Community discussions

MikroTik App

Search found 273 matches

by Cablenut9
Fri Jun 18, 2021 2:29 am
Forum: Forwarding Protocols
Topic: Networking Education
Replies: 6
Views: 3088

Re: Networking Education

like one serial number and corresponding license?
This is genius, because the only people who post on this forum have at least 1 Mikrotik device.
by Cablenut9
Thu Jun 17, 2021 10:32 pm
Forum: Forwarding Protocols
Topic: Networking Education
Replies: 6
Views: 3088

Re: Networking Education

good post like it
the rain wets
It's a bot
by Cablenut9
Thu Jun 17, 2021 7:58 pm
Forum: SwOS
Topic: CSS106: Bricked? [SOLVED]
Replies: 1
Views: 82

Re: CSS106: Bricked? [SOLVED]

Update: I fixed it by setting up a ping on my computer and by restarting it until the backup firmware loaded. Then, I set up a good static IP on the switch and let it download the new firmware.
by Cablenut9
Thu Jun 17, 2021 6:21 pm
Forum: SwOS
Topic: CSS106: Bricked? [SOLVED]
Replies: 1
Views: 82

CSS106: Bricked? [SOLVED]

I just got a CSS106 and tried to upgrade the firmware. After waiting a few minutes, I rebooted and noticed that the version is unchanged. I tried it again and now the firmware is 2.7p. I kept trying this again a few more times, and now the switch can't get DHCP or have its webpage accessible. I can ...
by Cablenut9
Thu Jun 17, 2021 5:02 pm
Forum: General
Topic: Make a user group with specific permissions [SOLVED]
Replies: 3
Views: 117

Re: Make a user group with specific permissions [SOLVED]

I made an ultra-limited skin in WebFig and as it turns out, the new user group I made can't change the skin, so this is just what I needed. :)
by Cablenut9
Thu Jun 17, 2021 5:40 am
Forum: General
Topic: Make a user group with specific permissions [SOLVED]
Replies: 3
Views: 117

Make a user group with specific permissions [SOLVED]

Is it possible to make a user group that can read and write certain things only? If I give someone a router that I can control, I want them to be able to add dst-nat rules so they can port forward without needing to contact someone. However, I don't want them to be able to do anything else. I saw th...
by Cablenut9
Thu Jun 17, 2021 1:36 am
Forum: Wireless Networking
Topic: Which Outdoor Directional AP should i choose for my backyard?
Replies: 4
Views: 145

Re: Which Outdoor Directional AP should i choose for my backyard?

The mANTBOX 12s is better because it can receive signals better than the SXT2, and that's important with devices that can't send much out to begin with.
by Cablenut9
Thu Jun 17, 2021 12:43 am
Forum: Wireless Networking
Topic: Which Outdoor Directional AP should i choose for my backyard?
Replies: 4
Views: 145

Re: Which Outdoor Directional AP should i choose for my backyard?

If you can afford it, get a mANTBox 52 15s which has both 2.4 and 5GHz, giant antennas, high transmit power, and a slick-looking package in one.
by Cablenut9
Wed Jun 16, 2021 8:30 pm
Forum: General
Topic: 1:1 NAT DDoS protection?
Replies: 7
Views: 250

Re: 1:1 NAT DDoS protection?

If the router at the datacenter is equal to or less powerful than the one at the real network, then I can still do stuff at the protected network and I only have to think about the one at the datacenter. That basically means the NAT is a sacrificial setup that simply protects me from giant attacks.
by Cablenut9
Wed Jun 16, 2021 7:55 pm
Forum: General
Topic: 1:1 NAT DDoS protection?
Replies: 7
Views: 250

Re: 1:1 NAT DDoS protection?

The idea is to use the NAT as a choke point so the "real" network only gets as much as the router can pass through. That's actually what Cloudflare does, but on a bigger scale. Also, it's to help hide the real IP so it can't be targeted directly.
by Cablenut9
Wed Jun 16, 2021 5:42 pm
Forum: General
Topic: I want to use ISP2 for populair speedtest sites and also android apps
Replies: 2
Views: 116

Re: I want to use ISP2 for populair speedtest sites and also android apps

You can't do this if they use HTTPS, which most sites are, so you're probably out of luck. However, you could make a hack solution that checks how much data each connection is using and add that address to a list that ensures that they are used by ISP2.
by Cablenut9
Wed Jun 16, 2021 5:29 pm
Forum: General
Topic: Hardware recommendation for routing up to 2Gb/s
Replies: 6
Views: 280

Re: Hardware recommendation for routing up to 2Gb/s

You could combine a CRS305 and a RB4011 and get great routing with multiple SFP+ ports, and that's the next cheapest option after getting a CCR1036 with only 2 SFP+ ports.
by Cablenut9
Wed Jun 16, 2021 4:40 pm
Forum: General
Topic: 1:1 NAT DDoS protection?
Replies: 7
Views: 250

1:1 NAT DDoS protection?

Is it possible for me to use 1:1 NAT as a DDoS protection system? If I had some Mikrotik router colocated in a datacenter that had one firewall rule that creates a 1:1 NAT to my real IP address, then all people would see is the Mikrotik's address. However, this seems too simple to work, so will it?
by Cablenut9
Tue Jun 15, 2021 9:02 pm
Forum: Wireless Networking
Topic: 6.47.10 failure: frequency 66960 not supported on this interface
Replies: 3
Views: 279

Re: 6.47.10 failure: frequency 66960 not supported on this interface

Mikrotik support wrote

this will be available on new 802.11ay hardware.
Unfortunately this cannot be used reliably on our existing 802.11ad devices - that is why this frequency support is removed
Sad, because Ubiquiti supports 71GHz on their 802.11ad hardware, which is way higher.
by Cablenut9
Mon Jun 14, 2021 8:42 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

Another thing with 6E is that the AFC system for outdoor usage won't be working until 2022, but of course I'll be working on a way to bypass it (through dst-nat rules!) when it goes live.
by Cablenut9
Mon Jun 14, 2021 5:27 am
Forum: General
Topic: Selective 1:1 NAT
Replies: 1
Views: 141

Selective 1:1 NAT

I have a weird setup I want to try. Let's say I have two routers and some client on some network. R1 (DHCP server) | R2 (switch/DHCP-proxy) | Client (LAN) I want R2 to act like a layer-2 passthrough, so basically a switch between the two ports that connect it to R1 and LAN. However, I want some rule...
by Cablenut9
Mon Jun 14, 2021 1:00 am
Forum: General
Topic: CCR smart cards
Replies: 1
Views: 152

CCR smart cards

Why do a few of the CCR models have a slot for a smart card? I can only think that they could be used for user authentication, but I don't know why you'd need to do that.
by Cablenut9
Mon Jun 14, 2021 12:20 am
Forum: RouterOS v7 BETA
Topic: R11e-LTE6 not working in 7.1beta6
Replies: 3
Views: 246

Re: R11e-LTE6 not working in 7.1beta6

There are lot of reports with beta6 not working with LTE, do the fix is to either to go to beta5 or switch to v6.
by Cablenut9
Sun Jun 13, 2021 3:41 pm
Forum: General
Topic: wApR and LTE (AT&T sim specifically) DENIED
Replies: 6
Views: 909

Re: wApR and LTE (AT&T sim specifically) DENIED

You can't send PMs on this forum.
by Cablenut9
Sun Jun 13, 2021 3:28 pm
Forum: Wireless Networking
Topic: Can't register SIM of mobinnet
Replies: 5
Views: 428

Re: Can't register SIM of mobinnet

I sometime have the same problem, but the fix was to simply get better reception of a tower.
by Cablenut9
Sat Jun 12, 2021 7:43 pm
Forum: RouterOS v7 BETA
Topic: R11e-LTE6 not working in 7.1beta6
Replies: 3
Views: 246

Re: R11e-LTE6 not working in 7.1beta6

This is a common issue with beta6, go back to beta5.
by Cablenut9
Fri Jun 11, 2021 3:48 am
Forum: RouterOS v7 BETA
Topic: Feature Request : IPv6 Fasttrack
Replies: 17
Views: 1464

Re: Feature Request : IPv6 Fasttrack

Why isn't this a thing yet?
by Cablenut9
Wed Jun 09, 2021 4:24 am
Forum: Scripting
Topic: Some Music
Replies: 16
Views: 24474

Re: Some Music

RB4011 doesn't have a beeper :)
by Cablenut9
Sun Jun 06, 2021 2:45 am
Forum: Forwarding Protocols
Topic: A weird routing problem
Replies: 4
Views: 504

Re: A weird routing problem

Update: I think IPIP might work for this because it simply puts an IP header on top of the original IP packet. Then, the outer layer can be processed as if it were regular inter-network traffic, so normal routing will work for that. When the packet reaches the destination router, the inside gets ext...
by Cablenut9
Sun Jun 06, 2021 12:01 am
Forum: Forwarding Protocols
Topic: A weird routing problem
Replies: 4
Views: 504

Re: A weird routing problem

If I add R3 as the default route on the R2 VRF, does that mean I can't use R2 as a gateway for some traffic from R1?
by Cablenut9
Sat Jun 05, 2021 10:49 pm
Forum: Forwarding Protocols
Topic: A weird routing problem
Replies: 4
Views: 504

A weird routing problem

Let's say I have three Mikrotik routers, and each router has its own route to to to the Internet. R1 --- Internet | R2 --- Internet | R3 --- Internet I can set up OSPF so each router knows the best path to any destination on this routed network. However, I need a way for some traffic on R1 to reach ...
by Cablenut9
Thu Jun 03, 2021 5:17 am
Forum: Wireless Networking
Topic: R11e-4G change IMEI
Replies: 2
Views: 1554

Re: R11e-4G change IMEI

What error do you get with the 4G? If it has to do with "Production Mode" then this article might be handy: https://jghuff.com/blog/modem/
by Cablenut9
Thu Jun 03, 2021 2:05 am
Forum: General
Topic: Weighted load balancing
Replies: 1
Views: 264

Weighted load balancing

Is there a way to use PCC to give some routes more weight over another? It looks like PCC only does equal-weight which means each route has an equal Cha ce of being picked, but I'd like to have a setup where it prioritizes one gateway over another, so that if one is slower yah nthe other it doesn't ...
by Cablenut9
Mon May 31, 2021 2:17 am
Forum: Wireless Networking
Topic: USA Regulatory Domain - UNII-4 and UNII-2
Replies: 7
Views: 471

Re: USA Regulatory Domain - UNII-4 and UNII-2

That was a lot of words that boil down to "I don't agree with the laws so I choose to ignore them." That was the whole point of my post, as sometimes you have to do what you have to do. The firmware frequency/power locks requirement went into effect a bit over 5 years ago, so this is not ...
by Cablenut9
Sun May 30, 2021 9:50 pm
Forum: Wireless Networking
Topic: USA Regulatory Domain - UNII-4 and UNII-2
Replies: 7
Views: 471

Re: USA Regulatory Domain - UNII-4 and UNII-2

As such, what you're suggesting is illegal in the US, unfortunately. To clarify, not illegal to posess but illegal to use. Like clockwork, I get this boilerplate line every time something like this is brought up. However, there are a couple counterpoints: -> Many FCC rules are outdated or aren't en...
by Cablenut9
Sun May 30, 2021 6:44 pm
Forum: Forwarding Protocols
Topic: Setting OSPF interface cost by speed
Replies: 2
Views: 394

Setting OSPF interface cost by speed

On Cisco routers, you can change OSPF cost based on a couple bandwidth numbers and an equation based on those numbers. Is there a way to do this with Mikrotik?
by Cablenut9
Sun May 30, 2021 3:46 pm
Forum: Wireless Networking
Topic: USA Regulatory Domain - UNII-4 and UNII-2
Replies: 7
Views: 471

Re: USA Regulatory Domain - UNII-4 and UNII-2

Your idea would absolutely work for the standard/international version of the hardware! This inflexibility is a regulatory restriction that caused Mikrotik to have to ship a completely separate version of every device: the standard models that are completely configurable to the limits of the actual...
by Cablenut9
Sun May 30, 2021 4:03 am
Forum: Wireless Networking
Topic: USA Regulatory Domain - UNII-4 and UNII-2
Replies: 7
Views: 471

Re: USA Regulatory Domain - UNII-4 and UNII-2

Hotfix: Use Superchannel mode to get these new frequencies without having to upgrade to some future version for now. Mikrotik is usually sloooow to add new features, so it may be a while.
by Cablenut9
Fri May 28, 2021 2:55 am
Forum: Beginner Basics
Topic: L2TP server to use same pool as LAN
Replies: 5
Views: 362

Re: L2TP server to use same pool as LAN

Actually, you could use L2TP BCP to get a DHCP address, but only things like routers support it.
by Cablenut9
Wed May 26, 2021 8:04 pm
Forum: General
Topic: Block everything EXCEPT PPPoE
Replies: 6
Views: 401

Re: Block everything EXCEPT PPPoE

What is the use case for this setup? Ensuring only PPPOE traffic reaches my ISP. It would also be a use case for ISPs in the forum to secure their PPPOE ACs, they might not want to put their ACs in a bridge. What's the point? Route everything that comes into the router over PPPoE and than you don't...
by Cablenut9
Wed May 26, 2021 5:11 pm
Forum: RouterOS v7 BETA
Topic: L2TP/IPSec crashes RB4011
Replies: 5
Views: 399

Re: L2TP/IPSec crashes RB4011

You might better post this in the version specific topic:
viewtopic.php?f=1&t=175369
I already did, but this forum section is also specifically to report issues with v7.
by Cablenut9
Wed May 26, 2021 4:45 pm
Forum: RouterOS v7 BETA
Topic: L2TP/IPSec crashes RB4011
Replies: 5
Views: 399

Re: L2TP/IPSec crashes RB4011

Just to confirm: on a "loadtest" using VPN your RB4011 reboots?

Perhaps you can share your configuration to have a better understanding of your environment?
/export hide-sensitive file=anythingyoulike
It reboots on a load test, and here's my whole configuration.
by Cablenut9
Wed May 26, 2021 4:06 pm
Forum: RouterOS v7 BETA
Topic: L2TP/IPSec crashes RB4011
Replies: 5
Views: 399

L2TP/IPSec crashes RB4011

I have a L2TP/IPSec setup with my RB4011 and an Android 11 device. When my phone was using Android 10, I could connect to the VPN and do whatever I needed. However, with the new update, it crashes whenever I push some "real data" through. This means that speedtests result in a reboot, even...
by Cablenut9
Wed May 26, 2021 5:41 am
Forum: Beginner Basics
Topic: New to Mikrotik
Replies: 13
Views: 797

Re: New to Mikrotik

Mikrotik isn't even close to being as automatic as you might think it is, unlike erro and those junk mesh WiFi systems. Follow the guides above and you'll have a head start in the "real world" of networking!
by Cablenut9
Mon May 24, 2021 11:00 pm
Forum: General
Topic: Bandwidth issues with WireGuard and 7.1beta6
Replies: 9
Views: 573

Re: Bandwidth issues with WireGuard and 7.1beta6

Try a regular bandwidth test so you can rule out anything that isn't WG.
by Cablenut9
Sat May 22, 2021 8:05 pm
Forum: RouterOS v7 BETA
Topic: RB3011 memory leak and random crash
Replies: 5
Views: 431

Re: RB3011 memory leak and random crash

Latest Beta v7.1 b6.
Image
by Cablenut9
Sat May 22, 2021 3:55 am
Forum: General
Topic: 802.1aq
Replies: 2
Views: 343

Re: 802.1aq

Bump
by Cablenut9
Fri May 21, 2021 7:02 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta6 [development] is released!
Replies: 263
Views: 25517

Re: v7.1beta6 [development] is released!

If you want the latest features and have reliability, go to Cisco and pay an enormous amount per year for licensing.
by Cablenut9
Fri May 21, 2021 6:00 am
Forum: General
Topic: 802.1aq
Replies: 2
Views: 343

802.1aq

Now that we have MLAG, the next step for RouterOS is to add in 802.1aq support. This means that we won't have to ever configure RSTP or MLAG ever again because it .1aq automatically handles it all by distributing traffic over redundant links. Will it ever be added?
by Cablenut9
Fri May 21, 2021 5:25 am
Forum: Wireless Networking
Topic: Best Wireless Router for Warehouse
Replies: 11
Views: 877

Re: Best Wireless Router for Warehouse

If you need to receive some weak signal from far away, I would try a mANTBox 19s or 52 15s.
by Cablenut9
Thu May 20, 2021 2:38 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta6 [development] is released!
Replies: 263
Views: 25517

Re: v7.1beta6 [development] is released!

my LTE stopped working after upgrading (from beta3). This is simply ridiculous. board: rbm33g modem: R11e-LTE6 firmware: R11e-LTE6_V026 after upgrading the board it booted with "A newer version of modem firmware is available!" sign at the top of the modem page. pin status is ok but "...
by Cablenut9
Wed May 19, 2021 5:03 pm
Forum: Beginner Basics
Topic: Dst-nat don't work
Replies: 4
Views: 468

Re: Dst-nat don't work

Do this:
/export hide-sensitive
by Cablenut9
Wed May 19, 2021 4:52 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta6 [development] is released!
Replies: 263
Views: 25517

Re: v7.1beta6 [development] is released!

I just noticed that MPLS is back in Winbox! Also, I keep getting crashes with L2TP and Android 11.
by Cablenut9
Wed May 19, 2021 6:25 am
Forum: General
Topic: Is there a fiber-optic Mikrotik modem?
Replies: 4
Views: 430

Re: Is there a fiber-optic Mikrotik modem?

You know the differencies between GPON (XGS-PON, AON and other "dialup" technology) and "regular" SFP ethernet transceiver?
The difference is that GPON SFPs are harder to find for sale, while regular ethernet ones are basically everywhere.
by Cablenut9
Mon May 17, 2021 4:24 pm
Forum: Beginner Basics
Topic: LTE Monitor
Replies: 1
Views: 310

Re: LTE Monitor

Use Tool -> Torch and that gives you a big list of all the traffic going through that interface.
by Cablenut9
Sat May 15, 2021 12:01 am
Forum: General
Topic: DFS is making me nuts
Replies: 4
Views: 497

Re: DFS is making me nuts

I can select USA as the country and then use super channel to bypass the regulations, but I really don't like doing that.
Take it or leave it
by Cablenut9
Fri May 14, 2021 5:26 pm
Forum: RouterOS v7 BETA
Topic: L2TP/IPsec crashes with Android 11 client
Replies: 2
Views: 461

Re: L2TP/IPsec crashes with Android 11 client

They don't want supout files with beta versions, only v6 right now.
by Cablenut9
Fri May 14, 2021 6:15 am
Forum: RouterOS v7 BETA
Topic: L2TP/IPsec crashes with Android 11 client
Replies: 2
Views: 461

L2TP/IPsec crashes with Android 11 client

After updating my phone to Android 11, I can't connect to my RB4011 running 7.1beta5 for more than 30 seconds before the RB crashes and reboots. I don't get anything in the logs other than a regular reboot message. And, I can't just downgrade to a lower ROS version because I need Wireguard.
by Cablenut9
Thu May 13, 2021 10:32 pm
Forum: RouterOS v7 BETA
Topic: v7 launch date
Replies: 32
Views: 2829

Re: v7 launch date

If the older routing protocols and engine were not designed around route caching, we probably would be on a much more modern kernel already.
Why did they do this?
by Cablenut9
Wed May 12, 2021 7:06 pm
Forum: Wireless Networking
Topic: Forcing Mobile phone to Prioritize Connection on Mikrotik Hotspot
Replies: 2
Views: 428

Re: Forcing Mobile phone to Prioritize Connection on Mikrotik Hotspot

Is your phone connecting to other hotspots but you don't want it to?
by Cablenut9
Tue May 11, 2021 12:57 am
Forum: General
Topic: wApR and LTE (AT&T sim specifically) DENIED
Replies: 6
Views: 909

Re: wApR and LTE (AT&T sim specifically) DENIED

There's a way to change the IMEI if AT&T restricts it (and they do for a couple special plans) but since it's a bit of a secret, I'm not sure how I can share it because there are no PMs in this forum. I sometimes have my wAP denied if it can't find a good enough tower to connect to, so that coul...
by Cablenut9
Fri May 07, 2021 6:13 pm
Forum: General
Topic: The Dude: Is it still supported? [SOLVED]
Replies: 4
Views: 567

Re: The Dude: Is it still supported? [SOLVED]

If you're desperate for something newer, try Zabbix.
by Cablenut9
Fri May 07, 2021 3:32 pm
Forum: General
Topic: Decrease in software quality from mikrotik?
Replies: 16
Views: 1514

Re: Decrease in software quality from mikrotik?

I just make sure my equipment is the "International" version so I can select superchannel mode and never get any false positives in my APs. However, it shouldn't interfere with radar much because all the APs are in a location that is hostile to signals getting anywhere.
by Cablenut9
Fri May 07, 2021 6:44 am
Forum: General
Topic: How to change SXT LTE imei?
Replies: 17
Views: 7484

Re: How to change SXT LTE imei?

There's actually a way to change the IMEI with the LTE and LTE6 modem, but it involves a secret AT command and some reboot procedure.
by Cablenut9
Thu May 06, 2021 7:51 pm
Forum: General
Topic: VPN L2TP/IPSEC RouterOS 6.11
Replies: 19
Views: 998

Re: VPN L2TP/IPSEC RouterOS 6.11

pptp vpn
Image
by Cablenut9
Wed May 05, 2021 2:38 pm
Forum: Beginner Basics
Topic: MIKROTIK wAP ac LTE6 kit [SOLVED]
Replies: 1
Views: 390

Re: MIKROTIK wAP ac LTE6 kit [SOLVED]

Sounds like you got a dud, either try to fix it or get a new one.
by Cablenut9
Tue May 04, 2021 9:46 pm
Forum: Beginner Basics
Topic: Wireguard IPv6 configuration
Replies: 2
Views: 420

Re: Wireguard IPv6 configuration

I'm suspecting that ROS doesn't support Wireguard over IPv6. Wait until the next beta release to see if it changes
by Cablenut9
Tue May 04, 2021 1:59 pm
Forum: General
Topic: Remove old bandwidth= feature
Replies: 3
Views: 298

Re: Remove old bandwidth= feature

Try using a simple queue instead.
by Cablenut9
Mon May 03, 2021 7:37 pm
Forum: Beginner Basics
Topic: Opening SXT Case?
Replies: 6
Views: 463

Re: Opening SXT Case?

If it breaks then you haven't damaged anything of value.
I haven't? A brand next SXT kit/case?
Well yeah, you're not likely to break a brand new SXT, but if you do, then maybe it wasn't worth much to begin with.
by Cablenut9
Mon May 03, 2021 7:25 pm
Forum: Beginner Basics
Topic: Opening SXT Case?
Replies: 6
Views: 463

Re: Opening SXT Case?

If it breaks then you haven't damaged anything of value.
by Cablenut9
Mon May 03, 2021 7:07 pm
Forum: Beginner Basics
Topic: Opening SXT Case?
Replies: 6
Views: 463

Re: Opening SXT Case?

Get a set of tiny screwdrivers. Now pry the SXT open at the little gaps they leave on the seam where the two halves of the case meet.
by Cablenut9
Mon May 03, 2021 7:03 pm
Forum: Beginner Basics
Topic: RB4011 router-on-a-stick
Replies: 6
Views: 711

Re: RB4011 router-on-a-stick

Your setup is almost exactly how I do mine, but MAKE SURE your PHY rates make sense on all sides, as I had that happen and my internet speeds got sliced 20x.
by Cablenut9
Sun May 02, 2021 3:42 pm
Forum: Wireless Networking
Topic: Wifi between concrete walls
Replies: 10
Views: 948

Re: Wifi between concrete walls

I would start with this: https://mikrotik.com/product/lhg_xl_2
by Cablenut9
Fri Apr 30, 2021 5:08 pm
Forum: General
Topic: [BUG] Certificate Days Valid shows wrong value due to 32-bit time_t
Replies: 5
Views: 419

Re: [BUG] Certificate Days Valid shows wrong value due to 32-bit time_t

Switch to 7.1beta5 and enjoy that 64 bit time.
by Cablenut9
Thu Apr 29, 2021 6:21 pm
Forum: General
Topic: Mikrotik,pihole & unbound. [SOLVED]
Replies: 19
Views: 2182

Re: Mikrotik,pihole & unbound. [SOLVED]

You can't use a Mikrotik device as a DoH server, only a client. Here are some good things you can do to make a better DNS setup: -> Set up a Netwatch to disable the redirect when the PiHole goes down. -> Exclude the PiHole's address from the DNS redirect. -> Set up a backup PiHole that gets used whe...
by Cablenut9
Thu Apr 29, 2021 4:25 am
Forum: Scripting
Topic: Send SMS from different router
Replies: 2
Views: 518

Re: Send SMS from different router

That said... You could use ssh for you solution with sms.
How could this be done in ROS?
by Cablenut9
Thu Apr 29, 2021 1:52 am
Forum: RouterOS v7 BETA
Topic: VRRP connection tracking and preemption mode
Replies: 7
Views: 835

Re: VRRP connection tracking and preemption mode

The problem with using an Owner router is that ROS simply doesn't support it. I'd like for connection switching to be as seamless as possible, as some of the users in the home where this is being used complain about their internet suddenly going out, which tracking might help a little with.
by Cablenut9
Thu Apr 29, 2021 12:06 am
Forum: RouterOS v7 BETA
Topic: VRRP connection tracking and preemption mode
Replies: 7
Views: 835

VRRP connection tracking and preemption mode

I want to set up VRRP with preemption mode and connection tracking sync at the same time. However, both my routers complain that these settings are mutually exclusive. The goal is to have a "main router" connected to fiber internet that we want as much as possible. It should sync its conne...
by Cablenut9
Tue Apr 27, 2021 4:13 am
Forum: General
Topic: L2TP IPSEC site to site behind NAT [SOLVED]
Replies: 17
Views: 1554

Re: L2TP IPSEC site to site behind NAT [SOLVED]

In IP -> IPsec, is the traverse-nat option enabled in IPsec settings?
by Cablenut9
Tue Apr 27, 2021 3:41 am
Forum: RouterOS v7 BETA
Topic: Interface setting proxy-arp could be broken
Replies: 1
Views: 494

Interface setting proxy-arp could be broken

With my L2TP/IPsec tunnels I can't get proxy-arp working with 7.1beta5, as I can't get ARP from any devices on the local network. Regular websites work just fine and I can connect to the router itself, but nothing else. It's sad that so much stuff is broken in the 7.1 betas and I can't just not use ...
by Cablenut9
Tue Apr 27, 2021 1:43 am
Forum: RouterOS v7 BETA
Topic: v7.1beta5 [development] is released!
Replies: 293
Views: 44761

Re: v7.1beta5 [development] is released!

I just got a random reboot on my RB4011 running 7.1b5, all I get in the log is that it was rebooted without a proper shutdown. Memory usage was normal beforehand so it likely wasn't a memory leak.
by Cablenut9
Mon Apr 26, 2021 10:31 pm
Forum: Scripting
Topic: Send SMS from different router
Replies: 2
Views: 518

Send SMS from different router

I have a setup where I have two redundant routers with VRRP, and one has a fiber internet connection and the other has LTE. Is there a way to make a script send an SMS from the LTE device, but have that message be initiated by the other router? I'd like to be able to get text messages when some even...
by Cablenut9
Sun Apr 25, 2021 5:30 am
Forum: Forwarding Protocols
Topic: MPLS Queue Problem.
Replies: 1
Views: 452

Re: MPLS Queue Problem.

Give us the results of this:
/export hide-sensitive
by Cablenut9
Fri Apr 23, 2021 5:02 pm
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

Re: RB4011 ROS takes up an order of magnitude more space

Ironic, because back when I was running The Dude on a 2GB MicroSD on a hEX S, the total used space was less than whatever space the inodes are taking up here. ROS should let you know what kinds of things are using up the space, not a generic "space used/available"
by Cablenut9
Fri Apr 23, 2021 5:28 am
Forum: General
Topic: Massive slowdown after upgrading to routeros 6.48.2
Replies: 5
Views: 735

Re: Massive slowdown after upgrading to routeros 6.48.2

If you're getting limited to 90 Mbps, check the "link rate" of your WAN connection. If it's 100 Mbps, then there's your problem.
by Cablenut9
Fri Apr 23, 2021 1:16 am
Forum: Wireless Networking
Topic: DISC Lite5 AC 9dB only?
Replies: 12
Views: 939

Re: DISC Lite5 AC 9dB only?

well, it really didn't. I can lie about the antenna gain to get more output, but I shouldn't have to. I have 42dB available but I'm definitely limited to 30. If I set the gain to 21, I get 9dB output. 19 and I get 11dB. Is this an error in the U-NII-1 coding for UnitedStates3? They don't know what ...
by Cablenut9
Fri Apr 23, 2021 12:43 am
Forum: Wireless Networking
Topic: DISC Lite5 AC 9dB only?
Replies: 12
Views: 939

Re: DISC Lite5 AC 9dB only?

Try this:
/interface wireless set [find] antenna-gain=0
because your antenna gain is likely set to a gigantic number.
by Cablenut9
Thu Apr 22, 2021 11:20 pm
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

Re: RB4011 ROS takes up an order of magnitude more space

I found out that it's not just the system package that takes up space but other files as well. However, I still don't know what those other files are.
by Cablenut9
Thu Apr 22, 2021 10:25 pm
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

Re: RB4011 ROS takes up an order of magnitude more space

In a terminal windows, run the following command and post the output of it. /file print [admin@MikroTikRouter] /file> pr Columns: NAME, TYPE, SIZE, CREATION-TIME # NAME TYPE SIZE CREATION-TIME 0 skins directory dec/31/1969 20:00:03 1 pub directory jan/01/1970 20:01:47 2 auto-before-reset.backup bac...
by Cablenut9
Thu Apr 22, 2021 4:49 pm
Forum: Beginner Basics
Topic: How to connect two LANs with static IP over internet
Replies: 3
Views: 368

Re: How to connect two LANs with static IP over internet

Just use EoIP, or maybe L2TP BCP if one endpoint doesn't have a static IP.
by Cablenut9
Thu Apr 22, 2021 4:35 pm
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

Re: RB4011 ROS takes up an order of magnitude more space

Haha I was going to ask which Russian website did you get your download from. ;-)
This software came with the RB4011 out of the box. :)
by Cablenut9
Thu Apr 22, 2021 6:32 am
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

Re: RB4011 ROS takes up an order of magnitude more space

There is no "95MB" downloadable "ROS" package.
I was wrong, it's actually 87MB.
by Cablenut9
Thu Apr 22, 2021 4:46 am
Forum: General
Topic: RB4011 ROS takes up an order of magnitude more space
Replies: 15
Views: 1050

RB4011 ROS takes up an order of magnitude more space

I noticed that compared to every other Mikrotik device I own, the RB4011 ROS package has an obese software size (95MB!) compared to my other ROS installations which only take up 12MB at the most. How is this possible? I don't think the Alpine CPU needs drivers that are that big, unless it has some s...
by Cablenut9
Wed Apr 21, 2021 7:25 pm
Forum: General
Topic: SFP RB4011
Replies: 25
Views: 5741

Re: SFP RB4011

RB4011 seems to be even more picky than the rest.
What about the CRS305?
by Cablenut9
Wed Apr 21, 2021 7:07 pm
Forum: Beginner Basics
Topic: Root port
Replies: 2
Views: 309

Re: Root port

by Cablenut9
Wed Apr 21, 2021 3:46 am
Forum: Forwarding Protocols
Topic: VRRP trigger from lost internet connection
Replies: 5
Views: 650

Re: VRRP trigger from lost internet connection

If you have Static IP hand-off, you could try pinging your gateway as netwatch, which shouldn't be pingable if internet was to swap to other router The problem with this is, the gateway would always be powered up and pingable even when the internet is down (hurricane knocks out outdoor fiber lines)...
by Cablenut9
Wed Apr 21, 2021 1:31 am
Forum: General
Topic: Config VLan and trunk between RB4011 router and CRS328 Switch (Running RouteOS)
Replies: 26
Views: 1705

Re: Config VLan and trunk between RB4011 router and CRS328 Switch (Running RouteOS)

Yet another disadvantage of cAPsMAN is that if the host router goes down, every AP goes down with it (bad news if you have VRRP)
by Cablenut9
Wed Apr 21, 2021 1:26 am
Forum: RouterBOARD hardware
Topic: CRS305 Console
Replies: 1
Views: 593

Re: CRS305 Console

I have two and both have some listing of some console output in WebFig, so I suspect that there is some header just for that.
by Cablenut9
Tue Apr 20, 2021 7:09 pm
Forum: Beginner Basics
Topic: Need help troubleshooting R11e-LTE6_V025
Replies: 7
Views: 527

Re: Need help troubleshooting R11e-LTE6_V025

Also try enabling or disabling "allow roaming" as messing with this has gotten me out of similar "can't connect" situations.
by Cablenut9
Tue Apr 20, 2021 6:21 pm
Forum: Beginner Basics
Topic: Need help troubleshooting R11e-LTE6_V025
Replies: 7
Views: 527

Re: Need help troubleshooting R11e-LTE6_V025

V025 is not one but two versions out of date, so upgrade it before you do anything else by doing
/interface lte firmware-upgrade lte1 upgrade=yes
by Cablenut9
Tue Apr 20, 2021 5:59 pm
Forum: General
Topic: Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]
Replies: 6
Views: 678

Re: Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]

Update: I fixed the problem. Here's what I figured out: The AT&T gateway only has regular gigabit ethernet. The CRS has a sfp+ module connecting to one of those gigabit ports, and it turns out that it was auto-negotiating to 10Gbps. This obviously couldn't work with the AT&T gadget but it ha...
by Cablenut9
Tue Apr 20, 2021 5:34 pm
Forum: General
Topic: Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]
Replies: 6
Views: 678

Re: Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]

(1) Should I remove the sfpplus on the RB router or CRS? I'd think that if I did it on the router then I couldn't communicate to local devices on the CRS (as that is connected with the sfpplus) and if I did it on the CRS then I lose hardware offloading. (2) This makes sense. I followed a tutorial wh...
by Cablenut9
Tue Apr 20, 2021 2:25 am
Forum: General
Topic: Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]
Replies: 6
Views: 678

Phantom bandwidth limt with RB4011 + CRS305 router-on-a-stick [SOLVED]

I have a RB4011 connected to a CRS305 with a router-on-a-stick topology, with sfp-sfpplus1 on RB -> sfp-sfpplus1 on CRS, both with 10G ethernet SFP+ modules. The sfp-sfpplus4 port on the CRS goes to the ISP's fiber internet CPE which provides a public IP address to the RB4011 on the VLAN 10 network ...
by Cablenut9
Mon Apr 19, 2021 4:29 am
Forum: Forwarding Protocols
Topic: VRRP trigger from lost internet connection
Replies: 5
Views: 650

Re: VRRP trigger from lost internet connection

Depending on how your internet works - probably a Netwatch script that then modifies VRRP priorities to force the other one to take over Master Could this be like: watch 1.1.1.1 (or 8.8.8.8) on up: set vrrp priority = higher than the backup router on down: set vrrp priority = lower than the backup ...
by Cablenut9
Mon Apr 19, 2021 3:11 am
Forum: Forwarding Protocols
Topic: VRRP trigger from lost internet connection
Replies: 5
Views: 650

VRRP trigger from lost internet connection

The Mikrotik Wiki describes VRRP as a thing to let other routers take over when a main one fails, but this seems too limited. By that definition, VRRP only works when the main router loses power or gets disconnected from the network. However, I need VRRP to trigger when the internet connection on th...
by Cablenut9
Mon Apr 19, 2021 2:32 am
Forum: General
Topic: Feature requests
Replies: 1348
Views: 333079

Re: Feature requests

( Tilera CPU support is dropped by linux kernel - so its no future ).
Mikrotik has already made kernel patches just for Tilera, so no worries there.
by Cablenut9
Sun Apr 18, 2021 11:59 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

Re: RB4011 is missing CPU frequency adjustment

Will this be fixed in a future ROS v7 beta release?
by Cablenut9
Sun Apr 18, 2021 11:59 pm
Forum: RouterBOARD hardware
Topic: mantbox 12s only has passive poe? [SOLVED]
Replies: 4
Views: 1137

Re: mantbox 12s only has passive poe? [SOLVED]

How many pennies did that save off the manufacturing cost?
Mikrotik only gives you what you need, but if you need 802.3af/at then get the mANTbox 52 15s which has the 12s and 15s combined into one thing with all the good features you want.
by Cablenut9
Sun Apr 18, 2021 11:57 pm
Forum: General
Topic: RB2011UiAS-RM VS Custom x86
Replies: 5
Views: 440

Re: RB2011UiAS-RM VS Custom x86

Some x86 thing will cost more than any other premade option, so I would get a hEX S or even a RB4011 because both have good IPsec performance and are all-in-one gadgets.
by Cablenut9
Sun Apr 18, 2021 5:41 am
Forum: General
Topic: The Ipsec-connection is not established through two Internet-links
Replies: 3
Views: 284

Re: The Ipsec-connection is not established through two Internet-links

What ROS version are you using?
6.48.2 (stable)
Sad, because I had a similar problem on 7.1beta5 and the problem was that it was just a buggy version, bu that isn't true here.
by Cablenut9
Sat Apr 17, 2021 6:18 pm
Forum: General
Topic: High Density Scenario - 30k client
Replies: 7
Views: 645

Re: High Density Scenario - 30k client

Our main concern comes with DHCP as you also highlighted, there will be a instant loads on the dhcp server when guests arrived the venue. According to this block diagram: https://i.mt.lv/cdn/product_files/CCR1072-150831130622_150822.png the CPU is directly connected to the SFP+ ports, so the DHCP s...
by Cablenut9
Sat Apr 17, 2021 5:13 pm
Forum: General
Topic: High Density Scenario - 30k client
Replies: 7
Views: 645

Re: High Density Scenario - 30k client

With those many clients, you're going to have a lot of connections which means a multi-core router with slower individual cores would be better than a few-core one with speedy cores, so that means a CCR. You also have not one but two 10Gbit ethernet links, so you need something with 2+ of those port...
by Cablenut9
Sat Apr 17, 2021 5:08 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

Re: RB4011 is missing CPU frequency adjustment

It is right there. [admin@MikroTikRouter] > system resource print uptime: 22h55m39s version: 7.1beta5 (development) build-time: Mar/16/2021 14:41:12 factory-software: 6.44.6 free-memory: 931.5MiB total-memory: 1024.0MiB cpu: ARMv7 cpu-count: 4 cpu-load: 1% free-hdd-space: 424.8MiB total-hdd-space: ...
by Cablenut9
Sat Apr 17, 2021 4:05 am
Forum: RouterOS v7 BETA
Topic: L2TP BCP is broken
Replies: 3
Views: 531

Re: L2TP BCP is broken

So, you're saying it likely won't be fixed until stable v7 comes out? That's worse than Ubiquiti!
by Cablenut9
Sat Apr 17, 2021 1:44 am
Forum: RouterOS v7 BETA
Topic: L2TP BCP is broken
Replies: 3
Views: 531

L2TP BCP is broken

After upgrading my router to v7 my L2TP BCP setup is broken. No packets can make it across, and I double checked the MTU/MTU/MRRU settings. Are there any changes in v7 that I might to work around to fix this? I spent an hour on my phone during a wedding trying to get the connection to work again.
by Cablenut9
Fri Apr 16, 2021 10:45 pm
Forum: Wireless Networking
Topic: Any product recommendations for MikroTik wifi router?
Replies: 22
Views: 2470

Re: Any product recommendations for MikroTik wifi router?

The reason there are so many switch chip discrepancies is because the Big Mik cuts costs by only giving you what you need, and that "need" changes depending on the device, unlike Cisco/other-vendor-here which gives you all the features as well as all the costs.
by Cablenut9
Fri Apr 16, 2021 10:23 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

Re: RB4011 is missing CPU frequency adjustment

Right. Nothing remained unchanged ...
So where's the CPU frequency in v7?
by Cablenut9
Fri Apr 16, 2021 9:57 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

Re: RB4011 is missing CPU frequency adjustment

In ROS v6 CPU frequency is shown by /system resource print.
I'm using ROS v7.
by Cablenut9
Fri Apr 16, 2021 9:33 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

Re: RB4011 is missing CPU frequency adjustment

Interestingly, I can't check CPU speed at all either. It used to be in System -> RouterBOARD but now that's gone as well.
by Cablenut9
Fri Apr 16, 2021 7:01 pm
Forum: RouterOS v7 BETA
Topic: RB4011 is missing CPU frequency adjustment
Replies: 10
Views: 1310

RB4011 is missing CPU frequency adjustment

My new RB4011 had a setting to change the CPU frequency with the version of ROS it shipped with (6.45.9), but with 7.1b5 that setting is nowhere to be seen. Is there a fix, or will I be stuck with the default speed?
by Cablenut9
Thu Apr 15, 2021 9:16 pm
Forum: General
Topic: AES-CBC vs. CTR performance
Replies: 2
Views: 332

Re: AES-CBC vs. CTR performance

Bump!
by Cablenut9
Thu Apr 15, 2021 7:11 pm
Forum: General
Topic: AES-CBC vs. CTR performance
Replies: 2
Views: 332

AES-CBC vs. CTR performance

Assuming two Mikrotik devices have IPsec offloading for both CBC and CTR, which would be better for a L2TP/IPsec link? I read that CTR can be parallelized more and so might be faster.
by Cablenut9
Wed Apr 14, 2021 5:30 pm
Forum: General
Topic: Way to set the NAT type?
Replies: 5
Views: 477

Re: Way to set the NAT type?

What is the advantage of being able to set different types of NAT.
Sometimes you need to do something very specific that requires a special feature, and it's also a selling point compared to other network OSes like IOS.
by Cablenut9
Wed Apr 14, 2021 7:10 am
Forum: General
Topic: Cloutik feedback ?
Replies: 11
Views: 1135

Re: Cloutik feedback ?

No serious network techs will ever use third party cloud service to manage their own devices. Thus, no discussion needed.
What about UniFi?
by Cablenut9
Wed Apr 14, 2021 6:56 am
Forum: General
Topic: Way to set the NAT type?
Replies: 5
Views: 477

Way to set the NAT type?

It'd be nice to be able to change the masquerade NAT rule to be one of the many kinds of NAT available: full cone, port/address restricted cone, or symmetric. Is this possible?
by Cablenut9
Tue Apr 13, 2021 9:33 pm
Forum: Announcements
Topic: v6.48.2 [stable] is released!
Replies: 154
Views: 28112

Re: v6.48.2 [stable] is released!

Hmm, nothing about DoH memory leakage fix.
You don't need DoH.
by Cablenut9
Tue Apr 13, 2021 7:00 am
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

Re: RB5011?

But why can't it be implement on x86 ? I known there is no HWNAT in Tilera chipset but It indeed have fast path.
Fast path means nothing to me anyway, since to use queues you need to disable it.
by Cablenut9
Mon Apr 12, 2021 8:56 pm
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

Re: RB5011?

Which part of RB4011 is 3 years outdated?
The processor could be a lot better. It uses Cortex A15 CPUs, which were released way back in 2012, 9 years ago!
by Cablenut9
Mon Apr 12, 2021 8:44 pm
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

Re: RB5011?

Guess what? Performance doesn't come for free. If you need performance because you have high speed WAN link for which you spend considerable amount of money, then spend some on decent router as well. I just want the features that the RB4011 has (compact size, no-fuss OS system) but I don't want it ...
by Cablenut9
Mon Apr 12, 2021 8:09 pm
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

Re: RB5011?

If you need your "RB5011" then either look around and see if some available devices may do what you need or just don't buy Mikrotik at all. What are the alternatives? The Ubiquiti Edgerouters lack features while being slightly slower and higher priced, TP-Link Omada is junk, Cisco co$t$ t...
by Cablenut9
Mon Apr 12, 2021 5:37 am
Forum: Beginner Basics
Topic: hEX-S "advanced" setup with VLANs, dynamic DNS, CAPsMAN, etc.
Replies: 13
Views: 1038

Re: hEX-S "advanced" setup with VLANs, dynamic DNS, CAPsMAN, etc.

1. If those old things have nothing to do with the new setups, then keep them. 2. You'll lose everything, unless you do an /export to save the certificates. 3. They're always numbered, but Mikrotik offers a mnemonic abstraction feature that only works within the router. 4. You can't easily, unless y...
by Cablenut9
Mon Apr 12, 2021 2:50 am
Forum: General
Topic: Wireguard fails to work [SOLVED]
Replies: 2
Views: 310

Re: Wireguard fails to work [SOLVED]

Search the threads to see if there is already a similar thread or start your own. I found this one: https://forum.mikrotik.com/viewtopic.php?f=1&t=173172 which had something to do with allowed-address. I checked /interface/wireguard/peers and manually set the allowed-address to 0.0.0.0/0 and it...
by Cablenut9
Mon Apr 12, 2021 2:22 am
Forum: General
Topic: Wireguard fails to work [SOLVED]
Replies: 2
Views: 310

Wireguard fails to work [SOLVED]

I'm having trouble getting Wireguard in 7.1b5 to work with Mullvad VPN. My routes: # DST-ADDRESS GATEWAY D DAd 0.0.0.0/0 modem-ip 2 DAc mullvad-local-ip wireguard1 0 DAc modem-ip/22 sfp1 0 DAc 192.168.1.0/24 bridge 0 0 As 0.0.0.0/0 wireguard1 1 I have a masquerade rule for WG so that's out. I can't ...
by Cablenut9
Sun Apr 11, 2021 7:27 pm
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

Re: RB5011?

and poe on all ether ports
Keep dreaming
by Cablenut9
Sun Apr 11, 2021 4:31 pm
Forum: RouterBOARD hardware
Topic: RB5011?
Replies: 19
Views: 2247

RB5011?

I've been checking https://wiki.mikrotik.com/wiki/MikroTik_News which has all the product releases available. I noticed that the RB4011 is all the way from 2018, the RB3011 2015, and the RB2011 2013. Does this mean that we'll get the RB5011 this year? The biggest features that would be great are hav...
by Cablenut9
Fri Apr 09, 2021 6:40 am
Forum: General
Topic: Multiple packet marks?
Replies: 4
Views: 449

Re: Multiple packet marks?

Would the "mark routing" feature work for this as well? The Mik router has some webservers behind it so I need to be able to differentiate between traffic destined toward regular website visitors and outbound traffic that's supposed to go through the VPN.
by Cablenut9
Fri Apr 09, 2021 6:11 am
Forum: General
Topic: Multiple packet marks?
Replies: 4
Views: 449

Multiple packet marks?

I'm going to have a setup where I have a split-tunnel VPN and a queue tree. The split-tunnel will use mangle rules to mark packets that should get sent through the VPN, but the problem is that the queue tree also uses packet marks for QoS. Is there a way to add multiple marks to a packet/connection ...
by Cablenut9
Mon Apr 05, 2021 7:16 am
Forum: Forwarding Protocols
Topic: CARP protocol support?
Replies: 1
Views: 430

CARP protocol support?

CARP is simple VRRP with support for firewall rule synchronization. When will RouterOS support this? It'd be a great feature to add since other networking software has already supported CARP for a long time.
by Cablenut9
Fri Apr 02, 2021 6:12 am
Forum: RouterBOARD hardware
Topic: T-Mobile and LTE6 R11 modem alternative?
Replies: 3
Views: 751

Re: T-Mobile and LTE6 R11 modem alternative?

Switch to Mint Mobile or Ultra Mobile or any other T-Mobile MVNO or make sure you're using the v27 firmware , as that's what I'm doing right now with the LTE6 modem to post this very message. Also, check this link out. https://www.3gpp.org/ftp/tsg_ran/WG2_RL2/TSGR2_111-e/Inbox/Drafts/%5BOffline-009%...
by Cablenut9
Thu Apr 01, 2021 10:28 pm
Forum: Wireless Networking
Topic: for when spectral analysis will work on AC radios
Replies: 3
Views: 652

Re: for when spectral analysis will work on AC radios

It doesn't look like it'll come anytime soon, so what I would do is get a Groove52 (802.11n version) and use it just for spectral scans.
by Cablenut9
Wed Mar 31, 2021 2:23 am
Forum: Forwarding Protocols
Topic: Keep using firewall rules with VRRP
Replies: 5
Views: 979

Re: Keep using firewall rules with VRRP

Conntrack synchronisation is now available in ROS v7.
How would I do this, along with rule synchronization?
by Cablenut9
Tue Mar 30, 2021 9:50 pm
Forum: Forwarding Protocols
Topic: Keep using firewall rules with VRRP
Replies: 5
Views: 979

Keep using firewall rules with VRRP

If I had a VRRP setup with 2 routers, Router 1 with a lot of firewall and NAT rules and Router 2 with none, can VRRP make it so those rules can apply to traffic that passes through Router 2? This is a hard requirement for me to use VRRP for a backup WAN system.
by Cablenut9
Tue Mar 30, 2021 4:41 am
Forum: RouterBOARD hardware
Topic: Powering 2 devices from hAP ac3 PoE-out port
Replies: 2
Views: 785

Powering 2 devices from hAP ac3 PoE-out port

Soon I'm going to have a hAP ac3 powered by 24v PoE in. Its PoE-out port could power both a SXT LTE6 and a mANTbox 12s. Together, those devices would take 18w maximum power which is 0.75A, more than the 0.5A supported by the 0.5A maximum. Is this safe? I had a similar question about a cAP ac and a s...
by Cablenut9
Mon Mar 29, 2021 6:42 am
Forum: Wireless Networking
Topic: Is there a way to increase range/signal of cAP AC?
Replies: 4
Views: 945

Re: Is there a way to increase range/signal of cAP AC?

Try this: /interface wireless set [find] antenna-gain=0
What country are you in?
by Cablenut9
Sun Mar 28, 2021 11:58 pm
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

Re: LTE MAC can't be changed

What it's a "drop-in" ?
It means that I can install the modem and RouterOS will work with it without a lot of reconfiguration.
by Cablenut9
Sun Mar 28, 2021 10:33 pm
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

Re: LTE MAC can't be changed

Would a Quectel or Telit 5G modem work as a drop-in? I'd expect that I could change the IMEI with either, but drivers could be an issue.
by Cablenut9
Sun Mar 28, 2021 10:08 pm
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

Re: LTE MAC can't be changed

What's "production mode"?
by Cablenut9
Sun Mar 28, 2021 7:32 pm
Forum: The Dude
Topic: Monitoring lora gateways
Replies: 2
Views: 986

Re: Monitoring lora gateways

If it has an IP, try Netwatch or The Dude or Zabbix.
by Cablenut9
Sun Mar 28, 2021 7:11 am
Forum: General
Topic: ISP speed is 200 MB but Mikrotik speed is 100 MB
Replies: 14
Views: 1781

Re: ISP speed is 200 MB but Mikrotik speed is 100 MB

The problem isn't the modem itself per se, but rather the fact that the modem only supports 100mbit ethernet. Different models of modem might support 1000mbit ethernet and give you the full 200 megabit speed.
by Cablenut9
Sun Mar 28, 2021 6:03 am
Forum: General
Topic: ISP speed is 200 MB but Mikrotik speed is 100 MB
Replies: 14
Views: 1781

Re: ISP speed is 200 MB but Mikrotik speed is 100 MB

Try another ethernet cable and see if that changes the speed. If it doesn't, then you need a new modem.
by Cablenut9
Sun Mar 28, 2021 5:25 am
Forum: General
Topic: ISP speed is 200 MB but Mikrotik speed is 100 MB
Replies: 14
Views: 1781

Re: ISP speed is 200 MB but Mikrotik speed is 100 MB

Check "Status" and look for something called "Link Speed" or something like that, because it could be a bad ethernet cable or bad modem.
by Cablenut9
Sun Mar 28, 2021 5:05 am
Forum: General
Topic: ISP speed is 200 MB but Mikrotik speed is 100 MB
Replies: 14
Views: 1781

Re: ISP speed is 200 MB but Mikrotik speed is 100 MB

Go to Interfaces -> your WAN ethernet port -> link status. What's the speed shown there?
by Cablenut9
Sun Mar 28, 2021 1:31 am
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

Re: LTE MAC can't be changed

I understand some people to try change IMEI of lte interface becase imei is used by ISP to determine a vendor+SN of lte device. This is actually something I'd like to do more, since in the US many SIM cards have limits when used with a "hotspot" device. However, with the wAP being a "...
by Cablenut9
Sat Mar 27, 2021 2:53 pm
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

Re: LTE MAC can't be changed

*) winbox - do not allow...
So this could work through SSH? I could also downgrade it to before 6.47.8. EDIT: It looks like it doesn't work over SSH. I guess I'll have to downgrade.
by Cablenut9
Sat Mar 27, 2021 2:09 pm
Forum: Wireless Networking
Topic: LTE MAC can't be changed
Replies: 13
Views: 1150

LTE MAC can't be changed

I've been trying to change the LTE6 MAC on my wAP ac LTE6 and I can't figure it out. For some reason, it won't let me change it even though I give it the technically right command: /interface lte set lte1 mac-address=address Is there a fix for this, like maybe an AT-chat command to send directly to ...
by Cablenut9
Sat Mar 27, 2021 2:45 am
Forum: Wireless Networking
Topic: Omnitik AC DFS?
Replies: 5
Views: 683

Re: Omnitik AC DFS?

You can't, unless you get the International version or do some trickery with an EEPROM on the circuit board inside.
by Cablenut9
Fri Mar 26, 2021 9:03 pm
Forum: General
Topic: WARNING _ DO NOT USE UPS Feature on MT
Replies: 5
Views: 576

Re: WARNING _ DO NOT USE UPS Feature on MT

Cyberpower
Image

The UPS package is only designed for APC USPes, not any others.
by Cablenut9
Fri Mar 26, 2021 7:21 pm
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Re: Sending all traffic through a L2TP interface [SOLVED]

I FIXED IT! It was a MTU problem after all, the fix was to turn down the L2TP client's MTU/MRU to 1400. This seems to be because the LTE standard only has an MTU of that. I also turned down the LTE interface's MTU to 1400.
by Cablenut9
Fri Mar 26, 2021 6:50 pm
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Re: Sending all traffic through a L2TP interface [SOLVED]

I've found the problem. When I try to ping a device on the home network from the wAP, I can only get the packet size to 1388 bytes before it doesn't work.The "Don't Fragment" option changed nothing. Additionally, doing a packet sniff on the l2tp interface I saw that no packets above around...
by Cablenut9
Fri Mar 26, 2021 5:13 pm
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Re: Sending all traffic through a L2TP interface [SOLVED]

Wouldn't the MRRU have to be 1600 because it needs to pass L2 MAC headers too?
by Cablenut9
Fri Mar 26, 2021 3:42 pm
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Re: Sending all traffic through a L2TP interface [SOLVED]

It actually does work but the problem is that now no HTTPS traffic can get through. HTTP and other protocols like Winbox and SSH and DNS work better, but no HTTPS. Even those can't keep a connection open. Linux' curl and wget commands work only on HTTP sites. Wget shows that it connects to the serve...
by Cablenut9
Fri Mar 26, 2021 3:10 pm
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Re: Sending all traffic through a L2TP interface [SOLVED]

It almost works, it gives me some new routes, but the default LTE route with a 3 distance is now labeled not-active. Is this supposed to happen?
by Cablenut9
Fri Mar 26, 2021 5:18 am
Forum: Beginner Basics
Topic: Help forwarding UDP
Replies: 7
Views: 722

Re: Help forwarding UDP

Mikrotik doesn't support UDP on OpenVPN unless you use buggy v7, so either switch to some other protocol or try upgrading to 7.1beta5.
by Cablenut9
Fri Mar 26, 2021 4:30 am
Forum: General
Topic: Sending all traffic through a L2TP interface [SOLVED]
Replies: 10
Views: 864

Sending all traffic through a L2TP interface [SOLVED]

I've been having lots of trouble setting up a hotspot with a wAP ac LTE6. Here's my routes: Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit # DST-ADDRESS PREF-SRC GATEWAY DISTANCE 0 A S 0.0.0.0/0...
by Cablenut9
Thu Mar 25, 2021 5:40 pm
Forum: General
Topic: Redirecting or blocking DoH (DNS over HTTPS) requests made by clients
Replies: 3
Views: 735

Re: Redirecting or blocking DoH (DNS over HTTPS) requests made by clients

Step 1: Add this filter rule: /ip firewall filter add action=drop chain=forward comment="block DoH" dst-address-list="DoH Servers" Step 2: Add the servers: /ip firewall address-list add address=dns.google list="DoH Servers" add address=buttflare-dns.com list="DoH S...
by Cablenut9
Thu Mar 25, 2021 4:40 pm
Forum: RouterBOARD hardware
Topic: Overclocking the CPU
Replies: 2
Views: 792

Overclocking the CPU

I noticed that in a few of my Mikrotik devices I can select a higher CPU frequency to boost performance. However, when I do that I get a big "Error: CPU frequency not at default" message and so maybe it's a bad idea to do this. Is it really? I haven't noticed much of a temperature change i...
by Cablenut9
Tue Mar 23, 2021 3:27 pm
Forum: RouterBOARD hardware
Topic: wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]
Replies: 5
Views: 1090

Re: wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]

In the "ac" case, is it USB 2.0 or 3.0? The IPQ-4018 supports both, so it could be either.
by Cablenut9
Tue Mar 23, 2021 2:17 pm
Forum: RouterBOARD hardware
Topic: wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]
Replies: 5
Views: 1090

Re: wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]

unit have 100Mbps Ethernet, the USB bus is not problem here.
I'm not so sure about that: Image
by Cablenut9
Tue Mar 23, 2021 4:40 am
Forum: RouterBOARD hardware
Topic: wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]
Replies: 5
Views: 1090

wAP LTE6: USB 2 or 3 or PCIe? [SOLVED]

What protocol does the wAP ac LTE6 use for the LTE card? If it's USB 2, then that's a disappointment because that limits it to only around 300 Mbps. If it's USB 3 or PCIe (the protocol, not just the form factor) then that's great.
by Cablenut9
Mon Mar 22, 2021 2:40 pm
Forum: The Dude
Topic: The Dude and windows 10
Replies: 3
Views: 808

Re: The Dude and windows 10

"getting stuff" means it's loading the Dude database. Just wait a little and it'll be done, unless that's not happening.
by Cablenut9
Sun Mar 21, 2021 11:55 pm
Forum: SwOS
Topic: CRS312-4C+8XG-RM -- Jittery Network Latency During VR Gameplay
Replies: 7
Views: 1143

Re: CRS312-4C+8XG-RM -- Jittery Network Latency During VR Gameplay

It's only an issue when the speeds are mismatched
Image

For some reason, Mikrotik switches have a problem with buffers getting overloaded when differing 1+ gigabit speeds are used.
by Cablenut9
Sun Mar 21, 2021 3:00 pm
Forum: General
Topic: PPP "use-compression": Does it do anything?
Replies: 2
Views: 698

Re: PPP "use-compression": Does it do anything?

Ensure your WAN interface has proper MTU along with accounting for the ghost/hidden 20Bytes hard-coded on MikroTik interfaces: https://forum.mikrotik.com/viewtopic.php?f=2&t=171390#p838707 This is insane, so ROS includes 20 extra bytes in each header that they never told us about? That's a reci...
by Cablenut9
Sun Mar 21, 2021 5:06 am
Forum: General
Topic: PPP "use-compression": Does it do anything?
Replies: 2
Views: 698

PPP "use-compression": Does it do anything?

I have a relatively slow L2TP/IPsec connection (128kbps) that I need to optimize as much as I can. I also noticed that in PPP -> Profiles -> default-encryption, it offers a setting called use-compression. Does this actually work? Both ends are using ROS.
by Cablenut9
Sun Mar 21, 2021 12:23 am
Forum: RouterBOARD hardware
Topic: wAP ac LTE6: 41n is 5G?
Replies: 6
Views: 1076

Re: wAP ac LTE6: 41n is 5G?

example EP06-E can have unlock or enable the 256qam and new discovery show the 3CA can be unlock/enabled too ... that's why R11e-LTE6 can change that Bit Map in firmware until Hardware support that changes.
Is this as easy as installing a firmware update from the wAP itself?
by Cablenut9
Sat Mar 20, 2021 7:37 pm
Forum: Virtualization
Topic: Info to avoid screwing up the license renewal
Replies: 2
Views: 592

Re: Info to avoid screwing up the license renewal

There shouldn't be any renewal at all, unless they changed something recently with CHR.
by Cablenut9
Sat Mar 20, 2021 2:09 pm
Forum: Beginner Basics
Topic: Set up RB fiber router with L2TP
Replies: 7
Views: 638

Re: Set up RB fiber router with L2TP

I had the same problem, the fix is: Bridge -> ARP -> proxy-arp
by Cablenut9
Sat Mar 20, 2021 1:44 pm
Forum: RouterBOARD hardware
Topic: wAP ac LTE6: 41n is 5G?
Replies: 6
Views: 1076

Re: wAP ac LTE6: 41n is 5G?

So, you're saying 41n is "basic 5G" and can be a software drop-in to existing 4G equipment? If so, then I guess it's a good deal for me.
by Cablenut9
Sat Mar 20, 2021 1:14 am
Forum: RouterBOARD hardware
Topic: wAP ac LTE6: 41n is 5G?
Replies: 6
Views: 1076

wAP ac LTE6: 41n is 5G?

I noticed that the 41n band supported by the wAP LTE6 is actually 5G. Is this a simple oversight to not call the wAP 5G, or is it actually the "old" 4G version of 41 that is only supported?
by Cablenut9
Fri Mar 19, 2021 3:45 pm
Forum: Wireless Networking
Topic: 10Mhz channel on 5GHZ
Replies: 6
Views: 940

Re: 10Mhz channel on 5GHZ

That is unfortunately correct... the older N equipment can do 10 and even 5 MHz channels, but AC devices do only 20 MHz and above.
Is this even compatible with the 802.11n standards, as most client devices I know of only work with 20MHz channels, or is it a Mikrotik-only feature?
by Cablenut9
Fri Mar 19, 2021 1:49 am
Forum: RouterOS v7 BETA
Topic: v7.1beta5 [development] is released!
Replies: 293
Views: 44761

Re: v7.1beta5 [development] is released!

Mikrotik!
I kindly ask you to release wave2 extra packages separately for each CPU in order to fit 16MB Flash.
It is possible to run wave2 driver on 16MB Flash and 128 RAM.
Other vendors can make wave2 work with 16MB, so why not the Big Mik too?
by Cablenut9
Thu Mar 18, 2021 4:20 pm
Forum: General
Topic: Mikrotik + Sophos XG FW Winbox blocked if APP filter applied
Replies: 5
Views: 641

Re: Mikrotik + Sophos XG FW Winbox blocked if APP filter applied

Winbox is an app, so it makes sense that it would be blocked by whatever list the Sophos has for apps.
by Cablenut9
Thu Mar 18, 2021 4:10 pm
Forum: General
Topic: RB4011iGS: 4 ports as simple L2 switch [SOLVED]
Replies: 8
Views: 692

Re: RB4011iGS: 4 ports as simple L2 switch [SOLVED]

A bridge creates a switch, so it looks like you're good.
by Cablenut9
Thu Mar 18, 2021 5:12 am
Forum: General
Topic: Moving from rb3011 to rb4011 [SOLVED]
Replies: 9
Views: 810

Re: Moving from rb3011 to rb4011 [SOLVED]

For pasting, I would try Ctrl+V or using an SSH client that allows me to either click to paste or use the keyboard shortcut. I don't think you can turn off auto-completion.
by Cablenut9
Thu Mar 18, 2021 3:41 am
Forum: General
Topic: Moving from rb3011 to rb4011 [SOLVED]
Replies: 9
Views: 810

Re: Moving from rb3011 to rb4011 [SOLVED]

Go to Webfig -> Files -> "Backup" button -> click it -> download the file that appears. If you want an easily editable script: Go to Terminal -> /export file=your-name-here -> Files -> download your file. You'll need to do the second option if you're moving everything to the RB4011 as the ...
by Cablenut9
Wed Mar 17, 2021 6:05 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta5 [development] is released!
Replies: 293
Views: 44761

Re: v7.1beta5 [development] is released!

The "Quick Set" of WebFig always resets to "WISP AP". I switch it to "LTE AP Dual" and logout. On next login it is "WISP AP" again. That was'nt the case in beta4.
This happens to me in v6 too
by Cablenut9
Wed Mar 17, 2021 3:20 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta5 [development] is released!
Replies: 293
Views: 44761

Re: v7.1beta5 [development] is released!

Still no wifiwave2 with cAPsMAN support...
by Cablenut9
Mon Mar 15, 2021 8:21 pm
Forum: Wireless Networking
Topic: Mikrotik wifi mesh
Replies: 7
Views: 889

Re: Mikrotik wifi mesh

Any clue?
Mesh is junk.
by Cablenut9
Mon Mar 15, 2021 4:08 pm
Forum: General
Topic: DNS Setting with AdGuard
Replies: 7
Views: 1130

Re: DNS Setting with AdGuard

Another option could be to use The Dude to monitor the gadget and run the script if it's down.
by Cablenut9
Sun Mar 14, 2021 7:38 pm
Forum: General
Topic: Mikrotik UPS Solution
Replies: 11
Views: 927

Re: Mikrotik UPS Solution

Get an APC UPS that just plugs right in, and install the UPS package on your router. Then you can access some nifty features like power monitoring and automatic shutdown.
by Cablenut9
Sun Mar 14, 2021 1:52 am
Forum: RouterOS v7 BETA
Topic: new feature request MLAG!!!
Replies: 32
Views: 10974

Re: new feature request MLAG!!!

+1 for mlag
by Cablenut9
Fri Mar 12, 2021 4:25 am
Forum: Wireless Networking
Topic: ETA on a long range 60ghz product?
Replies: 9
Views: 1135

Re: ETA on a long range 60ghz product?

Ubiquiti's new offering
Based on the current 802.11ax situation, this basically means you'll need a wait a few more years before anything comparable comes on the horizon.
by Cablenut9
Thu Mar 11, 2021 5:39 am
Forum: RouterBOARD hardware
Topic: CRS305 L3 HW offloading?
Replies: 1
Views: 661

CRS305 L3 HW offloading?

Does ROS V7 support HW offloading for the CRS305? I know that for the 309+ models it's definitely supported, but the 305 seems to be an unknown.
by Cablenut9
Tue Mar 09, 2021 11:29 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

I just noticed that in several MT distributors' websites, the hAP ac3 got pushed back even more to April. That's pretty sad for it being a non-ax device meanwhile Ubiquiti is rolling out their entire line of it.
by Cablenut9
Mon Mar 08, 2021 11:41 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta4 [bug] export hangs / slow [SOLVED]
Replies: 7
Views: 1315

Re: v7.1beta4 [bug] export hangs / slow [SOLVED]

This bug seems to be fixed in 7.1 beta5.
We need beta5 now!
by Cablenut9
Mon Mar 08, 2021 10:06 pm
Forum: General
Topic: L2tp-server not working
Replies: 5
Views: 462

Re: L2tp-server not working

Make sure you have the right ports opened up in a firewall input rule, I had the same problem and I fat-fingered my rules.
by Cablenut9
Sun Mar 07, 2021 1:08 am
Forum: RouterOS v7 BETA
Topic: Prevent Hotspot users to access AP web interface
Replies: 3
Views: 617

Re: Prevent Hotspot users to access AP web interface

The Mik can only control what passes through it. And since the TP AP acts like a simple switch between itself and its ports and the WLAN, there's no way to prevent people from accessing it, unless you change it out to a Mikrotik AP with its own Hotspot rules. Here's something you can try but I don't...
by Cablenut9
Fri Mar 05, 2021 7:42 pm
Forum: Wireless Networking
Topic: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )
Replies: 13
Views: 1252

Re: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )

What/were is the setting in the ROS filesystem/config that locks the device to a specific country code ? From what I can tell, it's saved on an EEPROM chip on the board itself. However, those chips are dead-easy to modify, so changing a US -> International could be as simple as opening the device u...
by Cablenut9
Fri Mar 05, 2021 6:03 am
Forum: Wireless Networking
Topic: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )
Replies: 13
Views: 1252

Re: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )

Since Mikrotik can't be bothered to provide the simple USA option to allow full legal PTP power in the 5.1 band, or allow 5/10 mHz operation near the 5.1/5.8 band edges (I know, I've asked) , I wouldn't hold my breath on outdoor 6E.
The answer to this: Superchannel mode.
by Cablenut9
Fri Mar 05, 2021 12:08 am
Forum: Wireless Networking
Topic: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )
Replies: 13
Views: 1252

Re: Wi-Fi 6E ( 5.925 GHz to 7.125 GHz )

Linksys & Cisco ( and several other mfgs ) have some stuff
I thought Linksys was dead.
by Cablenut9
Thu Mar 04, 2021 5:25 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 33054

Re: v7.1beta4 [development] is released!

A lot of the things there are now available on beta4, so there's hope. If the next version comes out every 2 months, then we might have a chance of seeing a "stable" version by the end of this year.
by Cablenut9
Thu Mar 04, 2021 5:40 am
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

But with Mikrotik, you just really don't know what will happen tomorrow. You may buy competitor's APs and rebuild your infrastructure, only to find Mikrotik released much better product next month... or you may be waiting for it for next two years, which seems to be sadly far more likely... This is...
by Cablenut9
Wed Mar 03, 2021 5:09 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 33054

Re: v7.1beta4 [development] is released!

i don't want to argue about whether it's necessary to have that much throughput, or is it something that the general public could potentially use for anything else than speedtest. I often do stuff that requires a gigabit internet connection, and getting even close to that with wireless would be gre...
by Cablenut9
Wed Mar 03, 2021 6:51 am
Forum: General
Topic: Cannot block traffic Across subnets
Replies: 9
Views: 465

Re: Cannot block traffic Across subnets

Usually, when I've made a whole bunch of changes to a thing to try to make it work, I just start from scratch and make the simplest changes I can, rethinking my basic assumptions. Is that possible for you to do in this situation?
by Cablenut9
Wed Mar 03, 2021 5:08 am
Forum: General
Topic: CCR2004 vs. CRS317 for 10Gb home lab /w routing
Replies: 5
Views: 568

Re: CCR2004 vs. CRS317 for 10Gb home lab /w routing

The closest thing Mikrotik offers is the CCR1072 which is $3000 but has ALL the features and performance thanks to the 72 core CPU.
by Cablenut9
Tue Mar 02, 2021 5:25 pm
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

As it turns out, there's some 802.11 incompatibility issue with my old draft-ac router, as it bypasses "power saving" on the client devices, yet the cAP ac doesn't. I found that the fix was to turn off this "power saving" anti-feature on my client with sudo iwconfig adapter-name ...
by Cablenut9
Tue Mar 02, 2021 5:01 pm
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

I'm using a recent cAP ac with 6.49beta11, and a hEX S also with 6.49beta11.
by Cablenut9
Tue Mar 02, 2021 4:18 pm
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

Here's an /export: /caps-man datapath add client-to-client-forwarding=yes local-forwarding=yes name="turbo wifi" /caps-man security add authentication-types=wpa2-psk name="turbo wifi" /caps-man configuration add channel.band=5ghz-n/ac channel.control-channel-width=20mhz channel.e...
by Cablenut9
Tue Mar 02, 2021 5:48 am
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

You dont have a clue of what you are talking about.
Moving on to help others.
This kind of ad hominem attack is the reason why so many people don't want to mess with Mikrotik stuff.
by Cablenut9
Tue Mar 02, 2021 3:53 am
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

I had the expectation that the cAP would give 2 chains with 802.11ac, yielding a PHY of 866Mbps and throughput of 500, but I can get only 1 chain DOWNLOAD, and upload gets 2. In other words, I get 250Mbps download and 500Mbps upload using a known good 802.11ac client that supports 160MHz DFS 2x2 APs...
by Cablenut9
Tue Mar 02, 2021 12:42 am
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1126

cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

I set up my new cAP ac with cAPsMAN and even though it can receive with 2 chains from this one device, it can't receive with 2, but rather 1. For this reason, I can't get above 300Mbps download when doing a speedtest with my device, yet it's easy to get 500+ upload. Is there a fix? There's no settin...
by Cablenut9
Mon Mar 01, 2021 12:19 am
Forum: Beginner Basics
Topic: Quickset Mode ?
Replies: 9
Views: 719

Re: Quickset Mode ?

If you insist on MT wifi, at least get the hapac3. Its become clear in the beta forum that very few MT wifi devices will benefit from finally getting a WIFI5 standard working (5 years behind everyone else), like the Audience Mesh stuff and apparently the hapac3. Is the hAP ac3 just an ac2 with more...
by Cablenut9
Sun Feb 28, 2021 4:49 pm
Forum: RouterBOARD hardware
Topic: 10 Gbit/s plans for 60 GHz devices
Replies: 4
Views: 970

Re: 10 Gbit/s plans for 60 GHz devices

10Gbit with 60GHz doesn't actually exist, but you can get close: https://www.cablefree.net/cablefree-mil ... e-mmw/10g/
by Cablenut9
Thu Feb 25, 2021 5:18 am
Forum: General
Topic: Winbox Question
Replies: 8
Views: 488

Re: Winbox Question

Are you using Windows, Linux, or MacOS? WINE for me keeps the file in a special folder and I keep the .exe on my desktop where it's the only file there.
by Cablenut9
Thu Feb 25, 2021 4:52 am
Forum: Forwarding Protocols
Topic: vpn public ip cant ping
Replies: 18
Views: 1555

Re: vpn public ip cant ping

What are your firewall rules?
by Cablenut9
Thu Feb 25, 2021 3:33 am
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

No single vendor will pull out all hardware from sale just because they started working on something new, incompatible.
I can find cheapo 802.11n-only 150mbit routers for $20 USD, so there will always be a market for these older, less desirable things.
by Cablenut9
Wed Feb 24, 2021 10:47 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

Putting it in perspective, my current WiFi setup is a lone WD MyNet AC1300, the most no-name AP on the market. (Actually, I also have an Apple Airport Express, but that doesn't matter right now) WD actually discontinued all their network stuff back in 2014, so it hasn't seen any updates since 2013, ...
by Cablenut9
Wed Feb 24, 2021 10:41 pm
Forum: RouterBOARD hardware
Topic: Mikrotik RouterBoard hAP ac3
Replies: 1
Views: 593

Re: Mikrotik RouterBoard hAP ac3

eurodk.com will have them sometime in March, and another supplier I know is getting a bunch of the mANTbox 52 in March as well, so that's about when I'd expect it to be available. For shipping, I'd expect to get a hAP ac3 in my hands in early April.
by Cablenut9
Wed Feb 24, 2021 9:57 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

There are stable and dependable wifi5 Access points just as cheap as the capac (TPLINK EAP245) that runs circles around it. This hinges on Wave 2 features actually mattering. My case for a cAP ac is to provide about 500 mbps to a single line of sight device, but I'd have multiple cAPs for multiple ...
by Cablenut9
Wed Feb 24, 2021 4:00 pm
Forum: Wireless Networking
Topic: Network Mesh?? How To?
Replies: 7
Views: 907

Re: Network Mesh?? How To?

Mikrotik doesn't do mesh well, unless you get some Audiences and link then together. Even then, putting multiple APs one one channel is janky because they're sharing the same bandwidth.
by Cablenut9
Tue Feb 23, 2021 9:56 pm
Forum: Beginner Basics
Topic: Internet / VPN Problem
Replies: 12
Views: 1098

Re: Internet / VPN Problem

I have the same IP problem, do you have a device that connects and disconnects often?
by Cablenut9
Tue Feb 23, 2021 9:26 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

802.11ax is already old news, as 802.11be will be here in a couple years bringing multi-gigabit speeds.
by Cablenut9
Tue Feb 23, 2021 4:16 pm
Forum: RouterBOARD hardware
Topic: recommendation to x86 hardware?
Replies: 3
Views: 696

Re: recommendation to x86 hardware?

In any case I'd go for CPU with smaller number of high-performance CPU cores ... with HyperThreading disabled.
Some good examples of this are the Intel i7-10700k and AMD Ryzen 5600x.
by Cablenut9
Sun Feb 21, 2021 11:41 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

Another problem I noticed that is that some firewall rule is blocking me from accessing the router with L2TP, and I know it's one of those two you mentioned, but I'm not sure how to fix it.
by Cablenut9
Sun Feb 21, 2021 11:08 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

SOLVED! Switching the port to 1701 now gives me a "Connected" message in my phone. Also, as a side note, that last rule to drop all "WAN not DSTNATed" is listed with 0 packets and 0B in my firewall list. This is weird, considering that I have so many NATted services.
by Cablenut9
Sun Feb 21, 2021 11:05 pm
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

with RouterOS 7, MikroTik uses binary drivers from the chipset´s vendor, no more selfmade 802.11 code
Finally, maybe we can have spectral scanning in 802.11ac/ax equipment
by Cablenut9
Sun Feb 21, 2021 10:55 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

/interface bridge add admin-mac=my-address auto-mac=no name=bridge /interface ethernet set [ find default-name=ether5 ] poe-out=forced-on set [ find default-name=sfp1 ] auto-negotiation=no /interface list add comment=defconf name=WAN add comment=defconf name=LAN /interface wireless security-profile...
by Cablenut9
Sun Feb 21, 2021 10:31 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

The new files are in. Here's what I got from /ipsec policy print: 0 T * group=default src-address=::/0 dst-address=::/0 protocol=all proposal=default template=yes 1 DA peer=l2tp-in-server tunnel=no src-address=***MikRouter***/32 src-port=1701 dst-address=***Phone***/32 dst-port=any protocol=udp acti...
by Cablenut9
Sun Feb 21, 2021 8:36 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

Bump!
by Cablenut9
Sun Feb 21, 2021 5:03 pm
Forum: The Dude
Topic: Use Dude tools in WebFig [SOLVED]
Replies: 2
Views: 810

Re: Use Dude tools in WebFig [SOLVED]

I decided to use an old laptop and install Lubuntu just so it can run WINE for The Dude. It works great!
by Cablenut9
Sun Feb 21, 2021 4:45 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

Re: L2TP/IPsec doesn't work across NAT [SOLVED]

Here's the debug file. At the beginning there's a mention of fragmentation, and at the end I found some "authtype mismatch: me:cipher peer:cipher." Is there any useful info here?
by Cablenut9
Sat Feb 20, 2021 11:51 pm
Forum: General
Topic: L2TP/IPsec doesn't work across NAT [SOLVED]
Replies: 12
Views: 851

L2TP/IPsec doesn't work across NAT [SOLVED]

I have a L2TP/IPsec server set up. When connecting to it from my Android phone on LTE (important!) the log in my router has this: respond new phase 1 (Identity Protection): MY-IP[500]<=>PHONE-IP[57803] ISAKMP-SA established MY-IP[4500]-PHONE-IP[57801] spi:junk-here:junk-here but there's nothing else...
by Cablenut9
Sat Feb 20, 2021 5:45 am
Forum: The Dude
Topic: Use Dude tools in WebFig [SOLVED]
Replies: 2
Views: 810

Re: Use Dude tools in WebFig [SOLVED]

Bump, don't make me have to use a Windows VM just for The Dude.
by Cablenut9
Sat Feb 20, 2021 5:44 am
Forum: Wireless Networking
Topic: DHCP client on wlan not getting address [solved]
Replies: 3
Views: 520

Re: DHCP client on wlan not getting address

I had the same problem and the fix was to switch around the modes from b/g/n to g/n and to only-n, and that would eventually get it to connect. Also, make sure you've enabled tkip in the security profile. ROS WiFi tends to work best with other ROS devices, and that's probably why they're not officia...
by Cablenut9
Fri Feb 19, 2021 8:30 pm
Forum: The Dude
Topic: Use Dude tools in WebFig [SOLVED]
Replies: 2
Views: 810

Use Dude tools in WebFig [SOLVED]

I installed Dude on my hEX S and I can't use the Dude Client because WINE doesn't scale its text well on my 4k display. However, I can do most things in WebFig, except for using tools like SNMPwalk on some device. How can I do this, or is it impossible?
by Cablenut9
Thu Feb 18, 2021 5:45 am
Forum: RouterOS v7 BETA
Topic: hEX S: PoE voltage measurement is broken
Replies: 1
Views: 481

Re: hEX S: PoE voltage measurement is broken

Also, I noticed that in System -> Packages it lets me uninstall 7.1beta4 with no problem at all ("Uninstall" button in WebFig gives no errors). This almost made me have to use Netinstall because it rebooted several times until I downgraded to 6.49beta11.
by Cablenut9
Thu Feb 18, 2021 5:13 am
Forum: RouterOS v7 BETA
Topic: hEX S: PoE voltage measurement is broken
Replies: 1
Views: 481

hEX S: PoE voltage measurement is broken

I upgraded my hEX S to 7.1beta4 today and now the PoE voltage measurement is broken. Eth5, which used to have auto on for PoE power out, doesn't work because the voltage is now too low. I set it to forced on and now it works. However, System -> Health shows no CPU temperature and the voltage is 0.5V...
by Cablenut9
Wed Feb 17, 2021 4:16 am
Forum: RouterBOARD hardware
Topic: Powering cAP ac from another cAP
Replies: 3
Views: 735

Powering cAP ac from another cAP

I want to power a cAP ac from another cAP ac with the included 24v power supply, but I noticed that its listed maximum power output on the second port is 500mA. A cAP ac takes up to 13w, which equates to 540mA with 24 volts. Is this power requirement close enough, or is it too risky? Note that the 1...
by Cablenut9
Wed Feb 17, 2021 3:09 am
Forum: Wireless Networking
Topic: WIFI 6 Roadmap
Replies: 97
Views: 54842

Re: WIFI 6 Roadmap

The big networking device vendors will release thei WiFi 6E access points in Q3/Q4 2021. So, it would be a chance for MIkroTik to go develop straight 802.11ax access points with 6 GHz support, aswell. We're only 7 months away from Q3, and that's not much time to make new 6E APs if you're not some m...
by Cablenut9
Sun Feb 14, 2021 4:19 pm
Forum: RouterBOARD hardware
Topic: Which ROS devices do you expect the most?
Replies: 18
Views: 2253

Re: Which ROS devices do you expect the most?

Anything with 802.11ac wave 2 or 802.11ax, maybe a cAP ax?
by Cablenut9
Thu Feb 11, 2021 11:58 pm
Forum: Wireless Networking
Topic: Metal 9hpn - losing TX radio, multiple devices
Replies: 2
Views: 411

Re: Metal 9hpn - losing TX radio, multiple devices

What's the weather like where you are? If it's like mine, then your radios could be biting the dust because it's hot and sunny and the Metals are painted dark colors which makes them even hotter.
by Cablenut9
Thu Feb 11, 2021 7:53 pm
Forum: Wireless Networking
Topic: hAP AC2 antenna performance?
Replies: 1
Views: 437

hAP AC2 antenna performance?

I'm considering getting a hAP AC2 to use as an access point, not a router. It would be placed in a closet with thin walls, but this could be an issue for its antennas. In your opinion, do you think the AC2 is a good performer, or would a cAP AC be better? The goal is to reach MCS9 from 10 feet (3m) ...
by Cablenut9
Sun Feb 07, 2021 5:32 am
Forum: Wireless Networking
Topic: mantbox_52_15s
Replies: 6
Views: 1100

Re: mantbox_52_15s

Could you post your wifi settings?

Thank you in advance.
I didn't see this until now, but I remember which settings I used. Frequency width: 20MHz, Antenna gain: 0 (this is risky!), Channel: 165 (5GHz), Mode: ap bridge, everything else is on default.
by Cablenut9
Fri Feb 05, 2021 7:52 pm
Forum: Wireless Networking
Topic: Increase Output TX-power
Replies: 8
Views: 975

Re: Increase Output TX-power

Increasing the TX power so that "TX Power + antenna gain" is above the regulatory domain EIRP level is illegal
It depends on where you are. In the US with PtP links, the only restriction is that the output power can't be above 200W, which no Mikrotik device even gets close to.
by Cablenut9
Fri Feb 05, 2021 5:51 am
Forum: Wireless Networking
Topic: Increase Output TX-power
Replies: 8
Views: 975

Re: Increase Output TX-power

This is a little risky, but you can make the maximum power by doing this:
/interface wireless set antenna-gain=0
which fools the device into thinking it has a 0 dBi antenna which it doesn't. However, you might fry the radio by going that low.
by Cablenut9
Fri Feb 05, 2021 5:49 am
Forum: General
Topic: Which is better like Ubiquity
Replies: 8
Views: 969

Re: Which is better like Ubiquity

MT WiFi might be passable if you set up a bunch of cAp acs all linked together with cAPsMan, but that's only good enough for residential.
by Cablenut9
Thu Feb 04, 2021 12:10 am
Forum: General
Topic: Does mikrotik support 5G mobile networks?
Replies: 2
Views: 458

Re: Does mikrotik support 5G mobile networks?

Not yet.
by Cablenut9
Tue Feb 02, 2021 8:12 pm
Forum: General
Topic: Why doesn't a DNS dstnat rule create an open resolver?
Replies: 6
Views: 560

Re: Why doesn't a DNS dstnat rule create an open resolver?

Update: I decided to just add a qualifier to the DNS rule so that only the LAN interface list will work, so that'll block all incoming WAN connections for DNS.
by Cablenut9
Tue Feb 02, 2021 7:31 pm
Forum: General
Topic: Why doesn't a DNS dstnat rule create an open resolver?
Replies: 6
Views: 560

Re: Why doesn't a DNS dstnat rule create an open resolver?

My router already has that firewall rule(s) to block connections except for those which have NAT rules. The problem is, DNS has the equivalent of a port-forward NAT rule BUT it is NOT accessible from outside, while otherwise identical rules for other services get passed through just fine. "Allo...
by Cablenut9
Tue Feb 02, 2021 7:01 pm
Forum: General
Topic: Why doesn't a DNS dstnat rule create an open resolver?
Replies: 6
Views: 560

Re: Why doesn't a DNS dstnat rule create an open resolver?

"...they suspiciously look like the rules for port-forwarding..." Reason is that is exactly what those rules are If this is true, why isn't it accessible from outside? Unlike regular port-forwarding rules, these DNS ones don't make the RB's DNS server (or any other one) available to clien...
by Cablenut9
Tue Feb 02, 2021 6:24 pm
Forum: General
Topic: Why doesn't a DNS dstnat rule create an open resolver?
Replies: 6
Views: 560

Why doesn't a DNS dstnat rule create an open resolver?

According to this article (https://wiki.mikrotik.com/wiki/Force_users_to_use_specified_DNS_server) these rules will redirect users on the network to use the specified DNS server. However, they suspiciously look like the rules for port-forwarding which also uses the same dstnat chain and action combo...
by Cablenut9
Sun Jan 31, 2021 3:42 am
Forum: General
Topic: Open 100 tabs at the same time
Replies: 13
Views: 1014

Re: Open 100 tabs at the same time

Go into Firewall -> Connections when you have a bunch of tabs (like 50) and see how many it lists. Also check if you have any firewall rules that have to do with "fast path" or "fast track" because that's the key to unlocking better CPU usage in routers.