Community discussions

MikroTik App

Search found 81 matches

by Moba
Wed Jan 06, 2021 6:20 pm
Forum: Useful user articles
Topic: Howto wanted - block advertisement like Youtube
Replies: 5
Views: 892

Re: Howto wanted - block advertisement like Youtube

Ads have been around for over 20 years on the web, just like the methods to block them. As public reliance on the web has skyrocketed through free services, so has the need for monetization through ads to provide those services (do you work for free?). Hence, Google is working very hard to maintain ...
by Moba
Mon Dec 21, 2020 5:46 pm
Forum: Beginner Basics
Topic: Problems with portforwarding.
Replies: 9
Views: 654

Re: Problems with portforwarding.

add action=accept chain=forward dst-address=192.168.88.xxx dst-port=xxxx in-interface=xxxxx protocol=xxx If you need to forward more than one port, you can add all of them to the same rule. The more you add rules, the more confusing your config gets and the more resources are required to process ev...
by Moba
Fri Dec 18, 2020 11:49 pm
Forum: Beginner Basics
Topic: Problems with portforwarding.
Replies: 9
Views: 654

Re: Problems with portforwarding.

Why are LAN clients connecting to your game server from the WAN ip? If you forward ports, why are you using UPnP? By default, only outbound connections are allowed for all LAN clients in the firewall filter. NAT is setup both ways accordingly. Logically, for clients to connect from the WAN side to y...
by Moba
Tue Dec 15, 2020 4:08 pm
Forum: Beginner Basics
Topic: Traffic Priority for Facebook, Messenger and Viber
Replies: 10
Views: 829

Re: Traffic Priority for Facebook, Messenger and Viber

AFAIK, you can create a simple pcq queue on the interface that covers the address pool or a queue tree for each package on the server. There's even a tutorial on YT on how to use a script to create a QoS tree for each pppoe user automatically (it polls for new clients at a set interval). All of thes...
by Moba
Mon Dec 14, 2020 6:41 am
Forum: Beginner Basics
Topic: Traffic Priority for Facebook, Messenger and Viber
Replies: 10
Views: 829

Re: Traffic Priority for Facebook, Messenger and Viber

Dynamic speed for each client? Schedulers and queues must have a limit somewhere that is smaller than the physical limit of the connection for QoS. If the connection is never congested (limitless bandwidth), then QoS is not required because any number of packets can be sent or received at the same t...
by Moba
Sun Dec 13, 2020 6:59 pm
Forum: Beginner Basics
Topic: Traffic Priority for Facebook, Messenger and Viber
Replies: 10
Views: 829

Re: Traffic Priority for Facebook, Messenger and Viber

A limit must be set globally somewhere for congestion in the queue structure to have control on which packets are prioritized, which are delayed, which are dropped first and to minimize bufferbloat. It's a trade-off for effective traffic shaping. If you do not set a limit, your ISP decides how to ha...
by Moba
Sun Dec 13, 2020 4:17 pm
Forum: Beginner Basics
Topic: Traffic Priority for Facebook, Messenger and Viber
Replies: 10
Views: 829

Re: Traffic Priority for Facebook, Messenger and Viber

ROS has no way to identify application data, other than the workarounds I mentioned. The problem is that those workarounds are processor intensive and fiddly to setup even with tutorials. So port based QoS is usually recommended as the easiest way to avoid congestion for critical applications. This ...
by Moba
Sun Dec 13, 2020 3:40 pm
Forum: Beginner Basics
Topic: How to set 12:00 midnight time in Kid Control?
Replies: 5
Views: 499

Re: How to set 12:00 midnight time in Kid Control?

You're absolutely right mkx, I just didn't check in WinBox when I replied. Oddly, I can enter 06:00:00 to 00:00:00 in the firewall schedule parameter without an error.
by Moba
Sun Dec 13, 2020 12:21 pm
Forum: Beginner Basics
Topic: How to set 12:00 midnight time in Kid Control?
Replies: 5
Views: 499

Re: How to set 12:00 midnight time in Kid Control?

24:00:00 isn't a valid time. 12 am is 00:00:00.
by Moba
Sat Dec 12, 2020 10:44 pm
Forum: Beginner Basics
Topic: Traffic Priority for Facebook, Messenger and Viber
Replies: 10
Views: 829

Re: Traffic Priority for Facebook, Messenger and Viber

What is the problem you're having? All these apps use port 80, 443 and many other ports. Usually, it's the VoIP and video conferencing ports that need to be prioritized over UDP. DSCP is the easiest way to insure that time sensitive packets aren't delayed or dropped (if DSCP is respected). You can a...
by Moba
Sat Dec 12, 2020 5:38 pm
Forum: General
Topic: Internet dropping?
Replies: 12
Views: 860

Re: Internet dropping?

These threads keep coming back and you can use search for lengthy explanations (and rants in my case) about solutions. Some simple advice: - Use a default config and only add rules that you really need to avoid issues. - You only need to forward UDP 3074 for COD if you must have an open NAT type (te...
by Moba
Fri Dec 11, 2020 4:55 pm
Forum: Beginner Basics
Topic: HAP Ac3 5 Ghz speed problem
Replies: 6
Views: 603

Re: HAP Ac3 5 Ghz speed problem

I've never tested the ac3, but it doesn't use the same SoC as the ac2. I had disappointing speeds with my RB4011+ at first compared to some ac2's I had experience with. I had to start with a new default config and manually set each radio. After tweaks, the WiFi range and speeds are very good for a s...
by Moba
Thu Dec 10, 2020 5:27 am
Forum: Beginner Basics
Topic: QoS example/template
Replies: 15
Views: 1169

Re: QoS example/template

There's is no simple solution because QoS is a complicated topic. People have been working on this for decades. Routers that promise easy one click solutions don't work that well, otherwise everyone would include magic solutions on their hardware. CoDel and Cake have improved things for ease of use ...
by Moba
Sun Dec 06, 2020 3:50 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

All three of us are privileged to be living in a country where social policies have steadily increased disposable income for families in the last 50 years. MT has a big presence in countries that are not so lucky and where tech in general is not as accessible. I have no practical need for all the ne...
by Moba
Sun Dec 06, 2020 2:41 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

To be fair, modern consoles are now more or less completely locked down for economic reasons. Gaming computers on the other hand are not. Any competitive game means cheats installed long before titles hit retail. Rogue code and UPnP is a winning combination on any network. Your business experience s...
by Moba
Sun Dec 06, 2020 12:24 am
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

Why do you need to isolate it if it's safe ? And while you may know how to limit gaming clients, most novice users don't. All those vulnerabilities security researchers found must have been fake news...
by Moba
Fri Dec 04, 2020 11:31 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

You're a patient person. I have few solutions when port forwarding magically speeds up packets on a router on the authority of a gaming company.
by Moba
Fri Dec 04, 2020 7:43 pm
Forum: Beginner Basics
Topic: Issues with Mikrotik hAP AC2
Replies: 17
Views: 1405

Re: Issues with Mikrotik hAP AC2

The wireless is a buggy mess on MikroTik in general. Just checking my wireless settings causes the interface to reset (not changing anything!). On my 4011+, the defaults don't even enable the 5 GHz radio at all (invalid range message). I need to change the channel width and play with the bands used ...
by Moba
Fri Dec 04, 2020 5:31 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

I'll add that using UPnP on a secure router defeats its purpose. Might as well use that crap from Best Buy, hence my recommendation.
by Moba
Fri Dec 04, 2020 12:20 am
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

Yes, a destination rule opening only udp port 3074 in the firewall's forward chain for the client's IP (obviously made static) and a corresponding destination NAT rule so the client can act like a server. Game state traffic in COD (and other latency sensitive games) only uses udp. That's the connect...
by Moba
Thu Dec 03, 2020 9:45 pm
Forum: Beginner Basics
Topic: PCQ queue is better than without any queue?
Replies: 5
Views: 404

Re: PCQ queue is better than without any queue?

There isn't a better queue type for QoS: It all depends on what your QoS objectives are. A single SFQ queue can insure an adequate user experience by simply dividing the bandwidth among users evenly. PCQ goes further by allowing address based queuing, as explained in the Wiki. For more complex QoS s...
by Moba
Thu Dec 03, 2020 9:08 pm
Forum: Beginner Basics
Topic: PCQ queue is better than without any queue?
Replies: 5
Views: 404

Re: PCQ queue is better than without any queue?

I am a bit confused by what you are asking... PCQ is a queue type used for QoS to implement a form of fair queuing as you said. However, I am not sure about the rest... Queuing occurs when a bandwidth threshold is reached regardless of the number of users. You cannot have a functional QoS strategy w...
by Moba
Thu Dec 03, 2020 6:03 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

I aways like to check things myself before giving a final answer... It is a simple two step process in ROS: one NAT rule for the client and one firewall rule for the client. Proof it works on my 4011: https://ibb.co/D8B5DVq And like I explained already, it does not reduce latency or change anything ...
by Moba
Thu Dec 03, 2020 3:10 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

When listen servers are used on clients, you may have issues connecting to other players, as they will to you, depending on your NAT type. So you could get lag or wait a long time to connect. It's possible that listen servers are still used on consoles for CW or MW - I don't have an Xbox to check. I...
by Moba
Thu Dec 03, 2020 2:25 am
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

I used to play UT long before consoles where a thing and I ran quite a few servers back then, including home servers for my kids and their friends. I was also around when the Xbox came out and they added listen servers for MW2 on PC. But what do I know...you should listen to the gaming community tha...
by Moba
Wed Dec 02, 2020 2:48 pm
Forum: Beginner Basics
Topic: 4011 affecting outbound services
Replies: 45
Views: 2412

Re: 4011 affecting outbound services

I don't have time to go through all the thread this morning, but you seem to be fixing issues you don't have. Opening ports doesn't speed up anything for games - it lets you host matches on your client and it isn't required to play (listen servers). That's what the NAT type says. Adding any unnecess...
by Moba
Fri Nov 27, 2020 4:29 pm
Forum: Announcements
Topic: v6.47.8 [stable] is released!
Replies: 56
Views: 12483

Re: v6.47.8 [stable] is released!

The update killed the wireless speed on a RB4011+ down to less than 8M. I couldn't even log in with WinBox/WebFig. Wired, everything was OK. I don't use the default channel width, so maybe I need to reset everything to default and start over. Since I spent many hours testing various devices to get g...
by Moba
Wed Nov 18, 2020 1:45 am
Forum: Beginner Basics
Topic: Port Forwarding issue
Replies: 16
Views: 783

Re: Port Forwarding issue

COD shouldn't require opening port 3074 unless CW went back to using listen servers and you want to host games on your client. If they are using listen servers, the garbage about NAT types on Activision's site applies.
by Moba
Mon Nov 16, 2020 6:10 am
Forum: Beginner Basics
Topic: Bandlimit I tried but it is not working
Replies: 9
Views: 457

Re: Bandlimit I tried but it is not working

When you connect the switch, devices behind it get an ip address from the router's DHCP server. Make them static and add them to an address list, then limit the list with a queue. If it's a managed switch, limit its ip.
by Moba
Mon Nov 16, 2020 3:25 am
Forum: Beginner Basics
Topic: Bandlimit I tried but it is not working
Replies: 9
Views: 457

Re: Bandlimit I tried but it is not working

/interface bridge port print
/interface bridge port remove numbers=

You haven't told us what you are trying to do. You can limit a client connected to a port by its address or a few ports by creating a VLAN for them.
by Moba
Sun Nov 15, 2020 3:34 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

As an example, you're playing a game with a stable ping around 40 and then someone starts downloading a torrent. Now your ping is suddenly all over the place from 40 to 200 and the game becomes unplayable. That's bufferbloat. Lag can also be caused by your ISP dynamically throttling traffic during p...
by Moba
Sun Nov 15, 2020 5:13 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Yes. Dividing bandwidth equally to enhance user experience (stochastic fair queuing) is a Quality of Service strategy. CoDel is another one.
by Moba
Sun Nov 15, 2020 4:46 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

The SFQ simple queue doesn't require a tutorial or anything else - it simulates CoDel i.e. it just works as is. Other queuing options are available in ROS, but they require much more knowledge and time to setup properly. Simple queues are the right tool for client management. Queue trees are the rig...
by Moba
Sun Nov 15, 2020 2:44 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Fasttrack, as it was explained to you thoroughly in another thread, bypasses part of the firewall stack, including all queues, for supported UDP and TCP traffic. It isn't QOS. The issues you described in this thread requires QOS. Why are you so worried with gaming? You shouldn't be worrying unless y...
by Moba
Sun Nov 15, 2020 12:39 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Bufferbloat. If you set a global limit properly and have some form of fair queuing enabled, there's not much else you can do about it, aside from tailoring your own queue priorities. There's a point of diminishing returns with QOS on a small router, because it requires processing time and ultimately...
by Moba
Sat Nov 14, 2020 9:46 pm
Forum: Beginner Basics
Topic: Bandlimit I tried but it is not working
Replies: 9
Views: 457

Re: Bandlimit I tried but it is not working

I just tested limiting ether1 on my router (which isn't part of the bridge) using a queue and it works as expected (1M up and down). If you limit the bridge, you limit all ports on the bridge AFAIK. I can also limit ether1 using a simple queue without marking. But you can't limit a port that is part...
by Moba
Sat Nov 14, 2020 8:54 pm
Forum: Beginner Basics
Topic: Layer 7 Blacklist
Replies: 16
Views: 832

Re: Layer 7 Blacklist

Ronald, if you don't want to use OpenDNS, you can look into using Pi-Hole to block porn and ads (a local DNS server). L7 isn't the right tool for the job.
by Moba
Sat Nov 14, 2020 8:48 pm
Forum: Beginner Basics
Topic: Bandlimit I tried but it is not working
Replies: 9
Views: 457

Re: Bandlimit I tried but it is not working

6.47 is buggy and you will have better feedback if you post your config with an explanation as to why you want to limit ports.
by Moba
Sat Nov 14, 2020 5:47 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

I'm not really sure if it changes anything - I use the fiber option over hybrid. You can use Lag Report to compare your ISP to others. Try to test outside of peak hours though, because it will have an impact on results i.e. not being able to get a triple A rating. The SFQ limit just flattens the ban...
by Moba
Fri Nov 13, 2020 5:15 pm
Forum: Beginner Basics
Topic: Fasttracking a client device; is this possible?
Replies: 8
Views: 847

Re: Fasttracking a client device; is this possible?

This is the essence of what I replied in another thread and why I recommended a simple SFQ queue to solve the issues the user was having.
by Moba
Fri Nov 13, 2020 9:58 am
Forum: Beginner Basics
Topic: Fasttracking a client device; is this possible?
Replies: 8
Views: 847

Re: Fasttracking a client device; is this possible?

That's a great definition of game state traffic over udp and why using fasttrack for a gaming client instead of limiting it to the time sensitive connections is a bad idea.
by Moba
Fri Nov 13, 2020 9:26 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Having more bandwidth than your plan is normal - it's called over-provisioning and it's there to make sure you get what you pay for. 18% below your maximum bandwidth should be fine and remove bufferbloat issues. While heavy buffering is ok for most HTTP traffic, it's bad for time sensitive packets l...
by Moba
Fri Nov 13, 2020 4:39 am
Forum: Beginner Basics
Topic: Fasttracking a client device; is this possible?
Replies: 8
Views: 847

Re: Fasttracking a client device; is this possible?

I also answered that it was possible - firewall/mangle can set either source or destination in a rule (it's the second and third thing you set in Winbox). Who told you gaming clients need lots of bandwidth?
by Moba
Fri Nov 13, 2020 4:12 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Not sure from your post if the SFQ queue is working - it should be limited at 5-20% less than your ISP plan. Set properly, you should get all A's over LAN.
by Moba
Wed Nov 11, 2020 5:26 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

DHCP static assignment is pretty self-explanatory in Winbox or WebFig: https://www.youtube.com/watch?v=fiNOPC8BBhI Many tutorials on how to fasttrack traffic as well. Fasttrack should never be used with QOS, because it breaks QOS unless you know what you are doing. But I am repeating myself. If you ...
by Moba
Tue Nov 10, 2020 6:37 pm
Forum: Beginner Basics
Topic: Layer 7 Blacklist
Replies: 16
Views: 832

Re: Layer 7 Blacklist

My own testing proved that it is possible to limit or block streaming sites with L7 over 443 when the connection is initiated (I have no merit - I used the work that others shared). There are issues if you use Google's DNS (when unencrypted DNS is used to block) and everything is bypassed using Tor ...
by Moba
Tue Nov 10, 2020 1:27 am
Forum: Beginner Basics
Topic: Layer 7 Blacklist
Replies: 16
Views: 832

Re: Layer 7 Blacklist

The short answer is yes, it is possible. The problem is making a regex that covers half the internet...

^..+\.(pornhub|porn).*$

You mark the tcp connections with L7 in mangle for the network or certain addresses and then reject or drop them in the firewall filter.

Edit: Regex fixed
by Moba
Sun Nov 08, 2020 2:32 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Yes, you must disable the default fasttrack rule, otherwise your queue will be bypassed. If you fasttrack any specific traffic, that traffic will also bypass the queue. However, in this case, it would only be the traffic you select. Be careful though, if you fasttrack a host or too broad a range of...
by Moba
Sat Nov 07, 2020 11:16 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Yes, you must disable the default fasttrack rule, otherwise your queue will be bypassed. If you fasttrack any specific traffic, that traffic will also bypass the queue. However, in this case, it would only be the traffic you select. Be careful though, if you fasttrack a host or too broad a range of ...
by Moba
Sat Nov 07, 2020 3:02 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Stochastic Fairness Queuing (SFQ) just makes sure that all hosts get an equal share of the bandwidth. Nothing more. The hard limit needs to be set for QOS to work. Netflix and Youtube don't required high priority - Skype and web browsing do... If you want to manually set port bandwidth, you create ...
by Moba
Sat Nov 07, 2020 6:24 am
Forum: Beginner Basics
Topic: Filter rule issue
Replies: 3
Views: 245

Re: Filter rule issue

Your pic doesn't let us see neither what's blocked nor why you have two drop rules in the forward chain.
by Moba
Sat Nov 07, 2020 6:05 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Stochastic Fairness Queuing (SFQ) just makes sure that all hosts get an equal share of the bandwidth. Nothing more. The hard limit needs to be set for QOS to work. Netflix and Youtube don't required high priority - Skype and web browsing do... If you want to manually set port bandwidth, you create a...
by Moba
Sat Nov 07, 2020 2:22 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

You can use this tool to see which ports are used by Skype in Windows and the traffic rate: https://www.nirsoft.net/utils/live_tcp_udp_watch.html You can also use this as reference: https://support.skype.com/en/faq/FA148/which-ports-need-to-be-open-to-use-skype-on-desktop Prioritizing other traffic ...
by Moba
Fri Nov 06, 2020 2:40 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

You should really take a few hours to read the documentation from Mikrotik and watch the videos I mentioned - most of your questions are answered there. Fasttrack requires rules in the firewall and any rules in a firewall has to be processed - the more rules you add, the less performance you get. Mi...
by Moba
Fri Nov 06, 2020 12:29 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Even fasttrack rules are firewall rules that need to be processed - they just bypass most of the firewall stack. Furthermore, as you add ports to fasttrack, you risk conflicts between apps/clients using the same ports. And yes, by clients, I mean the hosts that connect to your router. I can tell you...
by Moba
Thu Nov 05, 2020 3:23 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

Glad to hear that you solved your connection to the ONT and finally have a WAN IP on the router. There's no universal QOS guide - it all depends on your network usage. You can find good step by step tutorials for Mikrotik on YouTube to get you started (TKSJa). I would highly recommend that you read ...
by Moba
Wed Nov 04, 2020 1:39 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

That guide looks like what you need to get a WAN IP over IPoE. CLI or Winbox does that same thing to set a VLAN on ether1. As for the QOS script, if you read the descriptions, one is to fasttrack gaming traffic and the previous one is for QOS using a single SFQ queue (#23). You will need adjust the...
by Moba
Wed Nov 04, 2020 1:29 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

You can change the in. interface in /ip firewall mangle or /ip firewall filter (clearly accessible in Winbox). You can also fasttrack the ports directly without marking the connections first - 1 step instead of 2, so it should save a little CPU - a dev would need to confirm if this is the case or not.
by Moba
Wed Nov 04, 2020 1:19 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

That guide looks like what you need to get a WAN IP over IPoE. CLI or Winbox does that same thing to set a VLAN on ether1. As for the QOS script, if you read the descriptions, one is to fasttrack gaming traffic and the previous one is for QOS using a single SFQ queue (#23). You will need adjust the ...
by Moba
Tue Nov 03, 2020 12:12 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

You have another thread with the same issue. DHCP does what I explained it does: gives out IP addresses from a pool to hosts on a network (saves you from doing it manually for each client's MAC). It is a protocol that works in 4 steps: discover, offer, request and ack. The issue isn't with the Mikro...
by Moba
Mon Nov 02, 2020 3:33 pm
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

You need to limit your bandwidth to do QOS on any router. If you don't, random packets will be dropped on the ISP side of your connection once your limit is exceeded (your plan + any over provisioning). This will cause latency issues with apps using tcp and packet loss with apps over stateless udp c...
by Moba
Mon Nov 02, 2020 5:17 am
Forum: Beginner Basics
Topic: Newbie questions for setting up router [SOLVED]
Replies: 52
Views: 2589

Re: Newbie questions for setting up router [SOLVED]

1. Beyond my scripting talent - but you can limit fasttrack to certain addresses within the LAN. 2. The 6.45 branch is more stable IMO. 3. Yes, with CLI or Winbox /Interface List. 4. You can bridge other combinations of physical ports (and easily break packet flow) - ether1 is not part of the bridge...
by Moba
Fri Oct 30, 2020 12:34 am
Forum: Beginner Basics
Topic: how to block youtube?
Replies: 1
Views: 268

Re: how to block youtube?

Your topic title is misleading...
In order to help you unblock YT (if that is what you're asking), I would need to know how it was blocked in the first place.
by Moba
Fri Oct 30, 2020 12:29 am
Forum: Beginner Basics
Topic: RB 4011 freeze
Replies: 2
Views: 206

Re: RB 4011 freeze

Netinstall.
by Moba
Wed Oct 28, 2020 1:38 pm
Forum: Beginner Basics
Topic: Mikrotik hAP ap2 can't find internet
Replies: 1
Views: 183

Re: Mikrotik hAP ap2 can't find internet

You can connect to the router, so that's good. I'm not a fan of anything after 6.45.8 - too many bugs reported - so I would downgrade and reset the default config. Your modem is set to bridge mode with NAT disabled if it has a built-in router, right ? Use Quick Set Home AP in Winbox. With your WAN c...
by Moba
Mon Oct 19, 2020 9:04 pm
Forum: General
Topic: Mikrotik block access to Microsoft Outlook 365 account
Replies: 8
Views: 609

Re: Mikrotik block access to Microsoft Outlook 365 account

It's a config issue - I use Office 365 for work and have no problems accessing my account through ROS.
by Moba
Mon Oct 19, 2020 6:27 pm
Forum: Beginner Basics
Topic: Forcing Gaming traffic only through WAN 1
Replies: 6
Views: 349

Re: Forcing Gaming traffic only through WAN 1

Yes, I have no experience with such requirements. Plus I have been batting zero percent all day and why would I break my losing streak LOL. So I take it that there is no way to identify and thus control gaming traffic. Well faced with this impossibility, if I was the OP I would not hesitate to chan...
by Moba
Sat Oct 17, 2020 2:01 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

Using Fasttrack for gaming traffic COD is used here, but any other port specific traffic can be marked. 1. The connections need to be marked: /ip firewall mangle add action=mark-connection chain=forward comment=fasttrack-udp-dw-con dst-port="" new-connection-mark=fasttrack-udp-dw-con pass...
by Moba
Sat Oct 17, 2020 1:20 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

Once you have a baseline (best case scenario), we can experiment with queues. The first solution to bufferbloat is a simple queue. It's a lazy hack, but it works with one major caveat: it's resource intensive on a small HAP. 1. You must add a new queue type for SFQ in the terminal: /queue type add k...
by Moba
Sat Oct 17, 2020 12:52 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

I was wondering if the modem was polled to keep the connection alive once it receives a WAN ip - I would have tried it because some users alluded to this being possible, but like I said earlier, I don't have an Arris... Regardless, you have 5 options to get a WAN ip: 1. You connect the HAP behind t...
by Moba
Mon Oct 12, 2020 12:53 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

I was wondering if the modem was polled to keep the connection alive once it receives a WAN ip - I would have tried it because some users alluded to this being possible, but like I said earlier, I don't have an Arris... Regardless, you have 5 options to get a WAN ip: 1. You connect the HAP behind th...
by Moba
Sat Oct 10, 2020 8:51 pm
Forum: Beginner Basics
Topic: Help Downgrading RouterOS / Firmware [SOLVED]
Replies: 5
Views: 447

Re: Help Downgrading RouterOS / Firmware [SOLVED]

That is the proper procedure i.e upload to Files and downgrade from Packages. If you are sure you uploaded the correct file and that it is not corrupted, then Netinstall.
by Moba
Sat Oct 10, 2020 6:05 pm
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

I don't have an Ariss modem to play with so my help will be very limited, but as you already found out, it's a PITA to bypass according to everything I read about it. I asked about the passthrough because it's the feature used on most modems when you want to use your own router. When you said all po...
by Moba
Sat Oct 10, 2020 5:20 am
Forum: Beginner Basics
Topic: New HAP ac2 as ATT Bridge (slow, sites not loading)
Replies: 25
Views: 1585

Re: New HAP ac2 as ATT Bridge (slow, sites not loading)

The Arris has an IP passthrough mode, doesn't it? I believe that in this mode the HAP can get the external IP from it and after everything should function as expected with the default config that was suggested by anav. The HAP AC2 is quite capable of basic QOS for low latency gaming, but the setup w...
by Moba
Fri Oct 09, 2020 12:13 am
Forum: Beginner Basics
Topic: Dead hardware?
Replies: 2
Views: 247

Re: Dead hardware?

If the fan failed, it's possible that the CPU is overheating and causing system errors or that it has been damaged. You should be able to replace the fan and this guide can help you troubleshoot other issues:

http://www.mkesolutions.net/descargas/m ... rb/CCR.pdf

Or contact Mikrotik directly...
by Moba
Thu Oct 08, 2020 11:53 pm
Forum: General
Topic: BLOCK YOUTUBE Y 2020
Replies: 3
Views: 398

Re: BLOCK YOUTUBE Y 2020

The blocking is possible if you do not use Google's DNS. The no impact isn't.

viewtopic.php?f=13&t=166748

L7 regex used: ^.+(youtube|akamaihd|googlevideo).*$
by Moba
Mon Oct 05, 2020 12:29 am
Forum: Beginner Basics
Topic: Why not a definitive solution to block Youtube?
Replies: 4
Views: 763

Re: Why not a definitive solution to block Youtube?

This is another method to block websites using an address list: In this case, I am building the list for Netflix with a L7 regex named netflix and marking the packets. Mangle: add action=add-dst-to-address-list address-list=netflix address-list-timeout=\ none-dynamic chain=prerouting comment=netflix...
by Moba
Mon Oct 05, 2020 12:04 am
Forum: Beginner Basics
Topic: Limiting bandwidth to a range of IPs
Replies: 1
Views: 200

Re: Limiting bandwidth to a range of IPs

You can add them to an address list after making the clients static in leases. You then use mangle rules to mark the traffic from the list. Finally, you prioritize/limit those packets as you wish in queues with a limit of 10M for the whole list. You can also use pcq as a queue type to share that ban...
by Moba
Wed Sep 30, 2020 2:48 pm
Forum: Beginner Basics
Topic: Slow-ish 5Ghz wifi - HAP AC2
Replies: 2
Views: 228

Re: Slow-ish 5Ghz wifi - HAP AC2

Sadly, the HAP AC2 has lackluster 5GHz with many devices. You can try different channels, a downgrade to 6.45.9 to see if it's better or add an AP to improve performance. You can even use an old wireless router as an AP. The speed you're getting is actually excellent when compared to when the unit w...
by Moba
Wed Sep 30, 2020 2:09 am
Forum: General
Topic: Queue for Youtube & other sites to restrict bandwidth
Replies: 1
Views: 390

Re: Queue for Youtube & other sites to restrict bandwidth

AFAIK, you can't really filter Youtube traffic to restrict bandwidth. You can limit port 443 traffic using mangle rules and a queue tree to prioritize the specific ports used by the other apps i.e. regular browsing on port 80. That would limit Netflix and any other site using the same port. It's als...
by Moba
Sun Sep 27, 2020 7:21 pm
Forum: Beginner Basics
Topic: Why not a definitive solution to block Youtube?
Replies: 4
Views: 763

Re: Why not a definitive solution to block Youtube?

There is no definitive solution because RouterOS just has too many options. Not knowing what you are trying to achieve, this is one way I tested to block websites using L7. The idea is to block outbound requests to the site via DNS (traffic you usually control on any router connected to the Web). So...