type=!local \ per-connection-classifier=both-addresses:2/0 action=mark-connection new-connection-mark=ISP1_conn ... add chain=prerouting connection-mark=ISP1_conn in-interface=LAN action=mark-...
by olivier2831
Fri May 10, 2019 7:29 pm
Forum: Beginner Basics
Topic: 6.44: DHCP server becomes invalid when removing ether2 from bridge
Replies: 8
Views: 1365

Re: 6.44: DHCP server becomes invalid when removing ether2 from bridge

At the first impulse I'd change the order of execution of points 1. and 2. But I'm not sure about inner working in RB. On a lab box, I tried my suggested process before posting and it worked OK apparently but I'm far from being convinced by this single test. I've been so many times beaten that I pr...
by olivier2831
Fri May 10, 2019 7:20 pm
Forum: Beginner Basics
Topic: Questions on Wiki's PCC page [SOLVED]
Replies: 8
Views: 1355

Questions on Wiki's PCC page [SOLVED]

Hello, I'm learning PCC reading [1]. May I ask the following questions: / ip address add address=192.168.0.1/24 network=192.168.0.0 broadcast=192.168.0.255 interface=LAN 1. Shall I read "interface=bridge" anywhere "interface=LAN" is written or shall I use values such as "int...
by olivier2831
Fri May 10, 2019 4:38 pm
Forum: Beginner Basics
Topic: 6.44: DHCP server becomes invalid when removing ether2 from bridge
Replies: 8
Views: 1365

Re: 6.44: DHCP server becomes invalid when removing ether2 from bridge

Bridge by default assumes MAC address of the first active member port. Highly likely that's ether2 in your particular setup. If you remove "MAC donor" port from bridge, it looses MAC address. Solution: on bridge set auto-mac=no admin-mac=uu:vv:ww:xx:yy:zz where the set MAC address is one ...
by olivier2831
Thu May 09, 2019 11:00 pm
Forum: Beginner Basics
Topic: 6.44: DHCP server becomes invalid when removing ether2 from bridge
Replies: 8
Views: 1365

6.44: DHCP server becomes invalid when removing ether2 from bridge

Hello, I've just noticed the following behaviour on a 6.44.3-equiped CRS328-24P: - CRS328 is set in router mode with ether1 as a DHCP-configured WAN port - all other etherXX, sfpplus-XX interfaces belong to bridge-named bridge - a dhcp1 DHCP server is running on this "bridge" interface. Wh...
by olivier2831
Mon Apr 29, 2019 2:21 pm
Forum: Beginner Basics
Topic: hEXr3, 6.44.2 bridge mode [SOLVED]
Replies: 29
Views: 7679

Re: hEXr3, 6.44.2 bridge mode [SOLVED]

This issue was reported with other devices as well. Has this issue been acknowledged as such (ie as being an issue) or do Mikrotik evaluates this as a feature that should be kept ? Current deafening silence on this topic is a bit worrying as QuickFig is the first tool that newcomers as myself, do u...
by olivier2831
Mon Apr 29, 2019 10:32 am
Forum: General
Topic: Classes in DHCP server
Replies: 1
Views: 613

Classes in DHCP server

Hello, I'm currently using ISC dhcp server's classing features (see [1]) on a Linux server to allocate DHCP clients in specified address pools. For instance: - clients with MAC address ending with aa are assigned an address in address pool 192.168.11.10-254, - clients with MAC address ending with ab...
by olivier2831
Wed Apr 24, 2019 11:24 am
Forum: Beginner Basics
Topic: Clarify VLAN0/VLAN1 roles in CRS1xx/2xx wiki page
Replies: 1
Views: 532

Clarify VLAN0/VLAN1 roles in CRS1xx/2xx wiki page

Hello,

In [1], VLAN0 tagging is described as Untagged.
At the same time, in 6.44, Untagged is assigned to VLAN1.

What could best improve this documentation ?

[1] https://wiki.mikrotik.com/wiki/Manual:C ... s_examples
by olivier2831
Tue Apr 23, 2019 12:44 pm
Forum: Beginner Basics
Topic: hEXr3, 6.44.2 bridge mode [SOLVED]
Replies: 29
Views: 7679

Re: hEXr3, 6.44.2 bridge mode [SOLVED]

Yes it looks like the "bridge" template is not really OK, probably almost nobody uses it and it receives little attention. (normally people who want a 5-port bridge will buy a switch instead!) hEX PoE has unique PoE passthrough capabilities (you can power it with PoE while it PoE-powers u...
by olivier2831
Thu Apr 18, 2019 1:55 pm
Forum: Beginner Basics
Topic: Advice on WAN failure detection
Replies: 0
Views: 640

Advice on WAN failure detection

Hello, I'm preparing a 6.44.2-powered CRS328 I intend to use a switch or a router with an enabled OpenVPN client for its remote management. It will be directly connected to 2 xDSL routers, both connected to the same ISP through PPPoE or DHCP. I installed a second xDSL line as I intend to dedicate it...
by olivier2831
Thu Apr 18, 2019 12:13 pm
Forum: Beginner Basics
Topic: DHCP Server with specific gateway for specific gateway
Replies: 2
Views: 1901

[SOLVED] Re: DHCP Server with specific gateway for specific gateway

You can add IP address reservations for MAC addresses. And then you can add different config for addresses/subnets in "/ip dhcp-server network". Thanks to the above advice, I could specify a specific gateway address for specific MACs, using the following WebFig steps: - in IP/DHCP Server/...
by olivier2831
Wed Apr 17, 2019 6:49 pm
Forum: Beginner Basics
Topic: DHCP Server with specific gateway for specific gateway
Replies: 2
Views: 1901

DHCP Server with specific gateway for specific gateway

Hi, With 6.44.2 on a CRS328-28P, is it possible to configure one (or several) DHCP server(s) so that: - some LAN devices (IP phones) identified by MAC address, are assigned a specific gateway (one WAN link dedicated to IP phones) - the other devices are assigned a default gateway - all devices belon...
by olivier2831
Wed Apr 17, 2019 11:49 am
Forum: General
Topic: Feature Request: 802.1X over ethernet
Replies: 40
Views: 16922

Re: Feature Request: 802.1X over ethernet

When to expect 802.1x support in RouterOS? Strong need in wired 802.1X MAJOR CHANGES IN v6.45: ---------------------- !) dot1x - added support for IEEE 802.1X Port-Based Network Access Control (CLI only); ---------------------- Shall we hope for Radius assigned VLAN with this promising feature ?
by olivier2831
Wed Apr 17, 2019 9:29 am
Forum: Beginner Basics
Topic: Best practices to copy config from one device to another
Replies: 3
Views: 1058

Re: Best practices to copy config from one device to another

2. you would want to check the config over, remove any MAC address. unfortunately if you set admin-mac=xxx on a interface, this part of the config will be in the export. Yes, unfortunately, there is no variable in RouterOS scripts, it seems. You can't have lines like /globalvar set serialnumber &qu...
by olivier2831
Tue Apr 16, 2019 5:35 pm
Forum: General
Topic: DHCP client on bridge does not work?
Replies: 19
Views: 19435

Re: DHCP client on bridge does not work?

I waste so many hours and finally found this thread. @2frogs solution works for me - just disabled RSTP!
How did you exactly do this ?
protocol-mode=none in bridge setting ?
Loop-protect in interface ?
Something else ?
by olivier2831
Tue Apr 16, 2019 5:28 pm
Forum: Beginner Basics
Topic: Best practices to copy config from one device to another
Replies: 3
Views: 1058

Best practices to copy config from one device to another

Hello, I'm quite new in Mikrotik RouterOS world. What are the best practices to copy config from one RB device to another one ? To simplify things, source and destination devices both have the same hardware and software. I know /export and /backup tools exist but: - /backup produces files that can't...
by olivier2831
Tue Apr 16, 2019 2:46 pm
Forum: Beginner Basics
Topic: hEXr3, 6.44.2 bridge mode [SOLVED]
Replies: 29
Views: 7679

Re: hEXr3, 6.44.2 bridge mode [SOLVED]

problem identified, manually fixed and ticket opened. Mikrotik is adding a default rule that nobody outside of the LAN can access. But for the bridge this is not working. Disabling this rule made the hEX bridge accessable. Hi, I also can across this one as setting an hEX into bridge mode, in my tes...
by olivier2831
Mon Apr 15, 2019 12:38 pm
Forum: Beginner Basics
Topic: Need some recommendation for hardware
Replies: 5
Views: 1216

Re: Need some recommendation for hardware

As I already wrote: none of Mikrotik devices support xDSL upstream ... If the third-party xDSL SFP modules (there are a few that in principle work with MT) don't work with particular ISP (and chances that they won't work are higher than 50%), then one will always have to use some (slightly more sop...
by olivier2831
Fri Apr 12, 2019 7:19 pm
Forum: Wireless Networking
Topic: Recommended device to give game console access to WPA2 Enterprise
Replies: 0
Views: 669

Recommended device to give game console access to WPA2 Enterprise

Hello, I'm looking for a device I could lend/rent/sell to game console or smart TV owners allowing them to access to a WPA2 Enterprise network : WPA2 Enterprise network <---2.4/5 GHz ----> Device <--- Ethernet ---> Game console/Smart TV/Whatever My requirements are: - dual 2.4/5 Ghz radio uplink - l...
by olivier2831
Fri Apr 12, 2019 4:36 pm
Forum: Wireless Networking
Topic: Recommendation for a 100m PtP link ?
Replies: 3
Views: 984

Re: Recommendation for a 100m PtP link ?

With a slightly bigger budget, this unit is probably overkill but excellent for a one pair solution https://mikrotik.com/product/wireless_wire_dish I forgot to mention it in my original post but when writing it, I had this Wireless Wire Dish in mind. In secondary building, I expect 50 connected stu...
by olivier2831
Fri Apr 12, 2019 11:43 am
Forum: Wireless Networking
Topic: Recommendation for a 100m PtP link ?
Replies: 3
Views: 984

Recommendation for a 100m PtP link ?

Hello, I'm working on a new project for which I must provide Internet access services to users living in two different buildings. I can get FTTH lines on main building but I can't get any FTTH line in secondary building. Both buildings are close to each other (<100 m) with clear Line of Sight when c...
by olivier2831
Mon Apr 08, 2019 3:24 pm
Forum: Beginner Basics
Topic: How to properly 802.1Q-tag DHCPDISCOVERs ?
Replies: 1
Views: 598

How to properly 802.1Q-tag DHCPDISCOVERs ?

Hello, I'm working on a remote setup that involves a 6.44.2 hEX box. This box has an ether1 uplink to another switch and an ether2 downlink to an IP camera. My setup involves a VLAN2 network. I'm trying to configure this box to act as a casual VLAN-enabled switch (routing is done elsewhere). By &quo...
by olivier2831
Wed Mar 13, 2019 11:14 am
Forum: Beginner Basics
Topic: Which tool for traffic receiving ?
Replies: 0
Views: 579

Which tool for traffic receiving ?

Hello, I'm about to do some performance testing and I'm discovering RouterOS 6.44 long Tools list. 1. It seems Traffic Generator can generate some outbound traffic on specified interfaces. Which tool should be used to read inbound traffic and display related statistics ? 2. Before testing one device...
by olivier2831
Wed Mar 13, 2019 10:19 am
Forum: General
Topic: Feature Request: IPerf
Replies: 61
Views: 19493

Re: Feature Request: IPerf

Hello, we already have a bandwidth testing tool which is fully integrated into RouterOS and works properly with the RouterBOARD ethernet drivers. The tool is called 'Traffic generator' (available both in WinBox and from the command line interface). Please take a look. We hope you like it - https://...
by olivier2831
Mon Mar 11, 2019 10:51 am
Forum: General
Topic: NbaseT questions
Replies: 1
Views: 847

NbaseT questions

Hi,

1. What about NbaseT support (see [1]) in Mikrotik products ?
2. Is possible for 10GbaseT ports to support 2.5 or 5G one day (with cat5 cables) or does NbaseT requires a different implementation ?

Best regards

[1] https://en.wikipedia.org/wiki/2.5GBASE-T_and_5GBASE-T
by olivier2831
Fri Mar 08, 2019 9:31 am
Forum: Beginner Basics
Topic: Can't access to RB960PGS in bridge mode (latest 6.44)
Replies: 8
Views: 4685

Re: Can't access to RB960PGS in bridge mode (latest 6.44)

A couple of things that might make a difference or not: Remove ether1 from WAN interface list, add it to LAN interface list. Add bridge to LAN interface list. Move IP address from ether2 to bridge. Probably most of firewall rules are not needed any more or should be reworked (I see a ppp interface ...
by olivier2831
Thu Mar 07, 2019 7:50 pm
Forum: Beginner Basics
Topic: Can't access to RB960PGS in bridge mode (latest 6.44)
Replies: 8
Views: 4685

Re: Can't access to RB960PGS in bridge mode (latest 6.44)

Summary: With a 6.44-powered RB960PGS, as soon as I apply Bridge mode: - I cannot access to the RB960PGS through its web app and any Ethernet port - I can connect to it with Winbox and its MAC address - the box replies to pings. Here is the (anonymized) config (/export file=/disk1/allconfig). What s...
by olivier2831
Thu Mar 07, 2019 6:09 pm
Forum: Beginner Basics
Topic: Can't access to RB960PGS in bridge mode (latest 6.44)
Replies: 8
Views: 4685

Re: Can't access to RB960PGS in bridge mode (latest 6.44)

Huh, I've always though you can transfer a file also when using MAC winbox connection. Are you saying it doesn't work?
Not exactly: after searching in Winbox GUI, I couldn't find a way to do it.
Either this feature doesn't exist anymore, or I simply didn't find it.
by olivier2831
Thu Mar 07, 2019 10:25 am
Forum: Beginner Basics
Topic: Can't access to RB960PGS in bridge mode (latest 6.44)
Replies: 8
Views: 4685

Re: Can't access to RB960PGS in bridge mode (latest 6.44)

The exported config file should be visible under Files menu ... and you should be able to download it from there. I could insert a USB key in RB960PGS and export a file there. Anyway, when IP communications are broken and you don't have any USB key or slot at hand, how would you proceed to download...
by olivier2831
Wed Mar 06, 2019 8:12 pm
Forum: Beginner Basics
Topic: Can't access to RB960PGS in bridge mode (latest 6.44)
Replies: 8
Views: 4685

Can't access to RB960PGS in bridge mode (latest 6.44)

Hello, I'm setting up a brand new RB960PGS (hEX PoE). I intend to use it as a switch. After unboxing, I uploaded latest 6.44 using QuickFig web app. I then selected Bridge mode with using QuickFig. Just after doing this, I can't access the box anymore: - the box replies to pings (100% sure), - but I...
by olivier2831
Wed Mar 06, 2019 8:07 pm
Forum: Beginner Basics
Topic: show config
Replies: 5
Views: 68000

Re: show config

Psst rightclick the winbox terminal and select "copy all"
How exactly (I'm using Winbox 3.18) ?
by olivier2831
Wed Feb 20, 2019 9:40 am
Forum: General
Topic: How to allocate one ONT to two different routers
Replies: 6
Views: 1396

Re: How to allocate one ONT to two different routers

The issue is not ISP availability its failure of the router unit as I read it. Yes, you correctly read my issue: it's about router failure. I can quite difficult to rack and configure one such router though they are not so expensive. Having two routers backing each other would give me enough time t...
by olivier2831
Tue Feb 19, 2019 11:38 am
Forum: General
Topic: How to allocate one ONT to two different routers
Replies: 6
Views: 1396

Re: How to allocate one ONT to two different routers

For me, a dedicated Ethernet Bypass switch would make a lot of sense within Mikrotik portfolio as alternatives seem quite expensive and Mikrotik masters involved technologies (PoE, bypass, ...).
by olivier2831
Tue Feb 19, 2019 11:08 am
Forum: General
Topic: How to allocate one ONT to two different routers
Replies: 6
Views: 1396

Re: How to allocate one ONT to two different routers

I think that the RB1100 (any version) has 2 ports with bypass, meaning that you can connect the ONT to the Eth11 and other router on Eth12. You should put your dhcp client, ppeoe client or whatever yo use to acquire IP from the telco on both routers. While the RB1100 is on, the IP is acquired by th...
by olivier2831
Fri Feb 15, 2019 10:39 am
Forum: General
Topic: How to allocate one ONT to two different routers
Replies: 6
Views: 1396

How to allocate one ONT to two different routers

Hello, Telco often provide and maintain an ONT to terminate their fiber Internet access services. This ONT has a single fiber uplink port and a single Gigabit downlink port. In my quest for higher resilience, I can subscribe to a second Internet access and install two routers but if a router ever fa...
by olivier2831
Fri Dec 28, 2018 2:52 pm
Forum: General
Topic: How about adding VLAN in QuickFig's PPPoE settings ?
Replies: 2
Views: 642

Re: How about adding VLAN in QuickFig's PPPoE settings ?

With QuickFig, it really has to be "Less is More". VLAN is not for total beginners and those should spend some time figuring out RouterOS. There are plenty of topic threads in this forum discussing VLANs, including many miss-conceptions (about both ROS and VLAN). The next request that mig...
by olivier2831
Fri Dec 28, 2018 12:57 pm
Forum: General
Topic: How about adding VLAN in QuickFig's PPPoE settings ?
Replies: 2
Views: 642

How about adding VLAN in QuickFig's PPPoE settings ?

Hello, Looking at v6.43.8 QuickFig form, it seems impossible to specify a VLAN tag for a PPPoE client. Though this can be configured with WebFig or alternate means, would you qualify this as a welcomed addition to QuickFig ? To me beeing able to set this through QuickFig is a very nice feature as VL...
by olivier2831
Tue Dec 18, 2018 5:53 pm
Forum: Beginner Basics
Topic: What is WebFig VLAN forms for ?
Replies: 2
Views: 914

Re: What is WebFig VLAN forms for ? [SOLVED]

In any case you have to put either "bridge" or "switch1-cpu" on the list of tagged members of selected VLAN. Using WebFig, - I added a "bridge.2" VLAN interface, build on "bridge" interface - I re-assigned 192.168.2.254/24 address to "bridge.2" inte...
by olivier2831
Tue Dec 18, 2018 4:19 pm
Forum: Beginner Basics
Topic: What is WebFig VLAN forms for ?
Replies: 2
Views: 914

What is WebFig VLAN forms for ?

Hello, I'm discovering RouterOS 6.43.7 with a CRS112. Please, forgive me if bellow questions seem too easy or incorrectly worded but: 1. What are WebFig Bridge/VLANs and Switch/VLAN forms for ? 2. How do set "CRS112 LAN ports" (ie all LAN Interface List members) to be tagged members of VLA...
by olivier2831
Tue Dec 18, 2018 12:11 pm
Forum: Beginner Basics
Topic: Why should one need to add a new bridge ?
Replies: 2
Views: 767

Re: Why should one need to add a new bridge ? [SOLVED]

Bridge VLANs are new since ROS 6.41 ... until then, one could live without any bridge at all. Where now one uses bridge port one used to use master-port . If the ports were not switched, then configuration was done directly on ports, including VLAN configuration. And if one wanted to bridge multipl...
by olivier2831
Mon Dec 17, 2018 1:53 pm
Forum: Beginner Basics
Topic: Why should one need to add a new bridge ?
Replies: 2
Views: 767

Why should one need to add a new bridge ?

Hello, RouterOS v6.43 default config includes a bridge named bridge and all ports belong to this default bridge. My understanding of bridge is use bridge as synonymous of switch. In another hand, documentation (see [1]) mentions creating a new bridge1 bridge as a first step when creating VLANs. Why ...
by olivier2831
Wed Dec 12, 2018 5:51 pm
Forum: Beginner Basics
Topic: Recommendations for router/LAN performance testing
Replies: 2
Views: 861

Recommendations for router/LAN performance testing

Hello, I'm about to deploy a new setup in a remote location. This setup includes: - two WAN connections (with two different ISPs) - one main router (either a CRS112 or a CCR1009) - one server (mostly for logging) - one LAN switch (CRS328) - 24 WiFi AP All connections are Gigabit expect main router t...
by olivier2831
Wed Dec 12, 2018 3:38 pm
Forum: Beginner Basics
Topic: Firewall Killing Bandwidth
Replies: 2
Views: 943

Re: Firewall Killing Bandwidth

There is an upper limit to the speed you can achieve with a single session.
What is it meant by "single session" ?
All traffic from a single Ethernet source targeted to a single Ethernet destination belongs to such session ?
by olivier2831
Wed Dec 05, 2018 2:38 pm
Forum: Beginner Basics
Topic: Recommendations for 10Gb:s server connections
Replies: 0
Views: 671

Recommendations for 10Gb:s server connections

Hello,

What would you recommend to connect a Linux server with 10Gb/s link to a CRSXXX switch or router ?
What about using an Intel x520-da nic with a SFP+DAC cable (as server is at close range from CRSXXX switch or router) ?

Best regards
by olivier2831
Wed Nov 28, 2018 10:02 am
Forum: Beginner Basics
Topic: Update Manual:CRS1xx/2xx_series_switches with CRS112-8P-4S-IN data
Replies: 0
Views: 641

Update Manual:CRS1xx/2xx_series_switches with CRS112-8P-4S-IN data

Hello,

CRS112-8P-4S-IN is not currently listed in [1].
Could it be added ?

[1] https://wiki.mikrotik.com/wiki/Manual:C ... tch_models

Best regards
by olivier2831
Tue Nov 27, 2018 3:36 pm
Forum: Beginner Basics
Topic: Explain what a Master/Slave interface is
Replies: 6
Views: 17641

Re: Explain what a Master/Slave interface is

CRS112 is definitely not for you unless you want to start a thread now asking why it won't route at the correct speeds! With that kind of connectivity I would strongly suggest looking at something like a CCR1009.
I ordered one CCR1009, this morning.
Thanks for this advice.
by olivier2831
Tue Nov 27, 2018 9:29 am
Forum: Beginner Basics
Topic: Explain what a Master/Slave interface is
Replies: 6
Views: 17641

Re: Explain what a Master/Slave interface is

If you WAN links are more than 100/100 then I'd recommend getting a dedicated router and switch rather than the CRS112 I'm currently targeting routing between dual Gigabit WAN links (800/200Mb/s for download/upload on each) and 20 WiFi access point. Which product withing [1] Mikrotik routers range ...
by olivier2831
Mon Nov 26, 2018 11:06 am
Forum: Beginner Basics
Topic: Explain what a Master/Slave interface is
Replies: 6
Views: 17641

Explain what a Master/Slave interface is

Hello, I'm quite new to RouterOS. My ultimate goal is to configure a 6.43 CRS112 as a gateway to two different ISP. When trying to configure such setup, I realized I don't understand some basic notions. I would be very pleased to get some explanations on them. What is a slave interface ? How do you ...
by olivier2831
Fri Nov 23, 2018 2:13 pm
Forum: Beginner Basics
Topic: Triggering DNS updates when WAN link fails or recovers
Replies: 2
Views: 725

Triggering DNS updates when WAN link fails or recovers

Hello, I've read this [1] document and found it very interesting. Though, I still have a remaining question: which is the simplest way to trigger a DynDNS update script whenever a WAN link status changes (either becomes up or down) ? Having updated DNS records would help to keep connections coming i...
by olivier2831
Thu Sep 14, 2017 12:04 pm
Forum: RouterBOARD hardware
Topic: How to reset RB2011
Replies: 3
Views: 39978

Re: How to reset RB2011

Hello,
Using Winbox, I could connect to my unresponsive RB2011 and reset its config.
Thanks you very much for you all, for your precious advices.
by olivier2831
Mon Sep 11, 2017 1:03 pm
Forum: RouterBOARD hardware
Topic: How to reset RB2011
Replies: 3
Views: 39978

How to reset RB2011

Hello, After editing a firewall rule in a Routerboard RB2011Ui AS-RM config, I lost access to its config webapp. I'm trying to gain access back but met no success yet using the reset button on the box back. 1. Can someone recommend (and detail) a reliable reset procedure either using this reset butt...