Totally unrelated, but I could not stop myself.
@sindy, hope these make your ordinary day, extraordinary!
A wild guess, the MT local web server is configured on the same port number as the dst-nat rule in the firewall.up I guess
when I access it by the IP it loads the router's login page instead of the web server, so no forwarding.
ip service set www port=81
:local name [/system/identity get name]
system/backup/save name="disk/backup/$name"
MikroTik user-managerIssue is we cannot use windows must be Linux so learning on the fly
Read #18 more carefully.disregard last post, have added in my nas and a couple of users again, do I need to create my packages now as well? Basically once daloradius is setup, what is my next step?
I didn't understand, elaborate, please. It would be great if you could export your config and share it.but now i can access the open vpn but cant access the lan-network
/export hide-sensitive ters
/interface ovpn-server server export-client-configuration
https://1gbits.com/blog/nano-select-all-copy-all/can you tell me how I can copy my entire clients.conf file so that I can have this reviewed possibly? i.e. copy and paste the entire file, I can only copy what is currently displayed
thanks
Correctthe radcheck table in freeradius server is where all my users are setup, correct?
rlm_sql (192.168.88.1): Client "test mikrotik" (sql) added
rlm_sql (sql): Adding client 10.108.21.198 (test mikrotik 2) to global clients list
Failed to add duplicate client test mikrotik 2
Failed to add client, possible duplicate?
/user-manager set use-profiles=yes
https://help.mikrotik.com/docs/display/ROS/Container
https://hub.docker.com/r/jc21/nginx-proxy-manager
https://nginxproxymanager.com/guide/#quick-setup
ppp active remove [find where encoding!="AES256-CBC" and service=sstp]
viewtopic.php?t=205246#p1063059And still you refer to LOTS of problems but it's only you ?
HoorayFeature added, will be available within next testing version, 7.15beta10
/system logging set 0 topics=info,!fetch
Until now, the only outcome of this discussion was a few guideline posts being removed.This has to be fixed.
/system logging add prefix=--->IPSEC topics=ipsec,!packet
MikroTik support #[SUP-131841]Do you have a SUP ticket to reference for this? Thank you!
https://support.mozilla.org/en-US/kb/se ... ertificateAny way to get it again with a new expiration date?
Where to get it, do you know?
ROS 7, The address list is 100% correct. You should work on your mangles.@own3r1138, version ROS? Not working:-(
I have a valid dynamic IP which is obtained via PPPOE. However, BTH didn't have a direct IPv4 connection.MikroTik relay is only involved in this case. IF you have public IP, it's just a direct wireguard, no relay.
https://download.mikrotik.com/routeros/ ... -arm64.npkUnfortunately, there's no way to get 7.11rc1 back from the website.
My home setup suffers from the same issue. It also doesn't work with SSTP, which is sad.Sadly the IPSec problem mentioned here viewtopic.php?t=197095&start=300#p1014852 is still present in this version.
Thank you, this is good news.next beta will have ipv6 support for veth:as well as multiple addressesCode: Select alladd address=172.17.0.3/16,fd8d:5ad2:24:2::2/64 gateway=172.17.0.1 gateway6=fd8d:5ad2:24:2::1
Example:Since the pool is just an allocation, you don't need to break it up unless you have a very large network. Normally you would just add an ipv6 address from the pool with a /64 prefix hint and set it to advertise.
I think your cat is trying to say something to you. Is it concerned about the pile of junk on your keyboard?I am on quite a bit and can certainly assist in removing spam. I am also cat friendly.
Some of my best posts are not actually my own!
...
gateau.jpg
7.10 (almost) stable. Just get rid of OVPN and solves a bulk of issues.
Thank you very much.This work regardless the RouterOS date format
Well explained, thank you.Yes.
You can ask this from the IR government, they successfully blocked it.Even if you somehow block this, how do you plan to block for example Shadowsocks + v2ray on 443 port with TLS1.3?
:local currentIP [/ip dhcp-client get [find interface=ether1] value-name=address]
/ip firewall address-list
add address=$currentIP list="unexpected-src-address-hitting-ISP"
/ip cloud set ddns-enabled=yes
/ip firewall address-list
add address=33445566.sn.mynetname.net list="unexpected-src-address-hitting-ISP"
import file-name=file.rsc
Parameters
-p 8080:8080 - Binds the service to port 8080 on the Docker host, required
The Eye of Barad-dûrAnd he only has one eye!!
/system logging
add prefix=--->IPSEC topics=ipsec,!packet
/ip firewall address-list
add address="duck-dns-record.domain.tld" list=name
/user-manager set use-profiles=yes
Let's Encrypt & CF APIHow are you generating the certificates for the SSTP server?
YesAre those certificates marked as trusted on both ends (if they're not from a trusted CA)?
You're welcome. However, all the credit goes to Jotne & Rextended, creators of the script.@own3r1138 Thank you very much for the script, I've put it onto my router and it already began to ban the IP's with failed attempts from the past logs
Don't use queue or interface binding with 7.7. It'll cause a crash again.It seems yes!
It's been two days passed I've downgraded everything's fine
Unfortunately, I don't have any tutorial for it. However, if you are interested, I could configure it for you via a remote desktop.Thank you for the answer, but it doesn't help me. I need a tutorial because all I tried fails.
I'm very interested in this too, anyone tried it?Is OVPN still unstable like in 7.8 or is that already fixed?
https://www.youtube.com/watch?v=XhI2dNzRpHY
I'm having the same problem here, on an RB4011. After updating to 7.8, the system has a kernel error and restarts before completing 5 minutes of uptime. I have about 150 ovpn connections.
I sent a supout file three days ago.rpingar, own3r1138 - This change was a potential fix for your problem. You should try it out and update us with new supout files if the problem for some reason is not fully resolved.
Reference SUP-96432*) ovpn - improved server stability;
Can you, please, provide more details?
I am running 7.8b3 on HAP AC3 without any issues.7.8beta2 is more stable than 7.8beta3
tested on hex s and hap ac3, same behavior.
For the screenshot, I put it to all rates fixed so it could enable the value.the above screenshot is set that way.
SUP-96432 was raised on 29/Oct/22. I also have added the V7.7b6 supout file.There is still PPP and Queue problem in the 7.7beta6 version.
own3r1138, fabeni, rpingar - Yes, this seems to be the same problem as mentioned above. Please send supout to support@mikrotik.com.
Is this similar to your problem?Simple Queue is not being removed and not allowing PPPoE to reconnect because it said it already had a simple queue running.
Hello,own3r1138 - Please send a supout file from your router running v7.6 where such functionality would not be working although it did work in v7.5.
Thank you. I hope this new release will resolve the TLS failure in OVPN too.*) certificate - improved certificate management, signing, and storing processes;
Hi,own3r1138 - we might have found a bit different issue, please contact support regarding this.