Community discussions

MUM Europe 2020

Search found 57 matches

by stuntshell
Tue May 17, 2011 4:11 pm
Forum: General
Topic: Central syslog facility: works with v2, v3 and v4 but NOT v5
Replies: 2
Views: 940

Re: Central syslog facility: works with v2, v3 and v4 but NO

fewi,
Thanks a lot.
Setting the src-addr was the solution.
Best,
by stuntshell
Tue May 17, 2011 4:26 am
Forum: General
Topic: Central syslog facility: works with v2, v3 and v4 but NOT v5
Replies: 2
Views: 940

Central syslog facility: works with v2, v3 and v4 but NOT v5

Hi folks, We use a central logging facility and today we upgraded one of the routers x86 to version 5.2. Since the upgrade the syslog function does not work. We tried two other applications to see if the problem was related to our facility, and all have the same symptons. Is syslog broken with v5? T...
by stuntshell
Sat Mar 01, 2008 4:06 am
Forum: General
Topic: web proxy language
Replies: 3
Views: 680

Re: web proxy language

No,
And Version 3 is so poor you better off building yourself a squid box to do the job :(
by stuntshell
Thu Sep 20, 2007 7:07 pm
Forum: General
Topic: MT + External Proxy
Replies: 4
Views: 938

Re: MT + External Proxy

The user web access (dst port 80) won't be redirect the proxy server will be have the traffic redirect to the gateway. Are you load balancing? If yes is this by policy-routing or by dst or src mark?
by stuntshell
Fri Sep 14, 2007 11:52 pm
Forum: General
Topic: MT + External Proxy
Replies: 4
Views: 938

Re: MT + External Proxy

Problem 1: Unless the user specifies to use the proxy at the server within their browser, then they'll be able to surf. The redirect rule of course needs to !NOT include the proxy server itself.

Problem 2: Because all traffic comes from the proxy server, not the client anymore.
by stuntshell
Wed Sep 12, 2007 7:31 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local [RESOLVED]

Hi,
In IP > Route > Rules
You can set rules of how your routing checks, in my case I'm marking each network by it's source IP, so in my rules I have a set for each network lookup, each for each marking.
by stuntshell
Mon Sep 10, 2007 9:21 pm
Forum: General
Topic: SysLog not working?!
Replies: 16
Views: 3050

Re: SysLog not working?!

Sorry, I don't know what else could it be. :(
by stuntshell
Mon Sep 10, 2007 9:19 pm
Forum: The User Manager
Topic: Control which radio customer can sign-on
Replies: 4
Views: 1322

Re: Control which radio customer can sign-on

What I was refering to, was balancing by the angle of the connection.

Craig
Sorry, can you be more specific?

Thanks,
by stuntshell
Sun Sep 09, 2007 10:56 pm
Forum: General
Topic: SysLog not working?!
Replies: 16
Views: 3050

Re: SysLog not working?!

And the rules are pointing to the Remote? [stunt@Main] > system logging pr Flags: X - disabled, I - invalid # TOPICS ACTION PREFIX 0 info memory 1 error remote 2 warning remote 3 critical remote 4 firewall remote
by stuntshell
Sun Sep 09, 2007 6:48 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local [RESOLVED]

Thanks all that repplied!

I managed to fix the problem by creating a rule in IP>Route>Rules to lookup the table of each network segment.
I knew it was something simple, but I was blind by looking at the wrong section.

Regards,
by stuntshell
Sun Sep 09, 2007 6:00 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local

Router should see the address in the default route and forward the traffic accordingly. And it's doing it, the packets are being marked and being sent to the propper gateway. If the address is beyond any routing marking then you have to create rules to forward the traffic beyond that marking. The a...
by stuntshell
Sun Sep 09, 2007 5:34 pm
Forum: The User Manager
Topic: Why user-manager ???
Replies: 2
Views: 1251

Re: Why user-manager ???

It will only provide this information for PPPoE users or Hotspot users.
by stuntshell
Sun Sep 09, 2007 5:26 pm
Forum: General
Topic: MSN LIVE MESSENGER BLOCK
Replies: 5
Views: 1632

Re: MSN LIVE MESSENGER BLOCK

Are you using webproxy?
If yes you can block by url:
webmessenger.msn.com
loginnet.passport.com

MSN uses port 1863, you can setup a rule to block dst and src 1863
by stuntshell
Sun Sep 09, 2007 5:18 pm
Forum: General
Topic: One Way Satellite
Replies: 20
Views: 2109

Re: One Way Satellite

You can't have one interface downloading only and the other uploading only. Your customers would have problems with MSN and https to name a few. This is because the packets originating from one ISP would have to return to that same ISP and not the second.
by stuntshell
Sun Sep 09, 2007 5:04 pm
Forum: General
Topic: SysLog not working?!
Replies: 16
Views: 3050

Re: SysLog not working?!

...and you have configured your logs to be sent to the remote system?

System > Logs > Rules (Action: Remote)
by stuntshell
Sun Sep 09, 2007 4:57 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local

10.1.1.1 10.1.2.1 | | ------------- | 192.168.100.254 | | 192.168.100.0 192.168.200.0 GroupA GroupB They can see the router and the router sees them, but if I'm on groupA I cannot reach groupB. Thanks,
by stuntshell
Sun Sep 09, 2007 4:35 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local

The workability of this setup is not what this post is about.

How can I route the packets that are being marked !NOT to use the provider's gateway?
Thanks,
by stuntshell
Sun Sep 09, 2007 4:02 pm
Forum: General
Topic: Squid reporting
Replies: 4
Views: 1075

Re: Squid reporting

Mikrotik sends out the logs in syslog format, SARG needs to read in squid log format, hence the ugly and unreliable result.
It would be wonderful if Mikrotik folks could change that!
by stuntshell
Sun Sep 09, 2007 3:45 pm
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Re: Packets being routed out instead of local

You sure need glasses: http://wiki.mikrotik.com/wiki/Load_Bala ... e_Gateways
I need group A to be able to communicate with group B (ping, RDP, etc.)
by stuntshell
Sun Sep 09, 2007 5:38 am
Forum: General
Topic: Packets being routed out instead of local [RESOLVED]
Replies: 12
Views: 1266

Packets being routed out instead of local [RESOLVED]

By following this example http://wiki.mikrotik.com/wiki/Load_Bala ... e_Gateways I have two distinctives LANs.
Now I want them to communicate amongst them, but they're going out to my provider's gateway.
How can I force local traffic to stay local?

Thanks,
by stuntshell
Sat Sep 08, 2007 4:29 am
Forum: The User Manager
Topic: Control which radio customer can sign-on
Replies: 4
Views: 1322

Re: Control which radio customer can sign-on

Hi and thanks for the reply, but I need to balance the load among the sectors, all clients are within one or two miles from them, the farther away clients are not the problem.
by stuntshell
Fri Sep 07, 2007 11:32 pm
Forum: The User Manager
Topic: Control which radio customer can sign-on
Replies: 4
Views: 1322

Control which radio customer can sign-on

This is my current problem: I have a RB532A with a daughtercard each plugged to 4 different sectors. Each card has it's own SSID and I'm using the Usermanager to control the access to my network. My main router (an X86 PC) is where the usermanager is running, so the RB532A consults it to allow or no...
by stuntshell
Fri Sep 07, 2007 11:24 pm
Forum: The User Manager
Topic: browsing history
Replies: 9
Views: 11399

Re: browsing history

Can SARGs read these logs?
by stuntshell
Mon Jul 30, 2007 4:02 pm
Forum: Wireless Networking
Topic: WDS problem - annoying disconnecting
Replies: 7
Views: 1524

Re: WDS problem - annoying disconnecting

I'm saying that after I upgraded to 2.9.44 my problems went away. Before I was having many disconnects a day, with logs such as: <mac>@wlan1 disconnected, no beacons data from unknown device <mac>, sent deauth data from unknown device <mac>, sent deauth data from unknown device <mac>, sent deauth .....
by stuntshell
Fri Jul 27, 2007 2:59 pm
Forum: Wireless Networking
Topic: WDS problem - annoying disconnecting
Replies: 7
Views: 1524

Re: WDS problem - annoying disconnecting

Hi there. Would u post your logs please? (I had these problems in past, solved now). Thanks. Hi Ivaring, I managed to fix it and I'm not sure what did it. Maybe 2.9.44??? I'm running RSTP, before I was having 5 to 6 disconnects a day and now maybe 2 a week :) The logs are exactly as the poster says...
by stuntshell
Fri Jul 20, 2007 12:16 am
Forum: General
Topic: How can I block users with Vista to use it's IPv6 Protocol
Replies: 6
Views: 1013

Re: How can I block users with Vista to use it's IPv6 Protocol

That's exactly right, this is not a constant phenomenon, but since I started watching it happening (2 to 4 times a day), the symptom is a high bandwidth usage at a moment where the network freezes entirelly. It's almost like if someone is sending a huge amount of data at once. Like I said the only d...
by stuntshell
Thu Jul 19, 2007 8:48 pm
Forum: General
Topic: How can I block users with Vista to use it's IPv6 Protocol
Replies: 6
Views: 1013

Re: How can I block users with Vista to use it's IPv6 Protocol

Are you using Vista or are you managing a Wireless Network with many Vista Clients?
by stuntshell
Thu Jul 19, 2007 6:14 pm
Forum: General
Topic: How can I block users with Vista to use it's IPv6 Protocol
Replies: 6
Views: 1013

How can I block users with Vista to use it's IPv6 Protocol

I'm having problems on a few of my networks where the majority of users have migrated to Vista. The traffic sometimes doubles and Mikrotik is unable to identify it, if I set a Queue Per Interface the network simpply freezes.
by stuntshell
Wed Jul 11, 2007 5:07 am
Forum: Wireless Networking
Topic: WDS problem - annoying disconnecting
Replies: 7
Views: 1524

Re: WDS problem - annoying disconnecting

How are you dealing with this? Have you returned to a previous version of Mikrotik? This is killing my entire Network :(
by stuntshell
Sat Jun 16, 2007 11:59 pm
Forum: Wireless Networking
Topic: 3 wireless interfaces - single ssid
Replies: 6
Views: 1825

Re: 3 wireless interfaces - single ssid

How did you make up?
Also, how are you controlling which client can connect to what card?
My experience doing access-list is that the client disconnects while trying to connect to the wrong card.
by stuntshell
Wed May 23, 2007 7:36 pm
Forum: RouterBOARD hardware
Topic: netinstall - FATAL ERROR: bad network connection
Replies: 6
Views: 3242

I'm having the same issue :(
I only have one interface in this machine.
by stuntshell
Fri Dec 15, 2006 5:31 pm
Forum: Scripting
Topic: ROSInfo - router monitoring
Replies: 57
Views: 27897

Thanks Phill,
Yes everything gets processed as you mentioned.
I believe my problem is in the lock file:
-rwxrwxrwx  1 www www 0 Dec 15 13:07 rosinfo-traffic-172.16.0.226.lock
It tells me 'zero' size.
by stuntshell
Fri Dec 15, 2006 2:21 am
Forum: Scripting
Topic: ROSInfo - router monitoring
Replies: 57
Views: 27897

I have everything working, nice graphs and all, I'm running Centos4 and testing with a RB112 as ap-bridge.
When I try to load the traffic I get:
Unable to fetch data. RouterOS is either not available, or not configured correctly.
:cry:
by stuntshell
Wed Nov 01, 2006 12:03 am
Forum: Wireless Networking
Topic: Mikrotik with SR9 not working
Replies: 5
Views: 1428

I was having the same problems, changed antennas :-D
by stuntshell
Mon Oct 23, 2006 8:52 pm
Forum: General
Topic: IPSec routing issue, please help
Replies: 5
Views: 2282

Yes I do have NAT and I do have a src-nat rule pointing to my external IP address.
What I'm trying to accomplish is have one side of the network with 2 src-nat and only one of the networks can actually 'talk' to the 'other' side. In this case the 172.16.0.X network
by stuntshell
Sun Oct 22, 2006 5:32 pm
Forum: General
Topic: IPSec routing issue, please help
Replies: 5
Views: 2282

How did this ended up?
I'm having the exact same problem, should a traceroute show the path to the net or the tunnel IP?

Thanks,
by stuntshell
Wed Jul 26, 2006 10:40 pm
Forum: General
Topic: logging all access by IP
Replies: 0
Views: 521

logging all access by IP

I set up a squid box with sarg to run along my MT router. This box is listening on port 3128, I made 2 rules so I can redirect all the traffic to this box: chain=dstnat src-address=172.16.0.1 protocol=tcp dst-port=80 action=accept chain=dstnat in-interface=bridge src-address=!172.16.0.1 protocol=tcp...
by stuntshell
Thu Jan 26, 2006 9:55 pm
Forum: General
Topic: MSN Messenger disconnecting
Replies: 24
Views: 3746

If you're implemented QoS then create a rule for MSN (port 1863) giving it better priority and see if it fixes. I seriously believe this is related to something else, start sniffing these packets and see what you can come up with. Universal Plug and Play, as others have suggested, would do you good ...
by stuntshell
Thu Jan 26, 2006 7:22 pm
Forum: General
Topic: MSN Messenger disconnecting
Replies: 24
Views: 3746

That's exactly the problem, bittorrent eating up the bandwidth, but not the propper resolution. One should implement p2p queues to control how much bandwidth should be allocated to P2P, no matter what port they use, MT is smart enough to track and shape them. A good policy is to control P2P by days ...
by stuntshell
Thu Jan 26, 2006 3:34 am
Forum: General
Topic: Bandwidth control + Qos
Replies: 4
Views: 1716

You would need to mark each protocol by it's port number(s), and create a flow rule for the rest, adding a queue tree for each protocol with a lower priority. Then create simple queues for your clients, you can have a single simple queue for all your clients (one for each speed adding target address...
by stuntshell
Thu Jan 26, 2006 2:51 am
Forum: General
Topic: Multi WAN port on a Mikrotik?
Replies: 3
Views: 1258

yes
by stuntshell
Wed Jan 25, 2006 3:00 pm
Forum: Wireless Networking
Topic: Serving up a la Nstreme
Replies: 2
Views: 1203

Serving up a la Nstreme

I'm designing a new project where I have the requirement of getting as much throughput as possible from one center location. These points to be connected are not far away, less than a mile, and in different directions. I plan to use omni antennas in this center location. Will this work for me? Are t...
by stuntshell
Tue Jan 10, 2006 3:39 am
Forum: General
Topic: Please Help me !
Replies: 5
Views: 1348

Why does the cable company care that you change your mac address?
That's how they control who can access, by provisioning the PC MAC.
We call this process "Clone a MAC" and that's not available in MT.
by stuntshell
Tue Jan 10, 2006 3:35 am
Forum: General
Topic: MSN Messenger disconnecting
Replies: 24
Views: 3746

Is this in the same tower where you're having P2P issues?

I had problems with MSN disconnecting that were related to bittorrent clients eating up all bandwidth, and therefore the disconnections (not exatctly related to MSN but that would also go out)
by stuntshell
Fri Jan 06, 2006 2:44 am
Forum: Scripting
Topic: [CONTRIB] php/snmp wireless signal levels
Replies: 4
Views: 2926

Unfortunatelly it does not work :cry:
by stuntshell
Tue Dec 20, 2005 3:38 pm
Forum: Wireless Networking
Topic: Strange reboots during some kind of traffic
Replies: 4
Views: 1388

oles,
How much traffic are you having? Are you sure they're rebooting due to type of traffic and not due to amount?
What hardware are you using?
by stuntshell
Wed Dec 14, 2005 2:01 pm
Forum: Wireless Networking
Topic: MT and Proxim Tsunami 5Ghz?
Replies: 11
Views: 2600

Same answer for both/all proxim products. They're not "new", they're actually pretty "old" on the market with revisions. Just now we can afford them.
by stuntshell
Wed Dec 14, 2005 4:58 am
Forum: Wireless Networking
Topic: Preventing users from changing their IP's
Replies: 7
Views: 1875

sten,
How about some examples, how-to's, etc. showing how should it be done!?

Thanks,
by stuntshell
Wed Dec 14, 2005 4:48 am
Forum: Wireless Networking
Topic: MT and Proxim Tsunami 5Ghz?
Replies: 11
Views: 2600

same thing!
by stuntshell
Tue Dec 13, 2005 7:03 pm
Forum: Wireless Networking
Topic: MT and Proxim Tsunami 5Ghz?
Replies: 11
Views: 2600

none at all, of course we're using different frequencies. But this is a very good topic, since the MP11a's stop working if you try to use the same frequency, as opposed to other equipment that show other symptons. The MP11's have a system that allows the Base to modify the SU's in case of interferen...
by stuntshell
Tue Dec 13, 2005 1:37 pm
Forum: Wireless Networking
Topic: MT and Proxim Tsunami 5Ghz?
Replies: 11
Views: 2600

No, totally different protocols. MT is open, MP11's are proprietary!
by stuntshell
Sun Dec 11, 2005 8:29 pm
Forum: Wireless Networking
Topic: Preventing users from changing their IP's
Replies: 7
Views: 1875

cibernet,
Thanks for the reply!
I tried using static ARP but all it happens in this case is I get a red log pointing the mismatch. The client still connects and is able to surf :(
Maybe I'm doing something wrong?!!
Will it work under transparent bridging? (maybe that's where I'm mistaking?)
by stuntshell
Sun Dec 11, 2005 3:10 pm
Forum: Wireless Networking
Topic: Preventing users from changing their IP's
Replies: 7
Views: 1875

:cry:
No one has this problem, or is this a stupid question where I'm forced to adopt radius, certificates,pppoe, etc. to do so?!
by stuntshell
Thu Dec 08, 2005 5:50 pm
Forum: Wireless Networking
Topic: Preventing users from changing their IP's
Replies: 7
Views: 1875

Preventing users from changing their IP's

How can I do that without the use of PPPoE server? We'll eventually move to PPPoE once we're comfortable, but for now I need to avoid people modifying their IP. Today one of them set his IP to be the same as my gateway and things went bananas. MT2.9.8.

Thank you
by stuntshell
Sat Dec 03, 2005 4:21 pm
Forum: Scripting
Topic: test of link
Replies: 4
Views: 2003

Só se vc estiver usando um proxy entre seu link e os rádios, dai é só criar uma página customizada de erro. Esse proxy tem de ser um squid que te deixa fazer modificações (Mikrotik não).
Se o rádio parar, dai não tem como, pois acabou a conectividade do cliente.
by stuntshell
Wed Nov 30, 2005 11:12 pm
Forum: Scripting
Topic: test of link
Replies: 4
Views: 2003

I think he wants to monitor a system!!!
--
teleturbo,
Vc quer trocar a porta 80 se seu webserver parar? Ou o que?!
by stuntshell
Sat Nov 12, 2005 2:15 am
Forum: General
Topic: prism2 engenius pcmcia card
Replies: 4
Views: 876

That's right, engenius are 32bit and ISA is 16. Need PCI