Community discussions

Search found 13 matches

by nagylzs
Tue Oct 08, 2019 8:39 pm
Forum: General
Topic: Allow users to access clients connected with L2TP
Replies: 2
Views: 563

Re: Allow users to access clients connected with L2TP

Okay, that was the problem. I did not know that the new version of Windows 10 firewall disables ICMP ping requests by default. I could also open port TCP/5900. So the problem was fully with the client, not MikroTik settings.

Thank you for your help!
by nagylzs
Tue Oct 08, 2019 7:36 pm
Forum: General
Topic: Allow users to access clients connected with L2TP
Replies: 2
Views: 563

Allow users to access clients connected with L2TP

Hello, I'm using L2TP with pre-shared key. Here is my current firewall configuration: /ip firewall filter add action=accept chain=input comment="L2TP szerver 2/1" port=1701,500,4500 protocol=udp add action=accept chain=input comment="L2TP szerver 2/2" protocol=ipsec-esp add action=accept chain=input...
by nagylzs
Sun Jul 21, 2019 3:52 pm
Forum: General
Topic: Please help me understand how VLAN assignment works [SOLVED]
Replies: 3
Views: 456

Re: Please help me understand how VLAN assignment works [SOLVED]

I'm beginning to grasp what you wrote. I was not aware of the two sides of vlan interfaces. :-)
by nagylzs
Sun Jul 21, 2019 3:26 pm
Forum: General
Topic: Please help me understand how VLAN assignment works [SOLVED]
Replies: 3
Views: 456

Re: Please help me understand how VLAN assignment works [SOLVED]

I have removed vlan10_guest24 and vlan10_guest5, this also removed the vlan interfaces from bridge_guest. I have also changed vlan_mode=no_tag for both virtual interfaces. The guest network is still working. So I do not need to use VLANs for making a guest network at all. BTW I was following this ar...
by nagylzs
Sun Jul 21, 2019 1:30 pm
Forum: General
Topic: Please help me understand how VLAN assignment works [SOLVED]
Replies: 3
Views: 456

Please help me understand how VLAN assignment works [SOLVED]

I have followed a tutorial to create a guest wifi network that is separated from the private network, using a VLAN. I'm not sure if I have done everything right, but this setup does work. I'm going to post the basic configuration below before I ask. My private network has two wireless radios and two...
by nagylzs
Fri Jul 19, 2019 8:04 pm
Forum: General
Topic: L2TP server, malformed cookie received or the spi expired [SOLVED]
Replies: 7
Views: 820

Re: L2TP server, malformed cookie received or the spi expired [SOLVED]

Worked like a charm! And it was so easy to do, I think it is easier than modifying the registry on a single computer! Just for completeness, if the public ip is 1.2.3.4 and the WAN interface (connected to the outer/NAT router) is your-wan-interface then this will do it: /interface bridge add name="h...
by nagylzs
Fri Jul 19, 2019 10:58 am
Forum: General
Topic: L2TP server, malformed cookie received or the spi expired [SOLVED]
Replies: 7
Views: 820

Re: L2TP server, malformed cookie received or the spi expired [SOLVED]

Very intriguing. :-) I have to try this (but I can only do it later).
by nagylzs
Fri Jul 19, 2019 7:23 am
Forum: General
Topic: L2TP server, malformed cookie received or the spi expired [SOLVED]
Replies: 7
Views: 820

Re: L2TP server, malformed cookie received or the spi expired [SOLVED]

On the other router, the suggested changes worked, I can now login. So the remaining problem is with the ISP's router, it cannot do NAT on IPSEC. I have to call them. Than you for your help!
by nagylzs
Thu Jul 18, 2019 11:51 pm
Forum: General
Topic: L2TP server, malformed cookie received or the spi expired [SOLVED]
Replies: 7
Views: 820

Re: L2TP server, malformed cookie received or the spi expired [SOLVED]

Okay, this is what I did: /ip ipsec identity remove 1 /ip ipsec peer remove 1 /interface l2tp-server server set ipsec-secret "*********************" The current config looks like this: /ip ipsec export /ip ipsec proposal set [ find default=yes ] auth-algorithms=sha512,sha256,sha1 enc-algorithms=aes-...
by nagylzs
Thu Jul 18, 2019 10:21 pm
Forum: General
Topic: L2TP server, malformed cookie received or the spi expired [SOLVED]
Replies: 7
Views: 820

L2TP server, malformed cookie received or the spi expired [SOLVED]

I have two routers that had been working with L2TP windows clients before. After upgrading to 6.44.3 clients cannot connect from Windows anymore. I'm getting messages in the log like this: 21:10:41 ipsec,debug 11.22.33.44 malformed cookie received or the spi expired. where 11.22.33.44 is the IP addr...
by nagylzs
Fri Jul 12, 2019 9:40 pm
Forum: Wireless Networking
Topic: Can I use NV2 and "normal" Wifi on the same device?
Replies: 4
Views: 570

Re: Can I use NV2 and "normal" Wifi on the same device?

Wireless Wire seems very promising. :-) But it is not omni-directional. Are you suggesting to use a WAP_60g in the main office, and multiple wireless wire devices in the secondary offices, directed to the main office?
by nagylzs
Fri Jul 12, 2019 8:56 pm
Forum: Wireless Networking
Topic: Can I use NV2 and "normal" Wifi on the same device?
Replies: 4
Views: 570

Can I use NV2 and "normal" Wifi on the same device?

I have a place where the main office is using a HAP AC2 router for wifi, both 2.4GHz and 5.Ghz. I need to connect secondary office buildings with AP clients (point to multi point) that are about 50m away. I would like to use these access points in bridge mode (probably RouterBOARD LHG 5 or similar)....
by nagylzs
Mon Jul 08, 2019 4:38 pm
Forum: Scripting
Topic: Script to check whether a destination port is open
Replies: 3
Views: 6431

Re: Script to check whether a destination port is open

Sorry for being a necromancer. I also need to test if a port is open. But I cannot use fetch, because this is not http, https or ftp protocol. The fetch tool can only use these protocols. Is there way tell if a port is open in general? (I need to test TCP 6055 and UDP 6055 in particular, and I know ...