Community discussions

MikroTik App

Search found 348 matches

  • 1
  • 2
by gabacho4
Thu Feb 22, 2024 2:32 am
Forum: Wireless Networking
Topic: Cannot connect to cAP AX on 5ghz
Replies: 5
Views: 379

Re: Cannot connect to cAP AX on 5ghz

Yeah that's your problem. Set that frequency to just 5200, save, and then try to connect with your phone. The wifi will be unavailable for a minute while the radio is restarted.
by gabacho4
Thu Feb 22, 2024 1:29 am
Forum: Wireless Networking
Topic: Cannot connect to cAP AX on 5ghz
Replies: 5
Views: 379

Re: Cannot connect to cAP AX on 5ghz

Did you manually set the frequency or did you leave it on auto? If the latter don't do that. Set the frequency to channel 36 or 40 or so. I bet your AP has selected a frequency that your PC or phone cannot see.
by gabacho4
Wed Feb 21, 2024 10:03 pm
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

I feel like I'm taking crazy pills. You are LOL. Oh holy crap! I went back and read and wow. I've got no excuse other than I'm an idiot. Clearly my guidance would have been different, and in line with yours, had I had the literacy of a 2 yr old. I'll administer a self beating that would make a Cana...
by gabacho4
Tue Feb 20, 2024 6:53 am
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

All very doable, the hex connects to the RB4011 as a wireguard client and that tunnel then allows local users at the RB to reach the HEX as well as any users reaching the RB via wireguard. I feel like I'm taking crazy pills. Anav I don't understand why you're being difficult. The OP has said repeat...
by gabacho4
Tue Feb 20, 2024 1:32 am
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

Ah ok. That's much clearer now. I am not sure how you will do the "on demand" portion of that from A to B since B is the initiator in your setup. There's no way for A to initiate the IPSEC connection should there be interesting traffic due to the CGNAT as site B. Furthermore I don't think ...
by gabacho4
Tue Feb 20, 2024 12:26 am
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

OP said he wanted devices to connect to a hex that is behind CGNAT for VPN purposes (i.e. Road warrior setup). There is no way to do that via a standard Wireguard config due to the CGNAT. Thus he needs a device capable or running zerotier or similar technology. At least that was one of the requireme...
by gabacho4
Mon Feb 19, 2024 6:07 am
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

Sorry, to answer your other questions, RoS 6 is only getting security updates at this time. Staying on the most current release should be safe. However, you won't have features like Wireguard and I think it's safe to assume that Mikrotik will stop supporting RoS 6 sooner than later. If you update to...
by gabacho4
Mon Feb 19, 2024 5:57 am
Forum: General
Topic: RB4011 / hEX routers upgrade & VPN connections
Replies: 51
Views: 1837

Re: RB4011 / hEX routers upgrade & VPN connections

Given the distances you mentioned I would not try to upgrade remotely. If something fails, you'll have no way to recover without making a trip in person.
by gabacho4
Mon Feb 19, 2024 2:34 am
Forum: General
Topic: Split IPv6 /56 obtained via the PPPoE
Replies: 11
Views: 556

Re: Split IPv6 /56 obtained via the PPPoE

Hope these aren't your real IPv6 addresses otherwise you just published your public IP. Why does this matter? Wasn't the whole point of IPv6 was there being no NAT thus allowing direct peer to peer connectivity and making all sides aware of the globally routeable IP of every device? Come on.... Edi...
by gabacho4
Sun Feb 18, 2024 4:47 pm
Forum: Beginner Basics
Topic: DHCP Starting IP from 192.168.88.2
Replies: 11
Views: 678

Re: DHCP Starting IP from 192.168.88.2

If you want to assign static IPs I believe most people just adjust the DHCP range to account for those IPs. (i.e. if I want 50 static IPs, I set my DHCP range to be 10.10.1.51-10.10.1.254 instead of starting at 10.10.1.2). I personally don't care about devices with dynamic IPs, or what IP they are a...
by gabacho4
Fri Feb 16, 2024 4:34 pm
Forum: General
Topic: RB5900: Sporadic SFP link failures
Replies: 2
Views: 725

Re: RB5900: Sporadic SFP link failures

Why not upgrade to 7.13.4? Also be sure you update routerboard firmware as well.
by gabacho4
Thu Feb 15, 2024 4:12 pm
Forum: Wireless Networking
Topic: New CapsMan compatibility
Replies: 1
Views: 152

Re: New CapsMan compatibility

if the devices can be updated to use the wave2 drivers, and there is enough space, yes. If not, no.
by gabacho4
Tue Feb 13, 2024 3:35 pm
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

Holvoetn - that's the other can of worms I didn't want to go into with OP but alluded to instead. You did a good job of succinctly describing it. The state of Wi-Fi with MT is convoluted and insanely difficult to explain and is further complicated by various use cases. I love my cAP ax devices though.
by gabacho4
Tue Feb 13, 2024 6:24 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

Yes though I'm confused why this matters so much. I just use the Capsman that comes with the OS version or package. Staying current ensures you're using the latest, greatest, and most secure version.
by gabacho4
Tue Feb 13, 2024 5:56 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

OK so based on other info I've read on the Mikrotik wiki, it seems I am wrong. if you are on 7.13, then you are using CAPsMAN v2. V1 was retired with ROS 6.37. With new developments, however, there are two ways you can use CAPsMAN but I really don't want to open another can of worms. Things work wit...
by gabacho4
Tue Feb 13, 2024 5:20 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

what packages are on your Hex? ROS 7.13 and what else?
by gabacho4
Tue Feb 13, 2024 4:59 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

you use, and are using, CAPSMAN v1. The version that was part of the original wireless package.
by gabacho4
Tue Feb 13, 2024 4:45 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

OK, so you are using CAP AC..you want the wireless package. So go to the Mikrotik website, and download the extra packages for MMIPS and install the wireless package on your HEX. On the cAP ACs you should also have the wireless package.

EDIT: in short, you want the CAPSMAN v1
by gabacho4
Tue Feb 13, 2024 4:19 am
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

In general yes. But the package name/type is what you have to pay attention to depending on the WiFi technology of your device. So...

How about we play a game where I ask a couple questions?

1. What device are you using?
2. What router OS version are you using?
by gabacho4
Tue Feb 13, 2024 4:15 am
Forum: Beginner Basics
Topic: RB5009 not getting DynamicIP from Comcast Cable MODEM (Solved)
Replies: 11
Views: 621

Re: RB5009 not getting DynamicIP from Comcast Cable MODEM

To add on to Larsa's words, you might have to call your ISP to release the MAC lock so that the new router can be used and its MAC address registered. I've had to do that in the past.....good old Comcrap I'm talking to you!
by gabacho4
Mon Feb 12, 2024 6:07 pm
Forum: Wireless Networking
Topic: Capsman version [SOLVED]
Replies: 16
Views: 725

Re: Capsman version [SOLVED]

Assuming you have wifi or wireless packages installed you can go to System --> Packages (in Winbox) OR type system/package/print in a terminal.

You should seem something like the following:
packages.jpg


OR

Columns: NAME, VERSION
# NAME VERSION
0 wifi-qcom 7.13.4
1 routeros 7.13.4
by gabacho4
Mon Feb 12, 2024 1:02 am
Forum: General
Topic: Can't access hEX (pretty urgent) [SOLVED]
Replies: 30
Views: 1353

Re: Can't access hEX (pretty urgent) [SOLVED]

Congrats! You'll have to let us know what the issue was if you ever find out. A silver lining to your problem is that you learned a fre new things. Amazing what crisis will do in that regard sometimes.
by gabacho4
Sun Feb 11, 2024 11:52 pm
Forum: General
Topic: Can't access hEX (pretty urgent) [SOLVED]
Replies: 30
Views: 1353

Re: Can't access hEX (pretty urgent) [SOLVED]

Assuming the original Hex is configured correctly and securely, why would you be worried about overwriting the default config of the new router? Were I in your place I would reset the new router and remove the default configuration. Then I'd run the .rsc commands in a terminal window. You'd save tim...
by gabacho4
Sun Feb 11, 2024 5:23 am
Forum: Announcements
Topic: Newsletter #116 | January 2024
Replies: 90
Views: 23439

Re: Newsletter #116 | January 2024

Can we expect new "Ethernet routers" ?
Something with better CPU, RAM and so on ? Like 1GB memory ? x64 bit 4 cores or more ?
Like CCR2004-16G-2S+? Maybe CCR2004-16G-2S+PC?
You forgot about the RB50009!
by gabacho4
Sat Feb 10, 2024 8:11 pm
Forum: General
Topic: Can't access hEX (pretty urgent) [SOLVED]
Replies: 30
Views: 1353

Re: Can't access hEX (pretty urgent) [SOLVED]

Time to hit the drawing table then as well to prevent this from happening again. Maybe 2 x HEX in VRRP configuration, or a cold spare already configured and ready to go. Given what Hex cost, I'd lose no sleep over costs. Can't say the same for having redundant CCR2004s though I'd do that if the app...
by gabacho4
Sat Feb 10, 2024 5:10 pm
Forum: General
Topic: Can't access hEX (pretty urgent) [SOLVED]
Replies: 30
Views: 1353

Re: Can't access hEX (pretty urgent) [SOLVED]

I've got you all beat. Had the same experience with a router 11265.4 kilometers away from my location. Fortunately I had someone at the location who was able to reset the router and do a simple config so that I could connect and finalize the configuration. Unfortunately it was someone who is not tec...
by gabacho4
Fri Feb 09, 2024 4:58 pm
Forum: Beginner Basics
Topic: The ABC of CAPsMAN v2 (with updates) [SOLVED]
Replies: 41
Views: 1941

Re: The ABC of CAPsMAN v2 (with updates) [SOLVED]

https://createnewwiki.fandom.com/wiki/Special:CreateNewWiki You are making fun of the situation and of me (no pity pls). Improving docs is not something that you should make fun of. I think you have misunderstood. I believe Normis was being earnest in his response. I DO think he makes it clear that...
by gabacho4
Wed Feb 07, 2024 2:41 am
Forum: General
Topic: Wireguard doesn't work and no logs
Replies: 18
Views: 1408

Re: Wireguard doesn't work and no logs

He's had Wireguard problems for some time now. I asked him for configs a week ago and never got them. He later declared that he had solved the problem. Looks like not so much. Maybe we'll get configs this time...
by gabacho4
Tue Feb 06, 2024 4:53 pm
Forum: Beginner Basics
Topic: The ABC of CAPsMAN v2 (with updates) [SOLVED]
Replies: 41
Views: 1941

Re: The ABC of CAPsMAN v2 [SOLVED]

Maybe this? https://help.mikrotik.com/docs/display/ROS/WiFi


Nevermind: it seems you may have thst link already.
by gabacho4
Mon Feb 05, 2024 11:25 pm
Forum: Wireless Networking
Topic: Getting Water in CubePro and CubeProSA
Replies: 2
Views: 233

Re: Getting Water in CubePro and CubeProSA

As always a simple search shows you aren't the only one with this issue.

viewtopic.php?p=1021920&hilit=Cube+pro+water#p1021920
by gabacho4
Sun Feb 04, 2024 2:57 pm
Forum: Wireless Networking
Topic: CAP AX on a management VLAN - [Solved]
Replies: 6
Views: 530

Re: CAP AX on a management VLAN - [Solved]

Outstanding! Glad it was of help. That configuration is for a stand alone AP. The config for Capsman would be quite different because the bulk of the config is made on the Capsman device. Unless you have a large number of APs I don't think Capsman is worth it. I set it up but reverted to stand alone...
by gabacho4
Fri Feb 02, 2024 6:55 pm
Forum: Wireless Networking
Topic: CAP AX on a management VLAN - [Solved]
Replies: 6
Views: 530

Re: CAP AX on a management VLAN

Try this out: /interface bridge add name=bridge1 port-cost-mode=short vlan-filtering=yes /interface ethernet set [ find default-name=ether2 ] poe-out=off /interface vlan add interface=bridge1 name=MGMT vlan-id=100 /interface list add include=all name=Access add name=Mgmt /interface wifi channel add ...
by gabacho4
Thu Feb 01, 2024 11:18 pm
Forum: Beginner Basics
Topic: need help with choosing right hardware stack for a home office [SOLVED]
Replies: 12
Views: 667

Re: need help with choosing right hardware stack for a home office [SOLVED]

I have an cAP ax that provides full coverage in my 3100 sq ft townhome. MT wifi works amazing IMHO and there's no stupid controller to have to host or purchase. I have IoT devices that only speak 2.4GHz and they have no issues at all. I agree the APs are a little big but they are not ugly by any mea...
by gabacho4
Wed Jan 31, 2024 2:27 am
Forum: General
Topic: What difference is there between TP-link and mikrotik router
Replies: 227
Views: 95263

Re: What difference is there between TP-link and mikrotik router

All MikroTik routers have a Flux Capacitor, TP-Link routers do not.
GREAT SCOTT!
by gabacho4
Sun Jan 28, 2024 3:13 pm
Forum: General
Topic: Wireguard on Windows (client), no gateway, can't ping router [SOLVED]
Replies: 7
Views: 499

Re: Wireguard on Windows (client), no gateway, can't ping router [SOLVED]

Provide the config for the router and client and chances are we can easily help you get things sorted. Otherwise, it's all guessing complicated by language barrier and the fact that I don't think you know exactly what it is you're doing. Last response from me until I see configs. The other guys can ...
by gabacho4
Sun Jan 28, 2024 1:02 am
Forum: General
Topic: Wireguard on Windows (client), no gateway, can't ping router [SOLVED]
Replies: 7
Views: 499

Re: Wireguard on Windows (client), no gateway, can't ping router [SOLVED]

Please provide the full configuration on your Mikrotik router (export hide-sensitive file=AnyNameYouWish), as well as the client config.
by gabacho4
Sat Jan 27, 2024 2:57 am
Forum: Beginner Basics
Topic: CCR2004-16G-2S multiple bridges or not?
Replies: 36
Views: 2316

Re: CCR2004-16G-2S multiple bridges or not?

Probably all comes down to $$$ and the hardware they are able to acquire with that $$$ in order to meet the price point of their target market. That's my best guess. At the end of the day, the story I've seen time and time again on this forum is that people buy things without researching the block d...
by gabacho4
Fri Jan 26, 2024 8:56 pm
Forum: Beginner Basics
Topic: CCR2004-16G-2S multiple bridges or not?
Replies: 36
Views: 2316

Re: CCR2004-16G-2S multiple bridges or not?

I think this is what we've all been talking about but in different aspects, some of focused more on best practices versus if something can be done. I never meant to infer that you absolutely cannot use the router in different ways. It's like people who use CRS switches for routers in their home. Yes...
by gabacho4
Thu Jan 25, 2024 10:24 pm
Forum: Beginner Basics
Topic: CCR2004-16G-2S multiple bridges or not?
Replies: 36
Views: 2316

Re: CCR2004-16G-2S multiple bridges or not?

mkx - believe you are wrong this time around. Every one of the devices cited in that section has 1 switch chip only. So, when there is 1 switch chip only, a 88E5191X would be configured accordingly. The disclaimer further down is specifically about devices with two switch chips. Therefore, one would...
by gabacho4
Sat Jan 20, 2024 6:27 am
Forum: Wireless Networking
Topic: Cannot add smart lights to AX wifi
Replies: 10
Views: 758

Re: Cannot add smart lights to AX wifi

Here https://github.com/ngoehring/cAP-AX-con ... N%20config is the config for my cAP AX with a number of vlans. Perhaps it's of help.
by gabacho4
Fri Jan 19, 2024 2:51 am
Forum: Wireless Networking
Topic: Cannot add smart lights to AX wifi
Replies: 10
Views: 758

Re: Cannot add smart lights to AX wifi

Aside from the chitty chatty nature of some IoT products, I've gotten pretty exasperated at how hard it is to get them to play with modern, secure networks. I'd be curious to see what you can sort out.
by gabacho4
Fri Jan 19, 2024 2:12 am
Forum: Wireless Networking
Topic: Cannot add smart lights to AX wifi
Replies: 10
Views: 758

Re: Cannot add smart lights to AX wifi

Have you tried setting the encryption ciphers? I have the CCMP and GCMP ones selected on my setup. Or perhaps try setting nothing more than wpa2.
by gabacho4
Fri Jan 19, 2024 1:32 am
Forum: Wireless Networking
Topic: Cannot add smart lights to AX wifi
Replies: 10
Views: 758

Re: Cannot add smart lights to AX wifi

Your posted config shows a security profile "sec1" being used but I don't see it declared anywhere. Can you please post it? My best guess is that you are trying to use WPA3. A lot of IoT devices only do WPA2.
by gabacho4
Fri Jan 12, 2024 4:07 pm
Forum: RouterBOARD hardware
Topic: Ceiling AP + "LED Ceiling Lights" in one product
Replies: 8
Views: 722

Re: Ceiling AP + "LED Ceiling Lights" in one product

I think you're looking for a Ubiquiti device. You should pitch that idea to them if they aren't already working on it. Unifi HOME. Just remember you saw it here first.
by gabacho4
Wed Jan 10, 2024 4:23 am
Forum: General
Topic: MikroTik forum - http error 500
Replies: 7
Views: 829

Re: MikroTik forum - http error 500

Been getting it off and on all afternoon and evening long. It's not you; it's them.
by gabacho4
Sun Jan 07, 2024 11:54 pm
Forum: General
Topic: CAP AX does not upgrade in manual mode
Replies: 6
Views: 1293

Re: CAP AX does not upgrade in manual mode

Your configuration sounds screwed up. Post your config? From CLI: "export hide-sensitive file=AnyNameYouWant"
by gabacho4
Sun Jan 07, 2024 3:59 pm
Forum: General
Topic: Under DNS Amplification attack, network unusable with Mikrotik routers
Replies: 12
Views: 1818

Re: Under DNS Amplification attack, network unusable with Mikrotik routers

When you say basic config do you mean a default one or one that you have made changes to? If the latter can you provide the full config? From CLI "export hide-sensitive file=WhateverYouWant". EDIT: nevermind I just reread and saw that you had posted the config. Your Winbox, as noted, is co...
by gabacho4
Sun Jan 07, 2024 3:56 pm
Forum: General
Topic: Under DNS Amplification attack, network unusable with Mikrotik routers
Replies: 12
Views: 1818

Re: Under DNS Amplification attack, network unusable with Mikrotik routers

What is the cpu usage of your router right now? Have you tried creating a couple of raw (prerouting) firewall rules to drop incoming requests on tcp/udp port 53 so that your router isn't processing every request?
by gabacho4
Sun Jan 07, 2024 6:38 am
Forum: Wireless Networking
Topic: Annoying DFS at channel 48-64
Replies: 6
Views: 1154

Re: Annoying DFS at channel 48-64

Do you have it configured to use a specific, non- DFS channel? If not, you should.
by gabacho4
Thu Jan 04, 2024 7:33 pm
Forum: Beginner Basics
Topic: Roadwarrior
Replies: 2
Views: 809

Re: Roadwarrior

What VPN type are you using? IPSEC, OpenVPN, Wireguard??

Maybe provide a sanitized config for us to eyeball? (from termainal - "export hide-sensitive file=whateveryouwant")
by gabacho4
Thu Jan 04, 2024 2:29 am
Forum: Beginner Basics
Topic: Purchase recommendation
Replies: 13
Views: 1476

Re: Purchase recommendation

With a simple queue assigned to WAN for example, your bandwidth will be split evenly between clients (as needed). This should allow your downloads to proceed at the fastest rate possible while still allowing someone to stream from Disney Plus. Or you can set simple queues with a specific client IP a...
by gabacho4
Thu Jan 04, 2024 12:26 am
Forum: General
Topic: 7.13 legacy devices - plans?
Replies: 9
Views: 1603

Re: 7.13 legacy devices - plans?

No time like the present to start. Like all those people using Winblowz 10 that are now suddenly left with unsupported paper weights. The writing was one the wall for some time. People not planning for the ever nearing obsolescence get burned.
by gabacho4
Thu Jan 04, 2024 12:22 am
Forum: Beginner Basics
Topic: Purchase recommendation
Replies: 13
Views: 1476

Re: Purchase recommendation

I have a PC version CCR2004 but it was spontaneously rebooting randomly and pissed me off. I exported the config, ported it to my RB5009 and haven't had one issue at all. So I would not loudly recommend the CCR for the time being. That being said, I WILL wipe the config, do a simple config, and see ...
by gabacho4
Wed Jan 03, 2024 11:39 pm
Forum: Beginner Basics
Topic: Purchase recommendation
Replies: 13
Views: 1476

Re: Purchase recommendation

Why would you recommend the CCR1009? Aren't they discontinued? I'd recommend an RB5009 all the way.
by gabacho4
Fri Dec 29, 2023 7:20 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

In all fairness, and with all crankiness aside, I still think it's a bug that you should report. NULL would seem like it should work as "" is just that - null. So that's a goof on MT's part as far as I am concerned and should be corrected. I work on various laptops depending on my mood - a...
by gabacho4
Fri Dec 29, 2023 6:58 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

Ironically, I was able to figure this out by producing a working proposal using Winbox, then printing the proposal from the CLI. Might want to reevaluate your dismissal of tools for future troubleshooting.
by gabacho4
Fri Dec 29, 2023 6:52 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

You're being difficult to work with. MANY people use Winbox and I do so on Windows, Linux, and MacOS. But I'll look past your onerous behavior and provide this as a solution as it worked for me on CLI. For the auth algorithm just use "". [ngoehring@CapAX-1] /ip/ipsec/proposal> add name=tes...
by gabacho4
Fri Dec 29, 2023 6:46 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

Seems I can duplicate that from the command line but it works just fine via WinBox. Looks like you may have found a bug. I'd report it.
by gabacho4
Fri Dec 29, 2023 6:39 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

Please provide screenshots. I've used this with no problems before so I betting you have a configuration issue.

Edit: Have you tried it without selecting anything - including null?
by gabacho4
Fri Dec 29, 2023 3:44 pm
Forum: General
Topic: "failure: AEAD already provides authentication"
Replies: 11
Views: 878

Re: "failure: AEAD already provides authentication"

I've seen this question a few times already. Per the interwebs: AES-GCM (Galois Counter Mode) internally uses AES in CTR mode that can provide confidentiality and at most Ind-CPA security. AES-GCM also uses GHASH to provide integrity and authentication like any secure MAC. In the end, AES-GCM consti...
by gabacho4
Thu Dec 28, 2023 2:53 am
Forum: General
Topic: IPSec Site to Site stopped working
Replies: 13
Views: 848

Re: IPSec Site to Site stopped working

It's paid but stupid cheap to register a domain for x years and then ddns away. Worth it to me. And you can create subdomains if you have multiple sites you employ this with... Each with their own dynamically updated DNS record. I'm using it with two sites.
by gabacho4
Thu Dec 28, 2023 1:51 am
Forum: General
Topic: IPSec Site to Site stopped working
Replies: 13
Views: 848

Re: IPSec Site to Site stopped working

I got burned by the magic of MT's DDNS outages a couple times. Now I run a script on my router that updates a DNS record in Cloudflare and I've had 0 issues since. I love MT just not their DDNS service.
by gabacho4
Fri Dec 22, 2023 8:04 am
Forum: RouterBOARD hardware
Topic: rb5009UG+S+IN
Replies: 12
Views: 1890

Re: rb5009UG+S+IN

Yes it can and people have.
by gabacho4
Fri Dec 22, 2023 4:04 am
Forum: RouterBOARD hardware
Topic: rb5009UG+S+IN
Replies: 12
Views: 1890

Re: rb5009UG+S+IN

It should be enabled out of the box and will show up under System/Disks when mounted.
by gabacho4
Mon Dec 18, 2023 12:22 pm
Forum: Wireless Networking
Topic: ROS 7.13 on cAP ac
Replies: 8
Views: 1545

Re: ROS 7.13 on cAP ac

Remind me - is there a way to reboot a device into netinstall mode? I've always used the button on the device itself.
From CLI type
system routerboard settings set boot-device=try-ethernet-once-then-nand
then reboot.
by gabacho4
Fri Dec 15, 2023 11:10 pm
Forum: General
Topic: What is the packets coming from cable modem to router
Replies: 19
Views: 2602

Re: What is the packets coming from cable modem to router

My.guess would be that your ISP does not allow you to run a webserver ( at least not on traditional ports) and so they are attempting to determine if you are. I had this issue with Comcrap internet here in USA and they would make make the connection hickup so that the webserver could not be contacte...
by gabacho4
Mon Dec 04, 2023 10:28 pm
Forum: Announcements
Topic: Newsletter #115 | November 2023
Replies: 17
Views: 36530

Re: Newsletter #115 | November 2023

That's the kind of stand up behavior from Mikrotik that I've come to greatly appreciate. Joegoldman - if you wanted to hook me up with a CHR license (should you ask for a few) I wouldn't complain. Would be fun to play with a (licensed) CHR instance. Regardless, glad we could get to the bottom of the...
by gabacho4
Sat Dec 02, 2023 6:03 pm
Forum: Announcements
Topic: Newsletter #115 | November 2023
Replies: 17
Views: 36530

Re: Newsletter #115 | November 2023

Using a bit of Google Lens, I was able to find joegoldman's original post. Normis, you guys were indeed lied to in a big way. https://forum.mikrotik.com/viewtopic.php?t=133271&start=50 Also picture from bottom left was stolen from a web article dated Nov 2022 featuring a setup in Wales: https://...
by gabacho4
Sat Dec 02, 2023 5:39 pm
Forum: Announcements
Topic: Newsletter #115 | November 2023
Replies: 17
Views: 36530

Re: Newsletter #115 | November 2023

If it's that big a deal, start watermarking your photos. Easy fix.
by gabacho4
Fri Nov 17, 2023 5:31 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 85068

Re: v7.13beta [testing] is released!

somehow sad and pathetic this has to be told to people (or even those who refer to themselfes as network engineers)
+1,000,000,000,0000
by gabacho4
Sun Nov 12, 2023 3:29 pm
Forum: RouterBOARD hardware
Topic: RB5009
Replies: 6
Views: 1938

Re: RB5009

by gabacho4
Sun Nov 12, 2023 2:34 am
Forum: RouterBOARD hardware
Topic: RB5009
Replies: 6
Views: 1938

Re: RB5009

Honestly, it's not even worth the effort. It has no impact on router performance and is not indicative of any issue at all.
by gabacho4
Sun Nov 12, 2023 12:35 am
Forum: RouterBOARD hardware
Topic: RB5009
Replies: 6
Views: 1938

Re: RB5009

It's not a problem at all. Seems like netinstall makes it go away in my experience but it isn't a problem regardless.
by gabacho4
Sat Nov 11, 2023 4:33 pm
Forum: Announcements
Topic: v7.12.1 [stable] is released!
Replies: 252
Views: 88871

Re: v7.12 [stable] is released!

"Noticed that on all of them I needed to reboot a second time to upgrade the routerboard firmware despite having "/system routerboard settings set auto-upgrade=yes" configured." This has always been required. All the auto-upgrade does is save you the effort of having to go in and...
by gabacho4
Tue Nov 07, 2023 6:10 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

amm0 OP is in Germany not Canada. The Canada angle was introduced by another user.
by gabacho4
Tue Nov 07, 2023 4:50 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

What sockets are you talking about? Can you provide a picture? I personally spent a bit of time doing some tests to determine which bands where fastest in a CA configuration. For me (in Kuwait using Zain) it was band 1 and 20 or 3 and 20 depending on the time of day. So I only enabled those three ba...
by gabacho4
Sat Nov 04, 2023 12:27 am
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

Glad I could help. As long as your EP06 is the A variant and not the E you should enjoy a much better experience. I used my LtAP in Kuwait with an EP06E and was getting 150 Mbps download easily. Yes, I know, the default modem should have worked. It did, but I heard the Quectels were a little more pe...
by gabacho4
Sat Nov 04, 2023 12:05 am
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

According to Mikrotik's product page for the LtAP LTE6, it can used the following: 2G bands 2 (1900MHz) / 3 (1800MHz) / 5 (850MHz) / 8 (900MHz) 3G Category R7 (21Mbps Downlinks, 5.76Mbps Uplink) / R8 (42.2Mbps Downlink, 5.76Mbps Uplink) 3G bands 1 (2100MHz) / 2 (1900MHz) / 5 (850MHz) / 8 (900MHz) LT...
by gabacho4
Fri Nov 03, 2023 11:59 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

@ctop what bands are used in Canada? The LtAP LTE6 sold by Mikrotik comes with a modem that is tuned for European bands. If Canada uses European bands then you definitely have something worth looking into. I would think Canada however would utilize bands like those used in the USA. Therefore, the Lt...
by gabacho4
Fri Nov 03, 2023 4:24 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

@mkx fair enough then. OP should disable the GSM option and then test the 3G by itself to see what speeds he gets. If they are decent he could leave the 3G and LTE enabled. If 3G is crap, then disable it and stick with LTE only. Unfortunately this is how it works with Mikrotik gear. You have to dial...
by gabacho4
Fri Nov 03, 2023 3:07 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

Some research has confirmed. Per this https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://www.ackermansecurity.com/blog/home-security-tips/3g-4g-5g%23:~:text%3DAccording%2520to%2520digital%2520trends%252C%25203G,say%252C%2520in%2520a%2520moving%2520vehicle.&...
by gabacho4
Fri Nov 03, 2023 3:00 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

From my experience it seemed to connect to whatever has the strongest signal. The modem doesn't care about your connection speed, it just wants a solid signal. If you're moving in and out of coverage areas, then go with what works best but just prepared for your connection speed to be potentially sl...
by gabacho4
Fri Nov 03, 2023 12:30 pm
Forum: Beginner Basics
Topic: LtAP LTE6 kit: underperforming mobile internet
Replies: 21
Views: 2434

Re: LtAP LTE6 kit: underperforming mobile internet

Uncheck the gsm and 3g boxes. You do not want the LtAP LTE6 to use those as they are much slower than LTE.
by gabacho4
Sun Oct 22, 2023 5:58 am
Forum: General
Topic: Big botnet hitting me
Replies: 6
Views: 1008

Re: Big botnet hitting me

Strongly suspect you've left your router DNS open to the world due to bad or no firewall rules. Can you please post your config?

Edit: your whole config
by gabacho4
Thu Oct 19, 2023 7:18 pm
Forum: Beginner Basics
Topic: How to tell if I'm behind NAT?
Replies: 4
Views: 1750

Re: How to tell if I'm behind NAT?

Most companies these days are using CGNAT however many will give you a static public IPv4 for a generally nominal monthly fee. Well worth it. The other thing to check is if you have IPv6 as that should be publicly routable. Takes a while to wrap the mind around IPv6 if you're not used to it.
by gabacho4
Mon Oct 09, 2023 7:07 pm
Forum: Beginner Basics
Topic: Wireguard policy based routing in routeros?
Replies: 4
Views: 1645

Re: Wireguard policy based routing in routeros?

Create a new routing table in Routing -> Tables. Then create a routing rule at Routing -> Rules and specify the IP you want and select the desired table and lookup only in table. Lastly make sure your firewall rules don't interfere. I assume you need to have a NAT rule as well for that gateway.
by gabacho4
Fri Oct 06, 2023 8:26 pm
Forum: General
Topic: Suggestions for a router?
Replies: 9
Views: 1063

Re: Suggestions for a router?

You aren't running the test with one of the routers as the client or serving endpoint are you? Routers are not meant for that type of activity and will always perform less than amazing. You have to use non-router client/server at both ends to test this.
by gabacho4
Fri Oct 06, 2023 7:36 pm
Forum: General
Topic: Suggestions for a router?
Replies: 9
Views: 1063

Re: Suggestions for a router?

I do not think that you will be able to achieve 500Mb with any MT router. I am maxed out on two 1gig connections with the same provider a few miles apart and the best we can achieve is around 300 or so What router model are you using? I've seen other posts from people claiming well above that. Beli...
by gabacho4
Sat Sep 30, 2023 3:19 pm
Forum: General
Topic: prolific DCHP lease stopped locally log entries [SOLVED]
Replies: 6
Views: 1186

Re: prolific DCHP lease stopped locally log entries [SOLVED]

Just to close the loop on this. I did a bit more exploring and discovered that someone had previously joined two Cat5e cables with a female to female keystone jack. This cable run is the one that feeds my CCR2004 WAN. I went ahead and turned a trusty Hex into a switch, removed the keystone, and plug...
by gabacho4
Tue Sep 26, 2023 5:12 am
Forum: General
Topic: prolific DCHP lease stopped locally log entries [SOLVED]
Replies: 6
Views: 1186

Re: prolific DCHP lease stopped locally log entries [SOLVED]

I appreciate the response and the script. I can certainly try it. However, as I point out in my OP, there are instances of this happening multiple times in succession just a few minutes after a new lease is acquired. Why would my router be reaching out to the DHCP server a mere number of minutes aft...
by gabacho4
Tue Sep 26, 2023 3:44 am
Forum: General
Topic: prolific DCHP lease stopped locally log entries [SOLVED]
Replies: 6
Views: 1186

Re: prolific DCHP lease stopped locally log entries [SOLVED]

Device is given the same IP again though and has had the same one for days now. My understanding of DHCP is that the device should request an IP in advance of the lease expiration at which point it will be either reassigned the old one or given a new one. With the current situation, my device is los...
by gabacho4
Tue Sep 26, 2023 1:37 am
Forum: General
Topic: prolific DCHP lease stopped locally log entries [SOLVED]
Replies: 6
Views: 1186

prolific DCHP lease stopped locally log entries [SOLVED]

Hello all, For my home network I have Verizon FiOS which I have directly connected to my CCR2004. No Verizon router required or utilized. Everything works outstanding as far as my IPV4 and IPv6 connectivity is concerned. However, I am seeing a large number of dhcp client "lease stopped locally&...
by gabacho4
Sat Sep 23, 2023 10:14 pm
Forum: Wireless Networking
Topic: Cube alignment acceptable?
Replies: 5
Views: 1830

Re: Cube alignment acceptable?

Put the passwords in a text file and then encrypt it. That way you don't have to remember more than one password and your devices should be safe from others. There are password managers that do the same thing but I don't like to give things like passwords to other companies who themselves then get h...
by gabacho4
Tue Sep 19, 2023 3:12 pm
Forum: Wireless Networking
Topic: New CapAX - config sanity check requested
Replies: 8
Views: 1690

Re: New CapAX - config sanity check requested

/system routerboard settings set auto-upgrade=yes I prefer to decide when to upgrade and where to. This doesn't update the packages, it just updates the routerboard firmware at the same time I update the packages manually. Device reboots twice and I'm done versus having to update the packages, rebo...
by gabacho4
Tue Sep 19, 2023 3:04 pm
Forum: Wireless Networking
Topic: New CapAX - config sanity check requested
Replies: 8
Views: 1690

Re: New CapAX - config sanity check requested

Don't use auto.
Set frequency yourself to a non used channel.

Probably that's why your laptop can't see it.
Just to follow up, manually setting the freq absolutely solved my issue with the lappy. Running strong and fast now.
by gabacho4
Tue Sep 19, 2023 12:24 am
Forum: Wireless Networking
Topic: New CapAX - config sanity check requested
Replies: 8
Views: 1690

Re: New CapAX - config sanity check requested

Why not wait for capAXE and wifiwave3
Or
capAX7 and wifiwave4? :-0
With any luck, Zerotier for non-ARM devices will come first!

But seriously, tell me more about my config. If it's great I'll port it over to capXXX or wifiwaveX.
by gabacho4
Mon Sep 18, 2023 11:37 pm
Forum: Wireless Networking
Topic: New CapAX - config sanity check requested
Replies: 8
Views: 1690

Re: New CapAX - config sanity check requested

Ok, I'll tackle the freq next. Does the rest of the config look alright? If I got it 99.9% right the first time, I'd probably drop dead.
by gabacho4
Mon Sep 18, 2023 11:07 pm
Forum: Wireless Networking
Topic: New CapAX - config sanity check requested
Replies: 8
Views: 1690

New CapAX - config sanity check requested

Hello all, I decided to grab a Mikrotik CapAX in order to get some experience configuring their APs, all well as to see how the 'Tik wifi really performs. I've seem plenty of people declare that it is less than amazing, while others say that it works just fine for them. It was a little weird to put ...
by gabacho4
Sat Sep 16, 2023 11:22 pm
Forum: General
Topic: Mikrotik SUCKS
Replies: 82
Views: 11505

Re: Mikrotik SUCKS

Read the subject and the first couple sentences and immediately got bored. Best of luck network guru.
by gabacho4
Tue Sep 05, 2023 2:33 pm
Forum: General
Topic: Everything on latest OS version [SOLVED]
Replies: 10
Views: 1828

Re: Everything on latest OS version [SOLVED]

Ride the lightning!!
by gabacho4
Sat Sep 02, 2023 6:54 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

Perhaps it was that you spammed the forums with like 6 separate SPOILER posts in short succession rather than put them all in one post?

Ironic that one of those who takes a heavier handed approach with other forum users now complains when heavy handed approaches are taken with him...
by gabacho4
Fri Sep 01, 2023 8:48 pm
Forum: RouterBOARD hardware
Topic: Item Part ID
Replies: 1
Views: 2517

Re: Item Part ID

IN indicates that it's a desktop useable device versus a rack mount (RM) one.

OUT means that it is a device designed to be used outdoors.
by gabacho4
Wed Aug 30, 2023 4:51 pm
Forum: Beginner Basics
Topic: Problem with wireguard [SOLVED]
Replies: 5
Views: 1845

Re: Problem with wireguard [SOLVED]

You cannot have multiple peers and use an allowed IP of 0.0.0.0/0 on the router. This is why the first connected client works but the others don't. The router is being told to send ALL traffic to the peer (the first connected) and so it all goes to peer1 and to no one else. Instead you need to set t...
by gabacho4
Thu Aug 17, 2023 5:31 am
Forum: Announcements
Topic: SwOS Lite version 2.17 released!
Replies: 19
Views: 97174

Re: SwOS Lite version 2.17 released!

Awesome! Now I can finally upgrade my CSS610-8P from the SwOS 17rc1 I was running for the past 1.5 years! So glad to see SwOS isn't dead. It really is great for normal L2 implementations where ROS is complete overkill. Keep it coming Mikrotik!
by gabacho4
Tue Jun 27, 2023 6:02 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

In this thread a call for mod volunteers was made. Related to that very action are the responses of those of us that are trying to ensure that Mikrotik wisely chooses mods who don't abuse us in the course of posting to the forum. This is no unrelated. It's entirely on topic. Already demonstrated is ...
by gabacho4
Tue Jun 27, 2023 5:54 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

@mrz and Mikrotik staff - you all really have to start to have a more active role in ending the overzealous mod issue. This is your brand name and reputation. It's a Mikrotik owned forum. There are people literally abandoning the forum and your products because of the toxic experience they are subje...
by gabacho4
Tue Jun 27, 2023 5:38 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

This is the kind of arbitrary and unacceptable Mod crap I am referring to (pulled from a random post): Last edited by AnalForumMod on Thu May, 2023, edited 1 time in total. Reason: removed excessive quotting of preceding post; be wise, quote smart. lines of quote, 1 line of post. In other words, I t...
by gabacho4
Tue Jun 27, 2023 5:29 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

This is spam, detected from my SpamGPT https://forum.mikrotik.com/viewtopic.php?p=968765#p968765 No one is arguing that legitimate spam or inappropriate posts shouldn't be removed. I'm all for it. I'm referring to the many edited by AnalForumMod with a Reason stating not to use quotes or whatever t...
by gabacho4
Tue Jun 27, 2023 5:21 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

BartosP, that post is not spam. It is not unrelated to Mikrotik or promoting another product or fake service. Why would it be deleted? It is someone expressing their frustration with the seemingly arbitrary way things are moderated on this forum. A sentiment echoed by a number of us. Just because pe...
by gabacho4
Tue Jun 27, 2023 4:43 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

I think all reasonable users can agree that spam is things like a post for p3nis enlargement or something else obnoxious and unrelated to the purpose of the form. Spam is not generally considered to be a user using a legitimate feature of the forum to quote or otherwise refer to another user's post....
by gabacho4
Mon Jun 26, 2023 11:47 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

Well said... Which is exactly why I don't pretend to tell others how they should post so long as they aren't posting spam, inappropriate material, or otherwise abusing the forums.
by gabacho4
Mon Jun 26, 2023 11:38 pm
Forum: General
Topic: Forum moderation volunteers
Replies: 238
Views: 34200

Re: Forum moderation volunteers

Some tend to overuse the freedom of speech which is given to them arquing that "what is not forbidden is allowed". And others tend to abuse their moderator powers to impose their will that "what is not forbidden, should be." I believe Normis has weighed in a couple of times on t...
by gabacho4
Sat Jun 17, 2023 7:47 pm
Forum: RouterOS beta
Topic: [7.10 stable] DNS Crash
Replies: 54
Views: 10516

Re: [7.10 stable]DO NOT UPDATE!!!

Can someone just kill this topic.....
You said what I've been thinking painfully inside for days.
by gabacho4
Mon Jun 12, 2023 12:14 pm
Forum: RouterOS beta
Topic: [7.10 stable] DNS Crash
Replies: 54
Views: 10516

Re: [7.10rc3]DO NOT UPDATE!!!

hide-sensitive is a working export command for me on 7.9.2 and 7.10rc5. Is it just not needed anymore?
by gabacho4
Mon Jun 12, 2023 11:20 am
Forum: RouterOS beta
Topic: [7.10 stable] DNS Crash
Replies: 54
Views: 10516

Re: [7.10rc3]DO NOT UPDATE!!!

Post your router configuration. Your ENTIRE router config!

In terminal: /export hide-sensitive file=AnyNameYouWish. Then view in a text editor, copy and paste for others to review.
by gabacho4
Fri Jun 09, 2023 12:17 pm
Forum: Beginner Basics
Topic: Dynamic wireguard peer address
Replies: 3
Views: 637

Re: Dynamic wireguard peer address

Glad to be of help. Sometimes we all need a little nudge in the right direction. I've had many a "lightbulb" moment in the course of my networking adventure.
by gabacho4
Fri Jun 09, 2023 8:42 am
Forum: Beginner Basics
Topic: Dynamic wireguard peer address
Replies: 3
Views: 637

Re: Dynamic wireguard peer address

Just use the ddns host as the IP address. You can use a fqdn. So, client.dn.mynetname.net will work just fine. Set a keep alive for like 30 seconds. Easy peasy. The ddns will perform a check every 30 minutes unlesd you changed the setting. I'd probably recommend like 5 to 10 minutes instead. Only wa...
by gabacho4
Mon Jun 05, 2023 2:42 pm
Forum: General
Topic: _Any plans to launch NAS products?
Replies: 5
Views: 685

Re: _Any plans to launch NAS products?

Signs point to yes
My favorite is "Concentrate and ask again"
by gabacho4
Wed May 24, 2023 5:18 pm
Forum: General
Topic: high level vulnerability: Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability
Replies: 2
Views: 412

Re: high level vulnerability: Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability

You're kidding right? Did you even look at the forum posts or conduct a search? Glad you don't secure my networks.
by gabacho4
Tue May 23, 2023 4:38 pm
Forum: Announcements
Topic: v7.10beta [testing] is released!
Replies: 249
Views: 50264

Re: v7.10beta [testing] is released!

I was expecting nothing more than the fix for the CVE. Holy crap! And finally all the BFD and BGP complaints will stop!!!!!
by gabacho4
Mon May 22, 2023 10:45 am
Forum: General
Topic: Any info about this ? ZDI-23-710 CVE-2023-32154
Replies: 48
Views: 7605

Re: Any info about this ? ZDI-23-710 CVE-2023-32154

Appreciate Normis's candor on this matter and definitely look forward to the update addressing it. As I said before, I'm a huge fan of Mikrotik devices and want to be able to keep singing their praise to friends and coworkers. Seems there is more to the story than reported initially. I'm more than w...
by gabacho4
Sun May 21, 2023 9:17 am
Forum: General
Topic: Any info about this ? ZDI-23-710 CVE-2023-32154
Replies: 48
Views: 7605

Re: Any info about this ? ZDI-23-710 CVE-2023-32154

Don't forget how the vendor then asked for the vulnerability info to be resent. So the intial notification was either not truly received or someone at Mikrotik missed it, saw it and forgot, or they just hit delete. I really like Mikrotik but this chain of events concerns me. And while a fix has been...
by gabacho4
Sun May 07, 2023 4:06 pm
Forum: RouterBOARD hardware
Topic: Single RB5009 rack mount options?
Replies: 8
Views: 2552

Re: Single RB5009 rack mount options?

It barely fits in the bolts of the mikrotik rack. I had to use force in order to bolt it down. The adaptors would need to be 2-3 mm longer. I've no idea what you're talking about. I have the Mikrotik rack and had no problem whatsoever. This sounds like yet another instance of someone claiming the M...
by gabacho4
Sun May 07, 2023 3:55 pm
Forum: RouterBOARD hardware
Topic: Single RB5009 rack mount options?
Replies: 8
Views: 2552

Re: Single RB5009 rack mount options?

I can confirn it's sturdy. I wouldn't go out of my way to stress it but it's not going to break with expected wear and tear. The metal is not flimsy. Two of them makes it much more solid but one works well enough. Otherwise I guess you could design your own and 3d print them maybe.
by gabacho4
Mon May 01, 2023 8:17 pm
Forum: SwOS
Topic: CSS610-8G-S2+: Trunk not working via SFP+
Replies: 4
Views: 2962

Re: CSS610-8G-S2+: Trunk not working via SFP+

I've just had a similar issue with my CSS610-8G-2S+ except I maybe discovered the cause ?? When setting up the switch, I had the device powered on and upon inserting the 10G SFP+ transceiver, the switch restarted. Seemed almost like a short or something. Switch rebooted and everything appeared to be...
by gabacho4
Wed Apr 19, 2023 4:17 pm
Forum: General
Topic: RouterOS on a CCR2004-1G-12S+2XS vs. VyOS on a SuperMicro SuperServer with 4 x 10 GBit Ethernet
Replies: 8
Views: 1364

Re: RouterOS on a CCR2004-1G-12S+2XS vs. VyOS on a SuperMicro SuperServer with 4 x 10 GBit Ethernet

Some people have jobs requiring them to download and upload large files or graphics/photographs. Aside from that, I myself wonder the same. I think it's an issue of the way these things are marketed to the masses who are told that more bandwidth means better internet speed. Nevermind the fact that m...
by gabacho4
Tue Mar 28, 2023 4:27 pm
Forum: RouterOS beta
Topic: mDNS repeater feature
Replies: 330
Views: 96570

Re: mDNS repeater feature

@normis

That is amazing to hear on both counts. Cannot wait for the new mDNS feature and more stable DNS function. The users whined and Mikrotik listened. Keep it up!
by gabacho4
Thu Mar 16, 2023 9:20 pm
Forum: Beginner Basics
Topic: behind NAT
Replies: 5
Views: 508

Re: behind NAT

Does your provider use IPv6 by chance? That would most likely get you globally routable IPs if getting out from behind NAT is a requirement.
by gabacho4
Sun Mar 12, 2023 8:34 pm
Forum: Beginner Basics
Topic: Internet access control at home
Replies: 6
Views: 1020

Re: Internet access control at home

Just create a vlan and corresponding SSID for wifi that only kid devices connect to. Then create a rule that disables the vlan access to WAN at a given hour. This way, it doesn't matter if your kid statically sets his IP or not as the kids vlan access to WAN will go dark. Of course, were it one of m...
by gabacho4
Mon Mar 06, 2023 10:07 am
Forum: SwOS
Topic: No https support in SwOS web interface?
Replies: 7
Views: 2555

Re: No https support in SwOS web interface?

There is not.
by gabacho4
Sat Mar 04, 2023 11:07 pm
Forum: Beginner Basics
Topic: CSS610-8P-2S+IN Switch - pre purchase technical question
Replies: 8
Views: 674

Re: CSS610-8P-2S+IN Switch - pre purchase technical question

Mikrotik devices don't force you to use any single port for WAN or LAN or APs etc. You can absolutely use ether1 for WAN and the other ports for anything you wish. For POE you just have to be sure you're not drawing more power than the device can provide. That would be the only limitation I can thin...
by gabacho4
Sat Mar 04, 2023 9:02 pm
Forum: Beginner Basics
Topic: CSS610-8P-2S+IN Switch - pre purchase technical question
Replies: 8
Views: 674

Re: CSS610-8P-2S+IN Switch - pre purchase technical question

Any of the Ethernet ports will work as all are capable of providing power. SFP+ do not provide power nor will they ever as fiber is not a conductor.
by gabacho4
Fri Mar 03, 2023 5:46 pm
Forum: General
Topic: Feature requests
Replies: 1707
Views: 616145

Re: Feature requests

I feel it is useless... Like so many of your posts. No wonder your mod powers were revoked. You've contributed nothing to this thread today other than to attack someone. Now I've contributed negatively as well but after watching your interactions with forum users over the past year or so I finally ...
by gabacho4
Fri Mar 03, 2023 4:52 pm
Forum: RouterOS beta
Topic: VRRP sync-connection-tracking setup
Replies: 32
Views: 14935

Re: VRRP sync-connection-tracking setup

Just to make sure that I've understood this thread correctly - I have two RB5009s with VLANs in VRRP configuration. I've enabled pre-emptive mode for all the VRRP interfaces, set one of the VLAN VRRPs as the Group Master, and then enabled Sync.Connection Tracking on the Group Master interface on bot...
by gabacho4
Wed Mar 01, 2023 5:53 pm
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 135779

Re: v7.8 [stable] is released!

Curiously my RB5009UG only shows CPU temperature for system health. No PoE in voltage, no 2 pin voltage, no jack voltage, no board temperature...that's weird to me given that they are the same hardware minus PoE out.
by gabacho4
Sun Feb 12, 2023 9:30 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

So you all have piqued my interest as I had not previously seen a reason to try something aside from ipsec or wireguard for my remote network access and streaming needs. I am trying to wrap my head around the zerotier concept as it differs a bit from a traditional vpn solution. Just to be certain, I...
by gabacho4
Sun Feb 12, 2023 6:09 am
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

I was wondering when that plug would be dropped. Was beginning to think you'd acquired an arm model
by gabacho4
Sat Feb 11, 2023 4:59 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

I'll trade your 40 ms latency for my mid 2xx ms latency. The big hop across the great waters hurts AND my internet is serviced with an LTaP LTE6 using the local cell provider. Get 100+ Mbps down / 50 Mbps up. Service works well enough but the latency sucks. I'm rocking at CCR2004 PC version at the r...
by gabacho4
Sat Feb 11, 2023 3:37 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

Damnit llama stop rejiggering your posts! 😀 Yes third party providers and data centers (alas I used to use linode for this) all have know IP blocks and so the streaming providers just blacklisted them. It was (maybe is) a game of wackamole trying to use a server that hadn't been blocked yet. For a h...
by gabacho4
Sat Feb 11, 2023 3:33 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

From henceforth, we're all to be known as Team Alpha Super Awesome Cool Dynamite Wolf Squadron.

Hellz yeah!
by gabacho4
Sat Feb 11, 2023 3:26 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

Amazon prime video, Disney+ (I gotta have my princess movies), Netflix, few other streaming services that verify US presence.
by gabacho4
Sat Feb 11, 2023 3:06 pm
Forum: General
Topic: Zerotier and Streaming
Replies: 42
Views: 6748

Re: Zerotier and Streaming

I can't speak for zero tier but I do this quite successfully via standard Wireguard VPN and policy based routing (routing/rules) after creating the requisite table and address list/firewall rules. Works on my laptop in a traditional client to server setup as well as over specific home network device...
by gabacho4
Wed Feb 08, 2023 7:31 pm
Forum: RouterBOARD hardware
Topic: Know if the product is new - rb5009 [SOLVED]
Replies: 13
Views: 2797

Re: Know if the product is new - rb5009 (scam?) [SOLVED]

It is legit. Both of mine and many others had some sort of oil on the heatsink. Just part of the manufacturing process from all I've seen and heard. As for the firmware, this is normal too. The lower one is what comes installed by default and 7.6 was the latest stable at the time your router was pro...
by gabacho4
Wed Feb 08, 2023 5:31 am
Forum: Useful user articles
Topic: How Can I Delete My Forum Profile?
Replies: 3
Views: 2986

Re: How Can I Delete My Forum Profile?


I can kindly ask why?
He was told that he'd get all the girls like Anav if he signed up on the forum...then he learned the propaganda about Anav is all a lie.
by gabacho4
Sat Feb 04, 2023 4:14 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 71034

Re: v7.8beta [testing] is released!

If I had to guess it's the L3 offloading. I remember a similar warning being given previously. It's probably not stable on the CRS3xx or something like that right now.
by gabacho4
Wed Feb 01, 2023 7:06 pm
Forum: Announcements
Topic: Newsletter 110
Replies: 15
Views: 19880

Re: Newsletter 110

Anav - how do you feel about moving to Latvia? I think you have a bright future in Mikrotik marketing.
by gabacho4
Fri Jan 27, 2023 8:26 pm
Forum: Containers
Topic: Pihole makes me craze
Replies: 7
Views: 2974

Re: Pihole makes me craze

That's like networking 101. You're using a Mikrotik device and doing more advanced configurations and we were supposed to remind you to change your DNS to the pihole DNS server on a downstream device? Anyway...
by gabacho4
Thu Jan 26, 2023 9:40 am
Forum: SwOS
Topic: [Bug] CSS610-8P-2S+IN and PoE+
Replies: 26
Views: 6724

Re: [Bug] CSS610-8P-2S+IN and PoE+

Reinis - getting a stable SWoS lite version instead of 17rc1 would be cool. A worried that the slow pace of development and lack of stable version means SWoS is dead.
by gabacho4
Wed Jan 25, 2023 12:23 pm
Forum: Containers
Topic: Pihole makes me craze
Replies: 7
Views: 2974

Re: Pihole makes me craze

You seem to forget that none of us are paid support and have jobs/life/other interests. That said, if you can't use your SPF port you have a configuration issue. I'm sure you can figure that out by yourself as well.
by gabacho4
Sun Jan 22, 2023 3:33 pm
Forum: General
Topic: Feature Request: IPSEC Improvements
Replies: 138
Views: 43580

Re: Feature Request: IPSEC Improvements

+1 for AES GCM 128 256 512 in phase 1 of IKE2

AND

VTI
by gabacho4
Sat Jan 21, 2023 10:10 pm
Forum: Scripting
Topic: Backup config to Gmail v1.6 [SOLVED]
Replies: 68
Views: 14835

Re: Backup config to Gmail v1.6 [SOLVED]

This really is great! Thanks a million for your efforts and help!
by gabacho4
Fri Jan 20, 2023 6:14 pm
Forum: Wireless Networking
Topic: ISP only allowing approved CAT6 LTE equipment
Replies: 11
Views: 1104

Re: ISP only allowing approved CAT6 LTE equipment

You'd need to know the IMEI of the deceased device and then follow that link I posted. There are AT commands to be run.
by gabacho4
Fri Jan 20, 2023 5:25 pm
Forum: Wireless Networking
Topic: ISP only allowing approved CAT6 LTE equipment
Replies: 11
Views: 1104

Re: ISP only allowing approved CAT6 LTE equipment

This looks promising https://www.reddit.com/r/mikrotik/comments/soa182/r11elte6_custom_identity/?utm_source=share&utm_medium=android_app&utm_name=androidcss&utm_term=1&utm_content=share_button Would seem you can take the IMEI of a device known to work and clone it. Probably not a goo...
by gabacho4
Fri Jan 20, 2023 1:09 pm
Forum: Containers
Topic: Docker Pihole container on USB
Replies: 6
Views: 3852

Re: Docker Pihole container on USB

You forgot to provide the output of system/disks/print.

Currently your container is set to use the router's nand memory. Not USB.
by gabacho4
Fri Jan 20, 2023 12:09 pm
Forum: Scripting
Topic: Backup config to Gmail v1.6 [SOLVED]
Replies: 68
Views: 14835

Re: Backup config to Gmail v1.5 [SOLVED]

But will you pass me my slippers? 😀. Seriously, I misread leanfr91's message and thought he had altered the script some. After rereading I see that is not the case. Thanks for the script and the learning tool. We can work on the bed assistance later.
by gabacho4
Fri Jan 20, 2023 9:54 am
Forum: Containers
Topic: Docker Pihole container on USB
Replies: 6
Views: 3852

Re: Docker Pihole container on USB

Need to see output of system/disks/print.

Also need to see your container settings in their entirety. Don't have access to my 5009 but believe /container/print might work.
by gabacho4
Fri Jan 20, 2023 6:49 am
Forum: Scripting
Topic: Backup config to Gmail v1.6 [SOLVED]
Replies: 68
Views: 14835

Re: Backup config to Gmail v1.5 [SOLVED]

Care to provide the full working script by chance? I'd enjoy the chance to work through it step by step as I learn scripting.
by gabacho4
Thu Jan 12, 2023 4:47 pm
Forum: Announcements
Topic: v7.7 [stable] is released!
Replies: 357
Views: 110903

Re: v7.7 [stable] is released!

(useless comment) If someone with a big PPPoE server has upgraded, I really want to see if it has issues,
Popping some popcorn for the big show. Extra butter!
by gabacho4
Wed Jan 11, 2023 8:19 pm
Forum: General
Topic: Mikrotik Pro not working properly on Android 13
Replies: 7
Views: 787

Re: Mikrotik Pro not working properly on Android 13

Regardless of cause, the iOS functionality is limited compared to Android's. I tried the iPhone out and got tired of such limitations across a number of capabilities and tools that just work on Android. So back to Android it is for me.
by gabacho4
Wed Jan 11, 2023 7:47 pm
Forum: General
Topic: Mikrotik Pro not working properly on Android 13
Replies: 7
Views: 787

Re: Mikrotik Pro not working properly on Android 13

On Android, the Mikrotik app has the ability to launch a terminal/CLI for config or other purposes. On iPhone that feature does not exist because Apple decided it allowed too much system access or something. Apple restricts access to a number of data sources or features that Android does just fine. ...
by gabacho4
Wed Jan 11, 2023 7:25 pm
Forum: General
Topic: Mikrotik Pro not working properly on Android 13
Replies: 7
Views: 787

Re: Mikrotik Pro not working properly on Android 13

Works just fine for me on my Pixel 7 Pro. No functionality issues at all and I can actually launch a tik terminal unlike anav and his precious iPhan. 😀
by gabacho4
Mon Jan 09, 2023 10:31 pm
Forum: SwOS
Topic: CSS610-8P-2S+IN trusted interfaces disable bug? [SOLVED]
Replies: 2
Views: 2515

Re: CSS610-8P-2S+IN trusted interfaces disable bug? [SOLVED]

You're gonna wanna see viewtopic.php?t=188407#p962169 and look for the link to SWoS lite 17.1rc1.
by gabacho4
Fri Jan 06, 2023 6:31 pm
Forum: General
Topic: Feature Request - Mobile App - Terminal
Replies: 1
Views: 277

Re: Feature Request - Mobile App - Terminal

It exists in the android version. Believe iOS security features do not permit it and so there is no terminal on iPhone.
by gabacho4
Wed Jan 04, 2023 12:24 am
Forum: General
Topic: Cloud backup no working
Replies: 5
Views: 785

Cloud backup no working

I have not been able to save a backup of my CCR2004 config to the cloud for a number of days now. Every time I try I get: Server error: backend error. Is anyone else having this issue?
by gabacho4
Wed Dec 28, 2022 7:39 pm
Forum: Forwarding Protocols
Topic: Routing rule use cases
Replies: 16
Views: 15024

Re: Routing rule use cases

As @anav already said I use route rules for policy based routing for subnets or individual devices through different routing tablea as I find them much cleaner than mangling and they allow me to continue to use fastrack.
by gabacho4
Sat Dec 24, 2022 4:09 am
Forum: SwOS
Topic: [Bug] CSS610-8P-2S+IN and PoE+
Replies: 26
Views: 6724

Re: CSS610-8P-2S+IN and PoE+

Interesting.... I've got no other suggestions unfortunately. I have the same switch and it works just fine with POE+ and ubiquiti APs. I know I've seen people say that mikrotik doesn't necessarily adhere to the same standards/protocols as other manufacturers. Wonder if this is one of those cases? Or...
by gabacho4
Sat Dec 24, 2022 3:46 am
Forum: SwOS
Topic: [Bug] CSS610-8P-2S+IN and PoE+
Replies: 26
Views: 6724

Re: CSS610-8P-2S+IN and PoE+

Have you tried setting the POE to on instead of auto? My guess is that AP requires passive POE not POE+.
by gabacho4
Sat Dec 24, 2022 12:47 am
Forum: Announcements
Topic: Newsletter 109
Replies: 13
Views: 23210

Re: Newsletter 109

Weakest MT newsletter I have ever seen. Shame on you guys, looks like you have notbing to say. No new device, no ROS features announcements, nothing! Are you still alive there? 😳 P.S. Please ensure us you won't stop your dyndns for upcoming holidays as you once did before! Holy @#$& you must no...
by gabacho4
Wed Dec 21, 2022 9:35 pm
Forum: SwOS
Topic: SwOS 2.16?
Replies: 7
Views: 3432

Re: SwOS 2.16?

My CSS610-8P has been this way since day 1. My CRS 328 running SwOS successfully checks and says it’s up to date. MikroTik seemingly hasn’t completely implemented whatever setup in the backend is needed for the css610-8p. To blow your mind even more, search the forums for SwOS 17rc1 for the css610-8...
by gabacho4
Wed Dec 14, 2022 7:48 pm
Forum: Beginner Basics
Topic: Pi-Hole worth using?
Replies: 19
Views: 7670

Re: Pi-Hole worth using?

I run mine as a container and use cloudflare’s family protection dns servers. Great for allowing to see what my more chatty/tracking filled devices are as well as identify any errant activity by kids online.
by gabacho4
Wed Dec 14, 2022 7:34 pm
Forum: Beginner Basics
Topic: Pi-Hole worth using?
Replies: 19
Views: 7670

Re: Pi-Hole worth using?

I used to use pihole but discovered adguardhome and haven’t looked back. It’s much smaller than pihole and works outstandingly on my RB5009. Highly recommend.
by gabacho4
Tue Dec 06, 2022 7:57 pm
Forum: General
Topic: RB5009 PoE-out missing & Voltage Monitor
Replies: 4
Views: 626

Re: RB5009 PoE-out missing & Voltage Monitor

Glad I could help answer question #1. 😃

As for #2 I don’t have an answer why the voltage display isn’t there (perhaps not supported by CPU) but I can say that you’re not unique. I don’t see it on my 5009 either.
by gabacho4
Tue Dec 06, 2022 7:50 pm
Forum: General
Topic: RB5009 PoE-out missing & Voltage Monitor
Replies: 4
Views: 626

Re: RB5009 PoE-out missing & Voltage Monitor

Hate to ask but what is the exact model number of your 5009?
by gabacho4
Mon Dec 05, 2022 9:12 pm
Forum: General
Topic: Does mikrotik support NAT traversal for IPSEC? [SOLVED]
Replies: 9
Views: 4539

Re: Does mikrotik support NAT traversal for IPSEC? [SOLVED]

Just as a data point, I’m currently running an ipsec (IKEv2) connection with one endpoint behind NAT with no problem. As mentioned UDP port 4500 is used. I’ve tested IPSec with both endpoints behind NAT in my lab environment and have had no issues. Unless you deliberately disable NAT-T it works.
by gabacho4
Mon Dec 05, 2022 6:32 pm
Forum: General
Topic: Any chance for including SHA384 into the firmware?
Replies: 3
Views: 1020

Re: Any chance for including SHA384 into the firmware?

What device are you using? AES256GCM is supported on a number of models. My RB5009UG for example.

Also SHA384 is supported too. I’m using ROS7.7beta8 for what it’s worth
by gabacho4
Tue Nov 29, 2022 4:24 pm
Forum: General
Topic: RouterOS v7 License levels update with WireGuard
Replies: 4
Views: 1056

Re: RouterOS v7 License levels update with WireGuard

Give that license level 6 gets you unlimited everything just about I would think it’s safe to assume unlimited. Frankly I don’t think there is a limit at any license level. The only limit I could foresee is the one imposed by the specs of your hardware.
by gabacho4
Thu Nov 24, 2022 4:24 pm
Forum: SwOS
Topic: CSS610-8P-2S+IN DHCP Settings issue [SOLVED]
Replies: 36
Views: 9136

Re: CSS610-8P-2S+IN DHCP Settings issue [SOLVED]

Don't believe it will run on your other device. There is very specific SWOS versions for each of the CSS610 devices. What I would REALLY like to see however is a final version for the CSS610-8P rather than a beta version. I'm still a bit salty that I bought a device that was non-functional right out...
by gabacho4
Thu Nov 17, 2022 4:31 pm
Forum: General
Topic: IPsec performance problem after upgrading to RouterOS 7 on the RB750Gr3
Replies: 7
Views: 1802

Re: IPsec performance problem after upgrading to RouterOS 7 on the RB750Gr3

I could have sworn I saw a post earlier this week from someone at MikroTik saying that they generally recommended keeping the hex and similar devices on ROS 6, i believe due to storage limitations or something. Perhaps this is yet another reason? Seems the downgrade to 6 clearly fixed things for OP.
by gabacho4
Wed Nov 16, 2022 9:36 am
Forum: General
Topic: [SOLVED] RB5009 AES-GCM supported for IPSEC?
Replies: 3
Views: 734

Re: [SOLVED] RB5009 AES-GCM supported for IPSEC?

It appears that way. I’d assumed it was based on a hardware check as well or something like that. Will admit I know nothing about the subject but it is disappointing to know that one can be using a supported encryption scheme and yet have no way to determine that other than watching the cpu use perh...
by gabacho4
Wed Nov 16, 2022 8:41 am
Forum: General
Topic: [SOLVED] RB5009 AES-GCM supported for IPSEC?
Replies: 3
Views: 734

Re: RB5009 AES-GCM supported for IPSEC?

Well, for anyone else wondering, here is the answer I received from Mikrotik. Emīls Z. Hello, After double checking, the RB5009 has already AES-GCM hardware acceleration support. Currently it is not indicated with the "H" flag next to the IPsec-SA entries. We will try to resolve the issue ...
by gabacho4
Tue Nov 15, 2022 10:45 pm
Forum: General
Topic: [SOLVED] RB5009 AES-GCM supported for IPSEC?
Replies: 3
Views: 734

[SOLVED] RB5009 AES-GCM supported for IPSEC?

Just noticed that the table for hardware acceleration now shows that the CPU used by the RB5009 (88F7040) supports AES-GCM for IPSEC acceleration. Very happy to see it as AES-GCM is more performant than AES-CBC etc. So I quickly changed my existing setup to use GCM but notice that the installed SA's...
by gabacho4
Sat Nov 12, 2022 6:28 am
Forum: General
Topic: DNS Rewrite like in Adguard?
Replies: 7
Views: 902

Re: DNS Rewrite like in Adguard?

@anav that’s a great question. Not something I’ve ever tried myself as my device has the usb port. In principle I would think the SD card would work but there could be some sort of limitation that I don’t know of. If you insert a card and the go to System -> disk does the SD show up ? If so, how?
by gabacho4
Fri Nov 11, 2022 6:37 pm
Forum: General
Topic: DNS Rewrite like in Adguard?
Replies: 7
Views: 902

Re: DNS Rewrite like in Adguard?

@Znevna I have a 512 gig SSD I was going to play with but thought it was overkill for my immediate needs. Have confirmed that the 5009 recognizes it and all. @anav the thumb drive, or SSD, is so that you are not increasing the writes to the internal memory of the device which will shorten its lifesp...
by gabacho4
Fri Nov 11, 2022 10:49 am
Forum: General
Topic: DNS Rewrite like in Adguard?
Replies: 7
Views: 902

Re: DNS Rewrite like in Adguard?

Can confirm that the feature works wonderfully on an RB5009 ROS 7.6 with container package and a 32 gig USB thumb drive. Couldn’t be happier.
by gabacho4
Fri Nov 11, 2022 10:11 am
Forum: General
Topic: attacking my mikrotik device
Replies: 20
Views: 1884

Re: attacking my mikrotik device

In a nut shell, the input chain is dangerous if you misconfigure it. Input is access to the router itself. So don’t create allow rules in the input chain unless you absolutely understand what you’re doing and if doing so is necessary. Most importantly, never create an input rule that allows access f...
by gabacho4
Fri Nov 11, 2022 8:23 am
Forum: General
Topic: attacking my mikrotik device
Replies: 20
Views: 1884

Re: attacking my mikrotik device

Wouldn’t you also want to specify 2000 as the destination port in that rule? Source port can be whatever but OP is specifically trying to block connections to his router on port 2000. Also, add action=accept chain=input dst-address=127.0.0.1 log=yes makes me uneasy as well. The better course, as rec...
by gabacho4
Thu Nov 10, 2022 10:00 pm
Forum: General
Topic: attacking my mikrotik device
Replies: 20
Views: 1884

Re: attacking my mikrotik device

Your firewall rules are what play the biggest role there. Which ROS version are you using? Can you provide a sanitized copy of your config?
by gabacho4
Thu Nov 10, 2022 8:58 pm
Forum: General
Topic: attacking my mikrotik device
Replies: 20
Views: 1884

Re: attacking my mikrotik device

Your router has likely been hacked. That IP belongs to a hosting service so odds are it has been made part of some sort of botnet. You need to perform a net install on the router, recreate your configuration, and ensure that you don't change any firewall rules without understanding 100% what they do.
by gabacho4
Thu Nov 10, 2022 4:09 pm
Forum: RouterBOARD hardware
Topic: LtAP LTE6 external antenna mounting points
Replies: 2
Views: 1068

Re: LtAP LTE6 external antenna mounting points

Basically you can mount the antennas wherever you need them or want them. I just bored out holes in the front end of the case for mine.

https://imgur.com/a/Hq42fiU

https://imgur.com/a/ZxxE6La
by gabacho4
Thu Nov 10, 2022 11:02 am
Forum: General
Topic: Can CSS610-8P-2S+IN power 24V passive PoE devices ? [SOLVED]
Replies: 10
Views: 1413

Re: Can CSS610-8P-2S+IN power 24V passive PoE devices ? [SOLVED]

Have the very same PoE options with my CRS328-24P which I know for sure does passive. Very inclined to believe the CSS610-8P does as well.
by gabacho4
Thu Nov 10, 2022 10:59 am
Forum: General
Topic: Can CSS610-8P-2S+IN power 24V passive PoE devices ? [SOLVED]
Replies: 10
Views: 1413

Re: Can CSS610-8P-2S+IN power 24V passive PoE devices ? [SOLVED]

The only options available are on, auto, off. Whenever I see the ability to turn PoE “on” I think passive but haven’t tested that theory with this device. Might be able to find time to test with a spare rb5011 later.
by gabacho4
Wed Nov 09, 2022 1:11 pm
Forum: RouterBOARD hardware
Topic: Does RB5009 support ipsec hardware acceleration?
Replies: 10
Views: 2661

Re: Does RB5009 support ipsec hardware acceleration?

@chechito thanks for flagging that! So glad to finally see something to confirm IPSec is accelerated on the RB5009.
by gabacho4
Mon Nov 07, 2022 8:26 pm
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 121214

Re: v7.7beta [testing] is released!

But what can i do with Apple devices Unfortunately, you'll have to dumb down your configuration to support the apple devices. So you'd have to use AES-CBC with SHA256. That or your have a P1/P2 for your site to site connection and then a separate P1/P2 for your remote clients. If that doesn't work ...
by gabacho4
Mon Nov 07, 2022 7:11 pm
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 121214

Re: v7.7beta [testing] is released!

@depth0cert - try the proposal with no auth-algorithm. According to Netgate (PfSense) no auth-algorithm is required with AES-GCM for Phase 2. Believe that is why you are getting the error message.
by gabacho4
Mon Nov 07, 2022 12:50 pm
Forum: General
Topic: RB5009 and AES-GCM hardware acceleration
Replies: 0
Views: 278

RB5009 and AES-GCM hardware acceleration

In my quest to ever improve the performance of a few ipsec tunnels that I run, I was wondering if anyone has heard if there is any expectation that acceleration for AES-GCM will be forthcoming to the RB5009 series? I noticed it was just added for the Hap ax2 and is available in CCR2004 and RB4011 mo...
by gabacho4
Tue Nov 01, 2022 11:07 pm
Forum: General
Topic: With issues understanding firewall rules with mikrotik, migrated to fortigate
Replies: 18
Views: 1540

Re: With issues understanding firewall rules with mikrotik, migrated to fortigate

Let me know how much you want to sell your CCR2004 for. I might be interested in buying it assuming you are in the US. I’ll netinstall it and make it purr.
by gabacho4
Tue Oct 25, 2022 9:55 pm
Forum: SwOS
Topic: CSS610-8P-2S+IN DHCP Settings issue [SOLVED]
Replies: 36
Views: 9136

Re: CSS610-8P-2S+IN DHCP Settings issue [SOLVED]

Many thanks to all who suffered before me and to @oskarsk for providing the link to 2.17rc. After beating my head for a number of hours trying to figure out what I was doing wrong on this device versus my css610-8G-2S+IN, I was relieved to see it wasn’t me at all. Now I can finally put this thing in...
by gabacho4
Sun Oct 16, 2022 6:39 pm
Forum: RouterBOARD hardware
Topic: Rb5009 required daily reset
Replies: 3
Views: 888

Re: Rb5009 required daily reset

What does “manually installed the same config” mean?

I have 2 x RB5009 and have no issues at all. I think your config has some sort of problem.
by gabacho4
Sat Oct 01, 2022 9:47 am
Forum: RouterBOARD hardware
Topic: RB260GSP short circuit status [SOLVED]
Replies: 2
Views: 1075

Re: RB260GSP short circuit status [SOLVED]

Believe you have noticed the same thing a few of us already have. I believe this should be of help. No one has confirmed that I’m not crazy, but my belief makes sense given how PoE works other than passive.

https://forum.mikrotik.com/viewtopic.php?t=171943
by gabacho4
Thu Sep 29, 2022 10:34 am
Forum: Beginner Basics
Topic: PoE out status: short circuit for non-PoE devices?
Replies: 2
Views: 2343

Re: PoE out status: short circuit for non-PoE devices?

I see same thing on my switch although it goes away if you turn PoE for the ports off. Believe it’s totally normally. My guess is that it shows up that way because the switch looks for some sort of signaling and, when it doesn’t see it, the switch believes there to be a short. Would explain why turn...
by gabacho4
Wed Sep 21, 2022 3:51 pm
Forum: General
Topic: CCR2004-16G-2S+ vs CCR2004-16G-2S+PC
Replies: 6
Views: 2555

Re: CCR2004-16G-2S+ vs CCR2004-16G-2S+PC

What is difference among CCR2004-16G-2S+ and CCR2004-16G-2S+PC other than later has cooler fan?
Form factor and cpu clock speed
by gabacho4
Thu Sep 15, 2022 6:22 am
Forum: General
Topic: RB5009 SFP connection to Unifi Switch
Replies: 1
Views: 369

Re: RB5009 SFP connection to Unifi Switch

I have used the same setup. Used Ubiquiti 1.25 gig multi mode SFP transceivers and some LC OM3 fiber patches I bought on Amazon. Worked like a charm.
by gabacho4
Tue Sep 13, 2022 5:40 pm
Forum: General
Topic: Is Mikrotik calling home?
Replies: 16
Views: 1477

Re: Is Mikrotik calling home?

You say that like it’s a bad or nefarious thing. When you choose to buy and use closed source software, you willingly and actively accept that reality. If you don’t like it then sell what you have and use only open source solutions. Best of luck.
by gabacho4
Mon Sep 12, 2022 12:25 am
Forum: Beginner Basics
Topic: VRRP and VLANs on bridge - possible?
Replies: 4
Views: 962

Re: VRRP and VLANs on bridge - possible?

Got it figured out. Man that was a wild one. This stuff bends your mind a bit right before you have the big “ah hah” moment.
by gabacho4
Sun Sep 11, 2022 5:15 pm
Forum: Beginner Basics
Topic: VRRP and VLANs on bridge - possible?
Replies: 4
Views: 962

Re: VRRP and VLANs on bridge - possible?

Anyone? Bueller?
by gabacho4
Sat Sep 10, 2022 11:24 pm
Forum: Beginner Basics
Topic: VRRP and VLANs on bridge - possible?
Replies: 4
Views: 962

VRRP and VLANs on bridge - possible?

Good evening, I have two RB5009s that I am trying to use in a VRRP (master/backup) configuration so that I can update one without taking down the internet for everyone in the home. Configs are identical with the exception of R2 having VLAN interface IPs that are one more than R1s. I have all the por...
by gabacho4
Mon Sep 05, 2022 6:25 pm
Forum: General
Topic: Reset Router Router MIKROTIK HAP AC2
Replies: 13
Views: 17951

Re: Reset Router Router MIKROTIK HAP AC2

As in the reset worked? Having a hard time deciphering that last message.
by gabacho4
Mon Sep 05, 2022 5:39 pm
Forum: General
Topic: Reset Router Router MIKROTIK HAP AC2
Replies: 13
Views: 17951

Re: Reset Router Router MIKROTIK HAP AC2

The method the video shows is the right one but your device is absolutely not reset. So I have to assume you’re not doing something right. Unplug the power adapter -> press and hold the reset button -> plug in the power adapter -> keep holding the reset app until the user light flashes (I’d hold it ...
by gabacho4
Mon Sep 05, 2022 3:57 pm
Forum: General
Topic: Reset Router Router MIKROTIK HAP AC2
Replies: 13
Views: 17951

Re: Reset Router Router MIKROTIK HAP AC2

How are you attempting to reset the device?
by gabacho4
Wed Aug 31, 2022 11:01 pm
Forum: General
Topic: RB3011 does not work google drive desktop
Replies: 7
Views: 808

Re: RB3011 does not work google drive desktop

I think he means that the sync feature won’t work for him as a result of something the MikroTik router/firewall is doing. Ya dig what I’m saying? Trying to access service X through the tik doesn’t work. Accessing servic X through some other router does. But OP gives us nothing to even work with othe...
by gabacho4
Wed Aug 31, 2022 12:09 pm
Forum: Virtualization
Topic: CHR on AWS, speed capped at 1Mb/s [SOLVED]
Replies: 3
Views: 3067

Re: CHR on AWS, speed capped at 1Mb/s [SOLVED]

https://youtu.be/J1-mYdJj_fk That should help you.
by gabacho4
Tue Aug 30, 2022 10:58 am
Forum: RouterOS beta
Topic: RB5009 Slow Speed 2.5G Bug Report (as requested)
Replies: 48
Views: 21986

Re: RB5009 Slow Speed 2.5G Bug Report (as requested)

@kennethc it’s in the switch settings.
by gabacho4
Tue Aug 30, 2022 7:31 am
Forum: RouterOS beta
Topic: someone with 7.4.1 to test
Replies: 6
Views: 2417

Re: someone with 7.4.1 to test

removed unneeded quote - use "Post Reply"
Porvenir only works for me if I use a vpn with an endpoint in the US.

s16.movilsp.co works for me without the need of a vpn.
by gabacho4
Mon Aug 29, 2022 8:03 pm
Forum: RouterOS beta
Topic: someone with 7.4.1 to test
Replies: 6
Views: 2417

Re: someone with 7.4.1 to test

From what I can tell there is a geo block and maybe some browser weirdness. If I try to access the directvgo site from my current location I get the error that @rextended noted. If I enable a vpn putting me in the US it works. If I use Safari to go to the hbomax site, it tells me the service isn’t a...
by gabacho4
Thu Aug 25, 2022 10:55 pm
Forum: General
Topic: Strange DNS queries from my hEX router [SOLVED]
Replies: 22
Views: 1683

Re: Strange DNS queries from my hEX router [SOLVED]

@anav good catch. I had a lapse in focus and forgot that OP blew all those rules away. I shall strive to be more worthy.
by gabacho4
Thu Aug 25, 2022 10:34 pm
Forum: General
Topic: Strange DNS queries from my hEX router [SOLVED]
Replies: 22
Views: 1683

Re: Strange DNS queries from my hEX router [SOLVED]

Popping some popcorn now before anav sees the previous post. Let me try to spare you a lashing… Please order your firewall rules with input ones at the top and forward ones at the bottom. You would have been better served to keep the default rules as I can confidently say you set these up from scrat...
by gabacho4
Thu Aug 25, 2022 4:05 pm
Forum: General
Topic: Strange DNS queries from my hEX router [SOLVED]
Replies: 22
Views: 1683

Re: Strange DNS queries from my hEX router [SOLVED]

Obviously the answer to that question is "yes".
Which is why I was going to advise him to uncheck that since he’s using pihole for dns.
by gabacho4
Thu Aug 25, 2022 7:15 am
Forum: General
Topic: Strange DNS queries from my hEX router [SOLVED]
Replies: 22
Views: 1683

Re: Strange DNS queries from my hEX router [SOLVED]

Can you take a screenshot of your DNS settings? In Winbox, IP -> DNS. Do you have it set to allow remote requests?
by gabacho4
Wed Aug 24, 2022 11:31 pm
Forum: General
Topic: Forwarded traffic to IPSec web pages not loading [SOLVED]
Replies: 2
Views: 740

Re: Forwarded traffic to IPSec web pages not loading [SOLVED]

Sounds like an MTU/MSS issue to me. Have you done any fragmentation testing?
by gabacho4
Tue Aug 23, 2022 8:34 am
Forum: General
Topic: new bridges can't use mac winbox [SOLVED]
Replies: 4
Views: 820

Re: new bridges can't use mac winbox [SOLVED]

Just be careful when you set up the firewall that you allow access via input chain or you’ll be hurting again.
by gabacho4
Tue Aug 23, 2022 7:43 am
Forum: General
Topic: new bridges can't use mac winbox [SOLVED]
Replies: 4
Views: 820

Re: new bridges can't use mac winbox [SOLVED]

Would be good to add a port that isn’t on the bridge to your acces list as well. That way you can access the router by MAC address if something really goes off the rails. If you want to get fancier, you can give the port an IP address, then statically set your laptop to have an IP in that subnet and...
by gabacho4
Tue Aug 23, 2022 7:20 am
Forum: General
Topic: new bridges can't use mac winbox [SOLVED]
Replies: 4
Views: 820

Re: new bridges can't use mac winbox [SOLVED]

You need to create an interface list called something like “WinboxAccess” and add the bridge and whatever other ports you want to access Winbox with. Then go to Tools -> MAC server -> MAC Winbox server, and make sure the interface list you created is selected as the Allowed Interface List Your curre...
by gabacho4
Mon Aug 22, 2022 9:00 pm
Forum: General
Topic: Mikrotik Product Shortages ??
Replies: 17
Views: 1986

Re: Mikrotik Product Shortages ??

Sorry you dont get instant gratification here, now go suck on a lollypop and learn patience like the rest of the children.
That statement will reverberate for all time…
by gabacho4
Sun Aug 21, 2022 8:51 pm
Forum: RouterBOARD hardware
Topic: Does RB5009 support ipsec hardware acceleration?
Replies: 10
Views: 2661

Re: Does RB5009 support ipsec hardware acceleration?

I would go by this factoid.......... No ipsec test results yet on product page. Is MikroTik diligent about updating that kind of stuff or could it be a feature and they just haven’t conducted their tests and updated the page? I don’t have any agenda, just trying to understand how things generally w...
by gabacho4
Sun Aug 21, 2022 2:59 pm
Forum: RouterBOARD hardware
Topic: Does RB5009 support ipsec hardware acceleration?
Replies: 10
Views: 2661

Re: Does RB5009 support ipsec hardware acceleration?

Really wish someone from MikroTik would put this question to bed. It’s been asked multiple times and no final answer has been given. The change log for 7.1.3 said ipsec acceleration was added. So why I keep seeing others say it isn’t? If the documentation doesn’t indicate it, that could be more of a...
by gabacho4
Sun Aug 21, 2022 12:00 am
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

Lets understand your CRS ports ether1 trunk port assuming to ????????? ether1 is a trunk port to RB5009 port 5 trunk ether3 RB 5009 access port, trunk port or hybrid port ports 3, 5, and 7 are on a vlan 5 which only exists on the switch in order to isolate them. I use the CRS POE to power the 2 x R...
by gabacho4
Sat Aug 20, 2022 11:38 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

Set this to NONE < not using a secure protocol. I assume you mean the telnet server one? Done if so... Also suggest besides the ether6 management port you take a port OFF the bridge, assigne an IP address only and then you can access the router separate from the bridge which avoids many headaches. ...
by gabacho4
Sat Aug 20, 2022 11:32 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

I prefer to choose what IP I want my smart devices to have and typically I assign them outside the pool and in dhcp leases on the router I set them to static leases. This is exactly what I have done except on the router end. The pool for the MGNT network starts at 10.20.100.100. I create static ent...
by gabacho4
Sat Aug 20, 2022 11:15 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

Anav, thanks a million. So let me ask you really quick, what is the advantage to setting up the CSR ip and all manually versus letting the switch get a dhcp assignment from the RB5009 which would then tell it what it’s route, dns, etc all was. Is that a preference thing or is there a strong reason I...
by gabacho4
Sat Aug 20, 2022 10:17 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

of course, I still welcome any suggestions/input that anav or anyone else might have. This is all being used on a home network so I do try to use best practices but don't lose any sleep if things aren't 100% the way they would/should be in an enterprise environment. That said, I am constantly learni...
by gabacho4
Sat Aug 20, 2022 10:13 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

I may have licked this one. I just added a vlan from the ip/interface/vlan menu using the MGMT vlan. Added that to the bridge. Then I set the DHCP client to run on the MGMT VLAN interface and viola! The switch picked up the IP address I had statically set on the RB5009. And I am now able to connect ...
by gabacho4
Sat Aug 20, 2022 9:10 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

Re: CRS328 using RoS doesn't get DHCP address from router

Anav! Look forward to the butt kicking I'm probably about to get. :D I'll leave the bridge alone. I know you are protective of it. I would like to be able to see the router and switches while connected on the MGMT vlan of my network. This would be via an access port using WinBox. I don't use anythin...
by gabacho4
Sat Aug 20, 2022 8:12 pm
Forum: Beginner Basics
Topic: CRS328 using RoS doesn't get DHCP address from router
Replies: 13
Views: 1139

CRS328 using RoS doesn't get DHCP address from router

Hello all, I am about to lose my mind and would request some assistance and mercy. I've set up a CRS328 and have everything working great for my network. However, the issue is that the only way I can administer the switch is to connect to it and access it by mac address via winbox. I have set the dh...
by gabacho4
Sat Aug 20, 2022 12:16 am
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

Re: CRS368 getting wrong IP address [SOLVED]

Thanks for being a better reader than I was tangent. allow from VLAN did it! The mystery of the phantom switch has been solved.
by gabacho4
Sat Aug 20, 2022 12:12 am
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

Re: CRS368 getting wrong IP address [SOLVED]

Just re-read the wiki and maybe that will work. I’ll give it a shot. Damn I can’t believe it was something that simple if it does work. I though it was more for limiting access than anything else.
by gabacho4
Sat Aug 20, 2022 12:08 am
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

Re: CRS368 getting wrong IP address [SOLVED]

The allow from VLAN field is only to limit the VLAN that can be used to access the GUI for switch config. That won’t be of help here. I had been running RoS on the switch and wanted to give SwOS a try. It I think I’m going to go back. There are a number of little things that I find either don’t exis...
by gabacho4
Fri Aug 19, 2022 11:11 pm
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

Re: CRS368 getting wrong IP address [SOLVED]

OK let's hope this helps. It's crude but I think it conveys everything I am trying to say and what I am witnessing. I'm sure the issue is that the switch sees two DHCP servers but I am struggling with how to have the switch accept one while allowing the other to give an IP to the expected device (RB...
by gabacho4
Fri Aug 19, 2022 10:27 pm
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

Re: CRS368 getting wrong IP address [SOLVED]

Apologies, it’s an CRS328-24P-4S+RM. Was so focused on describing the issue that I goofed the product name. I’ll do a quick chart here shortly.
by gabacho4
Fri Aug 19, 2022 8:53 pm
Forum: SwOS
Topic: CRS368 getting wrong IP address [SOLVED]
Replies: 8
Views: 3426

CRS368 getting wrong IP address [SOLVED]

Good day everyone, I have an issue where my CRS368 running SwOS 2.13 is obtaining the wrong IP address via DHCP. Let me give you the background. I use the switch to power an LtAP LTE6 and RB5009. This works great so that I don't have to have two more devices plugged into a power strip. The LtAP and ...
by gabacho4
Thu Aug 18, 2022 9:01 pm
Forum: General
Topic: New MUM Meetings in 2022?
Replies: 12
Views: 2163

Re: New MUM Meetings in 2022?

Come to Canada we will lubricate you! :-)
That's not the type of penetration testing I'm interested in signing up for...
by gabacho4
Mon Aug 15, 2022 6:53 am
Forum: General
Topic: A place for poetry
Replies: 57
Views: 245920

Re: A place for poetry

Winbox for the mac
Is what many cry out for
Wine works fine for me
by gabacho4
Mon Aug 01, 2022 7:41 pm
Forum: Beginner Basics
Topic: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address
Replies: 12
Views: 2349

Re: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address

I can connect to them both in Winbox. Just trying to figure out if there’s a cleaner way to manage and identify devices.
by gabacho4
Mon Aug 01, 2022 7:26 pm
Forum: Beginner Basics
Topic: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address
Replies: 12
Views: 2349

Re: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address

Why didn’t I have this fabulous understanding while I was pounding my head on the desk?! Thanks for helping me think this through. Guess I’ll either connect via MAC or just save a connection using the switch IP.

Is what I’m trying to do something that Romon would fix?
by gabacho4
Mon Aug 01, 2022 7:20 pm
Forum: Beginner Basics
Topic: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address
Replies: 12
Views: 2349

Re: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address

Yeah the switch is on a 10.20.2.x subnet while the laptop is on a 10.200.2.x subnet. I guess that makes sense now since the laptop should not be aware of the other subnet directly. The 10.200.2.x subnet does however have access (firewall rule permitting this) to the 10.20.2.x which would explain why...
by gabacho4
Mon Aug 01, 2022 7:08 pm
Forum: Beginner Basics
Topic: Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address
Replies: 12
Views: 2349

Switch IP shows up as 0.0.0.0 in Winbox despite having a real IP address

Hello all! I’m setting up my first MikroTik switch (crs328 24 port PoE 4sfp+ yada yada) and have encountered a weird anomaly. The switch sits behind an RB5009 and I have gotten all my vlans set up and things work outstandingly. However, when I open Winbox on a laptop and look at the Neighbors tab, I...
by gabacho4
Sat Jul 30, 2022 10:00 pm
Forum: Beginner Basics
Topic: LTE: Why two antennas?
Replies: 12
Views: 1242

Re: LTE: Why two antennas?

This has been a great thread so far. I’ve learned some very good things from the discourse. Thanks for sharing!
by gabacho4
Fri Jul 29, 2022 12:10 pm
Forum: Beginner Basics
Topic: LTE: Why two antennas?
Replies: 12
Views: 1242

Re: LTE: Why two antennas?

The puck could very likely be for GPS.
by gabacho4
Mon Jul 18, 2022 5:19 pm
Forum: RouterBOARD hardware
Topic: RB5009UG+S+IN dual power power [SOLVED]
Replies: 6
Views: 2968

Re: RB5009UG+S+IN dual power power [SOLVED]

Yes. From what I recall reading, the router will prefer the higher voltage power source and fall back to the next source should the first fail/ be disconnected.
  • 1
  • 2