Community discussions

MUM Europe 2020

Search found 127 matches

by gregsowell
Fri Apr 27, 2018 6:12 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

I don't 100% remember why I did it that way; I believe that when I wrote it autoit would hang waiting on the connection before it would knock the next port. I suppose I can rewrite it real quick to see if it works as expected.
by gregsowell
Thu Apr 26, 2018 10:47 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

The program has a separate little app it unpacks to fire off the individual knocks(tcp.exe). Some virus progs don't like an additional application being unzipped and dropped in. This was my lazy way of having the program fire off the connections.
by gregsowell
Wed Apr 25, 2018 8:36 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

:D Always happy to help!
by gregsowell
Wed Apr 25, 2018 4:02 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

@CZ, it's no accident...I needed a reason to get off my butt ;)
by gregsowell
Tue Apr 24, 2018 9:48 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

Indeed, I finally added the DNS resolution piece.
by gregsowell
Wed Oct 18, 2017 6:04 pm
Forum: General
Topic: Feature Request: IP Multicast Routing/mDNS/Zeroconf/Bonjour
Replies: 11
Views: 8684

Re: Feature Request: IP Multicast Routing/mDNS/Zeroconf/Bonjour

It looks like chromecast also uses mDNS for discovery, so if the feature existed you could chromecast across subnets...which would be really nice.
by gregsowell
Wed May 07, 2014 5:47 am
Forum: General
Topic: Request: IP-SLA
Replies: 19
Views: 11844

Re: Request: IP-SLA

Would love to use these as probes as well as pull stats off of existing routers.
by gregsowell
Sat Jan 25, 2014 7:00 pm
Forum: Forwarding Protocols
Topic: MIkrotik BGP Monitoring
Replies: 55
Views: 19582

Re: MIkrotik BGP Monitoring

If you guys could have a wishlist for BGP monitoring, what would it be?
I'd like:
Peer State
Peer # of routes received
Peer # of routes advertised

3 very simple, but useful things.
by gregsowell
Tue May 21, 2013 6:27 am
Forum: General
Topic: New Packet flow diagram
Replies: 103
Views: 73184

Re: New Packet flow diagram

Looks clean guys. Nice work.
by gregsowell
Sun May 19, 2013 4:51 am
Forum: General
Topic: Cisco/mikrotik quick redirect
Replies: 3
Views: 840

Re: Cisco/mikrotik quick redirect

I'm going to make some assumptions. Assumption 1 is that you have two connections between your routers. We'll call them A and B. Connection A is shown at the top. Connection B is shown at the bottom and flows through the proxy. You need two default routes on the left router. I'll call this router 1 ...
by gregsowell
Fri Nov 09, 2012 2:25 pm
Forum: General
Topic: Double QoS for v6 is possible
Replies: 71
Views: 46276

Re: Double QoS for v6 is possible

From looking at the diagram it appears that Queue Trees hit first, then simple queues are applied?
yep, now both are completely separate things.
Excellent!
by gregsowell
Wed Nov 07, 2012 5:10 pm
Forum: General
Topic: Double QoS for v6 is possible
Replies: 71
Views: 46276

Re: Double QoS for v6 is possible

From looking at the diagram it appears that Queue Trees hit first, then simple queues are applied?
by gregsowell
Thu Oct 18, 2012 4:07 pm
Forum: General
Topic: Feature Request: IPSEC Improvements
Replies: 63
Views: 16645

Re: Feature Request: IPSEC Improvements

*Sigh* agreed. :(
by gregsowell
Tue Sep 25, 2012 1:34 am
Forum: Forwarding Protocols
Topic: OSPF across VLANS not making sense
Replies: 8
Views: 6923

Re: OSPF across VLANS not making sense

Justin, Even with setting your OSPF interface type to P2P, it will still use Multicast...the only advantage is that it stops doing the DR/BDR election. I would try setting my interface types to NMBA(nonbroadcast multi access) and configuring some OSPF neighbors. This will kill multicast and switch a...
by gregsowell
Thu Sep 20, 2012 4:47 am
Forum: General
Topic: Feature Request: IPSEC Improvements
Replies: 63
Views: 16645

Re: Feature Request: IPSEC Improvements

Senior NZ has hit the nail on the head. I will occasionally have a customer do an IPSec tunnel using a Mikrotik if it is the remote device, but seldom if it is the hub. I've hit oddities that despite every effort I can't trouble shoot. Even the debugging messages aren't always enough...they can be s...
by gregsowell
Sun Aug 26, 2012 3:58 am
Forum: General
Topic: ECMP - Poor performance
Replies: 3
Views: 1082

Re: ECMP - Poor performance

If you plug directly into each 5ghz li k and speed test, what does throughput look like?
by gregsowell
Sat Aug 25, 2012 9:51 pm
Forum: Forwarding Protocols
Topic: Slow upstream with RB1100AHx2
Replies: 2
Views: 1377

Re: Slow upstream with RB1100AHx2

Perhaps BGP is using a single ustream provider for your outbound traffic in that interfaces saturated? Check the route table and see where the traffics going.
by gregsowell
Wed Aug 22, 2012 3:49 pm
Forum: General
Topic: Newsletter 41: NEW PRODUCTS!
Replies: 64
Views: 25495

Re: Newsletter 41 NEW PRODUCTS!

We have also more expensive and higher power products. Actually I think we have products for every price range. If you can't find what you need, let us know what product you would want, and we will think how to make it. Rackmount RB2011 with SFP would be awesome. Or a simple half rack style bracket...
by gregsowell
Tue Aug 21, 2012 9:42 pm
Forum: General
Topic: Newsletter 41: NEW PRODUCTS!
Replies: 64
Views: 25495

Re: Newsletter 41: NEW PRODUCTS!

Fair enough.
by gregsowell
Tue Aug 21, 2012 6:24 pm
Forum: General
Topic: Newsletter 41: NEW PRODUCTS!
Replies: 64
Views: 25495

Re: Newsletter 41 NEW PRODUCTS!

Every phone packaged with this cable? We are speaking of the OTG , correct ? http://www.yogaretnam.com/wp-content/uploads/2012/07/nokia_ca_157_usb_otg.png In Bulgaria we buy them for 1-2 euro (1 BGN - 2.5 BGN). They were 4-5 euro until devices became widespread and resellers changed their profit st...
by gregsowell
Tue Aug 21, 2012 7:10 am
Forum: General
Topic: Newsletter 41: NEW PRODUCTS!
Replies: 64
Views: 25495

Re: Newsletter 41 NEW PRODUCTS!

nice router!!!! why UGLY RED!?!?!?!?!
Because Mikrotik ;)
Red is the color of PASSION! hehehe
by gregsowell
Tue Aug 21, 2012 6:30 am
Forum: General
Topic: Newsletter 41: NEW PRODUCTS!
Replies: 64
Views: 25495

Re: Newsletter 41 NEW PRODUCTS!

Hmmm. I have been thinking about it and I believe I know why they did what they did. If you look at the shape of their cute little 2011 wall mount frame, then you will notice that they couldn't adequately allow for all sizes of USB devices, which is why they put the mini usb extension cable. I fores...
by gregsowell
Mon Aug 06, 2012 10:18 pm
Forum: General
Topic: pcc Mangle
Replies: 10
Views: 1411

Re: pcc Mangle

You don't have any firewall rules that would be preventing this, do you? Perhaps you are doing some odd NATing?

I would say post as much of the file export as you can.
by gregsowell
Mon Aug 06, 2012 5:57 pm
Forum: General
Topic: pcc Mangle
Replies: 10
Views: 1411

Re: pcc Mangle

What addressing is in your local address list?
by gregsowell
Thu May 17, 2012 6:53 pm
Forum: General
Topic: RB750 Route
Replies: 5
Views: 862

Re: RB750 Route

Can you ping to the internet from the MTK?

Do a tracert from your host to something on the internet.

Give me an ip add export.
by gregsowell
Thu May 17, 2012 6:24 pm
Forum: General
Topic: RB750 Route
Replies: 5
Views: 862

Re: RB750 Route

Post up "ip firewall nat export" and "ip firewall filter export".
by gregsowell
Fri Dec 09, 2011 11:46 pm
Forum: General
Topic: weird ping results
Replies: 2
Views: 485

Re: weird ping results

I would check and make sure you don't have a loop in your switched network.
by gregsowell
Thu Nov 10, 2011 4:16 am
Forum: Wireless Networking
Topic: Problem with WDS
Replies: 6
Views: 1437

Re: Problem with WDS

Post the interface, IP addressing and bridging configs for one of the clients.

You've got a lot going there Ryley...:)
by gregsowell
Fri May 20, 2011 5:34 am
Forum: Forwarding Protocols
Topic: OSPF Multi access network with different costs?
Replies: 1
Views: 733

Re: OSPF Multi access network with different costs?

Do the server routers connect with another link aside from the L2 segment that the client is accessed on? If so, you should be able to adjust the interface cost on the least desirable link. If they are all on the same L2 segment only and you want to adjust cost to a single router, I'm affraid the an...
by gregsowell
Fri May 20, 2011 5:19 am
Forum: General
Topic: How can i get "FREE" video tutorials and Ebooks for mikrotik
Replies: 2
Views: 2571

Re: How can i get "FREE" video tutorials and Ebooks for mikr

Hey wireguys. I'll shamelessly self promote and say that I have around 8 hours of training videos with slides for Mikrotik here http://gregsowell.com/?page_id=951
by gregsowell
Thu May 19, 2011 10:09 pm
Forum: General
Topic: Problem installing mikroitk 5 on CF...
Replies: 8
Views: 880

Re: Problem installing mikroitk 5 on CF...

I'm using a CF-IDE adapter. I'm also using some DOMs(disk on module).
by gregsowell
Thu May 19, 2011 9:41 pm
Forum: General
Topic: Problem installing mikroitk 5 on CF...
Replies: 8
Views: 880

Re: Problem installing mikroitk 5 on CF...

I've got several CFs in the field right now running great with 4.16 loaded. I've got a 5.2 flash sitting right here running. Try verson 5.2.
by gregsowell
Thu May 19, 2011 4:04 pm
Forum: General
Topic: Problem installing mikroitk 5 on CF...
Replies: 8
Views: 880

Re: Problem installing mikroitk 5 on CF...

Why not do an install to the working 3.2 and then just upgrade?
by gregsowell
Thu May 19, 2011 7:20 am
Forum: General
Topic: Problem installing mikroitk 5 on CF...
Replies: 8
Views: 880

Re: Problem installing mikroitk 5 on CF...

Try sticking the CF card in a windows machine. Then when you run netinstall, it should pop up in the list to be eligible for install.
by gregsowell
Thu May 19, 2011 7:17 am
Forum: General
Topic: New Interface Statistics
Replies: 4
Views: 603

Re: New Interface Statistics

Hmm...looks like it's mostly being read off of switch asics.
by gregsowell
Thu May 19, 2011 12:32 am
Forum: General
Topic: PPPoE server with Ubiquiti stations
Replies: 4
Views: 2684

Re: PPPoE server with Ubiquiti stations

If you want the CPE (customer loco) to do the pppoe authentication, be sure to put the client in router mode, not bridged. You will have to have the clients NAT from here.

Here's the pppoe wiki article http://wiki.mikrotik.com/wiki/PPPOE_Server
by gregsowell
Sat May 14, 2011 6:44 am
Forum: General
Topic: MikroTik to Cisco site to site VPN tunnel
Replies: 1
Views: 820

Re: MikroTik to Cisco site to site VPN tunnel

As for the IP phone: when the call connects, all traffic is sent via UDP. Make sure you aren't natting this traffic otherwise you will get unidirectional traffic. Also, double check your firewall rules.
by gregsowell
Sat May 14, 2011 6:17 am
Forum: General
Topic: Installing proplem with HP Server
Replies: 4
Views: 780

Re: Installing proplem with HP Server

If your server has a NIC that supports PXE boot, then you might just try netinstall. http://wiki.mikrotik.com/wiki/Manual:Netinstall

If you don't have a PXE NIC, you can stick the HD into another machine and get it installed, then swap it back.
by gregsowell
Sat May 14, 2011 6:08 am
Forum: General
Topic: multiple gatway , sub networks what am i missing ?
Replies: 2
Views: 637

Re: multiple gatway , sub networks what am i missing ?

Just taking a quick glance I see you have one of your routes set as:

add comment="" disabled=no distance=1 dst-address=0.0.0.0/32 gateway=192.168.1.1 routing-mark=LocalWireless scope=30 target-scope=10


You have dst-address set to /32. Try changing that to 0.0.0.0/0.
by gregsowell
Mon May 09, 2011 7:40 pm
Forum: Forwarding Protocols
Topic: How To Setup BGP with a Single Peer
Replies: 12
Views: 9373

Re: How To Setup BGP with a Single Peer

fewi FTW...if they could only combine our brains we could take over the world. Lets use your body, though...you have better hair.
by gregsowell
Mon May 09, 2011 7:06 pm
Forum: Forwarding Protocols
Topic: How To Setup BGP with a Single Peer
Replies: 12
Views: 9373

Re: How To Setup BGP with a Single Peer

If you have two peers and you want to set precedence of one over the other, you want to change how they are evaluated. By default, BGP will use AS-path, or how many AS paths away a route is. If you want to defy this, the easiest thing to do is to use something that is evaluated before AS path is, wh...
by gregsowell
Fri May 06, 2011 9:13 pm
Forum: Forwarding Protocols
Topic: stop redirection at some pages
Replies: 3
Views: 854

Re: stop redirection at some pages

In your nat rules, put a bypass in for the server's IP address. As in dst-address=!1.1.1.1 if 1.1.1.1 is the IP address of your webserver.
by gregsowell
Fri May 06, 2011 8:58 pm
Forum: Forwarding Protocols
Topic: [how to] covert any address to internal ip address
Replies: 2
Views: 899

Re: [how to] covert any address to internal ip address

If you run DNS caching on your Mikrotik and have your client's DNS server set to that of your Mikrotik, then the DNS method should work. Alternately you can do a dst-nat, protocol=udp, dst-port=53 with action redirect, it will grab any DNS requsts and proxy them...provided you have enabled DNS cachi...
by gregsowell
Fri May 06, 2011 6:35 pm
Forum: General
Topic: How to auto put website IP in mangle rule?
Replies: 4
Views: 2934

Re: How to auto put website IP in mangle rule?

I wrote an article on doing a fake speedtest site here http://gregsowell.com/?p=2253. What it does is match a layer 7 regex based on speed test sites, then adds their IP addresses to an address-list. This should do the trick, though it does miss the very first occurance.
by gregsowell
Fri May 06, 2011 6:17 pm
Forum: General
Topic: EOIP Configuration Question
Replies: 3
Views: 710

Re: EOIP Configuration Question

@LCTN There are two places you can assign IP addresses. One is the configuration of the tunnel itself, and the other is in /ip address. If you are talking about the tunnel itself, you can have multiple tunnels terminate on the same outgoing interface IP. If you are talking about /ip address, you cou...
by gregsowell
Fri Apr 29, 2011 6:18 am
Forum: Forwarding Protocols
Topic: How To Setup BGP with a Single Peer
Replies: 12
Views: 9373

Re: How To Setup BGP with a Single Peer

fewi is on the case, so there is most likely very little I can add :) But I love to force my opinion on others, so here goes. As per the question of adding a second peer, I would add outbound filters to my BGP advertisements. I only send to the providers what I want them to have. If you are sending ...
by gregsowell
Fri Apr 29, 2011 5:59 am
Forum: General
Topic: PPTP tunnels not passing traffic
Replies: 3
Views: 1589

Re: PPTP tunnels not passing traffic

Try setting IP addresses on your pptp interfaces to something different, then set the static route gateway to the far side pptp address.

Should be able to use something like 172.16.0.1 and 172.16.0.2. A /30 subnet should be just fine :)
by gregsowell
Thu Apr 28, 2011 10:52 pm
Forum: Beginner Basics
Topic: How to use 2 pppoe connection
Replies: 3
Views: 3412

Re: How to use 2 pppoe connection

Not better...just has pretty pictures :P
by gregsowell
Tue Mar 08, 2011 9:23 pm
Forum: General
Topic: NOT TO DO. Weird instalations?
Replies: 386
Views: 239470

Re: NOT TO DO. Weird instalations?

Cisco 2600 + RB750 + cardboard + duct tape = Awesome!
Image
http://gregsowell.com/?p=2723
by gregsowell
Sat Feb 12, 2011 11:00 pm
Forum: General
Topic: How auteticate wired client
Replies: 7
Views: 1448

Re: How auteticate wired client

Hotspot or dhcp authentication should work. There is also the option of pppoe, but the cost two are simpler.
by gregsowell
Sat Feb 12, 2011 10:56 pm
Forum: General
Topic: DS3 Card
Replies: 7
Views: 1559

Re: DS3 Card

As stated above, the 7206 g1 is a solid router for this. Check refurbished prices......should be able to get it for a couple k. Don't go with the npe lower than g1. Also look for a vxr chassis.
by gregsowell
Sat Feb 12, 2011 10:26 pm
Forum: General
Topic: hotspot refuses access to local network
Replies: 1
Views: 379

Re: hotspot refuses access to local network

Until a client authenticate, you can't access them. If you need to make hotspot exclusions, look at hotspot IP bindings.
by gregsowell
Sat Feb 12, 2011 10:20 pm
Forum: General
Topic: Looking for a PPTP VPN Client with route adding
Replies: 2
Views: 646

Re: Looking for a PPTP VPN Client with route adding

Unless I'm mistaken, pptp on Windows sends everything through the tunnel....or is my brain malfunctioning?
by gregsowell
Thu Jan 13, 2011 8:48 pm
Forum: Forwarding Protocols
Topic: OSPF problems when MD5 authentication is in use
Replies: 4
Views: 2460

Re: OSPF problems when MD5 authentication is in use

From what I understand with MD5, your router just does a hash of the password. It then sends the hash along with the Key ID. The key ID is supposed to make migrating to new passwords easier. MD5 should be independent of the system clock. The idea is that you can run a hash on a given password and ge...
by gregsowell
Mon Nov 29, 2010 5:58 pm
Forum: Wireless Networking
Topic: Full-duplex transparent wireless bridge [solved]
Replies: 23
Views: 8080

Re: Full-duplex transparent wireless bridge help needed

The idea was to get the wireless interfaces up first. You can ping the other side. Then get OSPF working. Bridge10 was going to just be a universal endpoint for the EoIP tunnel. It is a virtual IP in the middle of the router. If we use an IP in the middle of the router, it doesn't matter which inter...
by gregsowell
Thu Nov 25, 2010 12:36 am
Forum: Wireless Networking
Topic: Full-duplex transparent wireless bridge [solved]
Replies: 23
Views: 8080

Re: Full-duplex transparent wireless bridge help needed

The network 0.0.0.0/0 is just to get this working in lab. If you do the exact network statements, do not forget to add the bridge interface addressing. Really, it doesn't hurt to add 0.0.0.0/0 in this scenario, as he isn't doing any routing...these are basically just transparent bridges. Mattias, it...
by gregsowell
Tue Nov 23, 2010 5:14 pm
Forum: Wireless Networking
Topic: Full-duplex transparent wireless bridge [solved]
Replies: 23
Views: 8080

Re: Full-duplex transparent wireless bridge help needed

Create a /30 subnet on wlan1 on each device. Ensure you can ping each other. Create a different /30 subnet on wlan2 on each device. Ensure you can ping each other. Enable OSPF. /routing ospf network add network=0.0.0.0/0 area=backbone <=I think that's right...hehe On AP wlan1 ospf interface(/routing...
by gregsowell
Sat Oct 16, 2010 10:09 am
Forum: Forwarding Protocols
Topic: 4x OSPF instances
Replies: 2
Views: 1217

Re: 4x OSPF instances

Just my $.02 here, but I wouldn't run multiple OSPF instances. This will increase CPU/memory load on all of your gear. From your question it seems like you have multi internet connections, each at a different tower? I'm thinking that you could have a special portion of your IP addressing set aside f...
by gregsowell
Sat Oct 16, 2010 9:51 am
Forum: General
Topic: MUM in Australia. Would you come?
Replies: 115
Views: 22882

Re: MUM in Australia. Would you come?

If you guys did do AU, when would it be hosted? It sounds like a crazy flight, but I've got Australia on the bucket list! you're right - the long haul from west coast USA to eastcoast AU is a killer (18 hours nonstop from Melbourne to LA!) but it's much more pleasant (and often cheaper) if you brea...
by gregsowell
Fri Oct 15, 2010 6:32 am
Forum: General
Topic: MUM in Australia. Would you come?
Replies: 115
Views: 22882

Re: MUM in Australia. Would you come?

If you guys did do AU, when would it be hosted? It sounds like a crazy flight, but I've got Australia on the bucket list!
by gregsowell
Thu Aug 05, 2010 7:01 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

I have way too much karma. But work lets me idle here all day...you have too little, given the rather awesome videos in this thread, and your other posts. I'm looking forward to your MUM troubleshooting presentation. I'll play with IPIP in a lab some tomorrow. hehehe...I look forward to making a fo...
by gregsowell
Thu Aug 05, 2010 6:33 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

I was unaware that IPIP can do multicast. The Linux Foundation IPIP documentation claims they can only do unicast IPv4: http://www.linuxfoundation.org/collaborate/workgroups/networking/tunneling IPIP kind of tunnels is the simplest one. It has the lowest overhead, but can incapsulate only IPv4 unic...
by gregsowell
Thu Aug 05, 2010 6:04 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

I don't see how IPIP over IPSec makes any sense to use. One of IPSec's drawbacks is that it can only encapsulate unicast packets, which means that you cannot send broadcasts or multicasts over IPSec tunnels. Many routing protocols require multicast packets, and many other applications require broad...
by gregsowell
Tue Jul 27, 2010 5:47 pm
Forum: General
Topic: 2 polices for one peer in ip ipsec with Cisco
Replies: 4
Views: 1338

Re: 2 polices for one peer in ip ipsec with Cisco

Try this:
/ip ipsec policy set 0 level=unique
/ip ipsec policy set 1 level=unique
Whenever you have multiple policies with a Cisco device you need to set your policy level to unique.
by gregsowell
Fri Jul 23, 2010 5:06 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Re: Windows Port Knock Application

NP bud...happy knocking! :D
by gregsowell
Wed Jul 21, 2010 8:06 pm
Forum: General
Topic: How to block torrents ....?
Replies: 8
Views: 3562

Re: How to block torrents ....?

http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter
connection-limit (integer,netmaks; Default: ) Restrict connection limit per address or address block
connection limit works only with tcp!!!!!

Which is generally what file sharing uses.
by gregsowell
Wed Jul 21, 2010 7:36 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 7783

Windows Port Knock Application

For all of my port knock peeps, I wrote a GUI windows port knock app. It will knock TCP and/or UDP...you can even add text to your UDP port knock. Have a look my friends :D . http://gregsowell.com/?p=2020
by gregsowell
Mon Jun 14, 2010 5:18 am
Forum: Beginner Basics
Topic: I am noob!
Replies: 3
Views: 614

Re: I am noob!

also, please uninstall the viruses from your PC :D
XD classic...hehehe
by gregsowell
Fri Jun 11, 2010 7:22 pm
Forum: Beginner Basics
Topic: A message of thanks to Mikrotik and Greg Sowell
Replies: 4
Views: 1196

Re: A message of thanks to Mikrotik and Greg Sowell

Ciper,

I'm glad they helped! I know nothing gets me going faster than a quick and dirty tutorial. I use the pan/tilt almost weekly. I hate getting on the roof in this 100 degree weather!

Greg
by gregsowell
Sun Jun 06, 2010 12:12 am
Forum: Beginner Basics
Topic: A message of thanks to Mikrotik and Greg Sowell
Replies: 4
Views: 1196

Re: A message of thanks to Mikrotik and Greg Sowell

Hey guys, THANKS. I seldom get feedback, so this is truly nice to hear :) I'm one of those people who love to teach and I love to hear myself talk, so the videos were a natural extension of that...hehehehehe. I'm a HUGE fan of MTK too...see you guys at the next US MUM...I'm hoping to have a booth wi...
by gregsowell
Tue May 18, 2010 5:35 am
Forum: Forwarding Protocols
Topic: How does one properly utilize MME with external links?
Replies: 5
Views: 1485

Re: How does one properly utilize MME with external links?

Douglas,

So you are doing mesh on your interfaces (red, green, yellow, grey). What subnets are you running on these interfaces? Are you doing static routing or OSPF?

What subnets do you have running on the two laptops? Are you bridging those blue interfaces, or routing them?
by gregsowell
Wed Apr 28, 2010 4:09 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

Xezen, I don't have a direct download, as I'm trying to force you poor soles to keep returning to my site ;) But if you were to get any number of "flash downloaders", I'm betting you could find them. You could also do a wireshark to see what the mp4 file is named...I can't make it too easy, now can I?
by gregsowell
Fri Apr 09, 2010 4:24 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

If you are routing at every tower, you can put RLs on clients out there. You can also do mangles for people opening high numbers of connections and block them if need be.
by gregsowell
Thu Apr 08, 2010 5:14 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/20

hii greg thnx for ur effort .. i have a ques , i provide internet to clients of about 100 , my prob is that whenever a problem occurs in a single client all others are affected , high latency ping times are shown , even wireless links are affected with latency , but when i block this client everyth...
by gregsowell
Tue Apr 06, 2010 11:22 pm
Forum: Forwarding Protocols
Topic: OSPF up, Router reliability DOWN :-(
Replies: 16
Views: 3518

Re: OSPF up, Router reliability DOWN :-(

You will still need a tunnel like ipip since a straight ipsec tunnel won't propagate multicast traffic. IPSec is just more secure than pptp alone.
by gregsowell
Tue Apr 06, 2010 3:28 pm
Forum: Forwarding Protocols
Topic: OSPF up, Router reliability DOWN :-(
Replies: 16
Views: 3518

Re: OSPF up, Router reliability DOWN :-(

Well, progress is progress. I'm glad it appears to be operating better :)
by gregsowell
Mon Apr 05, 2010 5:46 pm
Forum: Forwarding Protocols
Topic: OSPF up, Router reliability DOWN :-(
Replies: 16
Views: 3518

Re: OSPF up, Router reliability DOWN :-(

I'm not sure that your issues are OSPF PPTP related, as I've always done ipip tunnels/ipsec with OSPF running inside. :?
by gregsowell
Sun Apr 04, 2010 1:28 am
Forum: General
Topic: NEED HELP WITH VPN AND IPSEC SETUP
Replies: 7
Views: 913

Re: NEED HELP WITH VPN AND IPSEC SETUP

If you would like some training material, I have a video with slides on my blog. Check the link in my sig. :)
by gregsowell
Sat Apr 03, 2010 9:52 pm
Forum: Forwarding Protocols
Topic: OSPF - I'm too stupid
Replies: 23
Views: 6587

Re: OSPF - I'm too stupid

Ospf is incapable of filtering within an area. You can only filter at an abr(area border router) or the border between two areas. Ospf builds a link state database that is identicale for all routers in the same area. The router uses this db to build the route table. This is why you can't filter with...
by gregsowell
Sat Apr 03, 2010 9:35 pm
Forum: Forwarding Protocols
Topic: Frustrated with OSPF
Replies: 4
Views: 989

Re: Frustrated with OSPF

Ospf and routing in general can be complicated. I did a training video with slides here http://gregsowell.com/?p=1611. Have a look and see if it doesn't help.
by gregsowell
Sat Apr 03, 2010 8:59 pm
Forum: Forwarding Protocols
Topic: OSPF Connection Problems
Replies: 1
Views: 733

Re: OSPF Connection Problems

Are you bridging through your 493 or are you routing on it? Is all of this in a single area? Are you doing authentication? Perhaps you have an interface set to passive?
by gregsowell
Sat Apr 03, 2010 8:52 pm
Forum: Forwarding Protocols
Topic: OSPF up, Router reliability DOWN :-(
Replies: 16
Views: 3518

Re: OSPF up, Router reliability DOWN :-(

Just a shot in the dark here, but are you running ospf on the wan link? I'm thinking that perhaps the wan ip is being sent via ospf through the tunnel and the pptp traffic gets confused and tries to sen through the tunnel and thus bricks. Make sure the process only runs inside and on the pptp interf...
by gregsowell
Sat Apr 03, 2010 8:42 pm
Forum: Forwarding Protocols
Topic: BGP Noob: balance and failover on WAN not ISP
Replies: 7
Views: 3377

Re: BGP Noob: balance and failover on WAN not ISP

You can loadbalace via bgp, you just have to work for it. You can prepend and use path atributes such as local preference. It can be a bit of am art. I would agree with ECMP ospf, though :)
by gregsowell
Mon Mar 15, 2010 5:06 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*

Can't wait to the cat nail you :-)
Hilton, I'm glad to see you are so concerned with my personal well being...hehehe
by gregsowell
Mon Mar 15, 2010 4:47 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*

Thanks Greg!
Say that after you have seen the video...hehehe :lol: I'm hoping this one is as useful as the others!
by gregsowell
Mon Mar 15, 2010 4:15 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*

Alright, I know it took me forever, but I've got the routing video complete and up. I recorded this one at the end of a long day so I get tongue tied a couple of times, but other than that it should be intelligible...heh.

Have a look: http://gregsowell.com/?p=1611
by gregsowell
Tue Feb 23, 2010 6:55 pm
Forum: General
Topic: Best Cpu for RouterOS x86.
Replies: 21
Views: 18143

Re: Best Cpu for RouterOS x86.

+1 to you hl1ill. I'm a built, not bought kinda guy myself...especially when it saves so much $!
by gregsowell
Tue Feb 23, 2010 6:44 pm
Forum: General
Topic: Dynamic IP address on Public Side of MT
Replies: 2
Views: 517

Re: Dynamic IP address on Public Side of MT

You are asking if you can assign a dynamic IP to the public side via dyndns...how are you going to query the DNS name if you don't have a working public interface? :D You can adjust just about any IP via dyndns and dns-o-matic. There is a wiki article on it, or a walkthrough here http://gregsowell.c...
by gregsowell
Fri Feb 19, 2010 4:46 am
Forum: Beginner Basics
Topic: MikroTik to MikroTik VPN - OpenVPN or IPSec
Replies: 16
Views: 26962

Re: MikroTik to MikroTik VPN - OpenVPN or IPSec

I do have all of my examples in winbox, because 90% of users use winbox as opposed to CLI. I've heard of plenty of Mac users having success running winbox. Anyway, you CAN run MTK quite nicely with straight IPSec if a single side is dynamic(I covered that in my VPN video). You can actually run it qu...
by gregsowell
Mon Feb 08, 2010 4:29 pm
Forum: Beginner Basics
Topic: Connecting 2 MK's using IPsec, 1 side with dynamic IP
Replies: 4
Views: 7619

Re: Connecting 2 MK's using IPsec, 1 side with dynamic IP

William,

L2TP creates virtual interfaces, so anything you want to traverse that l2tp connection should be route to the IP address bound to the l2tp interface at the far site. I assume you already did this since you are routing, I just figured I would note it for others. :)
by gregsowell
Fri Jan 29, 2010 10:08 pm
Forum: Beginner Basics
Topic: Connecting 2 MK's using IPsec, 1 side with dynamic IP
Replies: 4
Views: 7619

Re: Connecting 2 MK's using IPsec, 1 side with dynamic IP

Hey guys, this is easily done when one side has a static IP.

Check my refernce slides and video.

http://gregsowell.com/?p=1290
by gregsowell
Fri Jan 29, 2010 9:59 pm
Forum: Beginner Basics
Topic: Mikrotik as cisco VPN client
Replies: 28
Views: 41932

Re: Mikrotik as cisco VPN client

Hi guys!

I've got slides and a video tutorial on Mikrotik VPN. It includes MTK to Cisco and even shows you how to configure your ASA for the tunnel.

http://gregsowell.com/?p=1290

I hope this helps :)
by gregsowell
Thu Jan 28, 2010 5:35 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Hi Greg Thanks for the quick response. Firstly here is the script. It's VERY basic which makes me wonder what I forgot? /ip ipsec policy set numbers=0 sa-dst-address=[:resolve remote.host.tld] /ip ipsec peer set numbers=0 address=[:resolve remote.host.tld] I run this on both sides. I have set the D...
by gregsowell
Thu Jan 28, 2010 5:16 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Hi Greg Great work here, thanks very much. I just have one question if I may? My set-up is site A connecting to sites B and C and both VPNs are IPSec. All have dynamic IP addresses and I managed to get these to work with the use of a script to resolve the dynamic host names of the respective sites....
by gregsowell
Sat Jan 23, 2010 8:33 pm
Forum: Beginner Basics
Topic: Can I retrieve data from queue graphic ?
Replies: 7
Views: 1334

Re: Can I retrieve data from queue graphic ?

I've been graphing my mtks for ages using those scripts. It truely is a greAt tool. Take a look at factoRS at cactiusers.org. It is a self installing version that has most of the common plugins installed. If you hit my blog I have some getting started tutorials for cactiez.
by gregsowell
Sat Jan 23, 2010 8:23 pm
Forum: Beginner Basics
Topic: pptp vpn routing question.
Replies: 8
Views: 1343

Re: pptp vpn routing question.

Jack, I'm glad I could help :) what we did was add a new static default route pointed to the ip on the other side of the tunnel. We added a routing mark called pptp on that default route. We then added a routing rule that sent LAN sourced traffic to lookup in the pptp table. Cheers and happy routing!
by gregsowell
Wed Jan 20, 2010 4:38 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Add this as nat rule # 0 on both of your routers. /ip firewall nat add action=accept chain=srcnat comment="nat bypass" disabled=no out-interface=ether1 dst-address=10.0.0.0/8 place-before=0 You need to make sure traffic that needs to traverse your tunnel isn't being NAT'd. This, when placed first in...
by gregsowell
Tue Jan 19, 2010 7:40 pm
Forum: Beginner Basics
Topic: Mikrotik router to cisco 6509 switch
Replies: 2
Views: 2323

Re: Mikrotik router to cisco 6509 switch

I'm going to assume that your internet connection plugs straight into your 6509 and that your 6509 is routing/nating? Do you have routes to the hotspot subnet in your 6500? Do you have a default route set on the Mikrotik pointing to the 6500? I assume it will be a simple routing issue in either one ...
by gregsowell
Tue Jan 19, 2010 5:07 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

hi gregg i follow your ipsec video tutorial this afternoon and i try my 2 mik router with public static ip each, but it doesnt handshake the log shows nothing, router a ROS 3.30 <<<>>> ROS 4.2 or incompatible in deffrent version of ROS? Myron, If you went to system->logging-> and added IPSec to go ...
by gregsowell
Fri Jan 08, 2010 6:22 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Hey Gregsowell. Many, many thanks for all the work you have put in to produce these. For someone like me, struggling and starting with Mikrotik they are a great help. I'm hoping I can find a solution to my VPN routing issue in your latest one Long may you continue and thanks again - your help is gr...
by gregsowell
Fri Jan 08, 2010 5:31 am
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Thank you very much
NP Titius. Just by me lunch next time I'm in your neck of the woods ;)
by gregsowell
Thu Jan 07, 2010 4:05 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

good work do you have anything on mikrotik and squid as i see that there is lots of info on your webpage
Xezen,

I wish I could say that I do, but I've never had the need to run a cache server. Sorry, sir. :?
by gregsowell
Wed Jan 06, 2010 8:30 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Thanks for checking out the new one Pilgrim, glad you liked it.
by gregsowell
Mon Jan 04, 2010 4:18 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE - *Update 01/04/2010*

Alright, as per the update at the top, I've completed the VPN class(link is in the top of the thread). I poured quite a few hours into this one, so I hope you enjoy it.
by gregsowell
Tue Dec 29, 2009 6:03 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Laurence,

Great! I'm glad you found them useful.

BTW ALL, I FINISHED THE VPN CLASS! I'll post again when I have it scheduled, but I think I will put it up next Monday.
by gregsowell
Wed Dec 23, 2009 12:03 am
Forum: General
Topic: Automated Mikrotik Backups From Windows Securely
Replies: 4
Views: 858

Re: Automated Mikrotik Backups From Windows Securely

in sources, there are direct paths to 'C:\Documents and Settings\Greg\...' - can't it be the reason? =) Chupaka, That's hard coded in the source because I'm packing in the plink.exe program. The only way to tell the program where the plink file is, is to manually specify it in the fileinstall comma...
by gregsowell
Tue Dec 22, 2009 4:25 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Nope. I don't have any money for training...hehe. I did ask him a lot of questions, though...questions are free ;)
by gregsowell
Tue Dec 22, 2009 4:03 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Just so I look as cool as everyone else
what, Greg doesn't have any MikroTik certificates? Janis says you were in his class ;)
HA! Normands I have my MCNA, MikrotikCNA...Even if I had some M$ certs I would deny it...hehehehe
by gregsowell
Tue Dec 22, 2009 1:23 am
Forum: General
Topic: Automated Mikrotik Backups From Windows Securely
Replies: 4
Views: 858

Re: Automated Mikrotik Backups From Windows Securely

Nice work...
Thanks :)
by gregsowell
Mon Dec 21, 2009 7:06 pm
Forum: General
Topic: Automated Mikrotik Backups From Windows Securely
Replies: 4
Views: 858

Automated Mikrotik Backups From Windows Securely

Hey guys, I wrote a backup program for Mikrotiks. It isn't the prettiest thing I've ever done, but it does seem to work for me. I've got the compiled exe and the code available. I wrote and tested it on WinXP. I've had reports of problems from Win 7, and I haven't yet tested it on anything other tha...
by gregsowell
Fri Dec 18, 2009 10:09 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

**Spam post was removed**
by gregsowell
Fri Dec 18, 2009 6:26 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

TP, Thanks dude! I'm very much a hands on, physical kind of person, so videos work well for me too. Some proxy stuff does sound interesting, though I think I'm going to do a lite QoS one first. I'm not looking forward to the QoS one because it's going to take me forever to build the slides...sooo ma...
by gregsowell
Fri Dec 18, 2009 4:31 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Thanks guys! Right now I'm working on a VPN class. I'm about half way through it. The battle is how much detail to put into them...I want to put enough to cover most situations, but not so much that people get lost. Also, if I put in too much time I risk suffering the wrath of my wife...hehehe :lol:...
by gregsowell
Thu Dec 17, 2009 12:36 am
Forum: General
Topic: Protect from customers
Replies: 9
Views: 2487

Re: Protect from customers

3550 won't go 100%, it will err-disable the port(shut it down). You can then set a recovery timer on ports that are err-disabled, so the port will move back to forwarding traffic after a given interval. 3550s are the cheapest option in the Cisco line to take care of these issues. Here's an article o...
by gregsowell
Fri Dec 11, 2009 9:44 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Realy it's great.

Thanks gregsowell.
Crown...thanks...I'm honored to see this is your first post...hehe :lol:
by gregsowell
Fri Dec 11, 2009 9:22 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Awesome great stuff.

Thanks,

rgs Pilgrim
Thanks Pilgrim...I aims to please...heh.
by gregsowell
Fri Dec 11, 2009 4:20 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Nice one! very good work
Ha, thanks Fosben. :D
by gregsowell
Wed Dec 09, 2009 4:43 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Re: Basic Mikrotik Training Videos - FREE

Wow, this is so great! Thank you for that and I hope everyone enjoys it.
Normunds, thanks for taking a look! =)
by gregsowell
Tue Dec 08, 2009 9:33 pm
Forum: Beginner Basics
Topic: Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*
Replies: 62
Views: 33289

Basic Mikrotik Training Videos - FREE - *Update 03/15/2010*

I've started a series of class videos that include slides on the Mikrotik Router OS. This is the main listing, all current and new videos will be listed here: http://gregsowell.com/?page_id=951 Mikrotik Basics - getting a standard network configured/some tools/functions : http://gregsowell.com/?p=95...
by gregsowell
Thu Dec 03, 2009 6:23 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37514

Re: Basic router setup guide/tutorial ?

Sam,

Great, I'm glad I could help =)

Greg
by gregsowell
Thu Dec 03, 2009 4:35 am
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37514

Re: Basic router setup guide/tutorial ?

I know this is a shameless self plug, but I've been doing some mikrotik classes with slides and all for FREE. All I'm hoping for is feedback. Mikrotik Basics -> http://gregsowell.com/?p=957 Intro to networking -> http://gregsowell.com/?p=954 Mikrotik Security(available 12/7/09)-> http://gregsowell.c...
by gregsowell
Wed Sep 30, 2009 6:40 am
Forum: General
Topic: Protect from customers
Replies: 9
Views: 2487

Re: Protect from customers

What you want is a Cisco 3550 or better...so a 3550, 3560, 3750, 6500 with sup 32 or better. 3550 48 port switch is $310. You want to use port security(limits macs per port/prevents mac table overruning/dhcp starvation), dhcp snooping(prevents rogue DHCP/build DHCP snooping binding table) and dynami...
by gregsowell
Tue Sep 29, 2009 1:03 am
Forum: General
Topic: two remote to one main office ipsec
Replies: 2
Views: 549

Re: two remote to one main office ipsec

From B1:
You need to make sure your NAT accept will take into account the subnet that exists at B2.
Either, make your policy to M cover both M's subnet and B2 or create two policies that will match B2 and M.

From B2, do the opposite.

From M, complete the configs from B1 & 2.
by gregsowell
Wed Aug 29, 2007 4:21 pm
Forum: General
Topic: Calea from mirrored port
Replies: 4
Views: 807

Re: Calea from mirrored port

I got it working. It seems that since nothing is on the other side of the bridge port, the traffic would never traverse. It would send out a flood every 5 mins, but nothing else. I set the ageing time to 0 on the bridge and bingo, all traffic would traverse the bridge always. This allowed me to snif...
by gregsowell
Tue Aug 28, 2007 4:49 pm
Forum: General
Topic: Calea from mirrored port
Replies: 4
Views: 807

Re: Calea from mirrored port

BUMP,

any ideas?
by gregsowell
Tue Aug 28, 2007 1:34 am
Forum: General
Topic: Calea from mirrored port
Replies: 4
Views: 807

Calea from mirrored port

version 2.9.45 When I say sniff, I mean a calea sniff. I'm trying to do calea captures from a RB150 to a switchport that is mirroring my outgoing internet traffic. I have one port that connects to the network for admin/dhcp and one port that goes to the mirrored switchport. I've tried making the por...