Community discussions

Search found 94 matches

by nitrium
Fri Jun 22, 2012 5:46 pm
Forum: General
Topic: Mikrotik hotspot jams my inter-lan connctivity
Replies: 5
Views: 747

Re: Mikrotik hotspot jams my inter-lan connctivity

Maybe if you separate the hotspot on another interface using VLAN, it should stop messing with your other devices. But I can be wrong about this!!!
by nitrium
Thu Nov 24, 2011 3:39 pm
Forum: General
Topic: pcq problems
Replies: 3
Views: 841

Re: pcq problems

Yeah, you are right dude. Its working now. Thx very much!
by nitrium
Fri Nov 18, 2011 4:38 pm
Forum: General
Topic: pcq problems
Replies: 3
Views: 841

Re: pcq problems

Hi again, as I could track here, the problem is that the pcq is getting the substreams by src-address, but if the client opens multiple connections for a download, even if the src-address is the same, the pcq queue will get one substream for every connection and give it the pcq-rate defined. Thats n...
by nitrium
Fri Nov 18, 2011 4:14 pm
Forum: General
Topic: pcq problems
Replies: 3
Views: 841

pcq problems

Hi there, Im having some problems with my queue trees. I mangled the packets from PPPoE and this is working fine. The problem is that even if I set a pcq tree with 512k rate, the client just dont get the limitation. It goes wild and starts getting all my bandwidth. Why is it happening? I will post m...
by nitrium
Fri Nov 11, 2011 11:52 pm
Forum: General
Topic: VLAN bridge NAT
Replies: 1
Views: 608

Re: VLAN bridge NAT

Check your gateway and make sure it is reachable by the VLAN interface also. I mean, it looks like your VLAN is working fine but dont find a route to the outer world.
by nitrium
Mon Oct 03, 2011 7:46 pm
Forum: General
Topic: PPPoE Over VLAN
Replies: 6
Views: 14100

Re: PPPoE Over VLAN

Thx Rich, this make me feel more confortable since I know this setup is working for someone, Now I will just try some setups on the routers that are bridged since the problem probably is about tagging packets to the right VLAN so the PPPoE concentrator receives them!

Cya.
by nitrium
Thu Sep 29, 2011 11:09 pm
Forum: General
Topic: PPPoE Over VLAN
Replies: 6
Views: 14100

Re: PPPoE Over VLAN

Hi again, just passing by to see if anyone has a solution. I will try some options like virtualizing ROS and creating Virtual interfaces on the VM to act as the VLANS but without ID, the problem is that everytime I add a new interface I need to restart the VM to make the System recognize it. PPPoE o...
by nitrium
Tue Sep 27, 2011 3:05 pm
Forum: General
Topic: PPPoE Over VLAN
Replies: 6
Views: 14100

Re: PPPoE Over VLAN

hi there, Im showing the config Im using! 0 R WAN-20MB ether 1500 1 R InterServers ether 1500 2 R APs ether 1500 1600 1600 3 R LAN ether 1500 1600 1600 4 R RB-Wi vlan 1500 1596 5 R Clientes Wireless vlan 1500 1596 The Clientes Wireless is the interface I want to place PPPoE concentrator over. It don...
by nitrium
Thu Sep 22, 2011 6:58 am
Forum: General
Topic: PPPoE Over VLAN
Replies: 6
Views: 14100

PPPoE Over VLAN

Hi there, Im trying to make my PPPoE concentrator to work over a VLAN. Right now its directly on the interface but since Im starting to sell dedicated links its interesting to get all my PPPoE clientes on a VLAN and not directly on the ether interface because I wanna QoS and shape the bandwidth of m...
by nitrium
Thu Mar 10, 2011 7:38 pm
Forum: Wireless Networking
Topic: Net Prohibited issue
Replies: 7
Views: 10675

Re: Net Prohibited issue

You have to agree with me, I got some attention with that last reply of mine... Well, now I can dig up some solution based on your reply! Thx dude and I was really desperate!!!
by nitrium
Thu Mar 10, 2011 6:57 pm
Forum: Wireless Networking
Topic: Net Prohibited issue
Replies: 7
Views: 10675

Re: Net Prohibited issue

Really? No one ever had this problem? No one knows nothing about this? And for sure no one is willing to help!!!!!! At least if no one knows nothing, say so. This problem is really annoying and since Im using RADIUS, when it happens my users cant auth... What can it possibly be?????????????? Im tryi...
by nitrium
Wed Mar 09, 2011 8:54 pm
Forum: Wireless Networking
Topic: Net Prohibited issue
Replies: 7
Views: 10675

Re: Net Prohibited issue

Come on guys.... any suggestion so I can fix this? I tried to upgrade to version 4.17 stable... guess what.... same problem! This is complete nonsense. It just stop working on the IP its using and I have to change the IP so it can work nice again for some time!!!!!
by nitrium
Wed Mar 02, 2011 8:35 pm
Forum: Wireless Networking
Topic: Net Prohibited issue
Replies: 7
Views: 10675

Re: Net Prohibited issue

Any solution to this problem? I cant figure out what is the cause of this problem!!!
by nitrium
Fri Feb 11, 2011 7:01 pm
Forum: Wireless Networking
Topic: Net Prohibited issue
Replies: 7
Views: 10675

Net Prohibited issue

Hi there, I have a problem that is really annoying. All my RB433 with ROS v 4.16 are acting the same way. Its working fine and suddenly the IP stops responding and I have to access it by MAC. Then when I try to ping from it to my other routers or any valid IP I get "net prohibited" error message. Th...
by nitrium
Sat Oct 23, 2010 11:29 pm
Forum: Wireless Networking
Topic: Question about diferent data rates simultaneously
Replies: 7
Views: 1333

Re: Question about diferent data rates simultaneously

I think this topic shall continue because im pretty sure there is a lot more ppl with the same question unanswered!
by nitrium
Sat Oct 23, 2010 9:31 pm
Forum: Wireless Networking
Topic: Question about diferent data rates simultaneously
Replies: 7
Views: 1333

Question about diferent data rates simultaneously

Hi there, Im wondering if when I have several clients on a interface wireless and some clients are at 54MB and others at 11MB, this mean all clients would be at 11MB or the hardware can simultaneously send data at 54MB to one client and at 11MB to another? Im asking because Im trying to stabilize al...
by nitrium
Fri Oct 22, 2010 10:02 pm
Forum: General
Topic: VLAN Config
Replies: 5
Views: 730

Re: VLAN Config

Ok, but since I dont have that 4 interfaces in bridge, and I want a VLAN to me also so I can split 2MB from my 10MB link for the client, how can I set the 3 interfaces(LAN, APs and PROXY/RADIUS) to use the same VLAN(mine) and set the APs to use the clients VLAN also?
by nitrium
Fri Oct 22, 2010 9:53 pm
Forum: General
Topic: VLAN Config
Replies: 5
Views: 730

Re: VLAN Config

So in practice, I have to route the block of IPs I want to the VLAN that will go to the client I want? And place the VLAN on the APs interface, since the client will connect on that interface. Is that right?
by nitrium
Fri Oct 22, 2010 9:24 pm
Forum: General
Topic: VLAN Config
Replies: 5
Views: 730

VLAN Config

Hi there. Im new on VLANs and would like some ideas!!! I have 4 eth interfaces not bridged and its like that: WAN LAN APs PROXY/RADIUS the WAN has my valid IP Blocks. I want to know how can I set a VLAN to separate my link(currently 10MB) into separate links. Lets say that I need to serve a client w...
by nitrium
Mon Aug 02, 2010 9:32 pm
Forum: General
Topic: PPPoE profile and queue tree
Replies: 11
Views: 4222

Re: PPPoE profile and queue tree

I experienced this problem some time ago, it has something to do with the global queue setting, since its a dinamic IP in the PPPoE interface it goes after the HTB and not before if Im not mistaken.
by nitrium
Mon Aug 02, 2010 9:28 pm
Forum: General
Topic: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius
Replies: 12
Views: 1819

Re: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Rad

Actually, two versions would be very interesting. One free of charge and another with more features with a small fee! Anyways Im almost ending my engineering course so I can use some help from my teachers to start the project!
by nitrium
Wed Jul 28, 2010 7:18 pm
Forum: General
Topic: PPPoE profile and queue tree
Replies: 11
Views: 4222

Re: PPPoE profile and queue tree

Actually the pppoe profile will be obeyed until the packets fall into the queue tree rule, then it will obey that rule instead of the pppoe profile. Anything that dont fit at queue tree rule will follow the rate setted at the pppoe profile. Any problem just post here again :) Cya...
by nitrium
Wed Jul 28, 2010 7:16 pm
Forum: General
Topic: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius
Replies: 12
Views: 1819

Re: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Rad

Thx very much guys, I will see what solution I will use and consider your sugestions. In the meanwhile I will project my own system also to see if I can make something nice :) Anyway I will post here any progress I have, Cya around ppl!
by nitrium
Sat Jul 24, 2010 11:41 pm
Forum: General
Topic: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius
Replies: 12
Views: 1819

Re: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Rad

I didnt liked the interface of dialupadmin... I was trying to use daloradius instead, but maybe I shall try something like MyAuth3, unfortunately its paid! Thx anyway guys!
by nitrium
Sat Jul 24, 2010 11:37 pm
Forum: General
Topic: PPPoE profile and queue tree
Replies: 11
Views: 4222

Re: PPPoE profile and queue tree

Hi again... Im not that good at queues too but I think if you just put max-limit at 20M and dot put a limit an user with PPPoE account limited to 512K can get no limit when it goes by the queue tree because it will be limited by 20M and for sure the client dont have a 20M interface beetween you and ...
by nitrium
Sat Jul 24, 2010 2:43 am
Forum: General
Topic: PPPoE profile and queue tree
Replies: 11
Views: 4222

Re: PPPoE profile and queue tree

Im from Brazil, as I see you dont have to modify your profile at PPPoE since queue tree will be obeyed over simple queues when the packets are identified as being part of one q-tree. I used cache full for thundercache proxy here and when it passd over the q-tree, even if my profile gets 512k as down...
by nitrium
Sat Jul 24, 2010 2:24 am
Forum: General
Topic: PPPoE profile and queue tree
Replies: 11
Views: 4222

Re: PPPoE profile and queue tree

Well actually there is a lot of places on earth that dont sell large links and dont have good coverage, so the solution is a WISP with this kind of link to supply the demand. I also sell 256k and 512k links to my clients and there is a lot of people seeking for the services! And about the topic, why...
by nitrium
Sat Jul 24, 2010 1:38 am
Forum: General
Topic: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius
Replies: 12
Views: 1819

Re: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Rad

I already use it, I want a 3rd party program to use in a dedicated server, not inside my box!
by nitrium
Fri Jul 23, 2010 10:11 pm
Forum: General
Topic: Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius
Replies: 12
Views: 1819

Program to manage clients,WPA2 PSK,PPPoE and HotSpot Radius

Hi there, I´m wondering if there is any good program opensource to manage all the stuff above with FreeRadius and integrate with Mikrotik. Something that manage my client data and all about authentication!
by nitrium
Fri Jul 23, 2010 6:44 pm
Forum: General
Topic: PPPoE disconnecting without any reason
Replies: 1
Views: 493

Re: PPPoE disconnecting without any reason

Hi there, I have figured out the problem. Well, the actual problem was in the wireless interfaces bridged after the PPPoE concentrator, it was droping the clients and reconnecting after a while making the PPPoE drops also. Thats because of some misplaced configuration I did using HW retries and Fram...
by nitrium
Fri Jul 23, 2010 6:42 pm
Forum: Wireless Networking
Topic: ISP Project for more than 200 clients
Replies: 1
Views: 783

Re: ISP Project for more than 200 clients

Hi again, I just wanna say that the problems with instability have been solved by using the default values of HW retries and Frame Lifetime, I played with those values and this wasnt a good idea. I also reduced the power rate of the cards to 15db and it proved to be very helpful increasing stability...
by nitrium
Thu Jul 22, 2010 2:55 pm
Forum: General
Topic: PPPoE one session per host
Replies: 4
Views: 3460

Re: PPPoE one session per host

Thank you very much!
by nitrium
Thu Jul 22, 2010 2:27 am
Forum: Wireless Networking
Topic: ISP Project for more than 200 clients
Replies: 1
Views: 783

ISP Project for more than 200 clients

Hi there. I have an ISP with 212 clients right now but Im experiencing some trouble and its probably because of my design... so I wanna discuss it here and see if someone that passed by the same situation can enlight me on the right way. In the time beign I have 3 omnis Hyperlink 15DB each in difere...
by nitrium
Thu Jul 22, 2010 2:19 am
Forum: General
Topic: PPPoE disconnecting without any reason
Replies: 1
Views: 493

PPPoE disconnecting without any reason

Hi there, Im experiencing some big problem here. My PPPoE clients randomly disconnect and after some seconds connects again. Some of my APs at clients dont connect again and I have to go to the client and power down the APs so they connect again. I also set the KeepAlive to 500 to see if it helps bu...
by nitrium
Thu Jul 22, 2010 2:11 am
Forum: General
Topic: PPPoE one session per host
Replies: 4
Views: 3460

Re: PPPoE one session per host

I suspected I should use RADIUS instead, but with RADIUS should I enable One Session Per Host also to work?
by nitrium
Wed Jul 21, 2010 9:19 pm
Forum: General
Topic: PPPoE one session per host
Replies: 4
Views: 3460

PPPoE one session per host

Hi there, there is a way to make One Session Per Host to be determined by username and not by MAC? It would be very nice because this way I dont need to use WDS on my entire structure to make the concentrator receive the client MAC behind other routers!
by nitrium
Mon Jul 19, 2010 3:07 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

Hi, so any ideas? Im still stuck!
by nitrium
Wed Jun 30, 2010 2:16 am
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

Hi there, Im still trying here but without success... any ideas so far?
by nitrium
Tue Jun 22, 2010 5:14 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

/radius
add accounting-backup=no accounting-port=1813 address=192.168.1.2 \
authentication-port=1812 called-id="" comment="" disabled=no domain="" \
realm="" secret=xxxxxx service=wireless timeout=300ms
/radius incoming
set accept=yes port=1700


Sorry for the delay to answer!
by nitrium
Tue Jun 15, 2010 8:18 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

[xxxx@BrNet - POP Principal] /radius> print Flags: X - disabled # SERVICE CALLED-ID DOMAIN ADDRESS SECRET 0 wireless 192.168.1.2 idp4206 [xxxx@BrNet - POP Principal] /radius> Thats it, the IP is from an address I have in a interface connected directly with my radius server. This config above is from...
by nitrium
Fri Jun 11, 2010 8:24 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

As requested, Im sending the file with the logs. Just for the record, its telling that it got timeout but I checked the Server and its with radiusd running and also receiving the packets from my RouterOS! Any help would be great :)
log.1.txt
by nitrium
Thu Jun 10, 2010 11:53 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

Hi again, so.. any ideas? I dont think its a complicated thing to do because a lot of people already use this method, I just wanna know why my system isnt working right. When it goes to the RADIUS server it dont auth. Correct me if Im wrong. First, if I have a wlan interface without WPA2 active, i d...
by nitrium
Tue Jun 08, 2010 4:00 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

Re: WPA2 PSK + DaloRadius + Freeradius

Hi there, Actually Im using for WPA and WPA2 but all my PSK are longer than 8 digits. The config you suggest is already done in my RouterOS, the problem isnt that... As I see, the RB refuses to authenticate when the reply comes from the RADIUS server. I run FreeRadius on debug mode and can see the r...
by nitrium
Mon Jun 07, 2010 9:53 pm
Forum: Wireless Networking
Topic: WPA2 PSK + DaloRadius + Freeradius
Replies: 12
Views: 4829

WPA2 PSK + DaloRadius + Freeradius

Hi there! First of all, I know there are other posts about this problem but they didnt solve my issue, so Im posting here to see if we can make my config work :) Right now I have a FreeRadius daemon running on a CentOS distribution in a virtual machine on a XenServer. I have DaloRadius configured on...
by nitrium
Tue Apr 13, 2010 9:27 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Thx very much for the reply guys, now Im starting to see a light on the end of the tunnel! I will try to implement this here and tell anything about the results. Cya around!!!
by nitrium
Thu Apr 01, 2010 2:34 am
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

OK, but i need to authenticate many clients behind the pop, and I want the central unit to get the mac address of the clients behind my pop without using WDS, there must be a way to route this information across the router so I dont get the router MAC for every PPPoE client behind it, but actually t...
by nitrium
Mon Mar 29, 2010 10:03 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Any ideas?
by nitrium
Fri Mar 19, 2010 5:53 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

I got another Idea, If i centralize only autentication on the concentrator and decentralize tunneling... for example, I set a PPPoE server on my other pops but set the radius IP of the central unit with user manager... this should work right? The only problem is that after I did this(with diferent s...
by nitrium
Thu Mar 18, 2010 4:08 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Hi there, Thx for the reply but I made a little research and found something about BCP bridging(PPP tunnel bridging). Am I right assuming this will work sending a MAC behind a router to the PPPoE concentrator using this? If im not, I will try to implement your option :)!
by nitrium
Thu Mar 18, 2010 2:05 am
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Trying to make me understand:
how do I centralize a PPPoE server and make One Session per User work behind other routers?

Any ideas??? I need to scale my network and this is important, how I do this?
by nitrium
Mon Mar 15, 2010 9:21 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Come on, it has to be a way!
by nitrium
Wed Mar 10, 2010 3:39 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

Re: PPPoE One session without WDS, HOW?

Any ideas?
by nitrium
Wed Mar 10, 2010 12:35 am
Forum: Forwarding Protocols
Topic: router config with open PPPoE
Replies: 2
Views: 1084

Re: router config with open PPPoE

I can be wrong since i dont have a lot of experience, but why you dont set a hotspot with no valid user at all just showing the page you want. If the client dont connect to PPPoE it will automatically go to hotspot login page. If you need more filters, just write a script in the primary router and p...
by nitrium
Tue Mar 09, 2010 4:24 pm
Forum: General
Topic: PPPoE One session without WDS, HOW?
Replies: 15
Views: 2816

PPPoE One session without WDS, HOW?

Hi there, Im using PPPoE on my infra-structure, but the problem is: How can I set One session per Host in PPPoE and not use WDS so the limit and overheading wont be a problem? Since if you activate One session per host you cant connect two clients with the same MAC, how can i solve this problem with...
by nitrium
Wed Sep 02, 2009 5:20 pm
Forum: General
Topic: Squid + RouterOS - Simple Queues stop working
Replies: 0
Views: 752

Squid + RouterOS - Simple Queues stop working

Hi there. I actually configured my squid on a CentOS 5.3 and used RouterOS internal WebProxy to point to squid server. I placed nat rules to redirect to port 3128 on localhost and webproxy of routeros to redirect to my parent proxy. Its working fine but now my clients are with unlimited bandwidth. I...
by nitrium
Sat Aug 29, 2009 12:52 am
Forum: General
Topic: using PPPoE and Hotspot Together
Replies: 3
Views: 546

Re: using PPPoE and Hotspot Together

Actualy you need to set NAT in your clients, so if they want to use DHCP servers on the APs, there will be no problem since it will relay only in their local net(AP to PC, not AP to your net). You can try to get this DHCP config on a notebook and access the gateway it gives by browser to see what AP...
by nitrium
Thu Aug 27, 2009 1:05 am
Forum: General
Topic: Transparent HotSpot
Replies: 13
Views: 1949

Re: Transparent HotSpot

I had some problem with HotSpot logging but not navigating. The solution was to set HTTP Proxy to a valid proxy of yours and set the right port as well... I dont know why this happened to me but it solved the problem. To see if you have the same problem as I do, check if https works. In my case Http...
by nitrium
Thu Aug 27, 2009 1:03 am
Forum: General
Topic: Freeradius + Mikrotik - How to use Accounting right!
Replies: 7
Views: 4535

Re: Freeradius + Mikrotik - How to use Accounting right!

Hi there, I already checked those rules in My filter in firewall and its fine... 1812 and 1813 TCP and UDP has Accept rule!!!
by nitrium
Wed Aug 26, 2009 7:26 pm
Forum: General
Topic: Freeradius + Mikrotik - How to use Accounting right!
Replies: 7
Views: 4535

Re: Freeradius + Mikrotik - How to use Accounting right!

I dont know if its right but i typed "SELECT * FROM radacct;" and it shows empty. About the interim update I placed 30 seconds just to see if it would send acc packets to radacct but nothing showed up. Thats why Im a little confused about how accounting works. As it is configures it should already b...
by nitrium
Wed Aug 26, 2009 7:13 pm
Forum: General
Topic: Transparent HotSpot
Replies: 13
Views: 1949

Re: Transparent HotSpot

Hi, look, Im not very used to those configurations yet, but since I researched A LOT about RADIUS, UserManager and Hotspot those last days to make my system work here I bet your problem could be the router setting in UserManager. Do you set the bridge IP? I mean, your hotspot IP Interface and the ro...
by nitrium
Wed Aug 26, 2009 7:09 pm
Forum: General
Topic: using PPPoE and Hotspot Together
Replies: 3
Views: 546

Re: using PPPoE and Hotspot Together

Hi there. How your clients connect to your infrastructure? I have both PPPoE and Hotspot here but it works this way: If the client isnt a fixed customer(who pays montlhy), he dosnt have a PPPoE config in his access and automaticaly it connects to the IP Pool of the HotSpot and fall on the login page...
by nitrium
Wed Aug 26, 2009 6:52 pm
Forum: General
Topic: Freeradius + Mikrotik - How to use Accounting right!
Replies: 7
Views: 4535

Freeradius + Mikrotik - How to use Accounting right!

Hi there, I was asked to open a new post on this subject and here I am. Im actually researching on how to use Accounting correctly with the MySQL tables from FreeRadius and the Mikrotik RouterOS System. Well, first of all... I think we need to start on how to set limitations to a user basis in their...
by nitrium
Wed Aug 26, 2009 4:34 pm
Forum: General
Topic: Freeradius + MySQL + Mikrotik
Replies: 7
Views: 4692

Re: Freeradius + MySQL + Mikrotik

Hi again. I just found out the problem why My HotSpot returned the message "RADIUS server is not responding". Its because the address I placed on the RouterOS Radius config was an internal one in the second eth of the CentOS server of RADIUS, Dont know why it didnt worked because its linked directly...
by nitrium
Wed Aug 26, 2009 2:33 am
Forum: General
Topic: Freeradius + MySQL + Mikrotik
Replies: 7
Views: 4692

Re: Freeradius + MySQL + Mikrotik

Hi again, I got the password problem working now, just had to modify the encription method from crypt to clear on admin.conf in dialup_admin configuration files, but the problem now is that even accepting the authentication right in freeradius, the HotSpot login page on my client shows "RADIUS serve...
by nitrium
Wed Aug 26, 2009 1:56 am
Forum: General
Topic: Freeradius + MySQL + Mikrotik
Replies: 7
Views: 4692

Re: Freeradius + MySQL + Mikrotik

Hi there, thx for your reply! Im using DialUP Admin to input user data on database, SQL isnt commented on radiusd.conf and the authenticate methods are set also. In the usr/local/etc isnt a raddb dir. Im using the CentOS 5.3 distro of Linux. The raddb dir is on /etc in my install setup! If you need ...
by nitrium
Fri Aug 21, 2009 1:54 am
Forum: General
Topic: Freeradius + MySQL + Mikrotik
Replies: 7
Views: 4692

Freeradius + MySQL + Mikrotik

Hi there, Im trying to configure a freeradius server on CentOS 5.3 and Im having some problems with the integration with Mikrotik and Auth methods on Freeradius. Im using RouterOS 3.26 license lvl6 and Im trying to use HotSpot and do the authentication on the external RADIUS server. I have two big p...
by nitrium
Thu Jun 18, 2009 9:00 pm
Forum: General
Topic: I pass through slow for cause (P2P), I have the solution
Replies: 4
Views: 1243

Re: I pass through slow for cause (P2P), I have the solution

This guy just wrote everything in portuguese and then used a translator program to do the translation to english and then pasted it here lol! Really hard to get the point he is trying to show hsuasuhsau!!!
by nitrium
Fri Aug 22, 2008 5:37 pm
Forum: Wireless Networking
Topic: silkroad
Replies: 5
Views: 1533

Re: silkroad

Well, for msn you can use mangle to mark connection of port 1863 and 6891-6901 both udp and tcp and later mark packet using the connection marked above like that: 95 ;;; MSN ######################################################################################################################### chai...
by nitrium
Fri Aug 22, 2008 5:11 pm
Forum: Wireless Networking
Topic: Security Issues and researching, need some ideas!
Replies: 6
Views: 1350

Re: Security Issues and researching, need some ideas!

Thx for all the replys guys, its good to know some options like these! I already have a radius server configured on a linux box but didnt make it work along with my RouterOS, just lack of info to configure it right but i will keep trying. I dont wanna use usermanager so im using FreeRadius on a Slac...
by nitrium
Wed Aug 20, 2008 2:22 am
Forum: General
Topic: HELP NEEDED! Most net apps not working with load balance
Replies: 5
Views: 1261

Re: HELP NEEDED! Most net apps not working with load balance

Just make a policy based route marking packets separated by services. Mark http, msn, HTTPS, mail and stuff like that(important stuff) and send the fast gateway, everything else send to the slower gateway. I maded this here, so basically all p2p goes on the slower gateway not comprometing the web su...
by nitrium
Wed Aug 20, 2008 2:09 am
Forum: Wireless Networking
Topic: silkroad
Replies: 5
Views: 1533

Re: silkroad

I think the connection mode isnt that important but about the ports, just torch the client while he is trying to connect to the game, so write down the utilized ports, and make that about 4 times to ensure that its not picking some random ports over a pool port. Then you mangle those packets and giv...
by nitrium
Wed Aug 20, 2008 1:56 am
Forum: Wireless Networking
Topic: Wireless high ping problem
Replies: 6
Views: 1983

Re: Wireless high ping problem

I may be wrong, but try to see if your P2P traffic(if you have any) is going crazy. I had some problems with the number of connections maded by clients using Ares and that just cracked my network. I had to block p2p traffic to make things work normally again. Just torch your network and see what ip ...
by nitrium
Wed Aug 20, 2008 1:30 am
Forum: Wireless Networking
Topic: Security Issues and researching, need some ideas!
Replies: 6
Views: 1350

Re: Security Issues and researching, need some ideas!

Thx for replying, well, if WPA2 dont make CPU overload on a routerboard 532 then its a good choice for sure. I will be trying to implement this in some of my network to see how it behave. Radius is more about control than security then? At least that was what i understood from some replys. And why i...
by nitrium
Sun Aug 10, 2008 1:06 am
Forum: Wireless Networking
Topic: Security Issues and researching, need some ideas!
Replies: 6
Views: 1350

Re: Security Issues and researching, need some ideas!

hi, so any advices? Still waiting for some ideas, thx ppl!
by nitrium
Sun Aug 03, 2008 11:16 pm
Forum: Wireless Networking
Topic: Security Issues and researching, need some ideas!
Replies: 6
Views: 1350

Security Issues and researching, need some ideas!

Hi, Im experiencing some problems with security in my wireless network. Could you guys tell me what are you using to make the best of wireless security? I have open signal(no encryption) with MAC Filter, and some firewall rules to drop packets that arent in the "valid IP" address-list. But i think a...
by nitrium
Mon Jul 21, 2008 10:27 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Thak you very much for this info dude, your explanation is very complete and i think now i can adapt your advices to my needs!!! I wil try that and if it works i post here again to close the topic. Cya around!
by nitrium
Sun Jul 20, 2008 3:14 am
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Hi again... Im still with no sucess at all doing the load balance. The config i showed above are in the IP>Route menu not IP>Route>Rules, so i cant move them! I also wanna know if im marking right the packets. Im marking in prerouting chain and im trying to use routing mark on src-nat as well to see...
by nitrium
Thu Jul 17, 2008 4:28 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Hi, well... the problem still goes! I tried some diferent aproachs like redirecting only some subnets to another link and it worked but not as i wish it has!!! When i mark packets that are port 80, 443, 21, 110, 25(important services) to go to the big link and all other packets to go to the small on...
by nitrium
Wed Jul 16, 2008 4:54 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Hi, i apreciate you help very much, but still, What i want is to route using packet marks because i have a lot of subnets and diferente clients alike, so it will be much more balanced for me if i can get the policy routing rules to work! Any more advice guys??? Or maybe someone picked my mistake in ...
by nitrium
Wed Jul 16, 2008 10:02 am
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Hi, well.. the problem is just that!!! It dont send any packets to other gateway if its not the main table! The packets only goes for the default gateway. Even if i src-nat to other gateway it wont go! Im going crazy with this allright because it worled really nice before and this thing is now just ...
by nitrium
Wed Jul 16, 2008 7:23 am
Forum: Wireless Networking
Topic: How many clients can connect to a MikroTik??
Replies: 15
Views: 3559

Re: How many clients can connect to a MikroTik??

Hi, i think beetween 40-50 is a good number to connect, first you need to know if the number of aps are going to be connected 24hrs a day or some will connect on day and others on night! But simultaneously connected i think 40 to 50 aps is a good range to work wothout loss of quality. One more thing...
by nitrium
Tue Jul 15, 2008 11:34 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Hi, i will try this aproach but what i exactly wanted to do was to make policy routing based on packet marks and making some programs and ports use 1 link while other stuff use another link! Since Ares dont have limitation, i wanna place it and other p2p software on 1 link while important stuff like...
by nitrium
Fri Jul 11, 2008 4:37 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

Pls guys, any help will be good... I need to make this work right as soon as possible! There is any problem with RouterOS 3.10 and multiple gateways? It dont work and I'm out of Ideas.... thx!!
by nitrium
Thu Jul 10, 2008 5:16 am
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Re: Cant make 2 gateways work!

here is my route setup: Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit # DST-ADDRESS PREF-SRC GATEWAY-STATE GATEWAY DISTANCE INTERFACE 0 A S 0.0.0.0/0 200.163.176.237 reachable 200.163.176.233 1...
by nitrium
Wed Jul 09, 2008 3:40 pm
Forum: General
Topic: Cant make 2 gateways work!
Replies: 21
Views: 5066

Cant make 2 gateways work!

Hi, Im experiencing some problem with 2 gateways! I cant make them to work together. One of the gateways just dont have any traffic. Only the main gateway works, even if i mangle the packets and policy route them correctly, the same problem works! The two gateways ping from routerOS but as i said be...
by nitrium
Mon Jul 07, 2008 8:01 am
Forum: General
Topic: problem with netmap and dst-nat!!
Replies: 0
Views: 2961

problem with netmap and dst-nat!!

Hi, I use RouterOS 2.9.51 and since i have 2 main gateways i got some problem with my public ips! For example, a client of mine with a real public ip netmapped to his natted ip wont have outside access anymore since i added policy routes for my two links! I know its probably a routing problem and i ...
by nitrium
Thu May 22, 2008 12:38 am
Forum: General
Topic: Cant Ping outside, but everything works fine!
Replies: 1
Views: 545

Re: Cant Ping outside, but everything works fine!

Any light on this subject yet? thx...
by nitrium
Thu May 15, 2008 3:18 am
Forum: General
Topic: Cant Ping outside, but everything works fine!
Replies: 1
Views: 545

Cant Ping outside, but everything works fine!

Hi, im using RouterOS v2.4.49 License LvL4 and since i got two links now i made the routes based on policy management using mangle! Everything is working fine, but the ping dont work for nothing outside except my Valid range of IPS of both my links and between clients also! I looked on the firewall ...
by nitrium
Thu May 15, 2008 3:09 am
Forum: General
Topic: Fight against rapidshare
Replies: 84
Views: 28311

Re: Fight against P2P on port 80

Hi guys, well.. I own an ISP and i have to deal with this stuff also! My workaround was inside the queues. I just made good use of Limit-at and Max-limit. Set Max-Limit of your client as the maximum bandwidth he can use, and Limit-at you can set at 15% or 30% of the maximum bandwidth. The most impor...
by nitrium
Sat Feb 23, 2008 8:02 pm
Forum: Wireless Networking
Topic: Connection limit
Replies: 5
Views: 3641

Re: Connection limit

I know how to do this... i suffered the same problem and finally i got a solution!!! In Mangle you need to mark "connection" and select P2P traffic and enable passtrough, then just after this rule you make another rule using the connection mark you created above and marking this one as "packet" and ...
by nitrium
Sat Feb 23, 2008 7:37 pm
Forum: Wireless Networking
Topic: Using queue tree's on a WDS bridge
Replies: 1
Views: 789

Re: Using queue tree's on a WDS bridge

Hi, im not sure about this but i have WDS working with queue trees.. Make a bridge and place as ports the WDS connection, the parent wireless interface of WDS and any other Ethernet you need to bridge, then make this bridge the default one in WDS config and not the WDS link itself! and make the WDS ...
by nitrium
Thu Oct 18, 2007 2:34 pm
Forum: Scripting
Topic: How to limit a connection to an IP ?
Replies: 5
Views: 2168

Re: How to limit a connection to an IP ?

hi. try yto use packet-marks only on queue trees. On simple queue as you are using, on target-address dont place /32 at end of ip, and all should be fine!
by nitrium
Thu Oct 18, 2007 2:17 pm
Forum: Scripting
Topic: [ask] how to limit download, upload & browsing in separate
Replies: 8
Views: 2169

Re: [ask] how to limit download, upload & browsing in separate

hi, well dude.. you can limit download and upload apart, but browsing normaly uses port 80, so the best you can do is limit download and upload over port 80 to see what happens! Of course it will count any http download you do also but i dont know another way to do this!
by nitrium
Wed Apr 04, 2007 9:07 pm
Forum: Wireless Networking
Topic: Weird problem with D-Link clients on Mikrotic AP
Replies: 0
Views: 510

Weird problem with D-Link clients on Mikrotic AP

Hi, im getting some strange problems with clients that use D-Link G520+ PCI Cards and connect to my Routerboard 502 with atheros AR5413 interfaces at 2.4GHz! I have 3 21dbi sectorial antennas. Well, the problem is that the client just connects and disconnects at randomic times during the day without...