Community discussions

Search found 88 matches

by geebs
Sat Sep 20, 2014 7:26 am
Forum: Forwarding Protocols
Topic: Enabling MPLS breaks OSPF
Replies: 14
Views: 3049

Re: Enabling MPLS breaks OSPF

If you get stuck, I am happy to help out on the phone.
Could you send me a PM or email me gweebo at gmail dot com.
Happy to pay you for your time :)
by geebs
Fri Sep 19, 2014 7:04 am
Forum: Forwarding Protocols
Topic: Enabling MPLS breaks OSPF
Replies: 14
Views: 3049

Enabling MPLS breaks OSPF

Hello all, I'm stuck on a very frustrating issue here. I've added a couple of CCR routers to our Cisco network in an attempt to expand our MPLS network. Our main routing protocol is OSPF, which works fine. I've completed that setup and there are no issues. Approx 15000 routes, routers humming along ...
by geebs
Sun Aug 03, 2014 9:56 am
Forum: General
Topic: 802.1 Q in Q and ping latency
Replies: 2
Views: 1128

Re: 802.1 Q in Q and ping latency

Did you ever get a solution to this ?
by geebs
Wed Jul 30, 2014 11:57 am
Forum: Forwarding Protocols
Topic: question regarding MPLS VRF BGP and OSPF limitations
Replies: 2
Views: 1029

question regarding MPLS VRF BGP and OSPF limitations

Hello, We are looking at putting in a couple of these routerboards (CCR1036-8G-2S+EM) temporarily to terminate a couple of 10G trunks. Perhaps they may become permanent, we normally use Cisco ASR 1002's for these small scale data centre deployments. It's pretty standard setup, the routers act as a c...
by geebs
Sun Mar 03, 2013 2:07 am
Forum: General
Topic: eth. protocol 8864 (pppoe) hitting physical interface
Replies: 22
Views: 6141

Re: eth. protocol 8864 (pppoe) hitting physical interface

I should have reported what we found.

It was a rogue router on the network generating that traffic.
When we disconnected it, the traffic disappeared.
From memory it was a D-link, apparently a firmware upgrade fixed the issue.

Sorry to be so vague, that's all I really recall.
by geebs
Tue Nov 06, 2012 12:25 am
Forum: General
Topic: eth. protocol 8864 (pppoe) hitting physical interface
Replies: 22
Views: 6141

eth. protocol 8864 (pppoe) hitting physical interface

Hello, We run a large wireless network which connects back to an rb1200 terminating pppoe sessions. Basically all clients have a router (in many cases a mikrotik routerboard), and they connect via pppoe. Radios connect to ETH1 and then we run pppoe interface on that, this is standard across the boar...
by geebs
Tue May 03, 2011 4:37 am
Forum: General
Topic: Feature Request - LAC/LNS functionality
Replies: 128
Views: 37688

Re: Feature Request - LAC/LNS functionality

I don't mean to hijack the thread, but how do you currently do this ?
Can you point me to another thread please ?

I'm in the process of setting up a Layer 2 DSL service and would love to terminate it on a Mikrotik, not a Cisco.
Is it possible ? Is there a workaround ?
by geebs
Thu Mar 03, 2011 1:07 am
Forum: General
Topic: PPPoE dynamic queues to exempt VOIP ?
Replies: 1
Views: 695

PPPoE dynamic queues to exempt VOIP ?

Hi all, We have a few mikrotiks around the country which people connect to via PPPoE. We use Radius to set their speeds and IP address. So they all get a dynamic simple queue automatically when they connect. We also cap them, by changing their speeds in Radius then uploading a script to kick them of...
by geebs
Thu Feb 17, 2011 6:02 am
Forum: The Dude
Topic: Vote for new DUDE features!
Replies: 117
Views: 47185

Re: Vote for new DUDE features!

The voting page in the wiki hasn't been touched for months, so I assume it's not being looked at. Once of the major things I would like to see would be some sort of backup facility for all RouterOS devices. I simple click or schedule to get the configuration and store it on the server. <device-name....
by geebs
Mon Feb 07, 2011 6:21 am
Forum: General
Topic: vendor-tag circuit-id service equivalent
Replies: 2
Views: 1756

vendor-tag circuit-id service equivalent

Hello, Is there an equivalent setting in MT like Cisco ? http://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbecidtg.html We are having an issue with a vendor forwarding pppoe packets over a vlan to us. We use MT pppoe server and MT client. (latest 4.x). Vendor in-between uses a cisco. As soon...
by geebs
Sun May 16, 2010 12:55 am
Forum: General
Topic: winbox for Windows Mobile 5 or 6
Replies: 32
Views: 18862

Re: winbox for Windows Mobile 5 or 6

Oh cmon, no winbox iphone app ?????
Get on-board !

;)
by geebs
Tue Mar 30, 2010 5:46 am
Forum: General
Topic: Traffic flow bug
Replies: 33
Views: 9524

Re: Traffic flow bug

I am also seeing this at all sites, with a variety of MT's, from Routerboards to x86 servers. From 3.11 all the way to the latest 4.x. We use Netflow exclusively for all traffic data collection. All our Cisco's are fine, no issues, however the MT's are always reporting errors in flow-capture. Mar 30...
by geebs
Thu May 07, 2009 3:57 am
Forum: Scripting
Topic: VRRP script for notifying interface change
Replies: 0
Views: 476

VRRP script for notifying interface change

Hi all,

I've been looking for a script to use on our VRRP interfaces to inform us that is has changed from master to slave and so on.

Does anyone have an example ?
by geebs
Thu Apr 23, 2009 2:38 am
Forum: General
Topic: Make a NAT rule always "last"
Replies: 4
Views: 734

Re: Make a NAT rule always "last"

Perfect !

Thanks very much for your help Aug.
by geebs
Wed Apr 22, 2009 7:42 am
Forum: General
Topic: Make a NAT rule always "last"
Replies: 4
Views: 734

Re: Make a NAT rule always "last"

Perfect that does work :)

However, if that comment doesn't exist, the rule is not inserted, it errors.
I was hoping it would just insert it normally if the place-before command did not match.
Or am I doing it wrong ?
by geebs
Wed Apr 22, 2009 4:34 am
Forum: General
Topic: Make a NAT rule always "last"
Replies: 4
Views: 734

Make a NAT rule always "last"

Hi all, We upload many dst-nat rules via a script to redirect customers as required. However, I have 1 dst-nat rule which I need to always be at the bottom of the list (last read). The issue is, as new rules are uploaded, the one rule I need to be last is being pushed up and no longer last. Is there...
by geebs
Mon Apr 06, 2009 4:19 am
Forum: General
Topic: Disappearing Ether
Replies: 2
Views: 448

Re: Disappearing Ether

I've seen this with the rb500s.
I recall it happened when they were running 3.14, we upgraded and also upgraded the firmware, rebooted, the ether showed up again.
by geebs
Tue Jan 13, 2009 3:59 am
Forum: General
Topic: Recover License
Replies: 2
Views: 1392

Recover License

Hi all, We have a box here which used to be a Mikrotik x86 box, level 4. However, one of the younger techs used it to test a Linux ISO and formatted the drive. Now when I installed the MT OS is obviously does not find the license. Is there a way to regenerate the key from the Harddrive somehow ? Is ...
by geebs
Thu Dec 11, 2008 5:08 am
Forum: General
Topic: 3.16 cpu max out then capped speed
Replies: 4
Views: 688

Re: 3.16 cpu max out then capped speed

Are you using any routing protocols (bgp, rip, ospf, etc)?

What does memory usage look like, it is also climbing ?
No Routing protocols.
Memory is always stable with approx 400MB free.
by geebs
Thu Dec 11, 2008 1:42 am
Forum: General
Topic: 3.16 cpu max out then capped speed
Replies: 4
Views: 688

Re: 3.16 cpu max out then capped speed

Just to add, the only thing I could do to fix it was reboot.
by geebs
Thu Dec 11, 2008 1:41 am
Forum: General
Topic: 3.16 cpu max out then capped speed
Replies: 4
Views: 688

3.16 cpu max out then capped speed

Hi all, I've had this issue for a while, just being trying to find something that could be causing it. Hoping someone else may have run into this problem aswell. It's a x86 box, 3ghz, runs fine normally, but then all of a sudden it fails. I've attached some pics so you can see what I mean. Red marke...
by geebs
Wed Dec 03, 2008 1:34 am
Forum: General
Topic: supout.rif file size
Replies: 1
Views: 584

supout.rif file size

Hi all, I'm having some issues with a Router and I am trying to generate a supout.rif file for the MT guys to look at, however the files size is very large. It's coming in at about 28MB !! It's a RB333 running 3.16 What could be causing this file to be so large ? There are no files on the files sect...
by geebs
Fri Nov 21, 2008 2:54 am
Forum: The Dude
Topic: Dude "client" on a RouterBoard
Replies: 1
Views: 1319

Dude "client" on a RouterBoard

Hi all, I noticed that the dude package is now available on Routeboards. I installed it, and it wiped my existing config :) From my understanding, basically this is just a Routerboard package to turn a Routerboard into a Dude server. Is this correct ? Is there someway to use it as a Dude Client to p...
by geebs
Tue Sep 02, 2008 2:32 am
Forum: General
Topic: pptp vpn client connection - dns suffix ?
Replies: 6
Views: 3544

Re: pptp vpn client connection - dns suffix ?

bump,

Does anyone know how to do this ?
Clients are connecting fine on their Windows XP machines, however they do not get a DNS suffix.
by geebs
Mon Sep 01, 2008 8:04 am
Forum: General
Topic: pptp vpn client connection - dns suffix ?
Replies: 6
Views: 3544

pptp vpn client connection - dns suffix ?

Hello,

Is it possible to apply a dns suffix to clients connecting via pptp (windows XP to Mikrotik).
Each client has their own ppp secret.

Thanks ! :)
by geebs
Fri Aug 08, 2008 2:09 am
Forum: General
Topic: hard ratelimiting an interface
Replies: 4
Views: 1188

Re: hard ratelimiting an interface

For simple queue you must use 'target-address'. Your queue should be like this, 'queue simple add target-address=<IP_of_The_Client> max-limit=21M/5M' If you have interface you may set network address instead of /32 IP address. This client has multiple Class Cs which we route thru an interface, so c...
by geebs
Mon Jul 28, 2008 3:37 am
Forum: General
Topic: hard ratelimiting an interface
Replies: 4
Views: 1188

Re: hard ratelimiting an interface

I'll give this a shot. In regards to how the rules are read, is all traffic tested against every rule ? Eg, I have a global rule on an interface. I then have other rules after that applying to specific IP addresses which travel over that interface. Will both rules be applied ? Or is it Cisco ACL sty...
by geebs
Thu Jul 17, 2008 12:22 pm
Forum: General
Topic: hard ratelimiting an interface
Replies: 4
Views: 1188

hard ratelimiting an interface

Hi all, I'm having issue capping a client, they have their own interface, and I've tried setting a queue with no luck, they still seem to go over their limit. My latest attempt is this, still the client goes over... 4 name="CLIENT1 GLOBAL CAP" dst-address=0.0.0.0/0 interface=vrrp-client1 parent=none...
by geebs
Fri Jul 04, 2008 5:21 am
Forum: General
Topic: High CPU Load on P4 box, 3,10 Userman and few users
Replies: 2
Views: 642

Re: High CPU Load on P4 box, 3,10 Userman and few users

I have a cpu issue on 3.10 aswell.
Only started when we upgraded to 3.10.
But this is on a routerboard 230.
I have also seen it happen on the 500s aswell.
Reboot fixes it for a bit.

PPPoE server ~50 users
by geebs
Tue Apr 08, 2008 5:43 am
Forum: General
Topic: 3.7 relased
Replies: 15
Views: 1871

Re: 3.7 relased

Yeah tried it, no good.
by geebs
Tue Apr 08, 2008 3:58 am
Forum: General
Topic: 3.7 relased
Replies: 15
Views: 1871

Re: 3.7 relased

So don't use the .npk file and upload the packages individually ??
by geebs
Tue Apr 08, 2008 3:44 am
Forum: General
Topic: 3.7 relased
Replies: 15
Views: 1871

Re: 3.7 relased

Just an Intel board, sata drive.
by geebs
Tue Apr 08, 2008 2:30 am
Forum: General
Topic: MAC Winbox No Longer Works on New Laptops (Toshiba + Vista)
Replies: 29
Views: 11484

Re: MAC Winbox No Longer Works on New Laptops (Toshiba + Vista)

Not sure if it's related, but we found that any machine with the Cisco VPN client installed cannot mac telnet.
It sees the router thru (...), connects, then immediately disconnects.

This happens on any machine that has the Cisco VPN client installed.
by geebs
Tue Apr 08, 2008 2:07 am
Forum: General
Topic: 3.7 relased
Replies: 15
Views: 1871

Re: 3.7 relased

I have an x86 box here which is very strange. Currently running 2.9.51, everytime I try to upgrade it to 3.6, just hangs on booting kernel. Even installing 3.6 from ISO on it fails. I'm wondering whether it's worth trying to upgrade to 3.7, anybody had an issue like this before ? edit: I should ment...
by geebs
Wed Mar 26, 2008 5:10 am
Forum: Scripting
Topic: 2.9 script not working on v3
Replies: 1
Views: 964

Re: 2.9 script not working on v3

Here is the full script we use. :if ([:len [/queue simple find dst-address="118.67.3.70"]] > 0) do={ /queue simple remove [find dst-address="118.67.3.70"]; :log info "Queue removed: 118.67.3.70" } else={ :log info "Queue not found: 118.67.3.70" };:if ( [:len [/queue simple find dst-address="118.67.3...
by geebs
Wed Mar 26, 2008 4:32 am
Forum: Scripting
Topic: 2.9 script not working on v3
Replies: 1
Views: 964

2.9 script not working on v3

Hi all,

This works on 2.9.51
/queue simple find dst-address="118.67.3.70"]] > 0) do={ /queue simple remov
e [find dst-address="118.67.3.70"]

Yet is does not work on 3.6, it doesn't throw any error. The queue is definitely there.
Has there been a change ?

Cheers.
by geebs
Tue Feb 05, 2008 3:59 am
Forum: General
Topic: winbox for Windows Mobile 5 or 6
Replies: 32
Views: 18862

Re: winbox for Windows Mobile 5 or 6

This is something that I would love.
Any word on the web interface ?
by geebs
Fri Oct 05, 2007 7:37 am
Forum: The Dude
Topic: Upgrading RouterOS via Dude
Replies: 6
Views: 3146

Re: Upgrading RouterOS via Dude

Hi, I too am having this issue, when I right click on a Mikrotik and select upgrade, there is nothing there. I have loaded all the packages into the Packages section of Dude, and they show up. I've also tried just using the complete packages, and this does not show up. I've attached a pic. dude.jpg
by geebs
Sun Sep 30, 2007 6:47 am
Forum: General
Topic: RIP problem 2.9.46
Replies: 3
Views: 639

Re: RIP problem 2.9.46

I don't understand, why would I need to use the routing-test package ? Is it better than the normal routing package ?

We've tried everything with this ISP, they believe it may be an issue with incompatibility between the Cisco RIP implementation and Mikrotiks RIP.
by geebs
Thu Sep 27, 2007 3:32 am
Forum: General
Topic: RIP problem 2.9.46
Replies: 3
Views: 639

RIP problem 2.9.46

Hi all, We recently upgraded to 2.9.46 from 2.9.39 Everything seems to be working except one connected route is not being advertised by RIP. I can't seem to get it to work. Our route list shows about 20 connected routes, I have set RIP to redistribute connected. All of them except one route is being...
by geebs
Tue Sep 18, 2007 6:41 am
Forum: General
Topic: overiding queue speed limit for voip
Replies: 0
Views: 514

overiding queue speed limit for voip

Hi all, Running 2.9.44, RB500. All our customers connect to an RB500 PPPoE server. They get their speed given to them via Radius, so on the MT there is a simple queue dynamically created for each customer. Now our backend will boot the customer off once they reached their download usage quota, once ...
by geebs
Mon Sep 10, 2007 5:43 am
Forum: General
Topic: Squid reporting
Replies: 4
Views: 1044

Re: Squid reporting

Mikrotik sends out the logs in syslog format, SARG needs to read in squid log format, hence the ugly and unreliable result.
It would be wonderful if Mikrotik folks could change that!
That would greatly help yes !
by geebs
Tue Sep 04, 2007 4:07 am
Forum: General
Topic: Squid reporting
Replies: 4
Views: 1044

Squid reporting

Hi all, Has anyone successfully logged and graphed individual users on a Mikrotik PC based ? It would be great to have a built in version. The way I ended up doing it is by sending squid logs from the MT to a remote syslog syrver, then parsing those files with SARG, which generated the reports. but ...
by geebs
Fri Mar 02, 2007 3:40 am
Forum: General
Topic: Getting Radius client to talk from a certain IP address
Replies: 1
Views: 610

Src-nat did the trick, thanks !
by geebs
Fri Mar 02, 2007 1:54 am
Forum: General
Topic: Getting Radius client to talk from a certain IP address
Replies: 1
Views: 610

Getting Radius client to talk from a certain IP address

Hi all, Our MT's primary address is an internal address, we also have a secondary LIVE address on the same interface. At the moment, all Radius requests come from the internal address, is there a way to define Radius to come from the external IP on the same interface ? Basically changing the source ...
by geebs
Thu Jan 18, 2007 6:29 am
Forum: General
Topic: ADSL Support
Replies: 9
Views: 3513

Just set you modem to bridged PPPoA as per http://forum.mikrotik.com/viewtopic.php?t=4779&highlight=pppoa. It works for me using a normal Linksys modem. Tim Hi all, Here in Australia we have many SHDSL connections. I have a few SHDSL modems which work fine and sync up but I cannot get the MTs to au...
by geebs
Tue Nov 21, 2006 5:15 am
Forum: Wireless Networking
Topic: MRTG or similar
Replies: 9
Views: 1858

maybe you should use traffic flow for this:
http://www.mikrotik.com/docs/ros/2.9/ip/traffic-flow
That's what I normally do, but in this case I don't want deploy a netflow collector at this location.
by geebs
Fri Nov 17, 2006 1:20 am
Forum: Wireless Networking
Topic: MRTG or similar
Replies: 9
Views: 1858

I came across this thread and this is the same question I wanted to ask. I need individual ip graphs. is it possible? SCENARIO: Someone on this network is using too much bandwidth. One of our clients has a MT running on a server in a remote location. They have about 4 internal class C's attached to ...
by geebs
Mon Jun 05, 2006 6:51 am
Forum: The Dude
Topic: Dude and Motorola Canopy
Replies: 7
Views: 2957

Same issue, does dude support snmp v2c ?

Dude 1.1
by geebs
Fri Jun 02, 2006 12:07 am
Forum: The Dude
Topic: multi user capable ?
Replies: 2
Views: 1274

When one user moves a window or clicks a device, everyone sees that ?

In future releases will you be able to have independant users ?
ie. 2 to 3 people configuring Dude.
by geebs
Thu Jun 01, 2006 2:53 pm
Forum: The Dude
Topic: multi user capable ?
Replies: 2
Views: 1274

multi user capable ?

Is dude able to have concurrent users connecting doing different things ?

It doesn't seem so at the moment. Can someone confirm ?
by geebs
Wed May 03, 2006 4:37 am
Forum: General
Topic: Auto upgrade process
Replies: 0
Views: 539

Auto upgrade process

Hi all, Could someone help me setup the auto upgrade process ? We have a few MT's deployed out in the field. Ranging from: x86 rb230 rb500 I'd like to setup one of the x86 servers as the master and get the other MT's in the field to download the new software, I can then reboot them when possible. ht...
by geebs
Sun Apr 09, 2006 1:18 pm
Forum: General
Topic: Simple firewall rules.
Replies: 1
Views: 722

Simple firewall rules.

Hi all, I'm just wondering how most people setup their filter rules. I have an MT with 2 live addresses which masquerades for 2 servers behind it. This MT also terminates a PPTP connection to another office. I basically just want to let thru port 80 and 443 to the webservers. And block all access to...
by geebs
Wed Apr 05, 2006 8:03 am
Forum: General
Topic: QoS best-effort to business class
Replies: 0
Views: 678

QoS best-effort to business class

Hi all, We have a few MT's in production and our upstream provider has asked us to make sure all the traffic which is leaving our routers to be put in the "business" class, at the moment it is all in the "best-effort" class which is being shaped. Is there a way I can apply a global policy to put all...
by geebs
Wed Apr 05, 2006 3:51 am
Forum: General
Topic: icmp redirects
Replies: 0
Views: 493

icmp redirects

Hi all,

I'm looking at disabling icmp redirects on the MT, on a cisco device all I do is "no ip redirects", how do I achieve the same result in an MT ?

Thanks !
by geebs
Wed Feb 22, 2006 10:46 pm
Forum: RouterBOARD hardware
Topic: transparent proxy and parent proxy feature issue
Replies: 0
Views: 1400

transparent proxy and parent proxy feature issue

hi all, I'm using a routerboard and its parent proxy feature to forward requests to an external squid box. Standard setup, I've got it running in other locations just fine. Basically: all clients are located on ether2 214.168.47.0/25 == chain=dstnat src-address=!214.168.47.250 dst-address=!214.168.4...
by geebs
Wed Feb 08, 2006 4:47 am
Forum: General
Topic: MPLS implementation
Replies: 5
Views: 3826

MPLS is in the long term agenda, but there are extensive standards of which most parts are not needed. It will take allot of work to get the right mix without taking all of our development time. At the moment, we are getting close to completing our own bgp and moving on ospf -- in the routing-test....
by geebs
Thu Feb 02, 2006 5:16 am
Forum: RouterBOARD hardware
Topic: MTU help
Replies: 0
Views: 1007

MTU help

Hi all, I need some assistance with a performance issue we are having. We have 2 MT's RB230's in production bridging 2 networks. Basically exactly the same as described in this article. http://www.mikrotik.com/docs/ros/2.9/interface/eoip down the bottom example. The only difference is that both Inte...
by geebs
Mon Oct 10, 2005 4:04 am
Forum: General
Topic: forwarding to an external proxy, pppoe clients
Replies: 3
Views: 1327

Does anyone have any idea how I can do this ?
by geebs
Tue Oct 04, 2005 8:58 am
Forum: General
Topic: forwarding to an external proxy, pppoe clients
Replies: 3
Views: 1327

forwarding to an external proxy, pppoe clients

Hi all, I have squid running on the outside ether1 network of the MT, see shabby diagram below. Hope it makes sense :) INTERNET || || || ===SQUID || Mikrotik Routerboard 230 ||pppoe server || || CLIENTS The MT runs a PPPOE Server on the internal side, ether2, (all using live addresses), The SQUID Pr...
by geebs
Mon Jul 25, 2005 3:23 am
Forum: General
Topic: calculating daily and monthly totals (SQL)
Replies: 8
Views: 1773

The dialupadmin web interface that comes with FreeRADIUS has scripts that do just that, hourly, daily and monthly.
I'm running these scripts now, still seems not to tally up users who have not disconnected :(

I'd love a script that disconnects users on a monthly basis.
Anyone have one ?
by geebs
Fri Jul 15, 2005 2:12 am
Forum: General
Topic: calculating daily and monthly totals (SQL)
Replies: 8
Views: 1773

OMG it's been there all the time !
I just had a look in the dialupadmin folder :)

Thanks for that !
by geebs
Thu Jul 14, 2005 12:13 pm
Forum: General
Topic: calculating daily and monthly totals (SQL)
Replies: 8
Views: 1773

yep I have the data being updated every 5 mins. Only thing that worries me is that the session radacct table is constantly being updated and does not stop until the client dsconnects. Let's say someone has been connected for a week ? Do you query SQL for 1 day, then query it the next day and subtrac...
by geebs
Thu Jul 14, 2005 5:27 am
Forum: General
Topic: calculating daily and monthly totals (SQL)
Replies: 8
Views: 1773

calculating daily and monthly totals (SQL)

Hi all, We have a few MT's in the field that use Radius (freeradius 1.04 and mysql) for accounting and PPPOE. We set speeds, usernames and passwords in radcheck and radreply, all usage is also logged in the radacct table. I'm trying to work out how the best way to retrieve daily totals is. I read th...
by geebs
Mon Jun 27, 2005 8:16 am
Forum: General
Topic: PPPOE > Radius > SQL Accounting Issue
Replies: 3
Views: 901

ok got it.

It's the Interim command in AAA that you need to set to get periodic accounting.

Thanks.
by geebs
Mon Jun 27, 2005 2:51 am
Forum: General
Topic: PPPOE > Radius > SQL Accounting Issue
Replies: 3
Views: 901

Using a sniffer I did not see any packets coming from the MT to Radius, only on connection and disconnection.

What I need is the accounting information which is in the radacct table in SQL. I need that to be sent periodically, not on disconnect only.

Does anyone know how to do this ?
by geebs
Fri Jun 24, 2005 2:34 am
Forum: General
Topic: PPPOE > Radius > SQL Accounting Issue
Replies: 3
Views: 901

PPPOE > Radius > SQL Accounting Issue

Hi all, I'm sure this has been discussed before but I can't seem to find the thread. We have a simple setup here, we use an MT to terminate PPPOE and the MT talks to Radius. When the client disconnects, we also get the Accounting data. My question is: Is there anyway to get accounting data from the ...
by geebs
Fri Mar 04, 2005 9:36 am
Forum: General
Topic: web proxy and password protected websites
Replies: 2
Views: 1134

sorry let me re-phrase that, not secure as in https. I mean secure as in secured by windows authentication over regular HTTP. For example, when you try and access certain Microsoft administration tools on another domain, eg, sharepoint, susadmin, it's secure by an Active Dir user/pass. I believe it'...
by geebs
Fri Mar 04, 2005 1:28 am
Forum: General
Topic: web proxy and password protected websites
Replies: 2
Views: 1134

web proxy and password protected websites

Ever since we started using our web-proxy (running in transparent mode as a bridge), all our secure websites that require you to enter a user/pass are not working. It's almost like you don't even get the password pop up box anymore. It just basically gives you a "You are not authorised", and no pop ...
by geebs
Fri Mar 04, 2005 1:22 am
Forum: General
Topic: Simple Transparent Web Proxy
Replies: 3
Views: 2042

actually that does work, thanks :)
by geebs
Tue Mar 01, 2005 2:00 am
Forum: General
Topic: Simple Transparent Web Proxy
Replies: 3
Views: 2042

ok back again, still no go :( If I add the proxy in manually, it works fine, but without it, it's bypassing the proxy. ========================= [admin@MikroTik] > /ip web-proxy export # mar/01/2005 08:02:17 by RouterOS 2.8.24 # software id = <removed> # / ip web-proxy set enabled=yes src-address=0....
by geebs
Thu Feb 24, 2005 1:42 am
Forum: General
Topic: Simple Transparent Web Proxy
Replies: 3
Views: 2042

Simple Transparent Web Proxy

Hi all, I can't seem to get the transparent proxy feature working on our MT. I've followed the documentation with no luck. Basically we have a box with 2 nics. Works perfectly as a gateway, internal address range gets nat'd out the external interface. No special rules atm. I've setup the web proxy, ...
by geebs
Wed Feb 09, 2005 5:28 am
Forum: General
Topic: PPPOE / RIPv2 / Security
Replies: 1
Views: 737

actually I might try getting 1 thing at a time working.

I'm really mostly interested on how to run RIPv2 with the PPPOE server, seeing as it's recommended that the interface of the pppoe server does not have an IP address.
by geebs
Wed Feb 09, 2005 12:44 am
Forum: General
Topic: PPPOE / RIPv2 / Security
Replies: 1
Views: 737

PPPOE / RIPv2 / Security

Hi all, We have a few MT Routerboards deployed around the network running Ripv2 which I then redistribute into our Cisco EIGRP network. Works well. We are basically a simple Ethernet network, with a lot of transparent Wireless points that our clients use to connect to us. I'm looking at introducing ...
by geebs
Mon Jan 24, 2005 9:47 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

thx normis, appreciate your time.
by geebs
Mon Jan 24, 2005 3:17 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

http://www.mikrotik.com/hotspot.html

Just reading thru that documentation, it looks like exactly what we need.
WIll it be made available so we can host it sometime soon ?

In the documentation it doesn't say anything about automating it though.
by geebs
Mon Jan 24, 2005 3:09 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

but how will payments work ?
How would our webpage put in a user automatically inot to the Hotspot manager ?

Will the MT's use that Radius server instead ?

confusing :(
by geebs
Mon Jan 24, 2005 3:03 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

but wait - if you added the user with winbox, right?, then this has nothing to do with radius ... the user is in the router's local database. local database and radius database are two different things, they are not being syncronised. this is what I see now yes, but when adding a user by winbox it ...
by geebs
Mon Jan 24, 2005 2:49 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

basically simple hotspot functionality. kinda like prepaid cards yes. User connects to network gets IP address opens browser and gets redirected to a webpage either log in or pay by CC (only in timelimits, not data) The reason for the original question was that I noticed when using winbox that you c...
by geebs
Mon Jan 24, 2005 12:23 pm
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

Which radius server?
freeradius
by geebs
Mon Jan 24, 2005 10:20 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

thx for the tips.
by geebs
Mon Jan 24, 2005 7:43 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

btw that test user was made using radius manager.
by geebs
Mon Jan 24, 2005 7:42 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

rosst@dude:~$ radtest xxx xxx 127.0.0.1 1812 xxxxx 127.0.0.1 Sending Access-Request of id 25 to 127.0.0.1:1812 User-Name = "xxxx" User-Password = "xxxx" NAS-IP-Address = dude NAS-Port = 1812 Framed-Protocol = PPP rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=25, length=62 Reply-Message...
by geebs
Mon Jan 24, 2005 6:59 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

and in the radiusd.conf

I enabled SQL in the 2 sections, accounting authorisation as stated in the freeradius doco.
by geebs
Mon Jan 24, 2005 6:55 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

Hi Yazzy That's correct it uses mysql. Here is the sql.conf ====================== # Configuration for the SQL module, when using MySQL. # # The database schema is available at: # # src/radiusd/src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql # # If you are using PostgreSQL, please use 'postgr...
by geebs
Mon Jan 24, 2005 4:49 am
Forum: General
Topic: Winbox adding users locally instead of into radius ?
Replies: 20
Views: 3900

Winbox adding users locally instead of into radius ?

Hello, I noticed that in Winbox you can set an uptime limit in hotspot so the user is disconnected after a period of time. The issue is that it doesn't seem to be writing them to Radius. It keeps them locally. I do know that Radius is working becuase when I add a user using Radius Manager (3rd party...
by geebs
Tue Jan 04, 2005 5:50 am
Forum: General
Topic: Simple RIP
Replies: 2
Views: 895

oh god, I am so embarressed, apologies.... I'm really tired :?

Thanks :)
by geebs
Tue Jan 04, 2005 3:29 am
Forum: General
Topic: Simple RIP
Replies: 2
Views: 895

Simple RIP

hello, I'm looking to deploy some Mikrotik Routeboards into an EIGRP cisco network. At the moment I've just setup a simple lab with 2 Mikrotiks connected via a crossover cable. I've given them the IP addresses. 10.10.10.1/24 and 10.10.20.1/24 I then enabled RIP on those 2 following the RIP documenta...