Community discussions

MikroTik App

Search found 126 matches

by Znevna
Sun Sep 27, 2020 11:54 am
Forum: General
Topic: 6.46.6 shows testing?
Replies: 2
Views: 121

Re: 6.46.6 shows testing?

by Znevna
Sat Sep 26, 2020 7:17 pm
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 45
Views: 6027

Re: Newsletter 97 (September 2020)

That Premium one should have external antennas for LTE also ^^
by Znevna
Sat Sep 26, 2020 3:28 pm
Forum: General
Topic: Request for Temporary Mitigation Guide/Official Patch for CVE-2020-12695
Replies: 3
Views: 403

Re: Request for Temporary Mitigation Guide/Official Patch for CVE-2020-12695

Unless you opened up UPnP to the internet, I don't see the big drama over this.
by Znevna
Sat Sep 26, 2020 11:58 am
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 45
Views: 6027

Re: Newsletter 97 (September 2020)

I loved the hAP ac³! And it comes with 128MB storage! Now it will be possible to use partitioning at home! :D Product page specifications show storage size as 128 MB, but for some reason it reads "FLASH 16 MB" on block diagram... Probably a mistake, since they redid that diagram based on the hAP ac...
by Znevna
Fri Sep 25, 2020 12:01 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

Excluded, same config works fine without "workarounds" between 6.46.x versions.
Without the netwatch set in 7.1b2, the end from 6.46 fails after the keepalive timeout (10,3 = it stops running after 30 sec.) nothing to do with conntrack.
by Znevna
Fri Sep 25, 2020 10:41 am
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

Ah, stupid me... Of course it's keepalive. / interface gre unset keepalive [ find ] !!!!! this fixed my IPIP tunnel too. lol (unsetting keepalive for ipip that is). THANKS. [admin@gw-viper-rds] /interface/ipip> print Flags: R - RUNNING Columns: NAME, MTU, ACTUAL-MTU, LOCAL-ADDRESS, REMOTE-ADDRESS, ...
by Znevna
Wed Sep 23, 2020 10:01 pm
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 45
Views: 6027

Re: Newsletter 97 (September 2020)

How is that related to "ARM optimizations"? What compiler flags cause WiFi issues?
by Znevna
Wed Sep 23, 2020 6:53 pm
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 45
Views: 6027

Re: Newsletter 97 (September 2020)

I loved the hAP ac³! And it comes with 128MB storage! Now it will be possible to use partitioning at home! :D Yes it looks good, I am sort-of looking for a router to replace my aging RB2011 at home and this could be it (of course with an additional switch). Unfortunately there are no performance sp...
by Znevna
Tue Sep 22, 2020 11:34 pm
Forum: General
Topic: Mangle rules with unexpected behavior [SOLVED]
Replies: 7
Views: 502

Re: Mangle rules with unexpected behavior [SOLVED]

Kinda offtopic, but I'd like to see a little brainstorming that leads to well, not the ultimate, but "almost complete multi-wan setup load-balancing WITH failover" with decent explanations and what ifs. With the recent "online school" I had to make use of the current available tutorials on the wiki ...
by Znevna
Mon Sep 21, 2020 8:20 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 60
Views: 6499

Re: WinBox v3.27 released!

It is indeed a WinBox bug, checked with 3.24 and it doesn't happen, it started with 3.25.
by Znevna
Mon Sep 21, 2020 8:02 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 1026

Re: CCR2004 poor bridge performance

He insists that you removed the "fast path rule" which doesn't exist, in your setup or anywhere in the RouterOS world, there isn't any "fast path rule", there's only a "fasttrack rule" if you were doing any kind of firewalling/routing on it, which again, is not the case. Fast path for the bridge get...
by Znevna
Mon Sep 21, 2020 6:23 pm
Forum: General
Topic: IP Cloud
Replies: 59
Views: 25126

Re: IP Cloud

they can deprecate anytime support for version older than 6.43, why would anyone care about those with so many security issues in them anyway?
by Znevna
Mon Sep 21, 2020 5:08 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 1026

Re: CCR2004 poor bridge performance

Paternot, you are confusing fastpath with fasttrack. Document yourself better about the two.
by Znevna
Mon Sep 21, 2020 1:52 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 1026

Re: CCR2004 poor bridge performance

Well, like in the other thread, it is mentioned that this is advertised as a router, not a switch, so maybe performance between the 25Gbps ports and 10Gbps ports might be better than only using the 10Gbps ports. I see that config as the intended use for this device. Archived datasheet of that PX is ...
by Znevna
Mon Sep 21, 2020 1:13 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 1026

Re: CCR2004 poor bridge performance

@Paternot got it a little wrong. But, those tests say 39444Mbps, 3248kpps at 1518 byte packet size on ALL ports. (thus involving all 12x 10G ports and the two remaining uplinks of 25Gbps out of the 4 total on that 98PX1012, two of which are connected to the CPU?). Is performance that limited when us...
by Znevna
Mon Sep 21, 2020 12:38 pm
Forum: General
Topic: Weird PING behavior on RouterOS
Replies: 7
Views: 396

Re: Weird PING behavior on RouterOS

Having two bridges doesn't disable hardware offload for one of the bridges? I'd suspect an IP conflict too, don't know if it can be spotted in IP/ARP but I know I've seen one when doing an IP Scan using Tools/IP Scan for the whole subnet (one IP was showing twice with two different MACs) which were ...
by Znevna
Mon Sep 21, 2020 12:01 am
Forum: General
Topic: hAP ac2 over heated vent holes mod
Replies: 16
Views: 885

Re: hAP ac2 over heated vent holes mod

the topic is about hap ac2.. if it derailed to ccr1009 not my fault :p
by Znevna
Sun Sep 20, 2020 11:28 pm
Forum: General
Topic: hAP ac2 over heated vent holes mod
Replies: 16
Views: 885

Re: hAP ac2 over heated vent holes mod

yes, yes, aluminium mesh cages for proper wifi coverage.
by Znevna
Sun Sep 20, 2020 6:20 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 1026

Re: CCR2004 poor bridge performance

uhm, and how was this test done exactly?
except the " two loop-backed 10G ports" there's nothing mentioned. what util, what generated the traffic on which port, what captured it on what port.. except RFC2544 which states hours of testing.. nothing.
so.. again, what and how did you test exactly?
by Znevna
Sun Sep 20, 2020 1:05 pm
Forum: RouterOS v7 BETA
Topic: After installing ROS 7.1beta2
Replies: 3
Views: 531

Re: After installing ROS 7.1beta2

Only when doing it via WinBox/GUI, from terminal it works fine.
I wrote about it here: viewtopic.php?f=1&t=165248#p815503
PS: you could change the topic name to something closer to the issue though
by Znevna
Sat Sep 19, 2020 8:41 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 60
Views: 6499

Re: WinBox v3.27 released!

Bug(?) (3.15 -> current): make any changes to an opened window (just moving it is enough) save session, close that window to which you've made changes. try to open that window again -> winbox session crashes. LE: I couldn't test with releases older than 3.15 because of the protocol changes or whatev...
by Znevna
Thu Sep 17, 2020 5:01 pm
Forum: General
Topic: hAP ac2 external antenna mod
Replies: 8
Views: 621

Re: hAP ac2 external antenna mod

Those aren't connectors for external antennas.
How did you disable the internal antennas? Or you just don't care about the RF stage? Sheesh.
Also stop advertising your facebook page or any facebook crap in here.
by Znevna
Wed Sep 16, 2020 1:28 pm
Forum: General
Topic: Terrible speeds over point to point 10G SFP+
Replies: 5
Views: 282

Re: Terrible speeds over point to point 10G SFP+

Writing to support about improper use of equipment is pointless. Those CRSs are switches, not routers. Any firewall rule cripples them. Check https://mikrotik.com/product/CRS326-24G-2SplusRM#fndtn-testresults Bandwidth tests ran from devices with a single core CPU running at 800MHz is also bad. Ther...
by Znevna
Tue Sep 15, 2020 11:31 pm
Forum: General
Topic: Fast Path issues (Solved)
Replies: 1
Views: 177

Re: Fast Path issues (Solved)

Wan bridge? why do you have such a thing? what is the purpose of it? Only one bridge is hardware offloaded if I remember right. And on rb4011 even that one bridge is hardware offloaded if you disable rstp/stp. Something in your config is causing those issues. Export a sanitized version of it if you ...
by Znevna
Tue Sep 15, 2020 10:43 pm
Forum: General
Topic: Can't login here with my password from 12 September 2020
Replies: 4
Views: 310

Re: Can't login here with my password from 12 September 2020

False statement there about what passwords were "declared invalid". 1. My password had lower case and upper case characters + numbers and I also had to reset it. 2. I doubt that any forum stores passwords the way you think that are stored, it should be (almost) impossible to recover the plaintext pa...
by Znevna
Mon Sep 14, 2020 10:12 am
Forum: General
Topic: CVE-2020-11881 PATCH [SOLVED]
Replies: 16
Views: 832

Re: CVE-2020-11881 PATCH [SOLVED]

If you are watching the release dates so close you'd notice that atleast the last 3 (maybe more) long term builds were released to public after ~7 days of probably inside testing since they were built.
Read first, blame later.
Cheers.
by Znevna
Mon Sep 14, 2020 9:54 am
Forum: General
Topic: CVE-2020-11881 PATCH [SOLVED]
Replies: 16
Views: 832

Re: CVE-2020-11881 PATCH [SOLVED]

There is an entry for 6.47.2 which states
*) smb - fixed SMB server (introduced in v6.47);
So in 6.47 maybe SMB was broken anyway, so the vulnerability didn't have what to crash?
by Znevna
Sat Sep 12, 2020 4:27 pm
Forum: Announcements
Topic: Expected down time for this forum SEPT 11
Replies: 42
Views: 3444

Re: Expected down time for this forum SEPT 11

After reading that the old passwords no longer work I've said to give it a try and I've logged out. Well, indeed I had to reset the password since the old one no longer worked. And yes the old one had all the security strength requirements since I've reused the old password (yes, bad, I know, but he...
by Znevna
Sun Sep 06, 2020 11:19 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

You can write the interface name manually and it will work even if there's no list from which you could easily select it. On another note, I can't figure out how to setup load balancing using ECMP. More exactly how to adapt this old tutorial for v7: https://wiki.mikrotik.com/wiki/ECMP_load_balancing...
by Znevna
Sun Sep 06, 2020 8:20 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

bug: 7.1beta2, hAP ac2 changing any interface name belonging to the internal switch using WinBox GUI makes the router reboot: sep/06/2020 20:14:55 system,error,critical router rebooted because some critical program crashed Doing the same thing from terminal however: /interface/ethernet/print; /inter...
by Znevna
Sun Sep 06, 2020 12:08 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

This gentlemen wrote an in-depth tutorial for MikroTik site to site VPN: https://rickfreyconsulting.com/wireguard-site-to-site-vpn-example/ It's not rocket science to build up a Wireguard tunnel and route something over it. Do you guys get a cut for traffic generated to his site or out of how many ...
by Znevna
Sat Sep 05, 2020 9:59 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

This gentlemen wrote an in-depth tutorial for MikroTik site to site VPN: https://rickfreyconsulting.com/wireguard-site-to-site-vpn-example/ That's hardly an "in depth tutorial". And don't get me started on the quality of the screenshots, missing accompanied selectable text for whatever goods are or...
by Znevna
Tue Sep 01, 2020 2:44 pm
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 5723

Re: WinBox v3.25 released!

Newer WinBox versions shouldn't break client's routers running stable, older ROS versions, disconnecting CAPs or whatever else the current version is able to kill or mess up with. Or atleast there should be some warning regarding this, when it encounters unsupported (anymore) ROS versions instead of...
by Znevna
Tue Sep 01, 2020 10:11 am
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 5723

Re: WinBox v3.25 released!

You can say that this version has a killer feature. Open CAPsMAN, click on "Radio" tab and watch all your CAPs disconnect. Also keeping that tab open will not let any CAP connect back. "failed to connect, timeout". I am running 9 CAPs (18 radios) and cannot reproduce this. All CAPs are running Rout...
by Znevna
Mon Aug 31, 2020 8:23 pm
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 5723

Re: WinBox v3.25 released!

You can say that this version has a killer feature. Open CAPsMAN, click on "Radio" tab and watch all your CAPs disconnect. Also keeping that tab open will not let any CAP connect back. "failed to connect, timeout". LE: they do come back eventualy but nothing shows up on the Radio tab though. Not fun...
by Znevna
Sun Aug 30, 2020 12:05 pm
Forum: RouterOS v7 BETA
Topic: [ROSv7b4] - OpenVPN - Auth SHA256 ?
Replies: 3
Views: 2691

Re: [ROSv7b4] - OpenVPN - Auth SHA256 ?

OpenVPN should be dropped in v7, make room for something more useful.
by Znevna
Sat Aug 29, 2020 3:00 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

Tiny (not realy) bug:
I don't know why but my dynamic DNS servers went *poof* from the config. (Which are set by the pppoe client).
No wan disconnect, nothing in the logs. They just went missing.
And I was wondering why the DNS cache is empty...
by Znevna
Fri Aug 28, 2020 8:23 am
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 88
Views: 4234

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

There's nothing hot about this topic. You say you're from Latvia, give MikroTik a call to help you choose the hardware based on your not yet mentioned requirements (since MikroTik is a Latvian company, as you know already, right?). Unless you're not from there and everything you've said here is comp...
by Znevna
Tue Aug 25, 2020 6:02 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

Are the issues with RAW Firewall known? If you have any rules there (two+) issuing a disable/enable on any of them makes the counters for the existing enabled rules go crazy. Also I have a rule that keeps counting packets when enabled even though there shouldn't be any matching traffic (the notrack ...
by Znevna
Tue Aug 25, 2020 5:12 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

Ah, stupid me... Of course it's keepalive. / interface gre unset keepalive [ find ] !!!!! this fixed my IPIP tunnel too. lol (unsetting keepalive for ipip that is). THANKS. [admin@gw-viper-rds] /interface/ipip> print Flags: R - RUNNING Columns: NAME, MTU, ACTUAL-MTU, LOCAL-ADDRESS, REMOTE-ADDRESS, ...
by Znevna
Sun Aug 23, 2020 3:05 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 211
Views: 59875

Re: v7.1beta2 [development] is released!

So.. little broblem. I've upgraded from 6.46.6 to 7.1beta2 directly (I know, bad) ...and this happend with my static routes. I made an export before and after the upgrade to see what changed. I get the missing gateway, but the IP in pref-src? (and only there?) why? before: /ip route add distance=1 d...
by Znevna
Wed Aug 19, 2020 10:53 pm
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

Re: IKEv2 between MikroTiks, sides switching, initiator <> responder

In the manual there's a warning Warning: Phase 1 is not re-keyed if DPD is disabled when lifetime expires, only phase 2 is re-keyed. To force phase 1 re-key, enable DPD. This switch only happens when both sides are Tiks. Or so I've noticed until now. That's why I thought that setting DPD to disabled...
by Znevna
Wed Aug 19, 2020 8:42 pm
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

Re: IKEv2 between MikroTiks, sides switching, initiator <> responder

On the clock again. Now since I've established that phase1 rekeying is the culprit (I think? right?) if I disable DPD on the server side (as per the documentation DPD is the one forcing phase 1 rekey) how will that affect my other connected clients to it? Do Windows clients care about the DPD set on...
by Znevna
Tue Aug 18, 2020 8:44 pm
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

Re: IKEv2 between MikroTiks, sides switching, initiator <> responder

On the clock, now it's back to initiator (1 day). So, it has a chance to switch every 24 hours, which equals to the lifetime set in the ipsec profile, phase 1 ? I've set a script to check for sides switching and if any switch occurs to notify me over Telegram. That's how I pinned it down. (that Tele...
by Znevna
Mon Aug 17, 2020 8:45 pm
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

Re: IKEv2 between MikroTiks, sides switching, initiator <> responder

Ok, so I'm pretty sure that during this (captured from the client / initiator) the sides switched (initiator -> responder). I'll also try to capture a switch back to initiator. I don't know if it provides anything useful. 20:20:54 ipsec,debug ===== received 572 bytes from SERVER.IP[4500] to CLIENT.I...
by Znevna
Sun Aug 16, 2020 2:50 pm
Forum: General
Topic: IKE2 identity not found (IOS to Mikrotik) [SOLVED]
Replies: 22
Views: 6626

Re: IKE2 identity not found (IOS to Mikrotik) [SOLVED]

On IOS, in the Authentication section, you have to click the User Authentication and select "None", go back and be sure that Use Certificate is checked.
by Znevna
Mon Aug 10, 2020 2:07 pm
Forum: General
Topic: RB760iGS VPN
Replies: 10
Views: 1779

Re: RB760iGS VPN

My reply is a little offtopic, but I do hope that the internal subnet you are using (172.168.0.0/20) is fictional and you aren't realy using that range.
Because, well, that range isn't part of the private IPv4 ranges defined in RFC1918.
And it looks like it belongs to OATH/yahoo, not good.
by Znevna
Tue Aug 04, 2020 2:25 pm
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

Re: IKEv2 between MikroTiks, sides switching, initiator <> responder

Safe to say that Pure-VPN is using MikroTiks ? I've set a logging rule for "topics=ipsec,!packet" on one of those hAP ac2 client that sits mostly idle, maybe I can catch a switch in the logs (from initiator to responder) hoping that these may provide anything useful regarding this. I don't know how ...
by Znevna
Mon Aug 03, 2020 10:42 am
Forum: General
Topic: IKEv2 between MikroTiks, sides switching, initiator <> responder
Replies: 13
Views: 1690

IKEv2 between MikroTiks, sides switching, initiator <> responder

Hello! As per the topic title, I'm running a few IKEv2 tunnels on a RB4011. A bunch of Windows clients connect to it, three of my other MikroTiks for now (hAP ac2) and one FreeBSD based router I think (support for some software uses it) which stacks up PH2 count from time to time, but that's not an ...
by Znevna
Sun Jul 26, 2020 12:10 am
Forum: General
Topic: Add emoji to the ssid name
Replies: 27
Views: 7025

Re: Add emoji to the ssid name

The client (OS/driver/etc) also has to know how to translate that SSID into an emoji.
Windows 7 doesn't know how to do that for example. Windows 10 does.
No joke. Just.. not for production. Not all clients will show what you intended to be seen :)
by Znevna
Sat Jul 25, 2020 9:50 pm
Forum: General
Topic: Add emoji to the ssid name
Replies: 27
Views: 7025

Re: Add emoji to the ssid name

Works fine on 6.46.6 too.
by Znevna
Fri Jul 10, 2020 10:43 pm
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 147
Views: 57504

Re: v6.47.1 [stable] is released!

Nobody cares about the "reduced resell value" because of the sector writes count. Who advertises de sector writes count when selling their hardware? Is that a thing? realy? Selling a cheap MikroTik, cheaper? how much "resell value" loss are we talking about? If you decided to ditch that device you m...
by Znevna
Tue Feb 25, 2020 2:04 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 124327

Re: v6.47beta [testing] is released!

I don't know when this was introduced but, I now have to issue ":ip ipsec installed-sa flush" after my WAN (PPPoE) goes down and back up. If I don't IPv4 routing is broken for some reason, no packets go over WAN (packets that don't match any policies). I only have local subnets in policies, so that ...
by Znevna
Mon Feb 10, 2020 11:14 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 124327

Re: v6.47beta [testing] is released!

It's probably just a missed bug, you can still set the antenna gain from terminal. There's no mention of it beeing removed in the changelog, no need to panic like that. It's under testing branch for a reason. Hold your horses. I'm happy that this got fixed: *) ike2 - fixed DHCP Inform package handli...
by Znevna
Sat Feb 01, 2020 11:51 pm
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 4668

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

BUT, but.. If he uses the 1000$ wonder switch audiophile quality for them TVs/ Netflix, imagine how the colors and everything on those movies will be, if it does so many wonders for audio. Or if simply browsing this forum, imagine the layouts and everything that we're not seeing while using our chea...
by Znevna
Sat Feb 01, 2020 8:31 pm
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 4668

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

But, here's what I don't get, you have already one of these "Sotm sNH-10G" which you like.
Why don't you get more of them for your TV's and everything else? You know, to have audiophile-grade Netflix and HBO and whatever too.
Why settle for switches that are 4 to 10 times cheaper than that one?
by Znevna
Sat Feb 01, 2020 2:01 pm
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 4668

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

From the mac mini mod: "Blacker backgrounds, better dynamics and voices are so realistic it's almost scary!" :lol: :lol: And the switch you mentioned in the first post, Sotm sNH-10G, 800$ for a 10 (8+2) port DUMB (unmanaged) gigabit switch? :lol: The killer there are the cables, 1.5M patch - 500$ :l...
by Znevna
Fri Jan 31, 2020 11:12 am
Forum: General
Topic: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?
Replies: 9
Views: 1758

Re: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?

File a bug report if it is a technical issue.
by Znevna
Sat Jan 25, 2020 7:58 pm
Forum: General
Topic: Ping is timeout !
Replies: 8
Views: 995

Re: Ping is timeout !

Why do you have this
/ip firewall nat
add action=masquerade chain=srcnat out-interface=bridge1
On a PtP Link? and on both ends too? where did you get this from?
WHY??
by Znevna
Thu Jan 23, 2020 3:16 pm
Forum: General
Topic: ❗️❓ Fake Mikrotik devices !!? [SOLVED]
Replies: 10
Views: 2268

Re: ❗️❓ Fake Mikrotik devices !!? [SOLVED]

:lol:
Glad someone else caught that.
Anyway, that's the least of his problems.
by Znevna
Fri Jan 17, 2020 5:15 pm
Forum: General
Topic: ipsec ikev2 Split Include do not send to windows 10
Replies: 8
Views: 1571

Re: ipsec ikev2 Split Include do not send to windows 10

I've tried, but I don't know how to disable FP for PPPoE. I've set allow-fast-path=no in IP settings and in bridge settings (though it is not part of a bridge but I've disabled everythig that had fast path in it). I've disabled the fasttracking FW rule. Rebooted. And I still see traffic in "FP Rx Ra...
by Znevna
Thu Jan 16, 2020 5:01 pm
Forum: General
Topic: ipsec ikev2 Split Include do not send to windows 10
Replies: 8
Views: 1571

Re: ipsec ikev2 Split Include do not send to windows 10

If your WAN Type is PPPoE on MikroTik this would not work, issue also described here: https://forum.mikrotik.com/viewtopic.php?f=2&t=154743&p=764979#p764979 And I also have (still) an open ticket regarding this, SUP-3815, support acknowledged an issue that fits my description. I was hoping the fix w...
by Znevna
Wed Jan 15, 2020 10:56 am
Forum: General
Topic: IKE2 identity not found (IOS to Mikrotik) [SOLVED]
Replies: 22
Views: 6626

Re: IKE2 identity not found (IOS to Mikrotik) [SOLVED]

I wrote the exact same thing a few posts above. Glad you got it working.
by Znevna
Fri Jan 10, 2020 11:37 pm
Forum: General
Topic: IKE2 identity not found (IOS to Mikrotik) [SOLVED]
Replies: 22
Views: 6626

Re: IKE2 identity not found (IOS to Mikrotik) [SOLVED]

I tested this last month and it worked with My ID and Remote ID set to "auto".
iOS 13.2.something.
User Authentication was set to "None" and "Local ID" was left empty in iOS.
Can't give more details as I don't have any iOS devices around right now.
by Znevna
Thu Jan 09, 2020 9:51 am
Forum: General
Topic: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?
Replies: 9
Views: 1758

Re: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?

How often do you change your wan interface name that this is such a big issue for you?
by Znevna
Wed Jan 08, 2020 3:02 am
Forum: Scripting
Topic: tx rx fp rx dropped pppoe account
Replies: 29
Views: 5512

Re: tx rx fp rx dropped pppoe account

Weird. I have not seen something like this with PPPoE and we mostly have PPPoE around here, almost all ISPs offer PPPoE connections. A config export wouldn't hurt, before digging more. As for the FP counter you'd have to be sure your fastracking rules are properly set and you don't have your traffic...
by Znevna
Tue Jan 07, 2020 11:57 pm
Forum: Scripting
Topic: tx rx fp rx dropped pppoe account
Replies: 29
Views: 5512

Re: tx rx fp rx dropped pppoe account

Tried to understand something out of this "issues" but I just don't get it. What is the initial issue? The FP Tx = 0 ? That's normal. While connected to a router which is mostly idle, from outside.: /interface monitor-traffic ppp-wan once name: ppp-wan rx-packets-per-second: 8 rx-bits-per-second: 5....
by Znevna
Mon Dec 30, 2019 12:38 pm
Forum: General
Topic: IP Cloud can it only update IPV6?
Replies: 1
Views: 408

Re: IP Cloud can it only update IPV6?

That shouldn't happen unless you've checked "use local address" From the wiki: https://wiki.mikrotik.com/wiki/Manual:IP/Cloud#Advanced use-local-address (yes | no; Default: no) By default, the DNS name will be assigned to the detected public address (from the UDP packet header). If you wish to send ...
by Znevna
Mon Dec 30, 2019 12:05 pm
Forum: General
Topic: IPsec lockup, DPD not working?
Replies: 2
Views: 616

Re: IPsec lockup, DPD not working?

What client? I didn't experience such a thing with StrongSwan. Except that my battery was almost dead overnight because of the 20s keep-alives.
PS: clients log might be useful too.
LE: nevermind. routeros IS the client. skip this post. too early for me.
by Znevna
Mon Dec 30, 2019 6:32 am
Forum: General
Topic: Invalid syntax in WIN10 only IKEv2 FIXED thanks
Replies: 9
Views: 1795

Re: Invalid syntax in WIN10 only IKEv2 FIXED thanks

I wrote in the 2nd post above exactly the same thing, in english. viewtopic.php?f=2&t=154789#p765207
But you continued to blame MikroTik.
Cheers.
by Znevna
Tue Dec 17, 2019 4:44 pm
Forum: General
Topic: GREENBOW and IKEV2 MIKROTIK RSA and PSK setup WIN10
Replies: 2
Views: 646

Re: GREENBOW and IKEV2 MIKROTIK RSA and PSK setup WIN10

1. Why do you open multiple topics for the same issue?
2. Is it RSA or PSK ?!
3. Did you fix your config as I've said at the end of this post here? viewtopic.php?f=2&t=154789#p765247
by Znevna
Tue Dec 17, 2019 12:27 pm
Forum: Announcements
Topic: v6.46 [stable] is released!
Replies: 113
Views: 38016

Re: v6.46 [stable] is released!

Any chance that SUP-3815 might get fixed in 6.46.1 ? It's regarding this: viewtopic.php?f=2&t=154743&p=764979#p764979
by Znevna
Mon Dec 16, 2019 11:41 pm
Forum: General
Topic: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?
Replies: 9
Views: 1758

Re: Changing PPPoE client name disconnects PPPoE and re-connects - WHY?

That "arbitrary name" as you call it, is also used in other places in RouterOS and some stuff depend on it (firewall rules or whatever). They can't work using some "name" that doesn't exist (if you change it).
Just my two cents on this.
Why does it bother you?
by Znevna
Sun Dec 15, 2019 9:06 pm
Forum: General
Topic: Invalid syntax in WIN10 only IKEv2 FIXED thanks
Replies: 9
Views: 1795

Re: Invalid syntax in WIN10 only IKEv2

/certificate add common-name="MY.VPN Root CA" name=MyCA key-size=2048 days-valid=3650 trusted=yes key-usage=key-cert-sign,crl-sign Nothing fancy. Also, try leaving in Identities My ID and Remote ID type to "auto". !!! how can you have this in config? just seen it. *stripped add auth-method=digital-...
by Znevna
Sun Dec 15, 2019 8:52 pm
Forum: General
Topic: Invalid syntax in WIN10 only IKEv2 FIXED thanks
Replies: 9
Views: 1795

Re: Invalid syntax in WIN10 only IKEv2

I've tested with Windows 10 1809 and 1909, no issue here. Except the unrelated one I've posted in that topic. It also works with Windows 7 but it's a little tricky to import certificates in Local Machine store (there are guides on the web, or use certlm.msc from a win8+ machine). Windows 7's issue, ...
by Znevna
Sun Dec 15, 2019 3:35 pm
Forum: General
Topic: Invalid syntax in WIN10 only IKEv2 FIXED thanks
Replies: 9
Views: 1795

Re: Invalid syntax in WIN10 only IKEv2

Under Windows you have to import the certificates in "Local Machine" store location. The one generated for client under "Personal". The CA for some reason doesn't get imported, donno why yet, you have to export it as "pem" from RouterOS and import it also in Local Machine under Trusted Root CA. You ...
by Znevna
Fri Dec 13, 2019 9:59 pm
Forum: General
Topic: IKEv2 behind PPPoE, Windows clients and split tunneling / split-include issue [SOLVED]
Replies: 4
Views: 1918

Re: IKEv2, Windows Clients and Split Tunneling issue [SOLVED]

Weird. I only have ethernet from ISP's in remote locations outside the city and I can't disrupt the connections there just for tests. BUT, what if I double NAT it? Have you tried? PPPoE on one router and putting the IKEv2 server behind it on another router? that way it will be ethernet-wan? Maybe it...
by Znevna
Fri Dec 13, 2019 7:33 pm
Forum: General
Topic: IKEv2 behind PPPoE, Windows clients and split tunneling / split-include issue [SOLVED]
Replies: 4
Views: 1918

Re: IKEv2, Windows Clients and Split Tunneling issue [SOLVED]

Why? I didn't see anywhere any limitation about the WAN type of the IKEv2 server regarding this. It is connected via PPPoE to the ISP, yes. The connection works, just, something about this isn't: *) ike2 - send split networks over DHCP (option 249) to Windows initiators if DHCP Inform is received; O...
by Znevna
Fri Dec 13, 2019 4:54 pm
Forum: General
Topic: DNS Cache
Replies: 21
Views: 3620

Re: DNS Cache

He is using it, for clients behind the network /ip dhcp-server network add address=192.168.1.0/24 dns-server=192.168.1.1 gateway=192.168.1.1 But his firewall is a mess. These lines in particular: /ip firewall filter add action=drop chain=forward dst-address=192.168.1.0/24 dst-port=53 in-interface-li...
by Znevna
Fri Dec 13, 2019 3:05 pm
Forum: General
Topic: IKEv2 behind PPPoE, Windows clients and split tunneling / split-include issue [SOLVED]
Replies: 4
Views: 1918

IKEv2 behind PPPoE, Windows clients and split tunneling / split-include issue [SOLVED]

FIXED IN 6.47beta32 *) ike2 - fixed DHCP Inform package handling when received on PPPoE interface; Original text below: Hello, I need some fresh eyes on this, I just can't get it to work and no ideea what to try next. Long story short, I'm trying to switch from OpenWRT & OpenVPN that's been holding ...
by Znevna
Tue Dec 10, 2019 9:36 am
Forum: General
Topic: Site to Site VPN (13 Sites & 2 remote Laptops)
Replies: 18
Views: 2610

Re: Site to Site VPN (13 Sites & 2 remote Laptops)

Sorry to bump this thread, but, is split-tunneling in Windows 10 and RouterOS v6.46 stable working for anyone? (IKEv2) I've caught this bug report: https://forum.mikrotik.com/viewtopic.php?t=124945#p695000 Which was fixed: *) ike2 - send split networks over DHCP (option 249) to Windows initiators if...
by Znevna
Mon Dec 09, 2019 6:55 pm
Forum: RouterOS v7 BETA
Topic: [ROS 7.0beta4] PPP[PPPoE/PPTP/L2TP/SSTP] interface no rx traffic, and mss need change by mangle.
Replies: 1
Views: 2018

Re: [ROS 7.0beta4] PPP[PPPoE/PPTP/L2TP/SSTP] interface no rx traffic, and mss need change by mangle.

I've reported the MSS issue one month ago and they were able to reproduce it.
Let's hope the fix will make it in beta5 atleast.
by Znevna
Wed Dec 04, 2019 1:22 pm
Forum: General
Topic: Webfig with HTTPS and a certificate, please.
Replies: 1
Views: 1082

Re: Webfig with HTTPS and a certificate, please.

Just tested this with success and without the "pain in the ass". I've used the same certificate I've generated for IKEv2 server-side. Cert was generated using this: /certificate add common-name=domain.name subject-alt-name=DNS:domain.name key-size=2048 days-valid=3650 key-usage=tls-server name=vpn.s...
by Znevna
Tue Dec 03, 2019 7:15 pm
Forum: Announcements
Topic: v6.46 [stable] is released!
Replies: 113
Views: 38016

Re: v6.46 [stable] is released!

*) winbox - added "public-address-ipv6" parameter to "IP/Cloud" menu;
This .. doesn't appear in WinBox nor in WebFig. Only present in terminal.
by Znevna
Tue Dec 03, 2019 3:08 pm
Forum: Announcements
Topic: v6.46 [stable] is released!
Replies: 113
Views: 38016

Re: v6.46 [stable] is released!

I'm guessing that
*) ike1 - fixed minor spelling mistake in logs;
isn't regarding this: viewtopic.php?f=21&t=154286#p763108 since it's the same in this release.
My logs are from ike2 anyway.
by Znevna
Mon Dec 02, 2019 9:38 am
Forum: Wireless Networking
Topic: RBwAP2nD Antenna diagram
Replies: 3
Views: 1534

Re: RBwAP2nD Antenna diagram

by Znevna
Sun Dec 01, 2019 7:34 pm
Forum: Announcements
Topic: v6.46rc [testing] is released!
Replies: 16
Views: 10156

Re: v6.46rc [testing] is released!

Little typo in ipsec logging:
18:10:25 ipsec prepearing internal IPv4 address 
18:10:25 ipsec prepearing internal IPv4 netmask 
18:10:25 ipsec prepearing internal IPv6 subnet 
18:10:25 ipsec prepearing internal IPv4 DNS
by Znevna
Fri Nov 29, 2019 11:17 am
Forum: General
Topic: Problem with expiring IPv6 addresses
Replies: 2
Views: 675

Re: Problem with expiring IPv6 addresses

I'd advise to not use something that short. RFC 7772 (Reducing Energy Consumption of Router Advertisements) advises to not send more than 7 RAs per hour. Something else might be broken in your config. These are my settings that work just fine. /ipv6 nd set [ find default=yes ] ra-interval=8m34s-11m2...
by Znevna
Mon Nov 25, 2019 4:29 pm
Forum: Announcements
Topic: v6.46beta [testing] is released!
Replies: 150
Views: 76076

Re: v6.46beta [testing] is released!

Signal Strength Range -1..120 It's joke ? Access Lists unusable now.
Bug still present: I've written here also: viewtopic.php?f=2&t=154126
Post could be moved or deleted, I didn't know it was beta related at the time. Done the tests today :)
by Znevna
Thu Nov 21, 2019 9:20 pm
Forum: General
Topic: [bug] WinBox/WebFig Wireless ACL - Signal Strength Range - input validation [SOLVED]
Replies: 1
Views: 691

[bug] WinBox/WebFig Wireless ACL - Signal Strength Range - input validation [SOLVED]

Hello. Bug present on 6.46beta59, might be present on stable, can't test right now, but maybe someone else can. Later edit: bug was introduced in 6.46beta28, 6.46beta16 is fine, stable is fine. There's some error with the default value for Signal Strength Range, and the validation for the values ent...
by Znevna
Wed Nov 20, 2019 12:56 pm
Forum: General
Topic: erm what is FW 6.55.6 , no mention of it here yet routers say it is current stable?
Replies: 20
Views: 2521

Re: erm what is FW 6.55.6 , no mention of it here yet routers say it is current stable?

*ahem* my bad. It looks like it's exactly what Sob mentioned earlier. There isn't such version, at least not yet, maybe in future. But perhaps it could be this in real life action: https://medium.com/tenable-techblog/routeros-chain-to-root-f4e0b07c0b21 Long story short, you have winbox open to the w...
by Znevna
Wed Nov 20, 2019 10:45 am
Forum: General
Topic: erm what is FW 6.55.6 , no mention of it here yet routers say it is current stable?
Replies: 20
Views: 2521

Re: erm what is FW 6.55.6 , no mention of it here yet routers say it is current stable?

You or your ISP is hijacking the DNS for the download server. MikroTik's servers are in Latvia. Check what DNS server your router is using and check the static DNS entries on it, if you have nothing in static DNS regarding upgrade.mikrotik.com or download.mikrotik.com and you're using the ISP's DNS ...
by Znevna
Fri Nov 15, 2019 1:56 pm
Forum: Wireless Networking
Topic: hAP ac^2 Problems---Extremely Poor Performance found in 2.4G and 5G WiFi
Replies: 296
Views: 85743

Re: hAP ac^2 Problems---Extremely Poor Performance found in 2.4G and 5G WiFi

Thanks for the "AMSDU Limit to 2048" tip. It makes my Huawei Mate 20 Lite like the router a little bit more (atleast I get ~20mbps and even more somewhat stable download on 5GHz, instead of, well, less.)
by Znevna
Sat Nov 09, 2019 1:10 pm
Forum: General
Topic: IPv6 firewall rules with dynamic IPv6 prefix
Replies: 6
Views: 2854

Re: IPv6 firewall rules with dynamic IPv6 prefix

Hello, I've been trying to find a solution for this and came across this topic. Just thinking, wouldn't it be easier for the script (and maybe on the resources?) to make use firewall address lists? And use those address lists in the rules? Instead for the script to search through firewall rules it w...
by Znevna
Thu Nov 07, 2019 5:59 pm
Forum: General
Topic: DHCPv6 - Option 24 - Domain Search List
Replies: 3
Views: 1031

Re: DHCPv6 - Option 24 - Domain Search List

To my surprise, regarding option code 23, which was also bugging me, i've discovered that it automagically does this (in 6.46beta59):
by Znevna
Thu Nov 07, 2019 3:50 pm
Forum: General
Topic: DHCPv6 - Option 24 - Domain Search List
Replies: 3
Views: 1031

DHCPv6 - Option 24 - Domain Search List

Hello, spent the whole morning dealing with this and I think this should be documented somewhere. If this isn't the right place for this please move it somewhere else. So, basically I wanted to push the local dns suffix to clients via IPv6 too, not just only via IPv4 which is quite easy from the DHC...
by Znevna
Wed Nov 06, 2019 8:17 pm
Forum: General
Topic: MikroTik hAP ac2 - PoE in problem
Replies: 16
Views: 2909

Re: MikroTik hAP ac2 - PoE in problem

What are you smoking mate?
Even if as a switch why would you want to cripple it? Or as an AP?
As a router you can configure wan to ethernet5 and use ethernet1 as lan (to maintain the wan port to one end, others recommend wan to port 2 but that's just nasty.)
by Znevna
Wed Nov 06, 2019 6:31 pm
Forum: General
Topic: MikroTik hAP ac2 - PoE in problem
Replies: 16
Views: 2909

Re: MikroTik hAP ac2 - PoE in problem

There is: https://mikrotik.com/product/rbgpoe_con_hp
I don't see your device in the compatibility list though, https://wiki.mikrotik.com/index.php?tit ... lity_table
Should work..
by Znevna
Wed Nov 06, 2019 10:58 am
Forum: General
Topic: MikroTik hAP ac2 - PoE in problem
Replies: 16
Views: 2909

Re: MikroTik hAP ac2 - PoE in problem

It's not a problem.
hAP ac2 doesn't support 802.3af/at, check the product page.
PoE in: Passive PoE
PoE in input Voltage: 18-28 V
by Znevna
Tue Nov 05, 2019 4:58 pm
Forum: General
Topic: Feature request: exporting configuration sould be password protected
Replies: 6
Views: 1170

Re: Feature request: exporting configuration sould be password protected

You want the file to be password protected? :-?
Why don't you just add it to a password protected archive before sending it by e-mail? 7zip or zip or whatever.
by Znevna
Mon Nov 04, 2019 10:50 pm
Forum: General
Topic: Your router was open to attack...
Replies: 11
Views: 1922

Re: Your router was open to attack...

We don't know that's all he's got in the firewall (didn't reply yet), if he does, oh my :shock: , yes, he should redo his setup following defaults atleast. AFTER reinstall
by Znevna
Mon Nov 04, 2019 10:47 pm
Forum: General
Topic: RouterBOARD 962UiGS-5HacT2HnT + GPS
Replies: 5
Views: 928

Re: RouterBOARD 962UiGS-5HacT2HnT + GPS

Dumb question, but did the old router had WiFi? If it didn't, did you try turning off both wlans on your hap ac to see if it helps? Something might interfere with the GPS signal. LE: even the CPU's harmonic is pretty close. 720x2=1440 which is pretty close to 1575.42MHz. try lowering the CPU frequen...
by Znevna
Mon Nov 04, 2019 10:29 pm
Forum: General
Topic: Your router was open to attack...
Replies: 11
Views: 1922

Re: Your router was open to attack...

Well, you could've had that there since a long time and you didn't even know about it, but recently you might have updated WinBox to 3.20, which in the changelog, reads: *) show system note at login; So.... You should start with a fresh install using netinstall just to be sure, as @mkx suggested. /e...
by Znevna
Mon Nov 04, 2019 8:36 pm
Forum: General
Topic: Can't route between local Subnets. (One router). [SOLVED]
Replies: 16
Views: 2173

Re: Can't route between local Subnets. (One router). [SOLVED]

Elegant or not it's the easiest solution. The DNS based one isn't that far off. While there is a script here: https://github.com/Tolaris/mikrotik-dns-dhcp/blob/master/mikrotik-dns-dhcp.script (among others i've tested, this is the finest of them all) to aid in completing mikrotiks dns implementation...
by Znevna
Mon Nov 04, 2019 7:48 pm
Forum: General
Topic: Can't route between local Subnets. (One router). [SOLVED]
Replies: 16
Views: 2173

Re: Can't route between local Subnets. (One router). [SOLVED]

Sheesh. It's not a routing problem. It's not a DNS problem, workgroups work a little different, read: wins server. Assign static IP's to your machines so they don't change overnight. Access them by \\192.168.x.xx. Setup shares properly, use network drives (map network drives where you need to) \\192...
by Znevna
Sun Nov 03, 2019 5:45 pm
Forum: General
Topic: PPPoE client default MTU
Replies: 25
Views: 14209

Re: PPPoE client default MTU

You didn't post your config yet to see what you've set there, as you have some serious issues understanding this whole MTU thingie (what I get from your posts atleast).
Also, don't open another topic if you already asked in another. Makes tracking your issue kinda hard.
by Znevna
Sat Nov 02, 2019 2:13 pm
Forum: General
Topic: IPv6 PPPoE+DHCPv6 Client Pool Rebind BUG
Replies: 11
Views: 4241

Re: IPv6 PPPoE+DHCPv6 Client Pool Rebind BUG

Well, two years since this topic was started, but it looks fixed in 6.46beta59: *) dhcpv6-client - properly update bind time when unused prefix received from the server; *) dhcpv6-client - properly update IPv6 address on rebind; *) dhcvp6-client - fixed timeout when doing rebind; I've tested without...
by Znevna
Sat Nov 02, 2019 1:55 pm
Forum: General
Topic: HAP AC2 IPv6 performance
Replies: 6
Views: 1938

Re: HAP AC2 IPv6 performance

I've done tests with multiple sessions.. same core (3) busy doing all the work: network, firewall. I'll redo this weekend some tests and compare it to how a 750Gr3 deals with this. Weird thing is that with lower load (speed/connections), all the cores seem to do a little bit of something. Only when ...
by Znevna
Sat Nov 02, 2019 1:33 pm
Forum: General
Topic: HAP AC2 IPv6 performance
Replies: 6
Views: 1938

Re: HAP AC2 IPv6 performance

That still doesn't explain why only one core is saturated and the rest sit idle (I have the same device, encountered the same with IPv6), there may be room for optimization maybe.
by Znevna
Thu Oct 31, 2019 3:08 pm
Forum: RouterOS v7 BETA
Topic: RouterOS v7 Beta 3 - PPPOE WAN Intermittently Not Passing Traffic [SOLVED]
Replies: 3
Views: 4049

Re: RouterOS v7 Beta 3 - PPPOE WAN Intermittently Not Passing Traffic [SOLVED]

Welcome, I'm staying away of v7 for the moment because of this, I don't know what else might not work as expected. After 6.39 the "change-tcp-mss=yes" from the profile assigned to that ppp interface was supposed to take care internally of this but somehow it doesn't work right atm. 6.39: !) ppp - im...
by Znevna
Thu Oct 31, 2019 9:12 am
Forum: RouterOS v7 BETA
Topic: RouterOS v7 Beta 3 - PPPOE WAN Intermittently Not Passing Traffic [SOLVED]
Replies: 3
Views: 4049

Re: RouterOS v7 Beta 3 - PPPOE WAN Intermittently Not Passing Traffic [SOLVED]

Encountered something similar, I've sent an email describing what I could, I'm no network guru. Easy test is to try to open this forum and u'll see it gets stuck at the SSL part (other sites behave the same), I don't know how to debug this so I've sent two packet captures, but no reply yet. But, if ...
by Znevna
Wed Oct 30, 2019 5:21 pm
Forum: General
Topic: Hap ac2 DHCP Client not working on 2G WLAN station
Replies: 6
Views: 1385

Re: Hap ac2 DHCP Client not working on 2G WLAN station

In the test above I was connected to an Asus AC58U.
I'll cleanup my config and post it here so that you can compare it with yours.
LE: added config
by Znevna
Wed Oct 30, 2019 11:32 am
Forum: General
Topic: Problem with DHCP server [SOLVED]
Replies: 12
Views: 2099

Re: Problem with DHCP server [SOLVED]

[...] For now i have set on Mikrotik -->Store Leases on Disk never| hoping that will try to assign unused addresses after reboot. So far it is good No.. that won't do it. I also set "never" to store leases on disk, to minimize flash wear and because except the IPs I've set static, I don't care if t...
by Znevna
Tue Oct 29, 2019 12:37 pm
Forum: General
Topic: Problem with DHCP server [SOLVED]
Replies: 12
Views: 2099

Re: Problem with DHCP server [SOLVED]

Well, there is no option that I know of in RouterOS to assign consecutive IP addresses. For example, in dnsmasq we have this: --dhcp-sequential-ip Dnsmasq is designed to choose IP addresses for DHCP clients using a hash of the client's MAC address. This normally allows a client's address to remain s...
by Znevna
Mon Oct 28, 2019 9:36 pm
Forum: General
Topic: Hap ac2 DHCP Client not working on 2G WLAN station
Replies: 6
Views: 1385

Re: Hap ac2 DHCP Client not working on 2G WLAN station

Works fine here. Same device. ROS 6.45.7 21:30:37 wireless,info 4C:ED:FB:B2:C0:D0@wlan1 established connection on 2437000, SSID ViperNet 21:30:37 dhcp,debug,state dhcp-client on wlan1 entering <selecting...> state 21:30:38 dhcp,debug,state dhcp-client on wlan1 entering <requesting...> state 21:30:38...
by Znevna
Mon Oct 28, 2019 4:05 pm
Forum: General
Topic: Quick Set: Home AP Dual - IP assignment
Replies: 8
Views: 1737

Re: Quick Set: Home AP Dual - IP assignment

Oh boy, with guys like you little bugs like this one will never get sorted out and even be afraid to say something about other little bugs that if fixed will make it more user friendly. But what do I know :)
Sorry to bother you with little things like this one.
Friendly support forum... :)
by Znevna
Mon Oct 28, 2019 3:31 pm
Forum: General
Topic: Quick Set: Home AP Dual - IP assignment
Replies: 8
Views: 1737

Re: Quick Set: Home AP Dual - IP assignment

I didn't even wanna bother answering to your replies just because I consider them offtopic. Why not use quickset? It is there just for that, quickly setup a router with the minimal required settings. (mikrotiks solution to the next next next kind of routers.) And Home Ap Dual on this device (or othe...
by Znevna
Mon Oct 28, 2019 12:22 pm
Forum: General
Topic: Quick Set: Home AP Dual - IP assignment
Replies: 8
Views: 1737

Quick Set: Home AP Dual - IP assignment

Hello, this thing bugs me for a while. Device: hAP ac2 The default config has the local IP address assigned to bridge, but, if let's say I want to use the Home AP Dual from Quick Set, it changes the IP assignment from bridge to ethernet2. If you change the IP assignment back to bridge, it quacks up ...
by Znevna
Thu Oct 24, 2019 1:06 pm
Forum: RouterOS v7 BETA
Topic: 7.0beta3 available in testing?
Replies: 40
Views: 10701

Re: 7.0beta3 available in testing?

hAP ac2, manual upgrade from 6.46beta55 spits the same thing in the logs, but it does upgrade. # oct/24/2019 9:33: 8 by RouterOS 7.0beta3 # software id = [...] # jan/01/2002 03:00:00 system,error broken package routeros-arm-7.0beta3.npk jan/01/2002 03:00:00 system,info installed system-7.0beta3 jan/...
by Znevna
Wed Oct 23, 2019 6:32 pm
Forum: RouterOS v7 BETA
Topic: Torrent client
Replies: 56
Views: 16772

Re: Torrent client

Question is, was it worth having it there taking up ~500KB of our precios space in devices with 16MB of storage?:)
by Znevna
Wed Oct 23, 2019 12:09 pm
Forum: General
Topic: What is the use case for displaying local drives in netinstall?
Replies: 7
Views: 1230

Re: What is the use case for displaying local drives in netinstall?

The answer to your question is found even by clicking "Help" in the netinstall main window. In the first lines too. "This program allows remote installation of the MikroTik RouterOS over Ethernet or to any local disk from a Windows computer. Installation methods: - over the network using floppy boot...
by Znevna
Mon Oct 21, 2019 11:18 am
Forum: General
Topic: [Feature Request] IPv6 Fasttrack
Replies: 33
Views: 9202

Re: [Feature Request] IPv6 Fasttrack

Would be nice if it atleast scaled right on cpus somehow. With a simple test using fast.com with more than 2 parallel connections, on a hAP ac2, cpu3 goes up to 100% and the rest of them sit idle, tested with with ROS 7 Beta 2, same thing. Bandwidth capped because of this under 400mbps out of ~900. ...