Community discussions

MikroTik App

Search found 18 matches

by WildWest
Tue Apr 09, 2024 6:44 pm
Forum: General
Topic: OpenVPN can't reconnect (Site to Site)
Replies: 0
Views: 427

OpenVPN can't reconnect (Site to Site)

This problem is being exist for a while, for several years. It does not matter on what RouterOS version, now it is 7.14.2 Here is an example: Mikrotik Router (any model) OpenVPN client is connected to Mikrotik Router (any model or CHR) OpenVPN Server. The client lost OpenVPN tunnel link because of u...
by WildWest
Sat Feb 24, 2024 6:57 am
Forum: General
Topic: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]
Replies: 9
Views: 1032

Re: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]

But there are several mistakes in it... that is why you encounter issues. For some unclear reason, the CCR devices do not get the default rules that other devices get. Even with the default rules there are issues with logging dropped traffic, because you will get lots of false positives. E.g. when ...
by WildWest
Fri Feb 23, 2024 11:40 pm
Forum: General
Topic: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]
Replies: 9
Views: 1032

Re: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]

I apologize for the not correct statement from beginning. I only wanted to publish a minimum setup of the configuration and to show the issue with that, I expected to be asked about entire configuration, for that reason to minimize the number of potential questions, I did reset to factory set and ma...
by WildWest
Fri Feb 23, 2024 11:20 pm
Forum: General
Topic: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]
Replies: 9
Views: 1032

Re: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]

My CCR works as a primary Core router with hundreds firewall rules, Mangle rules, routes, vlans, CAPSMAN, VPNs ... The separation of the Core router from the edge router (with NAT) was made on purpose. What I published here is just an example of the simplest configuration setup after when I noticed ...
by WildWest
Fri Feb 23, 2024 10:45 pm
Forum: General
Topic: Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]
Replies: 9
Views: 1032

Firewall is dropping traffic on CCR1009-8G-1S-1S+ (tile) [SOLVED]

My connection: Internet -> Static WAN IP address, EDGE router (with NAT rules) -> Core Router -> Local Network The Core router CCR1009-8G-1S-1S+ (tile), has no NAT rules, no Mangle rules, simple static default route. There is a simple Firewall rule list (CCR): /ip firewall filter add action=accept c...
by WildWest
Thu Oct 20, 2022 1:35 am
Forum: Announcements
Topic: v7.6 [stable] is released!
Replies: 279
Views: 144593

Re: v7.6 [stable] is released!

Can somebody explain how to do that?
*) lte - added support to perform FOTA upgrade from local file for EG12-EA, EG18-EA, RG502Q-AE, EG06-A, EP06-A modems;
by WildWest
Fri Jun 03, 2022 7:19 pm
Forum: General
Topic: CRS354-48P-4S+2Q+ traffic problem on ports 1 to 8
Replies: 437
Views: 128472

Re: CRS354-48P-4S+2Q+ traffic problem on ports 1 to 8

Found the reason of "High CPU load" here https://forum.mikrotik.com/viewtopic.php?t=179064#p936933 Still have the problem with ethernet ports: I still see the random Ethernet ports turn off. One thing I noticed, it can happen when power went down and the switch did reboot. After that I see...
by WildWest
Fri Jun 03, 2022 6:12 pm
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

There is another problem with the hardware on that switch. I would not pay attention if that switch would be stable, but I have to open the winbox and do monitoring of the statistics in real time. SNMP does work for me for other 1000+ devices. Agree, the problem "High CPU load" has been so...
by WildWest
Fri Jun 03, 2022 5:16 pm
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

The crs112 also has this issue.
I may forgive the CRS112 but cannot forgive the CRS354. Today is 2022, but we still use the old CPU in production level
May be I pay too much attention to type of CPU, I know the mipsbe is not bad. And that is only a bug in winbox
by WildWest
Fri Jun 03, 2022 8:43 am
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

# jun/02/2022 23:44:13 by RouterOS 7.2.3 # model = CRS354-48P-4S+2Q+ /interface bridge add admin-mac=XX:XX:XX:XX:XX:XX auto-mac=no frame-types=admit-only-vlan-tagged name=bridge-vlan priority=0x9100 vlan-filtering=yes /interface vlan add interface=bridge-vlan name=vlan100 vlan-id=100 /interface brid...
by WildWest
Fri Jun 03, 2022 8:27 am
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

I finally found what was cause of the high CPU load problem I did run the command /tool profile to see what part of device is using the CPU with highest load. I was surprised to see "management" with average 25% and spikes up to 56% (even up to 80%) I disabled the SNMP and left only Winbox...
by WildWest
Thu Jun 02, 2022 11:50 pm
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

yes, the hardware offload is enabled (Layer2)
I can see it in status of the bridge connection
by WildWest
Thu Jun 02, 2022 11:19 pm
Forum: General
Topic: High CPU CRS354-48G-4S+2Q+
Replies: 15
Views: 3082

Re: High CPU CRS354-48G-4S+2Q+

I have 4 switches CRS354-48P-4S+2Q+ RouterOS 7.2.3 All of them have the CPU load: Average: 50% Sometimes spikes up to 95% There is no reason to have those high numbers. The configuration is with VLANs running on the single bridge Also, sometimes some random ethernet ports go offline. Dear Mikrotik d...
by WildWest
Mon Jan 31, 2022 11:57 pm
Forum: General
Topic: Can't see RoMon neighbours
Replies: 8
Views: 3717

Re: Can't see RoMon neighbours

Same problem with Switches CRS326/328 !!! Romon stopped passing through vlans via trunk ports It does not work with this Screenshot from 2022-01-31 14-50-56.png but it does work with this Screenshot from 2022-01-31 14-53-51.png I have tried/tested it on the several different networks. I see that pro...
by WildWest
Fri Oct 23, 2020 9:26 pm
Forum: General
Topic: Address List Group???
Replies: 3
Views: 2387

Address List Group???

Why the Mikrotik RouterOS developers do not want to add an option "Address List Group"? For example, It could be as a hierarchy system. When you have a small network that is not big deal using only existing firewall features. But what if you have a huge amount of the different IP address l...
by WildWest
Tue Oct 29, 2019 10:05 pm
Forum: General
Topic: Why the official Mikrotik.com site does use the Let's Encrypt?
Replies: 9
Views: 2754

Re: Why the official Mikrotik.com site does use the Let's Encrypt?

Yes, I checked, the problem with my browser is only on my computer...
I use a lot the Let's Encrypt for my projects, just did not expect to see it here.
Thank you all for answers!
by WildWest
Tue Oct 29, 2019 9:41 pm
Forum: General
Topic: Why the official Mikrotik.com site does use the Let's Encrypt?
Replies: 9
Views: 2754

Why the official Mikrotik.com site does use the Let's Encrypt?

Seriously, I would understand if you will be a student, or a small organization, or a start up... You do not have enough money to buy a normal certificate? I have never noticed until today when I opened the the https://mikrotik.com and my browser firefox gave me message that something wrong with the...
by WildWest
Sat Feb 23, 2019 1:02 am
Forum: General
Topic: Why Mikrotik does not encrypt the password in RouterOS?
Replies: 1
Views: 2012

Why Mikrotik does not encrypt the password in RouterOS?

As you remember in 2018 a lot of Mikrotik's were hacked using vulnerability through the Winbox and port 80. Since v6.42.1 (stable) Mikkrotik had closed that vulnerability. But what I did, I think other people had found it as well: For example, in my organization we have around 1000 different mikroti...