Community discussions

Search found 286 matches

by jaytcsd
Tue Sep 17, 2019 5:30 am
Forum: General
Topic: lost internet access after upgrade
Replies: 2
Views: 307

Re: lost internet access after upgrade

I never used the reset button but that's good info to know, thanks.
by jaytcsd
Mon Sep 16, 2019 11:52 pm
Forum: General
Topic: Multiple Road Warrior L2TP/IPsec clients behind NAT - solved
Replies: 59
Views: 13801

Re: Multiple Road Warrior L2TP/IPsec clients behind NAT - solved

Very informative, I just skimmed over it and will dive into it later today.
I had L2TP IPSEC working in 2011 under 5.4 but as the OS was updated I kept having to chase the changes to make it work, finally I gave up.
by jaytcsd
Mon Sep 16, 2019 6:51 pm
Forum: General
Topic: L2TP/IPSec VPN can access LAN but not Router [SOLVED]
Replies: 12
Views: 3781

Re: L2TP/IPSec VPN can access LAN but not Router [SOLVED]

I started copying all the info sindy puts in these posts into a 'sindy says' text file for future reference.
by jaytcsd
Mon Sep 16, 2019 5:48 pm
Forum: General
Topic: lost internet access after upgrade
Replies: 2
Views: 307

lost internet access after upgrade

hAP ac running 6.45.6 I did the quick check / check for updates routine which brought me up to 6.45.6. When the router rebooted it beeped once and then once again instead of a double beep the second time. I could not get in using the router's IP address so I pulled the power cable to reset it. After...
by jaytcsd
Mon Sep 16, 2019 7:26 am
Forum: General
Topic: cable test shows short with open cable
Replies: 0
Views: 132

cable test shows short with open cable

I'm trying to use my mAPlite as a cable tester but when I test the RJ45 interface using a 3' cable with nothing on it I get a 0m short reading. I was expecting a 1m open reading. My RB751U-blah blah blah (Normis your model numbers don't fit on a 22" screen....) shows 2m open. A 100' cable shows 29-3...
by jaytcsd
Sun Dec 02, 2018 7:45 am
Forum: General
Topic: CoDel support?
Replies: 45
Views: 13298

Re: CoDel support?

thanks for the tip Steve
by jaytcsd
Wed Nov 07, 2018 9:52 am
Forum: General
Topic: new EOIP tunnel won't run
Replies: 2
Views: 551

new EOIP tunnel won't run

Used the same commands on my hAP ac lite (site 2) as I did on my hAP ac but the tunnel won't run at site 2. I deleted it and created it again, same thing. site 1 /interface eoip> pr Flags: X - disabled, R - running 0 R name="eoip-tunnel_1" mtu=auto actual-mtu=1408 l2mtu=65535 mac-address=02:7C:45:57...
by jaytcsd
Mon Oct 29, 2018 4:40 am
Forum: General
Topic: address shows in scan but not ping
Replies: 1
Views: 220

address shows in scan but not ping

Why does 192.168.100.52 not show in the ping window?
by jaytcsd
Sat Jun 23, 2018 7:48 am
Forum: Beginner Basics
Topic: Confused about L2TP and IPSec VPNs
Replies: 21
Views: 1936

Re: Confused about L2TP and IPSec VPNs

What changes between the wiki article and what ended up working did you do?
by jaytcsd
Fri Jun 15, 2018 3:36 am
Forum: General
Topic: LHG 60 project in Hawaii
Replies: 98
Views: 20034

Re: LHG 60 project in Hawaii

@JAINGE - How many hours of flight time did you spend getting to Berlin?
by jaytcsd
Sun Apr 15, 2018 7:10 am
Forum: Beginner Basics
Topic: BLock IP camera output connection
Replies: 10
Views: 1344

Re: BLock IP camera output connection

I put my security camera DVR on a separate Mikrotik, the DVR is 192.168.100.245 with a 255.255.255.248 subnet, that way it can't see into my
PCs and NAS addresses from .1 to .100. The 'insecure' Mikrotik is 192.168.100.241, it's on LAN port 5 on my main Mikrotik.
by jaytcsd
Sun Apr 15, 2018 6:20 am
Forum: Beginner Basics
Topic: look like someone trying to access my router,... [SOLVED]
Replies: 15
Views: 4955

Re: look like someone trying to access my router,... [SOLVED]

Another trick is to change the default port from 8291 to a random one.
Look at port knocking.
https://mum.mikrotik.com/presentations/US10/discher.pdf

https://wiki.mikrotik.com/wiki/Port_Knocking
by jaytcsd
Sat Mar 17, 2018 5:34 am
Forum: Beginner Basics
Topic: Complete overhaul of Existing network
Replies: 8
Views: 841

Re: Complete overhaul of Existing network

http://gregsowell.com/?p=5748

Greg is a Mikrotik guru
by jaytcsd
Tue Feb 27, 2018 1:09 am
Forum: General
Topic: L2TP/IPSec for Road Warrior
Replies: 93
Views: 35049

Re: L2TP/IPSec for Road Warrior

Can a mAP be used to tunnel to a Mikrotik using IPIP or EOIP with the mAP letting multiple users in?
I tried this about a year ago but never did get it to work. I think my stumbling point was trying to get the mAP into a motel wifi for the WAN side.
by jaytcsd
Thu Feb 22, 2018 8:28 am
Forum: Announcements
Topic: v6.41.2 [current]
Replies: 125
Views: 28453

Re: v6.41.2 [current]

My hAPlite locked up after upgrading from 6.3 something using quickset to download and install. I upgraded winbox through the tool option first, it crashed. It worked when I restarted it and I got into the router to run quickset. It rebooted OK, I got in and was looking at the log when it died. I've...
by jaytcsd
Wed Jan 31, 2018 8:08 am
Forum: Beginner Basics
Topic: Why does this firewall rule block my internet? [SOLVED]
Replies: 3
Views: 502

Re: Why does this firewall rule block my internet? [SOLVED]

>>but if I enable add chain=forward src-address=192.168.0.0/16 action=drop I can no longer access the internet.

That means your LAN is using that IP range.
I use a similar rule to block individual PCs when I first install new software to see if they try to 'phone home' after install.
by jaytcsd
Fri Dec 29, 2017 8:17 am
Forum: General
Topic: VPN - unable to ping win10 PC's, other devices = no problem....
Replies: 2
Views: 359

Re: VPN - unable to ping win10 PC's, other devices = no problem....

Since the Mikrotik can ping the win 10 PCs it seems like it's blocking responses with a forward rule.
Can the win 10 PCs ping each other?
by jaytcsd
Thu Dec 28, 2017 2:45 am
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 570
Views: 409200

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

I was able to do a send test from my cable ISP but my DSL hung. both worked on RX mode.
Now my PC is on my cable router to feed my cloud backup from my NAS, this test helped me cut upload time.
by jaytcsd
Sun Oct 08, 2017 8:39 am
Forum: Beginner Basics
Topic: L2TP/IPsec with firewall rule
Replies: 6
Views: 30406

Re: L2TP/IPsec with firewall rule

Try it now, I moved to a new hosting site and forgot to change indexing permissions.
by jaytcsd
Fri Sep 08, 2017 8:45 am
Forum: Beginner Basics
Topic: Site to Site VPN (on both sides same ip subnet)
Replies: 17
Views: 6484

Re: Site to Site VPN (on both sides same ip subnet)

I had an EoIP tunnel between 2 RB750s, both were on 192.168.100.0/24. I only ran DHCP on one router since most PC are static IPs. This worked fine for over a year and then it quit after an update. I was busy at the time and didn't try to figure out what happened, then I started firmware upgrades thi...
by jaytcsd
Tue Jun 20, 2017 8:44 pm
Forum: Beginner Basics
Topic: Site to Site IpSec Tunnel
Replies: 23
Views: 28311

Re: Site to Site IpSec Tunnel

[quote]That is a *really bad* idea! Renumber one of the networks.[/quote]

but it worked for almost a year.

Yesterday was my anniversary so I paid more attention to my wife than my routers, it's better for my mental and physical health that way.
by jaytcsd
Mon Jun 19, 2017 6:44 am
Forum: Beginner Basics
Topic: Site to Site IpSec Tunnel
Replies: 23
Views: 28311

Re: Site to Site IpSec Tunnel

Diving into this project now, thanks for the info, if you do that with an "idle mind" I can't imagine what happens when you drop the clutch at 4,000 rpm.
by jaytcsd
Sun Jun 18, 2017 10:11 pm
Forum: Beginner Basics
Topic: Site to Site IpSec Tunnel
Replies: 23
Views: 28311

Re: Site to Site IpSec Tunnel

For my simple setup of a home office to home office does the MTU advantage of IPIP over GRE make much difference? My understanding is that a larger MTU gives more bandwidth due to greater % of data passing by not needing so much overhead due to few packet required. I just noticed that Greg's example...
by jaytcsd
Sun Jun 18, 2017 5:32 pm
Forum: Beginner Basics
Topic: Site to Site IpSec Tunnel
Replies: 23
Views: 28311

Re: Site to Site IpSec Tunnel

Does GRE have any security advantages over IPIP? I had EOIP working for almost a year and then it quit after an upgrade, gave up trying to fix it. Greg Sowell has an IPIP example using IPsec so I'm going to try that next. The manual says IPIP can be used with IPv6. "IP/IPv6 over IPv6 tunnel function...
by jaytcsd
Sun Jun 18, 2017 8:34 am
Forum: Beginner Basics
Topic: Site to Site IpSec Tunnel
Replies: 23
Views: 28311

Re: Site to Site IpSec Tunnel

@ pe1chl - Any idea is GRE is less or more processor intensive than EOIP?
by jaytcsd
Sun May 07, 2017 1:43 am
Forum: General
Topic: STOP WINBOX DISCOVERY
Replies: 5
Views: 1297

Re: STOP WINBOX DISCOVERY

@k6ccc - What is the bottom flag in your profile pic?
by jaytcsd
Sun Apr 09, 2017 7:30 am
Forum: General
Topic: L2TP VPN
Replies: 2
Views: 458

Re: L2TP VPN

I noticed the screens for IPsec peer changed in winbox during a recent upgrade, port was 500 in my old version but has been reset after the upgrade.
by jaytcsd
Sun Apr 09, 2017 7:23 am
Forum: General
Topic: EOIP tunnel quit working
Replies: 0
Views: 430

EOIP tunnel quit working

I have an RB750 and RB751U that worked fine using EOIP and IPSEC, then quit one day. MT support looked in each end and said there is no problem, but I can't ping addresses from one site to the other. I have IPsec SAs on each end so the tunnel part is working. /ip ipsec installed-sa> pr Flags: A - AH...
by jaytcsd
Sun Jan 29, 2017 1:31 am
Forum: Beginner Basics
Topic: My first VPN
Replies: 3
Views: 700

Re: My first VPN

I use IPsec over EOIP between 2 Mikrtotiks and until I upgraded to 6.38 it worked fine. I used the wiki and Greg Sowell's examples. I have some winbox screen prints here for how I did my setup. http://eoip.patokatech.com/ 192.168.100.1 and 192.168.100.10 are the router IPs. 2 weeks ago the VPN quit,...
by jaytcsd
Sun Nov 13, 2016 12:42 am
Forum: General
Topic: L2TP through IPSEC problem
Replies: 4
Views: 965

Re: L2TP through IPSEC problem

I seem to recall having this problem, I think I had to allow 500, 1701 and 4500 in my forward rules.
by jaytcsd
Sun Nov 13, 2016 12:31 am
Forum: Beginner Basics
Topic: The correct order of the rules in the firewall.
Replies: 2
Views: 747

Re: The correct order of the rules in the firewall.

A list of if/then rules should run faster than a list of if/mark because you have to execute all the mark rules before you start
processing them.
Putting rules most likely to be seen first will cut down on the processing time.
by jaytcsd
Sun Oct 23, 2016 8:00 pm
Forum: Beginner Basics
Topic: RDP not working over Ipsec site-2-site
Replies: 4
Views: 1302

Re: RDP not working over Ipsec site-2-site

RDP works on EOIP / IPSEC between my 2 Mikrotiks. I don't have as many firewall rules as you do, I'd disable from # 8 on and see if that works, then start enabling them one at a time. If I had a dime for each time my Mikrotik did what I told it to do instead of what I wanted it to do I'd be a millio...
by jaytcsd
Sun Oct 02, 2016 8:26 am
Forum: General
Topic: IPSec dual links
Replies: 6
Views: 872

Re: IPSec dual links

[quote]In your IPSec Policy, General Tab -- look for the Protocol Field. [/quote]

Any idea if tunnel security or speed is increased by limiting to a specific protocol?
by jaytcsd
Sun Oct 02, 2016 8:19 am
Forum: Beginner Basics
Topic: EoIP and DHCP question
Replies: 2
Views: 603

Re: EoIP and DHCP question

I have 2 Mikrotiks linked over an EOIP tunnel, both are on 192.168.100.0/24. Each router runs DHCP with different pools. I tried using just one DHCP server but if the tunnel goes down (it does when my ISP changes my WAN address every couple of months) the far end can't get to the internet which mean...
by jaytcsd
Sun Oct 02, 2016 3:36 am
Forum: Beginner Basics
Topic: L2TP Firewall Issue [Solved while writing post]
Replies: 2
Views: 2088

Re: L2TP Firewall Issue [Solved while writing post]

[code]add action=drop chain=forward connection-nat-state=!dstnat connection-state=\
new in-interface=ether2-ufb [/code]

First time I've seen that, is that VPN only or another way to prevent router intrusion?
by jaytcsd
Sun Sep 25, 2016 6:06 am
Forum: General
Topic: Does L2TP with IPSec actually work?
Replies: 10
Views: 11986

Re: Does L2TP with IPSec actually work?

Never used PPTP, can't help you there.
by jaytcsd
Sun Sep 18, 2016 8:35 am
Forum: General
Topic: Does L2TP with IPSec actually work?
Replies: 10
Views: 11986

Re: Does L2TP with IPSec actually work?

[quote]running L2TP/IPSEC on it is not the best idea.[/quote] I have it working both from a win 7/8/10 client and by EOIP tunnel between 2 Mikrotiks. I don't use certs, just passwords. How would I know if my tunnel is not secure? I log into the router and add my temporary WAN IP to the input firewal...
by jaytcsd
Sun Sep 18, 2016 8:22 am
Forum: General
Topic: Frequent Watchdog Reboots
Replies: 9
Views: 2290

Re: Frequent Watchdog Reboots

Dave - do the routers reboot on 12 v if the watchdog is off?
by jaytcsd
Sun Sep 18, 2016 6:37 am
Forum: Beginner Basics
Topic: SIMPLE SITE_SITE VPN
Replies: 3
Views: 599

Re: SIMPLE SITE_SITE VPN

I got EOIP working after trying IPIP, never could make it work. I have 192.168.100.0/24 at both sites, most examples I saw had 2 separate IP schemes which I didn't want.

Greg Sowell has good examples on his site.
http://gregsowell.com/?page_id=951
by jaytcsd
Mon Aug 15, 2016 8:32 am
Forum: General
Topic: Possible YouTube video ideas
Replies: 29
Views: 3523

Re: Possible YouTube video ideas

Site to site VPN comparisons of PPTP, L2TP, EOIP, EIEIO, IPIP tunnels.

Like a lot of users I'm self taught in IP and Mikrotik, I cut and past many of your examples.

PLEASE don't put music on the video.
by jaytcsd
Mon Aug 01, 2016 10:38 pm
Forum: General
Topic: Mapped folder not resolving in windows
Replies: 6
Views: 741

Re: Mapped folder not resolving in windows

I don't have v6 installed on the RB nor do I have it enabled on any PC, that's what makes this weird.
by jaytcsd
Mon Aug 01, 2016 9:31 pm
Forum: General
Topic: Mapped folder not resolving in windows
Replies: 6
Views: 741

Re: Mapped folder not resolving in windows

When I ping PC 'R935' on that PC I get an IPv6 reply but get v4 addresses from other PCs. R935 has v6 disabled.
I never realized names could be pinged, I always used \\pcname in file explorer to verify.
by jaytcsd
Mon Aug 01, 2016 9:15 pm
Forum: General
Topic: wifi bands in the USA
Replies: 2
Views: 1010

wifi bands in the USA

My RB751 has a full country list for wifi bands. I've always used United States but see US 2 and 3 listed along with some other US ranges. I have not seen what US 2 or 3 cover and in light of the FCC's $200,000 fine to TP Link for allowing Americans to use illegal power levels was wondering if Mikro...
by jaytcsd
Mon Aug 01, 2016 5:22 am
Forum: General
Topic: Mapped folder not resolving in windows
Replies: 6
Views: 741

Re: Mapped folder not resolving in windows

Netbios names won't go across a VPN unless you use EOIP, but they work on my LAN without any special rules.
by jaytcsd
Sun Jul 17, 2016 6:28 am
Forum: General
Topic: Need IPSEC + GRE Performance Help
Replies: 8
Views: 1613

Re: Need IPSEC + GRE Performance Help

My EOIP tunnel pings went from 500-700 ms to over a second in the last few months, not sure what happened. I will give your ideas a try.

See if this program will help with your speed testing.

http://nutsaboutnets.com/netstress/
by jaytcsd
Sun Jul 17, 2016 6:15 am
Forum: Beginner Basics
Topic: VPN Ping is working only with gateway
Replies: 3
Views: 818

Re: VPN Ping is working only with gateway

http://l2tp.patokatech.com/

This is my setup for L2TP VPN, maybe you'll find something that will help, I don't mess with PPTP.
 
by jaytcsd
Tue May 24, 2016 8:22 am
Forum: Beginner Basics
Topic: L2TP/IPsec with firewall rule
Replies: 6
Views: 30406

Re: L2TP/IPsec with firewall rule

http://l2tp.patokatech.com/

screen prints of my L2TP setup, win 7, 8 and droid phone all work.
by jaytcsd
Tue May 24, 2016 8:19 am
Forum: Beginner Basics
Topic: What's the difference between EoIP, L2TP?
Replies: 4
Views: 2798

Re: What's the difference between EoIP, L2TP?

I have an RB750 tunneled to a 751 using EOIP with L2TP. One Mikrotik is 192.168.100.2, the other is 192.168.100.10. I started out using 192.168.200.x for my second site but could not make it work. EOIP lets me access PCs on the network by their name, ie \\acer2\c, where L2TP from a laptop on a motel...
by jaytcsd
Wed May 04, 2016 9:09 am
Forum: General
Topic: EoIP IPsec Secrect doesn't inherit Security settings from default IPSec Proposal
Replies: 1
Views: 509

Re: EoIP IPsec Secrect doesn't inherit Security settings from default IPSec Proposal

I just changed my IPsec proposal from 3des to twofish and the installed SAs reflected the change within a minute.

I changed both ends of my EOIP L2TP tunnel.
by jaytcsd
Wed Apr 20, 2016 7:20 am
Forum: Beginner Basics
Topic: Hotel Room Access Page
Replies: 3
Views: 707

Re: Hotel Room Access Page

I've been trying to do the same thing with my mAP lite but am stuck at the same point you are.
by jaytcsd
Sun Apr 17, 2016 1:01 am
Forum: General
Topic: L2TP/IPSec VPN server config for clients behind NAT
Replies: 8
Views: 10185

Re: L2TP/IPSec VPN server config for clients behind NAT

http://l2tp.patokatech.com/

These are winbox screen prints of my system. I have to add an input rule to allow my IP when I'm using motel wifi.
by jaytcsd
Thu Apr 07, 2016 10:48 am
Forum: General
Topic: L2tp/IPsec is driving me crazy !!!!
Replies: 10
Views: 1720

Re: L2tp/IPsec is driving me crazy !!!!

I got the flu and was offline for a week during recovery. Did you ever get your system working?
by jaytcsd
Thu Apr 07, 2016 10:47 am
Forum: General
Topic: SOLVED - L2TP IPSEC stoped working after Upgrade to 6.18
Replies: 19
Views: 65166

Re: SOLVED - L2TP IPSEC stoped working after Upgrade to 6.18

I ran into this problem after a hardware reset when I lost the ability to get some websites to load. L2TP was working under 6.33 and up to 6.34.2 via quickset upgrades. After the reset I added L2TP but got the pre-process error. While using the terminal to fix this I found a bug in winbox 2.2.18, it...
by jaytcsd
Tue Mar 22, 2016 8:08 am
Forum: General
Topic: L2tp/IPsec is driving me crazy !!!!
Replies: 10
Views: 1720

Re: L2tp/IPsec is driving me crazy !!!!

I will take a look tonight, been busy this week.
I know how frustrating this is, took me a month to get working.

One of my IPs changed last week, even though I changed the rules to reflect that, the tunnel only worked one way until I rebooted it.
by jaytcsd
Sat Mar 19, 2016 7:08 am
Forum: General
Topic: L2tp/IPsec is driving me crazy !!!!
Replies: 10
Views: 1720

Re: L2tp/IPsec is driving me crazy !!!!

http://l2tp.patokatech.com/

winbox screen shots of my router, I can connect with my droid.
You have to allow your iphone's IP access with an input rule if you have a generic 'block all else' rule at the end of the list.
by jaytcsd
Thu Mar 10, 2016 11:04 am
Forum: General
Topic: Unable to make L2TP over IPSec work from Android / iOS / OS X to RouterOS (error phase1 negotiation failed)
Replies: 5
Views: 3234

Re: Unable to make L2TP over IPSec work from Android / iOS / OS X to RouterOS (error phase1 negotiation failed)

Screen prints of my router for L2TP, not fancy but should get you going. http://l2tp.patokatech.com/ My droid works fine, but I have to allow my IP in my input rules before I can access the VPN. The last 2 times I ran whatismyip.com my Verizon droid came up with an IPv6 address, so I temporarily dis...
by jaytcsd
Tue Mar 01, 2016 7:11 am
Forum: General
Topic: mAP lite and motel wifi
Replies: 3
Views: 579

Re: mAP lite and motel wifi

I used the motel's cat 5 cable and got it to work with 6.34.2 last night, tonight I can't get the sign on page to load. Too tired to mess with it tonight.
by jaytcsd
Sun Feb 28, 2016 8:20 am
Forum: General
Topic: mAP lite and motel wifi
Replies: 3
Views: 579

mAP lite and motel wifi

Just got my mAP and was wondering if anyone has tips on how to make this work on a motel wifi. I want to use the mAP as a client to the motel's system and as an AP for my PCs so I can use EOIP back to my home RB751. Most motels require a sign in using last name and room number or some other process ...
by jaytcsd
Wed Feb 24, 2016 10:04 am
Forum: Beginner Basics
Topic: IPSec tunnel connects, but unable to ping or connect to remote network [SOLVED]
Replies: 12
Views: 2767

Re: IPSec tunnel connects, but unable to ping or connect to remote network

@ Desjani
Do you want to mark this topic Solved in the subject in case someone else is looking for a solution?
by jaytcsd
Sun Feb 21, 2016 7:01 am
Forum: General
Topic: Ipsec - Overlapping Private Networks
Replies: 5
Views: 1779

Re: Ipsec - Overlapping Private Networks

I have 2 RB751s using an EOIP tunnel, both networks are 192.168.100/24.

One router is 192.168.100.1, the other is .10.

I posted my rules in this post.
http://forum.mikrotik.com/viewtopic.php?f=13&t=104238
by jaytcsd
Wed Feb 17, 2016 10:09 am
Forum: Beginner Basics
Topic: hAP lite Mikrotik VPN
Replies: 2
Views: 846

Re: hAP lite Mikrotik VPN

Can you log into the VPN?

If you can then you should be able to use windows or file explorer by using the IP address of the PC.
\\192.168.1.15 will work, not \\workgroup\pcname.
by jaytcsd
Wed Feb 17, 2016 10:05 am
Forum: Beginner Basics
Topic: IPsec site 2 site VPN. Ping fails in one direction.
Replies: 36
Views: 12816

Re: IPsec site 2 site VPN. Ping fails in one direction.

These are sites I looked at when I was trying to get IPsec tunnel working. I noticed most seemed to be version 5 software, maybe that's the key. http://wiki.mikrotik.com/wiki/Securing_L2TP_Server_for_IPSec https://www.youtube.com/watch?v=oR4G6SZ3LcM https://www.youtube.com/watch?v=y68Dx8iPikA https:...
by jaytcsd
Wed Feb 17, 2016 9:53 am
Forum: Beginner Basics
Topic: L2TP VPN remote access can't connect
Replies: 3
Views: 553

Re: L2TP VPN remote access can't connect

My win 10 PC can connect using L2TP to my RB751, that 751 is using an EOIP tunnel to another 751, nothing drops.

Does your log show any error messages?
by jaytcsd
Sun Feb 14, 2016 7:09 am
Forum: Beginner Basics
Topic: L2TP VPN remote access can't connect
Replies: 3
Views: 553

Re: L2TP VPN remote access can't connect

Make sure your IPsec secret is the same for the tunnel and the VPN client.
by jaytcsd
Fri Feb 12, 2016 10:18 am
Forum: Beginner Basics
Topic: L2TP (IPSec) - key length mismatched, mine:128 peer:256 & authtype mismatched: my:hmac-sha1 peer:hmac-md5
Replies: 2
Views: 4464

Re: L2TP (IPSec) - key length mismatched, mine:128 peer:256 & authtype mismatched: my:hmac-sha1 peer:hmac-md5

Just guessing, are your IPsec proposals and peer encryption algorithms the same in each Mikrotik?
by jaytcsd
Fri Feb 12, 2016 10:13 am
Forum: Beginner Basics
Topic: ipsec vpn - same local subnets
Replies: 10
Views: 2217

Re: ipsec vpn - same local subnets

Have not looked at the video, here are my rules with your IPs site 1 /interface eoip> pr Flags: X - disabled, R - running 0 R name="to site 2" mtu=auto actual-mtu=1424 l2mtu=65535 mac-address=(blanked) arp=enabled local-address=1.1.1.1 remote-address=2.2.2.2 tunnel-id=0 dscp=inherit clamp-tcp-mss=ye...
by jaytcsd
Fri Feb 12, 2016 9:47 am
Forum: Beginner Basics
Topic: IPsec site 2 site VPN. Ping fails in one direction.
Replies: 36
Views: 12816

Re: IPsec site 2 site VPN. Ping fails in one direction.

I have never tried a tunnel from a Mikrotik to any other router.

Greg Sowell has examples of IPsec and IPIP tunnels from Mikrotik to Cisco on his site.

http://gregsowell.com/?p=1290
by jaytcsd
Tue Feb 09, 2016 7:32 am
Forum: Beginner Basics
Topic: ipsec vpn - same local subnets
Replies: 10
Views: 2217

Re: ipsec vpn - same local subnets

On the road for a few days, will look at the video and let you know, maybe, I'm not an expert.
by jaytcsd
Sun Feb 07, 2016 9:50 am
Forum: General
Topic: L2TP through IPSEC problem
Replies: 4
Views: 965

Re: L2TP through IPSEC problem

Is your client using the L2TP client on his PC or his Mikrotik as the client?

I can use my windows 8 PC through a Mikrotik into a VPN on a remote Mikrotik, the local router can't have any port blocking on 500, 1701 or 4500.
by jaytcsd
Sun Feb 07, 2016 8:41 am
Forum: Beginner Basics
Topic: IPsec site 2 site VPN. Ping fails in one direction.
Replies: 36
Views: 12816

Re: IPsec site 2 site VPN. Ping fails in one direction.

I had the same problem, switched to EOIP tunnels and made both sites the same IP range, working fine now.
by jaytcsd
Sun Feb 07, 2016 8:36 am
Forum: Beginner Basics
Topic: IPSec tunnel connects, but unable to ping or connect to remote network [SOLVED]
Replies: 12
Views: 2767

Re: IPSec tunnel connects, but unable to ping or connect to remote network

I could not ping from inside one tunnel to inside the other using IPsec tunnels, but could ping in the reverse direction, ie 192.168.100.20 could ping 192.168.200.20 but not from 200.20 to 100.20. I don't think EOIP helped that either, spent a long time experimenting to get this working and forgot a...
by jaytcsd
Wed Feb 03, 2016 10:37 am
Forum: Beginner Basics
Topic: ipsec vpn - same local subnets
Replies: 10
Views: 2217

Re: ipsec vpn - same local subnets

I'm running an EOIP tunnel with IPsec between 2 routerboards on 192.168.100.0/24. Site 1 LAN is 192.168.100.1, site 2 is 192.168.100.10. I only have 10 devices so it's easy to keep track of addressing. Site 1 is running dhcp, but most of my devices are static. Site 2 devices use the .10 router as th...
by jaytcsd
Sat Jan 30, 2016 8:17 am
Forum: Beginner Basics
Topic: L2TP IPSec VPN = not working.
Replies: 9
Views: 14711

Re: L2TP IPSec VPN = not working.

/ip firewall filter> pr
Flags: X - disabled, I - invalid, D - dynamic

;;; L2TP
chain=input action=accept protocol=udp src-port=500,1701,4500 log=no
log-prefix=""

this works just as well as 3 separate rules, one for each port.
by jaytcsd
Fri Jan 29, 2016 4:02 am
Forum: Beginner Basics
Topic: IPSec tunnel connects, but unable to ping or connect to remote network [SOLVED]
Replies: 12
Views: 2767

Re: IPSec tunnel connects, but unable to ping or connect to remote network

Site 1 is the opposite of 2, too lazy to post it's rules. site 2 /interface eoip> pr Flags: X - disabled, R - running 0 R name="to site 1" mtu=auto actual-mtu=1396 l2mtu=65535 mac-address=02:xxxxx arp=enabled local-address=(site 2 WAN IP) remote-address=(site 1 WAN IP) tunnel-id=0 dscp=inherit clamp...
by jaytcsd
Thu Jan 28, 2016 8:29 am
Forum: Beginner Basics
Topic: IPSec tunnel connects, but unable to ping or connect to remote network [SOLVED]
Replies: 12
Views: 2767

Re: IPSec tunnel connects, but unable to ping or connect to remote network

I had problems with IPsec tunnels but got EOIP with IPsec working very easily.
by jaytcsd
Tue Jan 19, 2016 9:03 am
Forum: General
Topic: LAN-to-LAN IPSEC tunnel, one side with dynamic IPs
Replies: 6
Views: 2366

Re: LAN-to-LAN IPSEC tunnel, one side with dynamic IPs

@MRZ - Does mode conf have an advantage over EOIP?

I have 2 sites connected by EOIP, could not get 192.168.100.0/24 site to see the other site with 192.168.200.0/24, so I changed the 200 network to 100. It's working fine.

thanks
by jaytcsd
Sat Jan 16, 2016 11:34 am
Forum: General
Topic: [RB133] Failed to connect to <IP>, then Miktotik doesn't work
Replies: 4
Views: 441

Re: [RB133] Failed to connect to <IP>, then Miktotik doesn't work

I got netinstall to work on a 532 but not a 133 that locked up after upgrading to 6.33.3.
I think the RB needs to use ETH 1 for netinstall.

Try forcing the PC's NIC to 10 or 100 meg in case auto negotiate is causing a problem.
by jaytcsd
Sat Jan 16, 2016 11:24 am
Forum: Beginner Basics
Topic: Can this System History show a Security issue ?
Replies: 4
Views: 762

Re: Can this System History show a Security issue ?

http://gregsowell.com/?p=1076

Good router security tips here.
The wiki has info as well.

The demo router has a basic setup.
demo.mt.lv
user demo, no password
by jaytcsd
Fri Jan 15, 2016 11:34 am
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 33806

Re: v6.33.5 [current] is released!

Is this OK for routerboard 133 and 532?
My RB133 died after upgrading to 6.33, now I can't get netinstall to see it to force it back to 6.32 like you suggested.
by jaytcsd
Fri Jan 15, 2016 11:20 am
Forum: Beginner Basics
Topic: L2TP IPsec doesn't work from other city
Replies: 4
Views: 1728

Re: L2TP IPsec doesn't work from other city

I use L2TP with IPsec on my VPNs.
I was in a motel this year that let users print to their kiosk printer by wifi. The IP address was on the printer, just on a whim I put that in my browser and got the non password protected control panel.
by jaytcsd
Sun Jan 10, 2016 10:07 pm
Forum: Beginner Basics
Topic: EOIP tunnel OK until I add IPsec
Replies: 0
Views: 1155

EOIP tunnel OK until I add IPsec

Never mind, figured out what I was doing wrong. This works fine between 2 RB750s on 6.33.3. site1 WAN xx.yy.zz.237 LAN 192.168.90.1 site 2 (garage) WAN xx.yy.zz.80 LAN 192.168.90.3 site 1 /interface eoip> pr Flags: X - disabled, R - running 0 R name="to garage" mtu=auto actual-mtu=1458 l2mtu=65535 m...
by jaytcsd
Sun Jan 10, 2016 5:15 am
Forum: Beginner Basics
Topic: L2TP IPsec doesn't work from other city
Replies: 4
Views: 1728

Re: L2TP doesn't work from other city

I gave up using motel wifi because so many seemed to be blocking ports needed to pass VPN traffic.
by jaytcsd
Sun Jan 10, 2016 5:01 am
Forum: General
Topic: IPSec Site2Site VPN not NATting
Replies: 3
Views: 1003

Re: IPSec Site2Site VPN not NATting

I tried IPIP tunnel without any luck, will dive into EOIP and see what happens.
by jaytcsd
Tue Jan 05, 2016 5:51 am
Forum: General
Topic: L2TP VPN problem to connect from Windows 7
Replies: 11
Views: 2940

Re: L2TP VPN problem to connect from Windows 7

http://l2tp.patokatech.com/

This works for win 7, 8 and android phones.
by jaytcsd
Tue Jan 05, 2016 5:09 am
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31029

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

Been busy trying to get site to site IPsec working, haven't had a chance to try this yet.
by jaytcsd
Sat Jan 02, 2016 5:33 am
Forum: Beginner Basics
Topic: IPSEC Site-to-site
Replies: 6
Views: 982

Re: IPSEC Site-to-site

@ LaRP - what version are you running?
It dawned on me earlier today that the examples I've been looking at are version 5 or earlier, Greg's video is 3.29.
by jaytcsd
Thu Dec 31, 2015 11:45 pm
Forum: Beginner Basics
Topic: IPSEC Site-to-site
Replies: 6
Views: 982

Re: IPSEC Site-to-site

I have IPsec SAs coming out my ASS in both routers, both can ping the the opposite site's LAN. A laptop on site 2 at 192.168.91.25 can VNC into a site 1 laptop at 192.168.90.25, so I have one way working, still trying to figure out why I can't get both sides working. Last week the PC at 90.25 could ...
by jaytcsd
Thu Dec 31, 2015 12:15 pm
Forum: Beginner Basics
Topic: IPSEC Site-to-site
Replies: 6
Views: 982

Re: IPSEC Site-to-site

site 1 - router is 192.168.90.1 /ip firewall nat> pr Flags: X - disabled, I - invalid, D - dynamic 0 chain=srcnat action=accept src-address=192.168.90.0/24 dst-address=192.168.91.0/24 log=yes log-prefix="SRC-NAT" 1 ;;; default configuration chain=srcnat action=masquerade out-interface=WAN log=no log...
by jaytcsd
Thu Dec 31, 2015 8:13 am
Forum: Announcements
Topic: Newsletter 69
Replies: 17
Views: 7848

Re: Newsletter 69

[quote]Since you already opened it, there is a download button in the bottom right corner. [/quote]

I use NoScript, my page is black with grayed out text about requiring Javascript to view the page.
by jaytcsd
Wed Dec 30, 2015 7:00 am
Forum: Beginner Basics
Topic: server & printers behind router & VPN
Replies: 7
Views: 786

Re: server & printers behind router & VPN

http://l2tp.patokatech.com/
These are winbox screen prints of my L2TP VPN setup, I think PPTP should be similar.
by jaytcsd
Wed Dec 30, 2015 2:10 am
Forum: Announcements
Topic: Newsletter 69
Replies: 17
Views: 7848

Re: Newsletter 69

Anyway to read the pdf without running java script from Adobe?
by jaytcsd
Tue Dec 29, 2015 10:23 am
Forum: Beginner Basics
Topic: IPSEC Site-to-site
Replies: 6
Views: 982

Re: IPSEC Site-to-site

Welcome to the club, there are a number of us with the same problem. I finally was able to ping a PC at the far end of the tunnel and use VNC to control it, but it quit working after I rebooted the PC after windows update. All the youtube and wiki articles seem to only ping from one router LAN IP to...
by jaytcsd
Tue Dec 29, 2015 10:05 am
Forum: General
Topic: VPN connection L2tp. pc to workplace.
Replies: 15
Views: 1859

Re: VPN connection L2tp. pc to workplace.

I'll look at your setup and see if anything stands out.

Can you ping the NAS and IPs from the tools menu in winbox when you connect to its WAN IP?

When you connect with your laptop are you putting
\\10.145.10.253
in file explorer?
That was a stumbling point for me.
by jaytcsd
Mon Dec 28, 2015 11:36 am
Forum: General
Topic: ping can't find addresses IP scan shows
Replies: 5
Views: 1165

Re: ping can't find addresses IP scan shows

This is my first (and probably last) win 10 PC, I guess it's refusing pings by default, I only had it on long enough to install some remote control programs. When I turned it on after reading your reply it said my files were safe and then "we'll be ready soon", that was over an hour ago, looks like ...
by jaytcsd
Sun Dec 27, 2015 11:12 am
Forum: Beginner Basics
Topic: IPsec site to site VPN with problems
Replies: 4
Views: 875

Re: IPsec site to site VPN with problems

I managed to get to the point you did, I could ping from my 192.168.90.0/24 network to the RB750 at 192.168.91.1 and a win 7 PC at 91.25. Neither the win 7 PC nor the router could ping a win 8 PC at 192.168.90.25. The win 8 PC could ping 91.1 and 91.25. I ran windows update on the win 7 PC and after...
by jaytcsd
Sun Dec 27, 2015 11:01 am
Forum: General
Topic: VPN connection L2tp. pc to workplace.
Replies: 15
Views: 1859

Re: VPN connection L2tp. pc to workplace.

http://l2tp.patokatech.com/ These are screen shots of my winbox settings, I can connect from my win 8 PC and ping any 192.168.100.0/24 address, see my NAS, use VNC to control PCs, etc. This setup is on a routerboard 133, the RB750 has :: for the local address in IPsec peer. If your last firewall inp...
by jaytcsd
Sun Dec 20, 2015 11:19 am
Forum: General
Topic: ping can't find addresses IP scan shows
Replies: 5
Views: 1165

ping can't find addresses IP scan shows

[attachment=0]ping and scan.gif[/attachment]
by jaytcsd
Sun Dec 20, 2015 11:12 am
Forum: General
Topic: Problems with IPSec and Android
Replies: 3
Views: 1231

Re: Problems with IPSec and Android

My droid works fine on 6.23 with these settings. Firewall is set to allow udp 500, 1701 and 4500, plus 50 ipsec-esp. /ppp secret> pr de Flags: X - disabled # NAME SERVICE CALLER-ID PASSWORD PROFILE REMOTE-ADDRESS 0 name="me" service=l2tp caller-id="" password="pissoff" profile=default-encryption loc...
by jaytcsd
Sat Dec 19, 2015 11:18 am
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31029

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I'll give it a try, thanks for the detailed info.
by jaytcsd
Wed Dec 16, 2015 7:46 pm
Forum: Beginner Basics
Topic: IPsec site to site VPN with problems
Replies: 4
Views: 875

Re: IPsec site to site VPN with problems

I know what you mean about being close.
I found a youtube video that appeared to have PCs on each Mikrotik that could ping both ways, I can't find it now.

I'll post my rules so you can compare and see what I'm missing since you're a step ahead of me.
by jaytcsd
Mon Dec 14, 2015 11:25 am
Forum: Beginner Basics
Topic: IPsec site to site VPN with problems
Replies: 4
Views: 875

Re: IPsec site to site VPN with problems

Which kind of tunnel did you use?
I tried Greg's IPsec tunnel and could not ping any IPs behind the router at either end, so you're ahead of me.
by jaytcsd
Mon Dec 14, 2015 11:15 am
Forum: Beginner Basics
Topic: LT2P client with static localIP
Replies: 1
Views: 301

Re: LT2P client with static localIP

I put my static IPs in the PPP secret field, not the profile, works fine. /ppp secret> pr det Flags: X - disabled # NAME SERVICE CALLER-ID PASSWORD PROFILE REMOTE-ADDRESS 0 name="user" service=l2tp caller-id="" password="pissoff" profile=default-encryption local-address=192.168.100.101 remote-addres...
by jaytcsd
Tue Dec 08, 2015 7:58 pm
Forum: General
Topic: v6.33.3 [current] is released!
Replies: 59
Views: 18697

Re: v6.33.3 [current] is released!

I found a routerboard 532 with 2.95 sitting in a drawer, so far I can't upgrade it by dragging any v5 or 6 .npk file into the files directory and rebooting.
How can I upgrade this?
by jaytcsd
Fri Dec 04, 2015 9:58 am
Forum: Beginner Basics
Topic: Another help me with L2TP/IPSEC proxy-arp...
Replies: 11
Views: 3167

Re: Another help me with L2TP/IPSEC proxy-arp...

At first glance I didn't see any difference in the first digest post than most other sites except he has none for the PFS group in IP sec proposals.

I accidentally changed my IP sec peer to port strict from port override in the generate policy field and lost my site to site tunnel.
by jaytcsd
Sun Nov 29, 2015 10:06 pm
Forum: Beginner Basics
Topic: IPsec VPN site to site
Replies: 3
Views: 1669

Re: IPsec VPN site to site

Have you tried this setup?

http://gregsowell.com/wp-content/plugin ... .php?id=15

I can get the routers to ping but can't get any devices behind them to see the other side of the tunnel.
by jaytcsd
Sun Nov 29, 2015 8:47 pm
Forum: Beginner Basics
Topic: Another help me with L2TP/IPSEC proxy-arp...
Replies: 11
Views: 3167

Re: Another help me with L2TP/IPSEC proxy-arp...

I found out what was causing me the same problem, proxy arp on the bridge interface got turned off.
by jaytcsd
Sun Nov 29, 2015 9:14 am
Forum: General
Topic: IPSec Site2Site VPN not NATting
Replies: 3
Views: 1003

Re: IPSec Site2Site VPN not NATting

I have the same problem. I copied Greg Sowell's example from https://www.youtube.com/watch?v=oR4G6SZ3LcM but can't ping any addresses other than the routers. I did see a youtube example that looked to be the same as Greg's but the guy did ping PCs on each end of the tunnel from a PC at the other, so...
by jaytcsd
Wed Nov 11, 2015 9:50 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31029

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I looked at open VPN but couldn't figure out the cert process, looks like you stuck it out.
by jaytcsd
Sun Nov 08, 2015 9:49 pm
Forum: Beginner Basics
Topic: SSTP VPN CA certificate import problem
Replies: 2
Views: 1026

Re: SSTP VPN CA certificate import problem

I don't have much luck with the wikis. This site may have the answer, have not had a chance to try his way. I tried 3 or 4 wiki articles on SSTP and never got it working. http://www.nasa-security.net/mikrotik/sstp/ I found a youtube video for site to site SSTP VPN last week but did not bookmark it a...
by jaytcsd
Sun Nov 08, 2015 9:30 pm
Forum: Beginner Basics
Topic: VPN setup between 2 mikrotik routers
Replies: 2
Views: 3442

Re: VPN setup between 2 mikrotik routers

I used Greg Sowell's examples to setup tunnels between Mikrotiks. http://gregsowell.com/?page_id=951 I can ping the router's LAN IPs but not any PC on the LAN at the opposite end of the tunnel, still working on that. I also tried setting up one RB as a client to the other and still have the same pro...
by jaytcsd
Sun Nov 08, 2015 8:50 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31029

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I have an L2TP VPN connection on a Verizon droid to an RB751 running 6.32.3.
by jaytcsd
Sun Nov 08, 2015 8:26 pm
Forum: Beginner Basics
Topic: L2TP VPN - need help
Replies: 3
Views: 381

Re: L2TP VPN - need help

I have L2TP VPN working on a droid, when I make my connection and go to whatismyip.com it shows the IP of the RB751, not my Verizon IP.

I don't have access to a Microsoft phone but I'm assuming your phone settings should be like a Windows PC.
by jaytcsd
Sat Nov 07, 2015 5:22 am
Forum: General
Topic: Is it possible for ISP to access my MikroTik?
Replies: 8
Views: 1332

Re: Is it possible for ISP to access my MikroTik?

[quote]Your ISP is technically able to detect which router you are using. [/quote] How? I turn off all services except winbox and that is not the default port. I guess someone could use winbox and try every port if they suspect Mikrotik. A routerboard will show up by the MAC address but running Mikr...
by jaytcsd
Sun Nov 01, 2015 8:34 am
Forum: General
Topic: error in wiki article?
Replies: 1
Views: 216

error in wiki article?

http://wiki.mikrotik.com/wiki/Testwiki/ ... e_Networks

Figure 9.3 has a PC at 192.168.8.2 in LAN 1 and a PC with the same address in LAN 2.
Since this is a bridged network how can 2 PCs have the same address?
by jaytcsd
Wed Oct 28, 2015 11:54 am
Forum: General
Topic: IPIP tunnel vs L2TP with IPsec
Replies: 0
Views: 666

IPIP tunnel vs L2TP with IPsec

I finally got 2 RB 750s linked using an IPsec tunnel. I can only ping the far side LAN IPs on the routers and no other devices which means my next step is to add that ability by using L2TP. I need to keep my L2TP VPN servers working so I can use the VPN from a PC on the road. I think I need an IPIP ...
by jaytcsd
Mon Oct 26, 2015 10:38 pm
Forum: General
Topic: IPsec tunnel error with error Ignore because is not listening on ip address (Public Address)
Replies: 5
Views: 1786

Re: IPsec tunnel error with error Ignore because is not listening on ip address (Public Address)

I did hardware resets on an RB750 and 751U, updated to 6.32.3 and changed the 750 to 192.168.90.0/24. I disabled the WAN firewall rules and used Greg's guide for IPsec tunnel from Mikrotik to Mikrotik. The 750 is on my DSL system for its public IP, the 751 is on my cable modem. I can ping 192.168.88...
by jaytcsd
Mon Oct 26, 2015 3:35 am
Forum: General
Topic: IPsec tunnel error with error Ignore because is not listening on ip address (Public Address)
Replies: 5
Views: 1786

Re: IPsec tunnel error with error Ignore because is not listening on ip address (Public Address)

I tried Greg Sowell's method for IPsec tunnel between 2 Mikrotiks and have the same problem you do, can't ping or use VNC from one network to the other. I do see the public IPs in remote peers under IPsec. My stats show 'no state' and 'state sequence' errors. I have "invalid length of payload" messa...
by jaytcsd
Sun Oct 18, 2015 10:28 pm
Forum: Wireless Networking
Topic: Set Wireless to Station + AP Mode Simultaneous? WISP Client?
Replies: 67
Views: 54926

Re: Set Wireless to Station + AP Mode Simultaneous? WISP Client?

I've been wanting this dual RF ability so I can use the motel wifi and use the Mikrotik as a VPN client so my traffic is protected.

I have not used the hAP or mAP, do you think the mAP would work in a back to back config like you are going to do with the hAP?
by jaytcsd
Sun Aug 23, 2015 5:00 am
Forum: General
Topic: Some websites don't load
Replies: 1
Views: 310

Re: Some websites don't load

I had similar problems with my RB133, turned out I had unchecked "allow remote requests" by mistake while changing DNS addresses, drove me nuts.
by jaytcsd
Fri Aug 21, 2015 2:17 pm
Forum: General
Topic: L2TP works on one RB751 but not on a different firmware version
Replies: 0
Views: 292

L2TP works on one RB751 but not on a different firmware version

RB751U-2HnD vpn using L2TP 6.27 RB firmware 3.22 works fine from 2 PCs running windows 8.1, but 6.31 RB 3.24 gives this error. 03:56:39 ipsec,debug,packet IPSEC: seen nptype=5(id) 03:56:39 ipsec,debug IPSEC: invalid length of payload 03:56:39 ipsec,debug IPSEC: possible cause: wrong password I've tr...
by jaytcsd
Fri Jul 10, 2015 11:58 am
Forum: General
Topic: More MikroTIk HowTo's
Replies: 3
Views: 1264

Re: More MikroTIk HowTo's

found a few typos MikroTik RoMON Feature Added to RouterOS "I have sen some instability" These are the ones I talked to you about a few weeks ago. Another Way to do Automatic Failover with MikroTik RouterOS "Please not you must set up your email server IP," This confuses me, I think you mean you set...
by jaytcsd
Tue Jun 23, 2015 7:50 am
Forum: General
Topic: Mikrotik Site to Site VPN issue
Replies: 2
Views: 852

Re: Mikrotik Site to Site VPN issue

I tested a MT to MT vpn a few years ago but only use win clients to a router now.
Have you looked in the log to see if traffic is coming in from the Watchguard?

Greg Sowell has a video on vpn setup, maybe you will find something here.
http://gregsowell.com/?p=1290
by jaytcsd
Sun Jun 21, 2015 8:42 am
Forum: General
Topic: lost L2TP vpn after upgrade
Replies: 1
Views: 648

Re: lost L2TP vpn after upgrade

Just figured out that XP will connect from a Virtualbox VM under windows 8, so I thought something in win 8 must have changed with an update. For reasons totally unknown to me I tried connecting from win 8 while the vpn was still connected in the VM and it worked. I dropped the VM connection and hav...
by jaytcsd
Thu Apr 30, 2015 6:31 am
Forum: General
Topic: IPSec tunnel to Cisco Router behind NAT
Replies: 2
Views: 1300

Re: IPSec tunnel to Cisco Router behind NAT

http://gregsowell.com/

Greg knows Cisco and Mikrotik very well, might have some examples on his site.
by jaytcsd
Thu Apr 30, 2015 6:27 am
Forum: General
Topic: PPTP/L2TP VPN
Replies: 3
Views: 889

Re: PPTP/L2TP VPN

These configs work for me on RB 133 and 750, but I can't get win 8.1 working on the 750.

http://mikrotik.patokatech.com/
by jaytcsd
Thu Apr 30, 2015 6:14 am
Forum: General
Topic: VPN (IPSec, L2TP) - error 810 when using certificates
Replies: 4
Views: 2345

Re: VPN (IPSec, L2TP) - error 810 when using certificates

Maybe Mikrotik can start a separate forum category for VPN stuff, lots of posts with unanswered questions.
by jaytcsd
Wed Apr 29, 2015 8:40 pm
Forum: General
Topic: windows 8.1 fail with vpn authentication
Replies: 3
Views: 3354

Re: windows 8.1 fail with vpn authentication

I tried the reg edit but it doesn't work. I can use win 8.1 to connect with L2TP to a routerboard 133 running 6.28 but not to an RB751U 2HnD. Both routers have identical firewall rules, which I've disabled during the tests. I get an "ipsec - invalid length of payload" error. Win 8 and droid connect ...
by jaytcsd
Wed Apr 22, 2015 6:53 am
Forum: General
Topic: L2TP blocked by Verizon but works on motel wifi
Replies: 0
Views: 249

L2TP blocked by Verizon but works on motel wifi

Most motel wifi systems connect with no problem but unless I remote into a PC and add my Verizon IP to an input accept rule using winbox I can't get a VPN connection. Are they blocking ports? Can't come up with any other reason.
My mifi device has IPSec VPN Pass Through enabled.

thanks
by jaytcsd
Sun Apr 19, 2015 8:15 pm
Forum: General
Topic: odd DHCP request in log
Replies: 2
Views: 355

Re: odd DHCP request in log

I wonder if this was from my cable modem before I put the Mikrotik online, it's a Motorola.
Thanks for the reply.
by jaytcsd
Sun Apr 19, 2015 6:23 pm
Forum: General
Topic: odd DHCP request in log
Replies: 2
Views: 355

odd DHCP request in log

10:40:40 firewall,info gateway 1 input: input: in:WAN out:(none), src-mac 00:1d:70:cc:a9:d9, proto 2, 10.62.96.1->224.0.0.1, len 28 10:40:46 firewall,info gateway 1 input: input: in:WAN out:(none), src-mac 00:1d:70:cc:a9:d9, proto UDP, 10.62.96.1:67->255.255.255.255:68, len 389 10:40:50 firewall,inf...
by jaytcsd
Sat Apr 04, 2015 10:23 am
Forum: General
Topic: lost L2TP vpn after upgrade
Replies: 1
Views: 648

lost L2TP vpn after upgrade

Had it working from a win 8 client to my RB133 but lost the ability to connect after moving to 6.27. Same config works on my RB751U. Update - the 751 can connect as an L2TP client to the 133. This is the error log apr/03 23:41:14 ipsec,debug,packet ipsec: ========== apr/03 23:41:14 ipsec,debug,packe...
by jaytcsd
Sat Jan 03, 2015 8:47 pm
Forum: General
Topic: VPN - L2TP/IPSEC
Replies: 5
Views: 1165

Re: VPN - L2TP/IPSEC

The MAC accept input rule did work, I thought I had tried that before. I never could get my Droid Razr M to work, but my Droid mini hooked up the first time.

After further testing the only mac address that works is the wifi address of the Droid. I can't connect with my Mifi or Droid's LTE network.
by jaytcsd
Sat Jan 03, 2015 5:39 am
Forum: General
Topic: VPN - L2TP/IPSEC
Replies: 5
Views: 1165

Re: VPN - L2TP/IPSEC

My Droid connects using the standard settings.
The only problem I have is that I need to add an input rule to the firewall to allow the IP address I get from my carrier since my last input rule is block anything not specified to pass.

I don't know a way around this.
by jaytcsd
Sun Dec 28, 2014 10:57 am
Forum: General
Topic: VPN - L2TP/IPSEC
Replies: 5
Views: 1165

Re: VPN - L2TP/IPSEC

by jaytcsd
Mon Dec 22, 2014 2:47 am
Forum: General
Topic: NTP not working on client machines
Replies: 1
Views: 767

Re: NTP not working on client machines

I don't have any firewall rules for port 123 and windows 8 and 8.1 all sync with time.nist.gov.
My win 7 stater netbook had an error message about not syncing, so I changed the server from time.windows.com to time.nist.gov but it still did not sync.

I went to time-a.nist.gov and that did work.
by jaytcsd
Sun Dec 14, 2014 11:09 am
Forum: General
Topic: NTP not working
Replies: 4
Views: 909

Re: NTP not working

I had problems after upgrading from early version 6s.

http://forum.mikrotik.com/viewtopic.php?f=2&t=88545

RB133, 750 and 751 are all working now.
by jaytcsd
Wed Dec 10, 2014 7:29 am
Forum: General
Topic: Winbox 3 beta
Replies: 243
Views: 119417

Re: Winbox 3

In 1280 x 768 mode I can't see any fields below lifetime in the IPsec / peer window, the 3 missing fields do show up in 1280 x 1024.
by jaytcsd
Mon Dec 08, 2014 6:18 am
Forum: General
Topic: SSTP: no access to Windows shares
Replies: 1
Views: 637

Re: SSTP: no access to Windows shares

I have to use \\192.168.100.15\Public to access my NAS through L2TP.

I have this note from this forum from 2009.
"'Network Neighbourhood' works only in the range of one broadcast domain. so forget about that. use "\\ip-address" instead of "\\computer-name" to access shared folders."
by jaytcsd
Tue Nov 25, 2014 8:41 am
Forum: General
Topic: VPN works through wifi but not cat 5
Replies: 0
Views: 316

VPN works through wifi but not cat 5

windows 8 PC - I can connect to my VPN on an RB-133 through an RB-751U by using the built in AP, but if I use the NIC on the PC to the 751 it never connects. The PC's IP is static in the same range as the DHCP pool on the wireless.
by jaytcsd
Fri Nov 21, 2014 10:42 am
Forum: General
Topic: L2TP VPN problem with Android Client
Replies: 1
Views: 1110

Re: L2TP VPN problem with Android Client

I can't get my droid phone to connect using L2TP and pre-shared key.

this posting claims to have the answer

http://forum.mikrotik.com/viewtopic.php?t=67746

skip down to "Alright, got it working completly now." to bypass the commentary.
by jaytcsd
Sun Nov 02, 2014 10:56 pm
Forum: General
Topic: Now it won't route!
Replies: 16
Views: 2828

Re: Now it won't route!

Are you using the Mikrotik as the link from the Dlink AP to the upstairs PC? Ubiquity calls this station mode on their wireless gear, basically the same as a USB wifi adapter. I'm no Mikrotik expert but I think you need the MT bridged from the wlan to the lan so the upstairs PC is on the same networ...
by jaytcsd
Sun Nov 02, 2014 10:21 pm
Forum: General
Topic: IPSec VPN behind NAT
Replies: 2
Views: 883

Re: IPSec VPN behind NAT

this is what I use to connect from windows 8 clients.
by jaytcsd
Mon Sep 01, 2014 11:03 am
Forum: General
Topic: L2TP/IPSec for Road Warrior
Replies: 93
Views: 35049

Re: L2TP/IPSec for Road Warrior

http://mikrotik.patokatech.com

this works for me from Win 7 and 8. these screen shots are from version 5.??, I have upgraded to
6.19 and it still works.

Generate policy is Port Override in 6.19, I have not updated my screen shots yet.

Only one user can log in at a time.
by jaytcsd
Sat Aug 30, 2014 11:07 pm
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

Re: SNTP bad in 6.19?

Upgraded the 751 to 6.19 and the clock and date are wrong.

I changed the servers to the same as demo.mt.lv and it's working.

I verified on 3 routerboard 133s and one 750 that static IPs for primary and secondary work before upgrading to 6 but not after.
by jaytcsd
Sat Aug 30, 2014 8:27 pm
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

Re: SNTP bad in 6.19?

I put 0.pool.ntp.org as my primary and it resolved to 50.7.96.4. I swear I used that url once before and got an error saying the field needed to be an IP address, maybe that was ntp. My RB133 says its last bad packet was from 93.180.5.26 with no last update or adjustment info. My RB751 is running 5....
by jaytcsd
Sat Aug 30, 2014 10:08 am
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

Re: SNTP bad in 6.19?

I removed the ntp packge and went back to sntp but still don't have the time or date. /system ntp client> pr enabled: yes primary-ntp: 159.148.172.205 secondary-ntp: 128.138.141.172 mode: unicast poll-interval: 16s active-server: 159.148.172.205 I see other posts with the same problem. http://forum....
by jaytcsd
Fri Aug 29, 2014 4:55 am
Forum: General
Topic: IPsec/L2TP connection dropping every 48 minutes
Replies: 4
Views: 2764

Re: IPsec/L2TP connection dropping every 48 minutes

I had some problems upgrading from 6.7 or .8. Look at IPSEC / peers and see what you have for generate policy, mine says port override, I think I had to change that from the default, I don't recall it existing in the early versions. I get in fine with my win 8 PC but can't with my wife's new 8.1 PC,...
by jaytcsd
Thu Aug 28, 2014 11:54 pm
Forum: General
Topic: VPN MikroTik-Draytek: Problems with L2TP
Replies: 7
Views: 5117

Re: VPN MikroTik-Draytek: Problems with L2TP

I only allow mschap 2 and have VJ compression = default.

I only use windows clients to connect.

[url]mikrotik.patokatech.com[/url] has screen shots of winbox settings if that helps.
by jaytcsd
Thu Aug 28, 2014 6:46 pm
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

Re: SNTP bad in 6.19?

I had tried dragging and dropping the ntp package over after I upgraded but it never enabled. I found the file had put itself under the hotspot folder. Once I got it out of there and rebooted I got ntp client and server and sntp was gone. I can ping the servers from winbox, but my date is still 1970...
by jaytcsd
Thu Aug 28, 2014 11:17 am
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

Re: SNTP bad in 6.19?

I upgraded from 6.7 or 6.8, sntp was working then.

I just noticed that I can't ping the server from winbox but can from my PC.

I don't recall making any firewall changes, any idea why I can't get to the ntp servers?
by jaytcsd
Thu Aug 28, 2014 10:33 am
Forum: General
Topic: SNTP bad in 6.19?
Replies: 9
Views: 2450

SNTP bad in 6.19?

Just upgraded from 6.18 and noticed my date and time are off. I used the auto upgrade and then manually copied 6.19npk into winbox and rebooted. /system package> pr Flags: X - disabled # NAME VERSION SCHEDULED 0 routeros-mipsle 6.19 1 system 6.19 2 X wireless-fp 6.19 3 X ipv6 6.19 4 wireless 6.19 5 ...
by jaytcsd
Mon Aug 25, 2014 9:35 am
Forum: General
Topic: *NEED HELP* L2TP client connection + Secret question
Replies: 9
Views: 2037

Re: *NEED HELP* L2TP client connection + Secret question

http://wiki.mikrotik.com/wiki/L2TP_%2B_IPSEC_between_2_Mikrotik_routers the shared secret is the word "test" in this example /ip ipsec peer add address=10.0.16.9/32 auth-method=pre-shared-key dh-group=modp1024 \ disabled=no dpd-interval=disable-dpd dpd-maximum-failures=1 enc-algorithm=3des \ exchang...
by jaytcsd
Sun Aug 24, 2014 9:17 am
Forum: General
Topic: maximize window icon
Replies: 0
Views: 361

maximize window icon

the maximize window icon is missing, I want my firewall rules opening full screen.
by jaytcsd
Sun Aug 24, 2014 9:02 am
Forum: General
Topic: *NEED HELP* L2TP client connection + Secret question
Replies: 9
Views: 2037

Re: *NEED HELP* L2TP client connection + Secret question

Did you try adding it under IP / IPsec / Peer?
I know that's where it's used as an L2TP server.
by jaytcsd
Sun Aug 24, 2014 3:06 am
Forum: General
Topic: SOLVED - L2TP IPSEC stoped working after Upgrade to 6.18
Replies: 19
Views: 65166

Re: SOLVED - L2TP IPSEC stoped working after Upgrade to 6.18

this works from win 8 but not from 8.1, I think I have a firewall issue on 8.1. /ip ipsec peer> pr Flags: X - disabled, D - dynamic 0 address=0.0.0.0/0 local-address=0.0.0.0 passive=no port=500 auth-method=pre-shared-key secret="monkee" generate-policy=port-override exchange-mode=main-l2tp send-init...
by jaytcsd
Sun Jun 01, 2014 10:31 am
Forum: General
Topic: MAC ping
Replies: 8
Views: 2024

Re: MAC ping

IP / neighbor list shows my Nanostation
by jaytcsd
Mon May 26, 2014 6:21 pm
Forum: General
Topic: RB450 bricked after RouterOS upgrading. Any solution Pls?
Replies: 21
Views: 2905

Re: RB450 bricked after RouterOS upgrading. Any solution Pls

Even if hypter terminal has the wrong settings for baud and parity you should see characters being echoed or displayed. The manual says 9600 but I had to use 115,200, 8, none, 1 and none. use VT100 emulation. The 'connected' indicator is worthless, mine shows connected without a cable on the serial ...
by jaytcsd
Thu May 22, 2014 11:04 pm
Forum: General
Topic: help logging into RB133 by serial port
Replies: 2
Views: 478

Re: help logging into RB133 by serial port

I had tried almost every speed but 115k, that was the trick to making it work.

For some reason I had made a note the router would not connect at that speed.

>>I'm Italian, not English. Sorry for my imperfect grammar.

Your English is better than my Italian.
by jaytcsd
Thu May 22, 2014 4:11 am
Forum: General
Topic: help logging into RB133 by serial port
Replies: 2
Views: 478

help logging into RB133 by serial port

both my RB133s went offline today, I can't ping either of them. I'm trying to access them by the serial port but can't get any recognizable characters, only symbols. I put a 751 on and tried using Winbox to search for them, that doesn't work nor does IP neighbors. What terminal type do I need to use...
by jaytcsd
Mon Apr 21, 2014 7:55 am
Forum: General
Topic: L2TP/IPSEC VPN cannot connect from overseas
Replies: 2
Views: 1180

Re: L2TP/IPSEC VPN cannot connect from overseas

Could be port blocking, I can't connect to my VPN from over half the airport and motel hotspots I use, even
Verizon's Mifi won't work, but Sprint does.
by jaytcsd
Wed Apr 02, 2014 2:36 am
Forum: General
Topic: VPN over L2TP/IPSEC
Replies: 23
Views: 3415

Re: VPN over L2TP/IPSEC

I based my VPN setup on a wiki article and tips from this forum.

If you want to try SSTP maybe we can figure that out together.
by jaytcsd
Tue Apr 01, 2014 7:36 am
Forum: General
Topic: VPN over L2TP/IPSEC
Replies: 23
Views: 3415

Re: VPN over L2TP/IPSEC

I'd like to see if SSTP can be based on a MAC address instead of certificates, I have not been able to get that working.

My experience is that about half of the motel or free hotspots don't allow L2TP due to port blocking.
by jaytcsd
Mon Mar 31, 2014 11:18 am
Forum: General
Topic: VPN over L2TP/IPSEC
Replies: 23
Views: 3415

Re: VPN over L2TP/IPSEC

This is what I used to setup L2TP on my RB133.
http://mikrotik.patokatech.com/
by jaytcsd
Tue Mar 18, 2014 1:25 am
Forum: General
Topic: multiple l2tp ipsec connections from same ip address
Replies: 4
Views: 6381

Re: multiple l2tp ipsec connections from same ip address

This is a known problem / limitation / undocumented feature but rumors are that help is on the way.

http://forum.mikrotik.com/viewtopic.php ... 56#p415456
by jaytcsd
Tue Mar 18, 2014 1:20 am
Forum: General
Topic: IPSEC NAT limitation
Replies: 6
Views: 1489

Re: IPSEC NAT limitation

According to this post it will be fixed.

http://forum.mikrotik.com/viewtopic.php ... 56#p415456
by jaytcsd
Mon Mar 17, 2014 5:01 am
Forum: General
Topic: L2TP/IPsec VPN routing problem
Replies: 4
Views: 2220

Re: L2TP/IPsec VPN routing problem

When it comes to Mikrotik OS I'm no expert even though I've been using it since 2.8.

I don't bridge any interfaces, my setup is very close to the demo router plus some tip from the forum and wiki.
by jaytcsd
Mon Mar 17, 2014 4:38 am
Forum: General
Topic: L2TP/IPSec for Road Warrior
Replies: 93
Views: 35049

Re: L2TP/IPSec for Road Warrior

I can get it working if the ISP isn't port blocking, which in my travels is seen quite often, but as you noticed only one PC can connect at a time. I tried SSTP but have not been successful, the step by step examples in the wiki are lacking. Have you seen this? http://tinc-vpn.org/ I just read about...
by jaytcsd
Thu Mar 06, 2014 9:36 am
Forum: General
Topic: L2TP/IPsec VPN routing problem
Replies: 4
Views: 2220

Re: L2TP/IPsec VPN routing problem

http://mikrotik.patokatech.com/ This is my config, I connect from a Sprint EVDO card and some wifi systems without any problems. I can copy files over the VPN, use VNC and RDP to control PCs, etc. I did not see a difference between arp or proxy arp on the public interface. Exchange mode under IPsec ...
by jaytcsd
Wed Mar 05, 2014 12:26 pm
Forum: General
Topic: SSTP cert questions
Replies: 0
Views: 401

SSTP cert questions

http://wiki.mikrotik.com/wiki/Manual:Create_Certificates says If everything is imported properly then certificate should show up with KR flag. [admin@test_host] /certificate> print Flags: K - decrypted-private-key, Q - private-key, R - rsa, D - dsa 0 KR name="cert1" subject=C=LV,ST=RI,L=Riga,O=MT,CN...
by jaytcsd
Wed Mar 05, 2014 12:13 pm
Forum: General
Topic: Help needed to setup L2TP with IPSEC
Replies: 12
Views: 1883

Re: Help needed to setup L2TP with IPSEC

I'm only running one MT, this works for me, your screen prints look very similar.

http://mikrotik.patokatech.com/
by jaytcsd
Fri Nov 29, 2013 7:30 am
Forum: General
Topic: IPSec Road Warrior
Replies: 9
Views: 10199

Re: IPSec Road Warrior

What advantages does Shrew offer over the windows client?
by jaytcsd
Tue Sep 17, 2013 12:12 am
Forum: General
Topic: VPN into work network.
Replies: 2
Views: 860

Re: VPN into work network.

I have L2TP working from XP, 7 and 9 netbooks.

These are screen prints from winbox.

http://mikrotik.patokatech.com/

I use \\192.168.100.45 in windows explorer to see shared drives, there are other methods if you have a WINS server.
by jaytcsd
Mon Sep 02, 2013 5:22 am
Forum: General
Topic: Connect through L2TP
Replies: 13
Views: 2052

Re: Connect through L2TP

[quote="alex_rhys-hurn"]You might be interested in this video at MUM [/quote]

I don't see a link.
by jaytcsd
Mon Sep 02, 2013 4:46 am
Forum: General
Topic: Broadcast traffic not being sent over L2TP
Replies: 5
Views: 2937

Re: Broadcast traffic not being sent over L2TP

The only way I got shares on an XP pc to work over the VPN from a win7 client was using this convention.

\\192.168.100.45
by jaytcsd
Mon Sep 02, 2013 2:46 am
Forum: General
Topic: Building secure firewall
Replies: 7
Views: 5069

Re: Building secure firewall

I used the rules on the demo router as a start.

demo2.mt.lv

I added chain=input action=drop protocol=tcp dst-port=0-65535 port=""
to avoid port scans.
by jaytcsd
Sun Aug 04, 2013 12:48 am
Forum: General
Topic: Winbox dead in Windows 8
Replies: 13
Views: 8006

Re: Winbox dead in Windows 8

Runs on my win 8 Toshiba laptop, 64 bit i3-3110M processor
by jaytcsd
Mon Jun 24, 2013 7:33 am
Forum: General
Topic: l2tp over ipsec - Can't connect more then 1 client...
Replies: 4
Views: 941

Re: l2tp over ipsec - Can't connect more then 1 client...

I had this happen last week on a hotel wifi.
Using a sprint card in one PC and verizon in a 2nd lets both in at the same time.
This was on 6.1 which I've downgraded to 6.0 but haven't tested.
by jaytcsd
Mon Jun 24, 2013 2:13 am
Forum: General
Topic: 6.1 dropped WAN speeds from 3mb to 290Kb
Replies: 1
Views: 534

6.1 dropped WAN speeds from 3mb to 290Kb

Two RB133s upgraded from 6.0 to 6.1, speedof.me only gets 290K now vs 2.97M before. Downgraded one of my 2 routers and confirmed 6.0 works fine. Normis, how can I help you guys fix this? I can keep 6.1 on for a day or 2 on the backup router. L2TP vpn did work on 6.1 from both win 7 and XP home clien...
by jaytcsd
Thu Apr 18, 2013 12:17 pm
Forum: General
Topic: No traffic to VPN client from internal network
Replies: 5
Views: 2100

Re: No traffic to VPN client from internal network

Can you ping 192.168.10.223 but not 192.168.5.120?

Have you tried making the LAN a /16 network?
by jaytcsd
Fri Feb 22, 2013 8:09 pm
Forum: General
Topic: dhcp server check status command working?
Replies: 0
Views: 405

dhcp server check status command working?

I have a 750 running 6rc11 and a 133 running 5.23. DHCP server is off in the 750 but the the server leases window in winbox shows my laptop at 192.168.88.254, bound, last seen "sometime". Clicking on the check status button does nothing, I don't get any response to the same command in a terminal win...
by jaytcsd
Thu Feb 21, 2013 7:54 pm
Forum: General
Topic: sstp and win 7 client
Replies: 4
Views: 2050

Re: sstp and win 7 client

http://wiki.mikrotik.com/wiki/Manual:Cr ... rtificates

Did you use this method to create your certs?

" When filling CN remember that it must not match on CA and server certificate otherwise later naming collision will occur. "

This is what is confusing me.

thanks
by jaytcsd
Tue Feb 19, 2013 6:48 pm
Forum: General
Topic: sstp/pptp stops working frequently
Replies: 8
Views: 1624

Re: sstp/pptp stops working frequently

kosztyua - Are you using the windows 7 sstp connection from a PC or MikroTik to MikroTik?
I have not found a working example for a windows 7 client.
by jaytcsd
Tue Feb 19, 2013 10:21 am
Forum: General
Topic: sstp and win 7 client
Replies: 4
Views: 2050

sstp and win 7 client

I'm trying to setup SSTP because I find wifi spots that block L2TP ports. I get an 0x8007274C error. From what I've seen here and on other pages it looks like my self signed cert is being rejected. I found one post that says the CN in the cert must match the IP address of the router. Since mine does...
by jaytcsd
Tue Feb 12, 2013 7:20 pm
Forum: General
Topic: USB or Serial Thermometers
Replies: 1
Views: 991

Re: USB or Serial Thermometers

http://www.dataq.com/temperature-data-l ... ogger.html

I use the EL-2 temp and humidity sensors. These require a PC for setup and data download.
by jaytcsd
Mon Jan 21, 2013 9:04 am
Forum: General
Topic: How to get 2 and more dhcp address from ISP to one interface
Replies: 1
Views: 436

Re: How to get 2 and more dhcp address from ISP to one inter

I have 5 public dhcp IPs from my ISP, my modem goes to a switch, then feeds 2 rouberboard 133s.
For a test I used 2 of the NICs on one RB133, assigned each a dhcp client and got separate IPs on that router.
by jaytcsd
Mon Jan 21, 2013 8:37 am
Forum: General
Topic: vpn disconnects with 'administrator request' message in log
Replies: 0
Views: 580

vpn disconnects with 'administrator request' message in log

I've screwed up my VPN setup somehow, I can login OK but when I try to start browsing on my netbook over the VPN I get these log messages and the VPN drops. I can't log back in until I reboot the router (RB133) running v5.2. 05:59:30 l2tp,info first L2TP UDP packet received from 70.6.88.254 05:59:31...
by jaytcsd
Tue Dec 18, 2012 7:01 am
Forum: General
Topic: dhcp server check status button not working?
Replies: 0
Views: 384

dhcp server check status button not working?

My check status windows shows a PC that has not been on my network for a week now. When I click on the check status button in the leases tab it says bound, last seen "sometime".
by jaytcsd
Fri Dec 14, 2012 3:12 am
Forum: General
Topic: [Solved] L2TP/IPSec with Android
Replies: 61
Views: 62194

Re: [Solved] L2TP/IPSec with Android

tomaskir - This is what I have and it works from a Win 7 netbook but not for my Droid. Going to use your rules and see what happens. Not sure why my rules work when a Droid won't. [code] /ppp profile> pr Flags: * - default 0 * name="default" remote-ipv6-prefix-pool=none use-ipv6=yes use-mpls=default...
by jaytcsd
Thu Oct 11, 2012 10:27 am
Forum: General
Topic: L2TP IPSec with Samsung Galaxy S2
Replies: 8
Views: 3309

Re: L2TP IPSec with Samsung Galaxy S2

These rules work for my netbook running Windows 7.

http://mikrotik.patokatech.com/
by jaytcsd
Thu Sep 20, 2012 6:09 pm
Forum: General
Topic: IPSEC road warrior config help
Replies: 8
Views: 2963

Re: IPSEC road warrior config help

I did screen prints for my Win 7 netbook connecting to a routerboard 133.

http://mikrotik.patokatech.com/
by jaytcsd
Thu Sep 20, 2012 7:39 am
Forum: General
Topic: CoDel support?
Replies: 45
Views: 13298

Re: CoDel support?

I'd like to see CoDel too.
by jaytcsd
Thu Sep 20, 2012 7:22 am
Forum: General
Topic: mikrotik CPU 100% usage
Replies: 8
Views: 1357

Re: mikrotik CPU 100% usage

I have an RB-133 that jumps to 100% for no apparent reason and stays there. About an hour ago I was using a L2TP VPN into the router when my connection dropped. The RB dropped its public IP and went to 100%. I tried renewing the IP, then disabled and enabled the interface but still could not pull an...
by jaytcsd
Tue Aug 28, 2012 4:47 pm
Forum: General
Topic: L2TP/IPSec with Windows 7. Simple guide?
Replies: 3
Views: 11569

Re: L2TP/IPSec with Windows 7. Simple guide?

This works also. /ip ipsec peer> pr Flags: X - disabled 0 address=0.0.0.0/0 port=500 auth-method=pre-shared-key secret="hey_moe" generate-policy=yes exchange-mode=main send-initial-contact=yes nat-traversal=yes my-id-user-fqdn="" proposal-check=obey hash-algorithm=sha1 enc-algorithm=3des dh-group=mo...
by jaytcsd
Tue Aug 28, 2012 6:46 am
Forum: General
Topic: L2TP/IPSec with Windows 7. Simple guide?
Replies: 3
Views: 11569

Re: L2TP/IPSec with Windows 7. Simple guide?

I used the wiki examples on my Win 7 starter netbook. I can connect to my VPN and use remote desktop but I can't copy files like I could under XP. I'm guessing this is a win 7 networking issue but have not found a solution so far. No one here has been able to help. I'm going to try SSTP to see if th...
by jaytcsd
Thu Apr 19, 2012 7:50 am
Forum: General
Topic: file sharing from win 7 through vpn
Replies: 1
Views: 466

file sharing from win 7 through vpn

I had file sharing working on XP by using \\192.168.1.45 in windows explorer, but 7 can't find the PC at that address. I can ping it from the netbook.
Any ideas what 7 has changed?
by jaytcsd
Wed Mar 28, 2012 12:14 am
Forum: General
Topic: long uplink buffer times - Mikrotik or ISP problem?
Replies: 4
Views: 707

Re: long uplink buffer times - Mikrotik or ISP problem?

My ISP uses AT+T lines, and we all know how much they care.

Thanks for running the test.
by jaytcsd
Tue Mar 27, 2012 5:39 am
Forum: General
Topic: long uplink buffer times - Mikrotik or ISP problem?
Replies: 4
Views: 707

Re: long uplink buffer times - Mikrotik or ISP problem?

I only have the default queues, I wanted to make sure that I wasn't missing some other setting that could affect this. I tried the test with 2 RB133s and a 750. My ISP says they can't do anything, which might be a case of they won't bother to try to do anything because someone might have to stop and...
by jaytcsd
Mon Mar 26, 2012 4:30 am
Forum: General
Topic: long uplink buffer times - Mikrotik or ISP problem?
Replies: 4
Views: 707

long uplink buffer times - Mikrotik or ISP problem?

http://netalyzr.icsi.berkeley.edu/ This test says my uplink buffer times are 2.8 to 3.4 seconds on my dsl provider. A test from a friend's house on cable has 560 msec. From what I've been reading https://www.grc.com/sn/sn-345.htm this long delay is probably due to the router on my dsl provider's end...
by jaytcsd
Thu Nov 17, 2011 8:52 am
Forum: General
Topic: check status in dhcp server doesn't seem to work
Replies: 1
Views: 1118

check status in dhcp server doesn't seem to work

The check status function in winbox and terminal shows an IP address for a laptop (birdcage) which has not been on the network for over 2 weeks. [admin@MikroTik] /ip dhcp-server lease> pr Flags: X - disabled, R - radius, D - dynamic, B - blocked # ADDRESS MAC-ADDRESS HOST-NAME SERVER RATE-LIMIT STAT...
by jaytcsd
Mon Nov 07, 2011 3:52 am
Forum: General
Topic: multiple chains faster that fewer chains with more rules?
Replies: 3
Views: 612

multiple chains faster that fewer chains with more rules?

I noticed that the demo router's virus list differs from the example list in the wiki (http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter). There are some duplicates between the two, which made me wonder if it's less or more processor intensive to process a single chain of viruses than multiple...
by jaytcsd
Thu Nov 03, 2011 9:52 am
Forum: General
Topic: RouterOS v5.8 released
Replies: 182
Views: 87001

Re: RouterOS v5.8 released

I can't ping my LAN IP after updating to 5.8.

** update ** I had accidentally dragged a filter rule out of place, it's working now.
by jaytcsd
Mon Aug 08, 2011 6:05 pm
Forum: General
Topic: can't get VPN to work behind Cayman dsl modem / router
Replies: 5
Views: 844

SOLVED Re: can't get VPN to work behind Cayman modem / rout

Port 500 was the only one being used. I exported both ipsec rules to post here and noticed that my peer address was 0.0.0.0 in the non working router, but 0.0.0.0/0 in the working one. Once I added the trailing zero it worked right away. And to think all these years I thought a trailing zero to the ...
by jaytcsd
Mon Aug 08, 2011 10:27 am
Forum: General
Topic: can't get VPN to work behind Cayman dsl modem / router
Replies: 5
Views: 844

Re: can't get VPN to work behind Cayman dsl modem / router

Packet sniffer does show the XP client IP in the source column, 5 entries of the 30 seconds I had the sniffer running while trying the connection, port 500 UDP. One thing I just found out is that my Win 7 netbook can connect to my L2TP VPN but not an XP client with the same settings in the client. I...
by jaytcsd
Sat Aug 06, 2011 10:59 pm
Forum: General
Topic: can't get VPN to work behind Cayman dsl modem / router
Replies: 5
Views: 844

can't get VPN to work behind Cayman dsl modem / router

I can't get L2TP to work with an RB750 behind an AT+T supplied Cayman 3220-H modem-router. The RB750's VPN settings are the same as my home RB133 that works fine. I have tried Cayman's pinhole settings to allow UDP port 500 traffic through, and setting their NAT server to the RB750's WAN IP, but sti...
by jaytcsd
Wed Jul 27, 2011 10:23 am
Forum: Beginner Basics
Topic: default firewall rules differ from RB750 and demo router
Replies: 1
Views: 608

default firewall rules differ from RB750 and demo router

In setting up a new RB750 I noticed that its default accept established and related connection input rules have the WAN port listed as the in interface, but the router at demo.mt.lv does not specify an interface. None of my basic configurations have ever specified the WAN interface, any idea why the...
by jaytcsd
Sun Jun 19, 2011 10:21 am
Forum: General
Topic: win 7 can't connect to L2TP unless all ports open
Replies: 4
Views: 1476

SOLVED - Re: win 7 can't connect to L2TP unless all ports op

I disabled the pptp interface and changed the 'Type of VPN' setting in the client to auto from L2TP and it's working.
by jaytcsd
Sat Jun 11, 2011 8:13 pm
Forum: General
Topic: win 7 can't connect to L2TP unless all ports open
Replies: 4
Views: 1476

Re: win 7 can't connect to L2TP unless all ports open

I do have GRE open, I had been using PPTP and wanted to move up to something more secure for public Wifi use. /ip firewall filter add action=drop chain=input comment="drop invalid packets" connection-state=\ invalid disabled=no add action=accept chain=input comment="established connections" \ connec...
by jaytcsd
Sat Jun 11, 2011 11:50 am
Forum: General
Topic: win 7 can't connect to L2TP unless all ports open
Replies: 4
Views: 1476

win 7 can't connect to L2TP unless all ports open

Read about 50 threads and all the wikis on L2TP-ipsec VPN. I can get my win 7 stater PC to connect using the basic examples, but when I enable my last input rule, which drops everything that isn't specifically allowed, it won't connect. I added input, output and forwarding chain rules to accept udp ...
by jaytcsd
Fri Jun 10, 2011 11:18 am
Forum: RouterBOARD hardware
Topic: RB133 firmware downloads missing?
Replies: 1
Views: 850

RB133 firmware downloads missing?

I can't find any references to the 133 series on the redesigned routerboard.com site.

Is 2.18 still the current version, and if not, where do I find the latest?
by jaytcsd
Sun Jan 17, 2010 9:35 am
Forum: General
Topic: upgrade to 4.5 broke VNC over PPTP
Replies: 1
Views: 550

upgrade to 4.5 broke VNC over PPTP

I upgraded from 2.9 to 4.5 (with out testing the 3.5 upgrade) and now I can't use VNC to control PCs through the VPN. I can ping the PC and even browse the drive and NAS drive attached to it, but the VNC client times out.
by jaytcsd
Sat Nov 28, 2009 11:16 pm
Forum: General
Topic: router hacked?
Replies: 3
Views: 735

router hacked?

I just noticed that my VRRP backup RB133 would not respond to winbox. I tried using the serial port and found my password is void. Using mac telnet from the IP neighbors window I see that my local IP address is 0.0.0.0, instead of my 192.168.x.x scheme, and the static public IP has been changed to a...
by jaytcsd
Sun Nov 15, 2009 5:42 pm
Forum: General
Topic: Ethernet ports freeze randomly, reboot solves it?
Replies: 1
Views: 415

Re: Ethernet ports freeze randomly, reboot solves it?

I had the same problem on my RB133s, the LEDs on the NICs would all go off, but the power LED was still on. The RB would not ping / telnet / winbox, but would work with the RS232 port. I upgraded the firmware per Normis' suggestion and only had one problem since, it was very consistent on 1 or 2 web...
by jaytcsd
Wed Nov 11, 2009 9:05 am
Forum: General
Topic: website crashes 2.9.51
Replies: 5
Views: 745

Re: website crashes 2.9.51

The firmware upgrade seems to have fixed the problem.
by jaytcsd
Mon Nov 09, 2009 6:08 pm
Forum: General
Topic: website crashes 2.9.51
Replies: 5
Views: 745

Re: website crashes 2.9.51

I never thought about a firmware upgrade, the routerboards I use are very solid, and I don't recall any notices of firmware upgrades.
by jaytcsd
Mon Nov 09, 2009 9:26 am
Forum: General
Topic: website crashes 2.9.51
Replies: 5
Views: 745

Re: website crashes 2.9.51

Here is the last part of the log just before this VRRP backup RB133 died. nov/07 22:50:10 system,info device changed nov/07 22:50:43 firewall,info INPUT DROP input: in:public out:(none), src-mac 00:02:3b:02:3b:76, proto TCP (ACK,FIN), 74.126.6.130:80- >72.125.03.106:1272, len 40 nov/07 22:50:47 syst...
by jaytcsd
Sat Nov 07, 2009 9:17 pm
Forum: General
Topic: website crashes 2.9.51
Replies: 5
Views: 745

website crashes 2.9.51

I've had problems with the router dying after I log into a Dialogic Corp site used for emergency email and voicemail notifications. The Dialogic site looks to be a active X site, it won't work in Firefox. Since I'm responsible for notifying a disaster medical team of emergency responses I need to ge...
by jaytcsd
Sun Mar 30, 2008 8:19 pm
Forum: General
Topic: port 1786 connection in firewall - hack attempt?
Replies: 1
Views: 643

port 1786 connection in firewall - hack attempt?

ip firewall connection> pr Flags: S - seen reply, A - assured # PR.. SRC-ADDRESS DST-ADDRESS TCP-STATE TIMEOUT 3 SA tcp 192.168.100.48:1786 72.28.254.92:29427 established 15h34m59s A quick search shows port 1786 as funk logger, but I'm not seeing anything more about it. Any idea what this is? The IP...
by jaytcsd
Mon Feb 04, 2008 8:06 am
Forum: General
Topic: winbox document bug
Replies: 1
Views: 624

winbox document bug

When I open the manual in winbox on demo2.mt.lv I get the v2.9 manual, and the link to the pdf version goes to http://www.mikrotik.com/testdocs/ros/2. ... /specs.pdf
by jaytcsd
Fri Feb 01, 2008 9:48 am
Forum: General
Topic: steps to make hotspot work
Replies: 5
Views: 940

Re: steps to make hotspot work

these are the steps I use to setup a hotspot [admin@RB test main] ip hotspot> setup hotspot interface: hotspot local address of network: 10.20.7.1/24 masquerade network: yes address pool of network: 10.20.7.10-10.20.7.200 select certificate: none ip address of smtp server: 0.0.0.0 dns servers: 12.12...
by jaytcsd
Thu Jan 31, 2008 9:01 am
Forum: General
Topic: internal network traffic blocked in 2.9, works in 2.8.28
Replies: 1
Views: 862

internal network traffic blocked in 2.9, works in 2.8.28

I'm upgrading from a PC based 2.8.28 system to a routerboard 532 version 2.9.49 system. Internet traffic from the private interface and the hotspot work fine, but the XP client PCs can't see mapped drives on a windows 2003 server. The hotspot interface is fed from wireless clients, the local PCs are...
by jaytcsd
Mon Nov 19, 2007 1:24 am
Forum: General
Topic: hotspot setup - before or after adding firewall rules?
Replies: 1
Views: 539

hotspot setup - before or after adding firewall rules?

Any advantages to adding a hotspot before or after adding firelwall rules on new router?
by jaytcsd
Sun Nov 11, 2007 10:26 pm
Forum: General
Topic: EoIP tunnel possible with dynamic IP at one end?
Replies: 1
Views: 906

EoIP tunnel possible with dynamic IP at one end?

I'm trying to link 2 routers in different cities, one has a static IP, the other office is dynamic DSL. I created a pptp VPN for my laptop to connect with the static router and added the pptp client to the RB532, which works fine. I've looked the example of EoIP in the manual and don't see a require...
by jaytcsd
Mon Aug 06, 2007 9:28 am
Forum: General
Topic: speedstream 5100 DSl modem and routerboard
Replies: 1
Views: 459

speedstream 5100 DSl modem and routerboard

I have a dynamic DSL system and 2.9.45. The modem has the PPP client built in and connects OK. The ethernet interface can pass the public IP though or have 192.168.0.1/16. It does dhcp but only gives one address, 192.168.1.64/16, even if the interface is set to pass the public IP through. I've read ...
by jaytcsd
Sat Jul 28, 2007 8:29 am
Forum: Beginner Basics
Topic: how do i use port knock.exe
Replies: 22
Views: 12620

Re: how do i use port knock.exe

You have to type the command line all at once, it's not interactive, it won't prompt you for variables.

I use this batch file for my system

>>knock 172.125.3.203 45:tcp
pause
knock 172.125.3.203 46:tcp<<

that way I have to hit the enter key, that helps me to know that the command has run correctly.
by jaytcsd
Tue May 30, 2006 7:32 am
Forum: General
Topic: uptime counters not working in hotspot
Replies: 0
Views: 539

uptime counters not working in hotspot

our hotspot users page uptime counter isn't working, but the uptime field is working on the active users tab. I tried using the reset-counters command from the command line and the button in winbox but nothing chaged. this router went down last week when it lost power after a major storm (UPSs died ...
by jaytcsd
Sat Apr 08, 2006 11:01 am
Forum: General
Topic: Will MT really add Radius
Replies: 11
Views: 2361

error trying to login

Error 503: unknown method

I get this each time I try to use the demo at
http://userman.mt.lv/userman
by jaytcsd
Fri Apr 07, 2006 4:46 am
Forum: General
Topic: ipscan results wrong
Replies: 0
Views: 448

ipscan results wrong

running ip scan under tools in winbox shows 10.20.7.199 on my hotspot interface, but that mac address is my laptop running DHCP and the router has assigned it 10.20.7.198 according to the hotspot active users page and ipconfig on the laptop. I can't find the right syntax in the 2.9 manual to run ip-...
by jaytcsd
Fri Apr 07, 2006 2:16 am
Forum: General
Topic: bandwidth tester speeds
Replies: 3
Views: 821

bandwidth tester speeds

I'm upgrading my network to gigabit and ran the bandwidth tester to see what what speeds I had at 100 Mbs full duplex. I was seeing 30 Mbs, then changed one NIC to 10 Mbs full duplex and the speed went to 41Mbs. I changed the NIC back to 100 Mbs and got the same 41 Mbs reading. Is there a limit to t...
by jaytcsd
Mon Feb 06, 2006 4:37 am
Forum: General
Topic: problems upgrading to 2.9.12
Replies: 3
Views: 1120

problems upgrading to 2.9.12

I'm using 2.9.8, after I ftp'd the 2.9.12 files and rebooted I got these messages. system package> pr # NAME VERSION BUILD-TIME UNINSTALL 0 hotspot 2.9.8 nov/15/2005 11:15:09 no 1 thinrouter-pcipc 2.9.8 nov/15/2005 11:17:01 no 2 routing 2.9.8 nov/15/2005 11:15:04 no 3 system 2.9.8 nov/15/2005 11:14:...
by jaytcsd
Thu Dec 08, 2005 5:11 am
Forum: General
Topic: can't access internal server via domain name!
Replies: 3
Views: 4231

I think this was covered in this topic from last month.
http://forum.mikrotik.com//viewtopic.php?t=5509
by jaytcsd
Wed Nov 23, 2005 6:31 pm
Forum: General
Topic: Configuration Problem
Replies: 77
Views: 23359

>>does proxy reside on ram or hard disk? does it use a lot of hard disk or ram? I'm no expert on proxy, but it looks like it uses both. The manual is not clear on the internal functions of the proxy. I guess the system swaps out cache to the hard drive based on avaliable RAM and the sizes you set, l...
by jaytcsd
Wed Nov 23, 2005 10:53 am
Forum: General
Topic: Another NAT question
Replies: 11
Views: 1761

rule 0 gives me a unique IP address for that one PC, the others use the masquerade rule and show the WAN IP address.
by jaytcsd
Wed Nov 23, 2005 8:11 am
Forum: General
Topic: Another NAT question
Replies: 11
Views: 1761

My nat is working fine in 2.9. One difference I see in my rules from yours is that I don't specify an interface. ip firewall nat> print Flags: X - disabled, I - invalid, D - dynamic 0 chain=srcnat src-address=192.168.0.47 action=src-nat to-addresses=166.59.194.57 to-ports=0-65535 1 ;;; masquerade ho...
by jaytcsd
Wed Nov 23, 2005 7:50 am
Forum: General
Topic: HOWTO internal network + masquerade by mac address to public
Replies: 15
Views: 3462

>>QUESTION: normis but how about a new feature in arp list, so that we can change a dynamic entry to a fixed entry by just one click, if you understand what I wanted to say??? <<

IP binding in the hotspot module does that in 2.9.
by jaytcsd
Wed Nov 23, 2005 7:40 am
Forum: General
Topic: can't use mac authentication in 2.9 hotspot
Replies: 3
Views: 943

thanks - it would be helpful to note those kinds of changes in the manual since many users started with 2.8.
by jaytcsd
Tue Nov 22, 2005 5:00 am
Forum: General
Topic: can't use mac authentication in 2.9 hotspot
Replies: 3
Views: 943

can't use mac authentication in 2.9 hotspot

I can do mac authentication in 2.8.28 but can't make it work in 2.9.8, anyone else had this happen, or see what I've done wrong? ip hotspot> print detail Flags: X - disabled, I - invalid, S - HTTPS 0 name="hs-hotspot" interface=hotspot address-pool=hs-pool-2 profile=hsprof1 idle-timeout=5m keepalive...
by jaytcsd
Tue Nov 22, 2005 4:13 am
Forum: General
Topic: HOWTO internal network + masquerade by mac address to public
Replies: 15
Views: 3462

>>if the username and passwd are the mac address of his ethernet interface, then he automaticaly authentificates on hotspot? and he dont see any of login requests? Yes, that's right, at least for 2.2.28. I just tried setting up a user by mac address in 2.9.7 and it doesn't work, has anybody else got...
by jaytcsd
Mon Nov 21, 2005 10:43 am
Forum: General
Topic: HOWTO internal network + masquerade by mac address to public
Replies: 15
Views: 3462

The hotspot can authenticate a user by it's mac address if both the user name and password are the user's mac address (upper case, separated by colons).
The login screen flashes by briefly, no more than a second before the requested page is loaded.
by jaytcsd
Mon Nov 21, 2005 10:31 am
Forum: General
Topic: NAT routing to internal webserver
Replies: 30
Views: 5995

I lost track of where you were with your NAT problem, did you try moving rule 11 to the top of the list? What about just using port 8021 in your srcnat rule? Take out "out-interface=ether3", if you look at the rules I posted there is no interface specified.
by jaytcsd
Mon Nov 21, 2005 3:45 am
Forum: General
Topic: Configuration Problem
Replies: 77
Views: 23359

the default port for web proxy is 3128 in ver 2.9, that changed from 2.8.
The manual shows examples for 8000 and 8080, maybe that's what has you hung up.
by jaytcsd
Sun Nov 20, 2005 7:26 am
Forum: General
Topic: How can I import my hot spot users list
Replies: 4
Views: 2270

If you have profiles other than the default profile you should import those first, otherwise the user file will not import into the new router if the old PC had users with profiles that aren't defined on the new PC.
by jaytcsd
Wed Nov 16, 2005 10:39 am
Forum: General
Topic: firewall connection log entries - hack attempt?
Replies: 3
Views: 1020

I put port 8000 in the dst-nat rule, ;;; station video src-address=:8000 dst-address=xxx.69.35.6/32 protocol=tcp action=nat to-dst-address=192.168.0.42 to-dst-port=8000 I forgot that connection tracking is higher up in the processing chain than the firewall filter rules, that's why the port 135 and ...
by jaytcsd
Mon Nov 14, 2005 5:31 am
Forum: General
Topic: firewall connection log entries - hack attempt?
Replies: 3
Views: 1020

firewall connection log entries - hack attempt?

15 A 12.169.174.160:1794 xxx.69.35.6:135 tcp established 3d16h55m40s 16 A 12.169.186.137:4944 xxx.69.35.6:135 tcp established 3d19h14m15s 17 A 12.169.186.149:3881 xxx.69.35.6:135 tcp established 3d9h55m 18 A 12.169.186.149:4436 xxx.69.35.6:135 tcp established 3d9h16m46s 19 A 12.169.230.170:3578 xxx....
by jaytcsd
Sat Nov 12, 2005 9:15 am
Forum: General
Topic: NAT routing to internal webserver
Replies: 30
Views: 5995

when I goto whatismyip.com with any PC other than 192.168.0.47 I get xx.59.194.58 as my address, my WAN IP in the router. When I use the PC at 192.168.0.47 I get xx.59.194.57 as the response. ip address> print Flags: X - disabled, I - invalid, D - dynamic # ADDRESS NETWORK BROADCAST INTERFACE 0 ;;; ...
by jaytcsd
Fri Nov 11, 2005 9:53 am
Forum: General
Topic: Shared Users Paramater not in Hotspot 2.9?
Replies: 2
Views: 693

In winbox the IP / Hotspot / server properties has an "addresses per MAC" setting, I think this is what you are looking for.
by jaytcsd
Fri Nov 04, 2005 10:43 am
Forum: General
Topic: demo router login problems
Replies: 3
Views: 843

thanks, I got in, but this is 2.9 isn't it?
Do you still have the 2.8 version up?
by jaytcsd
Fri Nov 04, 2005 10:15 am
Forum: General
Topic: demo router login problems
Replies: 3
Views: 843

demo router login problems

Trying to log into demo.mt.lv but I keep getting a 'wrong username or password' message, I'm using demo for user and no password, has that changed?