Community discussions

MikroTik App

Search found 475 matches

  • 1
  • 2
by sirbryan
Fri Jun 21, 2024 5:52 pm
Forum: RouterBOARD hardware
Topic: Which router for ~100 clients
Replies: 43
Views: 3505

Re: Which router for ~100 clients

What you can charge is not just dependent on what the market can bear, but what the customer can bear. The market is an average across customers in your demographic (country, region, city, neighborhood, industry). Add to that what the individual customer can handle. A small public school is likely t...
by sirbryan
Thu Jun 20, 2024 5:59 pm
Forum: General
Topic: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?
Replies: 15
Views: 6429

Re: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?

Just wondering, what kind of rule do you use for source nat? I'm having issues using srcnat action=src-nat and action=netmap when L3HW offloading is enabled. It only seem to work with masquerading otherwise traffic halts... So what are you using please? When i disable L3HW offloading, everything wo...
by sirbryan
Thu Jun 20, 2024 5:55 pm
Forum: General
Topic: Advice on how to grow an ISP network
Replies: 11
Views: 1250

Re: Advice on how to grow an ISP network

Depending on how large your POPs are determines whether you have one just one router for customers to connect to, or a stack of routers, with one being customer-facing (PE or Provider Edge), and another one at the POP being that POP's core. On small networks, like mine, I have one switch/router faci...
by sirbryan
Thu Jun 20, 2024 3:50 am
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

Has anything improved?
I have no experience with the CubeSA 60 Pro's. The latest 6.49 and 7.9-7.12 have been fine for my wAP 60's and Cube 60's (first and second generation).
by sirbryan
Mon Jun 17, 2024 4:55 pm
Forum: RouterBOARD hardware
Topic: Mikrotik PTP Near-Line-Of-Sight Solution
Replies: 27
Views: 1267

Re: Mikrotik PTP Near-Line-Of-Sight Solution

But we could also discuss other needs, for instance high speed <500m links with full obstruction. Some people may have such usecases as well... Fiber is a great NLOS technology, and you can get amazing speeds...... RF physics is tough to overcome, until we figure out how to harness quantum entangle...
by sirbryan
Sat Jun 08, 2024 8:18 pm
Forum: Wireless Networking
Topic: 3km rural link with hills
Replies: 2
Views: 277

Re: 3km rural link with hills

If you are fine with the 5GHz equipment and dishes you have, then go for it. 3km should be no problem, and with 40MHz channels, I can't see why you couldn't get 100-200Mbps over that. Same for the 6km link. Personally, I'd use 60GHz radios. Presuming they're available and you can use them in your co...
by sirbryan
Fri Jun 07, 2024 7:12 pm
Forum: Scripting
Topic: TILE verse ARM on different Cloud Core Routers
Replies: 2
Views: 213

Re: TILE verse ARM on different Cloud Core Routers

What does the script do?

You can likely just copy the script over from the 1016 to the ARM router. You'll have to adjust the script for 7.2 and for the new architecture, regardless of whether you upgrade the one or not.
by sirbryan
Fri Jun 07, 2024 4:59 am
Forum: Forwarding Protocols
Topic: How to prevent advertising routes from another BGP session, ROUTEROSv7?
Replies: 3
Views: 326

Re: How to prevent advertising routes from another BGP session, ROUTEROSv7?

This is what I use to keep from leaking routes learned from other peers that I don't provide transit for: if (bgp-as-path "(1234|5678|1000)") { reject; } This keeps me from announcing routes learned from AS's 1234, 5678, and 1000, no matter where they are in the AS path. On top of that, I ...
by sirbryan
Thu Jun 06, 2024 7:53 pm
Forum: Wireless Networking
Topic: LHG 60G - very slow speeds
Replies: 4
Views: 278

Re: LHG 60G - very slow speeds

Don't do a "both" UDP test. Try "send" and then "receive." Your limiting factor will be the CPU's of the radios, so as suggested elsewhere, do your "official" testing with devices on either end of the radios, ideally something with more horsepower like two com...
by sirbryan
Thu Jun 06, 2024 7:47 pm
Forum: Announcements
Topic: v7.16beta [testing] is released!
Replies: 96
Views: 31750

Re: v7.16beta [testing] is released!

My adguard container won't start after update , nothing in log, anyone else has problem with containers ?
No problems here on a CCR2116. Six containers (pihole, open-speedtest, samba, uptime-kuma, home-assistant, esphome).
by sirbryan
Tue Jun 04, 2024 6:11 pm
Forum: General
Topic: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?
Replies: 15
Views: 6429

Re: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?

We do not have massive complaints regarding the subscriber experience behind a connection that uses cgnat IP. In addition to CPU usage and traffic, what other variable would you recommend we take into account?. It really depends on how it's connected to the rest of the network, but in theory you sh...
by sirbryan
Tue Jun 04, 2024 5:34 pm
Forum: General
Topic: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?
Replies: 15
Views: 6429

Re: CCR1036-8G-2S+EM or CCR2116-12G-4S+ ?

Hello, I am from a small ISP in Argentina. I ask you two concerns. What is the private IP to public IP ratio that you are using in CGNAT? How much is the maximum volume you reached in CCR1036/CGNAT? Up to what volume of traffic do you consider it advisable to take it? I've since sold the 1036 and h...
by sirbryan
Mon Jun 03, 2024 5:58 pm
Forum: Announcements
Topic: v7.15.1 [stable] is released!
Replies: 333
Views: 72514

Re: v7.15 [stable] is released!

ACHTUNG !!! ALERT ! Do not use this version with CRS354 !!! Huge packetloss, huge performance drop, unusable on some ports. Oh darnit. I already upgraded my CRS354. And I'm not seeing what you're seeing. Mine's in an MLAG pair with a CRS312, both connected to a 2116 on one side and another MLAG pai...
by sirbryan
Fri May 31, 2024 5:55 am
Forum: RouterBOARD hardware
Topic: Which router for ~100 clients
Replies: 43
Views: 3505

Re: Which router for ~100 clients

Hmmm, I am aware of ZeroTier but I used to think about it as a VPN for those who don't have a public ip. Correct me if I'm wrong, but the traffic between devices is "coordinated" by a third party? I don't think the actual traffic goes through another server (I hope it doesn't), but there ...
by sirbryan
Fri May 31, 2024 5:51 am
Forum: RouterBOARD hardware
Topic: Which router for ~100 clients
Replies: 43
Views: 3505

Re: Which router for ~100 clients

Larsa Where is the server that these links connect to? And that's the reason you're paying a couple hundred bucks. Someone else has built the solution, hosts stuff in a datacenter, and has bandwidth/power/development costs associated with doing so. I'd view ZeroTier as the tool to build something a...
by sirbryan
Fri May 31, 2024 5:36 am
Forum: Announcements
Topic: v7.15.1 [stable] is released!
Replies: 333
Views: 72514

Re: v7.15 [stable] is released!

??? How not distributing 127.0.0.1 address is "stripping functionality"? It does not even make sense to distribute 127.0.0.1, it is called "localhost" for a reason. as others have said, if the changelog entry really means "we won't redistribute 127.0.0.1 as a connected rout...
by sirbryan
Wed May 29, 2024 5:28 pm
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

What’s the SUP for this so we can reference it? This seems like a critical bug that should hopefully be easy for them to address, hopefully in time for 7.15 if treated as urgently as it likely should be. Not a bug. It's by design. See the FCC paperwork for these radios. They would have to get it ce...
by sirbryan
Tue May 28, 2024 4:12 pm
Forum: General
Topic: Advice on how to grow an ISP network
Replies: 11
Views: 1250

Re: Advice on how to grow an ISP network

Looking at your design, here's what I'd do pretty quickly. ISP A -> 2216 no. 1 ISP B -> 2216 no. 2 Customers -> 2216 no. 3 (& 4?) 2216 nos. 1, 2, & 3 (& 4) all connected via backbone. ----- Internet comes into border routers. Borders may aggregate all routes between each other, or may fe...
by sirbryan
Tue May 28, 2024 3:44 pm
Forum: General
Topic: Advice on how to grow an ISP network
Replies: 11
Views: 1250

Re: Advice on how to grow an ISP network

Provision customers with Q-in-Q, strip the outer VLAN on the aggregation switch, and trunk the inner VLAN back to the BGP kit. You want to allow your customers to pick the outer VLAN ID (the outer VLAN ID can be decided by the customer; it makes no difference to you. The inner VLAN ID is picked by ...
by sirbryan
Sat May 25, 2024 11:07 pm
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

OK, I received my two NetBox 5 AX's and installed them at 19.3km with 26dBi 2'/600mm antennas (Siklu dual-band 5GHz/80GHz). I expected to be able to get a decent amount of throughput based on MikroTik's link calculator, but with the way MikroTik "nerfs" the radio TX power, it's no wonder t...
by sirbryan
Fri May 24, 2024 6:46 pm
Forum: General
Topic: MLAG breaks STP? CRS326 7.14.3
Replies: 9
Views: 778

Re: MLAG breaks STP? CRS326 7.14.3

I don't see where you specified an STP mode on the bridge...I'm not sure what that defaults to...But you need to define that for "proper" operation. It defaults to RSTP. Again...Just "labbing" up the connections and seeing the "state" as "up" isn't enough to ...
by sirbryan
Fri May 24, 2024 2:57 am
Forum: Beginner Basics
Topic: MLAG issues
Replies: 3
Views: 537

Re: MLAG issues

Has anyone had any issues with MLAG between 4 RouterOS systems? I want to form two mlag-ids, one per two devices and those would link together, via LACP. Thoughts? Something like this: Sw01 ---- peer-link ---- Sw02 | | | | Sw03 ---- peer-link ---- Sw04 I would have MLAG between Sw01 and Sw02 with m...
by sirbryan
Thu May 23, 2024 6:39 pm
Forum: General
Topic: MLAG breaks STP? CRS326 7.14.3
Replies: 9
Views: 778

Re: MLAG breaks STP? CRS326 7.14.3

That's too bad. I just got it working. In this lab, I have two CRS326's that have been reset to defaults and upgraded to 7.14.3. There is no configuration, which means no bridge and no IP addresses. This way all ports are disconnected from each other, ensuring no bridge loops or other oddities durin...
by sirbryan
Thu May 23, 2024 5:02 am
Forum: General
Topic: MLAG breaks STP? CRS326 7.14.3
Replies: 9
Views: 778

Re: MLAG breaks STP? CRS326 7.14.3

Thanks for replying and including detailed config. Yes, this is the config without MLAG active as doing so breaks STP. Yes, my MLAG peer port is sfp-sfpplus1 and I'd set its PVID to 999 which was to be my dedicated ICCP VLAN. I'd tagged VLAN1 as one of the guides I was following said it was require...
by sirbryan
Wed May 22, 2024 6:13 pm
Forum: General
Topic: MLAG breaks STP? CRS326 7.14.3
Replies: 9
Views: 778

Re: MLAG breaks STP? CRS326 7.14.3

A bunch of your relevant config is missing. But the PVID of your MLAG port has to be a different VLAN. You're tagging VLAN 1 across what I assume is supposed to be your MLAG port (your MLAG line is missing), and that won't work. Here is the relevant (scrubbed) config from one of my working MLAG setu...
by sirbryan
Mon May 20, 2024 5:26 am
Forum: General
Topic: RB5009 and 2Gb/s internet speed [SOLVED]
Replies: 19
Views: 1699

Re: RB5009 and 2Gb/s internet speed [SOLVED]

So the assumption is that: ISP comes into RB5009's 2.5G port SFP+ on RB5009 goes into one of CRS310's SFP+ ports (using a cheap DAC) All 2.5Gbps devices go into CRS310 All remaining devices can go into RB5009's ports 2-8 or CRS310's remaining 3 ports This gives you the most LAN throughput from any d...
by sirbryan
Sun May 19, 2024 3:42 pm
Forum: Wireless Networking
Topic: Netbox 5 AX, L11UG-5HaxD wont send data
Replies: 14
Views: 2192

Re: Netbox 5 AX, L11UG-5HaxD wont send data

How many of you who are still complaining have read all the thread entries, particularly the one pointing out the release notes from 7.14.2/7.15rc1: "wifi-qcom - added configuration.distance setting to enable operation over multi-kilometer distances" ...and actually applied the setting via...
by sirbryan
Wed May 15, 2024 5:36 pm
Forum: Announcements
Topic: Newsletter #118 | May 2024
Replies: 29
Views: 20042

Re: Newsletter #118 | May 2024

no, there are very few antenas on the market. I would by NetBox 5 AX if there was small 20cm omnidirectional anntena

That's a pretty uninformed statement. What kind of antenna do you want?

(The following is just from one distributor.)
Screenshot 2024-05-15 at 8.33.11 AM.png
by sirbryan
Fri May 10, 2024 5:56 pm
Forum: General
Topic: CRS310-8G+2S+IN Stuck on 100 Mbps on all ports
Replies: 2
Views: 677

Re: CRS310-8G+2S+IN Stuck on 100 Mbps on all ports

Just unboxed and installed this switch, but I'm getting only 100 Mbps on all the ports? Is there a default setting that needs to be changed upon startup? This is a replacement unit for a different switch, all Cat6 cabling, so it's definitely the Mikrotik. ISP service is 1Gbps. Tested on direct conn...
by sirbryan
Thu May 09, 2024 6:45 pm
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

My current 27km AirFiber 5XHD link on 3' (1m) 34dBi antennas and 100MHz of spectrum ... This setup hardly qualifies as "wifi based link". While it does use frequency from U-NII-3 band, it obviously doesn't use 802.11-compliant channel width (which would be either 80MHz or 160MHz) ... and ...
by sirbryan
Thu May 09, 2024 6:04 am
Forum: RouterBOARD hardware
Topic: HAP AC3 not performing well (Can't reach max WiFi) [SOLVED]
Replies: 8
Views: 5349

Re: HAP AC3 not performing well (Can't reach max WiFi) [SOLVED]

Install the wifi-qcom-ac drivers on them, set one up as an AP, one as a station bridge. On the bench, I get 600-700Mbps on hAP AC3's to my newer devices that support WiFi5 Wave 2 (i.e. iPhone, MacBook Pro). The hAP AX3's get closer to actual 800Mbps of throughput on AX capable devices. On AC and lat...
by sirbryan
Thu May 09, 2024 5:22 am
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

I did a quick google search and it says 60GHz 1Gbit device. Sorry I'm not an expert in other brands, but in 5GHz you can't get 1Gbit over 30+ KM AirFiber is a line of devices, in 4.9GHz, 5GHz, 11GHz, 24GHz, and 60GHz. The 4/5 GHz radios can get around 500-700Mbps aggregate, 11GHz about 550Mbps full...
by sirbryan
Thu May 09, 2024 5:17 am
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

Mind you, other than non-standard illegal amateur work, you can't expect anything good in terms of bandwidth from a 30km 5GHz link. This is why the maximum connection distance I make is less than 16km. My current 27km AirFiber 5XHD link on 3' (1m) 34dBi antennas and 100MHz of spectrum (US UNII-3 58...
by sirbryan
Thu May 02, 2024 5:19 pm
Forum: Wireless Networking
Topic: Cube60SA - Woeful end-client performance
Replies: 1
Views: 308

Re: Cube60SA - Woeful end-client performance

The Cube60SA has always seemed to have problems. I use wAP 60's as AP's and the original Cube 60's, LHG60's, and Cube 60 Pro's as CPE, and regularly get 300-700Mbps through them (straight Layer 2, DHCP). Is the MTU 1600 to allow for PPPoE and VLAN overhead? Are all the Cube60's on the latest RouterO...
by sirbryan
Wed May 01, 2024 10:02 pm
Forum: General
Topic: iperf3 in docker container not showing 10Gb/sec speed
Replies: 13
Views: 1694

Re: iperf3 in docker container not showing 10Gb/sec speed

I second what @mkx said, as that echoes my experience. You've hit the limit of what the quad-core CPUs' can handle on RB5009, RB4011, and CCR2004. The ports are fine, and if you're able to come up with a scenario where you're just switching or bridging, then more of it hits the hardware. But speed t...
by sirbryan
Wed Apr 17, 2024 9:54 pm
Forum: RouterBOARD hardware
Topic: Infrastructure design help
Replies: 9
Views: 1034

Re: Infrastructure design help

Either way, no. You have to balance the traffic at one point only (e.g one main router) but the CRS326 is a bad router for this purpose. The other option is to staticly balance the users/switches between the four RB5009 (that then will balance the connections between the four 5G-modems) From the de...
by sirbryan
Wed Apr 17, 2024 6:58 pm
Forum: RouterBOARD hardware
Topic: Infrastructure design help
Replies: 9
Views: 1034

Re: Infrastructure design help

It looks like four 5G connections coming into each 5009, and each of the four 5009's is feeding a number of VLANs to which the WiFi AP's will be attached. What throughput are the 16 routers going to give you that 4 couldn't? Does the service provider 1) throttle throughput to 100-500Mbps per 5G rout...
by sirbryan
Wed Apr 17, 2024 6:40 pm
Forum: Wireless Networking
Topic: Dante Audio over 60GHz
Replies: 7
Views: 935

Re: Dante Audio over 60GHz

I was using a pair of UBNT AF60LR (with a 300mt link), so no 5Ghz backup. Latecy point to point was 0.8-0.9 ms. Do you think a pair of RBLHGG-60ad or nRAYG-60ad could perform better? Generally I've seen more jitter on MikroTik's and Ubiquiti's Qualcomm-based radios than on Tachyon and Ubiquiti's Pe...
by sirbryan
Mon Apr 15, 2024 7:56 pm
Forum: General
Topic: CRS317 - No hardware offloading on WAN port when using fast-track
Replies: 2
Views: 436

Re: CRS317 - No hardware offloading on WAN port when using fast-track

You can either have hardware-accelerated connection tracking (FW/NAT) or routing, but not both at the same time.

Try disabling HWoffload on all the ports, but leave it on for the switch, and see if that fixes anything performance-wise.
by sirbryan
Sun Apr 14, 2024 12:24 am
Forum: Announcements
Topic: Long range wireless links - share your experience
Replies: 50
Views: 51766

Re: Long range wireless links - share your experience

He said 30km or longer, guys. I had a pair of dual-band LHG XL's at 32km, from the valley floor to a mountain top, but both the 5GHz and 2.4GHz links were pretty weak and we only got about 10-20Mbps out of it after maxing everything that we could (for US region). I don't think the noise floor helped...
by sirbryan
Wed Apr 10, 2024 11:31 pm
Forum: General
Topic: RouterOS v7 best route selection problems
Replies: 8
Views: 836

Re: RouterOS v7 best route selection problems

I haven't dug into that myself. I'm still figuring out how to best leverage all these BGP knobs.
by sirbryan
Wed Apr 10, 2024 6:11 pm
Forum: Beginner Basics
Topic: Unable to breakup IP range with /24 BGP to ISP
Replies: 2
Views: 596

Re: Unable to breakup IP range with /24 BGP to ISP

Without posting some of your config, it's hard to know how you're doing things. But it sounds like what's happening is if you don't put the /24 somewhere on your router, it stops announcing it to your upstream provider. You need to at least blackhole route the /24 to the router itself so the BGP ann...
by sirbryan
Wed Apr 10, 2024 4:18 pm
Forum: General
Topic: RouterOS v7 best route selection problems
Replies: 8
Views: 836

Re: RouterOS v7 best route selection problems

Specificity always trumps almost anything else. If provider Z doesn't give you anything but the default route, then you'll need to filter out everything from the other providers except for the default route. With your use case, unless you're saturating one of your providers on outbound, slurping in ...
by sirbryan
Tue Apr 09, 2024 7:31 pm
Forum: General
Topic: Planned MLAG Setup correct? [SOLVED]
Replies: 5
Views: 722

Re: Planned MLAG Setup correct? [SOLVED]

One thing is missing. You haven't marked the blue links as a LAG with an MLAG ID (it can be the same for both sides if you like).

The blue links themselves are a LAG between the MLAG pairs. To the switches, they will need to be configured just like the links going to the PVE stacks.
by sirbryan
Tue Apr 09, 2024 7:27 pm
Forum: General
Topic: Planned MLAG Setup correct? [SOLVED]
Replies: 5
Views: 722

Re: Planned MLAG Setup correct? [SOLVED]

The short answer to your question is that it should work and your diagram looks good. I did a similar configuration in the core of my network, with two CRS317's in one MLAG setup feeding six routers, and another MLAG pairing with a 312 and 354 feeding my home/office router (a 2116). Then I connected...
by sirbryan
Thu Apr 04, 2024 5:36 pm
Forum: General
Topic: HW Offloading
Replies: 11
Views: 1166

Re: HW Offloading

Short answer (from what Raimond pointed to):

For NAT to work, the traffic has to hit the CPU initially, and then it pushes those NAT sessions to the ASIC. You therefore can't enable L3HW Offload on the WAN ports or else it'll never hit the firewall. You can only enable it on the LAN ports.
by sirbryan
Thu Apr 04, 2024 3:55 am
Forum: Beginner Basics
Topic: Not getting wireline speeds
Replies: 28
Views: 1449

Re: Not getting wireline speeds

to get a maximum throughput of 500mbit on freakin masquerading is simply surprising for what's otherwise a 2.5G device. The CRS310's are great routers, if you don't need the CPU to do anything (queueing, firewall, NAT, etc.). I have a few of the 5SFP/4SFP+ CRS310's at customer-facing sites, paired ...
by sirbryan
Wed Apr 03, 2024 5:16 pm
Forum: General
Topic: How to do Inter-VLAN Bridging with MikroTik? [SOLVED]
Replies: 15
Views: 1234

Re: How to do Inter-VLAN Bridging with MikroTik? [SOLVED]

If all ports are part of a bridge, and you enable IP firewall on the bridge, then, unless hardware offload (switching) is enabled on the individual ports (which it is by default), it should send all traffic through the firewall. At that point, you can use whatever Layer 3 rules you want to keep devi...
by sirbryan
Tue Apr 02, 2024 7:05 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

I don't see how anyone but Mikrotik devs can really help, it's not a configuration issue... Sounds like a good reason to open a ticket, then, if you haven't already. The forum is for users to share what works and what doesn't with each other, with only the slight possibility that a dev might see it.
by sirbryan
Tue Apr 02, 2024 6:54 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

I am using a 5009 with several ports with VLANs (all on a common VLAN-aware bridge) and I have not yet observed such a problem... I have set the STP mode to "none", as I always do in places where there is no need for STP. Unfortunately, STP is needed on this router due to some uplink redu...
by sirbryan
Tue Apr 02, 2024 2:42 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

I have an RB5009 where I've started noticing it randomly stop talking to devices on one of the ports. It takes a reboot to fix it. No amount of port-bouncing or bridge tinkering works. I suspect it's seeing occasional route loops or some other packet it doesn't like and it silently shuts down the p...
by sirbryan
Tue Apr 02, 2024 2:37 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

Mikrotik has "general rule" about not touching existing configs, except during major upgrades where a config update is necessary. Usually, changing connection tracking settings falls under that "not a major upgrade" category. Except they did just this with VRFs and firewall rule...
by sirbryan
Mon Apr 01, 2024 8:16 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

Well, among other things I just found and fixed the UDP timeout (which is amazing, Mikrotik changing it for new setups but not changing it for existing installations where the user has not changed the default value - talk about breaking systems) which fixed SOME of the issues (RDP it seems). Now I ...
by sirbryan
Fri Mar 29, 2024 5:06 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14.2 [stable] is released!

7.14.x reverts/restores BGP as-path filter behavior on egress to previous behavior. Why isn't this mentioned in the release notes? Before and up to 7.7, any outgoing as-path would be filtered based on an incoming AS's number (their ASN was first in the match list). Sometime after 7.7 (not sure which...
by sirbryan
Fri Mar 29, 2024 4:18 pm
Forum: General
Topic: Purchasing on Amazon
Replies: 11
Views: 798

Re: Purchasing on Amazon

The 2116 is a beauty, with plenty of resources for homelabbing.
by sirbryan
Tue Mar 26, 2024 6:57 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 503
Views: 133113

Re: v7.15beta [testing] is released!

do you still have use cases where the ARM devices work as full-fledged routers, so using any ROS feature, and not only as APs. If second, why not offer a slimed main package for the "as AP only mode"? I have situations where I use dynamic routing protocols and VPNs on low-power devices li...
by sirbryan
Tue Mar 26, 2024 6:48 pm
Forum: Wireless Networking
Topic: Cube 60Pro ac Max Distance on 60Ghz?
Replies: 20
Views: 5850

Re: Cube 60Pro ac Max Distance on 60Ghz?

Hi, any another experience with 60 Ghz for long distances? Thank you That's kind of a generic question for a year-old post. What exactly are you needing? MikroTik's 60GHz distance limitations have been discussed in several threads. For close-range (<500m for PTMP, <800m for PTP, Cubes don't go as f...
by sirbryan
Sat Mar 23, 2024 6:25 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 503
Views: 133113

Re: v7.15beta [testing] is released!

Guys, remember that most of the lab devices they are developing on have nothing else on the disk, so 7.14/7.15 etc. all fit and work fine because likely the CI/CD setup is wiping those test devices with a fresh netinstall every time. You can't expect a lab device to load up all the cruft many of us ...
by sirbryan
Wed Mar 20, 2024 4:56 pm
Forum: Beginner Basics
Topic: I'm just not feeling Mikrotik's current product line-up
Replies: 20
Views: 1476

Re: I'm just not feeling Mikrotik's current product line-up

Is there ISP gear that can be powered via PoE in? I'm not aware of that (at least in Italy). Yes, my antenna was powered by port1 of the ax3, so there are a real use cases. I use AX3's when my customer's wireless CPE is capable of 500-2500Mbps. If it's a MikroTik 60GHz radio, the router automatical...
by sirbryan
Wed Mar 20, 2024 4:47 pm
Forum: Forwarding Protocols
Topic: BGP Advertisement redundancy
Replies: 17
Views: 1896

Re: BGP Advertisement redundancy

I have OOB access to the serial console so it isn't a big deal to actually recover if I make a mistake. I guess I'm going to have to test it on site, sadly I don't have OOB connection T_T. Kind regards, Set up ROMON between the routers. All routers connected via Layer 2 will see each other and be m...
by sirbryan
Tue Mar 19, 2024 10:16 pm
Forum: General
Topic: L3HW Offload Weird Issues
Replies: 4
Views: 593

Re: L3HW Offload Weird Issues

L3HW offload is hit and miss on the 2116's. I have it disabled for now on all of mine. There are known issues with ECMP (multiple identical-cost routes) and L3HW offload. They fixed some of it (for plain routing) a release or two ago, but I found new issues with it when NAT is enabled on a 2116. Wit...
by sirbryan
Tue Mar 19, 2024 10:08 pm
Forum: Beginner Basics
Topic: I'm just not feeling Mikrotik's current product line-up
Replies: 20
Views: 1476

Re: I'm just not feeling Mikrotik's current product line-up

Yeah, POE + 2.5G + 24V to me doesn't make sense. It seems one can only use two out of the three features of that port. We use Tachyon radios in parts of our network, and it is nice to see that 2.5G port light up. But they want too much juice to use the router's POE, as do Wave radios. I use them wit...
by sirbryan
Thu Mar 14, 2024 6:57 pm
Forum: Wireless Networking
Topic: Searching a 60 GHz passive repeater for 70° angle
Replies: 8
Views: 1637

Re: Searching a 60 GHz passive repeater for 70° angle

I ran into this when trying to install a customer's connection. It was at 5GHz, not 60GHz, but concept was the same. I was trying to align it down my side of the street, straight towards the AP, but it was going through a couple of trees. I was watching my phone while turning the radio and noticed t...
by sirbryan
Thu Mar 14, 2024 5:33 am
Forum: General
Topic: A call for a "lite" version of routeros 7 (image size reduction)
Replies: 22
Views: 1861

Re: A call for a "lite" version of routeros 7 (image size reduction)

Remember that in other posts, MikroTik pointed out that it would actually make file sizes larger to split some things out. Over half what the OP requested be removed is part of the stock Linux kernel (ppp, ipsec, wireguard, etc.). ppp, for example, is required for pppoe, a standard still used by ISP...
by sirbryan
Wed Mar 13, 2024 7:28 pm
Forum: Beginner Basics
Topic: mlag question
Replies: 2
Views: 429

Re: mlag question

Individual ports are added to the bond, and the bonds are added to the bridge.
by sirbryan
Tue Mar 12, 2024 3:58 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 503
Views: 133113

Re: v7.15beta [testing] is released!

Back to 7.15b6: My home/office CCR2116 stalled overnight. Log says kernel panic. I had to power-cycle it to get it to come back. It had been running for two or three days (since b6 came out) just fine. Aside from OSPF & BGP to external network, it's got a few containers (piHole, homeassistant, o...
by sirbryan
Fri Mar 08, 2024 5:35 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14 [stable] is released!

Only one strange thing, after reboot my active interfaces without POE devices were red, "PoE out status: short circuit"... Then you probably upgraded from a quite old version. Always mention your previous version. You can go to interfaces->ethernet and open each interface and set PoE to &...
by sirbryan
Fri Mar 08, 2024 6:10 am
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

After messing around with it as bare metal on the Honeycomb (extra-nics was installed), I booted back into Ubuntu and got it working through QEMU/KVM. With 2 or 8 cores, I can get it to receive 1.5Gbps and transmit 700Mbps, so I'm guessing there's a bit of optimization yet to be had. iperf3 on the h...
by sirbryan
Thu Mar 07, 2024 7:02 am
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

Huzzah! Just like with QEMU, two NVMe drives works. But it doesn't see any of the NICs or USB interfaces. That would probably explain why the install kernel doesn't see the USB drive after it takes over from UEFI. In System/Resources/PCI it lists just the NVMe drives. I wonder what cards in Ampere s...
by sirbryan
Thu Mar 07, 2024 5:52 am
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

I made a tiny bit of headway trying to boot the installer on my Honeycomb LX2. Using a UEFI image from SolidRun, the ISO boots via USB. It looks for an NVMe drive (SATA are ignored), and then burps because it can't find the CD-ROM. Based on what we saw with QEMU, I wonder if it expects the CD-ROM to...
by sirbryan
Wed Mar 06, 2024 5:38 pm
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

I'm personally running ARM64 variant on my Rock 5B now via KVM virtualization, and it achieves maximum throughput! I'll have to try it via KVM on my SolidRun Honeycomb LX2 that's collecting dust. It doesn't support UEFI boot and their UEFI shim is out of date. Otherwise I'd have spent some more tim...
by sirbryan
Tue Mar 05, 2024 9:26 pm
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

Sweet. I got it installed and booted.

Now to figure out how to boot it under Apple's Virtualization Framework to get closer to the CPU.
by sirbryan
Tue Mar 05, 2024 6:13 pm
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

I'm excited to see what people come up with now that the Ampere ISO is out. I tried messing around with it but I can't get things to boot. I tried on Equinox Metal, but couldn't get it work. I do not think it's Mikrotik fault... Metal uses iPXE with netboot.xyz for custom OSes. I use VMWare on X86....
by sirbryan
Tue Mar 05, 2024 4:16 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 503
Views: 133113

Re: v7.15beta [testing] is released!

I said quite the opposite. I said we listen to all users, not just the forum In what language? What you said was very clear, and you made no mention of listening to all users. In fact, it seemed to be, if anything, stating that home users, ME included, dont come to the forums, nor all the people I ...
by sirbryan
Tue Mar 05, 2024 4:16 am
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

I'm excited to see what people come up with now that the Ampere ISO is out. I tried messing around with it but I can't get things to boot.
by sirbryan
Mon Mar 04, 2024 10:59 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 503
Views: 133113

Re: v7.15beta [testing] is released!

*) media - added support for DLNA;

I was happy to see SMB leave the default system package, but DLNA is even worse.
SMB didn't leave. It was replaced with ROSE's version of SMB.
by sirbryan
Sat Mar 02, 2024 1:49 am
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 210420

Re: v7.14 [stable] is released!

Regarding the "Handshake for peer did not complete" log messages from WireGuard... I confirmed that these were coming from my passive peer entries where I had configured a persistent keepalive. The keepalive configuration was the "trigger". Removing that keepalive stopped the me...
by sirbryan
Thu Feb 29, 2024 4:36 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 51720

Re: v7.14rc [testing] is released!

Is this the Fasttrack inactive the intended behavior? According to https://forum.mikrotik.com/viewtopic.php?t=182658 FastPath should be supported with VLAN filtering since 7.2 so this condition should still be met for Fasttrack, shouldn't it? RB5009 doesn't qualify for hardware-offloaded routing, j...
by sirbryan
Thu Feb 29, 2024 4:32 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 51720

Re: v7.14rc [testing] is released!

VLAN MTU Issue We have reproduced multiple issues regarding VLAN MTU not applying correctly or resetting to default after reboot. Unfortunately, it is too late to incorporate the fixes into 7.14, so those will be available in the upcoming 7.15beta. Is this an issue introduced in 7.14? I see heavy d...
by sirbryan
Wed Feb 28, 2024 7:26 pm
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

Should more of us file support/feature requests for generic UEFI support in CHR?
by sirbryan
Wed Feb 28, 2024 4:25 pm
Forum: RouterBOARD hardware
Topic: RB4011 - Ports 1-5 Going down?
Replies: 4
Views: 651

Re: RB4011 - Ports 1-5 Going down?

I had a site where this was happening. I don't remember whether it was warm or cold when it happened, but I eventually replaced it with a 5009. All ports (except maybe one) were being used. I have other 4011's still out there with only 3-4 ports being used, mostly on 1-5, and they haven't exhibited ...
by sirbryan
Fri Feb 23, 2024 3:24 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 51720

Re: v7.14rc [testing] is released!

IP WAN ports (like eBGP Transit, IXP port, PNI port, residential broadband DHCP, PPPoE etc) are meant to be independent PHY ports outside any bridge, if they need VLAN tagging on egress, you directly create layer 3 sub-interface VLAN on top of the port. This has been discussed ad nauseam. In all of...
by sirbryan
Thu Feb 22, 2024 7:50 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 51720

Re: v7.14rc [testing] is released!

Something seems wrong in the code, i do not think that it is a setup problem. If it where a setup problem, i think that the MTU value would be rejected during setup, not silently after a random time. I've seen this on a number of releases over the past year or so, but in my case it can take weeks o...
by sirbryan
Thu Feb 22, 2024 12:45 am
Forum: Virtualization
Topic: CHR using Apple Virtualization Framework (via UTM)
Replies: 53
Views: 5329

Re: CHR using Apple Virtualization Framework (via UTM)

I tried this tonight WITHOUT using UTM, only Apple. I used some swift from an Apple sample project that used VZEFIBootLoader() & another sample with the serial console window. To confirm, This window is not the VGA graphics from the CHR VM, but a SwiftUI window connecting to the serial port of ...
by sirbryan
Fri Feb 02, 2024 5:11 am
Forum: General
Topic: Trying to use VLANs & L3 HW offload
Replies: 12
Views: 2144

Re: Trying to use VLANs & L3 HW offload

I can't speak for the 309 as a NAT router, but as L3HW offloaded router, I've got a pair doing it right now as my core aggregation routers, talking to CRS310's and NetPower 16's out in the field. I have two CCR2116's doing CGNAT, and with L3HW offload, NAT load drops to near zero. Unfortunately, it ...
by sirbryan
Thu Feb 01, 2024 1:32 am
Forum: Announcements
Topic: Newsletter #116 | January 2024
Replies: 95
Views: 33231

Re: Newsletter #116 | January 2024

Outdoor AP's cover both WISP and WiFi needs. Better to get those out and on the market because it reaches a wider audience. Likewise, a WISP can start upgrading their sites (since it's backwards compatible) in preparation for CPEs to come. Am I missing something? The new ax hardware is not backward...
by sirbryan
Wed Jan 31, 2024 5:35 pm
Forum: Announcements
Topic: Newsletter #116 | January 2024
Replies: 95
Views: 33231

Re: Newsletter #116 | January 2024

Outdoor AP's cover both WISP and WiFi needs. Better to get those out and on the market because it reaches a wider audience. Likewise, a WISP can start upgrading their sites (since it's backwards compatible) in preparation for CPEs to come.
by sirbryan
Wed Jan 31, 2024 5:27 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 159191

Re: v7.14beta [testing] is released!

When mixing MTU sizes on VLAN interfaces on the bridge, anything that's not 1500 starts up as 1500, breaking OSPF adjacencies and causing PMTU issues. And now, even if I run my script at startup to "fix" the VLAN interface's MTU (by disabling and enabling all of them >1500), something post...
by sirbryan
Wed Jan 24, 2024 2:41 pm
Forum: Wireless Networking
Topic: 60GHz PTMP with 5gz Failover Sanity Check
Replies: 1
Views: 1085

Re: 60GHz PTMP with 5gz Failover Sanity Check

Short answer: Yes. On AP side put all 60GHz and 5GHz radios in the same Layer 2 network (bridge/LAN/VLAN) and set up CPE bond to be active/passive (or active/backup, whatever it is). This will also allow you to pass VLAN tags through, so long as the bridge/switch/router at the AP side has all VLANs ...
by sirbryan
Tue Jan 23, 2024 3:20 am
Forum: Wireless Networking
Topic: Point-to-Multipoint with 60G/5G failover
Replies: 14
Views: 4023

Re: Point-to-Multipoint with 60G/5G failover

I use these in PTMP deployments as well, with OmniTik 5AC's as the 5GHz AP and its POE out powering a couple of wAP60's at half of my MikroTik-based sites. The rest are 60GHz-only to wAP60's. The bond on the CPE side is active/passive, with the 60GHz as primary, and all of the AP's (5GHz + 60GHz) in...
by sirbryan
Mon Jan 22, 2024 11:00 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 276018

Re: v7.13.2 [stable] is released!

7.13 crashing when winbox is left open is a known bug
OK. Makes me feel better. Sort of. I thought I had seen/read it before.
by sirbryan
Mon Jan 22, 2024 7:22 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 276018

Re: v7.13.2 [stable] is released!

So, people with reboots must send their supout files to Mikrotik, please. 🙂 After posting that I had had none, I had two within the past 72 hours, one a 1036 and the other a CRS317. The only difference between the weeks (and months) of them running without reboots and the last couple of days was my...
by sirbryan
Fri Jan 19, 2024 8:08 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 159191

Re: v7.14beta [testing] is released!

It is an advantage of RouterOS that MikroTik releases new versions for old devices for a very long time. Other manufacturers have a separate image for every device, and they simply stop releasing updates for older devices, except sometimes for security issues. It could be considered to have a "...
by sirbryan
Thu Jan 18, 2024 5:46 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 276018

Re: v7.13.2 [stable] is released!

So it's not entirely random, it's tied to some particular configuration. I'd say that's an useful input for mikrotik devs who will try to chase the problems down. And I agree with @whatever, none of my devices (running 7.13) suffer from reboots either. Indeed I'm not using neither openvpn nor wireg...
by sirbryan
Thu Jan 18, 2024 5:39 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 159191

Re: v7.14beta [testing] is released!

Multiply that by all routing protocols and on 16MB devices most likely you will not be able to install routing package at all. That's the point: almost nobody will want to run routing protocols (none but static routing, which should not require any executable to run) on devices with only 16MB flash...
by sirbryan
Thu Jan 18, 2024 5:20 pm
Forum: General
Topic: MPLS/VPLS decapsulation locked to single CPU core on ARM/ARM64 (CCR2004, CCR2116)
Replies: 14
Views: 3027

Re: MPLS/VPLS decapsulation locked to single CPU core on ARM/ARM64 (CCR2004, CCR2116)

I will add that even though it's single-core bound, the throughput on 2004 was still 8Gbps full duplex, or 9Gbps one-way (due to testing on 10Gbps ports, of course) with the router bridging an entire interface with the VPLS, routing it over the second to the second router, which passed the traffic b...
by sirbryan
Thu Jan 18, 2024 7:43 am
Forum: General
Topic: MPLS/VPLS decapsulation locked to single CPU core on ARM/ARM64 (CCR2004, CCR2116)
Replies: 14
Views: 3027

Re: MPLS/VPLS decapsulation locked to single CPU core on ARM/ARM64 (CCR2004, CCR2116)

That was me. :D Well, I was one ISP who spent some time tonight testing from a 2116 to a 1036 through two 2004's (as well as with another ISP's two 2004's from a 1036 the other night) and determined it was single-core on egress. (All boxes under test are on 7.13.2.) According to the WISP Talk Facebo...
by sirbryan
Tue Jan 16, 2024 7:24 pm
Forum: General
Topic: CCR1072-1G-8S+ Using AC and -48V power supplies simultaneously
Replies: 4
Views: 583

Re: CCR1072-1G-8S+ Using AC and -48V power supplies simultaneously

In a past life (job) we had some devices with mixed AC/DC power supplies in a -48V environment and I don't recall any issues.
by sirbryan
Tue Jan 16, 2024 6:43 pm
Forum: General
Topic: CCR1072-1G-8S+ Using AC and -48V power supplies simultaneously
Replies: 4
Views: 583

Re: CCR1072-1G-8S+ Using AC and -48V power supplies simultaneously

Yes it will work.

In pretty much all redundant PSU situations, each PSU steps down to board voltage (for most of MikroTik that's 12V) and the board draws from one or all online PSU's.
by sirbryan
Thu Dec 21, 2023 1:38 am
Forum: General
Topic: KNOT Modbus Meanwell
Replies: 6
Views: 2575

Re: KNOT Modbus Meanwell

See this post: viewtopic.php?p=1043459#p1043459

Try swapping the A/B pins (+/-) between the DRS and KNOT. Also, I couldn't get the /iot/modbus/transceive commands to work, but using a TCP app to connect to the KNOT works just fine.
by sirbryan
Thu Dec 21, 2023 1:35 am
Forum: General
Topic: KNOT, Modbus, Mean well.. how?
Replies: 9
Views: 3895

Re: KNOT, Modbus, Mean well.. how?

For lack of a better spot to put this, I'm dropping it in general. I'm having a heck of a time getting a KNOT to talk to a mean well DRS-240 unit that has modbus exposed on an rj45/8x8 connector. pins 6(+) and 7(-) on the mean well running to A+ and B- on the KNOT. .... I've also tried hitting this...
by sirbryan
Mon Dec 18, 2023 7:16 pm
Forum: Beginner Basics
Topic: Something like Pepwave SpeedFusion
Replies: 9
Views: 1349

Re: Something like Pepwave SpeedFusion

No single device would get better bandwidth than one of the links, That is accurate and NOT bonding, and thus as stated it is not possible, just another form of load sharing. You can bond two EoIP links using LACP, if you really wanted to. It's not as good as using Layer 3 techniques, though.
by sirbryan
Mon Dec 18, 2023 6:47 am
Forum: Beginner Basics
Topic: Something like Pepwave SpeedFusion
Replies: 9
Views: 1349

Re: Something like Pepwave SpeedFusion

Yes, you can--sort of. If you build two tunnels over the different connections back to your own office, you can bond over the tunnels. No single device would get better bandwidth than one of the links, as the current bonding technologies assign individual flows to one path or the other. Simply put d...
by sirbryan
Fri Dec 15, 2023 1:52 am
Forum: Wireless Networking
Topic: Any news in 60GHz?
Replies: 7
Views: 2162

Re: Any news in 60GHz?

Vendors are competing for your business. Lots of people get hung up on only using one vendor/manufacturer because of "reasons." But, as a provider, it's up to you to find and use the best tool for your business and customers, and if a vendor isn't making that tool, they're not holding you ...
by sirbryan
Thu Dec 14, 2023 9:11 pm
Forum: Beginner Basics
Topic: ccr1036-12g-4s 2.5 /gb max throughput under NAT
Replies: 10
Views: 4594

Re: ccr1036-12g-4s 2.5 /gb max throughput under NAT

I'm doing CGNAT for 500+ people on a 1036 with 2.5-3Gbps of traffic at peak and only 5-10% of CPU load running RouterOS 7.11.2. Minimal firewall rules (to protect the router itself) and minimal shaping (about 30 of the 500+ customers).
by sirbryan
Mon Dec 11, 2023 4:29 pm
Forum: General
Topic: [7.2.3] Connection/Routing Mark (Mangle) with L3 HW Offloading [SOLVED]
Replies: 9
Views: 4016

Re: [7.2.3] Connection/Routing Mark (Mangle) with L3 HW Offloading [SOLVED]

I don't know how many filter rules you have on that firewall, but that's probably why your CPU is higher. I know I can get about 800Mbps on the CRS300's I've tested without any firewall rules (maybe one or two), so you could try testing to see which rule (or set of rules) is causing the CPU load. Or...
by sirbryan
Sat Dec 09, 2023 11:21 pm
Forum: Containers
Topic: Containers on L009UiGS Topic is solved
Replies: 4
Views: 5373

Re: Containers on L009UiGS Topic is solved

The log says there's no version of the Unifi container that will load on that particular CPU. From https://gist.github.com/jasco/2d39fdc808a1c482ed3c295d0e09c116 : "The instructions for setting up the Unifi Controller on ARM do not cover ARM64. The documentation states that ARM64 is not support...
by sirbryan
Mon Dec 04, 2023 8:12 pm
Forum: Announcements
Topic: v7.13rc [testing] is released!
Replies: 178
Views: 53806

Re: v7.13rc [testing] is released!

Pardon the "me too" post, but I observed an OSPF regression between 7.13Beta 2 and 7.13RC2. The beta ran fine on my home/office CCR2116 for a number of days (a week or two I believe). Loaded the RC for a few minutes (it peers via OSPF and BGP to the core of my ISP network) and adjacencies ...
by sirbryan
Sun Nov 19, 2023 2:55 am
Forum: General
Topic: Multi-WAN Load Balancing Starlink issue
Replies: 99
Views: 14878

Re: Multi-WAN Load Balancing Starlink issue

ZeroTier is Wireguard, with their additional relay tech. And now MikroTik is doing their own thing with Back to Home. I'm not disputing the benefits, especially for the double NAT scenarios you speak of (both ends), where there is no choice but to relay. ZT and BTH make that easy. But I also know my...
by sirbryan
Sun Nov 19, 2023 1:14 am
Forum: General
Topic: Multi-WAN Load Balancing Starlink issue
Replies: 99
Views: 14878

Re: Multi-WAN Load Balancing Starlink issue

Fwiw, ZeroTier is already integrated into ROS v.7. As for remote management, I’d choose ZeroTier anytime over WireGuard but the latter might serve well as backup access. ZeroTier is a great tool/service for automagically creating Wireguard tunnels between peers, especially for management & tele...
by sirbryan
Sat Nov 18, 2023 9:02 pm
Forum: General
Topic: Multi-WAN Load Balancing Starlink issue
Replies: 99
Views: 14878

Re: Multi-WAN Load Balancing Starlink issue

I know I'm coming in on this conversation late, but I'd like to throw in a couple ideas that you can look at once you get Starlink squared away. 1) I would use Wireguard (if possible) for the management VPN. If one end (your office) has a static IP, the remote end(s) (the router(s) behind Starlink) ...
by sirbryan
Sat Nov 18, 2023 8:38 am
Forum: General
Topic: Low WAN Throughput on CRS312 Compared to Direct ISP Connection
Replies: 3
Views: 1027

Re: Low WAN Throughput on CRS312 Compared to Direct ISP Connection

You might have luck by enabling L3HW offload in (webfig/winbox) Switch -> (select the only switch) -> L3 HW offloading. That only works presuming you've followed all the steps in the L3HW offloading documentation. Since you're doing NAT, do not enable it on any of the switch ports too. Otherwise you...
by sirbryan
Fri Nov 17, 2023 6:14 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 96286

Re: v7.13beta [testing] is released!

While I agree with this, there's also a good side to it. I'm thankful for all the people who do run the beta and report issues - I don't have the time to do it - even when they run it in production. It will result in a better final version. Alpha and Beta testing have their place on production netw...
by sirbryan
Thu Nov 16, 2023 6:13 pm
Forum: RouterBOARD hardware
Topic: CRS310-8G+2S+IN USB Port [SOLVED]
Replies: 14
Views: 6964

Re: CRS310-8G+2S+IN USB Port [SOLVED]

The CRS310's CPU is quite a bottleneck for anything but the simplest of tasks. hAP AX3 or RB5009 would be far more powerful (and cost-effective) options for USB3 drive hosting. If you really need some kind of all-in-one solution, CCR1036 and CCR2116 have M.2 slots for PCIe NVME drives, plus plenty o...
by sirbryan
Tue Nov 14, 2023 6:23 pm
Forum: General
Topic: CCR2216 have terrible IO performances, very much worst than CCR10xx! Maybe they have no DMA?
Replies: 31
Views: 4169

Re: CCR2216 have terrible IO performances, very much worst than CCR10xx! Maybe they have no DMA?

In another case, we have a BGP router with Full Internet (and we have around 300.000 connections), so I have some doubts that L3HW work. Until today we didn't have the courage to activate it (also due to bad previous experiences). Anybody have experiences in these cases? L3HW can give some relief w...
by sirbryan
Fri Nov 10, 2023 6:12 pm
Forum: RouterBOARD hardware
Topic: 2.5G PoE Managed switch
Replies: 5
Views: 3935

Re: 2.5G PoE Managed switch

If mikrotik releases a poe variant of the CRS310-8G+2S+IN we will buy hundreds of them. @Normis do you want to share if this might be in the works?

If you open up the new CRS310, you'll see lots of interesting stuff related to POE on the circuit board...

IMG_1262.jpeg
by sirbryan
Wed Nov 08, 2023 4:49 pm
Forum: General
Topic: crs309 poor 10gb performance
Replies: 28
Views: 2884

Re: crs309 poor 10gb performance

Your configuration looks pretty straightforward, i.e. no routing, just switching, which is good. What speeds are the ports reporting? Do they show up as 10G? Are all the devices in the same LAN subnet?
by sirbryan
Fri Nov 03, 2023 5:05 pm
Forum: Wireless Networking
Topic: 60Ghz Sectors
Replies: 10
Views: 3371

Re: 60Ghz Sectors

@gotsprings I haven't used the SA's at this point. I'm using wAP60's and Cube60's as AP's with up to 8 CPE at a time and have over 100 customers deployed on them. Cube 60 Pro's as CPE work very well, along with the older Cubes and LHG's. I use Cubes up to about 500m and LHG60 up to 750m. For redunda...
by sirbryan
Thu Nov 02, 2023 6:34 pm
Forum: RouterBOARD hardware
Topic: CCR2116-12G-4S+ worse performance than CCR2004-1G-12S+2XS?
Replies: 5
Views: 3597

Re: CCR2116-12G-4S+ worse performance than CCR2004-1G-12S+2XS?

Also, the 2004 uses less CPU if the traffic flow goes from the SFP28 to an SFP+ port (or vice versa). And I've noticed the machine on the receiving end (all other things being equal) ends up using more CPU than the sender, at least for TCP.
by sirbryan
Tue Oct 31, 2023 6:24 pm
Forum: RouterBOARD hardware
Topic: Potential Incompatibility CRS3xx and Siklu 10Gbps Radio
Replies: 3
Views: 2843

Re: Potential Incompatibility CRS3xx and Siklu 10Gbps Radio

One of my 8010 links is fiber with FS.com modules into a CRS317 at one end and copper into a UF-RJ45-10G in a CRS309 at the other. The second 8010 link uses a DAC I found on Amazon into a CCR2116 at the mountaintop side, and FS.com modules into a CCR2116 at the data center side. The CRS309 is on 7.7...
by sirbryan
Sun Oct 22, 2023 9:39 pm
Forum: General
Topic: CCR1072 capability as a DHCP server
Replies: 1
Views: 675

Re: CCR1072 capability as a DHCP server

Yes. As strictly a DHCP server, almost anything (including a Raspberry Pi) would work with DHCP relay configured on the routers back to the DHCP server. If you're asking if the 1072 can act as a router for 7000 clients, that's a different story, and depends on how much bandwidth you want to route th...
by sirbryan
Wed Oct 18, 2023 9:41 pm
Forum: Wireless Networking
Topic: W60G as a CPE router?
Replies: 2
Views: 1399

Re: W60G as a CPE router?

If you remove the ethernet ports from the RouterOS bridge, then you can assign IP addresses to the ether1 interface and the radio becomes a router. You can do it on the CPE, the AP, or both. Leave the AP as a bridge (unless you plan to add more CPE) and the CPE side as station bridge, and leave them...
by sirbryan
Wed Oct 11, 2023 6:11 pm
Forum: Beginner Basics
Topic: Simpe Queue Not Limiting Download
Replies: 1
Views: 832

Re: Simpe Queue Not Limiting Download

You have to disable Fasttrack in IP -> Firewall.
by sirbryan
Fri Oct 06, 2023 3:16 am
Forum: Wireless Networking
Topic: Wireless bonding, radio failover
Replies: 1
Views: 1489

Re: Wireless bonding, radio failover

Don't create a bond on the AP side. Set it to AP bridge as well. The CPE side will handle the failover. This is how I do it in PTMP setups, with a wAP 60 AP and an OmniTik 5AC at the AP end. I connect Cube60's and Cube60 Pro's to both AP's, but configure the 60GHz radio as primary in the bond and 5G...
by sirbryan
Tue Oct 03, 2023 9:56 pm
Forum: Beginner Basics
Topic: using starlink to mikrotik without starlink router
Replies: 5
Views: 12959

Re: using starlink to mikrotik without starlink router

If you have the original circle starlink dish, those you could bypass as well, and don't need the ethernet adapter... but still need the router. I have an original Dishy kit and you can use it without the router. You plug your Mikrotik into the white port on the power supply (which is just a fancy/...
by sirbryan
Tue Oct 03, 2023 9:49 pm
Forum: SwOS
Topic: Why does SwOS exist?
Replies: 7
Views: 3890

Re: Why does SwOS exist?

  1. Because some people don't like or need the complexity of RouterOS's bridge/VLAN configuration
  2. Because there are a few smaller chips they use that don't have the capacity to run RouterOS, but make a great platform for creating cost-effective switches
by sirbryan
Mon Oct 02, 2023 6:45 pm
Forum: General
Topic: Why are there no production-grade L3 switches from MikroTik in 2023?
Replies: 26
Views: 5072

Re: Why are there no production-grade L3 switches from MikroTik in 2023?

Yeah, like I care about what some random dude on the internet thinks about it. You can think what you want, we're never crossing paths in real life, I never worked with and will never work with Latin America network operations, mainly due to financial issues in your region, compared to North Americ...
by sirbryan
Mon Oct 02, 2023 12:51 am
Forum: Announcements
Topic: v7.12beta [testing] is released!
Replies: 263
Views: 128111

Re: v7.12beta [testing] is released!

I can confirm it is the same on CCR2216, although the CLI command still works, so it looks like it's some sort of web ui specific issue.
Yeah, support acknowledged it as well. I did what I needed to with the CLI, but wanted to report it here.
by sirbryan
Fri Sep 29, 2023 11:25 am
Forum: Announcements
Topic: v7.12beta [testing] is released!
Replies: 263
Views: 128111

Re: v7.12beta [testing] is released!

I opened a support ticket [SUP-129558], but I'm going to post it here, too. On both builds 7 and 9, when attempting to add any kind of dynamic interface (bridge, VLAN, bonds, IPIP/EOIP tunnels, etc.) from within Webfig, I get an error that the interface type is not supported. Screenshot 2023-09-29 a...
by sirbryan
Thu Sep 28, 2023 7:21 pm
Forum: RouterBOARD hardware
Topic: 2-pin plug type for RB5009UG+S+IN ?
Replies: 9
Views: 3011

Re: 2-pin plug type for RB5009UG+S+IN ?

It's included/installed at the factory for rack-mount versions, and included in the kit of screws and mounting hardware for the outdoor version. Phoenix Contact part number MC 1,5/ 2-ST1-5,08 - PCB connector (1900772). It's a 5.08mm pitch 2-position Mini COMBICON (MC) connector. https://www.phoenixc...
by sirbryan
Sat Sep 23, 2023 1:36 am
Forum: Wireless Networking
Topic: Cube alignment acceptable?
Replies: 5
Views: 2072

Re: Cube alignment acceptable?

It says it's off by 5 degrees. How did you align them? At 78m you should be in the -40's or higher, not -60's.

Personally, I place my phone against the face of the Cube and center it on the remote end.
by sirbryan
Tue Sep 19, 2023 4:37 am
Forum: SwOS
Topic: SWOS and CRS-310-1G-5S-4S-1N - Newbie!
Replies: 7
Views: 5371

Re: SWOS and CRS-310-1G-5S-4S-1N - Newbie!

Somebody doesn't know that RouterOS pushes switching (and now Layer 3 routing) to the switch CPU. I have several of these in production routing (and switching) traffic at wire speed.
by sirbryan
Wed Sep 13, 2023 6:05 pm
Forum: Announcements
Topic: Newsletter #114 | September 2023
Replies: 72
Views: 16190

Re: Newsletter #114 | September 2023

If you had an option to switch between 2-pair or 4-pair passive POE, then you could feed the switch with 27V and still run AirMax/MikroTik 24V devices alongside LTU, Wave, etc.
by sirbryan
Tue Sep 12, 2023 4:30 pm
Forum: Forwarding Protocols
Topic: CRS309: packets go via the wrong gateway (OSPF)
Replies: 4
Views: 2140

Re: CRS309: packets go via the wrong gateway (OSPF)

I had issues with 7.11.2 on my CCR2116; had to back it off to 7.11. My CRS310/318's are running 7.10, and my CRS317 and 2216's are on 7.11. Whenever I have issues with L3HW offload, even for devices that have been running for hours or months, I end up bouncing it just to ensure it transfers everythi...
by sirbryan
Tue Sep 12, 2023 6:44 am
Forum: RouterBOARD hardware
Topic: Product suggestion: 10Gbps router in CRS310 form factor
Replies: 4
Views: 3638

Re: Product suggestion: 10Gbps router in CRS310 form factor

I have a hard time seeing the problem you're trying to solve. You could set up the RB5009 with a CRS3XX in a router-on-a-stick configuration, with the RB5009's CPU handling the Internet and VPN traffic, and the CRS3XX handling inter-VLAN traffic and switching. One of the CRS3XX's SFP+ ports would go...
by sirbryan
Mon Sep 11, 2023 7:01 pm
Forum: Announcements
Topic: Newsletter #114 | September 2023
Replies: 72
Views: 16190

Re: Newsletter #114 | September 2023

Can you guys clarify the use case of 2.5G ports but with PoE output? I thought this kind of switch was great for high end PC's, not for plugging in more routers? Access points. Indoor and outdoor. Indoor you've got new WiFi 6 AP's that have 2.5G ports and more powerful radios. Outdoors, as mentione...
by sirbryan
Mon Sep 11, 2023 6:42 pm
Forum: Forwarding Protocols
Topic: CRS309: packets go via the wrong gateway (OSPF)
Replies: 4
Views: 2140

Re: CRS309: packets go via the wrong gateway (OSPF)

What version are you running? Have you disabled/enabled L3HW offload after you added all the VLAN interfaces and IP addresses? Whenever my CRS300's stop routing properly, I have to disable/enable L3HW offload on the switch to get it to resync the bridge and routing tables from the CPU to the switch ...
by sirbryan
Fri Sep 08, 2023 6:41 pm
Forum: Forwarding Protocols
Topic: L3HWoffloading
Replies: 1
Views: 1955

Re: L3HWoffloading

VPN traffic is handled by the CPU, not by the ASICs. Many of the CPU's have encryption acceleration, so in this case you want the CPU to take that load.
by sirbryan
Wed Sep 06, 2023 5:16 pm
Forum: General
Topic: HW3 CCR 2116 Problem
Replies: 9
Views: 1555

Re: HW3 CCR 2116 Problem

I have this exact same setup. For L3HW offload to work properly (for any CRS3xx or CCR2xxx device): There must only be one bridge on the switch, and all VLANs must belong to it. VLANs cannot belong to ports. All ports participating in switching (or routing between VLANs) must belong to that bridge. ...
by sirbryan
Tue Sep 05, 2023 5:29 pm
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 168649

Re: v7.11, 7.11.1 and more [stable] are released!

I upgraded one partition of my CCR2116 office router from 7.11 to 7.11.2 and OSPF had all kinds of issues keeping adjacencies with a couple of its peers (via VLAN interfaces) and so half of the network's routing table was missing or not installed properly. (Log was full of OSPF up/down entries). I'm...
by sirbryan
Tue Aug 08, 2023 4:47 pm
Forum: Announcements
Topic: v7.11rc is released!
Replies: 195
Views: 50967

Re: v7.11rc is released!

(OT) I like how Ubiquiti has configured their forum software to accept private uploads on the first post of a thread. Well, I HATE that and I refuse to use it! My point is less about the means or methods, and more about the idea that the issues and feedback are exposed to both internal and external...
by sirbryan
Mon Aug 07, 2023 7:22 pm
Forum: Announcements
Topic: v7.11rc is released!
Replies: 195
Views: 50967

Re: v7.11rc is released!

(OT) I like how Ubiquiti has configured their forum software to accept private uploads on the first post of a thread. This allows both the support teams to get the files they need, as well as allowing other members of the community to see that a particular issue has been reported. Others can then pi...
by sirbryan
Sat Aug 05, 2023 6:33 am
Forum: Announcements
Topic: v7.11rc is released!
Replies: 195
Views: 50967

Re: v7.11rc is released!

7.11rc2 broke iBGP for my office CCR2116 as an rr-client to my two RR's (2011's running 7.10rc4). It was working on 7.11b6 and 7.11rc1. Fortunately I had 7.11b6 saved to disk. Unfortunately there's not a way to get 7.11rc1 back from the website.
by sirbryan
Fri Aug 04, 2023 6:26 am
Forum: General
Topic: Multiple bridge with only one bridge hardware offloaded possible?
Replies: 3
Views: 1499

Re: Multiple bridge with only one bridge hardware offloaded possible?

I have a second bridge used as "loopback0" on all of my CRS300 switches and CCR2116's. All switch ports belong to "bridge", meaning no ports belong to "loopback0". L2 switching, CPU routing, and L3HW offload all work fine on all of them. I think the undefined behavior c...
by sirbryan
Thu Aug 03, 2023 2:01 am
Forum: Announcements
Topic: v7.11rc is released!
Replies: 195
Views: 50967

Re: BUG: 9000 byte MTU not working on bridge vlan

I upgraded a RB4011iGS+5HacQ2HnD to 7.11rc1 and MTU's were no longer being applied to vlans on a bridge, they were all at 1500. Rolling back to 7.10, the MTUs were correctly set. It looks like this has been broken for a while, and I didn't notice. I have played around with it a bit, and it looks li...
by sirbryan
Fri Jul 28, 2023 6:54 pm
Forum: RouterBOARD hardware
Topic: CCR 2116 STORAGE ISSUE
Replies: 4
Views: 2992

Re: CCR 2116 STORAGE ISSUE

Is it an NVMe SSD in an M.2 form factor?
by sirbryan
Fri Jul 28, 2023 6:52 pm
Forum: Announcements
Topic: v7.10, 7.10.1 and more [stable] are released!
Replies: 366
Views: 132992

Re: v7.10, 7.10.1 and more [stable] are released!

I upgraded one of our BGP core router : a CCR1072 to 7.10.2 (included firmware) and the situation was problematic. All CPUs continuously going from 60 to 100% utilization. Anecdotally, when I loaded down a couple of my 7.10 CCR2116's using a 10Gbps speed test after having just inserted over 300K ro...
by sirbryan
Fri Jul 28, 2023 6:44 pm
Forum: RouterOS beta
Topic: v7 CRS2116 IP-routing stuck after router generates autosupout.rif
Replies: 6
Views: 2923

Re: v7 CRS2116 IP-routing stuck after router generates autosupout.rif

Another CCR2116 device running a full BGP table on 7.10 is causing sluggishness with 100% load on one CPU after enabling an input route filter. Has this issue been fixed using 7.11b5 or newer? What's the filter? I've got three inbound filters and they work fine: if (dst in 0.0.0.0/0 && dst-...
by sirbryan
Fri Jul 28, 2023 6:37 pm
Forum: RouterBOARD hardware
Topic: 60GHz behavior
Replies: 4
Views: 3911

Re: 60GHz behavior

6.49.x has been the best for me on 60GHz. 7.10 has fixes for 802.11ay devices, but I've seen little to no difference for the original 802.11ad devices. (I have half my AP's on 7.10 and half on 6.49.x). The drops most often occur due to low signal levels, interference, reflections/multipath, and, of ...
by sirbryan
Fri Jul 28, 2023 6:22 pm
Forum: Beginner Basics
Topic: Router OS on MikroTikWirelessWire (WinBox)
Replies: 1
Views: 831

Re: Router OS on MikroTikWirelessWire (WinBox)

What happens if you change it via the web interface (webfig) instead of Winbox? I have over a hundred 60GHz radios (wAP 60, LHG 60) in service and haven't seen this issue, but then I'm always managing them via Webfig. ROS versions range from 6.47 to 7.10.
by sirbryan
Fri Jul 28, 2023 6:18 pm
Forum: RouterBOARD hardware
Topic: CCR 2116 STORAGE ISSUE
Replies: 4
Views: 2992

Re: CCR 2116 STORAGE ISSUE

Yes. The CCR2116 is designed to support NVME M.2 SSD's. I have several such setups and they work beautifully.
by sirbryan
Thu Jul 27, 2023 5:36 pm
Forum: RouterOS beta
Topic: v7 CRS2116 IP-routing stuck after router generates autosupout.rif
Replies: 6
Views: 2923

Re: v7 CRS2116 IP-routing stuck after router generates autosupout.rif

I found issues with full BGP tables and high throughput causing sluggishness etc. on 7.10. I loaded 7.11b5 the other day (or 6, whatever the version was before the 24th) and I saw significant improvements in my 2116's. You might give that a try.
by sirbryan
Fri Jul 21, 2023 6:46 am
Forum: General
Topic: Troubles with VRRP on VLANs
Replies: 5
Views: 913

Re: Troubles with VRRP on VLANs

On the 2216's I manage, RTSP is enabled, VLAN filtering is enabled on the bridge, with the EtherType set to 0x8100. PVID on bridge and on connected ports is 1, and Frame Types is set to "all" on both as well. Priority of both bridges is also identical.
by sirbryan
Fri Jul 21, 2023 6:44 am
Forum: General
Topic: Troubles with VRRP on VLANs
Replies: 5
Views: 913

Re: Troubles with VRRP on VLANs

What does your bridge, bridge VLAN, and port/connectivity look like? Is VLAN filtering enabled on the bridge, and what is the EtherType for the bridge?
by sirbryan
Wed Jul 19, 2023 5:52 pm
Forum: Forwarding Protocols
Topic: BGP full table routing on CCR2xxx with route filters
Replies: 5
Views: 3196

Re: BGP full table routing on CCR2xxx with route filters

What is the affinity set at? Should be "alone" and "alone" (which puts BGP processes on their own core). Also, what is your filter? A list of dozens of bogons, or a regex of some kind? I've got a couple of 2116's pulling in full tables and filtering out everything beyond a single...
by sirbryan
Tue Jul 18, 2023 5:40 pm
Forum: Announcements
Topic: v7.10, 7.10.1 and more [stable] are released!
Replies: 366
Views: 132992

Re: v7.10, 7.10.1 and more [stable] are released!

Ok... I do not use MPLS. But I think that the priority with v7 should have been to make everything work at least as well as it did in v6. But it seems they got carried away in implementing new features (probably requested by important customers) before finishing that. I think some of the new featur...
by sirbryan
Tue Jul 18, 2023 5:28 pm
Forum: Announcements
Topic: v7.11beta [testing] is released!
Replies: 373
Views: 109307

Re: v7.11beta [testing] is released!

Unless there are some other tricks in FT or /interface/wifiwave2/steering we need option to change minimum rates so we can improve roaming decisions made by clients. Reason im asking for this because my devices get stuck for days on 2ghz even if im 1m from AP, on other WIFI6 vendor APs this just wo...
by sirbryan
Tue Jul 18, 2023 5:20 pm
Forum: General
Topic: QoS Hardware Offloading (QoS-HW)
Replies: 74
Views: 15662

Re: QoS Hardware Offloading (QoS-HW)

L3HW offload has to be enabled on the switch before enabling it on the ports makes any difference. If it's not enabled at the switch level, then none of the HW QoS marking will apply.
by sirbryan
Wed Jul 12, 2023 7:10 pm
Forum: Announcements
Topic: v7.11beta [testing] is released!
Replies: 373
Views: 109307

Re: v7.11beta [testing] is released!

@normis What are the chances that the relay server could be self-hosted, i.e. for service providers? For example, I have a lot of customers with hAP's behind CGNAT. If I could host a relay on a CHR or CCR2116, their app/device could be configured to use that relay, which then forwards their tunnels ...
by sirbryan
Wed Jun 28, 2023 8:04 pm
Forum: Wireless Networking
Topic: Any w60g improvements still planned?
Replies: 10
Views: 2648

Re: Any w60g improvements still planned?

There was a lot of hype about Terragraph a few years ago. Today 802.11ay devices still limited to 8 stations per AP and still no mesh capablities while Cambium and IgniteNet already have shipping products. I can't speak for MikroTik's plans with 802.11ay devices, but as long as they make stuff usin...
by sirbryan
Thu Jun 15, 2023 11:56 am
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 55395

Re: v7.10rc is released!

FYI, and also reported via support, the new date/timestamp is off (behind) by one day. With all clocks synced via NTP, the date is showing as yesterday on all devices upgraded to 7.10rcX, both on logs and under System/Clock.
by sirbryan
Thu Jun 15, 2023 11:54 am
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 55395

Re: v7.10rc is released!

Then they added "Use BFD" flag to OSPF in Webfig (7.10rc6). That is not written in the change log, just: !) route - added BFD; Same as in 7.10rc3 I know that, which is why I shared what I noticed in each of those releases where something related to BFD was changed. Whoever updated the cha...
by sirbryan
Thu Jun 15, 2023 6:23 am
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 55395

Re: v7.10rc is released!

Same with: 7.10beta8 added BFD (CLI only) 7.10rc1 added BFD (CLI only) Not sure why MT repeat the same stuff in various releases. But I guess: !) route - added BFD; is telling that its also added to gui. But why two times? They added BFD to CLI for BGP first (7.10b8). Then they added BFD via CLI fo...
by sirbryan
Tue Jun 13, 2023 5:55 am
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 55395

Re: v7.10rc is released!

Please revert to the old WebFig Style or at least give the user the choice. - The new one is confusing - Everything needs more clicks. - Traffic stats now have the size of a stamp - There is no (really, 0) advantage - The width of columns is not saved which is annoying. I agree 100% I trust there m...
by sirbryan
Wed Jun 07, 2023 10:32 pm
Forum: RouterBOARD hardware
Topic: Long term effects of SSD HDD connected to 5009 router?
Replies: 26
Views: 5213

Re: Long term effects of SSD HDD connected to 5009 router?

I have successfully connected a hub and a couple of drives to a 5009 or 2004. If the drives weren't bad in the first place (which turned out to be the case for a couple), they came right up. So ROS handles multiple drives without an issue.
by sirbryan
Wed Jun 07, 2023 2:30 pm
Forum: RouterOS beta
Topic: v7 and BFD, any ETA?
Replies: 150
Views: 29538

Re: v7 and BFD, any ETA?

Much thanks to the MikroTik team for getting this implemented. I've been running BFD for a while via CLI and was pleased to see it added to the GUIs. I have a handful of 2116's running BGP + OSPF to each other and they've all been solid for the past week or so.
by sirbryan
Tue Jun 06, 2023 4:25 am
Forum: General
Topic: Wan switch with CoDel/cake SQM?
Replies: 1
Views: 783

Re: Wan switch with CoDel/cake SQM?

What you want would have to pass through a CPU. hAP AX3 has a 2.5Gbps uplink port and four gigabit ports, with a quad-core ARM64 CPU. It should handle Cake/FQ-Codel on the interfaces pretty easily. Next up would be RB5009, with SFP+ and 2.5Gbps ports, similar quad-core ARM64 CPU, but capable of rout...
by sirbryan
Thu Jun 01, 2023 5:54 pm
Forum: General
Topic: Media converter for 2.5G
Replies: 4
Views: 796

Re: Media converter for 2.5G

A CSS610-8G-2S+IN would probably be your best bet. It has two SFP+ ports you could use with a fiber module in one and a copper module (S+RJ10) in the second one, to hand off to AX3 (and eight copper gigabit ports to hand off to anything else if you want). For it's price, it's not a bad deal compared...
by sirbryan
Mon May 29, 2023 5:17 pm
Forum: General
Topic: Is running OSPF on Campus Network Overkill?
Replies: 3
Views: 664

Re: Is running OSPF on Campus Network Overkill?

It depends on your objectives. It also depends on factors such as throughput to the ISP's, whether you're currently running BGP with them, if you're NATting anywhere, etc. OSPF alone, when configured correctly, will ensure each router's path to the next one will take the shortest path, and if one (o...
by sirbryan
Sat May 27, 2023 1:06 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

@antonsb It would be nice to know why they dropped, if that's possible to glean from the driver (example: signal too weak, stopped transmitting, too many errors, etc.). Perhaps the AP and/or the station could also log the last known signal level as they leave. I have loaded this onto a number of wAP...
by sirbryan
Thu May 25, 2023 12:11 am
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 54449

Re: v7.10beta [testing] is released!

OK, so after updating several routers to 7.9.1 during tonight's maintenance window, and then losing two AF60LR's this morning to a bad/failed firmware update procedure, I had to use my phone while in the field to get the replacement Wave LR's online. The routers at the two sites involved in the outa...
by sirbryan
Wed May 24, 2023 1:38 pm
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 54449

Re: v7.10beta [testing] is released!

But because comments are now inline, I have no choice but to widen my browser to see longer comments. The problem isn't a matter of taste when comments exceed 10-15 chars. It's a matter of usability/readability. Why do you have "no choice to widen"? Does this mouse-hover not work in your ...
by sirbryan
Wed May 24, 2023 11:02 am
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 54449

Re: v7.10beta [testing] is released!

As you can see from other commenters, who like it ... This is a matter of taste. How is "left aligned" in your big monitor not wasting space, but centering is wasting space? It is the same amount of wasted space, just in a different place. Do not use webfig in a maximised window on a ultr...
by sirbryan
Tue May 23, 2023 6:57 am
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 1027
Views: 1151748

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Ran a couple IPV4 tests from my 2116 in a data center in Utah on HE.net (10Gbps pipe). TCP hovers around 1Gbps, as high as 1400Mbps. CPU load on the 2116 is pretty minimal compared to the CHR. With UDP I'm able to saturate the full 4Gbps, smacking your CHR's CPU in the face at 100%, while the 2116 m...
by sirbryan
Mon May 22, 2023 4:34 pm
Forum: Announcements
Topic: v7.9.1 [stable] is released!
Replies: 59
Views: 19071

Re: v7.9.1 [stable] is released!

Bug in webfig still persists: Toggle WiFi Interface off, then on. It stays greyed out even if it got enabled. This applies to all toggable rows in any config area.
This is also present in 7.10b. Just noticed this the other day after upgrading a couple routers to 7.9.
by sirbryan
Thu May 18, 2023 12:36 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

You're unlikely to get that kind of detail. It's most likely some kind of driver update or tweak at a really low level. I loaded it on some of my lightly-loaded AP's a couple hours ago and so far haven't seen the same kind of split-second disconnects I'm used to seeing. So now I'm loading it up acro...
by sirbryan
Thu May 18, 2023 4:12 am
Forum: General
Topic: OSPF fast timers bug?
Replies: 4
Views: 962

Re: OSPF fast timers bug?

I posted a reply on Facebook, but try slightly altering your timers. For example, I have hello at 1s and dead at 4s.
by sirbryan
Tue May 16, 2023 5:18 pm
Forum: Beginner Basics
Topic: RouterOS as switch and as a router in parallel [SOLVED]
Replies: 3
Views: 937

Re: RouterOS as switch and as a router in parallel [SOLVED]

Your best bet (performance-wise) is to: Put them all into the same bridge. Your LACP config seems to be correct already. Create two (or more) VLANs, one for the first group of ports, one for the second group (your IPMI ports). (Or just create one VLAN for the IPMI ports and leave the others unassign...
by sirbryan
Mon May 15, 2023 11:01 pm
Forum: Beginner Basics
Topic: wap 60gx3 ap + Cube 60G ac wifi area
Replies: 3
Views: 889

Re: wap 60gx3 ap + Cube 60G ac wifi area

If you can't get them to connect in the first place, try placing the wAP 60 x3 on a non-metallic mast or pole, or use a plastic bracket like the ones MikroTik makes to get the antennas (they're in the top 25mm of the box) away from the metal. I had issues when I swapped a couple wAP 60's with wAP 60...
by sirbryan
Mon May 15, 2023 10:38 pm
Forum: Wireless Networking
Topic: hAP AX3 slow SMB transfers with MacOS and Apple TV
Replies: 52
Views: 8976

Re: hAP AX3 slow SMB transfers with MacOS and Apple TV

SMB containers work very well. ROSE with NFS also works well. I haven't tried ROSE SMB yet on macOS since they improved it (7.9/7.10) but look forward to doing so.
by sirbryan
Thu May 11, 2023 10:24 pm
Forum: Wireless Networking
Topic: UNII-4 channels priority after 7.8
Replies: 5
Views: 1437

Re: UNII-4 channels priority after 7.8

Tell that to the average home user who buys an AX2.

I think a good default (for the next year or so) would be to leave UNII-4 out of the "auto" or default config mix.
by sirbryan
Wed May 10, 2023 6:53 pm
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 54449

Re: v7.10beta [testing] is released!

I do like the attempt to clean up/modernize Webfig. I've used Webfig almost exclusively for the past three years because it's 1) universally accessible and 2) I can get to and see all the settings in one place, unlike Winbox, where it takes more effort to see/change information & settings. Since...
by sirbryan
Fri May 05, 2023 1:31 pm
Forum: RouterBOARD hardware
Topic: CCR2116 L3HW offloading and loopback interfaces?
Replies: 2
Views: 2456

Re: CCR2116 L3HW offloading and loopback interfaces?

I have additional bridges for loopback purposes on multiple CCR2116's and CRS300's and it doesn't seem to affect L3HW offload. This is probably because they don't have any physical interfaces associated with them, so there's nothing there to confuse the offload process.
by sirbryan
Wed May 03, 2023 8:05 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 56754

Re: v7.9 [stable] is released!

I'd love being able to at least choose the old behavior and having the comments on a different line instead of inline. The previous form of comments on a separated line wasted way more screen space. And the default column width is quite narrow, but you can still decrease it. If your comments are sh...
by sirbryan
Wed May 03, 2023 1:11 am
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 56754

Re: v7.9 [stable] is released!

Being a person that uses the webfig much more than winbox, this change: Why? Genuinely curious as to why anyone would use WebFig over Winbox if they have the option to use Winbox. I use the web interface from multiple Macs and my iPhone all day long. Winbox has its place, but can be finicky at time...
by sirbryan
Fri Apr 28, 2023 9:20 pm
Forum: RouterOS beta
Topic: Using WifiWave2 to bridge two Audience wirelessly, thoughts? == 4-address mode
Replies: 56
Views: 24495

Re: Using WifiWave2 to bridge two Audience wirelessly, thoughts?

Summary is a VXLAN does work. And, yes, it does get unnecessarily fragmented but "works" nonetheless. Basically you (from a winbox POV): - take wifi2 out of bridge on both - one becomes get set to "station", other remains "ap" - set SSID "AX 2488 Mesh" on bot...
by sirbryan
Fri Apr 28, 2023 10:33 am
Forum: Wireless Networking
Topic: hAP ax3 preventing buyers remorse
Replies: 57
Views: 10905

Re: hAP ax3 preventing buyers remorse

@sirbryan can you share partially your config ? I have created on a AX 3: cfg1 for wlan1 (5ghz) cfg2 for wlan2 (2ghz). that is pretty default, only the DFS channels set to 10min on wlan1 and to ALL to wlan2 I start with the defaults, add a management VLAN to the WAN port and associated firewall rul...
by sirbryan
Thu Apr 27, 2023 5:21 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 77853

Re: v7.9rc is released!

Being a person that uses the webfig much more than winbox, this change: . *) webfig - added inline comments; . is terrible. I'd love being able to at least choose the old behavior and having the comments on a different line instead of inline. Please consider having this as an option and not fixed i...
by sirbryan
Thu Apr 27, 2023 5:08 pm
Forum: General
Topic: CCR2216 - L3HW unusable at >10Gbit/s
Replies: 3
Views: 479

Re: CCR2216 - L3HW unusable at >10Gbit/s

On my CCR2116s, L3HW offload wasn't working at all on 7.8. I had to revert them to 7.7.
by sirbryan
Wed Apr 26, 2023 4:09 pm
Forum: Wireless Networking
Topic: hAP ax3 preventing buyers remorse
Replies: 57
Views: 10905

Re: hAP ax3 preventing buyers remorse

I have probably over a dozen AX3's installed in customer homes by now, with 2-3x that for AC3 and hundreds of AC2. What you're seeing posted here comes from a lot of tinkerers trying to do everything they can on an AX3, certainly not combinations MikroTik has test cases for. I have received zero com...
by sirbryan
Wed Apr 26, 2023 5:45 am
Forum: Wireless Networking
Topic: Please help me choose between hap ax2 and ax3 as access points [SOLVED]
Replies: 57
Views: 21015

Re: Please help me choose between hap ax2 and ax3 as access points [SOLVED]

Saw the topic and just had to come to say this:

Get the AX3.
by sirbryan
Tue Apr 25, 2023 6:57 pm
Forum: RouterBOARD hardware
Topic: Replacements for the CCR1036 and CCR1009 Mikrotik Router models
Replies: 2
Views: 2679

Re: Replacements for the CCR1036 and CCR1009 Mikrotik Router models

MikroTik has suggested the CCR2004 as a replacement for the CCR1009. (The RB4011 and RB5009 also would foot the bill in all honesty.)

The CCR2116 is a good trade for the CCR1036.
by sirbryan
Sun Apr 23, 2023 1:43 pm
Forum: General
Topic: ccr2116 nvme format crashes router
Replies: 4
Views: 757

Re: ccr2116 nvme format crashes router

I want to say I saw this too when trying to format individual partitions, but formatting the whole disk (without a partition table) worked fine. I don't remember the exact details, other than the fact that partitions were the culprit.
by sirbryan
Sun Apr 23, 2023 1:38 pm
Forum: General
Topic: how does L3HW actually works?
Replies: 128
Views: 34228

Re: how does L3HW actually works?

If I configure radius accounting will RouterOS be able to get the bits per lease back from the switch chip and pass it up the stack to the radius client or will I just stop seeing radius accounting data when hardware is abled, or will it simply revert back to the CPU? Also, I'm assuming if I assign...
by sirbryan
Fri Apr 21, 2023 12:38 pm
Forum: Wireless Networking
Topic: Getting half of my Internet speed on Wifi
Replies: 20
Views: 6917

Re: Getting half of my Internet speed on Wifi

The need for speed... I still don't get it. Why is good enough never good enough ? It's less about the "speed" and more about the amount of data transmitted in a given window of time, thus maximizing the efficiency of the medium. And it's not always about having full access to all of your...
by sirbryan
Thu Apr 20, 2023 6:55 pm
Forum: Wireless Networking
Topic: Getting half of my Internet speed on Wifi
Replies: 20
Views: 6917

Re: Getting half of my Internet speed on Wifi

Anecdotally, after installing hundreds of hAP AC2 and AC3, and now some AX3's: All tests run with iPhone 11 Pro and M1 13" MacBook Pro (both 802.11ax capable). I typically max out at around 300Mbps on stock AC drivers (6 & 7), but have seen as high as 450 on upload. If I upgrade the drivers...
by sirbryan
Wed Apr 19, 2023 7:28 pm
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 143390

Re: v7.8 [stable] is released!

"Considerably slower" is relative to the hardware. My ARM, ARM64, and Tile boxes have seen significant improvements. Under 6.48.x my CCR1036 was showing 2-3% on 2Gbps of traffic. Now it shows 0% on the same traffic. ARM64 devices will see an improvement because they're not running 32-bit s...
by sirbryan
Wed Apr 19, 2023 7:09 pm
Forum: General
Topic: RouterOS on a CCR2004-1G-12S+2XS vs. VyOS on a SuperMicro SuperServer with 4 x 10 GBit Ethernet
Replies: 8
Views: 1821

Re: RouterOS on a CCR2004-1G-12S+2XS vs. VyOS on a SuperMicro SuperServer with 4 x 10 GBit Ethernet

The 2004 will be fine for 1Gbps with NAT for a home router, but it won't switch at wirespeed. Everything will be bridged through the CPU. On the bench, I got about 20Gbps bridged through the CPU and the CPU got up to 95%. So unless you're planning to max out the 10G ports all the time, it'll be fine...
by sirbryan
Mon Apr 17, 2023 6:09 pm
Forum: Wireless Networking
Topic: 2 gig to 10 gig wireless link for short distances (50 meters) between buildings
Replies: 9
Views: 1985

Re: 2 gig to 10 gig wireless link for short distances (50 meters) between buildings

Or MikroTik could develop a new product using the same Peraso chip as Tachyon and Ubiquiti, but with RouterOS under the hood. Each endpoint could be routed if you wanted, which would work very nicely for PTMP backhaul. With an LHG version for CPE, they could go a bit further than Tachyon and yet uti...
by sirbryan
Sun Apr 16, 2023 6:05 am
Forum: General
Topic: A very simple redirect (to an http page) after join WiFi
Replies: 38
Views: 7199

Re: A very simple redirect (to an http page) after join WiFi

This would be nice as an ISP to be able to push this DHCP option to managed routers, having them redirect to a server on the network that reminds them they are overdue on payment, or to advise them of an outage, etc. Good find on NodeRED.

And boo to all the container nay-sayers. :D
by sirbryan
Sun Apr 16, 2023 6:03 am
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 143390

Re: v7.8 [stable] is released!

Sometimes you have to force refresh your browser's cache. There are subtle differences between the versions of Webfig. Other times I've found with certain devices on my network (for whatever unknown reason), I have to reload/refresh the page to get routes (or DHCP leases, or other large tables) to l...
by sirbryan
Fri Apr 14, 2023 3:02 am
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 12686

Re: Newsletter #112 | April 2023

If it can't, can the mikrotik Poe splitters be used in reverse? And then I connect the DC side to it According to docs, POE out on RB5009-power only works if source is 2-pin (maybe DC jack too). POE-in is for router only. But yes, you could take an injector, cut the DC plug off, and feed the wires ...
by sirbryan
Fri Apr 14, 2023 2:43 am
Forum: General
Topic: Which is Faster - RouterOS or SwitchOS
Replies: 8
Views: 2662

Re: Which is Faster - RouterOS or SwitchOS

Switches move traffic around at wire speed because of the switch chip (ASIC), provided they are configured correctly (one bridge, all ports in the bridge, VLAN filtering enabled and VLANs assigned to their respective ports). The CPU should show hardly any usage except when you browse into it, run te...
by sirbryan
Thu Apr 13, 2023 6:29 pm
Forum: General
Topic: Poor bandwidth (high cpu usage) switching between CRS305 and CRS317 [SOLVED]
Replies: 2
Views: 796

Re: Poor bandwidth (high cpu usage) switching between CRS305 and CRS317 [SOLVED]

Yeah, the CPU's of those things can barely handle 1Gbps of routing, let alone generating/receiving a speed test.
by sirbryan
Wed Apr 12, 2023 8:14 pm
Forum: General
Topic: [SOLVED] Extremely low bandwidth in SFP28 / MLAG setup [SOLVED]
Replies: 4
Views: 1149

Re: [SOLVED] Extremely low bandwidth in SFP28 / MLAG setup [SOLVED]

Only one bridge can belong to the hardware switch. Additional bridges are all routed through the CPU, which explains the slower speeds. Yes, in this scenario, individual LAG (LACP) ports need to be removed from the bridge, added to the LAG, and the LAG (LACP bond) needs to be added to the bridge. Th...
by sirbryan
Wed Apr 12, 2023 8:10 pm
Forum: Forwarding Protocols
Topic: I had to ask...
Replies: 2
Views: 2010

Re: I had to ask...

If you know the IP's they're advertising, you could mark all packets to/from their netblocks and queue based on that mark, or queue based on the source/destination IP's directly.

There might be a fancier way of mangling using BGP filters and/or attributes, too, in RouterOS 7.
by sirbryan
Tue Apr 11, 2023 6:41 am
Forum: General
Topic: CCR1036-2S+ PPPOE-SERVER 600 users fiber with wifi-speed issues on wifi6
Replies: 4
Views: 1360

Re: CCR1036-2S+ PPPOE-SERVER 600 users fiber with wifi-speed issues on wifi6

There are significant improvements for Tile CPU's in 7.x that may help improve things, if you haven't already upgraded. My CPU on just plain routing 2.5Gbps went from 3% to 0% utilization. I imagine if you are shaping, then fq-codel will be CPU friendly and pretty effective. I don't do any PPPoE, so...
by sirbryan
Mon Apr 10, 2023 9:07 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

Looks good. The only thing I'd personally do is to bolt the radio higher up on the tilt mount so there's zero metal behind the patches (the top inch or two).

I've never locked the sectors on any radios. And I likewise haven't noticed any difference with mdmg fix enabled.
by sirbryan
Fri Apr 07, 2023 8:29 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

Use the QME/QMP mount for the wAP shaped devices. Put the included metal bracket right up flust with the top of the mount so the top of the wAP is above it when it's clicked into the bracket. This is dramatically better than direct to a pole of any kind, even a wood pole. Noticed the issue putting ...
by sirbryan
Fri Apr 07, 2023 4:41 pm
Forum: Wireless Networking
Topic: 2 gig to 10 gig wireless link for short distances (50 meters) between buildings
Replies: 9
Views: 1985

Re: 2 gig to 10 gig wireless link for short distances (50 meters) between buildings

I am looking for a 2 gig to 10 gig wireless link for short distances (50 meters) between buildings so we do not have to trench and run fiber. Ubiquiti has several 60GHz options. AF60HD - 2-3Gbps aggregate up to 6Gbps aggregate (3Gbps each way "full duplex") ~ $360 apiece (your best option...
by sirbryan
Fri Apr 07, 2023 4:16 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

Hi, which beta can I test for more stable w60g ptmp? I have a lot of trouble stabilizing wap60gx3 with three Cube60gAC attached. Using fw 6.49. Thanks! How is your wAP60gx3 mounted? I found they don't work when mounted on a metal pipe/mast/pole/wall. The signal leaks out through the back enough tha...
by sirbryan
Thu Apr 06, 2023 6:49 am
Forum: Forwarding Protocols
Topic: ROS7 and IPv6 route reflection [solved]
Replies: 6
Views: 2950

Re: ROS7 and IPv6 route reflection

You do have an explicit accept rule in the filters, correct? Does it show any routes are being filtered (/routing/route/print, look for F in front of the routes)? Do the clients show that they are advertising any routes (/routing/bgp/advertisements print where dst in 2000::/3)?
by sirbryan
Wed Apr 05, 2023 6:47 pm
Forum: General
Topic: L3HW on a switch [SOLVED]
Replies: 13
Views: 1715

Re: L3HW on a switch [SOLVED]

Are you on 7.8? I had issues with L3HW offload on 7.8 on some 2116's this morning, but it works on my CRS310's. My 317 is on 7.7 and it works very well. I haven't tried 7.8 on it yet.
by sirbryan
Wed Apr 05, 2023 1:26 pm
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 143390

Re: v7.8 [stable] is released!

L3HW offload on CCR2116 doesn't seem to work on 7.8. Reverting back to 7.7 fixes that problem. But it did seem to fix issues on CRS310 (fingers crossed).
by sirbryan
Wed Apr 05, 2023 1:24 pm
Forum: General
Topic: L3HW on a switch [SOLVED]
Replies: 13
Views: 1715

Re: L3HW on a switch [SOLVED]

If your OPNSense box is doing all the firewall/gateway work, then there should be no need for firewall filters in the 317 (except for input to the router itself, i.e. for trust/ACL rules), and there should be no NAT rules. You can have L3HW-offloading for NAT/firewall or for interVLAN routing, but t...
by sirbryan
Wed Apr 05, 2023 11:42 am
Forum: General
Topic: L3HW on a switch [SOLVED]
Replies: 13
Views: 1715

Re: L3HW on a switch [SOLVED]

Actually, what's missing is all the ports in the switch have L3HW turned OFF. The firewall settings only matter if you want L3HW-accelerated NAT (instead of interVLAN routing). /interface ethernet switch port set 0 l3-hw-offloading=no set 1 l3-hw-offloading=no set 2 l3-hw-offloading=no set 3 l3-hw-o...
by sirbryan
Wed Apr 05, 2023 11:34 am
Forum: Forwarding Protocols
Topic: ROS7 and IPv6 route reflection [solved]
Replies: 6
Views: 2950

Re: ROS7 and IPv6 route reflection

It's working for me. My connections to the RR's are dual-AFI on a single BGP connection, with a route filter to change the gateway of IPv6 routes to the IPv6 loopback of the router. Otherwise it tries to use the IPv4 literal (::ffff:x.x.x.x), which could also work if you add it as a loopback on the ...
by sirbryan
Mon Apr 03, 2023 7:53 pm
Forum: Forwarding Protocols
Topic: ROS7 and OSPF-v3
Replies: 6
Views: 2535

Re: ROS7 and OSPF-v3

On all my routers running 7.7, I switched all my OSPFv3 types to broadcast from PTP. Most are dedicated VLANs used for PTP links between routers. After that was done, they all came up have been stable for a week or so. I also had IGMP snooping enabled on one switch, which was causing problems. Had t...
by sirbryan
Thu Mar 30, 2023 6:46 pm
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 143390

Re: v7.8 [stable] is released!

You mean "Protocol Mode" in bridge set to "None"? I have this set to None on all my devices including the RB1100, all my reported 7.8 problems were with it set to None. I also tried disabling Fast Track as this was also mentioned somewhere up this thread and changelog. Didn't he...
by sirbryan
Wed Mar 29, 2023 5:33 pm
Forum: RouterOS beta
Topic: IPv6 hw-offload on DHCP-PD routes
Replies: 4
Views: 2616

Re: IPv6 hw-offload on DHCP-PD routes

Routes show the HW flag if they're eligible for offloading, whether or not they're actually offloaded. I find HW offload for IPv6 to be quite buggy, still. I have a variety of CRS300's and 2116's all running 7.7. IPV6 + IPV4 L3HW offload on the 317 has been working fine, but on the CRS310's, with IP...
by sirbryan
Tue Mar 28, 2023 5:59 pm
Forum: Announcements
Topic: v7.9beta [testing] is released!
Replies: 118
Views: 27530

Re: v7.9beta [testing] is released!

What is the reason to have such short lease-times? Maybe it is useful in a guest wifi in a restaurant or similar, but in "normal" networks I set the lease time to 1d or 7d. I guess you could flip the question around and ask yourself whats the advantage to having a longer lease time? Is th...
by sirbryan
Fri Mar 24, 2023 7:37 pm
Forum: General
Topic: How do we request for an account deletion?
Replies: 24
Views: 2620

Re: How do we request for an account deletion?

There are ways to help people see a point or understand specific advice without constantly calling to attention their lack of expertise in an area (this goes for anybody and everybody). There is also nothing wrong with conceding a point when valid counter-arguments or corrections are provided. For t...
by sirbryan
Sat Mar 18, 2023 5:58 am
Forum: General
Topic: CRS309-1G-8S
Replies: 3
Views: 756

Re: CRS309-1G-8S

No, you're essentially hitting the maximums of that CPU, since PPPoE is CPU-bound.

Depending on what your Internet connection is, you could front it with something like an RB5009.
by sirbryan
Sat Mar 18, 2023 5:38 am
Forum: General
Topic: CCR2216-1G-12XS-2XQ - Cant handle 2M PPS??
Replies: 2
Views: 704

Re: CCR2216-1G-12XS-2XQ - Cant handle 2M PPS??

What version are you running?

For reference, my CCR2116's (same 16-core processors) are hitting 2.5Gbps, 200Kpps, at 12%. So it could be a PPS issue more than a throughput issue. You want to figure out how to push as much as you can towards L3HW offload.
by sirbryan
Fri Mar 17, 2023 5:23 am
Forum: General
Topic: Container/Docker -Adguard/Pihole For REAL.
Replies: 34
Views: 10816

Re: Container/Docker -Adguard/Pihole For REAL.

Thats fine but I have a single bridge with multiple VLANS. So you are saying create a separate vlan for the docker?? A VETH is kind of like an EOIP interface. If you make it a member of a bridge (and tag it to a particular VLAN's PVID), then you can assign it an IP in the subnet for that bridge (or...
by sirbryan
Fri Mar 17, 2023 5:14 am
Forum: General
Topic: how does L3HW actually works?
Replies: 128
Views: 34228

Re: how does L3HW actually works?

Hi @sirbryan Are all of the ports on your switch enabled for L3HW offloading? I had a configuration when I had a port with disabled L3HW, and if any VLANs defined on the port with the disabled L3HW are present on the other ports, those ports would be silently disabled for L3HW either. I asked on th...
by sirbryan
Thu Mar 16, 2023 4:56 pm
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

you just loose flexability because you can only really shape 'downloads' to the individual AP. What if your uploads get overwhelmed? You don't have an interface shaper that will handle that if you have more than 1 AP. To date that hasn't been a problem. At some future point I'll load queueing + sha...
by sirbryan
Thu Mar 16, 2023 11:52 am
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

I don't like how queue trees behave when explicit directionality isn't set via a packet mark. Am I extrapolating that you have a vlan per customer from this tree? Each of those VLANs goes to an AP. I have 10-25 customers per AP. The queueing is on the VLAN's egress. My hope was to take just enough ...
by sirbryan
Wed Mar 15, 2023 5:45 pm
Forum: RouterBOARD hardware
Topic: Switch advice please
Replies: 3
Views: 2069

Re: Switch advice please

If you want POE, the CRS112-8P-4S-IN isn't too bad, and you can get a few SFP-RJ45 adapters for the SFP's.

The RB5009 with power would give you eight POE ports plus an SFP+, but you'd still need a second (cheap) switch for the remaining ports.
by sirbryan
Tue Mar 14, 2023 9:37 pm
Forum: General
Topic: Possible bridge problem with v7.8?
Replies: 8
Views: 1917

Re: Possible bridge problem with v7.8?

Thanks @sirbryan for clarification, waiting for support to know if mine is a bug.
Are you using MSTP on your devices? Or RSTP?
RSTP.
by sirbryan
Tue Mar 14, 2023 5:24 pm
Forum: General
Topic: Possible bridge problem with v7.8?
Replies: 8
Views: 1917

Re: Possible bridge problem with v7.8?

I emailed support after upgrading a couple of RB4011's to 7. Their response was, with the hardware bridge support added to 4011, the CPU has to be used to bridge the two switch chips for VLANs that span both switches. It's as simple as tagging the "bridge" itself in all VLANs that you want...
by sirbryan
Tue Mar 14, 2023 5:11 pm
Forum: Wireless Networking
Topic: CubeSA 60Pro ac: 60Ghz clients flapping
Replies: 108
Views: 23188

Re: CubeSA 60Pro ac: 60Ghz clients flapping

What is working for me: As AP's: - wAP 60 - wAP 60 180 - Cube 60G At close range, despite their 60° pattern, wAP 60's mounted to a round mast almost act like they have a 180° pattern. I have one customer with a Cube 60 90° to the side of the wAP 60 at 200m and it's working great. On the flip side, w...
by sirbryan
Tue Mar 14, 2023 4:37 pm
Forum: General
Topic: CCR2004-1G-12S+2XS Performance Update Dec 2022 - 7.4.1 = 19Gbps
Replies: 5
Views: 2824

Re: CCR2004-1G-12S+2XS Performance Update Dec 2022 - 7.4.1 = 19Gbps

I did it with both IP's on the interface as well as all ports bridged with VLAN's. In both cases, it's all done in CPU, so neither method has any hardware offload mechanism to leverage. I also realized that the 19Gbps limitation was more about the fact that I was using two 10Gbps cables from upstrea...
by sirbryan
Sat Mar 11, 2023 8:05 am
Forum: General
Topic: how does L3HW actually works?
Replies: 128
Views: 34228

Re: how does L3HW actually works?

Your “uplink” port should be an independent Ethernet interface with plain L3 VLAN on top of it, not in the bridge. Remove it from the bridge. This is the issue right here... Um, no, it's not. And MikroTik recommends against that, especially for hardware offload to work on switch chips (which is lit...
by sirbryan
Sat Mar 11, 2023 4:45 am
Forum: General
Topic: how does L3HW actually works?
Replies: 128
Views: 34228

Re: how does L3HW actually works?

I'm 99% sure you did your bridge configuration incorrectly for your specific topology. See here: https://forum.mikrotik.com/viewtopic.php?t=183142#p987793 I'm 100% sure I didn't. I use this same bridge/VLAN config at 15 sites on 20+ routers, including hAP AC2, CCR1009, CCR2004, CCR2116, RB3011, RB4...
by sirbryan
Fri Mar 10, 2023 11:18 pm
Forum: General
Topic: how does L3HW actually works?
Replies: 128
Views: 34228

Re: how does L3HW actually works?

Here's an odd one. I've spent hours overnight and this morning trying to figure out why a newly-deployed 310 won't properly offload routed traffic. I migrated the config from an RB4011 to the 310, similar to what I've done at other sites, which are working fine. The only difference is that this one'...
by sirbryan
Wed Mar 08, 2023 5:59 pm
Forum: General
Topic: CRS as Aggregation switch
Replies: 3
Views: 631

Re: CRS as Aggregation switch

Out of the box, it should come configured as a "dumb switch", with all ports in a single bridge, which is then hardware-offloaded. The MTU is usually set at 1500, so you might have to go in and change the L2MTU on all the ports. You might have to disable RSTP on the bridge, but be careful ...
by sirbryan
Thu Mar 02, 2023 12:03 am
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

Here's what I've whittled it down to: /queue type add fq-codel-flows=10240 fq-codel-limit=1024 fq-codel-memlimit=320.0MiB fq-codel-quantum=300 kind=fq-codel name=fq-codel add cake-diffserv=besteffort cake-mpu=84 cake-overhead=38 cake-overhead-scheme=ethernet cake-rtt-scheme=internet kind=cake name=c...
by sirbryan
Wed Mar 01, 2023 11:52 pm
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

To the customer, the feel was horrible, as he was no longer able to reliably play his games. He spent the previous four days testing things with friends, updating drivers, twiddling with settings on PC, etc. to no avail. Latency was all over the place and just in my ping tests we were losing one or ...
by sirbryan
Wed Mar 01, 2023 4:02 am
Forum: Forwarding Protocols
Topic: BGP multiple peer setup - load balancing
Replies: 7
Views: 5011

Re: BGP multiple peer setup - load balancing

I agree with the separation of concerns. Furthermore, with the symptoms you're describing, It sounds like you're NATting to a border interface on the router. If you're NATting to an IP that's advertised through both peers, i.e. to a public IP assigned to a loopback interface on the router, then when...
by sirbryan
Tue Feb 28, 2023 9:49 pm
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

Update update: For both the 1036 and the 4011, I disabled the shaper queues and created basic queues for the interfaces. The CPU load was causing more problems than perceivable benefits on both routers. Even with basic settings for Cake on the 4011, I still saw packet loss increase. With fq_codel on...
by sirbryan
Tue Feb 28, 2023 9:28 pm
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

Update: I also put some rules on an RB4011 running 7.4.1, initially with Cake shaping all traffic going out to about six AP's, each on their own VLAN on the same ethernet port to the AP switch. Each queue was Cake with Internet RTT, Ethernet overhead, Ack-filtering, and diffserv4 (all else defaults)...
by sirbryan
Tue Feb 28, 2023 7:29 pm
Forum: RouterOS beta
Topic: L3HW not working properly
Replies: 12
Views: 8436

Re: L3HW not working properly

Hi... old topic, but its almost my case, the difference its i'm on 7.8 stable... CRS326-24G-2S+ i'm with 10 vlans (interface/vlan) 600 devices on /in/bridge/host print count-only and everything using cpu (800mbps on bridge and 98% cpu) Basic L3HW offload is working on 7.4.1, 7.6, and 7.7 on CRS310,...
by sirbryan
Tue Feb 28, 2023 6:57 pm
Forum: RouterBOARD hardware
Topic: Fiberbox Plus
Replies: 2
Views: 1342

Re: Fiberbox Plus

The Fiberbox Plus is a CRS305 in a hardened enclosure. So anything that applies to the CRS305 on this page will apply to the FBP as well.

https://help.mikrotik.com/docs/display/ ... p+features
by sirbryan
Mon Feb 27, 2023 5:43 am
Forum: General
Topic: FQ_Codel and Mikrotik CCR CPU Utilization
Replies: 39
Views: 7202

Re: FQ_Codel and Mikrotik CCR CPU Utilization

I loaded just a few queues on my CCR1036. Initially they were all set as Cake with 600M to 2G for each queue, with a total of 6 or 7 queues. Today, as the total utilization approached 2Gbps, the CPU load jumped to 100%. This is with all packets being tagged and assigned to one of the half-dozen queu...
by sirbryan
Sun Feb 26, 2023 6:46 am
Forum: RouterOS beta
Topic: 7.8beta2 adds new package ROSE-storage
Replies: 67
Views: 28048

Re: 7.8beta2 adds new package ROSE-storage

What is the target's full iqn that we should use when connecting to an exported iSCSI volume from a third-party device? I'd like to try booting an Intel NUC here in my lab.
by sirbryan
Thu Feb 23, 2023 9:10 pm
Forum: General
Topic: How to secure DarkFiber between 2 MikroTik
Replies: 12
Views: 1522

Re: How to secure DarkFiber between 2 MikroTik

With physical plant, there's no way they can "accidentally" redirect it to another customer and have things work. You'll know if the connection between the two goes down (or if it never comes up). Sure, any two 1550nm 10G SMF modules should talk to each other, but unless the other customer...
by sirbryan
Thu Feb 23, 2023 6:48 pm
Forum: General
Topic: How to secure DarkFiber between 2 MikroTik
Replies: 12
Views: 1522

Re: How to secure DarkFiber between 2 MikroTik

It really depends on your use case. Most apps secure sensitive traffic at Layer 3 using SSL, including Internet traffic, email, local websites and databases, etc. What's left on most LANs are traditional peer-to-peer or server-client traffic that may or may not be encrypted (file servers, VoIP, came...
by sirbryan
Thu Feb 23, 2023 6:01 am
Forum: General
Topic: CCR2004 16G 2S+ Recommended Firmware
Replies: 1
Views: 603

Re: CCR2004 16G 2S+ Recommended Firmware

7.4.1 and later have been good for my CCR's, RB4011's, RB5009's, and CRS300's. Currently running 7.7 on CCR2116 for my office (VLAN's, NAT/FW, containers).
  • 1
  • 2