Community discussions

MikroTik App

Search found 81 matches

by wrkq
Thu Feb 06, 2025 9:38 pm
Forum: General
Topic: Upgrading from V6 to V7...
Replies: 15
Views: 1440

Re: Upgrading from V6 to V7...

Tbh I would say, for this kind of major upgrade, the only sensible reliable way to do it is do make a complete /export (including bits that normally don't get included along like user/group configs or certificates), nuke with netinstall, and re-config from scratch using the old export as baseline, b...
by wrkq
Thu Feb 06, 2025 9:05 pm
Forum: General
Topic: Got stuck building IKEv2 w/ MFA for remote client
Replies: 49
Views: 2622

Re: Got stuck building IKEv2 w/ MFA for remote client

Except RouterOS and Strongswan, I haven't seen any IKEv2 implementation yet that would support PSK. Just as a little factoid, I have IKEv2 with PSK authentication working between RouterOS and a Fortigate. https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/560886/pre-shared-key-...
by wrkq
Sun Jan 26, 2025 10:11 pm
Forum: General
Topic: GRE over IPSec tunnel - unusable on RB4011 above 7.15.3
Replies: 6
Views: 1275

Re: GRE over IPSec tunnel - unusable on RB4011 above 7.15.3

TL;DR how does the CPU load (/tool/profile cpu=all) look under the traffic load? There have been some changelog notes in last few versions regarding hardware AES acceleration specifically on the Alpine SoC family being broken and fixed and fixed again, etc. RB4011 has an Alpine chip, so this might b...
by wrkq
Wed Jan 22, 2025 11:06 am
Forum: Announcements
Topic: v7.17.2 [stable] is released!
Replies: 597
Views: 132377

Re: v7.17 [stable] is released!

Regarding the watchdog stuff: It surfaced a while ago that on many devices there is only one I2C-bus which is connected both to various "internal" components and to the SFP slots. I2C is used to read the eeprom and diagnostic and stuff from SFP modules. However many SFP modules are "b...
by wrkq
Wed Jan 22, 2025 10:47 am
Forum: Beginner Basics
Topic: Hardware Switching on CCR2004-16G-2S+
Replies: 6
Views: 1293

Re: Hardware Switching on CCR2004-16G-2S+

In reality it is "one bridge per switch chip" ... and it can be the same bridge on both chips. Since there are many caveats around HW offloading bridge(s) (some think single port can somehow be HW offloaded, some don't consider which ports belong to which switch chip, with multiple bridge...
by wrkq
Wed Jan 22, 2025 12:17 am
Forum: General
Topic: Hot take on Botnets - How do you secure your Mikrotik while setting it up?
Replies: 40
Views: 3655

Re: Hot take on Botnets - How do you secure your Mikrotik while setting it up?

From my experience and Linux knowledge nothing is automatically personalized to HW upon first or any boot. Also I doubt that ROS configuration is personalized to HW if nothing is configured on it related to HW devices, but this needs to be confirmed. Ok, so @kryztoval upthread pointed out there may...
by wrkq
Wed Jan 22, 2025 12:09 am
Forum: Beginner Basics
Topic: Hardware Switching on CCR2004-16G-2S+
Replies: 6
Views: 1293

Re: Hardware Switching on CCR2004-16G-2S+

In order to get "true/native hardware switching" on layer2 on any version of ROS released from 2018 onwards, you use what is listed in documentation under "Bridge Hardware Offloading". * Create an /interface/bridge object * add ports to it under /interface/bridge/ports (Bridge->P...
by wrkq
Sun Jan 19, 2025 2:30 pm
Forum: General
Topic: Hot take on Botnets - How do you secure your Mikrotik while setting it up?
Replies: 40
Views: 3655

Re: Hot take on Botnets - How do you secure your Mikrotik while setting it up?

I understand what you say but I am 200% sure the setup I had when applying that VPS instance in the cloud did not have a public IP address nor DHCP client. Maybe it has changed at some point in history, but I can 100% confirm what sindy is saying. "first boot of the vmdk/vhdx/img" config ...
by wrkq
Tue Jan 14, 2025 12:53 am
Forum: General
Topic: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]
Replies: 126
Views: 17417

Re: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]

The various web-scanners from AI companies are getting even more aggressive than before, to the point articles start to be written about it causing four-five digits of extra fees from hosting companies to to the scanned website owners for all the bandwidth used. The stuff seems to be slapped togethe...
by wrkq
Mon Dec 30, 2024 2:51 pm
Forum: Wireless Networking
Topic: Google Nest Audio doesn't see WiFi networks from my hAP ax3
Replies: 9
Views: 2408

Re: Google Nest Audio doesn't see WiFi networks from my hAP ax3

Stupid suggestion, but as a test, try to manually configure the 5Ghz for a low channel number and width (5200/20 for example) and see if the speaker can find the network then? Maybe your auto-frequency setting lands on some channel in the 5600 or 5800 zone and the client radio in the speaker is so b...
by wrkq
Mon Dec 30, 2024 1:53 am
Forum: General
Topic: CCR2004-16G-2S+ shows wrong cpu mhz
Replies: 10
Views: 2826

Re: CCR2004-16G-2S+ shows wrong cpu mhz

I'm running v7.16.2 Then yeah, you're locked by default. /system/device-mode/update routerboard=yes beware, you will be forced to reboot - it tells you to unplug power or press button, but pressing button will reboot. After the reboot, you will have settings available in /system/routerboard/set . A...
by wrkq
Sat Dec 28, 2024 11:27 pm
Forum: General
Topic: dstnat doesn't work on L009UiGS-RM Router [SOLVED]
Replies: 40
Views: 4163

Re: dstnat doesn't work on L009UiGS-RM Router [SOLVED]

1. The first problem I see is that you have both an IP address for WAN on ether1 AND a dhcp client on ether1. It cannot be both!!! Of course it can be both, but one need to /really/ know that's what they want. Case in point, DOCSIS cable modems have the hard-coded-in-standard 192.168.100.1 IP for t...
by wrkq
Sat Dec 28, 2024 6:24 pm
Forum: General
Topic: Do AP's come with all router functions?
Replies: 29
Views: 4117

Re: Do AP's come with all router functions?

Frankly, the OP appears to be the "must see everything all the way to the bottom, must feel 200% in control" kind of person (which is an attitude I share, but maybe not quite to the same level). And because of that, I just would like to point out that RouterOS - which is basically 80% Mikr...
by wrkq
Fri Nov 29, 2024 4:10 am
Forum: Beginner Basics
Topic: No WinBox connection over IP/MAC
Replies: 2
Views: 1524

Re: No WinBox connection over IP/MAC

It looks like you've been adding and deleting a lot of items (dangling references with * prefix), but more importantly you've deleted the default "LAN" and "WAN" interface lists. Out-of-the-box config for the MAC-Telnet and MAC-Winbox has "allowed interface list = LAN",...
by wrkq
Thu Nov 28, 2024 8:27 pm
Forum: Virtualization
Topic: CHR on OVH VPS SSD
Replies: 30
Views: 39202

Re: CHR on OVH VPS SSD

Welcome. :)
by wrkq
Sat Nov 23, 2024 1:53 am
Forum: General
Topic: VLAN setup in RouterOS Switch
Replies: 11
Views: 975

Re: VLAN setup in RouterOS Switch

Well, "This is currently working" kinda doesn't really matter if you have vlan filtering off - packets are just zipping around through all the ports that are non-disabled members of the bridge (sfp 2, 3, 5, 6, 10, 11, 15, 16), preserving their existing tags (or lack of). The config as you ...
by wrkq
Sat Nov 23, 2024 1:17 am
Forum: General
Topic: VLAN setup in RouterOS Switch
Replies: 11
Views: 975

Re: VLAN setup in RouterOS Switch

Ok, yeah, so... Stating the obvious, but once you enable vlan-filtering any vlans that are not listed in /interface/bridge/vlan will not be able to pass through. And also, you have the switch management interface (only entry in /ip/address menu) assigned to the bridge-cpu port (the interface named &...
by wrkq
Sat Nov 23, 2024 1:01 am
Forum: General
Topic: VLAN setup in RouterOS Switch
Replies: 11
Views: 975

Re: VLAN setup in RouterOS Switch

EDIT: You replied while I was writing, I'll comment on the config in a sec.
But already - you have two bridges so only one of them will have any kind of hardware offload, so that's probably solid part of your problem.
Can you please tell what is the model of the switch?
by wrkq
Sat Nov 23, 2024 12:42 am
Forum: Beginner Basics
Topic: RB4011 wont run at default CPU frequency
Replies: 8
Views: 2057

Re: RB4011 wont run at default CPU frequency

You need:
/system/device-mode/update routerboard=yes
by wrkq
Sat Nov 23, 2024 12:38 am
Forum: General
Topic: VLAN setup in RouterOS Switch
Replies: 11
Views: 975

Re: VLAN setup in RouterOS Switch

Umm, do I understand it right?
Do you today use this switch as "just an unmanaged switch", with already-vlan-tagged stuff from other devices flying through, and are wanting to enable vlan filtering?

Any chance you can post contents of /interface/export ?
by wrkq
Fri Nov 22, 2024 8:03 pm
Forum: Beginner Basics
Topic: Trying to trunk between two switches [SOLVED]
Replies: 5
Views: 2562

Re: Trying to trunk between two switches [SOLVED]

I wondered about this when I was setting it up looking at the documentation. I recently received my CCNA so I was just "initializing" the vlans before I applied them. It does provide some kind of notes for the purpose of the vlan I guess even if they're not necessary. Cisco layer 2 vlan s...
by wrkq
Fri Nov 22, 2024 7:37 pm
Forum: Virtualization
Topic: CHR on OVH VPS SSD
Replies: 30
Views: 39202

Re: CHR on OVH VPS SSD

Well... maybe let me guide you step by step then? I just went to ovh, picked up their current black friday "Value" sale, one step above "Starter". Lists as "1 vCore / 2GB RAM / 40 GB SSD NVMe / 250 Mbps" with a lot of asterisks. Debian 12 as my usual, because you can't ...
by wrkq
Sun Nov 17, 2024 1:34 pm
Forum: Beginner Basics
Topic: Do switch rules on the RB5009ug+s+in work to assign VLAN by MAC?
Replies: 3
Views: 1782

Re: Do switch rules on the RB5009ug+s+in work to assign VLAN by MAC?

OK guys so... https://help.mikrotik.com/docs/spaces/ROS/pages/15302988/Switch+Chip+Features#SwitchChipFeatures-RuleTable (links to a chapter further down, if it didn't scroll on open click "Rule Table" in the table of contents near top) The parameter in table is listed as new-vlan-id (inte...
by wrkq
Sat Nov 16, 2024 5:18 pm
Forum: Beginner Basics
Topic: Difference between two Interface Lists
Replies: 19
Views: 3306

Re: Difference between two Interface Lists

I'm making a rule to block all the inter-vlan traffic, and I created the VLANS interface list with all of the single subinterfaces, so if I put that list as In Interface List and Out Interface List it should work? It might be much easier for you to approach this differently. Setup the firewall like...
by wrkq
Sat Nov 16, 2024 4:22 pm
Forum: Beginner Basics
Topic: Difference between two Interface Lists
Replies: 19
Views: 3306

Re: Difference between two Interface Lists

So the super short version ignoring very exotic needs: If you have bridge without vlans, you "do stuff" directly on the bridge-interface (set IP of your router, etc). If you have bridge with vlans, you hook the vlan-subinterfaces to the bridge-interface, and do everything else on the vlan-...
by wrkq
Sat Nov 16, 2024 2:22 pm
Forum: Beginner Basics
Topic: Difference between two Interface Lists
Replies: 19
Views: 3306

Re: Difference between two Interface Lists

Well, an interface list is just a list, it doesn't have any power by itself. You can put interfaces in a list, and then use the name of the list in other parts of ROS config, e.g. firewall. The "LAN" list is in factory default config the one that includes the internal network which your ro...
by wrkq
Sat Nov 16, 2024 1:51 pm
Forum: Beginner Basics
Topic: Netwatch a Windows 11 firewalled client
Replies: 9
Views: 1674

Re: Netwatch a Windows 11 firewalled client

Yes, Wireguard does create a separate interface in Windows. It is however dynamic - when you enable the VPN, the interface appears, when you disable, it disappears. Most other VPN clients (Fortinet, Cisco...) create one "permanent" virtual interface that just goes "cable unplugged&quo...
by wrkq
Sat Nov 16, 2024 12:35 pm
Forum: Beginner Basics
Topic: Netwatch a Windows 11 firewalled client
Replies: 9
Views: 1674

Re: Netwatch a Windows 11 firewalled client

@holvoetn - Wireguard software client on a Windows PC show up as "just another network card", next to wifi and wired ethernet. Windows Firewall (and really, any other FW software you could have installed) can apply to all network interfaces on the PC similarly, and by default it does. It l...
by wrkq
Sat Nov 16, 2024 11:34 am
Forum: Beginner Basics
Topic: Netwatch a Windows 11 firewalled client
Replies: 9
Views: 1674

Re: Netwatch a Windows 11 firewalled client

@holvoetn, I believe what OP is saying is that the "peer IP address" itself is not responding to ping due to default windows software firewall. And what's kinda implied between the lines is that they don't control the client and can't monitor/change it, but want to be aware when the client...
by wrkq
Sat Nov 16, 2024 11:13 am
Forum: Announcements
Topic: v7.17beta [testing] is released!
Replies: 773
Views: 179897

Re: v7.17beta [testing] is released!

Also "as already mentioned before", the double-lemonjuice-salt-in-the-wound part is the general implication that later upgrades post 7.17 would as well put additional features (existing or brand-new) behind the device-mode lock and require repeat of the button pusher visit. "Yes hello...
by wrkq
Thu Nov 14, 2024 10:56 pm
Forum: General
Topic: Upgrading a hub-spoke setup to dual-homed - stay with static routing or...?
Replies: 0
Views: 1297

Upgrading a hub-spoke setup to dual-homed - stay with static routing or...?

Today, there is a very basic setup to collect telemetry from a bucketload of remote locations across the country. Single big router at the company office, wireguard listener on public IP, lots of small routers connecting via whatever poor excuse for internet uplink could be arranged, sensors and stu...
by wrkq
Thu Nov 14, 2024 8:44 pm
Forum: RouterBOARD hardware
Topic: Connect AX2/AX3/AC2/AC3 devices by eth1 poe-in@24V to a switch poe-out@48V
Replies: 4
Views: 2856

Re: Connect AX2/AX3/AC2/AC3 devices by eth1 poe-in@24V to a switch poe-out@48V

Hi. No, relax. "Proper / standards-compliant" 48V PoE (802.3af/at/bt) is doing negotiation. If you plug in a device that does not explicitly "wants" this kind of PoE, there will be no power sent down the wire. It is "passive PoE" which is very common among radio/WISP eq...
by wrkq
Mon Nov 11, 2024 3:25 pm
Forum: Virtualization
Topic: CHR on OVH VPS SSD
Replies: 30
Views: 39202

Re: CHR on OVH VPS SSD

Does this work? I have an OVH vps spare and could make use of this but could swear I've tried this without success. ... admittedly I can't remember if I followed those particular instructions, but I did successfully deploy on the lowest-end OVH VPS (value-1-2-40) about a year ago. basically: 1. ord...
by wrkq
Sun Nov 10, 2024 1:00 am
Forum: RouterBOARD hardware
Topic: Support for external LTE antennas
Replies: 11
Views: 3512

Re: Support for external LTE antennas

I'm just curious though... Why wouldn't you just use a LHGG or SXT outside (as opposed to external antennae)? Sorry for the late reply (and at the same time, thanks for leading mkx to point out that bad news about the official antennas). Overall, the kinda-unachievable dream goal here was: * Single...
by wrkq
Sun Nov 03, 2024 9:19 pm
Forum: RouterBOARD hardware
Topic: Support for external LTE antennas
Replies: 11
Views: 3512

Re: Support for external LTE antennas

Thanks for the recommendations! I didn't even look at the Chateau line because well, "home all in one box" and relatively large box at that. Kind of funny how it's ready for external antennas straight from factory, while the more rugged stuff is not. It's not the worst choice cost wise, CP...
by wrkq
Sun Nov 03, 2024 2:28 pm
Forum: RouterBOARD hardware
Topic: Support for external LTE antennas
Replies: 11
Views: 3512

Support for external LTE antennas

Hi... just trying to verify I'm not missing anything obvious. The Mikrotik Way(tm) is to mount the whole active device (wAP-LTE, ltAP, LHGG, etc) outdoors, and none of the pre-built models have the option of connecting external "dumb" antennas, right? The only way to have the option of &qu...
by wrkq
Sat Jul 18, 2020 6:09 pm
Forum: RouterBOARD hardware
Topic: RB5011
Replies: 40
Views: 24895

Re: RB5011

Speaking for myself as a mid-power-user with RB4011 bought as an all-in-one for home, keep in mind the CPU is really beefy. You can and should do vlans and stuff in software, no problem. It's meant to handle that quite easily up to reasonable home / small office levels. WAN-to-LAN and WIFI-to-wired ...
by wrkq
Tue Jul 14, 2020 1:25 am
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 146
Views: 102705

Re: v6.47.1 [stable] is released!

Because the Qualcomm system-on-a-chip designs used for many MT products which hardware limit of max 16 MB SPI flash.
This is also the reason some products have the bizarre combination of fast wireless and 100Mbit ethernet ports - QCA decided to embed a 100Mb switch into the SoC.
by wrkq
Sat Dec 28, 2019 3:16 am
Forum: RouterBOARD hardware
Topic: CRS309-1G-8S+IN question
Replies: 1
Views: 3801

Re: CRS309-1G-8S+IN question

Re: 1) - according to this, the revised models have "/R2" at end of serial number:
viewtopic.php?f=3&t=142091#p725908

Re: 2) - see here:
https://wiki.mikrotik.com/wiki/S%2BRJ10 ... l_guidance
by wrkq
Mon Sep 09, 2019 11:33 pm
Forum: Wireless Networking
Topic: Bit confused by the existence of the hAP AC Lite?
Replies: 15
Views: 6924

Re: Bit confused by the existence of the hAP AC Lite?

Eeyup, there's been plenty models of e.g. tplink AC routers with 100Mb ports because that's what Qualcomm in its infinite genius put in the chipset... another fantastic thing is how many models of SoCs have a max supported size of SPI flash limited to 16MB, which is primary reason many MT devices ha...
by wrkq
Sun Sep 01, 2019 2:45 am
Forum: RouterBOARD hardware
Topic: RB2011UiAS-2HnD-IN PoE problem
Replies: 2
Views: 4339

Re: RB2011UiAS-2HnD-IN PoE problem

Hi. TL;DR: won't work. The "12V" mention on the Hikvision camera refers to its external power connector only. It uses "standard PoE" (802.3af) for powering via ethernet cable. This runs on 48V and comes with a complex negotiation dance that must be supported by smart-PoE chips in...
by wrkq
Thu Aug 29, 2019 11:16 pm
Forum: RouterBOARD hardware
Topic: RB4011 (WiFi model) stability/reliability poll
Replies: 14
Views: 7139

Re: RB4011 (WiFi model) stability/reliability poll

Hi!

Is that
/interface wireless set wlan1 frame-lifetime=10
in CLI?
Because "0.01" gets rounded down to 0, while "10ms" complains about invalid characters.

Tbh not too excited about prospect running beta considering all the mess people ran into with "stable" 6.45...
by wrkq
Thu Aug 29, 2019 10:46 pm
Forum: RouterBOARD hardware
Topic: RB4011 (WiFi model) stability/reliability poll
Replies: 14
Views: 7139

Re: RB4011 (WiFi model) stability/reliability poll

And for a little update, I came back home after a few weeks and 5GHz is down.
Happened at around 24 days of uptime. (Still on 6.44.5).
by wrkq
Mon Aug 19, 2019 3:52 am
Forum: General
Topic: Problem with RB1100AHx4 In SWITCH1
Replies: 7
Views: 2314

Re: Problem with RB1100AHx4 In SWITCH1

Glad you did not restore backup from different model. That would totally mess up the device. If you have the time, use NETINSTALL to reset RouterOS on the X4 (it will erase the disk and install clean system, without any weird things that might remain in there "hidden"). Then try to test it...
by wrkq
Mon Aug 19, 2019 1:32 am
Forum: General
Topic: Problem with RB1100AHx4 In SWITCH1
Replies: 7
Views: 2314

Re: Problem with RB1100AHx4 In SWITCH1

A loop between two 1Gbps ports cannot make the statistic show 30+Gbps on the physical interface... this is either some massive software bug or hardware issue... Big question. You said you replaced an older X2 with the X4. But did you configure it fresh or try to copy config from the X2? If copy, did...
by wrkq
Mon Aug 19, 2019 12:06 am
Forum: Wireless Networking
Topic: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]
Replies: 6
Views: 2782

Re: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]

No, you don't need specifically single-stream/single-chain adapter. Just adapter capable of using 80MHz channels (so 802.11ac). 160MHz would be even more future-proof. If you will buy a 4-stream monster powerful adapter with AC speeds, (advertising "up to 1500 Mbps" on the box for exampe) ...
by wrkq
Sun Aug 18, 2019 11:03 pm
Forum: Wireless Networking
Topic: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]
Replies: 6
Views: 2782

Re: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]

Oh. Hm. Well, I have a bit of bad news. TL;DR: Your Intel card can do "1x150" or "2x150" on 2.4 GHz or on 5GHz all the same. Your Mikrotik on 2.4GHz can do "1x150", "2x150". Your Mikrotik on 5GHz can do "1x150", "1x300", "1x433". ...
by wrkq
Sun Aug 18, 2019 8:30 pm
Forum: Wireless Networking
Topic: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]
Replies: 6
Views: 2782

Re: hAP ac lite TC Wifi 5Ghz can't syncrhonize to 300Mbps [SOLVED]

Hm. The 7265 card is two-chain on both frequencies, but while the RB is two-chain on 2.4, only single-chain on 5.0. So sounds like you're stuck on a single-width channel right now, but should be able to bump up to double-width to get around 300. (Or quad-width for 433 but that's harder.) Please post...
by wrkq
Sun Aug 18, 2019 1:56 pm
Forum: Wireless Networking
Topic: LTE based internet and WiFi network at home
Replies: 11
Views: 4499

Re: LTE based internet and WiFi network at home

The PWR-LINE-PRO variant promises "up to 600 Mbps".
Of course, we all know "up to" speeds require ideal circumstances but fair chance it'd go quite a bit above 100Mbps. :)
by wrkq
Sun Aug 18, 2019 4:30 am
Forum: Wireless Networking
Topic: LTE based internet and WiFi network at home
Replies: 11
Views: 4499

Re: LTE based internet and WiFi network at home

Hi. I'm afraid you guys may have a small confusion here. The wAP LTE is a wifi access point for local devices (laptops etc) which uses LTE modem with sim card as "source of the internet". That's a bit (although not fully) within the area of what the OP Krzysztof is looking for. But I belie...
by wrkq
Thu Aug 15, 2019 11:13 pm
Forum: RouterBOARD hardware
Topic: RB4011 (WiFi model) stability/reliability poll
Replies: 14
Views: 7139

Re: RB4011 (WiFi model) stability/reliability poll

I am running RB4011/Wifi since about three months, as a result of a series of unfortunate events. * It seemed quite attractive as an all-in-one home+homelab device. I can confirm the "5GHz wifi dying after some days/weeks of uptime" issue exists. But recently - after moving from 6.44.3 to ...
by wrkq
Sun Aug 11, 2019 5:47 pm
Forum: RouterBOARD hardware
Topic: Suitable AP or RouterBoard
Replies: 3
Views: 1851

Re: Suitable AP or RouterBoard

Good luck, hope you'll like it!
(And well, over here I think I'd need to have like 750 download to get 100 upload, thus the surprise. :p)
by wrkq
Sun Aug 11, 2019 5:32 pm
Forum: RouterBOARD hardware
Topic: Suitable AP or RouterBoard
Replies: 3
Views: 1851

Re: Suitable AP or RouterBoard

Seriously 250/100? That's a bit unusual proportion, was there a typo? But if these are correct numbers, and if having the wifi AP and the router as a single device is feasible in your home, take a look at the hAP AC2. https://mikrotik.com/product/hap_ac2 It has a quadcore ARM CPU so it should handle...
by wrkq
Sun Aug 11, 2019 5:02 pm
Forum: RouterBOARD hardware
Topic: RB4011: wlan1 disabling itself [SOLVED]
Replies: 307
Views: 190405

Re: RB4011: wlan1 disabling itself [SOLVED]

Well, knock on wood, but after last round of config changes my 5G wifi is still working with 10 days of uptime... [admin@MikroTik] > /system resource print uptime: 1w3d12h10m4s version: 6.44.5 (long-term) build-time: Jul/04/2019 10:32:21 factory-software: 6.43.10 free-memory: 955.2MiB total-memory: ...
by wrkq
Sun Aug 11, 2019 4:45 pm
Forum: Beginner Basics
Topic: What mean : Bridge All LAN Ports [SOLVED]
Replies: 5
Views: 19340

Re: What mean : Bridge All LAN Ports [SOLVED]

Hi. hEX has 5 ethernet ports, marked on the outside as "Internet/2/3/4/5". Default config follows this - ether1 is configured as separate interface that is meant for WAN/Internet access, ether2-5 are a bridge for LAN devices (so each LAN device can talk to each other). Enabling the "b...
by wrkq
Sun Aug 11, 2019 4:36 pm
Forum: General
Topic: Where are the log about the SNTP ?
Replies: 1
Views: 1095

Re: Where are the log about the SNTP ?

Well, uh. There is /system ntp client print but seems it's lacking the where-clause if you'd want only some of the fields or do parsing, hm. You can try doing /system logging add topics=ntp action=memory The default logging settings are "any component, levels info/error/warning/critical". ...
by wrkq
Sat Aug 10, 2019 5:53 am
Forum: RouterBOARD hardware
Topic: RB4011 Metal temperature is really hot
Replies: 54
Views: 40724

Re: RB4011 Metal temperature is really hot

Look. It's a very high-power CPU and gigabit ethernet RJ45 ports, both sources of significant heat.
They're packaged in a fan-less form with the whole case working as the heatsink. It's warm by design.
Don't panic. The data sheet says the acceptable operating range is -40C to +70C.
by wrkq
Wed Aug 07, 2019 11:02 pm
Forum: General
Topic: Locked out of 2 routers!
Replies: 38
Views: 7316

Re: Locked out of 2 routers!

Woot! Congrats on resolving it - and well, you know, the only IT tech who never broke something is one who never really did any work. :) If you'll ever have a chance to get one of these as a "lab", play with them to get more familiar with the various setups. The nice thing about RouterOS i...
by wrkq
Tue Aug 06, 2019 5:45 am
Forum: Beginner Basics
Topic: Can I setup a hAP ac2 strictly as a WAP?
Replies: 8
Views: 4724

Re: Can I setup a hAP ac2 strictly as a WAP?

Uh, wait. You said you wanted to use it as an AP only.
Then you should have no WAN interface at all, it should be just bridging (wifi is LAN, ethernet is LAN)... right?
Or am I missing something?
by wrkq
Tue Aug 06, 2019 5:24 am
Forum: General
Topic: Locked out of 2 routers!
Replies: 38
Views: 7316

Re: Locked out of 2 routers!

Honestly, seeing some other support posts around here, it's a pleasure to work with you - even if you're not familiar with some things, you're patient and very keen to understand. Not just "no worky, give me magic spells to fix!". That said, mega bummer with the mismatched cable. Sorry you...
by wrkq
Tue Aug 06, 2019 4:49 am
Forum: RouterBOARD hardware
Topic: Advice for new Unit
Replies: 6
Views: 2417

Re: Advice for new Unit

It's a bit more complicated - which I admittedly missed on the dealer's site I checked yesterday, sorry. Check out the paragraph at top of the page. https://mikrotik.com/product/crs112_8p_4s_in The switch It comes with a 24V PSU that powers the device and the MT-style passive-PoE, and you can do tot...
by wrkq
Tue Aug 06, 2019 4:25 am
Forum: RouterBOARD hardware
Topic: CRS312 - fan noise?
Replies: 3
Views: 2733

Re: CRS312 - fan noise?

and yes, the CRS312 is in stock now with most retailers on my home market as the local Mikrotik distributor is very active.
Now that's super cool to know, thanks! Hope the dealer over here will get them soon... :)
by wrkq
Mon Aug 05, 2019 3:19 am
Forum: General
Topic: Locked out of 2 routers!
Replies: 38
Views: 7316

Re: Locked out of 2 routers!

No, you can't. The port has RJ45 shape (technically "8P8C shape" because RJ45 is a telecom wiring standard for phone cables, just the name got stuck in common speak). But the electrical signals on it are not Ethernet, they are RS232. If you plug it into a network interface in a PC or a swi...
by wrkq
Mon Aug 05, 2019 2:47 am
Forum: General
Topic: Bandwith reservation - tcp/udp ports
Replies: 3
Views: 1063

Re: Bandwith reservation - tcp/udp ports

Yes, the limit-at option. A very basic setup on a "blank" config with no existing queues or mangle rules might look something like this (do not use this blindly, just as example): /ip firewall filter print where action="fasttrack-connection" ;;; note the rules printed, and if mor...
by wrkq
Mon Aug 05, 2019 2:23 am
Forum: General
Topic: Locked out of 2 routers!
Replies: 38
Views: 7316

Re: Locked out of 2 routers!

If your device has an RJ45 serial port, you need a cable with RJ45 plug on one end, and 9-pin serial port plug on the other. If you ask around for a "Cisco serial cable" or generally "RJ45 to serial cable" you can find one easily - just about everyone in the networking business f...
by wrkq
Mon Aug 05, 2019 12:16 am
Forum: RouterBOARD hardware
Topic: Advice for new Unit
Replies: 6
Views: 2417

Re: Advice for new Unit

Yeah, your best bet would be something like CRS112 (which does both the "budget" passive-POE and "true" 802.11af/at PoE/PoE+ as cameras would require) plus a separate wireless unit. If you really need only 11n @ 2.4 there's plenty to choose from, although the smallest/cheapest (h...
by wrkq
Mon Aug 05, 2019 12:07 am
Forum: General
Topic: Locked out of 2 routers!
Replies: 38
Views: 7316

Re: Locked out of 2 routers!

Hey. Serial port is direct access, any IP settings etc, don't matter. If you connect your PC to serial port, open serial terminal at the right speed (usually 115200 but not on all models), and press enter in the terminal, you will see a RouterOS username prompt immediately. It is possible to disable...
by wrkq
Sun Aug 04, 2019 11:59 pm
Forum: General
Topic: Bandwith reservation - tcp/udp ports
Replies: 3
Views: 1063

Re: Bandwith reservation - tcp/udp ports

Yes, you can build a queue tree with the minimum guaranteed bandwidth option and mark the flows on the basis of the port. Mind, you will have to disable fasttrack so on weaker hardware you may run into CPU performance bottleneck. But please provide some more details. What hardware model you use? Are...
by wrkq
Sun Aug 04, 2019 7:44 pm
Forum: Beginner Basics
Topic: set Queue on ether2
Replies: 5
Views: 1767

Re: set Queue on ether2

Hi.
What is the routerboard model?
Also do you want to slow down *all* traffic on this port including local network, or only routed traffic to other subnets and/or the internet?
by wrkq
Sun Aug 04, 2019 7:34 pm
Forum: Beginner Basics
Topic: How to find link speed on each port?
Replies: 1
Views: 12116

Re: How to find link speed on each port?

Uh, admittedly I didn't run SwOS but looking at the documentation, the "Link" tab of the webinterface should do it for you? https://wiki.mikrotik.com/wiki/SwOS/CRS3xx#Link If Auto Negotiation is on, Speed/Duplex columns are read-only and show what's negotiated. If Auto Negotiation is of, S...
by wrkq
Sun Aug 04, 2019 6:50 pm
Forum: RouterBOARD hardware
Topic: CRS312 - fan noise?
Replies: 3
Views: 2733

Re: CRS312 - fan noise?

Hi. Note that S+RJ10 in particular runs very hot, so you both shouldn't use it in all SFP slots in a switch, and avoid using them in fanless switches generally. See here https://mikrotik.com/product/s_rj10 (" S+RJ10 module is supported also on devices with passive cooling, but may require an ex...
by wrkq
Sun Aug 04, 2019 6:40 pm
Forum: Announcements
Topic: v6.45.3 [stable] is released!
Replies: 90
Views: 65344

Re: v6.45.3 [stable] is released!

Just to clarify something, the routerboard firmware is part of ROS installation package, so you need to first update ROS, reboot into new version, and then do the firmware upgrade from within. You can find the current version and the version available for upgrade under System > Routerboard in all ma...
by wrkq
Sat Aug 03, 2019 11:29 pm
Forum: General
Topic: Winbox 3.19 login problem
Replies: 1
Views: 2105

Re: Winbox 3.19 login problem

Odd. Is SSH working correctly or also not letting you in?
by wrkq
Sat Aug 03, 2019 11:27 pm
Forum: Announcements
Topic: v6.45.3 [stable] is released!
Replies: 90
Views: 65344

Re: v6.45.3 [stable] is released!

edit: power cycle of the router after the upgrade finally resolved the issue. Fortunately this device is local to me...
Did you only upgrade ROS or remember to also upgrade firmware (/system routerboard upgrade)?
by wrkq
Sat Aug 03, 2019 3:59 am
Forum: General
Topic: CRS317-1G-16S+RM as storage switch
Replies: 6
Views: 3714

Re: CRS317-1G-16S+RM as storage switch

Of course Marvell being Marvell everything is under NDA. The Prestera switching core has some undisclosed amount of "packet buffer memory". https://www.marvell.com/switching/assets/Prestera_98DX8216_24-02_product_brief.pdf I think this chip is optimized more for slinging 10Gb from the in-p...
by wrkq
Fri Aug 02, 2019 1:07 am
Forum: General
Topic: Netinstall does seem to work- RBMetalg-52SHPacn Intl
Replies: 4
Views: 3046

Re: Netinstall does seem to work- RBMetalg-52SHPacn Intl

To copy the data from a Windows console, right click the title bar for a menu. Select Edit -> Select All. The whole window will get reverse colors. Press Enter. Colors will turn normal and the text will be in clipboard. Paste to notepad and review. What to look for: When you run "netstat -nab&q...
by wrkq
Thu Aug 01, 2019 9:37 pm
Forum: General
Topic: Netinstall does seem to work- RBMetalg-52SHPacn Intl
Replies: 4
Views: 3046

Re: Netinstall does seem to work- RBMetalg-52SHPacn Intl

"bind failed" error means that the program doesn't have the necessary rights on your Windows PC to open the raw ports it needs OR that the specific port number is already used by some other program. Make sure you are running netinstall tool as administrator (right click -> run as admin). I...
by wrkq
Thu Aug 01, 2019 8:26 pm
Forum: General
Topic: WinBox not accepting username/password [SOLVED]
Replies: 2
Views: 3108

Re: WinBox not accepting username/password [SOLVED]

To ask the stupid question - did you download the newest winbox.exe (v3.19) yet?
Older versions are not compatible.
by wrkq
Thu Aug 01, 2019 8:25 pm
Forum: General
Topic: Auto upgrading RoS with single pagkages installed
Replies: 7
Views: 1903

Re: Auto upgrading RoS with single pagkages installed

Yeah, it also showed on the feed (https://mikrotik.com/download.rss) only today afternoon.
by wrkq
Thu Aug 01, 2019 6:25 pm
Forum: RouterBOARD hardware
Topic: 1100x4 unexpected downgrade
Replies: 4
Views: 2148

Re: 1100x4 unexpected downgrade

Power outage counts as such (personally I don't think power outage should be the reason to switch over to backup partition). From what I've seen power outage should not cause partition switch unless the data on active partition is corrupted and boot from it failed. I mean, just yesterday I've been ...
by wrkq
Mon Jul 29, 2019 11:20 pm
Forum: RouterBOARD hardware
Topic: NetInstall -> Flashing with RouterOS 6.45.1
Replies: 8
Views: 47149

Re: NetInstall -> Flashing with RouterOS 6.45.1

I had a similar problem trying to netinstall recently - after putting bootloader in netinstall mode it came up with IP, and downloaded the small "flash-OS" image that's embedded in the netinstall program, but after booting that flasher and resetting network ports it was not listening to &q...