Community discussions

MikroTik App

Search found 7034 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 24
by mrz
Mon Mar 18, 2024 11:11 am
Forum: Forwarding Protocols
Topic: Split subnet to smaller in a router with BGP
Replies: 2
Views: 182

Re: Split subnet to smaller in a router with BGP

I assume you are trying to advertise smaller subnet than /24 to the upstream. Typically upstream does not accept smaller subnets than 24
by mrz
Fri Mar 15, 2024 5:52 pm
Forum: Forwarding Protocols
Topic: V7.14.1 ISIS evaluation
Replies: 7
Views: 495

Re: V7.14.1 ISIS evaluation

Then you are familiar what is the purpose of VRF as interface with the linux, the same is with the ROS.
by mrz
Fri Mar 15, 2024 9:24 am
Forum: Forwarding Protocols
Topic: V7.14.1 ISIS evaluation
Replies: 7
Views: 495

Re: V7.14.1 ISIS evaluation

Lo is not supposed to be attached to VRF.
VRFs have their own vrf interfaces (interface name is the same as vrf name).
by mrz
Thu Mar 14, 2024 11:31 pm
Forum: RouterOS beta
Topic: BGP + ECMP
Replies: 16
Views: 8706

Re: BGP + ECMP

nothing is silently changed, multipath is still not implemented.
by mrz
Thu Mar 14, 2024 4:07 pm
Forum: General
Topic: v7.15beta broke backup file naming
Replies: 45
Views: 2000

Re: v7.15beta broke backup file naming

exactly
by mrz
Thu Mar 14, 2024 3:27 pm
Forum: General
Topic: v7.15beta broke backup file naming
Replies: 45
Views: 2000

Re: v7.15beta broke backup file naming

common sense would dictate not to use special chars in filenames anyway, especially when one can download files to other systems not supporting specific characters in filenames
by mrz
Wed Mar 13, 2024 12:49 pm
Forum: General
Topic: discarding BFD packet: too short
Replies: 7
Views: 803

Re: discarding BFD packet: too short

Solution is just like for any other unwanted traffic. You block it.

Or upgrade to v7 and remove all BFD config.
by mrz
Wed Mar 13, 2024 10:40 am
Forum: General
Topic: discarding BFD packet: too short
Replies: 7
Views: 803

Re: discarding BFD packet: too short

It is not a bug. Something is sending non bfd packet to bfd port, so bfd reports that it is not a valid bfd packet.
by mrz
Wed Mar 06, 2024 3:41 pm
Forum: Forwarding Protocols
Topic: BGP VRF route leak
Replies: 6
Views: 422

Re: BGP VRF route leak

I would say that it is misconfiguration. VPNv4 requires at least LDP, otherwiseVPNv4 MPLS label cannot be resolved.
by mrz
Mon Mar 04, 2024 9:58 am
Forum: RouterOS beta
Topic: v7 inter VRF route leak doesn't work for local IPs
Replies: 38
Views: 12309

Re: v7 inter VRF route leak doesn't work for local IPs

Local addresses will be reachable starting from v7.15beta
by mrz
Fri Mar 01, 2024 6:56 pm
Forum: General
Topic: VRF routing issue on 7.14 [SOLVED]
Replies: 12
Views: 1568

Re: VRF routing issue on 7.14 [SOLVED]

vrf-interface parameter is just another way to say in which vrf route will be added. VRF is then chosen based on which VRF interface belongs, but since after reboot IPIP tunnel is assigned to "main", route is also moved to main.
by mrz
Fri Mar 01, 2024 2:56 pm
Forum: Forwarding Protocols
Topic: BGP Filter is not working as expected
Replies: 6
Views: 332

Re: BGP Filter is not working as expected

Of course, best path selection never worked if routes are coming from different instances.
by mrz
Fri Mar 01, 2024 2:54 pm
Forum: General
Topic: VRF routing issue on 7.14 [SOLVED]
Replies: 12
Views: 1568

Re: VRF routing issue on 7.14 [SOLVED]

Thanks, confirmed.
by mrz
Fri Mar 01, 2024 2:31 pm
Forum: Forwarding Protocols
Topic: BGP Filter is not working as expected
Replies: 6
Views: 332

Re: BGP Filter is not working as expected

make sure you are running all bgp peers on the sam bgp instance
by mrz
Tue Feb 27, 2024 9:13 am
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 46684

Re: v7.14rc [testing] is released!

7.15 beta what? IS-IS is already in v7.14
by mrz
Mon Feb 26, 2024 12:00 pm
Forum: Forwarding Protocols
Topic: ROSv7.13.3 - bgp-ext-communities
Replies: 2
Views: 343

Re: ROSv7.13.3 - bgp-ext-communities

by mrz
Tue Feb 20, 2024 10:55 am
Forum: Forwarding Protocols
Topic: peering between bgp instance
Replies: 2
Views: 320

Re: peering between bgp instance

Add VRFs and leak connected routes
https://help.mikrotik.com/docs/pages/vi ... uteleaking

then set up BGP connections between VRFs.
That way you can simulate or fake any eBGP setup you like.
by mrz
Thu Feb 15, 2024 12:45 pm
Forum: Forwarding Protocols
Topic: BGP session name (ROS 7.13.4)
Replies: 1
Views: 237

Re: BGP session name (ROS 7.13.4)

because connection is a matcher and it can match multiple sessions. That is why session name = connection_name-x
by mrz
Fri Feb 09, 2024 1:55 pm
Forum: RouterOS beta
Topic: v7 inter VRF route leak doesn't work for local IPs
Replies: 38
Views: 12309

Re: v7 inter VRF route leak doesn't work for local IPs

probably can be used as vrf loopback.
by mrz
Fri Feb 09, 2024 9:42 am
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147955

Re: v7.14beta [testing] is released!

Please bring IS-IS ipv6 :(
Have you even tried?
by mrz
Fri Feb 09, 2024 8:35 am
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

what do you mean?
by mrz
Thu Feb 08, 2024 3:25 pm
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

It sure does work. Setup (111.15.0.1)CE1—-PE1——-PE2——CE2(111.13.0.1) PE2 will be used for nat testing. Relevant IPs on PE2: 1 111.13.0.2/24 111.13.0.0 sfp-sfpplus2 ;;; router-test 3 111.16.0.1/24 111.16.0.0 vrf-dummy /ip vrf add interfaces=sfp-sfpplus2,vrf-dummy name=vrfTest Relevant routes: DAc dst...
by mrz
Thu Feb 08, 2024 10:18 am
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

It is not entirely true, PE can still be protected and client behind PE as well. Only thing that you cannot do is destination nat on traffic from MPLS cloud to CE.
by mrz
Thu Feb 08, 2024 8:53 am
Forum: RouterOS beta
Topic: v7 inter VRF route leak doesn't work for local IPs
Replies: 38
Views: 12309

Re: v7 inter VRF route leak doesn't work for local IPs

Currently, Local addresses will not be reachable, because BGP VPN sets interface@vrf gateways. There are plans to change it in the future.
by mrz
Thu Feb 08, 2024 8:47 am
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147955

Re: v7.14beta [testing] is released!

unfortunately no BGP/VRF local route leaking updates...
*) route - fixed gateways of locally imported vpnv4 routes;
by mrz
Mon Feb 05, 2024 7:01 pm
Forum: Forwarding Protocols
Topic: ERROR: RECV RouteRefresh with invalid subtype: 0
Replies: 19
Views: 4879

Re: ERROR: RECV RouteRefresh with invalid subtype: 0

Solving this is in a todo list but with low priority
by mrz
Mon Feb 05, 2024 1:27 pm
Forum: Forwarding Protocols
Topic: ERROR: RECV RouteRefresh with invalid subtype: 0
Replies: 19
Views: 4879

Re: ERROR: RECV RouteRefresh with invalid subtype: 0

AFAIK this does not do any harm. Do you have any actual problem? If not and you simply do not like warnings, then those can be hidden or reconfigured to be recorded in different buffer.
by mrz
Tue Jan 30, 2024 11:00 am
Forum: Forwarding Protocols
Topic: BGP Default Route Disappearing
Replies: 3
Views: 436

Re: BGP Default Route Disappearing

Typically you run IGP in your network, which deals with the default route.
by mrz
Fri Jan 26, 2024 3:16 pm
Forum: Scripting
Topic: ✂ Rextended Fragments of Snippets
Replies: 96
Views: 61763

Re: ✂ Rextended Fragments of Snippets

I can't continue to comment this in my topic, this on this topic is off-topic in... my topic.
Well, this is indeed off-topic, it has nothing to do with script snippets.
by mrz
Fri Jan 26, 2024 12:23 am
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

Few comments: - VPLS PW works fine between v7 routers, either there is something specific or misconfiguration. - Yes, RSVP-TE does not require LDP, those are independent label distribution methods. - You might need to restart LDP when you change advertise/accept filters. - Lo and VRF interfaces are ...
by mrz
Tue Jan 23, 2024 2:46 pm
Forum: Forwarding Protocols
Topic: RPKI
Replies: 6
Views: 682

Re: RPKI

rpki-verify just adds the RPKI status to the prefix, you can see whether status have been addd by looking at parameters in /routing/route/print detail To actually reject or accept prefix you have to match the rpki status and add apropriate action, see example here: https://help.mikrotik.com/docs/dis...
by mrz
Thu Jan 18, 2024 5:03 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147955

Re: v7.14beta [testing] is released!

Separating routing protocols will not give you any significant gains in terms of disk storage. For example, by adding is-is, executable size increased only by 20KB. Separating it into its own executable would use more disk space. Multiply that by all routing protocols and on 16MB devices most likely...
by mrz
Thu Jan 18, 2024 3:44 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147955

Re: v7.14beta [testing] is released!

There is no separate bgp/ospf etc processes that could be put into separate packages, everything is integrated.
by mrz
Thu Jan 18, 2024 3:12 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147955

Re: v7.14beta [testing] is released!

routing is essential to install even connected and static routes for router to be able to forward anything at all. it does not makes sense to run router without a "routing package", which will render router useless.
by mrz
Fri Jan 12, 2024 3:28 pm
Forum: Forwarding Protocols
Topic: Bgp- signaled vpls and l3vpn issues in 7.10
Replies: 14
Views: 3360

Re: Bgp- signaled vpls and l3vpn issues in 7.10

Yes, it is a known route reflector issue, will be fixed in the future.
by mrz
Thu Jan 11, 2024 3:43 pm
Forum: Forwarding Protocols
Topic: BGP ROS7
Replies: 3
Views: 720

Re: BGP ROS7

Here is everything you need to get started:
https://help.mikrotik.com/docs/display/ ... h+examples
by mrz
Sat Dec 30, 2023 12:46 pm
Forum: RouterOS beta
Topic: v7 inter VRF route leak doesn't work for local IPs
Replies: 38
Views: 12309

Re: v7 inter VRF route leak doesn't work for local IPs

this exact example works only in 7.14 because loopback and vrf interfaces are exposed only starting from this version.
by mrz
Fri Dec 29, 2023 4:17 pm
Forum: RouterOS beta
Topic: v7 inter VRF route leak doesn't work for local IPs
Replies: 38
Views: 12309

Re: v7 inter VRF route leak doesn't work for local IPs

As it was already mentioned in other topics, there never was a mechanism to automatically leak connected routes from other VRFs, like in the provided cisco config in this topic. For that static config is required, and starting from 7.14 where loopbacks are exposed it is even easier: /interface bridg...
by mrz
Thu Dec 28, 2023 5:02 pm
Forum: Forwarding Protocols
Topic: default route distance filter
Replies: 2
Views: 686

Re: default route distance filter

dst == 0.0.0.0/0
by mrz
Thu Dec 28, 2023 11:24 am
Forum: Forwarding Protocols
Topic: BGP Established Issue in between MikroTik and Juniper . Error: Unsupported capability received, code: 128
Replies: 6
Views: 996

Re: BGP Established Issue in between MikroTik and Juniper . Error: Unsupported capability received, code: 128

BTW it is not an error, it is a debug message informing that unsupported apability is being sent by remote peer, thats it. the BGP session will work regardless of that message. There is another reason why BGP session is tearing down which happens after open messages are exchanged and enteing establi...
by mrz
Thu Dec 28, 2023 11:16 am
Forum: Forwarding Protocols
Topic: BGP Routing Problems after upgrade from v6 to v7.13
Replies: 7
Views: 1504

Re: BGP Routing Problems after upgrade from v6 to v7.13

If v6 rule had ation=passthrough, then v7 rule is converted without action since it is the same as the "passthrough".
by mrz
Fri Dec 22, 2023 1:07 am
Forum: Forwarding Protocols
Topic: BGP Routing Problems after upgrade from v6 to v7.13
Replies: 7
Views: 1504

Re: BGP Routing Problems after upgrade from v6 to v7.13

yes, you could use "force self" as a workaround if you for some reason do not want to set up IGP.

regarding filters, do you have at least one rule that accepts something? if not then everything is rejected by default.
by mrz
Thu Dec 21, 2023 10:53 pm
Forum: Forwarding Protocols
Topic: BGP Routing Problems after upgrade from v6 to v7.13
Replies: 7
Views: 1504

Re: BGP Routing Problems after upgrade from v6 to v7.13

You need IGP running or static routes to resolve recursive gateways. And apart from that running two BGP instances does not make sense in that setup.
by mrz
Wed Dec 20, 2023 1:23 pm
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

inter-VRF route leaking via RD with import/export on ROSv7 like it was useable in v6
That never existed in v6 either. There was just a workaround where you could establish bgp session between vrfs on a single router and then redistribute. In theory you already can do the same in v7 too.
by mrz
Tue Dec 19, 2023 12:07 pm
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

7.14 will have exposed vrf interface and loopback interface ,so you will be able to match in firewall traffic looped to vrf interface.
by mrz
Mon Dec 18, 2023 8:43 pm
Forum: Forwarding Protocols
Topic: /ip route print detail where dst-address =x.x.x.x/xx FAIL!
Replies: 8
Views: 13183

Re: /ip route print detail where dst-address =x.x.x.x/xx FAIL!

/ip route print where 10.10.10.15 in dst-address
by mrz
Mon Dec 18, 2023 5:07 pm
Forum: Forwarding Protocols
Topic: BGP connections not appearing in sessions
Replies: 2
Views: 1028

Re: BGP connections not appearing in sessions

You have not reached any limits. Check packet sniffer to see if what you have configured actually matches incoming connection.
by mrz
Wed Dec 13, 2023 10:44 am
Forum: Forwarding Protocols
Topic: BGP - Best Path Selection with Multiple Upstreams [SOLVED]
Replies: 3
Views: 2175

Re: BGP - Best Path Selection with Multiple Upstreams [SOLVED]

I am on RouterOS v7.12.1. I think this MT documentation on best path selection is confusing me since I can't see any "BGP instance". I can only see BGP instances in ROS v6.


https://help.mikrotik.com/docs/display/ ... neInstance
by mrz
Tue Dec 12, 2023 4:10 pm
Forum: Forwarding Protocols
Topic: ROS 7.12.1 BGP Peer not initiaing connects or responding to connections
Replies: 1
Views: 1272

Re: ROS 7.12.1 BGP Peer not initiaing connects or responding to connections

Check the packet sniff, I am guessing that the md5 key is not correct.
by mrz
Fri Dec 08, 2023 6:55 pm
Forum: RouterOS beta
Topic: OS upgrade Issue from version 6 to version 7
Replies: 43
Views: 8462

Re: OS upgrade Issue from version 6 to version 7

Well, macos is a bad example, even some of their own developed software stops working after the upgrade and needs reinstall or config have to be changed. If we return to the topic, when something is not implemented yet or removed entirely, for those features config cannot be upgraded. Even if the co...
by mrz
Wed Dec 06, 2023 10:34 am
Forum: Forwarding Protocols
Topic: Status of ROS V7 for BGP, MPLS, VPLS
Replies: 70
Views: 11194

Re: Status of ROS V7 for BGP, MPLS, VPLS

but MikroTik decided it was a terrible idea to support these three on the ASICs.
Hate to tell you, but your "inside source" is not trustworthy.
by mrz
Wed Nov 29, 2023 10:46 am
Forum: Forwarding Protocols
Topic: ROS 7.1 BGP max-prefix-limit missing
Replies: 54
Views: 12582

Re: ROS 7.1 BGP max-prefix-limit missing

No, template parameters are exposed to connection, so there is no need to create template for each connection.
by mrz
Wed Nov 29, 2023 9:31 am
Forum: Forwarding Protocols
Topic: ROS 7.1 BGP max-prefix-limit missing
Replies: 54
Views: 12582

Re: ROS 7.1 BGP max-prefix-limit missing

Let's use Microsoft AS8075 as an example. On their PeeringDB entry (https://www.peeringdb.com/net/694) they specify that peers should see no greater than 2000 v4 and 500 v6 routes and to assume there is an issue if a peer receives anything greater than this. If a peer hits a limit it should do an a...
by mrz
Tue Nov 28, 2023 2:09 pm
Forum: Forwarding Protocols
Topic: Migrate BGP VPN4 from v6 to v7
Replies: 1
Views: 1278

Re: Migrate BGP VPN4 from v6 to v7

Here you can find a basic example to start with
https://help.mikrotik.com/docs/pages/vi ... LSVPNsetup
by mrz
Thu Nov 23, 2023 11:01 am
Forum: Forwarding Protocols
Topic: Default Route Advertisement
Replies: 4
Views: 1581

Re: Default Route Advertisement

Which gateway is used to forward packets from the client is not determined by the default route you are originating to the client but by the routing table on your router.
by mrz
Fri Nov 17, 2023 9:04 am
Forum: Forwarding Protocols
Topic: BGP: filter prefixes based on AS path
Replies: 6
Views: 2997

Re: BGP: filter prefixes based on AS path

Regexps are slow, do not use regexpfor simple things like to match as path length, for that there is parameter bgp-path-len
https://help.mikrotik.com/docs/display/ ... Properties
by mrz
Fri Nov 17, 2023 8:58 am
Forum: Forwarding Protocols
Topic: VRF Route
Replies: 2
Views: 1107

Re: VRF Route

dst-address=1.1.1.0/24 gateway=y.y.y.y@vrf where "y.y.y.y" is the gateway in vrf and "vrf" is vrf name
by mrz
Thu Nov 16, 2023 6:01 pm
Forum: Scripting
Topic: GPT4 and writing scripts for Mikrotik
Replies: 51
Views: 5224

Re: GPT4 and writing scripts for Mikrotik

good luck using that code :D
by mrz
Thu Nov 16, 2023 5:32 pm
Forum: General
Topic: Fundamental problems at MikroTik
Replies: 32
Views: 4091

Re: Fundamental problems at MikroTik

Nobody is forcing to order a CD and pay for preparing it and shipping.
As it is already mentioned by normis, write to support and ask and you will get the GPL-covered source without charge.
by mrz
Thu Nov 16, 2023 2:27 pm
Forum: General
Topic: Fundamental problems at MikroTik
Replies: 32
Views: 4091

Re: Fundamental problems at MikroTik

Fake news :cnn:
Nobody is asking $45 USD to get GPL covered source.
by mrz
Thu Nov 16, 2023 2:21 pm
Forum: General
Topic: RouterOS 7.12 - RPKI - Refresh can't be set and SNMP issue
Replies: 4
Views: 1303

Re: RouterOS 7.12 - RPKI refresh can't be set and SNMP issue

I assume that you have a large routing table and you are trying to monitor whole routing table via SNMP.
When routing filters, in this case RPKI in filters, is updating routing table SNMP will not be able to get data until calculation is done.
by mrz
Thu Nov 16, 2023 12:16 pm
Forum: General
Topic: Fundamental problems at MikroTik
Replies: 32
Views: 4091

Re: v7.12 [stable] is released!

If software has it's roots in GPL-based projects, then the entire software must also be under GPL license. This logic does not make sense. In that case closed source drivers would not exist, and you would not be able to run any commercial software, and commercial linux distros would not exist. Or e...
by mrz
Thu Nov 16, 2023 1:01 am
Forum: Announcements
Topic: v7.12.1 [stable] is released!
Replies: 252
Views: 90723

Re: v7.12 [stable] is released!

cisco "show ip route x.x.x.x" is not equivalent to "ip route check".
You can already do the same as ciscos show ip route with
ip route print where x.x.x.x in dst-address
by mrz
Wed Nov 15, 2023 1:47 pm
Forum: Scripting
Topic: GPT4 and writing scripts for Mikrotik
Replies: 51
Views: 5224

Re: GPT4 and writing scripts for Mikrotik

I cannot say much about GPT4, maybe paid version is better, but in my experience GPT3.5 fails miserably in most of the cases, it just keeps imagining things that do not exist in the real world and it is not just with ROS scripts.
by mrz
Wed Nov 15, 2023 12:58 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 87038

Re: v7.13beta [testing] is released!

serialize,deserialize - convert provided value from/to specified format onerror - catch errors grep - like linux grep tool Press F1 and you will see the parameters and descriptions: some examples: :put [:serialize to=json value=a,b,c] ["a","b","c"] :grep pattern="v...
by mrz
Tue Nov 14, 2023 5:45 pm
Forum: Announcements
Topic: v7.12.1 [stable] is released!
Replies: 252
Views: 90723

Re: v7.12 [stable] is released!

Until v7.12 in MPLS L3 env/ topology. /routing/route/print where routing-table=xxxx or /ip/route print where routing-table=xxxx did not show any routes when /ip/vrf interfaces=none. Works for me in any version above 7.11 [admin@MikroTik] /ip/route> /ip vrf/print Flags: X - disabled; * - builtin 0 n...
by mrz
Mon Nov 13, 2023 10:06 am
Forum: Forwarding Protocols
Topic: IS-IS
Replies: 134
Views: 51901

Re: IS-IS

Unfortunately for some and fortunately for others it is not a joke. IS-IS is in development but disabled for wider public in v7.12. Stay tuned, its coming soon.
by mrz
Fri Nov 10, 2023 11:28 am
Forum: Beginner Basics
Topic: From documentation - why is "WAN interface is now pppoe-out"
Replies: 4
Views: 1041

Re: From documentation - why is "WAN interface is now pppoe-out"

That is just a warning for that specific configuration, that from the point when you add pppoe inteface it is considered a WAN interface. You add multiple interfaces to WAN list only if you have multiple wan connections. in this case ether1 is not a wan connection, it is used just as a transport int...
by mrz
Fri Nov 10, 2023 12:58 am
Forum: Forwarding Protocols
Topic: ROS v7 Route Filter Question [SOLVED]
Replies: 1
Views: 1614

Re: ROS v7 Route Filter Question [SOLVED]

"if ( comment text xxx ) { do_some_stuff }" All available properties are listed in the manual: https://help.mikrotik.com/docs/display/ROS/Route+Selection+and+Filters#RouteSelectionandFilters-FilterSyntax And by pressing tab while typing autocompletion will suggest supported properties/com...
by mrz
Thu Nov 02, 2023 11:56 am
Forum: Forwarding Protocols
Topic: RouterOS V7 does not work BGP multihop peer
Replies: 8
Views: 3251

Re: RouterOS V7 does not work BGP multihop peer

Do not specify interface if you wan to match multihop sessions.
by mrz
Thu Nov 02, 2023 9:03 am
Forum: Forwarding Protocols
Topic: RouterOS V7 does not work BGP multihop peer
Replies: 8
Views: 3251

Re: RouterOS V7 does not work BGP multihop peer

Adding and specifying allowed address-list under bfd configuration doesn't help neither
But when i configure bgp session with ip which is configured directly on interface, the bgp and bfd is up
Show your bfd config.
by mrz
Tue Oct 31, 2023 11:25 am
Forum: Forwarding Protocols
Topic: BGP between ver 7 and 6
Replies: 4
Views: 1692

Re: BGP between ver 7 and 6

by mrz
Tue Oct 31, 2023 10:07 am
Forum: Forwarding Protocols
Topic: Weird Prefix Count ROS 7.10
Replies: 2
Views: 2067

Re: Weird Prefix Count ROS 7.10

v7.12rc has it already fixed.
by mrz
Mon Oct 30, 2023 2:39 pm
Forum: Forwarding Protocols
Topic: BGP: Whats the difference between these two commands?
Replies: 8
Views: 1697

Re: BGP: Whats the difference between these two commands?

Yes, exactly, you got it right.
by mrz
Mon Oct 30, 2023 2:11 pm
Forum: Forwarding Protocols
Topic: BGP: Whats the difference between these two commands?
Replies: 8
Views: 1697

Re: BGP: Whats the difference between these two commands?

ip route print where "160.119.216.0/22" in dst-address Prints all routes that can route "160.119.216.0/22" network ip route print where dst-address in "160.119.216.0/22" print all routes which destination is within 160.119.216.0/22 subnet And of course these will print...
by mrz
Mon Oct 30, 2023 11:32 am
Forum: Forwarding Protocols
Topic: BGP: Whats the difference between these two commands?
Replies: 8
Views: 1697

Re: BGP: Whats the difference between these two commands?

First example also makes sense if you want to find all routes that can route 160.119.216.0/22 subnet
by mrz
Mon Oct 23, 2023 10:17 pm
Forum: Forwarding Protocols
Topic: V7.5 BGP not advertising eBGP to iBGP peer
Replies: 4
Views: 2989

Re: V7.5 BGP not advertising eBGP to iBGP peer

output.redistribute=bgp is needed only when redistributing routes from other BGP instances.
by mrz
Wed Oct 11, 2023 8:09 pm
Forum: Forwarding Protocols
Topic: BGP prepend filters - Can I prepend input with own AS?
Replies: 6
Views: 2514

Re: BGP prepend filters - Can I prepend input with own AS?

the purpose of prepending own AS on received routes is to artificially increase the number of hops For that bgp-path-peer-prepend exists The problem is that in AS Path "AS3 AS2 AS2 AS2 AS1" you can't tell which of "AS2 AS2 AS2" was added by the AS2 router in output and which by ...
by mrz
Wed Oct 11, 2023 4:13 pm
Forum: Forwarding Protocols
Topic: BGP prepend filters - Can I prepend input with own AS?
Replies: 6
Views: 2514

Re: BGP prepend filters - Can I prepend input with own AS?

Because BGP adds its own ASN only when sending routes to remote peers (so prepending own as is possible only in output).
By adding local as in input you are deliberately "saying" that those routes are looped, you might as well just reject the routes.
by mrz
Wed Oct 11, 2023 11:02 am
Forum: RouterOS beta
Topic: BGP - Prefix Count
Replies: 9
Views: 3202

Re: BGP - Prefix Count

This problem should be already fixed in v7.12
by mrz
Fri Oct 06, 2023 11:54 am
Forum: General
Topic: Tool to migrate/convert *.cfg.rsc between different devices
Replies: 10
Views: 1541

Re: Tool to migrate/convert *.cfg.rsc between different devices

find/replace in any text editor.
by mrz
Thu Oct 05, 2023 5:34 pm
Forum: Forwarding Protocols
Topic: ROSv7 BGP VPLS with Cisco IOS-XR
Replies: 14
Views: 3607

Re: ROSv7 BGP VPLS with Cisco IOS-XR

Malformed packet means that it is just a cisco style encoding, change to correct encoding in wireshark and it will not be "malformed".
Ciscos that you are trying to peer with, do not use old cisco style vpls anymore. Do not set cisco-style in ROS side and all should be fine.
by mrz
Wed Oct 04, 2023 11:49 am
Forum: Forwarding Protocols
Topic: Transferring MPLS remote mapping networks to the routing table [SOLVED]
Replies: 2
Views: 1784

Re: Transferring MPLS remote mapping networks to the routing table [SOLVED]

This is a known GUI problem, will be fixed in the future.
by mrz
Mon Oct 02, 2023 12:51 pm
Forum: Forwarding Protocols
Topic: ROSv7 BGP VPLS with Cisco IOS-XR
Replies: 14
Views: 3607

Re: ROSv7 BGP VPLS with Cisco IOS-XR

most likely MTU related. Try to increase MPLS MTU or set lower pw l2mtu
by mrz
Tue Sep 26, 2023 1:35 pm
Forum: Forwarding Protocols
Topic: BGP Best Path Selection with MED
Replies: 8
Views: 5157

Re: BGP Best Path Selection with MED

will consider adding this option
by mrz
Tue Sep 26, 2023 1:24 pm
Forum: Forwarding Protocols
Topic: BGP Best Path Selection with MED
Replies: 8
Views: 5157

Re: BGP Best Path Selection with MED

As far as I can see by looking at attributes routes do not meet the criteria to be selected as best:
https://help.mikrotik.com/docs/display/ ... hSelection
by mrz
Tue Sep 26, 2023 11:47 am
Forum: General
Topic: VRF: putting interface in vrf on ROS 6(.44.5)
Replies: 1
Views: 592

Re: VRF: putting interface in vrf on ROS 6(.44.5)

Tools like traceroute and ping requires you to explicitly specify in which routing table to run. Default is main, so by not specifying vrf you are saying "run the tool in the main table".
by mrz
Thu Sep 21, 2023 4:24 pm
Forum: Forwarding Protocols
Topic: delete communities
Replies: 9
Views: 2910

Re: delete communities

If you want to remove only specific community then it is not possible in v6.
by mrz
Thu Sep 21, 2023 4:17 pm
Forum: Forwarding Protocols
Topic: delete communities
Replies: 9
Views: 2910

Re: delete communities

In v6
add chain=xx set-bgp-communities=""
by mrz
Fri Jun 30, 2023 3:17 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

try to remove dst-address param from rule in dstnat chain.
by mrz
Fri Jun 30, 2023 10:56 am
Forum: General
Topic: global variable defconfMode
Replies: 2
Views: 495

Re: global variable defconMode

You can ignore this for now, it is defconf script leftover by mistake.
by mrz
Fri Jun 30, 2023 10:14 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

If there is indeed deep and long investigation then there should be no problems to create a support ticket and provide that detailed info.
by mrz
Thu Jun 29, 2023 10:29 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

Like I said, send a proper bug report to support.
by mrz
Thu Jun 29, 2023 2:00 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

We implemented exactly what was asked by the OP, who confirmed that feature he asked works. Yet you do not provide any useful info no configuration no setup in which it is not working, nothing, just some screenshot by some tool which shows "moderate", which is completely useless to identif...
by mrz
Thu Jun 29, 2023 10:53 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

In my test any external IP address can reach the port, I haven't used that testing tool, just directly opened connections. Please share your testing methodology with us that confirms ANY external IP can reach. And why isn't TCP also supported? There is no rocket science: Open connection from local ...
by mrz
Wed Jun 28, 2023 12:18 pm
Forum: Announcements
Topic: v7.10, 7.10.1 and more [stable] are released!
Replies: 369
Views: 128296

Re: v7.10 and 7.10.1 [stable] is released!

Then what is the point of using CRL at all if you want to know revoked certificates only after certificate validity expires?
by mrz
Tue Jun 27, 2023 5:46 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 35532

Re: Forum moderation volunteers

btw those posts are approved by moderators
by mrz
Tue Jun 27, 2023 1:10 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 35532

Re: Forum moderation volunteers

It did not stop. My comments and many others were simply deleted from the 7.10stable thread and many other threads. Any mention of poor software quality and boom, comment gets deleted. When a version is released there is a bold text "Please keep this forum topic strictly related to this partic...
by mrz
Tue Jun 27, 2023 10:11 am
Forum: Announcements
Topic: WinBox v3.38 released!
Replies: 50
Views: 46808

Re: WinBox v3.38 released!

HYou just set that you do not want to see ipv6 addressees, but all mac protocols are still selected.
by mrz
Mon Jun 26, 2023 12:25 pm
Forum: Forwarding Protocols
Topic: ros7 and prefixes that are aggregate
Replies: 6
Views: 3052

Re: ros7 and prefixes that are aggregate

It could be old software on remote peer that does not support AS4_AGGREGATOR https://www.rfc-editor.org/rfc/rfc6793
by mrz
Thu Jun 22, 2023 11:02 am
Forum: Announcements
Topic: v7.10, 7.10.1 and more [stable] are released!
Replies: 369
Views: 128296

Re: v7.10 [stable] is released!

There are no major changes in firewall.
by mrz
Wed Jun 21, 2023 10:40 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

In my test any external IP address can reach the port, I haven't used that testing tool, just directly opened connections.
by mrz
Mon Jun 19, 2023 12:52 pm
Forum: Forwarding Protocols
Topic: V7 OSPF accept out filter - causes redistribute connected
Replies: 2
Views: 1838

Re: V7 OSPF accept out filter - causes redistribute connected

routing filter and select chains in ROSv7 by design are used to control route redistribution. "redistribute" parameter was added back just for quick redistribution option without using filters.
by mrz
Fri Jun 16, 2023 7:45 pm
Forum: RouterOS beta
Topic: [7.10 stable] DNS Crash
Replies: 54
Views: 10740

Re: [7.10 stable]DO NOT UPDATE!!!

As a potential workaround block access to dns resolver from WAN port and do not flush dns cache on every ppp reconnect.
by mrz
Fri Jun 16, 2023 1:27 pm
Forum: Announcements
Topic: v7.10, 7.10.1 and more [stable] are released!
Replies: 369
Views: 128296

Re: v7.10 [stable] is released!

BFD is working, but I think desired and actual TX/RX intervals are not working.
There's been some confusion with the naming, actual tx actually shows the value of the remote tx interval. But actual tx is actually picked the highest value as it should. Will be fixed in one of the next versions.
by mrz
Tue Jun 13, 2023 12:12 pm
Forum: Announcements
Topic: WinBox v3.38 released!
Replies: 50
Views: 46808

Re: WinBox v3.38 released!

This is nothing new, winbox is a windows application so it is using and expecting \r\n just like any other windows app.
by mrz
Mon Jun 12, 2023 10:37 am
Forum: Forwarding Protocols
Topic: ROSv7 - Filtering ospf routes outbound without using redistribution
Replies: 2
Views: 1998

Re: ROSv7 - Filtering ospf routes outbound without using redistribution

The limitation to filter only "external" routes still apply for output. Input can see and filter any ospf route.
by mrz
Wed Jun 07, 2023 10:46 am
Forum: RouterOS beta
Topic: v7 and BFD, any ETA?
Replies: 148
Views: 26302

Re: v7 and BFD, any ETA?

Winbox support should be in the latest RC.
by mrz
Tue Jun 06, 2023 5:16 pm
Forum: Forwarding Protocols
Topic: SET segment followed by a SEQUENCE segment?
Replies: 2
Views: 3011

Re: SET segment followed by a SEQUENCE segment?

In this case ROS converts AS sequence to AS set because order is not relevant anymore.
by mrz
Mon Jun 05, 2023 9:51 am
Forum: Forwarding Protocols
Topic: BGP Filter
Replies: 7
Views: 2383

Re: BGP Filter

by mrz
Fri Jun 02, 2023 8:55 am
Forum: Forwarding Protocols
Topic: BGP Filter
Replies: 7
Views: 2383

Re: BGP Filter

IGP metic is used only internally, it cannot be sent to remote peers.
by mrz
Thu Jun 01, 2023 10:39 pm
Forum: Forwarding Protocols
Topic: BGP Filter
Replies: 7
Views: 2383

Re: BGP Filter

,,,
by mrz
Thu Jun 01, 2023 10:26 pm
Forum: General
Topic: VRF and failover [SOLVED]
Replies: 1
Views: 839

Re: VRF and failover [SOLVED]

you can set gateway to be resolved in another vrf x.x.x.x@vrf
More info with examples are in the manual
https://help.mikrotik.com/docs/pages/vi ... getreemode
by mrz
Thu Jun 01, 2023 10:19 pm
Forum: Forwarding Protocols
Topic: BGP Filter
Replies: 7
Views: 2383

Re: BGP Filter

To clarify things, you are setting that in output and you expect that remote peer will somehow receive bgp-igp-metric?
by mrz
Wed May 31, 2023 6:14 pm
Forum: Forwarding Protocols
Topic: How to disable ECMP on BGP?
Replies: 11
Views: 4498

Re: How to disable ECMP on BGP?

It is because of incorrect configuration. For BGP best path selection to work, all routes must be received in the same BGP instance.
by mrz
Mon May 29, 2023 9:11 am
Forum: Forwarding Protocols
Topic: using static routes to overide BGP and OSPF internally
Replies: 8
Views: 2245

Re: using static routes to overide BGP and OSPF internally

By routing everything over the tunnel you are routing also tunnel control packets over the tunnel itself making a loop. You need static route to the tunnel endpoint.
by mrz
Fri May 26, 2023 1:17 pm
Forum: Beginner Basics
Topic: How do I make IPv6 work?
Replies: 26
Views: 8497

Re: How do I make IPv6 work?

Because crowd demands
by mrz
Wed May 24, 2023 11:32 am
Forum: Forwarding Protocols
Topic: RouterOS 7: routing "in" matcher against ip firewall ipsets
Replies: 12
Views: 2883

Re: RouterOS 7: routing "in" matcher against ip firewall ipsets

Not sure what you mean with "match if prefix is in each address list network" - did you mean to say "match if prefix is in any of the prefixes listed in the address list"? Yes that is the same as I wrote. And is the logical expectation. Let me explain. Lets say we have address l...
by mrz
Wed May 24, 2023 10:08 am
Forum: Forwarding Protocols
Topic: RouterOS 7: routing "in" matcher against ip firewall ipsets
Replies: 12
Views: 2883

Re: RouterOS 7: routing "in" matcher against ip firewall ipsets

Documentation has all the info:

https://help.mikrotik.com/docs/display/ ... xOperators

dst in address_list means "match if prefix is in address list", not "match if prefix is in each address list network"
by mrz
Tue May 23, 2023 11:55 pm
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 51118

Re: v7.10beta [testing] is released!

As expected (feared), the count is before route filtering, whereas in v6 it was after route filtering. But still better than nothing! If you refer to "filtered" by routing filters then there is no difference filtered or not filtered, total route count stays the same in both cases. And it ...
by mrz
Tue May 23, 2023 6:36 pm
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 51118

Re: v7.10beta [testing] is released!

beta 10 : BGP VPN4 have same problems as before 7.9 ; type "copy" routes, and no BGP attributes
Maybe you didn't actually upgrade, since since beta10 do not have "copy" routes anymore and BGP attributes are there for bgp vpn routes.
by mrz
Tue May 23, 2023 4:56 pm
Forum: Beginner Basics
Topic: How do I make IPv6 work?
Replies: 26
Views: 8497

Re: How do I make IPv6 work?

IPv4 has NAT and devices are not accessible from anywhere on the internet
Security by obscurity is not the way to go. Proper firewall is necessary for both ipv4 and ipv6 to protect the LAN devices.
by mrz
Mon May 22, 2023 2:38 pm
Forum: General
Topic: Routing table ignoring routing mark
Replies: 7
Views: 4746

Re: Routing table ignoring routing mark

It is still ipsec encapsulation/decapsulation and after the encap/decap packet is not the same.
by mrz
Mon May 22, 2023 12:40 pm
Forum: General
Topic: Routing table ignoring routing mark
Replies: 7
Views: 4746

Re: Routing table ignoring routing mark

Look at the packet flow diagram and specifically ispec example https://help.mikrotik.com/docs/display/ROS/Packet+Flow+in+RouterOS If you want to reroute ipsec packets then you have to do routing marks after the ipsec encapsulation. Ipsec doesn't care about any prior marks or prior routing decisions....
by mrz
Mon May 22, 2023 12:15 pm
Forum: Announcements
Topic: v7.9.1 [stable] is released!
Replies: 59
Views: 17920

Re: v7.9.1 [stable] is released!

read the changelog
by mrz
Fri May 19, 2023 5:36 pm
Forum: Forwarding Protocols
Topic: v7 iBPG advertisements 1-way
Replies: 8
Views: 2690

Re: v7 iBPG advertisements 1-way

instance is determined by router id, but also local as for all sessions should be the same for bgp to work properly in such setups.
by mrz
Thu May 18, 2023 9:49 pm
Forum: Forwarding Protocols
Topic: v7 iBPG advertisements 1-way
Replies: 8
Views: 2690

Re: v7 iBPG advertisements 1-way

It is what documentation says even in v7, most likely you have configured two separate instances.
https://help.mikrotik.com/docs/display/ ... neInstance
by mrz
Tue May 16, 2023 11:28 am
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41913

Re: Newsletter #113 | May 2023

Your usage cap is 68M, you will not get more no matter what router you choose, whether it is tplink, mikrotik, cisco, you name it.
by mrz
Tue May 16, 2023 11:05 am
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41913

Re: Newsletter #113 | May 2023

So to sum up. You are complaining that L009 can not push the same amount ipv6 traffic as tplink, yet your ipv6 traffic cap is only 68M, basically you are nowhere near what even hap ac can forward.
by mrz
Thu May 11, 2023 3:01 pm
Forum: Announcements
Topic: FORUM MAINTENANCE: Password reset will be needed
Replies: 162
Views: 43839

Re: FORUM MAINTENANCE: Password reset will be needed

btw Mikrotik's discord server exist:
https://discord.gg/MSNDDD8C
by mrz
Thu May 11, 2023 9:47 am
Forum: Forwarding Protocols
Topic: BGP is broken in 7.8
Replies: 19
Views: 3233

Re: BGP is broken in 7.8

Hit F5 to refresh the winbox table.
by mrz
Mon May 08, 2023 5:01 pm
Forum: General
Topic: Translate ROS6 to ROS7 IP ROUTE
Replies: 12
Views: 881

Re: Translate ROS6 to ROS7 IP ROUTE

gw is nexthop IP address of the device where this network can be reached.
https://help.mikrotik.com/docs/display/ ... utingWorks
by mrz
Mon May 08, 2023 4:48 pm
Forum: General
Topic: Translate ROS6 to ROS7 IP ROUTE
Replies: 12
Views: 881

Re: Translate ROS6 to ROS7 IP ROUTE

interface as a gateway on broadcast networks is not going to work properly on any version.
by mrz
Thu Apr 27, 2023 11:01 pm
Forum: General
Topic: PCC, VPN and routing rules (yes, again!)
Replies: 6
Views: 591

Re: PCC, VPN and routing rules (yes, again!)

I assume that VPN clients are not in the table "to_WAN1", so it is obvious that any packet going from 192.168.100.10 will not be ever forwarded to any VPN client.
by mrz
Wed Apr 26, 2023 8:58 am
Forum: Forwarding Protocols
Topic: RouterOS 7.8 - How to see how many routes are received by a BGP peer?
Replies: 12
Views: 4502

Re: RouterOS 7.8 - How to see how many routes are received by a BGP peer?

Just look at available parameters, bgp.peer-cache-id or belongs-to is the easiest to get all routes from the peer.
by mrz
Tue Apr 25, 2023 11:13 pm
Forum: Forwarding Protocols
Topic: RouterOS 7.8 - How to see how many routes are received by a BGP peer?
Replies: 12
Views: 4502

Re: RouterOS 7.8 - How to see how many routes are received by a BGP peer?

received routes can be seen in /routing route menu, with appropriate params and count-only you can see the number.
by mrz
Tue Apr 25, 2023 12:31 pm
Forum: Forwarding Protocols
Topic: How to change the cost when redistribute-static to ospf
Replies: 2
Views: 1928

Re: How to change the cost when redistribute-static to ospf

in v6 you can't. ROSv7 allows to set ext metric in routing filters.
by mrz
Fri Apr 21, 2023 12:58 pm
Forum: RouterOS beta
Topic: v7 and BFD, any ETA?
Replies: 148
Views: 26302

Re: v7 and BFD, any ETA?

It was mentioned already several times in several different topics that BFD is work in progress.
by mrz
Fri Apr 21, 2023 11:59 am
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75031

Re: v7.9rc is released!

redistribute is not missing, it is named export.redistribute
by mrz
Sat Apr 15, 2023 5:15 pm
Forum: General
Topic: Point to Point Addressing /32 or /31 Default Route [SOLVED]
Replies: 18
Views: 5071

Re: Point to Point Addressing /32 or /31 Default Route [SOLVED]


That is, pardon my language, bullshit on their part.

If they don't support it, then a) document that somewhere
Don't call something a BS, if you are bad at searching
https://help.mikrotik.com/docs/display/ ... l+Overview
by mrz
Thu Apr 13, 2023 8:59 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

endpoint independent mapping will be available in 7.10beta version when its released.
by mrz
Thu Apr 06, 2023 12:16 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75031

Re: v7.9rc is released!

*) ssh - added support for Ed25519 key export and import in PKCS8 format; Yessss.......... Please also fix the missing password parameter on /user ssh-keys private import private-key-file=xxx user=xxx Someone lost it along the way if you want to import the key in interactive mode then for security ...
by mrz
Thu Apr 06, 2023 12:11 pm
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6062

Re: Routers Coming with Default Passwords

any router can be booted into cap mode, especially the ones that have defconf with a password.
by mrz
Thu Apr 06, 2023 11:20 am
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6062

Re: Routers Coming with Default Passwords

Btw you can boot into cap mode and work as usual.
by mrz
Fri Mar 31, 2023 9:53 pm
Forum: Forwarding Protocols
Topic: Passthrough in Routing Filters for documentation purposes
Replies: 4
Views: 2069

Re: Passthrough in Routing Filters for documentation purposes

I assume you mean to create a dummy rule that holds just a comment?
by mrz
Fri Mar 31, 2023 7:11 pm
Forum: Forwarding Protocols
Topic: Passthrough in Routing Filters for documentation purposes
Replies: 4
Views: 2069

Re: Passthrough in Routing Filters for documentation purposes

There is no need for passthrough. It is already passing to the next rule unless explicitly stated to accept or reject.
by mrz
Fri Mar 31, 2023 3:53 pm
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes inside VRF

Currently logic is that since there is no actual BGP connection between VRFs of remote PEs these routes are considered external, because imported from the external source aka from VPNv4. But we can change to 200 it does not make much difference anyway.
by mrz
Fri Mar 31, 2023 3:40 pm
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes inside VRF

origin attribute has nothing to do with whether the route comes from iBGP or eBGP.
IGP means that the route is imported into BGP via BGP networks
EGP historic from EGP protocol
incomplete - imported via other IGP protocols like OSPF or static routes.
by mrz
Fri Mar 31, 2023 11:43 am
Forum: RouterOS beta
Topic: BGP Confederation on Mikrotik V7
Replies: 25
Views: 9395

Re: BGP Confederation on Mikrotik V7

Like I said, if you have a non-working confederation setup with the latest v7 version, contact support.
by mrz
Fri Mar 31, 2023 12:37 am
Forum: RouterOS beta
Topic: BGP Confederation on Mikrotik V7
Replies: 25
Views: 9395

Re: BGP Confederation on Mikrotik V7

Do you still have confederation problems with v7.8 or newer? If yes, contact support.
by mrz
Thu Mar 30, 2023 9:11 pm
Forum: Forwarding Protocols
Topic: Route Filter syntax for 'find'
Replies: 2
Views: 1835

Re: Route Filter syntax for 'find'

rule="if ( comment find your_string ) {}"

or

rule="if ( comment regexp your_regexp ) {}"
by mrz
Thu Mar 30, 2023 7:11 pm
Forum: General
Topic: route in route list is not shown as C (connected) but reachable
Replies: 2
Views: 404

Re: route in route list is not shown as C (connected) but reachable

"connected" is the route type for directly connected networks.
You can find more on routing basics here:
https://help.mikrotik.com/docs/display/ROS/IP+Routing
by mrz
Tue Mar 28, 2023 7:06 pm
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes inside VRF

copying community attribute will be fixed in the next beta.
by mrz
Tue Mar 28, 2023 6:48 pm
Forum: Announcements
Topic: v7.9beta [testing] is released!
Replies: 118
Views: 25329

Re: v7.9beta [testing] is released!

Lease time doesn't do anything to the flash disk. Leases are dynamic and are not stored in the config.
by mrz
Mon Mar 27, 2023 4:53 pm
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes inside VRF

I do not understand how distance is related to attributes being transferred or not, these are completely unrelated things. Also, BGP attributes are forwarded in both cases whether it is iBGP or eBGP. To run BGP best path between BGP routes received within VRF and imported vpnv4 routes, you have to s...
by mrz
Mon Mar 27, 2023 3:35 pm
Forum: RouterOS beta
Topic: ROS 7.8 routing bad bug
Replies: 27
Views: 4176

Re: ROS 7.8 routing bad bug

Hit F5 to refresh the window.
by mrz
Fri Mar 24, 2023 11:23 am
Forum: RouterOS beta
Topic: BGP VPN4 problem on v6 & v7
Replies: 7
Views: 2756

Re: BGP VPN4 problem on v6 & v7

yes
by mrz
Fri Mar 24, 2023 10:15 am
Forum: RouterOS beta
Topic: BGP VPN4 problem on v6 & v7
Replies: 7
Views: 2756

Re: BGP VPN4 problem on v6 & v7

Check v7.9beta4
by mrz
Mon Mar 20, 2023 10:56 am
Forum: Forwarding Protocols
Topic: ROSv7 learns IBGP routes in a vrf as copied routes
Replies: 2
Views: 1831

Re: ROSv7 learns IBGP routes in a vrf as copied routes

Distance problem will be fixed in the next beta version.
by mrz
Fri Mar 17, 2023 9:31 am
Forum: Forwarding Protocols
Topic: How in v7? Selectivity accept prefixes, not load the rest?
Replies: 12
Views: 3034

Re: How in v7? Selectivity accept prefixes, not load the rest?

HW candidate routes can be only active routes and with the HW flag set.
Filtered routes will never be active.
by mrz
Thu Mar 16, 2023 4:11 pm
Forum: Forwarding Protocols
Topic: How in v7? Selectivity accept prefixes, not load the rest?
Replies: 12
Views: 3034

Re: How in v7? Selectivity accept prefixes, not load the rest?

I believe he means "discard from memory". It is not possible, input-nlri and others are used to discard fast, regexps are not fast so are not available as a method to discard bgp update messages directly.
You can only reject with filters.
by mrz
Wed Mar 15, 2023 9:40 am
Forum: General
Topic: Policy-Route Depends on default route ?
Replies: 4
Views: 625

Re: Policy-Route Depends on default route ?

There is no bug, a destination must be resolvable in the main table too.
by mrz
Thu Mar 09, 2023 12:32 pm
Forum: Forwarding Protocols
Topic: IP ROUTE ROS7 between ROS6 problem
Replies: 9
Views: 2357

Re: IP ROUTE ROS7 between ROS6 problem

Unfortunately, I cannot guess the IP addresses, the gateway should be the IP address of the host behind which the network is located.
by mrz
Thu Mar 09, 2023 12:16 pm
Forum: Forwarding Protocols
Topic: Mikrotik sending routes in a vrf and in the main routing table
Replies: 2
Views: 1955

Re: Mikrotik sending routes in a vrf and in the main routing table

Not exactly sure what do you mean by this: However, the routes that are being announced by the mikrotik is being sent to the correct vrf as well as the main routing table of the ibgp peer. If you mean networks that you announce by adding /routing bgp network entries, then yes these entries are sent ...
by mrz
Wed Mar 08, 2023 1:38 pm
Forum: Forwarding Protocols
Topic: IP ROUTE ROS7 between ROS6 problem
Replies: 9
Views: 2357

Re: IP ROUTE ROS7 between ROS6 problem

I already mentioned what is wrong, you cannot use interfaces as gateways on broadcast networks, set IP address instead of an interface. Such setups didn't work reliably on any version including v6.
by mrz
Wed Mar 08, 2023 12:54 pm
Forum: Forwarding Protocols
Topic: IP ROUTE ROS7 between ROS6 problem
Replies: 9
Views: 2357

Re: IP ROUTE ROS7 between ROS6 problem

Setting the interface as a gateway over broadcast networks is an invalid setup.
by mrz
Tue Mar 07, 2023 10:23 am
Forum: General
Topic: PETITION: Request to Forum Admins to prohibit posting of ChatGPT scripts on the forum, without specify the source.
Replies: 75
Views: 6452

Re: PETITION: Request to Forum Admins to prohibit posting of ChatGPT scripts on the forum, without specify the source.

Even long before chatgpt, there were scripts with invented commands and syntax that never existed in RouterOS.
by mrz
Tue Mar 07, 2023 9:31 am
Forum: RouterOS beta
Topic: BGP VPN4 problem on v6 & v7
Replies: 7
Views: 2756

Re: BGP VPN4 problem on v6 & v7

routes on PE received from CE and ones imported from vpnv4 are treated as routes from different instances, so bgp best path selection is not applied here. v7 was initially made to work similarly to v6 until a proper solution is developed. This feature is currently being worked on, so you might see i...
by mrz
Tue Feb 28, 2023 5:08 pm
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 137471

Re: v7.8 [stable] is released!

OSPF relies on multicast to send HELLO packets, altering those multicast packets in any way (including igmp proxy, nat etc) will cause OSPF not to work properly. and after inquiring if this was expected behaviour I got As mentioned previously, OSPF may not work properly with features enabled that a...
by mrz
Tue Feb 28, 2023 2:24 pm
Forum: General
Topic: routing table lookup
Replies: 5
Views: 683

Re: routing table lookup

print where x.x.x.x in dst-address
by mrz
Mon Feb 27, 2023 4:51 pm
Forum: RouterOS beta
Topic: ospf v3 does not work in 7.7
Replies: 8
Views: 3104

Re: ospf v3 does not work in 7.7

Not enough info, send a supout file to support.
by mrz
Mon Feb 27, 2023 1:38 pm
Forum: RouterOS beta
Topic: BGP for IPv6 not working in vultr
Replies: 8
Views: 2938

Re: BGP for IPv6 not working in vultr

not enough information. If it is multihop bgp then probably you need to adjust scopes to recursively resolve the gateways of BGP routes.
by mrz
Fri Feb 24, 2023 3:58 pm
Forum: Forwarding Protocols
Topic: BGP multiple Instances and Route advertisement
Replies: 5
Views: 2235

Re: BGP multiple Instances and Route advertisement

In ROSv6 BGP Networks are always sent to all instances. You need to use routing filters as pe1chl already mentioned.
by mrz
Fri Feb 24, 2023 1:30 pm
Forum: Forwarding Protocols
Topic: BGP multiple Instances and Route advertisement
Replies: 5
Views: 2235

Re: BGP multiple Instances and Route advertisement

by default routes from one instance to another instance is not redistributed unless you have enabled redistribution in the instance config.
by mrz
Thu Feb 23, 2023 11:29 pm
Forum: Forwarding Protocols
Topic: BGP MED - ROS v7.7
Replies: 5
Views: 2559

Re: BGP MED - ROS v7.7

I do not know why you cannot see bgp parameters unless those routes are not BGP routes" [admin@dr_05] > /routing/route/print detail Flags: X - disabled, F - filtered, U - unreachable, A - active; c - connect, s - static, r - rip, b - bgp, o - ospf, d - dhcp, v - vpn, m - modem, a - ldp-address,...
by mrz
Thu Feb 23, 2023 10:04 am
Forum: Forwarding Protocols
Topic: BGP MED - ROS v7.7
Replies: 5
Views: 2559

Re: BGP MED - ROS v7.7

You already can see routes received by specific peer before and after filters and all the attributes. See /routing/route menu
by mrz
Thu Feb 23, 2023 1:29 am
Forum: Forwarding Protocols
Topic: BGP MED - ROS v7.7
Replies: 5
Views: 2559

Re: BGP MED - ROS v7.7

That is not entirely true. Cisco by default works similarly. You have to explicitly enable "bgp always-compare-med".

Read more here:
https://www.cisco.com/c/en/us/support/d ... p-med.html

RouterOS currently do not have such options to play with.
by mrz
Tue Feb 21, 2023 12:15 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

That is what I have asked previously where is the magic? If both consoles are using the same source port and the same dst-address with the same dst port, then, when 1.2.3.4:3478 sends packet to 3.4.5.6:12345 what magic should happen for router to guess which one of 192.168.88.x:1234 is the real rec...
by mrz
Mon Feb 20, 2023 11:38 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

The reason is simple. When you have a host that initiates a stun connection request to 1.2.3.4:3478, and the IP of the game console is 192.168.88.10 and the external network IP is 3.4.5.6, then using netmap, it will look like this in the firewall-connection: src-address=192.168.88.10:12345 dst-addr...
by mrz
Sun Feb 19, 2023 12:05 pm
Forum: Forwarding Protocols
Topic: How to trace/remove rogue route?
Replies: 1
Views: 1875

Re: How to trace/remove rogue route?

Dir is RIP route, and it cannot cause any actual forwarding problems because this route is inactive.
by mrz
Fri Feb 17, 2023 4:54 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

here is fullcone NAT from cisco and juniper https://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/217599-understand-nat-to-enable-peer-to-peer-co.html From that cisco manual: Cisco IOS® routers' NAT implementation when it performs PAT is symmetric by default. Therefore, you ...
by mrz
Fri Feb 17, 2023 1:04 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

We can implement it and maybe call it "tetrahedron nat" to avoid confusion.
by mrz
Fri Feb 17, 2023 12:53 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

But that is what I am trying to say, what you describe does not match the definition of "full cone nat" in RFC 3489. It is something else. Do you know any standard, document/specification, or RFC that describes this type of nat? Or it is just someone's interpretation of what a "full c...
by mrz
Fri Feb 17, 2023 12:23 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

No wonder that rfc 3489 is obsolete and does not mention any cones or other shapes of NAT anywhere else.
by mrz
Fri Feb 17, 2023 12:17 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

You keep mentioning rfc3489 which clearly says what "full cone nat" is supposed to be. "A full cone NAT is one where all requests from the same internal IP address and port are mapped to the same external IP address and port. Furthermore, any external host can send a packet to the int...
by mrz
Fri Feb 17, 2023 10:14 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

Full cone nat is just a fancy name for 1:1 nat or static nat or whatever you want to call it. It is achievable in ROS by adding one srcnat and one dstnat rule, thats it. Or by "full cone support" you mean adding checkbox "enable full cone nat" next to "enable nat" in qu...
by mrz
Tue Feb 14, 2023 5:58 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

That is not a full cone but restricted cone. Restricted Cone: A restricted cone NAT is one where all requests from the same internal IP address and port are mapped to the same external IP address and port. Unlike a full cone NAT, an external host (with IP address X) can send a packet to the internal...
by mrz
Tue Feb 14, 2023 5:05 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

RFC states: Full Cone: A full cone NAT is one where all requests from the same internal IP address and port are mapped to the same external IP address and port. Furthermore, any external host can send a packet to the internal host, by sending a packet to the mapped external address. So full cone con...
by mrz
Mon Feb 13, 2023 6:44 pm
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 291
Views: 38961

Re: FEATURE REQUEST: full cone NAT

Any modern competitive game uses client-server approach, for others mostly uPnp is enough, so it is only some edge cases that would benefit from cone NAT.
by mrz
Mon Feb 13, 2023 3:04 pm
Forum: Forwarding Protocols
Topic: ROS V7 OSPF Neighbors
Replies: 5
Views: 2373

Re: ROS V7 OSPF Neighbors

Dynamically discovered neighbors were always dynamic, so it is not clear what exactly you are asking.
by mrz
Mon Feb 13, 2023 9:47 am
Forum: Forwarding Protocols
Topic: ROS7 OSPF Static route to PPPOE interface not Redistributing
Replies: 4
Views: 2556

Re: ROS7 OSPF Static route to PPPOE interface not Redistributing

ROSv7 static route is only when you manually add it by hand. Routes added by VPN protocols are vpn routes.
by mrz
Fri Feb 10, 2023 12:34 pm
Forum: Forwarding Protocols
Topic: SNMP ISSUE ON V7.6 & 7.7
Replies: 9
Views: 3752

Re: SNMP ISSUE ON V7.6 & 7.7

SNMP has timeout, if you are trying to monitor something that could take a lot of time to process, then it will time out, for example large routing tables.
by mrz
Fri Feb 10, 2023 12:19 pm
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes on BGP

Right now we are working on changes to get full set of BGP attributes for ip routes in the vrf.
by mrz
Fri Feb 10, 2023 12:10 am
Forum: Forwarding Protocols
Topic: BGP attributes inside VRF
Replies: 17
Views: 3994

Re: BGP attributes on BGP

Yes, that is correct, currently BGP is not copying BGP attributes from VPNv4 route to copy route.
by mrz
Wed Feb 08, 2023 11:04 am
Forum: Scripting
Topic: unknown on vrf interfaces
Replies: 24
Views: 4273

Re: unknown on vrf interfaces

v6 does not allow to set interface list in vrf config, v7 does and solves all the problems with dynamic interfaces and vrfs
by mrz
Tue Feb 07, 2023 2:56 pm
Forum: Scripting
Topic: unknown on vrf interfaces
Replies: 24
Views: 4273

Re: unknown on vrf interfaces

Adding dynamic items in the static config is not a good idea. v7 solves this problem by using interface lists. how the issue has been solved in v7? As far as i know if the dynamic interface disappear, will also affect in to interface lists. There are different methods to add interfaces to interface...
by mrz
Tue Feb 07, 2023 10:36 am
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 72213

Re: v7.8beta [testing] is released!

And still a -1 to the :execute changes here.
:execute change was a mistake for this beta and will be fixed in the next beta.
by mrz
Mon Feb 06, 2023 4:06 pm
Forum: General
Topic: Winbox mac-connect Windows 11 not working
Replies: 15
Views: 3762

Re: Winbox mac-connect Windows 11 not working

Set dummy IP on the Windows, routeros default config is to apply config to the router not on windows.
by mrz
Mon Feb 06, 2023 3:51 pm
Forum: Scripting
Topic: unknown on vrf interfaces
Replies: 24
Views: 4273

Re: unknown on vrf interfaces

Changing config in the VRF will flap the VRF. Instead I would suggest to add static entries for each l2tp user in /interface l2tp_server and use that for VRF config, instead of adding dynamic entries and then trying to deal with the consequences via scripts.
by mrz
Mon Feb 06, 2023 3:36 pm
Forum: Scripting
Topic: unknown on vrf interfaces
Replies: 24
Views: 4273

Re: unknown on vrf interfaces

Adding dynamic items in the static config is not a good idea.
v7 solves this problem by using interface lists.
by mrz
Mon Feb 06, 2023 2:59 pm
Forum: General
Topic: Winbox mac-connect Windows 11 not working
Replies: 15
Views: 3762

Re: Winbox mac-connect Windows 11 not working

Try to set some dummy IP in ipv4 settings (instead of dhcp). Windows may not send out broadcast packet if there is no ip config.
by mrz
Mon Feb 06, 2023 11:36 am
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 72213

Re: v7.8beta [testing] is released!

It is printed only when you run it manually from the terminal. The point is that you can use it in the scripts.
by mrz
Mon Feb 06, 2023 11:10 am
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 72213

Re: v7.8beta [testing] is released!

Another big one is "count-only". You can print count-only, but you cannot "get" it. And when you print count-only you cannot use "as-value". Not sure what do you mean by "get", if you mena to use the value in scripts you can certainly do it [admin@3C22-atombu...
by mrz
Mon Jan 30, 2023 7:22 pm
Forum: Forwarding Protocols
Topic: BGP filtering [SOLVED]
Replies: 20
Views: 4794

Re: BGP filtering [SOLVED]

You can definitely run BGP and other services on the same router, bout you must understand the limitations when you are running multihoming setup.
by mrz
Mon Jan 30, 2023 12:11 pm
Forum: Forwarding Protocols
Topic: BGP filtering [SOLVED]
Replies: 20
Views: 4794

Re: BGP filtering [SOLVED]

v7 default is reject
by mrz
Mon Jan 30, 2023 9:16 am
Forum: General
Topic: v7.7 ipv6 policy routing example [SOLVED]
Replies: 4
Views: 898

Re: v7.7 ipv6 policy routing example [SOLVED]

NAT is not needed for policy routing. It works exactly as for ipv4, add routing table, mark connection, mark routing and set routes in the routing table.
by mrz
Fri Jan 27, 2023 11:58 am
Forum: Forwarding Protocols
Topic: Preferred route for multihomed BGP
Replies: 5
Views: 2398

Re: Preferred route for multihomed BGP

multiple different local AS numbers and/or multiple different router-ids breaks BGP sessions in multiple instances.
by mrz
Thu Jan 26, 2023 8:43 am
Forum: Forwarding Protocols
Topic: Preferred route for multihomed BGP
Replies: 5
Views: 2398

Re: Preferred route for multihomed BGP

BGP Best path selection works only if sessions are in the same instance, in your config obviously each session is in separate instance.
by mrz
Wed Jan 25, 2023 5:34 pm
Forum: Forwarding Protocols
Topic: ROS 7.7 BGP Warnings? [SOLVED]
Replies: 3
Views: 2929

Re: ROS 7.7 BGP Warnings? [SOLVED]

No, there is nothing wrong in your setup.
by mrz
Wed Jan 25, 2023 5:05 pm
Forum: Forwarding Protocols
Topic: ROS 7.7 BGP Warnings? [SOLVED]
Replies: 3
Views: 2929

Re: ROS 7.7 BGP Warnings? [SOLVED]

AS path can be encoded in two ways, as set and sequence.
Warning indicates that peer received aggregated route where part of the as path is encoded as set and other as sequence, and converts whole as path to as set.
by mrz
Wed Jan 25, 2023 1:37 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 72213

Re: v7.8beta [testing] is released!

It is already fixed in v7.7 and v7.8betas
by mrz
Thu Jan 19, 2023 1:19 pm
Forum: General
Topic: Learned BGP routes are not advertised to peers [SOLVED]
Replies: 2
Views: 953

Re: Learned BGP routes are not advertised to peers [SOLVED]

You have two different local ASes, which is considered to be two separate BGP instances. You need to run one instace (preferred) or enable output.redistribute=bgp
by mrz
Wed Jan 18, 2023 8:46 pm
Forum: Forwarding Protocols
Topic: CHR on VM but NO L2 MTU listed
Replies: 1
Views: 1949

Re: CHR on VM but NO L2 MTU listed

L2MTU is only on interfaces of MikroTik manufactured devices. Generic drivers do not have L2MTU support.
by mrz
Tue Jan 17, 2023 2:27 pm
Forum: Announcements
Topic: v7.7 [stable] is released!
Replies: 357
Views: 112142

Re: v7.7 [stable] is released!

It is not a bug.
by mrz
Tue Jan 17, 2023 2:20 pm
Forum: Announcements
Topic: v7.7 [stable] is released!
Replies: 357
Views: 112142

Re: v7.7 [stable] is released!

As it is mentioned in the article you cannot disable synchronisation.
by mrz
Tue Jan 17, 2023 12:26 pm
Forum: Announcements
Topic: v7.7 [stable] is released!
Replies: 357
Views: 112142

Re: v7.7 [stable] is released!

we are currently having issues to advertise networks that are not static assigned within the /ip address or static routes from both ends using eBGP.
https://help.mikrotik.com/docs/display/ ... s-Networks
by mrz
Tue Jan 17, 2023 12:01 pm
Forum: Forwarding Protocols
Topic: ROS V7 FILTER RULE [SOLVED]
Replies: 4
Views: 2970

Re: ROS V7 FILTER RULE [SOLVED]

You can find examples on how to do this here: https://help.mikrotik.com/docs/display/ROS/Moving+from+ROSv6+to+v7+with+examples#MovingfromROSv6tov7withexamples-RoutingFilters and here, you can also find how to use new BGP as path matchers: https://help.mikrotik.com/docs/display/ROS/Route+Selection+an...
by mrz
Tue Jan 17, 2023 11:38 am
Forum: Forwarding Protocols
Topic: OSPF - Locate designated router!
Replies: 1
Views: 2080

Re: OSPF - Locate designated router!

/routing ospf neighbor print shows the IDs of the DR and BDR.
by mrz
Mon Jan 16, 2023 12:23 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 25
Views: 11914

Re: BGP + static candidate routes: ROS picks the wrong one??

v7 do not have this problem.
by mrz
Mon Jan 16, 2023 12:21 pm
Forum: Forwarding Protocols
Topic: ROS V7 FILTER RULE [SOLVED]
Replies: 4
Views: 2970

Re: ROS V7 FILTER RULE [SOLVED]

bgp-as-path-slow-legacy has the same syntax as regexps in ROSv6, so the same regexp should work in ROSv7.
by mrz
Fri Jan 13, 2023 2:26 pm
Forum: Announcements
Topic: v7.7 [stable] is released!
Replies: 357
Views: 112142

Re: v7.7 [stable] is released!

what and where exactly is doubled? As far as I can see routing marks are exactly the same number as being added, nothing is doubled.
by mrz
Fri Jan 13, 2023 12:56 pm
Forum: General
Topic: Heise router IPv6 test - without MikroTik
Replies: 13
Views: 1881

Re: Heise router IPv6 test - without MikroTik

Not enough context to comment on this. What was tested and what exactly failed?
by mrz
Fri Jan 06, 2023 6:37 pm
Forum: General
Topic: Login with Default Admin and No Password is Failing
Replies: 27
Views: 17316

Re: Login with Default Admin and No Password is Failing

New "home oriented" devices come with a password from the factory, the password should be on the label.
by mrz
Fri Jan 06, 2023 4:47 pm
Forum: Forwarding Protocols
Topic: RoS 7.6 OSPFv3 IPv6 and Filter BUG
Replies: 5
Views: 2707

Re: RoS 7.6 OSPFv3 IPv6 and Filter BUG

OSPF can distribute only best route. There is no way that route with distance 2 is also active at the same time when route with distance 1 is active. So OSPF always distributes the first route. When the first route becomes inactive route with distance 2 will become best and will be redistributed and...
by mrz
Fri Jan 06, 2023 1:29 pm
Forum: General
Topic: Could not resolve dns name [SOLVED]
Replies: 5
Views: 2719

Re: Could not resolve dns name [SOLVED]

Because you are dropping it in input chain. Add rules to accept ICMP and any other protocol to make it work or add rule to accept established connections.
by mrz
Thu Jan 05, 2023 3:09 pm
Forum: Forwarding Protocols
Topic: ospf between routeros 6.4x and 7.6 not working [SOLVED]
Replies: 4
Views: 3179

Re: ospf between routeros 6.4x and 7.6 not working [SOLVED]

checksum problem is fixed in v7.7rc4
by mrz
Tue Jan 03, 2023 5:42 pm
Forum: Forwarding Protocols
Topic: v7: BGP - dump-saved-advertisements
Replies: 24
Views: 7320

Re: v7: BGP - dump-saved-advertisements

Moved to /routing/bgp/advertisements in the final version.
by mrz
Fri Dec 30, 2022 11:40 am
Forum: General
Topic: Ipv6 DHCP server static leases
Replies: 8
Views: 1625

Re: Ipv6 DHCP server static leases

RouterOS DHCPv6 server can delegate only prefixes, for your setup, you will need to continue to use dnsmasq
https://help.mikrotik.com/docs/display/ ... CPv6Server
by mrz
Fri Dec 30, 2022 11:37 am
Forum: General
Topic: Support RFC3021 /31 Point to Point on any ROS version ?
Replies: 10
Views: 3682

Re: Support RFC3021 /31 Point to Point on any ROS version ?

You do not need /30

/32 works with /31 on the remote side.
It may not work if your mentioned firewall is not set up properly and blocks the traffic or incorrectly set up a routing table that does not allow route traffic through the router.
by mrz
Wed Dec 28, 2022 4:40 pm
Forum: Forwarding Protocols
Topic: Routing rule use cases
Replies: 16
Views: 15502

Re: Routing rule use cases

We are well aware of theoretical usecases.

What is being asked is use case in the real setup and why the route rules were used instead of other means to achieve the goal.
by mrz
Wed Dec 28, 2022 2:13 pm
Forum: Forwarding Protocols
Topic: Routing rule use cases
Replies: 16
Views: 15502

Routing rule use cases

We would like to know the typical use cases of routing rules and the reason why such an approach is used.
by mrz
Tue Dec 27, 2022 1:42 pm
Forum: General
Topic: Ipv6 DHCP server static leases
Replies: 8
Views: 1625

Re: Ipv6 DHCP server static leases

IPv6 DHCP doesn't bind to mac address, but to IAID and DUID
by mrz
Fri Dec 23, 2022 11:35 am
Forum: Announcements
Topic: v7.7rc is released!
Replies: 259
Views: 88433

Re: v7.7rc is released!

if you are using GCM only then set auth-algorithms=""
  • 1
  • 2
  • 3
  • 4
  • 5
  • 24