You need some route in any case, because routes are what tells router where to send packets. You don't necessarily have to know all third party subnets, it's possible to do "if connection from address X came from there, send responses back the same way" config using mangle rules. Mark inc...
Dont understand, is this third party LAN coming from a router connected to your MT router on one of the etherports? In other words it seems as though you dont have anything to do with this vlan10 (no dhcp etc). Correct it's connected to my MT router on one of the etherports. I don't know the intern...
In my router I generally have 3 networks: LAN, WAN and ThiirdPartyLAN (will be called VLAN10 from now on), WAN and LAN are simple: WAN is conected to the internet and LAN is my network with my devices. VLAN10 is a network which belongs to a third party company. I am given a static ip on this network...
I am trying to config OmniTIK G-5HacD to serve as a dynamic wifi extender which can bridge (not sure if this is the right term) to another router from both ethernet or wifi. I have 2 types of physical setups which I would like to support with the same configuration for the OmniTIK G-5HacD. In both s...
From at least version 6.44.2 forward (probably even before) it's impossible to copy using Ctrl+c or pasting scripts using Ctrl+v or any other method , to the web ui terminal. Allowing copy and paste in the web ui is very usefull and saves a lot of time. It's probably a a helpfull feature for a lot o...
My router is having internet gateway via LTE and LAN via ethernet and/or wlan When downloading large files over LTE (with a device connected to the router) it looks like after some time the modem is not responding, while the LTE interface stays on and appears to be running. also the file download is...
Hi, I have a Sierra MC7455 , when connecting to the RB922UAGS routerboard it does get recognized but not as an LTE interface but rather as a serial device using PPP. The modem has the USB 3.0 pins taped out, it is running in usbcomp mode 8( verified using swi_switchmode.pl script used on a laptop wi...
Option 2 outputed an error : [admin@MikroTik] > ip firewall nat remove [ ip firewall nat find dst-port=8103 ] bad command name ip (line 1 column 26) [admin@MikroTik] > ip firewall nat remove [ ip firewall nat find dst-port=8103 and action=dst-nat ] bad command name ip (line 1 column 26) option 1 did...
After better understanding the purpose of action=dst-nat and action=netmap I found a solution. Basically I need to expose ip: 10.6.0.11 for ether3 So the following did the job: /ip firewall nat add chain=dstnat dst-address=10.6.0.11 action=dst-nat to-addresses=10.8.5.254 Note: It didn't work for ip:...
Network diagram attached. My board (Mikrotik RBM33G) is responsible for multiple subnets but is connected to an external network via ether3. In ether3 my board is connected with the following IP: 10.8.5.20 netmask 255.255.255.0 (external network). In bridge1 my board is responsible (runs a dhcp serv...
I chose to update the firewall rules on router1. needed to just accept forwarding from router1 net to router2 net. This is the new firewall config: /ip firewall filter add action=accept chain=input comment="defconf: accept established,related,untracked" connection-state=established,related...
I have the following two boards: 1) connected to my ISP via WAN , and has Ethernet and WIFI for LAN [admin@MikroTik] > system resource print uptime: 1w1d16h50m31s version: 6.45.6 (stable) build-time: Sep/10/2019 09:06:31 factory-software: 6.43.10 free-memory: 964.1MiB total-memory: 1024.0MiB cpu: AR...
I think I found a bug: Basically I think the user flag in the /system ssh command is not working and it also doesn't auto complete with available options consider having the following user: /user group add name=remote policy=ssh,read,write /user add name=ubuntu group=remote password=Sup3rStr0ngPassw...
I am trying to ssh from routeros ver 6.44.3 to an ubuntu 16.04 linux server with no success the following command works from any linux machine: ssh -i my_private_key.pem ubuntu@myhost I tried many variations on my routeros machine without success. I guessed the following would work: /user group add ...
Updating backend server config to be closer to : https://wiki.mikrotik.com/wiki/OpenVPN#OpenVPN_server_configuration: fixed the problem But I would expect the client to have a faulty status in that case. current: keepalive 10 120 # comp-lzo no # push "comp-lzo no" user nobody group nogroup...
This is the config export: [admin@MikroTik] > /export hide-sensitive # may/26/2019 09:06:23 by RouterOS 6.44.3 # software id = EPU4-B5BD # # model = RouterBOARD M33G # serial number = A2FD0AB8D70F /interface lte set [ find ] mac-address=02:1E:10:1F:00:00 name=lte1 /interface wireless security-profil...
This flow works for me: ssh -o "StrictHostKeyChecking no" admin@192.168.88.1 system resource print # See current version scp -o "StrictHostKeyChecking no" ./routeros-mmips-6.44.2.npk admin@192.168.88.1:/ ssh -o "StrictHostKeyChecking no" admin@192.168.88.1 system reboot...
whats the easiest way to install a specific version of routeros via terminal or UI (if must)
lets say I want to automatically flash all my boards with routeros ver 6.44.2 or 6.44.1