Community discussions

MikroTik App

Search found 288 matches

by elbob2002
Tue Apr 09, 2024 5:42 pm
Forum: RouterBOARD hardware
Topic: HOT S-RJ10
Replies: 10
Views: 784

Re: HOT S-RJ10

What temperature is it?

A quick google shows a range of SFP+ devices with a maximum of 85°

I have three 4 devices all with Cisco 10Gb SFP+ modules

CRS310-8G+2S+ : 38°
CRS328-24P-4S+ : 46°, 43° and 44°
RB5009UG+S+ : 43°
CRS326-24G-2S+ : 44°

Chances are yours is fine!
by elbob2002
Fri Mar 29, 2024 12:52 am
Forum: Virtualization
Topic: CHR License Confirmation
Replies: 2
Views: 396

Re: CHR License Confirmation

System ID is the same on your router as the portal so if there's a green flag in the CHR Keys section of the portal then it's active.
by elbob2002
Sun Mar 24, 2024 3:41 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 478
Views: 112214

Re: v7.15beta [testing] is released!

My initial thought as well.

No Winbox open. snippet above are from an SSH connection to the router.
by elbob2002
Sun Mar 24, 2024 3:07 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 478
Views: 112214

Re: v7.15beta [testing] is released!

Noticed very high CPU Usage on an RB750Gr3 Profile showed that the "management" process was using almost between 24% and 27% of CPU and another "unclassified" process was using another 16% CPU NAME USAGE ethernet 0% console 1% ssh 0% firewall 0.1% networking 5.6% neighbor-discove...
by elbob2002
Fri Mar 22, 2024 12:21 am
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 478
Views: 112214

Re: v7.15beta [testing] is released!

This is going against the essence of what a router/switch should be, heck even enterprise routers/switches do not even have any sort baked into it. I have several Catalyst C9500-48Y4C switches at work. 8 Core Xeons with 32GB RAM and a 960GB SSD. Granted they're in a slightly different league than M...
by elbob2002
Sun Feb 18, 2024 3:26 pm
Forum: Beginner Basics
Topic: CRS3xx (low?) Bandwidth Test Performance
Replies: 3
Views: 627

Re: CRS3xx (low?) Bandwidth Test Performance

It's expected. Using the mikrotik bandwith test will never show the switching performance. Switching will be wirespeed and as you have no VLANs you can be reasonably certain that you will get full switching performance. As @lolski already mentioned running iperf between two devices connected to the ...
by elbob2002
Sun Feb 18, 2024 3:08 am
Forum: General
Topic: EOIP Tunnel over IPSEC speed performance tuning
Replies: 5
Views: 575

Re: EOIP Tunnel over IPSEC speed performance tuning

You're going to have to take the performance hit if you insist on using EOIP. As it's CPU bound there's no way around it.

Other than replacing the routers with models with the highest performing CPU!
by elbob2002
Sun Feb 18, 2024 3:00 am
Forum: Beginner Basics
Topic: RB3011 SFP speed issue
Replies: 8
Views: 901

Re: RB3011 SFP speed issue

I have used Cisco 1GB GLC-T in my RB3011 and it worked fine. I did have an Arista one that didn't work so it could be hit or miss with some modules. EDIT - Forgot to mention that the reason I stopped using the SFP on my RB3011 is because there are two switch chips in it with an aggregate 2Gb/s link ...
by elbob2002
Thu Feb 15, 2024 9:59 am
Forum: Beginner Basics
Topic: RB3011 SFP speed issue
Replies: 8
Views: 901

Re: RB3011 SFP speed issue

You are running RouterOS 6.49.3 and there has been many releases over the years since. There has also been many fixes particularly related to SFP modules in that time. Upgrade to latest 6 release and see if that fixes the issue or else plan an upgrade to the latest v7 release. If you go the v7 upgra...
by elbob2002
Thu Feb 15, 2024 9:49 am
Forum: General
Topic: Router OS 6 Own Traffic
Replies: 1
Views: 270

Re: Router OS 6 Own Traffic

Can you post your configuration?

/export/hide-sensitive file=myconfig

You can then download the config and open it in a text editor and post it here.
by elbob2002
Thu Feb 15, 2024 9:46 am
Forum: General
Topic: DHCP WARNING
Replies: 3
Views: 357

Re: DHCP WARNING

What hardware? What version of Router OS? and can you post your configuration?

It's impossible to even guess what the issue might be without any helpful information.
by elbob2002
Thu Feb 15, 2024 9:44 am
Forum: General
Topic: EOIP Tunnel over IPSEC speed performance tuning
Replies: 5
Views: 575

Re: EOIP Tunnel over IPSEC speed performance tuning

The overhead is EOIP.

It's not hardware offloaded so uses the CPU and I don't think it's multithreaded either.

Try the tests again and monitor CPU usage with Tools --> Profile running to monitor CPU usage.
by elbob2002
Mon Feb 12, 2024 12:54 am
Forum: Beginner Basics
Topic: RB493G Factory Reset
Replies: 1
Views: 363

Re: RB493G Factory Reset

You'll have to netinstall -

https://help.mikrotik.com/docs/display/ROS/Netinstall

Be warned though - it can take many frustrating attempts to get netinstall to work properly!
by elbob2002
Tue Feb 06, 2024 11:23 am
Forum: General
Topic: [Discussion] MikroTik configuration abstraction complexity
Replies: 72
Views: 5396

Re: [Discussion] MikroTik configuration abstraction complexity

While I agree with a lot of what's already been said above I think it's something of a testament to Mikrotik and how good their hardware/software can be (within it's limitations) that people are comparing them to the "big name vendors". But still I can't see large enterprises changing from...
by elbob2002
Tue Jan 23, 2024 4:30 pm
Forum: Beginner Basics
Topic: How to chainge forums skin? [SOLVED]
Replies: 3
Views: 901

Re: How to chainge forums skin? [SOLVED]

Click on your profile top right. The "My Board Style"

ForumPrefs.png
by elbob2002
Mon Jan 15, 2024 10:01 am
Forum: General
Topic: User poll about using Winbox
Replies: 102
Views: 71243

Re: User poll about using Winbox

  1. No
  2. Assumed it would open a new winbox session.
  3. No Opinion
  4. Having just read the documentation I don't think it does!
  5. N/A
by elbob2002
Sat Dec 30, 2023 11:47 am
Forum: Virtualization
Topic: CHR activation problem
Replies: 2
Views: 1048

Re: CHR activation problem

You can try to generate a new license ID and then renew license.

Then on the Mikrotik Portal where your CHR Keys are you can transfer from the old ID to the new ID
by elbob2002
Wed Dec 27, 2023 11:54 am
Forum: General
Topic: I Tink i got hacked
Replies: 16
Views: 1631

Re: I Tink i got hacked

You should netinsall to factory reset the router. It's the only way to be certain that the compromise has been completely removed: https://help.mikrotik.com/docs/display/ROS/Netinstall That won't prevent you from future hacks though so likely you have an issue with your firewall rules or services op...
by elbob2002
Wed Dec 06, 2023 3:25 pm
Forum: General
Topic: Send all logs to multiple remote syslog servers
Replies: 1
Views: 1176

Re: Send all logs to multiple remote syslog servers

System --> Logging, click on Actions tab and create a new remote action.

Then create a copy of the rules with the actions set to to your new one.
by elbob2002
Sun Dec 03, 2023 5:51 pm
Forum: Virtualization
Topic: CHR P1 to P10
Replies: 2
Views: 1767

Re: CHR P1 to P10

The license should appear as available in your Mikrotik.com home page. Under All CHR Keys.

Locate the Key you want to assign to the CHR you want to upgrade and click on Transfer.

On that CHR then renew the license and it should pull the P10 licence.
by elbob2002
Mon Nov 27, 2023 12:30 am
Forum: RouterBOARD hardware
Topic: RB750GR3 worth to cahnge to RB3011UiAS-RM
Replies: 5
Views: 2298

Re: RB750GR3 worth to cahnge to RB3011UiAS-RM

I'd go for an RB5009 I have two of them and they're great. However for price I'd go for an L009 . I have an RB3011 too but there's two switch chips which become a PITA when it comes to VLANs. There's also no L3 Hardware offload. It's also an old design now at this stage. The L009 supports hardware o...
by elbob2002
Fri Nov 17, 2023 10:44 am
Forum: Containers
Topic: Containerized SNMP monitoring (short term) - a step above built-in graphs
Replies: 36
Views: 5991

Re: Containerized SNMP monitoring (short term) - a step above built-in graphs

LibreNMS might fit your bill.

I use it extensively. There is a docker container for it.
by elbob2002
Mon Nov 13, 2023 5:44 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 92546

Re: v7.13beta [testing] is released!

I´ve updated my wAP AC with the wifi-qcom-ac package and the main ROS 7.13Beta1 package. All went smooth and the change to my CAPsMAN-AX also went well. But I get some strange error messages in the CAPsMAN AX for the AC-device: Is it required to update the CAPsMAN AX to 7.13 Beta1 also to make it w...
by elbob2002
Sun Nov 12, 2023 5:37 pm
Forum: General
Topic: EOIP Tunnel between two Mikrotiks, one is behind CGNat with VPN with Post Forwarding
Replies: 10
Views: 1190

Re: EOIP Tunnel between two Mikrotiks, one is behind CGNat with VPN with Post Forwarding

You need to allow GRE on the firewall. Probably IPSec ports too if you're using that to encrypt your tunnel.
by elbob2002
Thu Nov 02, 2023 2:28 pm
Forum: Beginner Basics
Topic: SFP Help
Replies: 4
Views: 1245

Re: SFP Help

You don't mention your connection type. Is it a DSL SFP? Is it fibre?

If it's fibre then you should be able to just plug straight in. If it's one of the DSL SFPs then they can be a bit tricky to get working.
by elbob2002
Wed Oct 18, 2023 9:40 am
Forum: Virtualization
Topic: License error
Replies: 1
Views: 2276

Re: License error

You're probably best off in opening a support ticket for this issue.

Or you can take a backup and recreate the VM and restore the backup.
by elbob2002
Tue Oct 10, 2023 8:08 pm
Forum: Beginner Basics
Topic: Beginner PPPoE setup trouble [SOLVED]
Replies: 5
Views: 1091

Re: Beginner PPPoE setup trouble [SOLVED]

If you have a contact in your ISP ask them if they support Baby Jumbos If they do you can set your ether1 MTU to 1508 and then your ppp-out1 interface to have an MTU of 1500 Will reduce packet fragmentation if they do support it. FWIW I never had to change the interface MTU before. Just the MTU of t...
by elbob2002
Tue Oct 10, 2023 8:04 pm
Forum: Virtualization
Topic: Why are LAN ports unresponsive?
Replies: 2
Views: 1943

Re: Why are LAN ports unresponsive?

What NIC drivers are you using? VMXNET or e1000? The manual has this to say about e1000 if you are using it: Warning: We do not recommend using the E1000 network interface if better synthetic interface options are available on a specific Hypervisor! You also should probably update to the latest 6.xx...
by elbob2002
Tue Oct 10, 2023 9:24 am
Forum: Beginner Basics
Topic: Beginner PPPoE setup trouble [SOLVED]
Replies: 5
Views: 1091

Re: Beginner PPPoE setup trouble

If it's anything like my ISP there seems to be some sort of a restriction on the MAC or Device Identifier that can connect. You may need to wait for it to expire before trying again.

I usually have to wait 30 minutes and then try again if I change my router.
by elbob2002
Mon Oct 02, 2023 3:30 pm
Forum: Forwarding Protocols
Topic: GRE over IPsec
Replies: 13
Views: 3268

Re: GRE over IPsec

BCP has me curious - have you a quick example?
by elbob2002
Mon Oct 02, 2023 9:28 am
Forum: Forwarding Protocols
Topic: GRE over IPsec
Replies: 13
Views: 3268

Re: GRE over IPsec

I think he wants to extend a single LAN across two physical locations.

For this EOIP is the only real method:

https://help.mikrotik.com/docs/display/ROS/EoIP

Performance depends on CPU though. You can have very mixed and sometimes disappointing results with EOIP.
Eoip-example.jpg
by elbob2002
Sun Sep 17, 2023 10:00 am
Forum: SwOS
Topic: Need to use CRS518-16XS-2XQ-RM as L2 switch to have port-based VLAN
Replies: 13
Views: 3135

Re: Need to use CRS518-16XS-2XQ-RM as L2 switch to have port-based VLAN

That device supports bridge based VLAN filtering.

The documentation is here and is quite easy to understand:

https://help.mikrotik.com/docs/display/ ... NFiltering
by elbob2002
Mon Sep 04, 2023 4:45 pm
Forum: Virtualization
Topic: Problem while installing RouterOS on OpenNebula
Replies: 2
Views: 2252

Re: Problem while installing RouterOS on OpenNebula

Probably using an unsupported disk type.

i've no idea what OpenNebula use but from the documentation here:

https://help.mikrotik.com/docs/display/ ... ter%2C+CHR

It seems that you should use IDE for the disk type.
by elbob2002
Mon Aug 21, 2023 4:08 pm
Forum: Forwarding Protocols
Topic: route print
Replies: 6
Views: 2380

Re: route print

/routing/route print detail
And clearly you haven't read the forum posts...
Neither have you.

Your snippet shows the results of
 /ip route/print detail 
Not
/routing/route/print detail
by elbob2002
Sun Aug 20, 2023 5:31 pm
Forum: General
Topic: problem with vlan101 on port 4 - hap lite [SOLVED]
Replies: 10
Views: 1645

Re: problem with vlan101 on port 4 - hap lite [SOLVED]

As for the VLAN issue:

Try:
/interface ethernet switch vlan
add independent-learning=yes ports=ether1,ether4 switch=switch1 vlan-id=101
by elbob2002
Sun Aug 20, 2023 5:26 pm
Forum: General
Topic: problem with vlan101 on port 4 - hap lite [SOLVED]
Replies: 10
Views: 1645

Re: problem with vlan101 on port 4 - hap lite [SOLVED]

Most likely because that device doesn't support Bridge VLAN offload so the recommended way to VLAN these devices is via switch chip rather than bridge. Otherwise performance would be abysmal. Although as the HAP Lite only has 100Mbps the performance hit might not be so bad using the bridge. It is a ...
by elbob2002
Sat Aug 19, 2023 11:11 am
Forum: Beginner Basics
Topic: Reporting a bug, or a suspected bug?
Replies: 8
Views: 1999

Re: Reporting a bug, or a suspected bug?

All there on this page:

https://mikrotik.com/support

You can contact support via the link to Jira on that page or e-mail them. Bug reports as well.
by elbob2002
Sat Jul 22, 2023 4:01 pm
Forum: Beginner Basics
Topic: In-Band management [SOLVED]
Replies: 9
Views: 1786

Re: In-Band management [SOLVED]

Can you post your complete config?
by elbob2002
Fri Jul 21, 2023 4:35 pm
Forum: Beginner Basics
Topic: In-Band management [SOLVED]
Replies: 9
Views: 1786

Re: In-Band management [SOLVED]

Tag the bridge with VLAN30 too:
/interface bridge vlan
add bridge=bridge comment=LAN tagged=bridge,sfp5,sfp-sfpplus4,sfp-sfpplus3 untagged=sfp4 vlan-ids=30
by elbob2002
Fri Jul 21, 2023 3:55 pm
Forum: Beginner Basics
Topic: In-Band management [SOLVED]
Replies: 9
Views: 1786

Re: In-Band management [SOLVED]

Can you show your config?

Did you enable VLAN filtering on the bridge?
/interface/bridge/ set vlan-filtering=yes 0
by elbob2002
Mon Jul 17, 2023 9:35 am
Forum: Scripting
Topic: Dynamic firewall blocklist
Replies: 7
Views: 2436

Re: Dynamic firewall blocklist

I'm afraid I'm not going to be any help with the script but why not block IPsec at firewall and only allow the IP address of your tunnel endpoint?

Of course this is no good if you have roadwarriors.
by elbob2002
Fri Jul 14, 2023 11:30 am
Forum: RouterBOARD hardware
Topic: L009UiGS-2HaxD-IN antenna connectors type question
Replies: 6
Views: 2973

Re: L009UiGS-2HaxD-IN antenna connectors type question

You'll be waiting. They aren't available anywhere yet.

My usual distributor said they will have them in August.
by elbob2002
Fri Jul 14, 2023 9:41 am
Forum: RouterBOARD hardware
Topic: L009UiGS-2HaxD-IN antenna connectors type question
Replies: 6
Views: 2973

Re: L009UiGS-2HaxD-IN antenna connectors type question

They look removable so most likely RP-SMA as @kfrag mentioned above.
by elbob2002
Fri Jul 14, 2023 9:38 am
Forum: General
Topic: Purpose of USP Port on 750GR3
Replies: 3
Views: 457

Re: Purpose of USP Port on 750GR3

You can also use USB as a serial port. All Mikrotik devices with a USB Port can display a console via USB. Unfortuantely the OS has to start first for it to be available so you cannot use it to interrupt the boot process like a regular console port but it's usefull nonetheless if you can't access Wi...
by elbob2002
Mon Jun 26, 2023 7:41 pm
Forum: Containers
Topic: HomeAssistant on Docker
Replies: 2
Views: 4775

Re: HomeAssistant on Docker

Add your dockerhub username and password:
/container/config/set username=myusername password=mypassword
Or use winbox to set it.
by elbob2002
Tue Jun 06, 2023 12:42 am
Forum: Virtualization
Topic: Can not use GRE with CHR on Proxmox
Replies: 4
Views: 5261

Re: Can not use GRE with CHR on Proxmox

I've limited Proxmox experiernce but with ESXi you need to enable promiscious mode on your vswitch.

Not sure what the setting for proxmox might be for this.
by elbob2002
Fri Jun 02, 2023 4:17 pm
Forum: RouterBOARD hardware
Topic: Question about RB5009 rack options
Replies: 7
Views: 2926

Re: Question about RB5009 rack options

Do you mean switch and router all in one? Answer is yes and no. The CRS3xx and 5xx range have L3 hardware routing but that's mainly for VLANs. As for a router and firewall then there's no suitable device really as the CPUs in the switches are too weak. Go through the product pages on Mikrotik.com an...
by elbob2002
Sun May 21, 2023 11:08 pm
Forum: RouterBOARD hardware
Topic: Router enough powerful for video stream in IKEv2 encryption VPN ?
Replies: 4
Views: 2893

Re: Router enough powerful for video stream in IKEv2 encryption VPN ?

Pretty much any relatively recent router. Just did a test from a windows L2TP client to an RB3011 on a 1GB/1GB connection using iPerf to a client behind the RB3011 and was pushing 85Mbit I've no way of testing IPSec with IKEv2 but performance shouldn't be much different. I'd imagine an RB4011 or an ...
by elbob2002
Fri May 12, 2023 2:43 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 55058

Re: v7.9 [stable] is released!

RB 4011 after upgrading to v7.9 does not connect using SFP S+DA0001. It has been tested on other RB4011's, and they all have the same problem.

Says right on the product page:
Passive DAC (MikroTik S+DA0001/S+DA0003) are not supported.
https://mikrotik.com/product/rb4011igs_rm
by elbob2002
Wed May 10, 2023 12:22 am
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 42915

Re: Newsletter #113 | May 2023

There are all kinds of containers, it's not all memory intensive software. There are tiny tools you can use as well. L009 is our low cost device. Adding RAM will make it not so cheap anymore. We have other products with more RAM RB3011 has 1GB of RAM. Other than the colour it seems the L009UiGS-RM ...
by elbob2002
Sat Apr 29, 2023 10:19 am
Forum: General
Topic: Wireguard - Client disconnects when new client connects [SOLVED]
Replies: 5
Views: 5935

Re: Wireguard - Client disconnects when new client connects [SOLVED]

That is extremely helpful @anav.

Thanks for such a thorough reply!
by elbob2002
Thu Apr 27, 2023 9:18 pm
Forum: General
Topic: Wireguard - Client disconnects when new client connects [SOLVED]
Replies: 5
Views: 5935

Re: Wireguard - Client disconnects when new client connects [SOLVED]

YES!!! Thank you! I knew it had to be something relatively simple. I indeed missed that bit in all my reading earlier. Adding the following on the server site worked absolutely perfectly! Also I think this is the quickest I've seen a question resolved ever on the forum. /interface wireguard peers ad...
by elbob2002
Thu Apr 27, 2023 9:04 pm
Forum: General
Topic: Wireguard - Client disconnects when new client connects [SOLVED]
Replies: 5
Views: 5935

Wireguard - Client disconnects when new client connects [SOLVED]

Hi all, I've been driven crazy by this issue all day. I've read the documentation and I've read @anav's excellent Wireguard Success For The Beginner guide and I stil think my configuration should work but it doesn't. I have a CHR as a Wireguard server. I have three other CHRs that I want to connect ...
by elbob2002
Mon Apr 24, 2023 8:54 pm
Forum: General
Topic: Issues with Bridge VLAN Filtering setup
Replies: 9
Views: 1937

Re: Issues with Bridge VLAN Filtering setup

What are your firewall rules? can you run:
/ip/firewall/filter export
by elbob2002
Mon Apr 24, 2023 6:20 pm
Forum: General
Topic: Issues with Bridge VLAN Filtering setup
Replies: 9
Views: 1937

Re: Issues with Bridge VLAN Filtering setup

You need to tag your bridge under vlan 1 instead of untagged.
by elbob2002
Sat Apr 22, 2023 9:45 pm
Forum: Virtualization
Topic: KVM/QEMU CHR performance
Replies: 2
Views: 2386

Re: KVM/QEMU CHR performance

You're running BGP I presume going by the VM name.

BGP performance is much improved in v7. There are threads aplenty elsewhere about BGP performance so that's likely to be your culprit.
by elbob2002
Mon Apr 10, 2023 11:21 am
Forum: Containers
Topic: Container "Traefik" (on RB5009)
Replies: 6
Views: 5005

Re: Container "Traefik" (on RB5009)

I use Caddy for my reverse proxies - one running on a container on an RB5009:

One small config file and automatic SSL with Letsencrypt:

https://caddyserver.com/
by elbob2002
Fri Apr 07, 2023 5:05 pm
Forum: General
Topic: CRS 354-48g-4s+2q+rm as a core router in a company
Replies: 6
Views: 691

Re: CRS 354-48g-4s+2q+rm as a core router in a company

A router would have a more powerful CPU for a start. And more RAM. The CRS 354 only has a single core CPU running at 650Mhz with only 64MB of RAM. You can see the performance yourself on the product page: https://mikrotik.com/product/crs354_48g_4splus2qplusrm#fndtn-testresults 410Mbps with 25 rules....
by elbob2002
Tue Apr 04, 2023 9:44 am
Forum: Virtualization
Topic: CHR proper way to add interfaces [SOLVED]
Replies: 5
Views: 3818

Re: CHR proper way to add interfaces [SOLVED]

Proxmox uses KVM. For VLANs you need to make the bridge interface VLAN aware and then add the interface to the VM something like this: virtio=00:00:00:00:00:00,bridge=vmbr0,firewall=1,tag=88 Where tag=88 is obviously VLAN88. For a physical network you will need to create a new bridge for each physic...
by elbob2002
Mon Apr 03, 2023 2:08 pm
Forum: Virtualization
Topic: CHR proper way to add interfaces [SOLVED]
Replies: 5
Views: 3818

Re: CHR proper way to add interfaces [SOLVED]

It depends on your hypervisor.

In VMware you add another NIC to the virtual machine. Proxmox is almost identical.

Those devices get added to what ever Virtual Switch you are using.
by elbob2002
Tue Mar 28, 2023 11:09 am
Forum: Forwarding Protocols
Topic: x86 ros mangle stops working randomly
Replies: 3
Views: 1839

Re: x86 ros mangle stops working randomly

Are they all the same version? 6.49.7 is the latest v6 stable release. There's been a lot of fixes between your version and the latest.
by elbob2002
Fri Mar 17, 2023 12:49 pm
Forum: Beginner Basics
Topic: RB750gr3 on RouterOS 7.8 - IPSEC very slow
Replies: 2
Views: 901

Re: RB750gr3 on RouterOS 7.8 - IPSEC very slow

Looks like your RB750Gr3 might not have hardware suppored IPSEC.

From this table:

https://help.mikrotik.com/docs/display/ ... celeration

The MT7621A CPU only supports 3DES and AES-CBC accelerated encryption.
by elbob2002
Fri Mar 17, 2023 12:29 pm
Forum: Beginner Basics
Topic: Router itself can not access Internet but IP-s behind him can
Replies: 11
Views: 1488

Re: Router itself can not access Internet but IP-s behind him can

You don't seem to have a filter rule to accept established or related INPUT traffic on your WAN interface:

add action=accept chain=input connection-state=established,related
by elbob2002
Wed Feb 15, 2023 2:16 pm
Forum: Containers
Topic: lack of TPROXY module in RouterOS Kernel and Docker containers
Replies: 9
Views: 3702

Re: Docker Container RUN mode for Mikrotik

RouterOS doesn't use Docker.

I think it uses LXC or a derivitive. Open to correction here.
by elbob2002
Mon Feb 13, 2023 9:52 am
Forum: Virtualization
Topic: CHR Hardware for PPPoE server for 2 Lakh Subscribers
Replies: 8
Views: 3233

Re: CHR Hardware for PPPoE server for 2 Lakh Subscribers

Lakh means 100,000 in India.

So 200,000 concurrent users with a total of 1,000,000 users among 5 POPs is my understanding of the question.
by elbob2002
Fri Feb 10, 2023 11:10 am
Forum: Announcements
Topic: v7.8rc is released!
Replies: 125
Views: 45268

Re: v7.8rc is released!

Can this be installed on CRS3XX series switches now?

I know it doesn't say it on the release notes but given all the Beta versions had the warning I'm still a bit hesitant!
by elbob2002
Thu Feb 09, 2023 9:54 am
Forum: Containers
Topic: New Container problem "no space to extract layer" RB3011
Replies: 15
Views: 6147

Re: New Container problem "no space to extract layer" RB3011

Just out of curiosity can you rename the USB disk to Disk2 or USB or something like that and use that label for your pull directory and container location?
by elbob2002
Tue Feb 07, 2023 10:52 am
Forum: Containers
Topic: New Container problem "no space to extract layer" RB3011
Replies: 15
Views: 6147

Re: New Container problem "no space to extract layer" RB3011

There's no filesystem on it. You need to create an ext4 partition on it.
by elbob2002
Mon Feb 06, 2023 11:18 pm
Forum: Containers
Topic: New Container problem "no space to extract layer" RB3011
Replies: 15
Views: 6147

Re: New Container problem "no space to extract layer" RB3011

Disk1 is the flash storage of your RB3011. Go to System --> Disks to get the path of your USB You will likely need to change your tmpdir location too. For example here are my partitions running on 7.8Beta3 - you can see usb-part1 is the partition of the USB Key if I were to use mine for storage. Als...
by elbob2002
Wed Feb 01, 2023 9:33 am
Forum: Beginner Basics
Topic: RB5009 LAN port down/up state
Replies: 6
Views: 2329

Re: RB5009 LAN port down/up state

Try disabling Auto Negotiation on your LAN port and setting it to 1Gbps
by elbob2002
Mon Jan 23, 2023 6:33 pm
Forum: RouterOS beta
Topic: New User Manager in RouterOS v7
Replies: 211
Views: 81109

Re: New User Manager in RouterOS v7

feature request: Administrator portal or customers menu as the old one.
Second last paragraph on the very first post:
there won't be a separate administrators portal as in the old User Manager.
by elbob2002
Sun Jan 15, 2023 12:28 am
Forum: Virtualization
Topic: CHR first setup [SOLVED]
Replies: 3
Views: 3404

Re: CHR first setup [SOLVED]

No experience with Proxmox but on VMware ESXi I had to set promiscious mode on the vswitch for CHR to work correctly.

I assume there's an equivilent on Proxmox?
by elbob2002
Mon Jan 09, 2023 11:18 am
Forum: RouterOS beta
Topic: Renamed USB Disk After Upgrade to 7.7rc4
Replies: 3
Views: 2534

Re: Renamed USB Disk After Upgrade to 7.7rc4

It's there in the change log:
*) disk - improved external storage file system mounting, formatting and naming;

Also Post 25 on this thread:

viewtopic.php?p=976231#p971852
by elbob2002
Thu Dec 22, 2022 10:56 pm
Forum: Virtualization
Topic: CHR 7.6 Driver for Cisco VIC Ethernet NIC (rev: 162)
Replies: 2
Views: 2099

Re: CHR 7.6 Driver for Cisco VIC Ethernet NIC (rev: 162)

Cisco VIC Ethernet is what exactly? What card is it and what chipset? Broadcom? Intel etc? What speed is it? 1Gb, 10Gb, 100Gb? CHRs have limited driver support. It's quite possible that the driver you are looking for is not in the CHR kernel. Also the CHR kernel is not modular so it's not possible t...
by elbob2002
Sat Dec 17, 2022 11:51 am
Forum: Scripting
Topic: REST API Creating and updating an ip firewall address list with domains
Replies: 2
Views: 2358

Re: REST API Creating and updating an ip firewall address list with domains

Thanks! I was just looking to do something similar this morning and came across this.
by elbob2002
Sat Dec 10, 2022 2:55 pm
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 162558

Re: v7.1rc3 adds Docker (TM) compatible container support

You need to add the variables for your container before you pull it down:
/container/envs/add key=cap-add name=MYCONTAINER value=NET_ADMIN
/container/envs/add key=device name=MYCONTAINER value=/dev/net/tun

Where MYCONTAINER is the name of your container.
by elbob2002
Sat Dec 10, 2022 1:01 am
Forum: General
Topic: Show your best uptime :)
Replies: 11
Views: 1233

Re: Show your best uptime :)

:roll: :roll:
Uptimez.png
by elbob2002
Sat Dec 03, 2022 12:43 am
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 124673

Re: v7.7beta [testing] is released!

It's been mentioned somewhere else here before but apparently the 16Mb of flash storage on most MIPSBE devices means there will never be wifiwave2 for those devices. Since there are no MIPSBE devices that have wave2 chipsets (not the stock devices anyway), its pretty possible that wifivawe2 package...
by elbob2002
Fri Dec 02, 2022 9:40 am
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 124673

Re: v7.7beta [testing] is released!

It's been mentioned somewhere else here before but apparently the 16Mb of flash storage on most MIPSBE devices means there will never be wifiwave2 for those devices. The driver package for ARM is 10MB in size alone!
by elbob2002
Mon Nov 28, 2022 10:00 pm
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 124673

Re: v7.7beta [testing] is released!

changed the cables? duplex settings okay? what does the log say? yes i replaced the cable nothing change, to avoid this i just reboot every 23H what is wrong with the release ? as a managment switch untill now its perfect log says interface down and up 3 or 4 times untill work as 100 Mbps. maybe 7....
by elbob2002
Fri Nov 25, 2022 1:57 pm
Forum: Virtualization
Topic: NIC Realtek RTL8125 x86 RouterOs v7.6
Replies: 4
Views: 3776

Re: NIC Realtek RTL8125 x86

It might be able to ID the device correctly from PCI ID. But probably there is no driver in the kernel for that chipset.
by elbob2002
Wed Nov 16, 2022 6:17 pm
Forum: General
Topic: Switch crs317-1g-16s+RML6 cant handle 2 Gb of traffic
Replies: 12
Views: 945

Re: Switch crs317-1g-16s+RML6 cant handle 2 Gb of traffic

1GB of traffic is about right according to the test results on the product page. I presume you're using queues or filters and given it's PPPoE probably an MTU of 1492? Routing none (fast path) 254.4 3089.4 309.8 1268.9 315.4 161.5 Routing 25 simple queues 104.6 1270.3 104.4 427.6 104.6 53.6 Routing ...
by elbob2002
Mon Nov 14, 2022 10:58 pm
Forum: Containers
Topic: Docker: Howto run a command in the container?
Replies: 1
Views: 3343

Re: Docker: Howto run a command in the container?

I think Pihole will still need a complete restart of its container. Unless it's possible just to restart PiHole-FTL
/container/shell 0 
Is there any init scripts?
by elbob2002
Wed Oct 26, 2022 2:33 pm
Forum: Containers
Topic: Looking for Docker container ideas for RouterOS
Replies: 121
Views: 31093

Re: Looking for Docker container ideas for RouterOS

Here's a screenshot of one of my CHRs. Two containers. Both running Alpine. First is running Caddy as a Reverse Proxy, Second is running Openspeed Test.

You can clearly see where I fired up the second container on Monday. Memory usage is very stable.
Screenshot 2022-10-26 122914.png
by elbob2002
Mon Oct 24, 2022 9:44 am
Forum: Containers
Topic: /container: Permission denied (13) Topic is solved
Replies: 7
Views: 6018

Re: /container: Permission denied (13) Topic is solved

Worked for me on the Openspeedtest container thanks!:
add dst=/var/log/nginx name=openspeed src=/disk1/openspeed/var
by elbob2002
Mon Oct 24, 2022 2:02 am
Forum: Containers
Topic: /container: Permission denied (13) Topic is solved
Replies: 7
Views: 6018

Re: /container: Permission denied (13) Topic is solved

Disk1 one is attached storage I presume - is it formatted as Ext4?

Edit - just tried on a CHR and I get the same permissions errors. Are there any variables that should be set? Any mountpoints according to the image documentation?
by elbob2002
Wed Oct 19, 2022 10:45 pm
Forum: Useful user articles
Topic: Zerotier in a container on CHR
Replies: 0
Views: 3350

Zerotier in a container on CHR

You can run Zerotier in a container on CHR. I've had success with this one: https://github.com/zyclonite/zerotier-docker Instead of using a seperate subnet for the veth interface needed for Docker I just added the veth interface to the existing bridge. Probably not good practice but it works! Change...
by elbob2002
Wed Oct 19, 2022 10:30 pm
Forum: Virtualization
Topic: Zerotier packages for CHR ? [SOLVED]
Replies: 3
Views: 14835

Re: Zerotier packages for CHR ? [SOLVED]

You can run Zerotier in a container on CHR. I've had success with this one: https://github.com/zyclonite/zerotier-docker Instead of using a seperate subnet for the veth interface needed for Docker I just added the veth interface to the existing bridge. Probably not good practice but it works! Change...
by elbob2002
Mon Oct 17, 2022 9:11 am
Forum: RouterBOARD hardware
Topic: Rb5009 poe in conflict
Replies: 5
Views: 987

Re: Rb5009 poe in conflict

Last thing I can think of is this thread:

viewtopic.php?t=189042

Supposedly the fix will be in 7.6 - you could test the latest 7.6RC and see if that fixes the issue.
by elbob2002
Sun Oct 16, 2022 9:46 pm
Forum: RouterBOARD hardware
Topic: Rb5009 poe in conflict
Replies: 5
Views: 987

Re: Rb5009 poe in conflict

Change the cables for new ones?
by elbob2002
Sun Oct 16, 2022 6:00 pm
Forum: RouterBOARD hardware
Topic: Rb5009 poe in conflict
Replies: 5
Views: 987

Re: Rb5009 poe in conflict

What are the two identical switches? Make/Model.

Do both have the port you are powering the RB5009 from configured for 802.3af/at ?
by elbob2002
Sun Oct 16, 2022 5:54 pm
Forum: General
Topic: Starlink experience
Replies: 20
Views: 5778

Re: Starlink experience

I have my Starlink into an RB5009. All works well. Except IPv6 which was once available but now seems to have disappeared. I have the round dish - Here in Ireland the weather never really gets too cold anyway but the de-icing can be turned off or just set to automatic. Power usage is typically aroun...
by elbob2002
Fri Oct 14, 2022 6:19 pm
Forum: RouterBOARD hardware
Topic: serial console
Replies: 5
Views: 1039

Re: serial console

The Hap AC doesn't have a console port at all. At least according to the hardware page.

https://mikrotik.com/product/RB962UiGS-5HacT2HnT

I don't think any of the small Mikrotik devices have console ports either. I know my RB750-Gr3 doesn't either as I've locked myself out of that before as well!
by elbob2002
Thu Sep 29, 2022 9:18 am
Forum: General
Topic: Why Speed Limited on Internet?
Replies: 11
Views: 2032

Re: Why Speed Limited on Internet?

Was that CPU usage overall? What's the usage per core?
by elbob2002
Thu Sep 29, 2022 12:58 am
Forum: General
Topic: Why Speed Limited on Internet?
Replies: 11
Views: 2032

Re: Why Speed Limited on Internet?

You have two bridges. Only one can be hardware accelerated. The other is going through CPU and maxing whatever core it's using out. Check your CPU usage while iPerf is running through each bridge. Edit - As was pointed out to me not so long ago the only exception are CRS1xx/2xx series switches which...
by elbob2002
Wed Sep 14, 2022 3:43 pm
Forum: Beginner Basics
Topic: problem with multi bridge interface
Replies: 11
Views: 1460

Re: problem with multi bridge interface

Hardware offloading only works on a single bridge interface.
by elbob2002
Tue Sep 13, 2022 10:42 pm
Forum: Announcements
Topic: v7.6beta [testing] is released!
Replies: 226
Views: 62399

Re: v7.6beta [testing] is released!

I found on 7.5 that for L3 hardware off loading on my CRS328, not all VLANs would be offloaded.Each new VLAN I added required a reboot for it to work. But I can see on yours that you've rebooted.
by elbob2002
Fri Sep 09, 2022 9:39 am
Forum: RouterOS beta
Topic: ROS7.x No Traffic Flow
Replies: 1
Views: 2395

Re: ROS7.x No Traffic Flow

You have no source address set.

trafficflow.png
by elbob2002
Tue Sep 06, 2022 9:30 am
Forum: Beginner Basics
Topic: Packages arriving jerky
Replies: 15
Views: 1278

Re: Packages arriving jerky

As explained already the CRS-1XX Series don't support bridge hardware offloading. From the documentation: For example, you use this configuration on a CRS1xx/CRS2xx series device and you started to notice that the CPU usage is very high and when running a performance test to check the network's thro...
by elbob2002
Sat Aug 27, 2022 1:35 am
Forum: Announcements
Topic: v7.5rc is released!
Replies: 86
Views: 21504

Re: v7.5rc is released!

Downloading and unzipping the firmware results in a myriad of files and folders. No way to know which one to try so not even worth attempting it:

This is just tthe update folder:
Screenshot 2022-08-26 233442.png
by elbob2002
Thu Aug 25, 2022 8:14 pm
Forum: Announcements
Topic: v7.5rc is released!
Replies: 86
Views: 21504

Re: v7.5rc is released!

Chateau has only 16MB of flash. the firmware is over 100MB. I think we have to wait for the Mikrotik release of the firmware and whatever method they use to do the upgrade.
by elbob2002
Wed Aug 24, 2022 9:52 am
Forum: General
Topic: Mikrotik Product Shortages ??
Replies: 17
Views: 2041

Re: Mikrotik Product Shortages ??

:lol: There are two Cisco facilities here so you could be right!
by elbob2002
Tue Aug 23, 2022 5:49 pm
Forum: General
Topic: Mikrotik Product Shortages ??
Replies: 17
Views: 2041

Re: Mikrotik Product Shortages ??

The reasons are probably the same that you have with all vendors. We are not really happy if Cisco tells use we have 380 days of lead time for eg. Wireless AP's 9100-series etc. Certain Catalyst LAN-switches is also quite problematic etc. We ordered 8 Catalyst 9407R back in March. Our delivery date...
by elbob2002
Tue Aug 23, 2022 2:26 pm
Forum: Announcements
Topic: Re: v7.4.1 [stable] is released!
Replies: 99
Views: 32251

Re: v7.4.1 [stable] is released!

Hi, ipsec problem are fixed ? somebody knows ?
What IPSec problem?

If it's not in the changelog then chances are it's not been fixed.
by elbob2002
Tue Aug 23, 2022 10:19 am
Forum: Beginner Basics
Topic: Unable to get simple subnet routing to work.
Replies: 11
Views: 922

Re: Unable to get simple subnet routing to work.

Can you post your config?

export hide-sensitive
by elbob2002
Tue Aug 23, 2022 9:31 am
Forum: Announcements
Topic: v7.5rc is released!
Replies: 86
Views: 21504

Re: v7.5rc is released!

Chateau LTE12 and RB750GR3 upgraded successfully from RC11 with no issues.

Two CHRs running containers upgraded with no issues from RC11. Scheduler script started containers successfully at power on.
by elbob2002
Tue Aug 02, 2022 2:25 pm
Forum: General
Topic: Higher CPU usage on RB3011 after upgrade to ROS 7
Replies: 5
Views: 1913

Re: High CPU usage on RB3011 after upgrade to ROS 7

It's a different Kernel with a big rewrite of some of the RouterOS internals so it's quite possible some extra resources are needed. It also depends on how you router is configured. Fasttrack, queues etc. Also between 4 and 7% hardly qualifies as high CPU usage! Your CPU usage seems quite comparable...
by elbob2002
Mon Aug 01, 2022 11:22 am
Forum: Virtualization
Topic: CHR 7.X, cannot boot when using two disks
Replies: 7
Views: 3313

Re: CHR 7.X, cannot boot when using two disks

Just tested on a new 7.4 VM on ESXi 6.7 Hot added a disk to the CHR and formated it as EXT4 with Partition Table enabled. Rebooted and had no issues. If I have a chance later I'll try a v6 CHR and upgrade and then add a disk and see if the same thing occurs. The CHR was imported from the OVA - the O...
by elbob2002
Fri Jul 29, 2022 9:37 am
Forum: Virtualization
Topic: CHR 7.X, cannot boot when using two disks
Replies: 7
Views: 3313

Re: CHR 7.X, cannot boot when using two disks

Very useful informations for help you,
a post full of details....

Not helped by having a useless comment like yours.
by elbob2002
Fri Jul 29, 2022 9:36 am
Forum: Virtualization
Topic: CHR 7.X, cannot boot when using two disks
Replies: 7
Views: 3313

Re: CHR 7.X, cannot boot when using two disks

This issue occurs if the second disk is formatted with "Partition Table" checked.

Apparently it's been fixed in 7.4
*) chr - fixed booting with added additional SCSI disk;
by elbob2002
Wed Jul 27, 2022 11:41 am
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 162558

Re: v7.1rc3 adds Docker (TM) compatible container support

Add your tun/taps as variables for your container. I tested with Zerotier in an Alpine Linux image and it works perfectly:

ZTTUNTAP.png
by elbob2002
Wed Jul 27, 2022 11:36 am
Forum: Announcements
Topic: v7.5beta [testing] is released!
Replies: 138
Views: 46955

Re: v7.5beta [testing] is released!

Figured out Tun/tap devices. Just add them as environment variables
ZTTUNTAP.png
by elbob2002
Wed Jul 27, 2022 11:24 am
Forum: Announcements
Topic: v7.5beta [testing] is released!
Replies: 138
Views: 46955

Re: v7.5beta [testing] is released!

*) container - added tun/tap support for containers;
This brings us one step closer to Zerotier on CHR. Is there any documentation on how to enable tun/tap devices for a container?
by elbob2002
Thu Jul 14, 2022 8:07 pm
Forum: RouterOS beta
Topic: Zerotier to Mipsbe??
Replies: 109
Views: 34460

Re: Zerotier to Mipsbe??

Still no timeline for supporting other architectures? I bought a Hap ac3 just to try it out and it works great! But I'm literally waiting for you guys to support x86/CHR before purchasing any more licenses!
You can run Zerotier in a Docker container on CHR.
by elbob2002
Sun Jul 10, 2022 6:52 pm
Forum: Virtualization
Topic: 7.4 beta 4 - Container --- imported OK but will not start
Replies: 14
Views: 7157

Re: 7.4 beta 4 - Container --- imported OK but will not start

You mean like this? 7.4RC2
ContainterParams.png
by elbob2002
Sat Jun 18, 2022 11:24 am
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 162558

Re: v7.1rc3 adds Docker (TM) compatible container support

Thank you! I don't know how I missed that in the docs!
by elbob2002
Fri Jun 17, 2022 9:15 pm
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 162558

Re: v7.1rc3 adds Docker (TM) compatible container support

reload last vm backup you made before do that test
Yep. Had a snapshot so reverted back. Any idea what command I should actually use not to brick the vm again?
by elbob2002
Fri Jun 17, 2022 7:25 pm
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 162558

Re: v7.1rc3 adds Docker (TM) compatible container support

Got the following error on CHR:

mikrotik container failure: not allowed by device-mode

Tried to resolve it by changing the device mode:
system/device-mode/update mode=home 

And now my CHR is dead with this error:
CHR ERROR.png
by elbob2002
Sun Jun 12, 2022 10:44 am
Forum: RouterBOARD hardware
Topic: Hardware Recomendations
Replies: 5
Views: 959

Re: Hardware Recomendations

Maybe try a CHR on a supported hypervisor? You can add more resources if you find you run out.
by elbob2002
Thu Jun 09, 2022 12:34 am
Forum: Virtualization
Topic: CHR ROUTER OS AND 10G PORT
Replies: 1
Views: 2140

Re: CHR ROUTER OS AND 10G PORT

What bandwidth test did you use? Bandwidth Test built into mikrotik devices relies heavily on the CPU and never seems to give true results.

Iperf or Iperf3 between devices on each side of your CHR will give a better indication of performance "through" your router.
by elbob2002
Mon May 30, 2022 1:57 pm
Forum: Announcements
Topic: MikroTik Devices Controller
Replies: 332
Views: 238176

Re: MikroTik Devices Controller

Centralised updates and configuration management!
by elbob2002
Tue May 24, 2022 1:00 pm
Forum: Beginner Basics
Topic: ZeroTier SD-WAN / Network Orchestration [SOLVED]
Replies: 37
Views: 7152

Re: ZeroTier SD-WAN / Network Orchestration [SOLVED]

Of course there might be advantages to other alternatives, but at the moment ZT is the only available solution for Mikrotik (so far). So ZeroTier cannot meet ANY of those 3 CRITICAL advantages ..... otherwise you @Larsa would be singing from the Tree Tops :) To bad that TailScale is not integrated ...
by elbob2002
Mon May 16, 2022 9:39 am
Forum: RouterOS beta
Topic: Update RouterOS
Replies: 8
Views: 4366

Re: Update RouterOS

CHATEAU LTE12 IS V7 ONLY! Download the latest 7.2.3 stable for ARM here: https://mikrotik.com/download Use Winbox to and drag and drop the package you downloaded to Files and reboot. For future upgrades you will be able to use the normal SYSTEM/PACKAGES method to update. Edit - The Chateau LTE12 is...
by elbob2002
Sun Apr 10, 2022 12:42 pm
Forum: RouterOS beta
Topic: Zerotier interfaces stops working after a PPPoE wan flap (7.2rc4-7.2rc7, maybe 7.2)
Replies: 7
Views: 3179

Re: Zerotier interfaces stops working after a PPPoE wan flap (7.2rc4-7.2rc7, maybe 7.2)

I have the exact same issue and I reported it before. And it's occurred ever since Zerotier was added as a package. If you leave it without restarting the zerotier instance it will eventually come back which makes me believe it's related to connection tracking in the firewall. Although I haven't bot...
by elbob2002
Tue Apr 05, 2022 11:16 am
Forum: Announcements
Topic: v7.2 is released!
Replies: 359
Views: 61731

Re: v7.2 is released!

Cosmetic/Minor Bug:

Almost every non-CHR Device I upgraded is now showing a warning under System --> Routerboard:

Warning: cpu not running at default frequency

750GR3, RB5009, Chateau 12, CRS-125.

The only device that doesn't show this error is an RB3011.
by elbob2002
Tue Mar 22, 2022 1:31 pm
Forum: Announcements
Topic: v7.1.4 and v7.1.5 is released!
Replies: 202
Views: 40057

Re: v7.1.4 is released!

OSPF stopped working - invalid area and invalid instance.

Fix was to change the Router ID in instance from "main" to the IP address of the router.
by elbob2002
Tue Mar 15, 2022 8:48 pm
Forum: RouterOS beta
Topic: routing tables
Replies: 9
Views: 3381

Re: routing tables

Seems fine on 7.1.3 and on 7.2RC4
webfig2.png
Webfig1.png
by elbob2002
Sat Mar 12, 2022 2:45 pm
Forum: RouterOS beta
Topic: RB5009 purchase decision
Replies: 3
Views: 4972

Re: RB5009 purchase decision

Mine is currently running 7.1.3 with no issues. 4 interfaces in use - also a Zerotier interface. I have a Cisco Fibre 10G SFP+ connected to a CRS328 that I did have to disable auto-negotiation and manually set the speed to 10G. I did that when I got it and it was running 7.0.5 and haven't changed th...
by elbob2002
Fri Mar 04, 2022 4:48 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

"ZeroTier IP addresses and routes can overlap public IP space." from https://help.mikrotik.com/docs/display/ROS/ZeroTier That meant nothing to me. Maybe a practical example or explanation??? With Allow Global disabled Zerotier will only handle private IP addresses. If you wanted to expand...
by elbob2002
Fri Mar 04, 2022 1:38 pm
Forum: General
Topic: SMTP Limiting per Users Per day
Replies: 8
Views: 1332

Re: SMTP Limiting per Users Per day

Your first solution should be to educate users not to open suspicious attachments. Second solution should be to implement a proper e-mail filtering solution. Rate limiting SMTP should not be considered a solution and will likely cause problems in the future. Also rate limiting won't clear any mail i...
by elbob2002
Thu Mar 03, 2022 2:24 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

What does "Allow Global" do?
"ZeroTier IP addresses and routes can overlap public IP space."

from https://help.mikrotik.com/docs/display/ROS/ZeroTier
by elbob2002
Thu Mar 03, 2022 9:20 am
Forum: RouterOS beta
Topic: Very slow intervlan routing [SOLVED]
Replies: 14
Views: 5402

Re: Very slow intervlan routing [SOLVED]

You're using a bridge based VLAN which is only really supported on a limited number of newer devices. While it works it does result in the performance you are seeing.
by elbob2002
Thu Mar 03, 2022 9:05 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

Good morning everyone, I would like to know if zerotier works in version V7.1.3 because I cannot receive the IP address on the zerotier interface, however my status is OK. I appreciate your help Works perfectly fine. Although I have manually assigned an IP address to my instance running on an RB301...
by elbob2002
Thu Feb 24, 2022 12:30 pm
Forum: Announcements
Topic: v7.1.3 is released!
Replies: 251
Views: 56879

Re: v7.1.3 is released!

Two CRS-125 - Port flapping on both.

Downgraded both to 7.1.2 left one on Firmware 7.1.3 and the other downgraded to Firmware 7.1.2

Switch with Firmware 7.1.3 still had port flapping.

Now have both on ROS 7.1.2 and Firmware 7.1.2 and no more port flapping.
by elbob2002
Fri Feb 18, 2022 8:08 pm
Forum: RouterBOARD hardware
Topic: Problems with hardware availability in EU
Replies: 5
Views: 1341

Re: Problems with hardware availability in EU

Try Cisco. You'll only have about 18 to 24 months to wait for them to fulfill your order.
by elbob2002
Fri Feb 18, 2022 2:35 pm
Forum: Announcements
Topic: v7.2rc2 and v7.2rc3 is released!
Replies: 222
Views: 85812

Re: v7.2rc2 and v7.2rc3 is released!

How is PPTP any less secure than running IPIP, EoIP or any other VPN protocol with no cipher enabled that will show no such warning? And what's next? All open WIFI interfaces will show red warnings too? ROS is supposed to be for professionals that know how to use it and what limitations each of the...
by elbob2002
Tue Feb 15, 2022 9:51 am
Forum: Virtualization
Topic: Mikrotik Interfaces and GNS3 labels don't match
Replies: 4
Views: 2924

Re: Mikrotik Interfaces and GNS3 labels don't match

The issue is with your ROS template in GNS3.

Change the network interface section like this:
GNS3MTIK2.png
When selecting an interface to connect ether1 will still appear as ether0 in the GNS3 selector but labels will be fine.
by elbob2002
Fri Feb 11, 2022 9:14 am
Forum: Announcements
Topic: v7.1.2 is released!
Replies: 127
Views: 39505

Re: v7.1.2 is released!

Can't find this update on my RB5009. Have checked for updates in /system packages Quick Set > Check for updates shows installed version 7.0.5 and latest version 6.49.2 Upgrade to 6.49.2 and you should see 7.1.2 6.49.2 won't run on an RB5009 You'll need to remove any extra packages that may be insta...
by elbob2002
Thu Feb 10, 2022 7:33 pm
Forum: Announcements
Topic: v7.1.2 is released!
Replies: 127
Views: 39505

Re: v7.1.2 is released!

MPLS / VPLS sorted??

I cant find anything in the changelog
Then it's not sorted then is it? If it was it would be in the changelog!
by elbob2002
Mon Jan 24, 2022 3:05 pm
Forum: General
Topic: CPU Load - RB750Gr3 vs RB5009 vs RB4011
Replies: 10
Views: 6596

Re: CPU Load - RB750Gr3 vs RB5009 vs RB4011

Looks like a simple matter of the 5009 having a more powerful CPU than the 4011.
by elbob2002
Mon Jan 24, 2022 10:49 am
Forum: Announcements
Topic: v7.1.1 is released!
Replies: 443
Views: 225661

Re: v7.1.1 is released!

I just upgraded a RB1100AHx4 to 7.1.1 -- on reconnection after reboot I see a warning that I don't have a key: I thought it might be a weird 7.1.1 glitch -- the other two RB1100AHx4's I've upgraded were running 7.1 not 7.1.1 - so I tried a downgrade to 7.1 -- no luck, same message: MikroTik RouterO...
by elbob2002
Mon Jan 10, 2022 8:57 am
Forum: Virtualization
Topic: Router OS inside GNS3 - TCP resets between host and guests.
Replies: 2
Views: 4869

Re: Router OS inside GNS3 - TCP resets between host and guests.

I have the exact same issue. Was going to report it to the GNS3 team as I believe the issue is on their end but never got around to it.
by elbob2002
Fri Jan 07, 2022 12:48 pm
Forum: Announcements
Topic: v7.1.1 is released!
Replies: 443
Views: 225661

Re: v7.1.1 is released!

It definitely would help if you provide more details to describe problems. Do you ask your doctor for help saying "I'm feeling ill"? :) Still writing "Calculating download size ..." You need to remove any extra packages installed before upgrading. This has been mentioned in near...
by elbob2002
Wed Jan 05, 2022 8:44 am
Forum: General
Topic: Wierd Mangle in IP/Firewall! [SOLVED]
Replies: 1
Views: 982

Re: Wierd Mangle in IP/Firewall! [SOLVED]

Add a new mark using Routing Tables and a new FIB if required.

https://help.mikrotik.com/docs/pages/vi ... d=59965508

Then this table will be available in Firewall.

examples here:

https://help.mikrotik.com/docs/display/ ... ll+Marking
by elbob2002
Wed Dec 29, 2021 1:16 pm
Forum: General
Topic: IPv6 Advertising two ranges on one interface [SOLVED]
Replies: 5
Views: 2218

Re: IPv6 Advertising two ranges on one interface [SOLVED]

I believe I have resolved this issue. Devices with the "leaked" IPV6 addresses were connected to an upstream access switch. A CRS-125 with SFP port as a trunk to the CRS-328. Reviewing the VLAN configuration on the CRS-125 cropped up a few configuration issues where egress translation wasn...
by elbob2002
Wed Dec 29, 2021 11:09 am
Forum: General
Topic: IPv6 Advertising two ranges on one interface [SOLVED]
Replies: 5
Views: 2218

Re: IPv6 Advertising two ranges on one interface [SOLVED]

Here's the complete config: The router serves three other VLANs in my lab as you can plainly see in the config. VLAN56 VLAN88 and VLAN999. IPV6 addresses leak to those interfaces too. # dec/29/2021 09:01:22 by RouterOS 7.1.1 # software id = # # model = RB5009UG+S+ # serial number = XXXXXXXXX /interf...
by elbob2002
Tue Dec 28, 2021 5:54 pm
Forum: General
Topic: IPv6 Advertising two ranges on one interface [SOLVED]
Replies: 5
Views: 2218

IPv6 Advertising two ranges on one interface [SOLVED]

Hi, More IPV6 woes I'm afraid. I have an RB5009 connected to a CRS328. No VLANs are configured on the RB5009 however the interfaces are connected to tagged ports on the CRS328. Essentially the RB5009 acts as my VLAN router. I've configured IPV6 on two interfaces. One for the default network i.e. no ...
by elbob2002
Fri Dec 24, 2021 11:00 pm
Forum: General
Topic: IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]
Replies: 4
Views: 3778

Re: IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]

You are spot on! Wrong Prefix.

Thanks for spotting that for me. Works now!

Very much appreciated. Cheers!
by elbob2002
Fri Dec 24, 2021 6:01 pm
Forum: General
Topic: IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]
Replies: 4
Views: 3778

Re: IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]

Did that before posting here. Had the same result unfortunately.

It's a PITA to have to use another server just for IPv6.
by elbob2002
Fri Dec 24, 2021 11:05 am
Forum: General
Topic: IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]
Replies: 4
Views: 3778

IPv6 DHCP Server Not assigning addresses from Pool [SOLVED]

Hi, I'm trying to test IPv6 here in my lab. Router is a 750GR3 running RouterOS 7.1.1 For testing I've decided to use the same Ipv6 range in the Mikrotik documentation. The specific issue I'm having is that DHCPv6 clients are not being assigned an IP address from the pool. IP Pool: 2001:db8::/64 I'v...
by elbob2002
Wed Dec 22, 2021 3:09 pm
Forum: Beginner Basics
Topic: Issues with VLANS CRS125-24G-1S-2HnD
Replies: 2
Views: 1154

Re: Issues with VLANS CRS125-24G-1S-2HnD

4095 is the default VLAN and is enabled dynamically. There is no way to disable it.
by elbob2002
Fri Dec 17, 2021 12:40 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

I had issues on the last beta and now again with 7.1 in that Zerotier on my RB3011 becomes unresponsive. Other devices on the same Zerotier network are still contactable. About every 5 days I need to disable the Zerotier interface on my RB3011 and re-enable it again. However my RB3011 is bridged to ...
by elbob2002
Thu Dec 16, 2021 9:17 am
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 226636

Re: v7.1 is released!

Hi I have some question. Could someone answer and help. I have a Chateau LTE12. 1) Is it possible to downgrade to version 6.49.2 from version 7.1 ? It was upgraded to version 7.0.3 earlier . 2) I have configured dot1x. The ISE server is behind the ipsec tunnel. I do not see any traffic on the firew...
by elbob2002
Tue Dec 14, 2021 9:26 am
Forum: RouterOS beta
Topic: V7 Memory Requirements
Replies: 3
Views: 2729

Re: V7 Memory Requirements

I've an SXT G-2HnD that I upgraded out of curiosity: uptime: 3d6h43m21s version: 7.1 (testing) build-time: Dec/01/2021 14:07:27 free-memory: 5.5MiB total-memory: 32.0MiB cpu: MIPS 24Kc V7.4 cpu-count: 1 cpu-frequency: 400MHz cpu-load: 17% free-hdd-space: 109.9MiB total-hdd-space: 128.0MiB write-sect...
by elbob2002
Sun Dec 12, 2021 9:43 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 226636

Re: v7.1 is released!

RouterOS 7.1 does not work properly with boards equipped with 32MB of RAM (e.g. RB411) 00:01:06 system,error,critical router was rebooted without proper shutdown 00:01:07 system,error,critical kernel failure in previous boot 00:01:07 system,error,critical out of memory condition was detected 00:01:...
by elbob2002
Sun Dec 12, 2021 11:02 am
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 226636

Re: v7.1 is released!

Very unstable operation of ospf with md5 auth:

Image
OSPF Auth is broken in 7.1

viewtopic.php?t=180847
by elbob2002
Fri Dec 03, 2021 3:23 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 226636

Re: v7.1 [testing] is released!

hAP Lite stuck in "calculating download size..." since hours. A reboot didnt help. Current packages [admin@MikroTik] /system package> print Flags: X - disabled # NAME VERSION SCHEDULED 0 ipv6 6.49.1 1 dhcp 6.49.1 2 advanced-tools 6.49.1 3 system 6.49.1 4 routing 6.49.1 5 multicast 6.49.1 ...
by elbob2002
Sat Nov 27, 2021 10:01 am
Forum: RouterOS beta
Topic: v7.1rc7 [development] is released!
Replies: 174
Views: 55291

Re: v7.1rc7 [development] is released!

It stuck on "calculating download size..." when trying to update from any ROS 6.
You need to remove any extra packages you have installed first.
by elbob2002
Thu Nov 25, 2021 7:06 pm
Forum: RouterOS beta
Topic: RB5009UG+S+IN SFP+ port not working with some switches on firmware up to 7.1.5
Replies: 29
Views: 13981

Re: RB5009UG+S+IN SFP+ port not working with version 7.0.5 or 7.1rc6

Like mentioned in original post, did this, still the same issue.
There was/is an issue with some DACs not working on some devices. This might be your issue.

My RB5009 and CRS328 are connecting using Cisco SFPs with fibre and both manually set to 10Gbps full duplex and autonegotiation disabled.
by elbob2002
Thu Nov 25, 2021 11:40 am
Forum: RouterOS beta
Topic: RB5009UG+S+IN SFP+ port not working with some switches on firmware up to 7.1.5
Replies: 29
Views: 13981

Re: RB5009UG+S+IN SFP+ port not working with version 7.0.5 or 7.1rc6

Turn off Auto Negotiation and set the speed to 1G

I've had to do this on a CRS328 running 6.4x and on an RB5009 running 7.1RC6
by elbob2002
Thu Nov 25, 2021 11:39 am
Forum: RouterOS beta
Topic: SFP 1 Gbps devices in SFP+ cage (CCR2004-1G-12S+2XS) not working in 7.1x
Replies: 4
Views: 2709

Re: SFP 1 Gbps devices in SFP+ cage (CCR2004-1G-12S+2XS) not working in 7.1x

Turn off Auto Negotiation and set the speed to 1G

I've had to do this on a CRS328 running 6.4x and on an RB5009 running 7.1RC6
by elbob2002
Wed Nov 24, 2021 1:04 pm
Forum: RouterBOARD hardware
Topic: Post-fire hardware recommendations
Replies: 14
Views: 7125

Re: Post-fire hardware recommendations

The RB5009 will definitely give you the best performance for the price I reckon. I'm very happy with mine. It doesn't have WiFi though.
by elbob2002
Tue Nov 09, 2021 5:01 pm
Forum: RouterOS beta
Topic: v7.1rc6 [development] is released!
Replies: 145
Views: 56675

Re: v7.1rc6 [development] is released!

High memory usage on Caplite and RB750gr3 after 7.1b6
(About 16 MB more than version 6.49 )
6.49 => 44.1MB free memory
7.1b6 => 27MB free memory
Big jump in Linux kernel version. What else would you expect?
by elbob2002
Tue Nov 09, 2021 9:59 am
Forum: RouterOS beta
Topic: EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]
Replies: 3
Views: 3056

Re: EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]

This issue was resolved in 7.1RC5
by elbob2002
Mon Nov 08, 2021 12:48 pm
Forum: RouterOS beta
Topic: v7.1rc6 [development] is released!
Replies: 145
Views: 56675

Re: v7.1rc6 [development] is released!

Upgraded an RB5009 and a chateau LTE 12 and getting ERROR: file not found on the package screen after rebooting.
Screenshot from 2021-11-08 10-46-50.png
by elbob2002
Mon Nov 01, 2021 4:55 pm
Forum: RouterBOARD hardware
Topic: MikroTik RB5009UG+S+IN
Replies: 202
Views: 92924

Re: MikroTik RB5009UG+S+IN

Just got mine today and have the same issue with bad blocks. Upgraded to 7.1RC5. Haven't done a netinstall and don't think I'll have the opportunity for a while either. uptime: 45m39s version: 7.1rc5 (testing) build-time: Oct/25/2021 17:15:25 factory-software: 7.0.5 free-memory: 833.9MiB total-memor...
by elbob2002
Wed Oct 27, 2021 9:13 am
Forum: RouterOS beta
Topic: v7.1rc5 [development] is released!
Replies: 167
Views: 49097

Re: v7.1rc5 [development] is released!

Upgraded the following with no issues:
  • Chateau LTE12
    RB3011
    Hex 750Gr3
    CRS-125-24G-1S
    CRS-125-24G-1S-2HnD
    CHR
No major issues on any of the devices. Modem Firmware on the Chateau through winbox worked perfectly.

Small issues - 750Gr3 still shows voltage incorrect.
by elbob2002
Tue Oct 26, 2021 4:25 pm
Forum: Beginner Basics
Topic: Recording changes to the config to a log
Replies: 5
Views: 1556

Re: Recording changes to the config to a log

System --> History in Winbox.

Not sure how long the history there lasts though.
by elbob2002
Tue Oct 19, 2021 7:24 pm
Forum: RouterOS beta
Topic: v7.1rc4 [development] is released!
Replies: 276
Views: 83048

Re: v7.1rc4 [development] is released!

If it's stuck on calculating download size then you need to remove any extra packages that are installed.
by elbob2002
Wed Sep 29, 2021 8:40 pm
Forum: RouterOS beta
Topic: v7.1rc4 [development] is released!
Replies: 276
Views: 83048

Re: v7.1rc4 [development] is released!

Not sure if this happened to anyone else but the 3 devices I had running 7.1RC4 stopped routing after 7 days uptime. RB3011, 750GR3 and a CHR. I could connect to each device on their management IP but even the devices themselves couldn't ping other subnets they were each connected to. They are runni...
by elbob2002
Wed Sep 22, 2021 4:27 pm
Forum: RouterOS beta
Topic: v7 launch date
Replies: 156
Views: 49424

Re: v7 launch date

By the way, RB5009 will also have "per device" ROSv7 stable version? I got one now. How is with updates ? RB5009 running ROS 7.0.5 stable.... Should I "upgrade" to 7.1 beta 4 ? There is no official downloads for RB5009. 7.1RC3 and 7.1RC4 have IPsec offload so if you need that mi...
by elbob2002
Mon Sep 20, 2021 7:46 pm
Forum: RouterOS beta
Topic: v7.1rc4 [development] is released!
Replies: 276
Views: 83048

Re: v7.1rc4 [development] is released!

Date and timestamp issue with netflow has been fixed!
by elbob2002
Sun Sep 19, 2021 5:29 pm
Forum: RouterBOARD hardware
Topic: can CCR2004-16G-2S+ downgrade to v6 ?
Replies: 10
Views: 6431

Re: can CCR2004-16G-2S+ downgrade to v6 ?

Read the product pages:
  • CCR2004-1G-12S+2XS - Size of RAM in RouterOS v6 1792MB ECC / RouterOS v7 4GB ECC
    CCR2004-16G-2S+ - RouterOS (v7 only)
You have a CCR2004-16G-2S+ so it's RouterOS v7 only.
by elbob2002
Sat Sep 18, 2021 10:24 pm
Forum: Virtualization
Topic: CHR Total Memory
Replies: 4
Views: 5695

Re: CHR Total Memory

The hypervisor will also reserve some memory for video RAM.
by elbob2002
Sat Sep 18, 2021 6:06 pm
Forum: Virtualization
Topic: CHR on ESXi in 2021 (raw, ova or vmdk)
Replies: 1
Views: 4899

Re: CHR on ESXi in 2021 (raw, ova or vmdk)

All three options are as stable as each other. By stable I mean not the version of RouterOS but the installation.
by elbob2002
Sat Sep 18, 2021 6:05 pm
Forum: Virtualization
Topic: VM performance - x86 vs CHR
Replies: 3
Views: 10634

Re: VM performance - x86 vs CHR

Out of curiosity what type of NIC have you? I've seen issues with some Intel NICs on Linux where the NIC would what would seem like half it's advertised speed. Affected me on XCP-NG. The solution was to turn off TCP Segmentation Offloading for the interface like this: ethtool -K <interface> tso off ...
by elbob2002
Fri Sep 10, 2021 5:15 pm
Forum: RouterOS beta
Topic: EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]
Replies: 3
Views: 3056

Re: EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]

It seems that it was a specific bug in 7.1RC2.

Just upgraded my test CHR to 7.1RC3 and had no issue with the EoIP tunnel this time.

Unfortunately had the same issue. The bridge IP address at the tunnel endpoint was accessible but other devices on the same bridge were not.

7.1RC3 on both sides.
by elbob2002
Wed Sep 08, 2021 4:49 pm
Forum: RouterOS beta
Topic: v7.1rc3 [development] is released!
Replies: 172
Views: 50600

Re: v7.1rc3 [development] is released!

Unable to upgrade RB3011 from 7.1RC2 Thought it might have been the Zerotier Package installed so removed it, rebooted and tried to upgrade again. Unfortunately it doesn't upgrade. Boots back into 7.1RC2 Edit - /system/check-installation fails with the following: damaged system package: bad image
by elbob2002
Mon Sep 06, 2021 4:50 pm
Forum: Beginner Basics
Topic: Help with choosing an antenna for a rural setting please
Replies: 8
Views: 1615

Re: Help with choosing an antenna for a rural setting please

By and large you need line of sight to the mast if you're going to use a directional antenna. The internet is full of recommendations for different types however your mileage may vary. For my Chateau I'm using a dual polarity LOG antenna in the attic. with reasonable results. Often get over 120Mbps ...
by elbob2002
Mon Sep 06, 2021 11:15 am
Forum: General
Topic: EOIP DDNS & CGNAT
Replies: 2
Views: 939

Re: EOIP DDNS & CGNAT

EoIP needs a static IP address for both end points. CGNAT rules that out in your case.

Your best option is to create a VPN link to the DDNS router.

Or if you're running 7.1RC2 and your devices are ARM devices then you could try Zerotier.
by elbob2002
Sun Sep 05, 2021 11:37 am
Forum: RouterOS beta
Topic: EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]
Replies: 3
Views: 3056

EoIP 7.1RC2 to 7.1RC2 Not working [SOLVED]

Hi, Not sure if anyone else has seen this issue or not. I have an RB3011 with a static IP provided by PPPoE. It's running 7.1RC2 I also have two CHRs in two seperate datacentres running 6.48.4 that each have an EoIP tunnel to the RB3011. These tunnels continued to work after the RB3011 was upgraded ...
by elbob2002
Sat Sep 04, 2021 10:01 am
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

That rule is part of the default configuration: /ip firewall filter add chain=input action=accept dst-address=127.0.0.1 comment="defconf: accept to local loopback (for CAPsMAN)" It is on ROS 7. I upgraded my RB3011 from 6.48.4 and I never had a default config on it which is how I missed it.
by elbob2002
Sat Sep 04, 2021 10:00 am
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

Thanks, I was having the same issue (on a 4011 with a regular DHCP isp connection), and that rule fixed it. Is it secure though? It's secure as in it connects to the Zerotier controller. After that any connection to anything else on your zerotier network is peer to peer so nothing goes through any ...
by elbob2002
Fri Sep 03, 2021 4:28 pm
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

disabling that rule is very dangerous. better add accept rule from zerotier1 interface
Indeed. I only disabled it for a moment to test if it might have been a firewall issue. And indeed it was! See the post I marked as resolved.
by elbob2002
Fri Sep 03, 2021 4:26 pm
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

Finally resolved.

It seems the Zerotier package needs to communicate on the localhost address. Adding the following rule to the top of my input rules resolved my issue:
/ip/firewall/filter/add chain=input dst-address=127.0.0.1 action=accept
by elbob2002
Fri Sep 03, 2021 4:19 pm
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

Odd.

If I disable Rule14 it works! Yet the Chateau also has the same rule.
FWRules.PNG
by elbob2002
Fri Sep 03, 2021 3:52 pm
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Re: Zerotier Immediate Gateway Unknown [SOLVED]

Interesting! Even though I looked a hundred times I never noticed the difference. The chateau as you can see below is different. On the Zerotier Control Panel they all have the same configuration. Maybe it's just the RB3011 hasn't correctly picked up its configuration from Zerotier though. Edit - Al...
by elbob2002
Fri Sep 03, 2021 3:25 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

also make sure the network you try to ping is not used in an ipsec policy No IPsec policies on the network. They are used on two tunnels however. As Normis suggested I have created a new thread on it here. Edit - Issue resolved. See thread below for details. https://forum.mikrotik.com/viewtopic.php...
by elbob2002
Fri Sep 03, 2021 3:24 pm
Forum: RouterOS beta
Topic: Zerotier Immediate Gateway Unknown [SOLVED]
Replies: 12
Views: 5396

Zerotier Immediate Gateway Unknown [SOLVED]

I initially brought this issue up on the Zerotier release announcement thread. It was suggested to start a dedicated one. I have two routers here that I'm testing Zerotier with. It's a long established Zerotier network that I've been using for a few years now. Router 1 is a Chateau12 Router 2 is an ...
by elbob2002
Fri Sep 03, 2021 10:00 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

That's all done. The Zerotier network I'm connecting to has been in use for about 3 years. It's just bizarre that the Chateau over LTE can connect and ping the Zerotier Network and the RB3011 with a PPPoE VDSL connection can't. I just disabled Zerotier on the RB3011 and change the Chateau's default ...
by elbob2002
Fri Sep 03, 2021 9:30 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

I found the official MikroTik docs really helpful for getting ZeroTier going: https://help.mikrotik.com/docs/display/ROS/ZeroTier
I tried adding the firewall entries but no luck unfortunately. Maybe it's a bug?
by elbob2002
Thu Sep 02, 2021 10:39 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7.1rc2

I'm testing on two routerboards. An RB3011 and a Chateau LTE 12 both joining to the same Zerotier network. The Zerotier network is not advertised internally. The Chateau has connected over LTE with no issues and looks good on the Zerotier Network. The RB3011 appears on line on my Zerotier Network Pa...
by elbob2002
Wed Sep 01, 2021 8:39 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7rc2

@Normis thank you and kudos for bringing this to life....time to fire up my CHR for testing, before I try to fry my RB4011 ;-)

Get ready to fry your RB4011 because it's ARM only for the moment :)
by elbob2002
Tue Aug 31, 2021 9:00 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 310434

Re: ZeroTier added to RouterOS v7rc2

NO THANKS! I will manage my VPNs on my own, don't need and don't want any external service for that. Wireguard is working perfectly, thank you for that. OpenVPN is still working as it used to for years (slow but reliable). BTW, instead of adding random mostly useless stuff, why first don't make use...
by elbob2002
Tue Aug 31, 2021 8:54 pm
Forum: RouterOS beta
Topic: v7.1rc2 [development] is released!
Replies: 194
Views: 44445

Re: v7.1rc2 [development] is released!

Netflow is still reporting incorrect date and time. :

1970-01-01 01:02:41.540
by elbob2002
Sat Aug 28, 2021 9:55 am
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 78011

Re: v7.1rc1 [development] is released!

I like the F1 option and hiding of the "help text" on terminal startup. I only know about the "?" help because in /interface/lte/at-chat this avoids having to escape the ? in AT commands which is a real PITA in scripting AT commands. Doesn't the <tab> key provide the same inform...
by elbob2002
Fri Aug 27, 2021 12:14 am
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 78011

Re: v7.1rc1 [development] is released!

For anyone upgrading from 6.48.3 or earlier then make sure you remove any extra packages first. I had difficulty upgrading a CHR running 6.48.3 and it had the multicast package installed. Clicking on "Download and Install" resulted with the message "calculating download size" and...
by elbob2002
Tue Aug 24, 2021 9:43 am
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 78011

Re: v7.1rc1 [development] is released!

In addition to my netflow issue above I realised that the incorrect voltage is now being reported. RB750GR3

This occurs both in System --> Health and on my NMS
Mtik Voltage.png
by elbob2002
Mon Aug 23, 2021 7:41 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 78011

Re: v7.1rc1 [development] is released!

Upgraded my test RB750GR3

Netflow now reports an incorrect date of 1970-01-01

Netflow v9 with NFSEN target
by elbob2002
Sat Apr 24, 2021 1:42 pm
Forum: Beginner Basics
Topic: What is the Always On setting for PPPoE Client?
Replies: 1
Views: 926

Re: What is the Always On setting for PPPoE Client?

In the Dial Out settings tab for the PPPoE interface just make sure Dial On Demand isn't checked.
by elbob2002
Sat Apr 24, 2021 8:19 am
Forum: Beginner Basics
Topic: Policy Routing/FIB
Replies: 3
Views: 1449

Re: Policy Routing/FIB

That is indeed the right place. Here's an example of mine. First is my default routes. You can see I have some of them duplicated with a routing mark: 1.PNG At the moment I only have two routes with a policy applied (marked as 4G and UBNT) and you can see how I set the source: 2.PNG Here's what it l...
by elbob2002
Mon Apr 19, 2021 10:02 am
Forum: Announcements
Topic: v6.48.2 [stable] is released!
Replies: 141
Views: 62311

Re: v6.48.2 [stable] is released!

Facing issues with ospf. It keeps flapping.

Had the same. Either downgrade the router you updated to 6.48.2 to 6.48.1 or upgrade all the others to 6.48.2
by elbob2002
Fri Apr 16, 2021 7:13 pm
Forum: Virtualization
Topic: CHR Hyper-V Loading Error
Replies: 2
Views: 6246

Re: CHR Hyper-V Loading Error

There was an issue with the 6.48.1 image. I think it's in the release thread somewhere.

Use 6.48.2 if you're going to deploy OVA
by elbob2002
Wed Apr 14, 2021 12:34 am
Forum: Announcements
Topic: v6.48.2 [stable] is released!
Replies: 141
Views: 62311

Re: v6.48.2 [stable] is released!

Upgraded an RB3011 to 6.48.2 and log started filling up with OSPF errors and no OSPF routes were being distributed. Ignoring Link State Acknowledgment packet: wrong peer state state=2-Way Other OSPF routers distributing routes on the same backbone include 3 CHRs and an RB750Gr3. I wasn't planning to...
by elbob2002
Sun Apr 04, 2021 10:11 am
Forum: RouterOS beta
Topic: v7.1beta5 [development] is released!
Replies: 292
Views: 86264

Re: v7.1beta5 [development] is released!

My HAP Lite got hard bricked updating via Winbox from v7.1b4 to v7.1b5. The router does not boot any more - the the Power-LED and Ether2 are lit, while Ether1 and Ether4 glow faintly. I tried to install various versions via Netinstall, but even after successfully flashing, the router will not boot....
by elbob2002
Tue Mar 30, 2021 10:25 am
Forum: Virtualization
Topic: Bandwidth not crossing 2.4Gbps in Mikrotik CHR
Replies: 4
Views: 6884

Re: Bandwidth not crossing 2.4Gbps in Mikrotik CHR

What Level CHR license are you using?

P1 License allows only for 1GB per interface.
by elbob2002
Mon Mar 08, 2021 10:18 am
Forum: RouterBOARD hardware
Topic: Bridge Mikrotik Routers through SFP [SOLVED]
Replies: 5
Views: 3254

Re: Bridge Mikrotik Routers through SFP [SOLVED]

So you want to connect your router to your switch using a GPON SFP module to another GPON SFP module?

I don't think that will work as GPON is a little more complicated than a couple of regular fibre SFPs.

Buy a couple of cheap MM or SM SFPs instead.
by elbob2002
Sat Feb 27, 2021 7:09 am
Forum: RouterOS beta
Topic: Chateau LTE12 - dropping LTE interface/connection
Replies: 13
Views: 5498

Re: Chateau LTE12 - dropping LTE interface/connection

The firmware upgrade definitely seems to be worth it.

My CA interface was constantly up and down and seems a lot more stable since the upgrade. As a result my bandwidth seems to doubled from 30 to 60Mb
by elbob2002
Thu Feb 18, 2021 5:33 pm
Forum: Virtualization
Topic: CHR 7 - Bought P1 portts still 10Mb
Replies: 4
Views: 6296

Re: CHR 7 - Bought P1 portts still 10Mb

I'd double check the NIC driver the VM is using. Make sure it's VMXNET3
by elbob2002
Wed Feb 17, 2021 9:25 am
Forum: Virtualization
Topic: CHR 7 - Bought P1 portts still 10Mb
Replies: 4
Views: 6296

Re: CHR 7 - Bought P1 portts still 10Mb

What hypervisor are you running and what version of CHR?

RouterOS 7.x while called a Beta is really alpha quality and no where near production ready.
by elbob2002
Fri Feb 05, 2021 9:07 am
Forum: RouterOS beta
Topic: Carrier Aggregation Mikrotik Chateau LTE12
Replies: 11
Views: 4936

Re: Carrier Aggregation Mikrotik Chateau LTE12

What is the output of /interface/lte/monitor lte1

You should see something there like:
primary-band: B3@20Mhz earfcn: 1700 phy-cellid: 292
ca-band: B20@10Mhz earfcn: 6300 phy-cellid: 85

If you don't then it's very likely your provider doesn't support carrier aggregation.
by elbob2002
Fri Jan 29, 2021 4:22 pm
Forum: Virtualization
Topic: CHR on VMware Fusion 12
Replies: 10
Views: 10091

Re: CHR on VMware Fusion 12

Your issue is most likely with VMware Fusion or MacOS rather than the CHR.

Are you running an intel Mac or a new one with Apple's own CPU?
by elbob2002
Mon Jan 04, 2021 8:49 am
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 295
Views: 128152

Re: v6.48 [stable] is released!

After upgrading on RB3011 ports in switch group 1 (ether1-5) started flapping every 5 minutes. Rolled back on 6.47.8 and all seems ok. So 3011 users, install with care! ;) My RB3011 has flapping ports on both switch groups (1-5) and (6-10), going to roll back now... if I can work out how!! IF YOU H...
by elbob2002
Thu Dec 24, 2020 1:04 pm
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 295
Views: 128152

Re: v6.48 [stable] is released!

After upgrading on RB3011 ports in switch group 1 (ether1-5) started flapping every 5 minutes. Rolled back on 6.47.8 and all seems ok. So 3011 users, install with care! ;) Same here on my RB3011. My WAN port was on ether 2 and kept flapping. Moved it to ether10 and now have a stable WAN connection ...
by elbob2002
Fri Dec 18, 2020 10:08 am
Forum: Beginner Basics
Topic: Home LAN setup & Management
Replies: 3
Views: 1243

Re: Home LAN setup & Management

If the Draytek is anything like the Huawei and Zyxel DSL modems we get her in Ireland then you can configure them to bridge your connection and then have the RB3011 handle PPPoE. On my old setup I used to do just this. Huawei Modem bridged, port 1 of the Huawei connected to Port 1 of the RB3011 and ...
by elbob2002
Mon Dec 14, 2020 12:29 pm
Forum: Virtualization
Topic: Why RouterOS CHR and x86 use the same distribution package?
Replies: 5
Views: 7197

Re: Why RouterOS CHR and x86 use the same distribution package?

but distributions cannot be the same: CHR should contain only virtual device drivers and VMware tools. x86 should contain a large number of real device drivers. CHRs need the same drivers as the x86 versions because not all CHR installations will use vNICs. Some will use PCI Passthrough devices to ...
by elbob2002
Sat Dec 12, 2020 9:50 am
Forum: Virtualization
Topic: Why RouterOS CHR and x86 use the same distribution package?
Replies: 5
Views: 7197

Re: Why RouterOS CHR and x86 use the same distribution package?

Because they use the same architecture.
by elbob2002
Sun Sep 27, 2020 10:25 am
Forum: RouterBOARD hardware
Topic: CRS328-24P-4S+RM installation of fan3 and fan4
Replies: 29
Views: 29622

Re: CRS328-24P-4S+RM installation of fan3 and fan4

Very interesting!

Mine has been behaving itself with all recent updates.. The nosiest things in my room now are a couple of HP Proliants. Not much I can do about them though!
by elbob2002
Tue Aug 25, 2020 7:43 pm
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 154312

Re: v7.1beta2 [development] is released!

I still consider 7.x as a pre-Beta as it just reboots you touch someting that is untouchable. You only will know it was untouchable because, after the reboot the change was lost. I went back to a stable Beta within minutes after walking into reboot walls. Yeah. I wasn't expecting too much but I fou...
by elbob2002
Tue Aug 25, 2020 3:05 pm
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 154312

Re: v7.1beta2 [development] is released!

Upgraded my RB3011 this morning to 7.1beta 2. I reset the router before upgrading and only configured it with a WAN connection to upgrade to Beta2. Upgrade seemed to go okay so I set about configuring it correctly. First issue was renaming an interface (ether1 renamed to WAN) would result in a reboo...
by elbob2002
Thu Aug 20, 2020 10:50 am
Forum: RouterBOARD hardware
Topic: CRS328-24P-4S+RM installation of fan3 and fan4
Replies: 29
Views: 29622

Re: CRS328-24P-4S+RM installation of fan3 and fan4

Hey - Could I ask how you accessed those graphs ? Is it within the RouterOS Software or some other 3rd party?
Sure - I'm using LibreNMS. SNMP monitoring of RouterOS.

Unfortunately if you're using SwOS then SNMP is quite a bit neutered.
by elbob2002
Tue Aug 18, 2020 9:22 am
Forum: RouterOS beta
Topic: FEATURE REQUEST: full cone NAT
Replies: 292
Views: 41365

Re: FEATURE REQUEST: full cone NAT

Then you as a customer, together with other customers, should say "no" and demand IPv6, or you'll go elsewhere. The tricky part is how to increase your numbers above around five people. And then there's the tough decision, if you're really prepared to live without internet, when ISP also ...
by elbob2002
Tue Jun 30, 2020 11:40 am
Forum: Virtualization
Topic: CHR + KVM problem - low upload.
Replies: 6
Views: 7326

Re: CHR + KVM problem - low upload.

What make are your physical NICs? There are severe issues with some Intel NICs with some Linux Kernels. Specifically Intel i218/i219 using the e1000 driver in kernels from 4.15 https://github.com/torvalds/linux/commit/b10effb92e272051dd1ec0d7be56bf9ca85ab927 you can turn off TCP segmentation offload...
by elbob2002
Wed Jun 24, 2020 9:41 pm
Forum: RouterBOARD hardware
Topic: CCR2004-1G-12S+2XS - Throughput Question
Replies: 13
Views: 7248

Re: CCR2004-1G-12S+2XS - Throughput Question

I don't know many routers that can route at the speed of all ports combined, so this CCR2004 is no exception. In most situations this is not a problem. Indeed but if there's intense traffic across 4 interfaces could completely choke up the router. Tile CCRs while only 1Gb can router wirespeed acros...
by elbob2002
Wed Jun 24, 2020 3:26 pm
Forum: General
Topic: CCR2004-1G-12S+2XS vs CRS317-1G-16S+RM
Replies: 2
Views: 2294

Re: CCR2004-1G-12S+2XS vs CRS317-1G-16S+RM

CCR is a router without a switch chip so switching performance would be terrible as it's not designed to be a switch. CRS is a switch and has terrible routing performance as the CPU, while fine for managing a switch is not really suited for routing. I believe the hardware acceleration you're referri...
by elbob2002
Wed Jun 24, 2020 3:18 pm
Forum: RouterBOARD hardware
Topic: CCR2004-1G-12S+2XS - Throughput Question
Replies: 13
Views: 7248

CCR2004-1G-12S+2XS - Throughput Question

Looking at the CCR2004-1G-12S+2XS. So it has 12 SFP+ ports and 2 25G SFP 28 ports. However looking at the block diagram there's a PIPE connecting to the CPU with 2 x 25G for a total of 50G throughput. Does this mean it has a maximum throughput of 50Gb? The test results show routing with fastpath at ...
by elbob2002
Mon Jun 22, 2020 7:39 pm
Forum: Virtualization
Topic: new free tier CHR instances refuse login
Replies: 9
Views: 5593

Re: new free tier CHR instances refuse login

Free tier does not need any kind of activation or renewal. Trial mode of any paid tier lasts for 60 days. And even after that it will still let you log in. So your problem has nothing to do with CHR licensing. You are wrong. 60 day trial requires an account on Mikrotik.com and you need to login to ...
by elbob2002
Mon Jun 22, 2020 11:34 am
Forum: Virtualization
Topic: new free tier CHR instances refuse login
Replies: 9
Views: 5593

Re: new free tier CHR instances refuse login

I believe you have to activate them. Once they evaluation period lapses they enter the "free tier"

You won't be able to update them though.

However you should still be able to access them sa I believe if they haven't been activated they revert to a 1Mb limit on the interfaces.
by elbob2002
Wed Jun 10, 2020 5:27 pm
Forum: Virtualization
Topic: > 10 gigabit
Replies: 13
Views: 8052

Re: > 10 gigabit

Your license is probably restricting you.

While with a P10 license will restrict you to 10Gb per interface this probably includes your LAG interface too.
by elbob2002
Mon May 25, 2020 11:41 am
Forum: Virtualization
Topic: CHR Hypervisor recommenadtion please (Hyper V?)
Replies: 9
Views: 10320

Re: CHR Hypervisor recommenadtion please (Hyper V?)

It's a matter of preference. I think Hyper-V is crap and that VMware is the best hypervisor for CHR. In all seriousness, there are pros and cons of each. If you already have Hyper-V in your environment then use that. If you have a VMware environment - use that. Keep in mind BGP is single threaded so...
by elbob2002
Mon May 25, 2020 11:33 am
Forum: General
Topic: Could not transfer license
Replies: 1
Views: 747

Re: Could not transfer license

Contact Mikrotik Support I'd say but first hide your keys!
by elbob2002
Thu Apr 30, 2020 4:40 pm
Forum: Forwarding Protocols
Topic: 3 routers, OSPF not working on 1 of them [SOLVED]
Replies: 3
Views: 8151

Re: 3 routers, OSPF not working on 1 of them [SOLVED]

We've all been there. Sometimes it's easy to go blind and oversee the obvious.
by elbob2002
Wed Apr 29, 2020 5:45 pm
Forum: Forwarding Protocols
Topic: 3 routers, OSPF not working on 1 of them [SOLVED]
Replies: 3
Views: 8151

Re: 3 routers, OSPF not working on 1 of them [SOLVED]

Isn't there an incorrect IP address? If you're using /30 that gives you a maximum of 2 hosts. On R2-161 you have 10.39.255.4/30 and 10.39.255.2/30 10.39.255.2/30 is fine because your network is 10.39.255.0 and broadcast is 10.39.255.3 10.39.255.4/30 is wrong because your network should be 10.39.255....
by elbob2002
Wed Apr 29, 2020 2:01 pm
Forum: Virtualization
Topic: what is your most stable CHR release, share your stat!
Replies: 4
Views: 4697

Re: what is your most stable CHR release, share your stat!

I have three CHRs in production. Spanning two locations in two countries via EOIP tunnels. One runs on ESXi 6.7 (AMD Opteron 6344) and two are on 6.0 (Intel i7 7700) I've never had a problem with any of them and they're upgraded regularly as you can see by the near identical uptimes. CHR-Uptime.PNG
by elbob2002
Thu Feb 27, 2020 1:27 pm
Forum: Virtualization
Topic: limit ether chr in vmware
Replies: 1
Views: 4544

Re: limit ether chr in vmware

There is a limit of 10 NICs per VM in ESXi.

So unfortunately it can't be done.

https://configmax.vmware.com/guest?vmwa ... gories=1-0
by elbob2002
Sun Feb 09, 2020 9:21 am
Forum: Beginner Basics
Topic: Best way to keep system clock up-to-date [SOLVED]
Replies: 2
Views: 4636

Re: Best way to keep system clock up-to-date [SOLVED]

Run your own NTP server?

My DNS servers also double as my NTP servers.
by elbob2002
Thu Oct 17, 2019 5:29 pm
Forum: RouterBOARD hardware
Topic: Strange RB3011 Issue
Replies: 3
Views: 2747

Re: Strange RB3011 Issue

What version of RouterOS are you running?

There was an issue previously with port flapping when an 100Mb devices were connected.
by elbob2002
Sun Oct 06, 2019 10:20 pm
Forum: RouterBOARD hardware
Topic: CRS328-24P-4S+RM installation of fan3 and fan4
Replies: 29
Views: 29622

Re: CRS328-24P-4S+RM installation of fan3 and fan4

To be honest if you're running RouterOS then make sure you're running the latest version and you won't have to swap out any fans. Whatever changes they made means mine is practically silent with fans running at 270RPM instead of 4000RPM. Of course this is at the expense of temperature which is now 5...
by elbob2002
Wed Aug 28, 2019 9:33 pm
Forum: Announcements
Topic: v6.45.5 [stable] is released!
Replies: 53
Views: 49790

Re: v6.45.5 [stable] is released!

*) crs328 - adjust fan speed based on SFP and CPU temperature;
*) health - improved fan control on CRS3xx and CCR1016-12S-1S+r2;

Yes indeed. I should have known better than to upgrade. Edit: This is a CRS328-24P-4S+
SW-TEMP.PNG
by elbob2002
Sat Aug 03, 2019 4:36 pm
Forum: Virtualization
Topic: CHR bandwidth test questions
Replies: 2
Views: 5501

Re: CHR bandwidth test questions

The Hypervisor is the obvious difference. There are a few here who swear HyperV is better for hosting CHR and others (myself included) swear by VMware. But I'm biased slightly as I used to work for VMware. I'm assuming you are using the P unlimited license as on my ProLiant DL385p G8 I only get 9.2G...
by elbob2002
Sat Aug 03, 2019 4:18 pm
Forum: Beginner Basics
Topic: HW recommendation
Replies: 3
Views: 1486

Re: HW recommendation

Do you need 4 SFP ports? For almost the same price you could get more ports albeit with two SFP instead of 4.The CRS326 has SFP+ ports. More ports are always handy if you want to add cameras etc. mtikswitches.PNG (I have no involvement with the reseller above other than I buy my devices from them!)
by elbob2002
Sat Aug 03, 2019 4:11 pm
Forum: Announcements
Topic: v6.45.3 [stable] is released!
Replies: 90
Views: 61050

Re: v6.45.3 [stable] is released!

v6.45.3 is released! but when I tried to update my system then it shows an error windows defender error 577 , I really have no idea how to remove this error. if you have any idea about it then please share with me. How are you updating? The device itself downloads the updates if you do it through W...
by elbob2002
Fri Jul 19, 2019 10:51 am
Forum: General
Topic: VRRP Masquerade Out on Virtual IP
Replies: 4
Views: 2381

Re: VRRP Masquerade Out on Virtual IP

Yeah. I understand the NAT side of it. it would be nice to have something like Carp from the BSDs. I know that the features of Carp aren't fully achievable on routerOS but I was seeing how close I could get.

Thanks again for you help!
by elbob2002
Fri Jul 19, 2019 10:16 am
Forum: General
Topic: VRRP Masquerade Out on Virtual IP
Replies: 4
Views: 2381

Re: VRRP Masquerade Out on Virtual IP

Thanks Sindy,

I've made those changes but they don't seem to have resolved my issue. I'll investigate further today.
by elbob2002
Thu Jul 18, 2019 10:15 pm
Forum: General
Topic: VRRP Masquerade Out on Virtual IP
Replies: 4
Views: 2381

VRRP Masquerade Out on Virtual IP

Hi all, I'm tearing my hair out with this one. I'm trying to set up VRRP and have two CHRs (6.44.5) configured successfully with External VRRP interface (EXT) and internal (INT) VRRP interface Everything on LAN is configured to use the virtual IP on INT as their gateway (192.168.80.254) and can ping...
by elbob2002
Sun Jun 23, 2019 12:31 pm
Forum: Beginner Basics
Topic: IPSEC Routing Help
Replies: 3
Views: 1295

Re: IPSEC Routing Help

Glad to hear you got sorted.