Community discussions

Search found 398 matches

  • 1
  • 2
by jorj
Thu Jun 13, 2013 12:01 pm
Forum: General
Topic: Allow access from outside to internal web server!
Replies: 6
Views: 2380

Re: Allow access from outside to internal web server!

Specific answers require specific questions. Please be more explicit in order to cleverly use your time and our time also. ;)
by jorj
Fri Jul 01, 2011 1:36 pm
Forum: General
Topic: IPv4, IPv6 QOS.... how do they interact?
Replies: 3
Views: 795

Re: IPv4, IPv6 QOS.... how do they interact?

put them on different routers.
it will well worth your money and your time after doing that.
by jorj
Thu Jun 30, 2011 12:11 pm
Forum: General
Topic: using winbox in nat network
Replies: 1
Views: 725

Re: using winbox in nat network

make a vpn to your network, and don't put any bridge on it. it couldn't work that way, if you have nat enabled.
see pptp for details.
by jorj
Thu Jun 30, 2011 12:08 pm
Forum: Beginner Basics
Topic: prioritize some protocols with limit down-upload bandwith
Replies: 1
Views: 679

Re: prioritize some protocols with limit down-upload bandwit

If you have simple queues at this moment, as I understand, the simplest way is to put a simple queue for each kind of traffic that you want prioritised, and put a higher priority to that queue. This way, that traffic would go first. I it's needed, mark it with mangle rules.
Else, use queue tree.
by jorj
Thu Jun 30, 2011 12:06 pm
Forum: Wireless Networking
Topic: connection between antena and AP
Replies: 2
Views: 572

Re: connection between antena and AP

This should be on a dlink forum. :)

On some devices there is a telnet client. Tabs shou you the commands.
by jorj
Thu Jun 30, 2011 11:56 am
Forum: Scripting
Topic: script to change ssid
Replies: 1
Views: 931

Re: script to change ssid

Use connect lists.

Or leave ssid blank, but that "might" be dangerous. :)
by jorj
Thu Jun 30, 2011 11:54 am
Forum: General
Topic: L2VPN
Replies: 1
Views: 771

Re: L2VPN

http://www.routerboard.com/pdf/RouterBO ... arison.pdf

That should be your answer.
See packets/mb per second in respect to your applications.
by jorj
Thu Jun 30, 2011 11:51 am
Forum: The User Manager
Topic: user disconnectingg
Replies: 2
Views: 783

Re: user disconnectingg

What client for vpn, what kind of vpn on the router, detail, detail, detail !
by jorj
Thu Jun 30, 2011 11:46 am
Forum: Beginner Basics
Topic: ftp traffic
Replies: 2
Views: 652

Re: ftp traffic

what do you want to see ?
exactly what passes trough it ( the packets ), or how much bandwidth are you using ?
by jorj
Thu Jun 30, 2011 8:41 am
Forum: Beginner Basics
Topic: Setting up network.
Replies: 4
Views: 835

Re: Setting up network.

Make sure your dhcp config is right. run /ip dhcp-server setup from console, and see what happens, after you disable the initial config of dhcp server. Check that you have the correct interfaces set-up, and that the masquerade is correct. put here an export of /ip dhcp-server, and of the /ip firewal...
by jorj
Wed Jun 29, 2011 2:17 pm
Forum: Beginner Basics
Topic: Setting up network.
Replies: 4
Views: 835

Re: Setting up network.

Create DHCP "client" on the interface facing the modem, and DHCP "server" on the interface facing your computer.
It is probably you are to NAT the interface facing to the computer for this to work.
Why are you adding the switch ?
by jorj
Tue Jun 21, 2011 9:20 am
Forum: Forwarding Protocols
Topic: OSPF works than STOPS by ITSELF
Replies: 19
Views: 5677

Re: OSPF works than STOPS by ITSELF

:D
It works !


Add /32 on bridge, all ok.
by jorj
Mon Jun 20, 2011 9:26 am
Forum: Forwarding Protocols
Topic: OSPF works than STOPS by ITSELF
Replies: 19
Views: 5677

Re: OSPF works than STOPS by ITSELF

K. 'll try that today, asap.
by jorj
Sun Jun 19, 2011 9:57 am
Forum: Forwarding Protocols
Topic: OSPF works than STOPS by ITSELF
Replies: 19
Views: 5677

Re: OSPF works than STOPS by ITSELF

Are you saying that adding a bridge, with no physical interfaces linked to it, and adding an ip address on that bridge, solves this issue ? What would you suggest that the router id might be: the ip on the recently created bridge ? And also, would the subnet on the bridge added to the ospf/networks ...
by jorj
Tue Apr 26, 2011 10:35 am
Forum: RouterBOARD hardware
Topic: Getting the most out of this forum
Replies: 21
Views: 95385

Re: Getting the most out of this forum

:-D :roll:
Still good. :)
( sorry for "copying" that )
by jorj
Tue Apr 26, 2011 9:13 am
Forum: RouterBOARD hardware
Topic: Getting the most out of this forum
Replies: 21
Views: 95385

Re: Getting the most out of this forum

Reading this will _absolutely_ help:

http://www.catb.org/~esr/faqs/smart-questions.html
by jorj
Thu Mar 24, 2011 12:57 pm
Forum: The Dude
Topic: How to measure bandwidth at a router
Replies: 8
Views: 2549

Re: How to measure bandwidth at a router

Would the graphing option included in routeros be enough for that ? Not as a probe, but to effectively see that.
by jorj
Thu Mar 24, 2011 12:56 pm
Forum: Beginner Basics
Topic: problems with remote access
Replies: 4
Views: 727

Re: problems with remote access

You don't need any dst-nat rule in there.

Again: /30 address on WAN, /28 on your LAN side.
Any address on the LAN side should be on teh /28 subnet.
by jorj
Thu Mar 24, 2011 12:23 pm
Forum: Beginner Basics
Topic: config import not as expected.
Replies: 20
Views: 4557

Re: config import not as expected.

Import it into parts...... as separate rsc scripts.
It's been a missing part in export/import since 2.6 version.
Split it into parts, like /ip, /interface, and import them one at a time.
You should also be able to detect the thing that's troubling you this way.
by jorj
Sun Dec 12, 2010 6:32 pm
Forum: RouterBOARD hardware
Topic: RB112 and RB133 100% CPU Usage
Replies: 22
Views: 6312

Re: RB112 and RB133 100% CPU Usage

3.30 runs HORRIBLE on an RB112, they should offer a download of 2.97 on the site for those who were foolish enough to install it.
Is there anything stopping you to downgrade ?
by jorj
Fri Aug 06, 2010 9:37 pm
Forum: Wireless Networking
Topic: Wds-Bridge ok but No communications between lans
Replies: 10
Views: 2686

Re: Wds-Bridge ok but No communications between lans

As told before. What is the purpose of WDS since you have a routed network and do not care about MAC ?!? Put Ap-bridg -> Station for each wireless link. It does not matter for the performance, and in my opinion is much better and simpler than wds. Put an IP address for each subnet on your border rou...
by jorj
Fri Aug 06, 2010 12:26 pm
Forum: Wireless Networking
Topic: Wds-Bridge ok but No communications between lans
Replies: 10
Views: 2686

Re: Wds-Bridge ok but No communications between lans

Make them all routed, each router handles his own subnet. It does not matter how you connect thw wireless paths, as long as you can ping each end. Add routes to each subnet on your border router. Make this border router your default gateway for the other routers. You have connectivity from all other...
by jorj
Fri Aug 06, 2010 9:41 am
Forum: General
Topic: CHALLENGE!! (Create a dynamic QOS that deprioritizes)
Replies: 51
Views: 8016

Re: CHALLENGE!! (Create a dynamic QOS that deprioritizes)

You 'done it' yet ?

C'mon. get on with it.

Stop reading silly posts on forums.
Post useful comments. This is for help, not for "small talk".
;)

( nothing personal, no offence. )
by jorj
Fri Aug 06, 2010 9:37 am
Forum: Wireless Networking
Topic: Wds-Bridge ok but No communications between lans
Replies: 10
Views: 2686

Re: Wds-Bridge ok but No communications between lans

i create a wds-bridge because the idea is at office 2 & 3 get the routers out, and bring internet from office 1. But "the customer" want to conservate the subnets 2.x and 3.x because the switches and pcs have to be conservates with these ips. Office 2 and 3 get internet from office 1, and only want...
by jorj
Thu Aug 05, 2010 10:13 am
Forum: General
Topic: Amount of rules
Replies: 19
Views: 2095

Re: Amount of rules

Also don't look at CPU usage in Winbox, displaying real time information about all your rules also takes CPU resources. Close winbox and see the CPU usage in SSH We got that. :) Wanted to ask you a long-time ago. How much resources on rb4xx series, for example ? 1% - 2% ? or a more significant amou...
by jorj
Wed Aug 04, 2010 3:44 pm
Forum: Wireless Networking
Topic: Wds-Bridge ok but No communications between lans
Replies: 10
Views: 2686

Re: Wds-Bridge ok but No communications between lans

From your configuration, considering your locations have different subnets, I don't see why are you using bridges and WDS at all. You should make a simple routed network, add routes to your border router, and NAT only that, if necessary. Add static routes to each of your routers, or enable OSPF on t...
by jorj
Wed Aug 04, 2010 9:01 am
Forum: General
Topic: RB750G
Replies: 7
Views: 1161

Re: RB750G

For up to 5 to 10 megs of traffic, no matter what are you doing with that board, i don't think it does matter wich model you choos, as long as it has the features you request. I still have in use RB133c/RB112/RB133, wich handle more than 5 mb each, cpu max 50%, some simple queues on them, and 2 to 3...
by jorj
Wed Aug 04, 2010 8:53 am
Forum: General
Topic: Amount of rules
Replies: 19
Views: 2095

Re: Amount of rules

/system check-installation
/system check-disk
Later. Because of users...
yes, for check-disk you are disconecting everybody for a few minutes.
by jorj
Wed Aug 04, 2010 8:19 am
Forum: General
Topic: CHALLENGE!! (Create a dynamic QOS that deprioritizes)
Replies: 51
Views: 8016

Re: CHALLENGE!! (Create a dynamic QOS that deprioritizes)

http://wiki.mikrotik.com/wiki/Limiting_ ... ser_levels

Check this.

You can adapt it to manage different kinds of traffic (HTTP, FTP, P2P), with enough work.
Just an example, tangent somehow to your request.
by jorj
Wed Aug 04, 2010 8:12 am
Forum: General
Topic: Amount of rules
Replies: 19
Views: 2095

Re: Amount of rules

/system check-installation
/system check-disk
by jorj
Tue Aug 03, 2010 5:00 pm
Forum: General
Topic: CHALLENGE!! (Create a dynamic QOS that deprioritizes)
Replies: 51
Views: 8016

Re: CHALLENGE!! (Create a dynamic QOS that deprioritizes)

There was an example at some point in the forum, I think, wich kept evidence of total-bytes.
Combine that with simple queues, or queue tree, and you might have something to work on.

When I find that link maybe I'll try put it here.
by jorj
Tue Aug 03, 2010 3:16 pm
Forum: General
Topic: RB750G
Replies: 7
Views: 1161

Re: RB750G

by jorj
Tue Aug 03, 2010 3:11 pm
Forum: General
Topic: Amount of rules
Replies: 19
Views: 2095

Re: Amount of rules

If you mainly have problems at times, do a snooper or do a traffic analysis at that time.
99% of the cases, you get interference from yourself or other networks.
Also see if the noise on the link has different levels when you have good and bad links.

Check that, just in case.
by jorj
Tue Aug 03, 2010 9:50 am
Forum: Wireless Networking
Topic: Virtual AP not working
Replies: 9
Views: 3280

Re: Virtual AP not working

Check if mac winbox sees your router from the wireless connected device, to check for connectivity.
If so, then you try setting up a dhcp server on the interface directly ( on the vap, meaning ), and see if you have connectivity.
by jorj
Tue Dec 15, 2009 12:37 pm
Forum: RouterBOARD hardware
Topic: RB112 and RB133 100% CPU Usage
Replies: 22
Views: 6312

Re: RB112 and RB133 100% CPU Usage

Tried with the bootloader 2.14, from previous links ?
by jorj
Sat Nov 28, 2009 10:48 am
Forum: RouterBOARD hardware
Topic: RB112 and RB133 100% CPU Usage
Replies: 22
Views: 6312

Re: RB112 and RB133 100% CPU Usage

Forgot to mention.
On RB333 works just fine, from the begining.
That is powerfull enough not to give you any problems.
by jorj
Sat Nov 28, 2009 10:47 am
Forum: RouterBOARD hardware
Topic: RB112 and RB133 100% CPU Usage
Replies: 22
Views: 6312

Re: RB112 and RB133 100% CPU Usage

I confirm that Router OS 4.3 works fine in RB133c, used as AP (I still have some of the preproduction samples, with L4 on them).
Used with advanced-tools, dhcp, hotspot, routerboard, security, system and wireless packages.
Firmware 2.14.

Cpu usage 5%-15%, minimal load on the ap at the testing moment.
by jorj
Fri Jan 23, 2009 8:25 am
Forum: General
Topic: Hi Ping with Wireless Clients
Replies: 11
Views: 5033

Re: Hi Ping with Wireless Clients

Hi. If it's not that late my answer, your firewall rules will probably not improve your latency in the network, if you have such a high level of noise. Post a snooper print screen here, from the access point. If I were you, I would consider changing the radio frequency, or, to spare some money, keep...
by jorj
Fri Nov 07, 2008 11:17 pm
Forum: General
Topic: Flash disk writes
Replies: 7
Views: 4064

Re: Flash disk writes

I _never_ had a problem with a usb/sd/compact flash from sandisk. No, no advertising. Just opinion. I have had princeton and kingkston usb sticks fail by the douzins, in the corporate network. As of the routerboards, it's NAND in them, it should be ok for 100.000 writes, _each_ sector. So, it should...
by jorj
Sun Oct 19, 2008 12:47 pm
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Re: Checking wich SSID are we connected with ?

Got that, from the first post.
Thank you.

:idea:
:wink:
by jorj
Wed Oct 15, 2008 7:55 pm
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Re: Checking wich SSID are we connected with ?

:) Yes, for log, i know the topic must be put. Just missed it. For the script, it is perfectly acceptable, and there will be two checkings, meaning two if's, to verify what I want. Is there in the scripting something similar to the DO CASE CASE X instructions CASE Y instructions OTHER default action...
by jorj
Mon Oct 13, 2008 10:10 pm
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Re: Checking wich SSID are we connected with ?

it actually very simple script: :global previousssid; :if ($previousssid != [/interface wireless get wlan1 ssid]) do={ :put "ssid changed"; :set previousssid [/interface wireless get wlan1 ssid]; } of course, you can simple put exchange with log, or whatever action, and run this script once every "...
by jorj
Thu Oct 09, 2008 1:23 pm
Forum: The Dude
Topic: discovering entire internet !
Replies: 11
Views: 2342

Re: discovering entire internet !

That's how I do it, but anyways I would prefer if it could recgonize subnets, which should be possible, as al subnets arecreated using MT, so it could get even network masks.. Actually, it can't do that, depending on where are you scanning. If you are in the same broadcast domain, it might do it, b...
by jorj
Thu Oct 09, 2008 1:20 pm
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Re: Checking wich SSID are we connected with ?

well, if this is your local network and if it is you can route it. While this is doable with pure scripting i see no gain of doing that, due to simpler solution available out of the box. Just make sure your DHCP will not give out any other address, thats why i proposed that you make static lease fo...
by jorj
Thu Oct 09, 2008 8:11 am
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Re: Checking wich SSID are we connected with ?

simple static dhcp on APs does not work? and with script check ssid, if link ok, then stop, esle change ssid, so your client connects to other ap and gets ip address, netowrk settings and all. :put [/in wireless get wlan1 running] edit: or just use connect-list feature where you can set up to what ...
by jorj
Tue Oct 07, 2008 4:07 pm
Forum: Scripting
Topic: Interface log status script
Replies: 2
Views: 1308

Re: Interface log status script

/tool netwatch add host=x.x.x.x down-script={ :log info "Link is down"; } up-script={ :log info "Link is UP"; } This works if the ip address x.x.x.x you are watching is ONLY available trough that interface. In routers with multiple interfaces, that may have different routes to a specified ip, this ...
by jorj
Tue Oct 07, 2008 3:59 pm
Forum: Scripting
Topic: Auto Upgrade
Replies: 5
Views: 4796

Re: Auto Upgrade

How about using fetch to get the update file on the router ? The inconvenient would be that you have to know the name of the file.......
by jorj
Tue Oct 07, 2008 2:57 pm
Forum: Scripting
Topic: Checking wich SSID are we connected with ?
Replies: 10
Views: 2286

Checking wich SSID are we connected with ?

I know there is a way to see what ssid is an interface connected to. But, when we have 2 or more interfaces, how do you decide what interface is connected to what ? I am using connect lists to connect to 2 ssid, from a mt box in station mode ( no wds ). At the moment, I managed to do it by setting t...
by jorj
Mon Oct 06, 2008 11:25 pm
Forum: General
Topic: Virtualization RouterOs
Replies: 50
Views: 5071

Re: Virtualization RouterOs

did you Read The Finest Manual? http://wiki.mikrotik.com/wiki/Virtualization#Example:_Preparing_Centos_5.1_Image I sure did. If you're talking to hellmind, I hope he will. I am emphasizing on the bells added to one fine product. Today, even my watch has usb and plays mp3 files. It's getting too much.
by jorj
Mon Oct 06, 2008 10:34 pm
Forum: General
Topic: Virtualization RouterOs
Replies: 50
Views: 5071

Re: Virtualization RouterOs

Relax, man. Don't shout. Chill out.
How would you like to see ubuntu or centos running on your hdtv ? or on your iphone ?!?

It's a router ! And I can't really see the point in working any mor on this from the mt stuff.
But hey ! It's their time, their money... ( and the product WE are using..... )
by jorj
Sun Oct 05, 2008 11:47 am
Forum: The Dude
Topic: discovering entire internet !
Replies: 11
Views: 2342

Re: discovering entire internet !

In arranging the "real" subnets, is not "that" great. But hey, if you have discovered whole your equipment, then, by all means, do separate them yourself, and group them accordingly to the phisical position, and you'll be more than happy. For me it's allways been easier to scan a subnet at one time,...
by jorj
Sat Oct 04, 2008 12:04 am
Forum: The Dude
Topic: Where to get GIS/Topo Map images for Dude/Linux
Replies: 1
Views: 961

Re: Where to get GIS/Topo Map images for Dude/Linux

google earth, google maps, and the like.
Even you can try msn, or live :), or yahoo.......... or else.
[edit]
For USA try http://libremap.org
by jorj
Fri Sep 26, 2008 4:28 pm
Forum: The Dude
Topic: Graphing discrepencies
Replies: 10
Views: 3107

Re: Graphing discrepencies

password protect is hard, given only the abilities that the MT webserver has. you can have a supersimple password, but anyone with some basic web knowledge will be able to bypass it. ok, we could move the graphs behind the same authentication that is used for the webcfg ... Actually, you can look i...
by jorj
Fri Sep 26, 2008 4:19 pm
Forum: Wireless Networking
Topic: Engineering Question
Replies: 20
Views: 1925

Re: Engineering Question

You might get better this way, without the complexity, but with the possible higher price tag.
Like it's been said !
Maybe the man wants to learn and practice.
by jorj
Thu Sep 25, 2008 9:03 pm
Forum: General
Topic: Hardware for high bandwidth 1.5km 5Ghz Nstreme link?
Replies: 14
Views: 2505

Re: Hardware for high bandwidth 1.5km 5Ghz Nstreme link?

For 1.5 km you don't need any r52h cards. You will have to lower the power in connection with parabolic dishes. Are they _too_ powerful for the parabolic dishes? Why? But do use parabolic antennas, as they will get you the maximum isolation from the "rest of the world" active in wifi in your area. ...
by jorj
Thu Sep 25, 2008 8:44 pm
Forum: Wireless Networking
Topic: Wireless encription use - poll ! :)
Replies: 7
Views: 1340

Re: Wireless encription use - poll ! :)

What about fixed key AES-CCM?
Are they really in use by that many people ?
by jorj
Tue Sep 23, 2008 2:05 pm
Forum: General
Topic: WINBOX GUI need a bit of touch up
Replies: 29
Views: 3464

Re: WINBOX GUI need a bit of touch up

why do you need so many marks if you can just specify your network as target? currently I don't see any reason for so many marks ... C'mon......... If it can be done, leave the man alone.... I too was bothered by this several times. [edit:] Especially the tools->netwatch, wich in CLI is hard to see...
by jorj
Tue Sep 23, 2008 9:52 am
Forum: Scripting
Topic: delete certain mac
Replies: 8
Views: 1312

Re: delete certain mac

there is no perfect world :)
:lol:

Yes, I mean, Pepo, don't complicate your life more than you can handle.
Find the bastard, get him out, and your' happier, than with his money and your headaches.
And do yourself a good: relax......
by jorj
Tue Sep 23, 2008 9:45 am
Forum: The Dude
Topic: Graphing discrepencies
Replies: 10
Views: 3107

Re: Graphing discrepencies

Graphing the max would a very bad idea, if it were to replace the average graphing as it is now. Besides, even on MT graphs, it is shown the max value, for the graph average, in text, not graph. What I would want, and it's been already 2 ( yes, TWO ) years since it's been asked, and not only by me, ...
by jorj
Tue Sep 23, 2008 9:36 am
Forum: Scripting
Topic: delete certain mac
Replies: 8
Views: 1312

Re: delete certain mac

...........
3. Use PPPoE instead of Hotspot if your area is really that unsafe. PPPoE is much more secure.
..............
That posts a whole new type of dangers for the network operator, much more difficult to escalate, and find the "smarties". :)
by jorj
Mon Sep 22, 2008 1:07 pm
Forum: Beginner Basics
Topic: ping priority
Replies: 5
Views: 3038

Re: ping priority

Jorj Can you please write the queue here, which protocol, port, IP range we need to specify? Thanks in advance Try this: /ip firewall mangle add action=mark-packet chain=prerouting comment="" disabled=no \ new-packet-mark=ping_requests passthrough=yes protocol=icmp /que simple add burst-limit=0/0 b...
by jorj
Mon Sep 22, 2008 10:20 am
Forum: Beginner Basics
Topic: ping priority
Replies: 5
Views: 3038

Re: ping priority

how to set in my mt ping priority?




Best Regards!
If you mean to fool your clients with fast ping times, create a simple queue, put it first, put on it a higher priority than the rest of the queues, and specify it should only apply to icmp.

There you go !
by jorj
Mon Sep 22, 2008 9:43 am
Forum: Scripting
Topic: delete certain mac
Replies: 8
Views: 1312

Re: delete certain mac

Hi all, i'm using mikrotik server and all is fine :( but i want to ask you if someone can tell me how can i make some scripts that can deletes a specific mac address for my customers that attached to the server by built-in dhcp-server or through hotspot. Also i want that script to prevent anyone fr...
by jorj
Mon Sep 22, 2008 9:35 am
Forum: Wireless Networking
Topic: what did you say, how many clients...?
Replies: 10
Views: 1783

Re: what did you say, how many clients...?

OK Improved to include a polling method that works with multiple clients.
:)
by jorj
Mon Sep 22, 2008 9:27 am
Forum: Wireless Networking
Topic: Client re-registrations
Replies: 49
Views: 12236

Re: Client re-registrations

A quick Video showing the issue from the AP: http://www.tranzeofaq.com/MtikDrops/ Ticket Number: Ticket#2008091666000531 I've looked at your video, and all your tranzeo clients are linked on wlan2, not on wlan1 that drops all the clients. Have you considered that "could" be an issue, in first case ...
by jorj
Mon Sep 22, 2008 8:57 am
Forum: Wireless Networking
Topic: what did you say, how many clients...?
Replies: 10
Views: 1783

Re: what did you say, how many clients...?

I can't find them either. I guess email support and get it from the horses mouth. Nstreame with ptmp causes higher latency and more disconnects. Hopefully Mikrotik can fix this one day. :-) I don't think there is anything to be fixed..... It's by design, the architecture is this way built. That's w...
by jorj
Mon Sep 22, 2008 8:34 am
Forum: Wireless Networking
Topic: Wireless encription use - poll ! :)
Replies: 7
Views: 1340

Re: Wireless encription use - poll ! :)

Need to add option to poll for pptp or l2tp tunnels for security

That's what I use :-)
If that would be encription it would be there.
I was just thinking of the encription not the overall measures......
by jorj
Mon Sep 22, 2008 8:28 am
Forum: General
Topic: Router OS run on ubiquiti nanostation?
Replies: 17
Views: 7459

Re: Router OS run on ubiquiti nanostation?

I would not expect Mikrotik to spend time to make RouterOS run on a competitor's product like the nanostation. That does not seem to me to be in their best interest. Instead I expect them to make their own low cost complete CPE to compete with it. Remember that they are a business trying to make a ...
by jorj
Sun Sep 21, 2008 11:14 pm
Forum: General
Topic: Router to Rouer VPN
Replies: 15
Views: 2342

Re: Router to Rouer VPN

what about if my manager wants to dial in to access the MS Exchange server?

thank you,
You setup a VPN for that, and for that only. :)
by jorj
Sun Sep 21, 2008 11:41 am
Forum: General
Topic: Hardware for high bandwidth 1.5km 5Ghz Nstreme link?
Replies: 14
Views: 2505

Re: Hardware for high bandwidth 1.5km 5Ghz Nstreme link?

For 1.5 km you don't need any r52h cards. You will have to lower the power in connection with parabolic dishes. But do use parabolic antennas, as they will get you the maximum isolation from the "rest of the world" active in wifi in your area. You can always go for a pc version, might get you only a...
by jorj
Sun Sep 21, 2008 11:30 am
Forum: General
Topic: Router OS run on ubiquiti nanostation?
Replies: 17
Views: 7459

Re: Router OS run on ubiquiti nanostation?

Actually, imho, the best thing about it is the recieving sensitivity, the power and the case wich is so damn good and easy to install. The programable led's are also much easier to see than in custom cases for mt boards. Wich, btw, cost about half the price of ns.
by jorj
Sun Sep 21, 2008 12:23 am
Forum: General
Topic: Router OS run on ubiquiti nanostation?
Replies: 17
Views: 7459

Re: Router OS run on ubiquiti nanostation?

I would rather like see MikroTik alternative to Nanostation
+1
by jorj
Sat Sep 20, 2008 11:57 pm
Forum: General
Topic: Configuration for Proxy bandwith control
Replies: 16
Views: 2771

Re: Configuration for Proxy bandwith control

Yes, you can use pcq in connection with mangle, in order for the queue to apply only for the proxy traffic.
by jorj
Sat Sep 20, 2008 11:09 pm
Forum: General
Topic: Allow access from outside to internal web server!
Replies: 6
Views: 2380

Re: Allow access from outside to internal web server!

Both IP addresses posted are full routable addresses. (altough at this time they are not reachable) Unless by mistake you are masquerading the internal addresses, you should not need NAT rules at all for redirecting any traffic, it should be already available. OR, you should come with more precise i...
by jorj
Sat Sep 20, 2008 11:04 pm
Forum: General
Topic: Configuration for Proxy bandwith control
Replies: 16
Views: 2771

Re: Configuration for Proxy bandwith control

Maybe I ask more specific question.... Let's assume I pick up proposal #1, so I do not add another Ethernet card to MT and just move switch (with Proxy server) behind the WAN interface (from MT bandwidth manager perspective). So now all traffic from proxy goes through the MT bandwidth manager. It c...
by jorj
Sat Sep 20, 2008 10:55 pm
Forum: The Dude
Topic: Graphing discrepencies
Replies: 10
Views: 3107

Re: Graphing discrepencies

Actually, besides changing the scale, you are changing the interval that the graph is showing, somehow the "granularity" of the graphic. If the daily graph will calculate a 5 minute average, the weekly will show let's say a half an hour average.
That should enlight you.
by jorj
Sat Sep 20, 2008 10:25 pm
Forum: Wireless Networking
Topic: Engineering Question
Replies: 20
Views: 1925

Re: Engineering Question

Please tell how much are you available to spend on a pair of 10 ghz radios, chinese manufacture, producer specification say can carry gigabit speeds, for up to 6 km. I've seen them on a czech distributor, i don't know exactly if it's this or some other: http://www.i4wifi.cz/?cls=stoitem&stiid=739 Yo...
by jorj
Sat Sep 20, 2008 9:51 pm
Forum: General
Topic: Virtualization RouterOs
Replies: 50
Views: 5071

Re: Virtualization RouterOs

I think that running multiple instances of a virtualised VM with ros installed a single time,( by copying the files needed to create aditional virtual machines, I say), would be a breaking of the licence. Am I right, janisk ? :) Otherwise, it works very nice, both on vmware and M$ virtual pc. Haven'...
by jorj
Sat Sep 20, 2008 9:46 pm
Forum: Wireless Networking
Topic: Wireless encription use - poll ! :)
Replies: 7
Views: 1340

Wireless encription use - poll ! :)

Hello. I keep seeing this all over, even in my town. So I think we all would benefit from seeing how people _are_ using encription at the current moment. I am talking about links to the clients, NOT backbone links, if there are wireless. So, here we go: What type of encription are you constantly usi...
by jorj
Mon Sep 15, 2008 1:51 pm
Forum: Wireless Networking
Topic: Intel 2200BG
Replies: 3
Views: 1694

Re: Intel 2200BG

offcourse it's not supported
:)) :lol: Good point. Verry supportive.

Only prism and atheros, is the meaning of the above answer. Unfortunately.
But that'l do it. For a while, at least.......
by jorj
Mon Sep 15, 2008 1:47 pm
Forum: Wireless Networking
Topic: navigate only to one internet page
Replies: 4
Views: 915

Re: navigate only to one internet page

Web proxy is the easiest way. Forbid all, and redirect to........ what you want. The redirect works if you have a specific web server, that can be accessed by it's ip (it's the only server on that ip, or it's de default virtual server on an apache installation, for example. ), and you do the NAT red...
by jorj
Mon Sep 15, 2008 12:39 pm
Forum: Wireless Networking
Topic: Help with AP units ??
Replies: 9
Views: 1288

Re: Help with AP units ??

i'm using d-link 2100 , or tp-link 501 in wds mode , i wanna link two lans together and keep signal n the air :) is there a way to do that , adding wds to mikrotik ?? For the price you payed for the dwl 2100, you might want to get another MT on a routerboard, wichever is your choice, and do it the ...
by jorj
Mon Sep 15, 2008 12:36 pm
Forum: The Dude
Topic: discovering entire internet !
Replies: 11
Views: 2342

Re: discovering entire internet !

Actually, dude is discovering what you requested from him. To overcome this, let it scan with no next hop, and scan a single network at a time. Create submaps, for each of the others, one at a time, and link them from a map of public addresses, or from whatever you like, in a tree-like - hierarchica...
by jorj
Fri Aug 22, 2008 12:07 pm
Forum: General
Topic: Delete ether1 in error on 333 board.
Replies: 7
Views: 1066

Re: Delete ether1 in error on 333 board.

if you type "CTRL+X" in command line, it will start safe mode. Type the same to turn it off when you are done configuring. What safe mode does - it undoes the last command that you made before losing connectivity. Try to enable safe mode, and then disable your ethernet. It will restore it. Bingo ! ...
by jorj
Tue Aug 19, 2008 11:14 pm
Forum: General
Topic: Delete ether1 in error on 333 board.
Replies: 7
Views: 1066

Re: Delete ether1 in error on 333 board.

it is deleted not disabled Bad boy ! How could he do such a thing ?!? ( i don't think it's possible.......) Use neighbour viewer from another connected mikrotik device, and conect by mac-telnet to it, and restore what you did. I bet you _disabled_ the interface, or deleted the ip address. Reboot, a...
by jorj
Thu Aug 14, 2008 10:13 am
Forum: General
Topic: 3.12 simple queues
Replies: 4
Views: 873

Re: 3.12 simple queues

/queue simple add target-addresses=1.1.1.1/32 queue-type=default and all problems gone! You have your graphs back! :lol: I know how to put the queues. Relax. In the post it sais the queue does not work if no limit is put on it. So, your example should not work, as per specifications. ( I just put t...
by jorj
Thu Aug 14, 2008 10:08 am
Forum: General
Topic: 3.12 simple queues
Replies: 4
Views: 873

Re: 3.12 simple queues

basically if you add queue with this command: /queue simple add target-addresses=1.1.1.1/32 then you will not get any packets counted in this queue, you have to set actual limit for the queue for it to work, if you don't want to add limitation, but still want to see "usage" then you can simple limi...
by jorj
Thu Aug 14, 2008 9:58 am
Forum: RouterBOARD hardware
Topic: Pci - mini pci adapter power and 1w mini pci
Replies: 2
Views: 1202

Re: Pci - mini pci adapter power and 1w mini pci

Just put it in the rb333.

With default power reports 20 db in monitor.
Have to investigate further.
by jorj
Thu Aug 14, 2008 9:52 am
Forum: General
Topic: v3.12 crashing on x86
Replies: 42
Views: 10260

Re: v3.12 crashing on x86

Careful! Not "multi-core with smp enabled", but "any x86 with smp enabled" Hot I did find out? :) I was messing around with my dead core router - trying to revive it and find what exactly was causing the problem, then I noticed that MT guys wrote that simpe queues was the problematic place - but i ...
by jorj
Thu Aug 14, 2008 9:29 am
Forum: General
Topic: v3.12 crashing on x86
Replies: 42
Views: 10260

Re: v3.12 crashing on x86

It's an alarm sign for me that in the changelog has from 3.x releases, more and more lines appear to be starting with "fixed" than starting with "added". You know there are old saying: "Only God can create perfect things!" in this case "Only God can add a feature without future fixes required!" ......
by jorj
Thu Aug 14, 2008 9:03 am
Forum: General
Topic: v3.12 crashing on x86
Replies: 42
Views: 10260

Re: v3.12 crashing on x86

Oh, and another quick suggestion: As a Sys Admin like all of you I don't have time to check this forum so often. The release of 3.12 was announced to me via e-mail, so I think this should be the way to warn users about problems like these. Release notices via e-mail and complete crash notices only ...
by jorj
Thu Aug 14, 2008 8:40 am
Forum: General
Topic: v3.12 crashing on x86
Replies: 42
Views: 10260

Re: v3.12 crashing on x86

I have to say, it serves you right for putting this onto production boxes. You should always test a new release from ANY vendor on spare hardware in a non-production environment. It's called "best practice" IMO this is in no way Mikrotik's fault, it is your own. Strongly disagree to that. It's a lo...
by jorj
Thu Aug 14, 2008 8:35 am
Forum: General
Topic: 3.12 simple queues
Replies: 4
Views: 873

3.12 simple queues

What's new in 3.12: 3.12 changelog, among others: ...................... *) changed behaviour of simple queues - queues with no limit and type default-small and no children actually do not get installed, as if there was no queue; ........................ I have not updated yet any machine to 3.12, ...
by jorj
Sat Aug 09, 2008 9:56 pm
Forum: Wireless Networking
Topic: Record TX power on RB !!!!
Replies: 6
Views: 1341

Re: Record TX power on RB !!!!

no, since a much longer time. just right click there, and select what you want to add Yes, indeed. I've only seen it from the first beta's of 3.x..... And, as a matter of fact, it works on 2.9... Is the winbox, or the ros version that makes the difference ? :oops: ( BTW, Normis, what about that tx ...
by jorj
Thu Aug 07, 2008 3:12 pm
Forum: Wireless Networking
Topic: Record TX power on RB !!!!
Replies: 6
Views: 1341

Re: Record TX power on RB !!!!

btw how do you get the uptime + CPU/ram usage in WinBox to be up there?
It's been there since v3.
by jorj
Wed Aug 06, 2008 10:18 am
Forum: Wireless Networking
Topic: Record TX power on RB !!!!
Replies: 6
Views: 1341

Record TX power on RB !!!!

Well, folks, just seen this, and couldn't help it to post it on the forum..... demo2 mt lv tx power.JPG It seems the rb 600, in conjunction with a r52 i think, can deliver a tremendous power output on the 802.11 spectrum....... almoust 600.000 dbm !?! :shock: :? 8) :) Any guess it might be a miss-ca...
by jorj
Tue Jul 29, 2008 9:26 am
Forum: General
Topic: Queue Question
Replies: 3
Views: 800

Re: Queue Question

you have to add simple queue for each Pc computer with destination address xxx.xxx.xxx.xx/32 and the Limit.. With ReguarD Actually, to equal share the maximum bandwidth available, it would be useless or doubtable to obtain it with simple queues. http://www.mikrotik.com/testdocs/ros/3.0/qos/queue_co...
by jorj
Sun Jul 27, 2008 8:26 pm
Forum: Wireless Networking
Topic: Multiple VLAN ID over wireless link, possible?
Replies: 23
Views: 25870

Re: Multiple VLAN ID over wireless link, possible?

Well, EoIP should work, but its using extra resources, while VLAN is a simple bridge, with (i think) minimal extra resouce to put extra 22byte on the frames. I participated in that topic, being worried about the eoip overhead. In my scenario, it prooved of little impact. I am transferring about 10 ...
by jorj
Fri Jul 25, 2008 12:33 am
Forum: General
Topic: Queue Question
Replies: 3
Views: 800

Re: Queue Question

In the manual, read about simple queues. There is an example wich you can copy and paste, with minimal changes.
by jorj
Fri Jul 25, 2008 12:13 am
Forum: RouterBOARD hardware
Topic: Pci - mini pci adapter power and 1w mini pci
Replies: 2
Views: 1202

Re: Pci - mini pci adapter power and 1w mini pci

Guess I'll just have to try it myself.

:(
by jorj
Fri Jul 25, 2008 12:06 am
Forum: Wireless Networking
Topic: I`m Building my first router, need input!
Replies: 5
Views: 1246

Re: I`m Building my first router, need input!

If you are reffering to "user manager", yes, it can be done in one place. And in this case it does not really matter what your client are ( hardware ). If not this, and your clients are MT boxes, and you mean by central location to be a central mt access point, again this can be done. If not this ei...
by jorj
Thu Jul 24, 2008 11:58 pm
Forum: Wireless Networking
Topic: Multiple VLAN ID over wireless link, possible?
Replies: 23
Views: 25870

Re: Multiple VLAN ID over wireless link, possible?

I don't really get the point of your separation in vlans, but you might use EOIP tunnels, between the client routers and the router in the right of your picture, and run them across any routed network in between, and in this way you have a "virtual ethernet" to your clients, passing layer 2 data. Af...
by jorj
Thu Jul 24, 2008 11:51 pm
Forum: Wireless Networking
Topic: Day/Night problem
Replies: 19
Views: 6209

Re: Day/Night problem

In the daytime SNR is 32 and in the night is 45. From what could it be? Is this from noise floor, or signal level ? Whatever it is, is afecting you. I see this on me, and in the night noise floor is 2 to 4 db lower than during day. But such a difference, is big. Posibly cordless phones, microwave o...
by jorj
Sun Jul 20, 2008 8:45 pm
Forum: Wireless Networking
Topic: Strange: cannot connect to AP, user deauth
Replies: 10
Views: 4048

Re: Strange: cannot connect to AP, user deauth

k.
your time, your problem. :)
by jorj
Fri Jul 18, 2008 2:15 pm
Forum: Wireless Networking
Topic: Strange: cannot connect to AP, user deauth
Replies: 10
Views: 4048

Re: Strange: cannot connect to AP, user deauth

Let me clarify: this card I have in laptop works very nice including NetStumbler. It also worked fine with MT until recently when I found out that I cannot connect to MT (and MT only). This card does not work with that mt box, and that only, or with any other MT you own ? Do a system backup, and sa...
by jorj
Thu Jul 17, 2008 11:44 pm
Forum: RouterBOARD hardware
Topic: Pci - mini pci adapter power and 1w mini pci
Replies: 2
Views: 1202

Pci - mini pci adapter power and 1w mini pci

I found this, and actually used on rb133 a 500 mw card from another manufacturer. http://www.compex.com.sg/home/products1.asp?20070314532323 Will this fit into any routerboard ? I can't see the power consumption on the technical notes....... And, for the actual question, is this supposed to be compa...
by jorj
Thu Jul 17, 2008 11:33 pm
Forum: Wireless Networking
Topic: Strange: cannot connect to AP, user deauth
Replies: 10
Views: 4048

Re: Strange: cannot connect to AP, user deauth

Yes indeed. For clients with laptop, no or poor wireless i use Senao pcmcia or d-ling ag660. Kind of expensive, but works like a dream. And also there are lots of usb wireless with external connector for antenna...... ( for the original topic..... Pedja get a wireless with atheros, usb, will be usef...
by jorj
Thu Jul 17, 2008 11:30 pm
Forum: Wireless Networking
Topic: Day/Night problem
Replies: 19
Views: 6209

Re: Day/Night problem

monitor your noise floor...i just think its either some interfearence or some one using a link only during business hours. we see the same thing here, but after analizing with a spectrum analizer we found various noise sources during business hours +1 to that. Also, see with snooper what kind of tr...
by jorj
Wed Jul 16, 2008 8:11 pm
Forum: Scripting
Topic: how to block dhcp from my client to me!!
Replies: 13
Views: 5183

Re: how to block dhcp from my client to me!!

What kind of problems ? Be a little more specific....
by jorj
Wed Jul 16, 2008 9:16 am
Forum: Wireless Networking
Topic: Day/Night problem
Replies: 19
Views: 6209

Re: Day/Night problem

Is that a hotel your antenna is on ?
If so, check if they are using DECT phones/ microwave ovens near the top of the tower....... Might be just that.
Or, do they have a hotspot installed in ?
Must be some kind of noise out there.
by jorj
Tue Jul 15, 2008 10:26 pm
Forum: Wireless Networking
Topic: Strange: cannot connect to AP, user deauth
Replies: 10
Views: 4048

Re: Strange: cannot connect to AP, user deauth

Reinstalled wireless interface drivers on laptop, but it stil cannot conenctu with the same error. I een tried to connect to other MT node, I got the same error. It seems my laptop is now unable to connect to any Mikrotik. Not long ago it was able to conect with no problem. :( To check that fire up...
by jorj
Tue Jul 15, 2008 10:43 am
Forum: Wireless Networking
Topic: German RegTP Requirements
Replies: 37
Views: 8332

Re: German RegTP Requirements

Yes it is. But you have to use radius for _all_ the clients. Some are using their own accounting behind a nat. What to do with them. And, so, really, the sub-providers, to say so, that are reselling their own services, are on their own, or if they have access trough you are your concern ? Guess I'll...
by jorj
Tue Jul 15, 2008 12:34 am
Forum: Wireless Networking
Topic: German RegTP Requirements
Replies: 37
Views: 8332

Re: German RegTP Requirements

Nope. This is in effect in Germany since Jan 1st 2008, too. But it only is describing WHAT you have to log, not HOW - i.e. no format description or the like. And CALEA is something COMPLETELY different - CALEA is "sniffing" one users network traffic and forwarding it to the authorities. What you we...
by jorj
Mon Jul 14, 2008 3:45 pm
Forum: Wireless Networking
Topic: German RegTP Requirements
Replies: 37
Views: 8332

Re: German RegTP Requirements

Then, what is this ? http://eur-lex.europa.eu/Notice.do?mode=dbl&lang=ro&lng1=ro,en&lng2=bg,cs,da,de,el,en,es,et,fi,fr,hu,it,lt,lv,mt,nl,pl,pt,ro,sk,sl,sv,&val=425159:cs&page=3&hwords= It's adopted in 15 march 2006, by the EU Parliament. EU member countries should have adopted local legislation in c...
by jorj
Mon Jul 14, 2008 12:49 pm
Forum: Wireless Networking
Topic: German RegTP Requirements
Replies: 37
Views: 8332

Re: German RegTP Requirements

Hi, I don't know how it's done in other Europeen countries, but for Germany (from an offical web-site): First of all, the devided im 3 different types of Service-Provider which must store data: a) Provider for VoIP-Services b) Provider for E-Mail-Services c) Provider for internet acesss for the las...
by jorj
Mon Jul 14, 2008 12:37 pm
Forum: Wireless Networking
Topic: Add wirless pci card to server runing MT
Replies: 8
Views: 1621

Re: Add wirless pci card to server runing MT

Try to not use *censor* products . I have a pcmcia tp-link card . After a while my windows computer freeze . If i unplug the card on this state, everything is ok . Tp-link wireless is a *censor* . Well, zerounu, it seems your are from RO. I have tens of tp-link cards, and they are working all but p...
by jorj
Mon Jul 14, 2008 12:21 pm
Forum: Wireless Networking
Topic: Antenna Alignment
Replies: 3
Views: 1423

Re: Antenna Alignment

have you found what you are looking for ? i am looking for for the same thing.

regards
Jan
See this for an idea:

http://wiki.mikrotik.com/wiki/Audible_signal_test
by jorj
Mon Jul 14, 2008 12:06 pm
Forum: Wireless Networking
Topic: why are sectors so expensive compared 2 omnis?
Replies: 28
Views: 4218

Re: why are sectors so expensive compared 2 omnis?

oh ok. so a 14dbi 12o degree sector antena will go further than a 18o degree 14dbi sector?thanks Actually, is a kg of iron harder than a kg of plastic ? :lol: To the object: It's not about power, it's more about isolation. On an omni, you will always catch the usable signal and the noise from all o...
by jorj
Mon Jul 14, 2008 11:56 am
Forum: Wireless Networking
Topic: Strange: cannot connect to AP, user deauth
Replies: 10
Views: 4048

Re: Strane: cannot connect to AP, user deauth

Is that a broadcom chipset in your laptop ? If yes, i had a similar problem. Don't really know what caused it. Had rb333 in my home, with 2 interfaces, and on 2.4 could not connect with one of the laptops. The broadcom...... The other one, with intelw2200bg worked just fine. I solved it by /system r...
by jorj
Wed Jul 09, 2008 9:04 am
Forum: Scripting
Topic: how to block dhcp from my client to me!!
Replies: 13
Views: 5183

Re: how to block dhcp from my client to me!!

if you have routeros handling your DHCP requests then set authoritative to yes and that will solve your rogue dhcp server problem. i have all dhcp disable also in my router also in my ap Actually, the man does not use dhcp at all, this is how i see it. If your clients are using wireless to connect ...
by jorj
Wed Jul 09, 2008 8:54 am
Forum: Scripting
Topic: change IP interface from script
Replies: 3
Views: 3018

Re: change IP interface from script

Having the same address in the router will be somewhat difficult to setup in your case. It will just mess things.
Might try setting up bridge, with RSTP, or using ospf on your link and leave it enabled, while setting priorities to determine wich will be the active connection when both are available.
by jorj
Wed Jul 09, 2008 8:42 am
Forum: Scripting
Topic: Real Ip's
Replies: 3
Views: 1179

Re: Real Ip's

You can make a bridge, with another MT router, and keep for them the bandwidth control, or, if you have your addresses forwarded to you in a manner like this: gw - > Your ip's, in wich you control the gateway, than it's even easier to do. Or, you can use NAT rules for forwarding addreses to specific...
by jorj
Sat Jul 05, 2008 7:41 pm
Forum: Wireless Networking
Topic: R52H Faillure Rate Continues
Replies: 65
Views: 13629

Re: R52H Faillure Rate Continues

Well, it seems like just a list of failures, with nothing of use, for repairing this. If it is indeed the diversity switch on the card that fails, is it anyone who has succeeded in replacing/disabling it ? I mean, can you use the card in anything but indoors for 50 meters ? If anybody did it, post h...
by jorj
Tue Jul 01, 2008 11:40 pm
Forum: Wireless Networking
Topic: Sector Antennas Best Practices
Replies: 96
Views: 23739

Re: Sector Antennas Best Practices

Yes, I am talking about separate mini-pci cards, put in whatever you want ( RB, PC, anything), and configured exactly the same, includind SSID. The difference is that if you do not want your client to be able to connect to sector 3, for example, you put a access list rule for the respective card, w...
by jorj
Tue Jul 01, 2008 8:55 am
Forum: Wireless Networking
Topic: Sector Antennas Best Practices
Replies: 96
Views: 23739

Re: Sector Antennas Best Practices

HI! are you talking about use splitters , with one miniPci card ? what if you want to have 3 panel 120° with 3 miniPci card, with same "ssid" ? is possible ? regards, andres. You could do that, but it would be an awful idea ( the splitter). You will be lowering your signal, plus of that, you will b...
by jorj
Mon Jun 30, 2008 9:40 pm
Forum: Wireless Networking
Topic: 5ghz question, trees
Replies: 10
Views: 2583

Re: 5ghz question, trees

Try it. Most probably it will work. You might still get into trouble when raining....... that tree will look like a reinforced concrete wall then....... because of the water. I have perfectly working links with 1 oak, about 15m circumference, on about 1.5 km, with 12db omni+11 db yagi. No los at all...
by jorj
Mon Jun 30, 2008 9:34 pm
Forum: Wireless Networking
Topic: Sector Antennas Best Practices
Replies: 96
Views: 23739

Re: Sector Antennas Best Practices

Also, if you can, put the antennas one over the other, in order to have some vertical separation among them, or keep them 2 by 2, the further the channels on them, the better. What about users jumping from one sectorial antena to other ? can you avoid this ? Use access lists with allow/deny, for eac...
by jorj
Mon Jun 30, 2008 9:30 pm
Forum: Wireless Networking
Topic: Sector Antennas Best Practices
Replies: 96
Views: 23739

Re: Sector Antennas Best Practices

Use 1,5,9,12,13. You will see that 12 and 13 are spaced 12 mhz apart. Will help you a little, if you intend in keeping all of them. What I don't get, is why you want the omni...... You should have proper coverage from the sector antennas, and if you need it as a separate interface.... create a vap o...
by jorj
Sat Jun 28, 2008 12:25 am
Forum: Wireless Networking
Topic: R52H Faillure Rate Continues
Replies: 65
Views: 13629

Re: R52H Faillure Rate Continues

I am a fan of r52s....... But, since a while, i am also a fan of china products..... I have about 20 wireless mini-pci from china and taiwan, don't mention names, for not to be erased.... ;;), and about 30 r52 and 4 r52h, taken all in about half a year span. No china has died, but one r52, and all t...
by jorj
Thu May 29, 2008 5:16 pm
Forum: Wireless Networking
Topic: Changing config on Multiple AP's
Replies: 4
Views: 1317

Re: Changing config on Multiple AP's

Exercise caution, export also stores the MAC address currently on interface cards, so when copying wireless config, take that into account. :)
by jorj
Thu May 29, 2008 5:14 pm
Forum: Wireless Networking
Topic: DFS Mode
Replies: 19
Views: 52721

Re: DFS Mode

DFS without radar detect will select and choose a frequency only once. DFS with radar detect will change the frequency only when it identify a military radar in it's frequency What exactly is classified as a "military radar" ? How is this decision made ? I found in legislation only DFS requirements...
by jorj
Tue May 27, 2008 10:26 pm
Forum: Wireless Networking
Topic: 100% CPU usage with 3.9 on x86
Replies: 3
Views: 1295

Re: 100% CPU usage with 3.9 on x86

( Dragule INOX, mai multe informatii, mai multe detalii. Altfel, ajutor==0)

Please more details if you want help.
Try at first /system check-disk.
Else, try installing again.
If wireless router, try disabling ANI ( adaptive noise immunity, see what happens. )
by jorj
Thu May 08, 2008 1:37 pm
Forum: General
Topic: Proxy external address
Replies: 2
Views: 2790

Re: Proxy external address

Why would it add something like this ?
Isn't masquerading supposed to cover this ?
by jorj
Wed May 07, 2008 1:43 pm
Forum: General
Topic: Proxy external address
Replies: 2
Views: 2790

Proxy external address

I enable web-proxy transparent, with nat-redirect for clients, and I see that http://www.whatismyip.org sees the internal ( eg. 192.168.x.y) address, instead of the public one, as seen on the http://www.whatismyip.com, or other public servers. The router is masquerading the internal network with a p...
by jorj
Wed Apr 30, 2008 8:39 am
Forum: General
Topic: Can proxy redirect specific server error responses ?
Replies: 7
Views: 1038

Re: Can proxy redirect specific server error responses ?

Thank you very much for taking that in consideration. :)
/topic close
by jorj
Tue Apr 29, 2008 9:10 am
Forum: General
Topic: Can proxy redirect specific server error responses ?
Replies: 7
Views: 1038

Re: Can proxy redirect specific server error responses ?

The answer is yes, are the MT proxy messages customizable to an extent yep if you are using a x86 solution, a RB I don't know how to do it. . Is it customizable as in its simple or built into the OS, thats a big fat no. It requires modifying files on the disk separate from the OS. Can you put some ...
by jorj
Mon Apr 28, 2008 7:02 pm
Forum: General
Topic: Can proxy redirect specific server error responses ?
Replies: 7
Views: 1038

Re: Can proxy redirect specific server error responses ?

I would assume L7 could, if necessary, however, could you redirect that, maybe. don't know what the purpose would be. Well...... it's easy to asume. L7........hm......... The main purpose is to stop "unexperienced" users, to say so, calling me or my stuff for "forbidden" of other sites, and to have...
by jorj
Mon Apr 28, 2008 4:40 pm
Forum: General
Topic: Can proxy redirect specific server error responses ?
Replies: 7
Views: 1038

Re: Can proxy redirect specific server error responses ?

bump !

( or, can the mt proxy distinguish among different messages it recieves from the remote server ? can i know if the proxy recieves an 404, 403, 401, 421, or, oh ! 410 :) , and act accordingly, by redirecting to something else, or by taking an action I choose ?)

Anybody ?
MT ?
by jorj
Fri Apr 25, 2008 10:30 am
Forum: General
Topic: Can proxy redirect specific server error responses ?
Replies: 7
Views: 1038

Can proxy redirect specific server error responses ?

Is there a way in ROS ( 3.x ) to make the proxy redirect specific error messages recieved from the remote site ? EG.: I ask for http://www.somedomain.com/nonexistentpage.htm wich gets to an 404, can the proxy redirect it to a page of my choice ? or an IP address ? Or, if I request http://www.somedom...
by jorj
Wed Apr 23, 2008 8:26 pm
Forum: Beginner Basics
Topic: Port Forrward
Replies: 12
Views: 2393

Re: Port Forrward

If you use masquerade you have to set dstnat mapping rule for this port: ip firewall nat add chain=dstnat action=netmap protocol=tcp dst-port=5555 dst-address=[your client address here] to-ports=5555 It maps external tcp 5555 port to your clients 5555 port. Do the same with UDP port (protocol=udp)....
by jorj
Sun Apr 20, 2008 9:41 pm
Forum: General
Topic: Bandwidth Shaping - Internet Access and Local LOOP Traffic
Replies: 12
Views: 2681

Re: Bandwidth Shaping - Internet Access and Local LOOP Traffic

thnxs for ur help... so, it should be, first queue for loop, target-address=192.168.0.3 Max-limit=5M/5M Dst-address=192.168.0/16 Limit-at=5M/5M Second Queue for Internet, target-address=192.168.0.3 Max-limit=128k/128k Dst-address= 0.0.0.0/0 Limit-at=128k/128k Is it right now??? Yes. Kinda'. Also, t...
by jorj
Sun Apr 20, 2008 9:35 pm
Forum: General
Topic: Separate interfaces for DL/UL
Replies: 7
Views: 935

Re: Separate interfaces for DL/UL

Correct - BCP38 - Best Common Practice #38. That deals with source spoofing. I bet 90% of the people providing internet access here don't do this : ) Try sending packets out using 192.168.1.1 and I bet they will make it. Amazing how many people don't control their networks properly. +1 You know.......
by jorj
Fri Apr 18, 2008 2:11 pm
Forum: General
Topic: Bandwidth Shaping - Internet Access and Local LOOP Traffic
Replies: 12
Views: 2681

Re: Bandwidth Shaping - Internet Access and Local LOOP Traffic

Set in simple queues both src-address and dst-address to control traffic between clients.
For uplink use target-addresses. And you're done.

( your rule does not work. Max-limit must be larger than limit-at. )
You must use 2 queues to limit each client, one for client-to client, one for internet.
by jorj
Fri Apr 18, 2008 12:50 pm
Forum: General
Topic: How is this possible? (high CPU with 3.4 on a RB230)
Replies: 3
Views: 749

Re: How is this possible? (high CPU with 3.4 on a RB230)

Do a /system check-disk first.
It helped for me in a few cases.
by jorj
Fri Apr 18, 2008 12:18 pm
Forum: General
Topic: Separate interfaces for DL/UL
Replies: 7
Views: 935

Re: Separate interfaces for DL/UL

Sattelite links usually control both lines. land and sat.
If your provider does not specifically allow you this kind of access, then your download will arrive the same line you made the request.
And, its "best practice" among isp's to not allow source ip address _not_ one that you have.
by jorj
Thu Apr 17, 2008 10:24 am
Forum: General
Topic: Separate interfaces for DL/UL
Replies: 7
Views: 935

Re: Separate interfaces for DL/UL

.....................
Is this actually possible?
......................
The question is short, but I'm also hoping that the anwser will be short as well :D
In short: NO.
by jorj
Thu Apr 17, 2008 10:02 am
Forum: General
Topic: Limit number of connctions for one dest ip address .?
Replies: 11
Views: 2393

Re: Limit number of connctions for one dest ip address .?

If you want to drop _all_ connections to that specific address, use this:
/ip firewall filter add action=drop chain=forward comment="" disabled=yes dst-address=xxx.yyy.www.zzz 
Best way is to announce him, and get him educated....
by jorj
Thu Mar 06, 2008 8:49 am
Forum: Wireless Networking
Topic: High PING with R52H
Replies: 1
Views: 910

Re: High PING with R52H

What does site survey from the ap says ?
Also, what signal levels do you have ?
by jorj
Wed Mar 05, 2008 2:59 pm
Forum: Wireless Networking
Topic: RB600 w/ 3 AR5's and 1 XR9 13.5vDC (poor signal strength)
Replies: 4
Views: 1216

Re: RB600 w/ 3 AR5's and 1 XR9 13.5vDC (poor signal strength)

Since I posted this earlier today I did some other searching here at MT Forum and found that using Regulatory Domain can have a negative impact on signal strength, so I went through all of my AP's and CPE's changing them into Manual Tx Power which brought all my -90 CPE's into -70 dramatically impr...
by jorj
Mon Mar 03, 2008 9:53 pm
Forum: Wireless Networking
Topic: RSTP Port Priority Not Working?
Replies: 1
Views: 913

Re: RSTP Port Priority Not Working?

It's working fine and tested in 3.3. Just don't know about that.....
by jorj
Tue Feb 12, 2008 4:08 pm
Forum: General
Topic: rb333 rc1 serial problem
Replies: 10
Views: 2576

Re: rb333 rc1 serial problem

this won't void the warranty, as MT did send out those instructions themselves.
Thank you.
So: 1 and 6 - > out from the board connector, and we're done. :)
by jorj
Mon Feb 11, 2008 9:20 pm
Forum: General
Topic: rb333 rc1 serial problem
Replies: 10
Views: 2576

Re: rb333 rc1 serial problem

As a distributor, I did receive this from Mikrotik shortly after receiving our RB333 boards. This was for the Pre-Production Batch. RouterBOARD 333 serial console application note This applies to RouterBOARD 333 only. Some valid Serial Null modem cables may not work with RB333, many others followin...
by jorj
Fri Feb 08, 2008 8:28 am
Forum: RouterBOARD hardware
Topic: RB Crossroads - superchannel license
Replies: 9
Views: 3278

Re: RB Crossroads - superchannel license

Would it be much more complicated to add an ETSI package for the radio, for use in Europe ?
( similar to the wireless-crd package ? )
by jorj
Sun Feb 03, 2008 3:55 pm
Forum: RouterBOARD hardware
Topic: RB Crossroads - superchannel license
Replies: 9
Views: 3278

Re: RB Crossroads - superchannel license

I live in CE.
I use legally at least one channel vs. FCC.
Will there be a FCC or CE cert. for other products ?
( Yes, I know, parts like wireless minipci cards are certified by the producer. )
by jorj
Thu Jan 31, 2008 9:58 am
Forum: RouterBOARD hardware
Topic: RB Crossroads - superchannel license
Replies: 9
Views: 3278

RB Crossroads - superchannel license

Is there a superchannel license available for install on RB Crossroads ?
I mean, is FCC certified. Can we use the rest of the channels ? Does mikrotik allow that ?
With license of course ?
by jorj
Wed Jan 30, 2008 3:23 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

When we bought L6 I hoped that ROS can handle at least 1500 users on a quad core cpu...
But it's just a dream, as I can see now.

:(
Yes it is.....
(Temporarily I hope.)
by jorj
Wed Jan 30, 2008 2:18 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

Even without encryption, just pure termination. 600 online pppoe users without encryption, with per-user shaping and filtering and ROS is 100% loaded. Even winbox lags and sometimes disconnects. :) You're lucky to get 600 users online. Past 100, I always get into trouble. It's not powerfull enough,...
by jorj
Wed Jan 30, 2008 2:07 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

I can't see the REAL advantage of multicore at this specific moment PPPoE/VPN termination. p.s. Now we have better performance on free solutions, than on purchased ROS :-/ We were thinking about purchasing 6-8 more L6 licenses, but I think we'll move to FreeBSD/mpd5 solution if Mikrotik doesn't fix...
by jorj
Wed Jan 30, 2008 9:34 am
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

I can't see the REAL advantage of multicore at this specific moment. I mean, for specific needs, routing 100 mbit/s is just not enough to full load a high end CPU. Maybe is just my needs, but i have routerboards handling 10 mbits with ip filters and mangles, and 500/1000 mhz x86 handling 20-25 mbits...
by jorj
Wed Jan 30, 2008 8:51 am
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

We ship PoweRouters with dual-core P4s and so far had no issues that I know of with using multi-cpu . There's no such thing as dual-core pentium 4. It's Pentium D. Yes, I emphaze semantics. Yes there is: http://www.xbitlabs.com/news/cpu/display/20040610151158.html No, there isn't. Your source is a ...
by jorj
Thu Jan 24, 2008 1:12 pm
Forum: Wireless Networking
Topic: Sectored Antani's on a tower
Replies: 54
Views: 5319

Re: Sectored Antani's on a tower

Pictures are not very clear, it's not the same as I have, but it's indeed a sector. The second picture shows a printed board, like on some panels.
by jorj
Sat Jan 19, 2008 8:51 am
Forum: Wireless Networking
Topic: Sectored Antani's on a tower
Replies: 54
Views: 5319

Re: Sectored Antani's on a tower

Looks like a yagi antenna. They are sometimes used when proper sector antennas are not in the budget Well, actually only "it looks like". See the arrow on the top. ( it's says UP ) It's a sector antenna. Actually, it@mikrotik , you can open the top cover without too much trouble, and see inside a k...
by jorj
Fri Jan 18, 2008 1:03 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

Put rc14 and 3.0 on rb133. Works just fine. I just have no courage to put it on rb112. rb133 and 133c all seem just fine from rc14 on. On 133 i run rip, and bgp ( interior, about 50 routes:) ) and it works nice. Peers both 3.0 on rb 333 and 2.9 and 3.0 on pc. seems to last a little longer to establi...
by jorj
Fri Jan 18, 2008 12:56 pm
Forum: General
Topic: MK Crash'es
Replies: 11
Views: 1740

Re: MK Crash'es

If you can accept one advice: use dell systems. Low power consumption, low noise, low space, high speed, high quality, long life.
by jorj
Thu Jan 17, 2008 1:49 pm
Forum: General
Topic: chains order
Replies: 4
Views: 617

Re: chains order

by jorj
Thu Jan 17, 2008 12:46 pm
Forum: General
Topic: MK Crash'es
Replies: 11
Views: 1740

Re: MK Crash'es

I have been using for pc based pc's, except for 1 system, only Dell products. From the optiplex series,gx100,gx270. The only single ever problem i had with them was a :cry: configuration in wich with the 3com onboard nic i put 2 intel pro 100 cards, wich would just not work but one at a time, with a...
by jorj
Tue Jan 15, 2008 7:36 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13116

Re: RouterOS 3.0

At least it's final.
Will be some time till we'll get it all smooth and running in every possible situation.
For me it works in just about every case.
Anyway, rc14 had the most significant amount of changes since rc1.
If you say it's "good to go", our trust is rising ....:)
by jorj
Thu Jan 10, 2008 12:25 pm
Forum: General
Topic: Flash disk writes
Replies: 7
Views: 4064

Flash disk writes

For any still wondering about "how many flash writes will kill a compact flash", take a look at this: (It's a sandisk 512 mb compact flash.) It's like this because the hdd that it replaced it's gone .. dead, and all logging on hdd remained on, from the backup copy, after restore to compact flash. ( ...
by jorj
Sat Jan 05, 2008 12:46 am
Forum: General
Topic: Documentation for 3.0 RCs
Replies: 3
Views: 1419

Re: Documentation for 3.0 RCs

Just an idea, but when introducing new features, or modifying some old ones, they could be put in a special topic, with no public write access, some kind of "extended changelog". Might help MT stuff too, in the manual making. I also miss some documentation on 3.0, and fight with a few boards to go s...
by jorj
Wed Jan 02, 2008 7:48 pm
Forum: Wireless Networking
Topic: Sectored Antani's on a tower
Replies: 54
Views: 5319

Re: Sectored Antani's on a tower

Hi Jordantrx, We have tried with new R52 wlan cards. and have same problem. Check the cables and connecters by connecting one omni. works fine. when we connected the sectors using the splitter, the signal strength on clients side within 500Mtrs from the tower was -87 after removing the splitter, co...
by jorj
Wed Jan 02, 2008 7:44 pm
Forum: Wireless Networking
Topic: Sectored Antani's on a tower
Replies: 54
Views: 5319

Re: Sectored Antani's on a tower

If you have multiple sectors on one site, they will surely interfere with each other. One of the ways of avoiding this, is by studiing the tipical side lobes of the antenna, to try at least to tilt them down in such a manner that they will get side lobes on the back pointing upwards. Also, try putti...
by jorj
Thu Dec 13, 2007 4:30 pm
Forum: General
Topic: EOIP - how much overhead ?
Replies: 3
Views: 1141

Re: EOIP - how much overhead ?

Yes indeed.
But someone has to know if all of the overhead is that 28 bytes. If i missed this somewhere, i'll look again.
And for what i am establishing - a bridge between 2 remote locations, to act as a private lan, than that's about to be found out.

thks.
by jorj
Wed Dec 12, 2007 11:56 pm
Forum: General
Topic: ROS 3.0 RC13 Released
Replies: 21
Views: 4864

Re: ROS 3.0 RC13 Released

What's new in 3.0rc12: *) fixed bug - MAC Winbox connection was not very stable; *) added support for MPLS & VPLS; At last, it is recognized that MAC Winbox had something..... And , at first hand, a BIG, BIG, BIG step forward with MPLS !!!!!!!!! You are opening an otherwise closed and expensive mar...
by jorj
Tue Dec 11, 2007 11:00 am
Forum: RouterBOARD hardware
Topic: RB411/411R Extra LED's ??
Replies: 12
Views: 3311

Re: RB411/411R Extra LED's ??

first led indicates the NAND memory access. About ohter leds - you will be able to use it for signal strenght of for some other advanced features. Currently the signal strenght monitoring is not added in the RouterOS yes, but we will make it soon. If you have some other ideas where to use those led...
by jorj
Tue Dec 11, 2007 10:50 am
Forum: General
Topic: EOIP - how much overhead ?
Replies: 3
Views: 1141

EOIP - how much overhead ?

How much overhead adds the EOIP interface to the connection ? Meaning, for a 10 mbit guaranteed channel, when put an eoip on it, as the only traffic what would be the transfer of it ? ( it's a multihop network with different providers, not wireless link, so no wds argue ). I don't have _yet_ control...
by jorj
Mon Dec 03, 2007 12:10 pm
Forum: Wireless Networking
Topic: Sectored Antani's on a tower
Replies: 54
Views: 5319

Re: Sectored Antani's on a tower

Kinda' late for answer. You can put the three radios into a single rb ( there are at least 4 choices now with 3 minipci) and put them on a bridge. As the simplest solution. You can put a single ssid, if you want. If you put different ssid's, you can see them better from the cpe's situated on the "bo...
by jorj
Sun Dec 02, 2007 12:05 pm
Forum: General
Topic: 2.9.50
Replies: 9
Views: 1399

Re: 2.9.50

Well, it's just us.......... walking in the dark....... :?
by jorj
Sat Dec 01, 2007 9:42 pm
Forum: Wireless Networking
Topic: Transparent Bridge Client Config
Replies: 54
Views: 10014

Re: Transparent Bridge Client Config

That looks like the ONLY solution in this whole struggle! Buying more hardware. Oh well. :shock: :D
Well, not exactly. My sugestion was to change the ap to be the MT Box, and put that senao to be the client.
by jorj
Fri Nov 30, 2007 3:39 pm
Forum: Wireless Networking
Topic: AP problems
Replies: 2
Views: 742

Re: AP problems

Add bridge interface, add the 2 wireless interfaces, add ip address to the bridge.
Configure wireless interfaces according to your needs.
:)
by jorj
Fri Nov 30, 2007 10:29 am
Forum: Wireless Networking
Topic: Transparent Bridge Client Config
Replies: 54
Views: 10014

Re: Transparent Bridge Client Config

Maybe a better way to do it would be to put senao as client, and the mt board as ap. You might be more flexible with that, and get away with any bridge you might need. Also, you get the full mt features at the ap side.
by jorj
Fri Nov 30, 2007 9:25 am
Forum: Wireless Networking
Topic: WR: 304km with RouterOS + XR5 + handmade antenna
Replies: 77
Views: 62884

Re: WR: 304km with RouterOS + XR5 + handmade antenna

Hello.
Did you put the permanent link on ? ( you said it would be late sept. this year. )
by jorj
Fri Nov 30, 2007 8:58 am
Forum: General
Topic: 2.9.50
Replies: 9
Views: 1399

2.9.50

What's new in 2.9.50: *) nand improvement for RB532A This if from the changelog. It appears on several other releases. Could you please be more specific about the improvement ? ( meaning what kind of improvement ? the way it is handled, what areas are written and how, or what exactly, i mean if a w...
by jorj
Thu Nov 22, 2007 3:45 pm
Forum: Beginner Basics
Topic: Incapable of backups
Replies: 13
Views: 7812

Re: Incapable of backups

Is it possible that the disk is bad enough to disagree with MikroTik but works well enough to install and boot with some functionality? Yes, it is. You might loose your licence, but you can do a format with checking bad sectors....... or check it with other tools, without actually modifying anythin...
by jorj
Sat Nov 17, 2007 4:06 pm
Forum: General
Topic: Feture req: config replication among MT units
Replies: 11
Views: 2857

Re: Feture req: config replication among MT units

It's kind of incipient support for this, but, for mt device, here is what i can set if i select multiple devices: type of device parents agent SNMP PROFILE ( for me, it's kind'a cool this.... user name password. ( secure, router os device also are available.) For me, it's cool to set username, passw...
by jorj
Fri Nov 16, 2007 2:25 pm
Forum: General
Topic: Limit youtube
Replies: 4
Views: 5311

Re: Limit youtube

[Mrz: I knew. That's why i said it should intercept it.] But. Limiting youtube dns resolution won't stop this.... The actual source for the videos seems to be somewhere in the 74.x.x.x or 72.x.x.x subnet ( sorry, don't remember wich) , wich also belongs to google, and not to the range of ip's to wic...
by jorj
Fri Nov 16, 2007 9:09 am
Forum: General
Topic: Simple Queue advise
Replies: 2
Views: 485

Re: Simple Queue advise

Can we dissable the masqurade rules on the rb's and then just create all the simple queue rules on the main rb?
Yes you can.
( of course the performance of this depends on several circumstances wich you haven't put here. Such as: is it wired or wireless, might be one of the most important. )
by jorj
Fri Nov 16, 2007 9:07 am
Forum: General
Topic: Limit youtube
Replies: 4
Views: 5311

Re: Limit youtube

Hi people i am new in mikrotik, V4.x , Level 5 You're a lucky one. :) We are still waiting for MT 3.0 final, and putting RC's on the routers 8) Second, : Please help me thanks i bring you information , please bring me the best rule and explication Thanks There's no such thing as a free lunch. Your ...
by jorj
Fri Nov 16, 2007 8:52 am
Forum: General
Topic: PROXY SERVER + MIKROTIK ROUTER (can mikrotik do this..?)
Replies: 15
Views: 2060

Re: PROXY SERVER + MIKROTIK ROUTER (can mikrotik do this..?)

Your choice.
Doesn't seem so expensive to try a rb150, or a custom x86.

When you're done, come back and tell us....
by jorj
Fri Nov 16, 2007 8:49 am
Forum: Scripting
Topic: RAM's free memory drops continuously
Replies: 8
Views: 3161

Re: RAM's free memory drops continuously

Change the 3com card, i changed more than ten on several locations with intel cards, for various specific problems, and update to change the behaviour of the proxy.
Also might want to limit the memory used by the proxy, and/or use web-proxy-test package.
by jorj
Fri Nov 16, 2007 8:45 am
Forum: RouterBOARD hardware
Topic: level 3 licence where has PPPoe client gone! urgent
Replies: 6
Views: 1101

Re: level 3 licence where has PPPoe client gone! urgent

Well, you're lucky.
All my rb1xx are running 2.9.x, i'm just going nuts trying to get any of the 3.0.rc's running on anything else than 133 ( 133, not 133c ).
So as long as i don't need any of the features in 3.0 on this locations, i stick to 2.9...... :(
by jorj
Wed Nov 14, 2007 2:37 pm
Forum: General
Topic: PROXY SERVER + MIKROTIK ROUTER (can mikrotik do this..?)
Replies: 15
Views: 2060

Re: PROXY SERVER + MIKROTIK ROUTER (can mikrotik do this..?)

What are you trying to achieve, exactly ? See traffic for each client, or what exactly ? You can put a second MT, put the proxy betweeen this and your gw, and you're done in whatever you are trying. By routing or bridging. If you are instructing your clients to directly use the proxy in the os, you ...
by jorj
Wed Nov 14, 2007 2:22 pm
Forum: Scripting
Topic: RAM's free memory drops continuously
Replies: 8
Views: 3161

Re: RAM's free memory drops continuously

C'mon, you can do better than this. :)

http://www.catb.org/~esr/faqs/smart-questions.html

Or, you can tell us MT version, net cards, how much up-time, what mb, and more....
And you get help.

MT version might be the most important item. Do a search on the forum, for beta's and proxy, and see why.
by jorj
Wed Nov 14, 2007 1:15 pm
Forum: RouterBOARD hardware
Topic: level 3 licence where has PPPoe client gone! urgent
Replies: 6
Views: 1101

Re: level 3 licence where has PPPoe client gone! urgent

Silly question. ( well, let's see the answer. )
do you have ppp package installed and enabled ? ( /system package print ? )
by jorj
Tue Nov 13, 2007 12:27 pm
Forum: General
Topic: dhcp and ip problem
Replies: 3
Views: 646

Re: dhcp and ip problem

T3rm, what exactly was your problem with pppoe over wireless ?
by jorj
Mon Nov 12, 2007 4:06 pm
Forum: General
Topic: Feture req: config replication among MT units
Replies: 11
Views: 2857

Re: Feture req: config replication among MT units

as somebody pointed out - multiple device config in dude is already possible.
:oops: Seen that.
by jorj
Mon Nov 12, 2007 4:00 pm
Forum: General
Topic: Is possible to find out if anybody is behind router???
Replies: 10
Views: 1624

Re: Is possible to find out if anybody is behind router???

Well....... actually there is another way. It works for most out-of-fabric configured routers, without much customization on them. Meaning no solid firewall blocking intrusions from outside, and so on........ This works if your client did not changed his router mac address. - See what mac address yo...
by jorj
Mon Nov 12, 2007 3:47 pm
Forum: General
Topic: blog pornsites via firewall ?
Replies: 20
Views: 6713

Re: blog pornsites via firewall ?

You can get a long list of domains wich you can block trough firewall, but it won't be effective. I imported on x86 with 128 ram about 400.000 sites, and the firewall just won't pass any traffic trough it. Tried with proxy, and names to block, but also very hard work to do for the hardware...... If ...
by jorj
Mon Nov 12, 2007 3:26 pm
Forum: General
Topic: Feture req: config replication among MT units
Replies: 11
Views: 2857

Re: Feture req: config replication among MT units

For "export" scripts to be imported into another router, you have to change them a little. If you have lots of similar exampler, then you export one config, put the commands in a way that they should work, and save them. ( should work: put security profiles for wireless before interface config, get ...
by jorj
Mon Nov 12, 2007 12:24 pm
Forum: The Dude
Topic: setting default password
Replies: 5
Views: 3295

Re: setting default password

yes indeed. Partially. That part with the password is good to know. I also have some devices that do so.... For example, in beta7, it allows me to change mac address for 2 different devices. How that could be ? I'll investigate further. :) [edit] Also, setting snmp profile seems to work, wich is a g...
by jorj
Mon Nov 12, 2007 10:56 am
Forum: Scripting
Topic: How to prevent NATed access
Replies: 20
Views: 4767

Re: How to prevent NATed access

You can do set ttl to 1, but any "wise" user with some networking knowledge will pass trough that, by any of several posibilities of routers that can change ttl themselves. You can use connection limits, but even that won't help too much. Changing ttl will stop only casulal "smarties" from sharing y...
by jorj
Fri Nov 09, 2007 6:30 pm
Forum: The Dude
Topic: setting default password
Replies: 5
Views: 3295

Re: setting default password

maybe a batch config possibility would help? i imagine selecting some 100 devices, right-clicking and opening Settings, and there seeing only things I can change for all devices at once. Like iTunes manages song details? Yes ! A batch like this, or similar would be very helpful, in more than one wa...
by jorj
Wed Nov 07, 2007 10:14 am
Forum: General
Topic: How to cut off client - client traffic ?
Replies: 3
Views: 701

Re: How to cut off client - client traffic ?

Then, of course you would have to give more information to the community in order to get at least a suggestion. Or, put a bunch of rules in the firewall, for each ip, something like: src-address=192.168.1.2 dst-address=192.168.1.0/24 action=drop. Or like that. Extrapolate, and put a little effort. O...
by jorj
Wed Nov 07, 2007 10:05 am
Forum: Wireless Networking
Topic: Need more than 200 Mbit/s real traffic over ~ 5 km ?
Replies: 21
Views: 3816

Re: Need more than 200 Mbit/s real traffic over ~ 5 km ?

I'm not in the us, but here, in most cases you can rent a pole for about 1.5 usd without taxes (19%), from the electricity company. That is every month, you pay 1.5 usd. For 40 m between poles. In most cases, they will allow you to use them, unless they are really full of other wires. Second you mus...
by jorj
Wed Nov 07, 2007 9:58 am
Forum: Beginner Basics
Topic: Password recovery Mikrotik style
Replies: 10
Views: 14472

Re: Password recovery Mikrotik style

If you can access winbox through the dude, just go to users in winbox and create a new identity as admin with the user name and password of your choice. After it is created, then you can delete the other user.
Good point.

Else....... install again.
by jorj
Wed Nov 07, 2007 9:56 am
Forum: The Dude
Topic: Dude DB encription
Replies: 2
Views: 1260

Re: Dude DB encription

That is a security plan absolutely not dependant on dude. It relies on the os and the user.
I would make it further harder to read.
by jorj
Tue Nov 06, 2007 4:06 pm
Forum: General
Topic: How to cut off client - client traffic ?
Replies: 3
Views: 701

Re: How to cut off client - client traffic ?

disable default-forwarding if it is wireless hotspot. They won't communicate anymore with eachother
by jorj
Tue Nov 06, 2007 3:48 pm
Forum: RouterBOARD hardware
Topic: RB133 - No Ethernet detected
Replies: 6
Views: 1604

Re: RB133 - No Ethernet detected

Is it possible that the network card is blown.
Tested on the two location with the same computer/laptop ?
Check the power also.
by jorj
Tue Nov 06, 2007 3:43 pm
Forum: Wireless Networking
Topic: R52H Cards - 'A' ant & 'B' ant - also power settings
Replies: 7
Views: 1637

Re: R52H Cards - 'A' ant & 'B' ant - also power settings

If you have to change the pigtail, the glue might exfoliate your card...... :(, and that would not be good.
by jorj
Tue Nov 06, 2007 3:42 pm
Forum: Beginner Basics
Topic: DNS resolver
Replies: 5
Views: 8674

Re: DNS resolver

:idea:

There is another way, wich might get you to "closer" time servers:
eg:

0.europe.pool.ntp.org
0.asia.pool.ntp.org.

See ntp.org for more.

And, if you don't need DNS and you set it in the router, it won't be used. :)
by jorj
Tue Nov 06, 2007 3:37 pm
Forum: The Dude
Topic: setting default password
Replies: 5
Views: 3295

Re: setting default password

My guess is that you can't do that now. I looked also for this sometime ago. Same password seems to me like a major risk. I have them grouped in some way... You could be better by enabling snmp in cpe, setting snmp community to something, and scan that with dude. But that won't allow you to winbox o...
by jorj
Tue Nov 06, 2007 3:27 pm
Forum: The Dude
Topic: Dude DB encription
Replies: 2
Views: 1260

Dude DB encription

The dude db is in clear text ( as of 30b7 - down to 2.1). ( eg. ip of router, password are readable strings) Could this be encrypted in some way ? It might pose some risk from someone who can have access to your data, eg. starting from a livecd or some other way, if you stored the passwords in the d...
by jorj
Tue Nov 06, 2007 3:20 pm
Forum: Beginner Basics
Topic: Password recovery Mikrotik style
Replies: 10
Views: 14472

Re: Password recovery Mikrotik style

I have some mikrotik boards that I need to change passwords on. I don't have original passwords and can only access through the DUDE. Actually, what can you access trough the Dude ? SNMP data ? or start winbox from there ? If answer is winbox, than you can find the password. Also for MT to read : T...
by jorj
Tue Nov 06, 2007 1:51 pm
Forum: Wireless Networking
Topic: x86 XR5 crash
Replies: 2
Views: 625

Re: x86 XR5 crash

Update bios from dell support site.

I am using both 100 and 110 and they're all fine.
Even with 500 mw wireless cards.
Hardware should not be the problem. Though it might be. Enable wireless debug logs in the router. See what's causing disconect.
8)
by jorj
Tue Nov 06, 2007 8:22 am
Forum: Wireless Networking
Topic: Need more than 200 Mbit/s real traffic over ~ 5 km ?
Replies: 21
Views: 3816

Re: Need more than 200 Mbit/s real traffic over ~ 5 km ?

definitely it's easier to achieve 300Mbit/5km in big city than anywhere else. Highly scalable infrastructure exists anywhere in big cities...
Don't know about your zone, but here it comes almoust every time with "higly scalable" prices that make you wonder what's your profit then....
by jorj
Mon Nov 05, 2007 3:33 pm
Forum: Beginner Basics
Topic: rb133 with so 3.0rb9
Replies: 2
Views: 959

Re: rb133 with so 3.0rb9

Please go here first: http://www.catb.org/~esr/faqs/smart-questions.html and return here after.
Or, italian version: http://army1987.000webhost.org/domande.html

73
by jorj
Mon Nov 05, 2007 3:28 pm
Forum: Beginner Basics
Topic: Incapable of backups
Replies: 13
Views: 7812

Re: Incapable of backups

Do a /system check-disk, better.

If your configuration ain't that complicated, clean install it. Netinstall or cd-install.
Should fix your problem.
by jorj
Mon Nov 05, 2007 11:47 am
Forum: Beginner Basics
Topic: Troubles browsing the net, speedtouch modem using MikroTikOS
Replies: 4
Views: 1531

Re: Troubles browsing the net, speedtouch modem using MikroTikOS

You might get past some limitations of nat-ing by enabling upnp in mt box. Without allowing to disable external interface. :)
by jorj
Thu Nov 01, 2007 7:27 pm
Forum: Scripting
Topic: Please Help Is This a Bug or I made a Mistake ????
Replies: 14
Views: 1732

Re: Please Help Is This a Bug or I made a Mistake ????

MRZ
What You Mean?
What Can I do?
Upgrade?
Exactly ! 8)
by jorj
Thu Nov 01, 2007 7:25 pm
Forum: Wireless Networking
Topic: only 8KB/s throughput on ptp-link
Replies: 10
Views: 1198

Re: only 8KB/s throughput on ptp-link

Please do so. Thank you Uldis.

Off-topic: Is regulatory domain for Romania supporting now 5ghz turbo ? I just haven't any board to put it at the moment. ( see: http://forum.mikrotik.com/viewtopic.php ... 035&hilit= )
by jorj
Thu Nov 01, 2007 3:08 pm
Forum: Wireless Networking
Topic: Need more than 200 Mbit/s real traffic over ~ 5 km ?
Replies: 21
Views: 3816

Re: Need more than 200 Mbit/s real traffic over ~ 5 km ?

Not if it's across the centre of a busy city like London, Paris, New York it won't! .. or there's a river or motorway in the way ... Sorry. Thought it's common sense that.... :) Anyway in a major city crowd, it's less than probable to have clear spectrum to do it wireless with non-licensed radios. ...
by jorj
Thu Nov 01, 2007 9:14 am
Forum: Wireless Networking
Topic: Need more than 200 Mbit/s real traffic over ~ 5 km ?
Replies: 21
Views: 3816

Re: Need more than 200 Mbit/s real traffic over ~ 5 km ?

For 5 km you really should put a wire on. A fiber optic will cost you less than anything else on that distance. And will save you lots, lots, lots, lots of trouble.
Telling you from my experience. And I am paying fees to the electricity company, just to have the wire hanging on their "proprety".
by jorj
Wed Oct 31, 2007 9:02 pm
Forum: Wireless Networking
Topic: Virtual ap vs. multiple cards on RB133
Replies: 10
Views: 1328

Re: Virtual ap vs. multiple cards on RB133

Actually, samsoft, that is not always correct. For 100's of users you could not probably use a single wireless card to connect them all, and still have good traffic, be it with virtual ap or not. So, that would not be a choice. Plus of that, if you connect more wireless cards, just to have separate ...
by jorj
Wed Oct 31, 2007 3:22 pm
Forum: Beginner Basics
Topic: Troubles browsing the net, speedtouch modem using MikroTikOS
Replies: 4
Views: 1531

Re: Troubles browsing the net, speedtouch modem using MikroTikOS

Unless your buffalo router is wireless, you really don't need it. MT box should be much more capable than it. 1. enable your mt to dial pppoe, and get an ip, on your public interface. 2. add an address on your local interface 3. enable NAT if you must ( probably yes) 4. setup dhcp to forward correct...
by jorj
Wed Oct 31, 2007 9:24 am
Forum: Wireless Networking
Topic: Virtual ap vs. multiple cards on RB133
Replies: 10
Views: 1328

Re: Virtual ap vs. multiple cards on RB133

Primary scope would be of course separating clients, or putting clients grouped on a whatever your criteria is.
Or, you can make a bridge btw. a vap and another interface, without disturbing other clients. Bridge only the ones you want. Your imagination is the limit.
by jorj
Wed Oct 31, 2007 9:22 am
Forum: Wireless Networking
Topic: Virtual ap vs. multiple cards on RB133
Replies: 10
Views: 1328

Re: Virtual ap vs. multiple cards on RB133

You can of course use like this: /interface wireless add name="virtual_ap_interface_name" mtu=1500 \ master-interface=wlan1 \ ssid="_OUR_FIRM_Call_us_for_hi-speed_internet_access_Phone_12341234\ default-authentication=no default-forwarding=no hide-ssid=no security-profile=default disabled=no
by jorj
Wed Oct 31, 2007 9:06 am
Forum: General
Topic: IPTables Quota Module / Patch Please
Replies: 7
Views: 2610

Re: IPTables Quota Module / Patch Please

Sorry. Didn't mean to make you lazy. At current i don't think you can make what you want without using simple queues. Or by other means, using nothing else but the mt. You can use traffic counter, and external tools, but not with only mt. You must have a separate machine to do it. You can use a scri...
by jorj
Tue Oct 30, 2007 7:29 pm
Forum: Scripting
Topic: Please Help Is This a Bug or I made a Mistake ????
Replies: 14
Views: 1732

Re: Please Help Is This a Bug or I made a Mistake ????

In the first post, you said it works fine on one router. Your script.
If you move it to another router, and you use find to locate the interface, you should look for the exact interface name, case dOeS matter.
by jorj
Tue Oct 30, 2007 7:26 pm
Forum: Wireless Networking
Topic: only 8KB/s throughput on ptp-link
Replies: 10
Views: 1198

Re: only 8KB/s throughput on ptp-link

Will this show cpu lower than 100% on 133c and 112 ? ( 3.0rc9 ? )
All this boards are with 2.9.43 and in production. I wouldn't put anything on them if i have to wait 5 minutes for each command to be executed in winbox or cli.
by jorj
Tue Oct 30, 2007 3:52 pm
Forum: Scripting
Topic: Please Help Is This a Bug or I made a Mistake ????
Replies: 14
Views: 1732

Re: Please Help Is This a Bug or I made a Mistake ????

Do your wireless interfaces have exactly the same name on each router ?
You are using find to locate them by name.
And yes, do use /interface print OR /interface wireless print, only one of them, for consistency.
by jorj
Tue Oct 30, 2007 2:25 pm
Forum: Wireless Networking
Topic: only 8KB/s throughput on ptp-link
Replies: 10
Views: 1198

Re: only 8KB/s throughput on ptp-link

You are saying that you have Both direction Tx Rx udp 14,7/14,7 Mbps tcp 2,2/8,2 Mbps and only in ftp transfer you get 8kb ? Should your ftp server shape your connections in any way ? Is there a restriction on it ? Try to transfer files with filezilla. See what happens. I got some weird results test...
by jorj
Tue Oct 30, 2007 12:28 pm
Forum: Wireless Networking
Topic: only 8KB/s throughput on ptp-link
Replies: 10
Views: 1198

Re: only 8KB/s throughput on ptp-link

Don't know if this helps, but btw. two 133 and 133c i got ~ 6mbits one way, -78db signal, with r52. It's a three point wds bridge, with 1 ap and two station-wds. Try changing the ap to be the 333 board. See if it changes anything. Also do reset the configuration on both ends, and make it again. With...
by jorj
Tue Oct 30, 2007 8:24 am
Forum: Wireless Networking
Topic: Virtual ap vs. multiple cards on RB133
Replies: 10
Views: 1328

Re: Virtual ap vs. multiple cards on RB133

Yes, but the "officials" want to keep it secret. I put 2 routerboards 133, with 2 vap each one. Unfortunately. It runs just fine. But for 4 vap, i did not have the courage to try it on a rb1xx. I put 3 vap on x86, pii500, and it runs fine. But they are only about 25 clients on that ap, and the traff...
by jorj
Sun Oct 28, 2007 8:27 pm
Forum: General
Topic: IPTables Quota Module / Patch Please
Replies: 7
Views: 2610

Re: IPTables Quota Module / Patch Please

Can't see what exactly you don't get. Take the second example. Put whatever addresses you have, and whatever limit you choose, and you're done. set [find target-addresses=("192.168.1." . $i)] max-limit= 32000/64000 in the example should be for you: add list=your_list_name address=("192.168.1." . $i)...
by jorj
Wed Oct 24, 2007 8:16 am
Forum: General
Topic: EoIP compression?
Replies: 3
Views: 919

Re: EoIP compression?

Yes, it must be put on both ends.
But remember. It will improve much small packets delivery. For large packets you won't see much.
You will also benefit from this on wireless links. It is so for me. All the links between mt's have packing on.
by jorj
Tue Oct 23, 2007 3:36 pm
Forum: General
Topic: EoIP compression?
Replies: 3
Views: 919

Re: EoIP compression?

I think that for now you can only use /ip packing for improving transfer of many small packets, but compression as you want it may be better by educating you clients to zip the files before transfer.
by jorj
Tue Oct 23, 2007 1:11 pm
Forum: General
Topic: PCQ subqueues scenario
Replies: 11
Views: 1246

Re: PCQ subqueues scenario

post here a /queue export , along with a /ip address export. You should get a straight answer then. How many clients do you have connected wireless ? You could make mt2 bridge between ethernet and wireless, and have a single broadcast domain. And then every single thing should be allright. This as l...
by jorj
Tue Oct 23, 2007 10:51 am
Forum: General
Topic: IPTables Quota Module / Patch Please
Replies: 7
Views: 2610

Re: IPTables Quota Module / Patch Please

Read carrefully before posing questions. See this: http://wiki.mikrotik.com/wiki/Limiting_a_user_to_a_given_amount_of_traffic http://wiki.mikrotik.com/wiki/Limiting_a_user_to_a_given_amount_of_traffic_II It's good work. Instead of limiting, you can put limit at 1 kb/ 1 kb. And you're done. Or you ca...
by jorj
Tue Oct 23, 2007 10:46 am
Forum: Beginner Basics
Topic: Does Webproxy cache website in its default settings
Replies: 12
Views: 2192

Re: Does Webproxy cache website in its default settings

20% is a good sign.
Usually 10% would make you happy. :)
AND, that 20% is 20% of your bandwidth saved for other purposes.
by jorj
Mon Oct 22, 2007 3:15 pm
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

Thank you very much Uldis.
I will wait and I will see.
by jorj
Mon Oct 22, 2007 1:33 pm
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

legal - that MT know of. if MT sees that one or another frequency is allowed it is added immediately For the first, i totally agree. But if you can't see the moon, it doesn't mean it doesn't exist. And second: I doubt that. I am stating this since ....... i don't know of....... It's been a looooooo...
by jorj
Mon Oct 22, 2007 12:46 pm
Forum: General
Topic: PCQ subqueues scenario
Replies: 11
Views: 1246

Re: PCQ subqueues scenario

Independent if nat-ing or not, your queues should stay on mt2. If a client has a bandwidth limit, put it as closer to him as you can. This will reduce the traffic you don't allow in the rest of your network. Be it wired or wireless. And, second, you are probably only doing nat on the adsl modem, or ...
by jorj
Mon Oct 22, 2007 11:51 am
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

frequency settings for countries and new countried backported from version 3.0 to version 2.9, so all the newest freqency settings are there. See http://forum.mikrotik.com/viewtopic.php?f=7&t=17543&hilit= Is there a single chance to do this right ? New legal, or new mt decided to be legal ? I here ...
by jorj
Mon Oct 22, 2007 11:36 am
Forum: General
Topic: MUM for Australia - any planning?
Replies: 38
Views: 5363

Re: MUM for Australia - any planning?

I want only one thing. I am using MT since 2.7. I read all the manuals from 2.8 till now. I only wish that when a new option appears, it could be documented, some way. Here, in the forum, or else. Recent examples are the wireless-crd...... and the 2.9.45 change to regulatory domains. It's frustratin...
by jorj
Sat Oct 20, 2007 9:55 pm
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

wireless-crd seems to be the new Country Regulatory Domain.
I just ain't that pacient to install it and to find out AFTER that what kind of changes have been made. I'm too scared.
2.9.45 cured me of doing this.
by jorj
Fri Oct 19, 2007 5:40 pm
Forum: General
Topic: 2 WAN Failover Script :: Problem
Replies: 9
Views: 1447

Re: 2 WAN Failover Script :: Problem

Public ip - the gateway of the adsl modem might be reached trough the other gateway, and thus answer to ping even if the adsl is down.

If you want to say public ip meaning the public ip assigned to the adsl modem, than this could be one answer, if the ip is known, and not dynamic.
by jorj
Fri Oct 19, 2007 5:18 pm
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

Up and running now.
I'll just go home see the wonder.
by jorj
Fri Oct 19, 2007 2:18 pm
Forum: General
Topic: 2.9.48
Replies: 9
Views: 1458

Re: 2.9.48

by jorj
Fri Oct 19, 2007 2:13 pm
Forum: General
Topic: 3.0rc7 ??
Replies: 23
Views: 3939

Re: 3.0rc7 ??

Even if you can see the future, and even if you wait for it..... you might get to http://www.mikrotik.com/download.html and well..... you might see this: :) ERROR: Gateway Timeout Your cache administrator is no-reply@mikrotik.com. Generated Fri, 19 Oct 2007 11:09:49 GMT by 66.228.113.26 (Mikrotik Ht...
by jorj
Thu Oct 18, 2007 9:25 pm
Forum: General
Topic: 2 WAN Failover Script :: Problem
Replies: 9
Views: 1447

Re: 2 WAN Failover Script :: Problem

GW1 - 10.1.1.1 (Goes to ADSL modem so this is a private IP) GW2 - 203.114.162.1 (Public IP address) How can I successfully do failover with GW1 being my primary GW and GW2 being the failover? Someone suggested I use check-gateway PING for GW1 and Distance 2 for GW2, problem is if the ADSL modem is ...
  • 1
  • 2