Community discussions

Search found 615 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 13
by doush
Mon Jun 24, 2019 11:10 am
Forum: General
Topic: PPPoE Session packets being broadcast??
Replies: 39
Views: 1750

Re: PPPoE Session packets being broadcast??

Where ether1 connects to ?
by doush
Tue May 14, 2019 11:44 am
Forum: Scripting
Topic: Built in function library
Replies: 43
Views: 9677

Re: Built in function library

API responses are not Django Framework Web Template friendly for example Django cannot parse '-' . For example api(cmd='/ip/dhcp-server/lease/print') returns the following ({'.id': '*213', 'address': '192.168.10.57', 'mac-address': 'F5:DE:F1:24:DC:20', 'client-id': '1:f0:de:f1:23:dc:2a',}) .id canno...
by doush
Sat Mar 30, 2019 4:34 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

Dont upgrade to CCR1072. It is not a stable product to work with.
Frequent reboots etc..
by doush
Fri Mar 29, 2019 8:56 am
Forum: General
Topic: Running IPv6 on Mikrotik? You're out of business in 12 days time
Replies: 32
Views: 14645

Re: Running IPv6 on Mikrotik? You're out of business in 12 days time

If its not fixed by now, it is probably kernel level.
I think MT usually reacts quite fast to security patches etc.. If this one is not patched for 50 weeks time, than there has to be something in the old linux kernel preventing it.
Just a guess..
by doush
Thu Feb 28, 2019 11:33 pm
Forum: RouterOS v7
Topic: RouterOS v7.0 beta1 - when?
Replies: 553
Views: 130778

Re: RouterOS v7.0 beta1 - when?

How come new high-performance tilera replacement products can come without the new kernel ?
I dont think many modern CPUs supports the ancient mikrotik kernel nowadays.
by doush
Thu Feb 28, 2019 11:09 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

My main concern was reducing multicast traffic on the links between R1 and R2,R3. As far as I understand, it cant be done. Inner-area routes can not be filtered etc.. So what is the solution ? Should I switch to BGP or is there any other way I can try to reduce the multicast traffic in the network u...
by doush
Tue Feb 26, 2019 2:20 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

I think there shoud be a way to do it.
OSPF-OUT filter on R1 also doesnt stop R1 announcing its routes to R2 and R3 ?
Is this also an expected behavior ?
by doush
Sun Feb 24, 2019 8:59 am
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

Taking a networks into stub area stops advertisements on both ends.
Is there a way to stop R1 announcing its area routes to R2 and R3 ?
by doush
Fri Feb 22, 2019 3:09 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

Thanks for your answer mrz. Actually what I want to accomplish is not to distrubute the routes from R1 in the first place to minimize the multicast traffic on the wireless links. I think what you are suggesting is filtering them on the R2 and R3 (on the receive side) so again R1 will distrubute them...
by doush
Fri Feb 22, 2019 1:36 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

[admin@R1] /routing ospf instance> pr Flags: X - disabled, * - default 0 * name="default" router-id=172.16.2.2 distribute-default=never redistribute-connected=no redistribute-static=no redistribute-rip=no redistribute-bgp=no redistribute-other-ospf=no metric-default=1 metric-connected=20 metric-sta...
by doush
Wed Feb 20, 2019 3:21 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

there is only one backbone area. And R1 is the gateway of all other routers (r2 and r3). I dont want R1 to distrubute any routes to R2 and R3 because in any case their gateway is R1. How to stop R1 announcing all of its routes to other routers ? I thought ospf-instance paramaters were supposed to do...
by doush
Wed Feb 20, 2019 9:15 am
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

Anyone ?
by doush
Mon Feb 18, 2019 4:05 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

[admins@R2] > rout ospf exp /routing ospf instance set [ find default=yes ] redistribute-connected=as-type-2 \ redistribute-other-ospf=as-type-2 redistribute-static=as-type-2 router-id=\ 192.168.254.100 /routing ospf interface add interface=ether1 network-type=broadcast /routing ospf network add ar...
by doush
Mon Feb 18, 2019 11:26 am
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

Re: OSPF Redistribute Problem

Actually I dont want to play with the filters now since the OSPF instance parameters should take care of this.
Could anyone please try the simple scenario above and check whether if no matter how the instance is configured, it always distrubutes the routes or not ?

Version is 6.43.4 on CCR1072
by doush
Sat Feb 16, 2019 1:09 pm
Forum: Forwarding Protocols
Topic: OSPF Redistribute Problem
Replies: 18
Views: 1340

OSPF Redistribute Problem

R2 <----> R1 <----> R3 [adm@R1] /routing ospf instance> pr Flags: X - disabled, * - default 0 * name="default" router-id=172.16.25.78 distribute-default=never redistribute-connected=no redistribute-static=no redistribute-rip=no redistribute-bgp=no redistribute-other-ospf=no metric-default=1 metric-c...
by doush
Tue Jan 22, 2019 10:50 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

We have 6Gbit/s on it. CT is on. We have moved most of the rules to RAW so around 450Mbit of traffic is currently NATed and processed by connection tracking table. Rebooted again with a very small dDOS attack yesterday. MT doesnt accept that there is a problem. So nothing will be fixed. Check the be...
by doush
Thu Jan 17, 2019 2:32 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 79053

Re: v6.44beta [testing] is released!

doush Nobody except you complains, which means it's either faulty hardware or a configuration specific issue. A couple of posts ago you said you are not willing to supply support@ with the info they asked you for. Being software developer myself, I can assure you this is a road to nowhere... Did yo...
by doush
Tue Jan 15, 2019 9:06 pm
Forum: General
Topic: Large deployment suggestions for event
Replies: 12
Views: 687

Re: Large deployment suggestions for event

You dont have enough nonoverlapping channels in your scenario.
you are talking about 96 radios in a 200m radius.
you will need careful channel planning if you are planning to use that many radios.
by doush
Mon Jan 14, 2019 3:52 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 79053

Re: v6.44beta [testing] is released!

When watchdog is on, it reboots. Please work with us in this issue. And where is the version specific part of this? As I see it it's nothing new to this beta.... So please stay in the other thread. This problem is still valid with the latest stable build ! And we dont see any work about it in the l...
by doush
Sat Jan 12, 2019 4:39 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 79053

Re: v6.44beta [testing] is released!

doush - Unfortunately we can not tell from description "lockups" to what kind of problem you are referring to. Please contact support@mikrotik,com directly, provide proper problem description (when did problem start to appear, how often do you see this issue, do you have any information what proces...
by doush
Mon Jan 07, 2019 3:26 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 79053

Re: v6.44beta [testing] is released!

Are you guys working for a fix for CCR1072 lockups ?
by doush
Thu Dec 13, 2018 9:13 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

Hello; Both 10.0.0.0/8 and 172.16.0.0/16 is my local network. WANIP (PublicIP) is what we srcnat these local networks. The rules you have posted are correct. It reduced the CT load (less entries) but CPU load is aprx same like before. I havent noticed any significant drop in CPU usage. Regarding the...
by doush
Wed Dec 12, 2018 1:57 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

Would be good to have a special 6.38.x version from Mikrotik with security patches applied.
So at least we can try it out.
by doush
Wed Dec 12, 2018 1:56 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

Nope it doesnt.
by doush
Tue Dec 11, 2018 3:55 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

v6.38 is vulnerable.
We cant use that
by doush
Tue Dec 11, 2018 3:55 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

I dont think it is related with configuration

viewtopic.php?f=3&t=122525
by doush
Tue Dec 11, 2018 3:51 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

Yes it seems that the interface part was missing. Thanks for your help.

All I am trying to do is reduce the CT table load, so maybe this garbage CCR1072 does not reboot by itself by watchdog timer every day.
Hopeless attempt but maybe we can make it to have an uptime more than a single day.
by doush
Tue Dec 11, 2018 3:40 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

Wow. I was writing it here but you beat me to it :)
I have done exactly that and it worked.

It seems that the ! (not) operator is not working somehow in RAW table.

Am I correct ?
by doush
Tue Dec 11, 2018 2:54 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

Re: RAW Table [SOLVED]

Thanks for your reply. It still doesnt work. All srcNAT stops when I implement the below RAW table rules. Any ideas ? RAW Table: /ip firewall raw add action=notrack chain=prerouting disabled=yes src-address=!10.0.0.0/8 add action=notrack chain=prerouting disabled=yes src-address=!172.16.0.0/16 add a...
by doush
Tue Dec 11, 2018 1:22 am
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

It is time for Mikrotik to seriously consider refunds of these CCR1072 units.
$3000+ for a router which can not hold even straight 3days of uptime is ridiculous.
by doush
Mon Dec 10, 2018 4:53 pm
Forum: General
Topic: RAW Table [SOLVED]
Replies: 15
Views: 945

RAW Table [SOLVED]

Hello; We are struggling with the following. We have a simple srcnat rule for 10.0.0.0/8 and we want the connection tracking table to be used only by 10.0.0.0/8 Subnet block. We dont want the rest of our public IP s to go through the CT table. So; chain=prerouting action=notrack log=no log-prefix=""...
by doush
Fri Nov 30, 2018 12:28 pm
Forum: RouterBOARD hardware
Topic: Real CCR1072 experience?
Replies: 52
Views: 10504

Re: Real CCR1072 experience?

CCR1072 has a fundamental watchdog reboot flaw. Check out this thread and be careful ! https://forum.mikrotik.com/viewtopic.php?f=3&t=122525&start=50 This is the first mikrotik product that we hate to use. The downtime and the damage it has done to our uptime/reputation is unbelievable. Will be swit...
by doush
Fri Nov 23, 2018 10:39 am
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

Frequent reboots EVERY DAY ! "Router was rebooted without proper shutdown by watchdog timer" This issue is still not resolved and expect an answer or a possible reason from Mikrotik. Mikrotik Support is pretty much less useless as of now. As I say, it happens every EVERY DAY and mikrotik is silent a...
by doush
Tue Oct 23, 2018 6:18 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: v6 RC and v7 BETA
Replies: 126
Views: 22460

Re: v6 RC and v7 BETA

We know that it will have an upgraded kernel but what exactly will it give us in terms of performance compared to current releases ?
Packet forwading ?
Firewall ?
by doush
Tue Sep 04, 2018 1:16 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Got fq_codel yet?
Replies: 36
Views: 10420

Re: Got fq_codel yet?

Well after nearly 5 years of time, still no word from MT. At least an explanation would be nice.
by doush
Sat Jul 14, 2018 10:33 am
Forum: General
Topic: UBNT and Mikrotik VLAN solution
Replies: 4
Views: 689

Re: UBNT and Mikrotik VLAN solution

Dont create any VLANS etc.. on your Mikrotik equipment !
Just bridge the WLAN and ETH ports of all of them.
by doush
Wed May 23, 2018 2:12 am
Forum: Announcements
Topic: v6.42.2 [current]
Replies: 65
Views: 13546

Re: v6.42.2 [current]

@storp
Same here.
by doush
Wed May 16, 2018 1:31 pm
Forum: General
Topic: LHG 60 project in Hawaii
Replies: 98
Views: 19358

Re: LHG 60 project in Hawaii

We need an XL version. Bigger antenna + better gain
by doush
Wed Apr 11, 2018 10:27 am
Forum: Virtualization
Topic: What machine for 40Gbps Edge Router?
Replies: 21
Views: 3566

Re: What machine for 40Gbps Edge Router?

There are no Mikrotik Routers which has 40gbit QSFP+ ports.
You need to look at somewhere else.
by doush
Tue Apr 10, 2018 10:10 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

OMG !
We were thinking about replacing our core 1036 with 1072 but it seems that there are major issues with it.
by doush
Sun Apr 08, 2018 11:50 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Is CCR tile support affected by missing Linux support?
Replies: 8
Views: 1404

Re: Is CCR tile support affected by missing Linux support?

I think the real answer has to be yes.
If I were Mikrotik, I would move to ARM by now.
And thats what they will do.
by doush
Sat Mar 31, 2018 12:59 pm
Forum: RouterBOARD hardware
Topic: Tile CPU wiill be NOT in LINUX kernel, end CCR1036?
Replies: 8
Views: 2044

Re: Tile CPU wiill be NOT in LINUX kernel, end CCR1036?

There will be a brief reprieve for blackfin and tile, which will be removed "later this year" unless a maintainer comes forward. They need a maintainer and Mikrotik Programmers can join the kernel development and help maintaining it. It is a good practice to do so. Mikrotik is actively using the li...
by doush
Sat Mar 31, 2018 4:17 am
Forum: Announcements
Topic: Urgent security advisory
Replies: 110
Views: 86079

Re: Urgent security advisory

It is actually quite ironic that hackers and botnets have shell access to our devices but we dont :))
by doush
Sat Mar 24, 2018 11:27 pm
Forum: RouterBOARD hardware
Topic: CCR1072 watchdog reboot
Replies: 108
Views: 14548

Re: CCR1072 watchdog reboot

We will deploy a CCR1072 soon on our NOC.
Does all CCR1072 s have the same problem ?

Should we postpone the deployment ?
by doush
Wed Mar 14, 2018 11:50 pm
Forum: RouterBOARD hardware
Topic: Time frame for LHG 60G
Replies: 1
Views: 528

Time frame for LHG 60G

Is there any expected release date for the LHG 60G device ?
We have several project that we can use it and dont really want to go with the other competitors product.

It would be really good to know if it is expected to be released in a few weeks.
by doush
Tue Mar 13, 2018 10:18 pm
Forum: General
Topic: Slingshot APT [SOLVED]
Replies: 44
Views: 23664

Re: Slingshot APT, RouterOS spying software [SOLVED]

Why Mikrotik doesnt make native Winbox App for Linux and rescue us of all this crap ?
Isnt it the time yet ?
by doush
Fri Mar 09, 2018 8:50 pm
Forum: Forwarding Protocols
Topic: What Mikrotik product is the fastest for BGP with 10-gig load with 2 BGP feeds ?
Replies: 11
Views: 2063

Re: What Mikrotik product is the fastest for BGP with 10-gig load with 2 BGP feeds ?

You need a CCR1072 or CCR1036.
Same BGP speed since all load is on one core but 1072 seems better for your requirements.
by doush
Sat Mar 03, 2018 9:25 am
Forum: RouterOS v6 RC and v7 BETA
Topic: New router OS
Replies: 46
Views: 11458

Re: New router OS

v7 should come with dedicated packet forwarding chips and ASIC/FPGA hardware for offloading the services such as Queues,firewall etc in the new products. For ex, most basic Cisco ASR hardware handles 24 000 PPPoE Sessions in a single box compared to a CCR1036 which is aprx 2000 sessions. There are l...
by doush
Thu Feb 08, 2018 2:47 pm
Forum: Announcements
Topic: v6.42rc [release candidate] is released!
Replies: 538
Views: 92574

Re: v6.42rc [release candidate] is released!

what is nstreme-plus ?
by doush
Sun Dec 17, 2017 9:54 am
Forum: RouterOS v6 RC and v7 BETA
Topic: [exploit-db.com] MikroTik 6.40.5 ICMP - Denial of Service
Replies: 16
Views: 3380

Re: [exploit-db.com] MikroTik 6.40.5 ICMP - Denial of Service

Well.. downplaying these long going issues are no good. In any dDOS attack scenario, even the simplest ones, if your attacked router has Connection Tracking enabled, you will go down. Whether you have RAW rules or not, or 72CPUs or GBs of RAM etc.. it just doesnt matter. Your CPUs will be fully util...
  • 1
  • 2
  • 3
  • 4
  • 5
  • 13