Community discussions

MikroTik App

Search found 6393 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 22
by holvoetn
Fri Sep 13, 2024 3:15 pm
Forum: General
Topic: HIDDEN Wifi Networks
Replies: 9
Views: 383

Re: HIDDEN Wifi Networks

I didn't explain this principle as answer to your original question because this is not a rule one can rely on. Because MAC addresses can be set manually to arbitrary values (I tend to collect some old, possibly broken, ethernet devices ... and re-use their MAC addresses for BSSIDs of virtual wifi ...
by holvoetn
Fri Sep 13, 2024 12:31 pm
Forum: RouterBOARD hardware
Topic: NetMetal ax / L23-UGSR — initial feedback from specs
Replies: 38
Views: 5282

Re: NetMetal ax / L23-UGSR — initial feedback from specs

Mikrotik HW is capable enough. The problem is there are way too many settings where you can goof up and then performance goes down the drain. That's the difference with cheapo devices which have a "good for most, set and forget but you can not change a lot" config. The strength and weaknes...
by holvoetn
Fri Sep 13, 2024 9:29 am
Forum: General
Topic: Backup and restore Containers
Replies: 4
Views: 230

Re: Backup and restore Containers

Valid question and I am curious too for the solution.

Have you already launched a ticket towards support ?
They should be able to tell how it needs to be done.
by holvoetn
Thu Sep 12, 2024 7:42 pm
Forum: General
Topic: Adding configurations to CAPSMAN
Replies: 4
Views: 166

Re: Adding configurations to CAPSMAN

Interesting entry here from Guntis (MT Staff) (and subsequent posts about the same topic): https://forum.mikrotik.com/viewtopic.php?p=1091327#p1091327 Basically, new configs should be pushed automatically. It could be on your PC the new SSID is not directly visible (I also observed it already both o...
by holvoetn
Thu Sep 12, 2024 1:49 pm
Forum: General
Topic: Firewall [SOLVED]
Replies: 3
Views: 470

Re: Firewall [SOLVED]

It might be better if you start a new topic AND provide A LOT more info on what exactly you are planning to do.

Other then that, a good start for reading/researching:
https://help.mikrotik.com/docs/display/ ... +Solutions
by holvoetn
Thu Sep 12, 2024 1:30 pm
Forum: Containers
Topic: Containers won't start after power loss
Replies: 4
Views: 5268

Re: Containers won't start after power loss

Both: are you sure after reboot the disk where the container is stored is still on the place where it needs to be ? (usually usb1) Some USB3 keys can after reboot only be accessed using USB2-protocol (a USB reset or delay when starting up the USB-interface solves it). If they start up as USB2, disk ...
by holvoetn
Thu Sep 12, 2024 1:21 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Actually, you were referring to the fact ether2 cable should be removed from device :lol:

But I get what you wanted to say and your addition is (as usual) spot on.
by holvoetn
Thu Sep 12, 2024 9:41 am
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Default config has the rest of ether ports (and wireless) bridged and set as LAN ... from which management access to device is possible. Hence the suggestion to isntall ether2 cable as well (but that one should be removed after device comissioning if location is accessible to non-authorized people ...
by holvoetn
Thu Sep 12, 2024 9:03 am
Forum: Beginner Basics
Topic: Network traffic gets slower, when adding vlans
Replies: 27
Views: 1089

Re: Network traffic gets slower, when adding vlans

Wasn't something about this visible in log files ?
by holvoetn
Thu Sep 12, 2024 6:57 am
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Reset them to caps mode before handing over the devices.
That's what I do.

Alternatives
- always have ether2 connected as well to cable
- connect to device default wifi and then reset to caps mode
- pre configure device before it is being installed.
by holvoetn
Thu Sep 12, 2024 6:56 am
Forum: Wireless Networking
Topic: CAPS not showing in CAPsMAN
Replies: 7
Views: 373

Re: CAPS not showing in CAPsMAN

L22 uses wave2 radio.

That's the other capsman via wifi menu on your ccr.
Both versions can co-exist on the same controller.

But if there is only 1 wace2 device, why bother ? Set it up directly and reassess when you have multiple AX devices in your network.
by holvoetn
Wed Sep 11, 2024 11:10 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Did you reset those cap ax to caps mode ?
Because if not, that would explain why you can not reach them straight away.
by holvoetn
Wed Sep 11, 2024 8:22 pm
Forum: Wireless Networking
Topic: CAPS not showing in CAPsMAN
Replies: 7
Views: 373

Re: CAPS not showing in CAPsMAN

For legacy capsman you do need wireless package on that ccr.

Again:
First choose.
Legacy capsman using old drivers or wave2 capsman with wave2 drivers ?
by holvoetn
Wed Sep 11, 2024 8:17 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

It DOES matter which cap device you use, as indicated above.

If you are unwilling to answer, then I am wasting my time here.
by holvoetn
Wed Sep 11, 2024 4:17 pm
Forum: Beginner Basics
Topic: Network traffic gets slower, when adding vlans
Replies: 27
Views: 1089

Re: Network traffic gets slower, when adding vlans

But ... but ...

ok, I'll accept because otherwise it may be considered contempt of court :lol:
by holvoetn
Wed Sep 11, 2024 1:07 pm
Forum: Wireless Networking
Topic: hAP ax3 - Low Wireless Strength
Replies: 7
Views: 1182

Re: hAP ax3 - Low Wireless Strength

Any input is appreciated
How can an hAP ax3 have WLAN interfaces? I expected wifi.
Well the config tells me it is an hAP ac3
Model number was also a clear indication :lol:
RBD53iG-5HacD2HnD = hAP AC3
by holvoetn
Wed Sep 11, 2024 12:15 pm
Forum: Beginner Basics
Topic: Network traffic gets slower, when adding vlans
Replies: 27
Views: 1089

Re: Network traffic gets slower, when adding vlans

4. Do NOT use quickset Small correction. 4. Do NOT use quickset unless you start from default config It can have its value for some users though I also admit it has been hugely neglected with the arrival of AX-devices (Or later versions of ROS ? Quite a bit of Quickset schemes which were present be...
by holvoetn
Tue Sep 10, 2024 9:19 pm
Forum: Wireless Networking
Topic: CAPS not showing in CAPsMAN
Replies: 7
Views: 373

Re: CAPS not showing in CAPsMAN

You are using old-style capsman and expect it to work with new-style wifi drivers ? That's not going to happen. One wireless driver across the board, no mix. 2 options: 1- Move everything to wave2-world: Remove wireless package from CCR1036 and setup everything under wifi menu tree. 2- Stick to lega...
by holvoetn
Tue Sep 10, 2024 8:41 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Please be clear. Your first post says cAP XL. There is only cAP XL AC having "XL" in the name so we have to assume you are referring to that one. Then you say they use wifi-qcom (which is simply wrong for that device, it should use wifi-qcom-ac and then you have all the caveats I mentioned...
by holvoetn
Tue Sep 10, 2024 11:45 am
Forum: Beginner Basics
Topic: Capsman config, L009UiGS-2HaxD with L4 RBSXTsq2nD
Replies: 3
Views: 199

Re: Capsman config, L009UiGS-2HaxD with L4 RBSXTsq2nD

You can not have wireless package and working wifi interface on L009. You need to choose or move the wireless-capsman function to another device without AX radios. For AX devices (as of 7.13): Running both capsmans at the same time routeros + wireless Loses built-in cards See here: https://help.mikr...
by holvoetn
Tue Sep 10, 2024 11:28 am
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

Just to clear some things out ... Are we talking about cAP AX devices or cAP XL AC devices ? Former are pure AX devices and should work when put in caps mode. Latter are AC devices and need wifi-qcom-ac package to be used with wave-capsman (under wifi menu structure) AND there are quite a bit of cav...
by holvoetn
Mon Sep 09, 2024 4:05 pm
Forum: General
Topic: Poor SFTP transfer speed to CCR2116 storage
Replies: 1
Views: 143

Re: Poor SFTP transfer speed to CCR2116 storage

Consider using ROSE package.
It's meant to be used for these cases.
https://help.mikrotik.com/docs/display/ROS/ROSE-storage
by holvoetn
Mon Sep 09, 2024 12:14 pm
Forum: Announcements
Topic: v7.15.3 [stable] is released!
Replies: 648
Views: 235346

Re: v7.15.3 [stable] is released!

It might be a known issue.
Are you sure the disk has not been mounted as USB2 (and different label, e.g. disk2) ?
If so, USB reset should solve this issue.

Support is aware of the issue, it happens with some brands of USB disks.
No ETA yet on the solution.
by holvoetn
Sun Sep 08, 2024 2:42 pm
Forum: Beginner Basics
Topic: PING
Replies: 1
Views: 178

Re: PING

MOD COMMENT: Please only post in English.
It makes it a lot easier for everyone to read your question, it makes it easier for you to get responses, it makes it easier for searching this place.
I added the translation (using Google translate).
by holvoetn
Sat Sep 07, 2024 2:39 pm
Forum: General
Topic: Windows btest.exe super-duper slow
Replies: 3
Views: 1268

Re: Windows btest.exe super-duper slow

AFAIK that's needed when using UDP.
Using TCP it should try for maximum.

EDIT: I stand corrected. Even for TCP you need set the limits.
Odd because it's not like that when using Tools/Bandwidth Test directly from Mikrotik device
by holvoetn
Fri Sep 06, 2024 11:03 pm
Forum: Announcements
Topic: 📣 WinBox 4 is here 📣
Replies: 1003
Views: 165618

Re: 📣 WinBox 4 is here 📣

I found a bug
System - RouterBOARD - Settings, reverse order of CPU frequencies
Снимок экрана 2024-09-06 222410.png
Actually ... it is sorted alphabetically.
So reverse would be wrong as well.
by holvoetn
Fri Sep 06, 2024 11:00 pm
Forum: Beginner Basics
Topic: VPN quickset changes and how to undo
Replies: 2
Views: 412

Re: VPN quickset changes and how to undo

There are 2 most advised ways to recover from Quickset mishap:
1- reset to default and start over
2- reset to default and don't touch quickset ever again after using it once.

There is a 3th option for more seasoned users ... never use Quickset.
by holvoetn
Fri Sep 06, 2024 10:57 pm
Forum: Forwarding Protocols
Topic: Public IP forwarded to Mikrotik Router for WireGuard use
Replies: 1
Views: 306

Re: Public IP forwarded to Mikrotik Router for WireGuard use

Did you also allow input for that port on your wAP R ?
by holvoetn
Fri Sep 06, 2024 8:17 am
Forum: Beginner Basics
Topic: Speed test on the router like Ookla
Replies: 3
Views: 384

Re: Speed test on the router like Ookla

See here: Openspeedtest on Docker on your router. https://forum.mikrotik.com/viewtopic.php?t=190891 As always: don't use it to test the router itself. Running this test does take away some resources so it will skew the results. ALways test thorugh a device, not using the device to be tested. But you...
by holvoetn
Thu Sep 05, 2024 11:36 pm
Forum: Beginner Basics
Topic: LAN to LAN basics
Replies: 21
Views: 2101

Re: LAN to LAN basics

Where's The Hood now ?
by holvoetn
Thu Sep 05, 2024 9:03 pm
Forum: General
Topic: CRS326 wrong interface default-name?
Replies: 1
Views: 251

Re: CRS326 wrong interface default-name?

Where do you see this ? Exactly how did you get this output ? What ROS version ? I have 2 CRS326-24G-2S+ and none show this in the default script. # 2024-09-05 20:00:46 by RouterOS 7.15.1 # software id = J8K8-GJG5 # script: #| Welcome to RouterOS! #| 1) Set a strong router password in the System > U...
by holvoetn
Thu Sep 05, 2024 2:24 pm
Forum: General
Topic: DHCP is offered but not bound to Brother printers only [SOLVED]
Replies: 36
Views: 1728

Re: DHCP is offered but not bound to Brother printers only [SOLVED]

Nothing.

/interface bridge
add admin-mac=48:A9:8A:XX:YY:ZZ auto-mac=no comment=defconf frame-types=admit-only-vlan-tagged name=bridge vlan-filtering=yes
by holvoetn
Thu Sep 05, 2024 2:17 pm
Forum: General
Topic: DHCP is offered but not bound to Brother printers only [SOLVED]
Replies: 36
Views: 1728

Re: DHCP is offered but not bound to Brother printers only [SOLVED]

Once you set a port as trunk default can remain at 1, true, since the setting "Admit only VLAN tagged" overrules that anyhow. Access ports should be set to the pvid for the VLAN they are supposed to handle and "Only admit untagged ...". Nowhere else (besides trunk ports) I have p...
by holvoetn
Thu Sep 05, 2024 1:56 pm
Forum: Beginner Basics
Topic: Why am I unable to connect to SwOS via MAC address using Winbox?
Replies: 1
Views: 295

Re: Why am I unable to connect to SwOS via MAC address using Winbox?

Because SWOS is not ROS.
Winbox is a ROS tool.

You can see it but you can not connect to it using winbox, only using web browser.
by holvoetn
Thu Sep 05, 2024 1:43 pm
Forum: General
Topic: DHCP is offered but not bound to Brother printers only [SOLVED]
Replies: 36
Views: 1728

Re: DHCP is offered but not bound to Brother printers only [SOLVED]

From The unofficial official VLAN bible: https://forum.mikrotik.com/viewtopic.php?t=143620 A word of caution if you are thinking of using VLAN 1 in your network design. Most vendors use VLAN 1 as the native VLAN for their hardware. MikroTik uses VLAN 0. If you try to create a VLAN 1 scenario with Mi...
by holvoetn
Thu Sep 05, 2024 1:04 pm
Forum: General
Topic: lo iface in LAN list
Replies: 11
Views: 506

Re: lo iface in LAN list

And what traffic is being sent via lo ??
Can you use Tools/Torch to see what's going over that interface ?

Best not to add firewall rules without knowing where the traffic comes from or what it is being used for.
by holvoetn
Thu Sep 05, 2024 12:45 pm
Forum: General
Topic: lo iface in LAN list
Replies: 11
Views: 506

Re: lo iface in LAN list

You didn't specify for which device this is but for most there should already be an input accept for 127.0.0.1 from default firewall (for capsman).
That also covers lo.

In case you removed that rule, I suggest you put it back.
by holvoetn
Thu Sep 05, 2024 11:34 am
Forum: General
Topic: DHCP is offered but not bound to Brother printers only [SOLVED]
Replies: 36
Views: 1728

Re: DHCP is offered but not bound to Brother printers only [SOLVED]

Maybe there is a reason why I actively swap out Brother for HP printers with my client :?
(really, I do ...)
by holvoetn
Thu Sep 05, 2024 9:41 am
Forum: Useful user articles
Topic: Using RouterOS to VLAN your network
Replies: 301
Views: 469788

Re: Using RouterOS to VLAN your network

I understand what you're aiming for but it's not that uncommon. I have a router with a CSS610 switch connected via SFP+ at home and still most of my router ports are trunk ports (only 1 access port, the 2.5Gb one for direct connection to my PC in my office and ofcourse the ISP uplink). I am not the ...
by holvoetn
Thu Sep 05, 2024 6:37 am
Forum: General
Topic: DHCP is offered but not bound to Brother printers only [SOLVED]
Replies: 36
Views: 1728

Re: DHCP is offered but not bound to Brother printers only [SOLVED]

Previously, before the guest network and VLAN configuration, printers connected without problems. So WPA3 can't be a problem. And yet ... try it. Plenty of problems with AX wifi which all of a sudden disappear when not using WPA3. If all other devices can connect on the new setting, there is no iss...
by holvoetn
Wed Sep 04, 2024 9:29 pm
Forum: Containers
Topic: VLess proxy tunnel on mikrotik via containers. Topic is solved
Replies: 21
Views: 24503

Re: VLess proxy tunnel on mikrotik via containers. Topic is solved

@user7780
Please use English as most will otherwise not be able to understand what you post.
Also for searching it's a nightmare when other languages are used.
by holvoetn
Wed Sep 04, 2024 9:24 pm
Forum: Beginner Basics
Topic: Help setting up cap AX [SOLVED]
Replies: 14
Views: 993

Re: Help setting up cap AX [SOLVED]

I'm assuming there are ways to save and backup your good config if I want to test more stuff out? Yes. Binary backup (but can't really be transferred to other device). Simply restore and everything is back as it was. or export with show-sensitive on (not 100% complete export but most should be ther...
by holvoetn
Wed Sep 04, 2024 8:56 pm
Forum: Beginner Basics
Topic: Help setting up cap AX [SOLVED]
Replies: 14
Views: 993

Re: Help setting up cap AX [SOLVED]

No it is not.
Big difference in usability.
by holvoetn
Wed Sep 04, 2024 4:37 pm
Forum: Wireless Networking
Topic: Slow WiFi [SOLVED]
Replies: 31
Views: 2242

Re: Slow WiFi [SOLVED]

The cAP ac does handle the wifi-qcom-ac pretty well (in my experience), though I red someone having out of memory problems (therefor a daily reboot was introduced). Haven't seen that problem myself (uptime over a couple of weeks). That would be me but that is using 7.16rc package. The issue has bee...
by holvoetn
Wed Sep 04, 2024 4:17 pm
Forum: Beginner Basics
Topic: Help setting up cap AX [SOLVED]
Replies: 14
Views: 993

Re: Help setting up cap AX [SOLVED]

For better results, maybe disable WPA3, leave WPA2. I have much better experience with WPA2 on ax lineup.
For now, definitely better to skip WPA3, yes.
by holvoetn
Wed Sep 04, 2024 4:12 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

I only see config on RB5009.
Where is the config of one of the caps ?
by holvoetn
Wed Sep 04, 2024 3:50 pm
Forum: Beginner Basics
Topic: How communicate between router without involving WAN [SOLVED]
Replies: 7
Views: 703

Re: How communicate between router without involving WAN [SOLVED]

Shouldn't there also be
7. add ether5 on both routers to WAN interface list and remove from LAN (if present)

?
by holvoetn
Wed Sep 04, 2024 1:45 pm
Forum: Announcements
Topic: v7.16rc [testing] is released!
Replies: 255
Views: 85006

Re: v7.16rc [testing] is released!

I'm more into testing and moving forward and I accept consequences of doing so. Most of my client production devices are steady on 7.15.1. I'm not even moving them to 7.15.3 since it's not needed for me. A couple though I use for testing (where I know it doesn't hurt too much) and at home I always u...
by holvoetn
Wed Sep 04, 2024 1:19 pm
Forum: Announcements
Topic: v7.16rc [testing] is released!
Replies: 255
Views: 85006

Re: v7.16rc [testing] is released!

I'm not 100% sure anymore why I moved on to 7.16b/rc channel for that one device. Having been 2 weeks off in between can create that situation :lol: Now I think of it, I also have a wAP AC at home running 7.16rc, (same resources) no crashes there either. I have another AC2 running 7.15.1 and wave2, ...
by holvoetn
Wed Sep 04, 2024 12:01 pm
Forum: Announcements
Topic: v7.16rc [testing] is released!
Replies: 255
Views: 85006

Re: v7.16rc [testing] is released!

There was a possibility that if you use an ARM router with wireless that has 128 MB of RAM and is using wifi-qcom-ac package, not wireless, then simply router could run out of RAM resources causing the router to reboot. One of the reasons why I configured about a month ago a daily auto-reboot on 1 ...
by holvoetn
Wed Sep 04, 2024 11:51 am
Forum: Announcements
Topic: SwOS version 2.17 released!
Replies: 11
Views: 12374

Re: SwOS version 2.17 released!

css610 host mac addresses per vlan? anytime soon?
CSS610 uses SWOS Lite.
by holvoetn
Tue Sep 03, 2024 5:05 pm
Forum: Wireless Networking
Topic: Capsman V3
Replies: 7
Views: 630

Re: Capsman V3

If the provider blocks the tunnel, then the entire office is stuck. ... I just want to manage everything from one place without creating a big point of failure Your most important big point of failure is out of your control, so it seems. Besides, what will still work if the internet line is down ??...
by holvoetn
Tue Sep 03, 2024 4:36 pm
Forum: Beginner Basics
Topic: Caspman Config [SOLVED]
Replies: 21
Views: 1180

Re: Caspman Config [SOLVED]

The most logical answer: something is wrong in your setup. You saw that one coming, right ? :lol: Please post config of capsman controller and one of the caps. Terminal, /export file=anynameyouwish Move to text editor, remove any sensitive info (serial, public IP, passwds, ...) Post back here betwee...
by holvoetn
Tue Sep 03, 2024 4:34 pm
Forum: Wireless Networking
Topic: best way to isolate virtual APs
Replies: 7
Views: 511

Re: best way to isolate virtual APs

Best way: VLANs combined with firewall rules.

The DE FACTO guide around here:
viewtopic.php?t=143620
by holvoetn
Tue Sep 03, 2024 4:33 pm
Forum: Useful user articles
Topic: Using RouterOS to VLAN your network
Replies: 301
Views: 469788

Re: Using RouterOS to VLAN your network

Shouldn't ONLY the sfp1 port in your diagram be purple in color? Apart from the WAN port that is yellow, shouldn't the remaining ports have no color? Based on the legend, the purple port stands for a trunk port on the router; so it doesn't seem to make sense to have so many trunk ports on the route...
by holvoetn
Tue Sep 03, 2024 4:14 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 75
Views: 7432

Re: hap ax3 random wireless disconnects

And where is the surprise ... ?
After all, it's Microsoft we're referring to here :lol:
by holvoetn
Tue Sep 03, 2024 3:42 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 75
Views: 7432

Re: hap ax3 random wireless disconnects

I get Intel AX200 driver updates by Windows Update. Why the heck are you downloading drivers manually from Intel's website???? On more then one occasion I noticed Intel drivers where NOT updated by Windows Update. So don't count on it. I also have been chasing wifi issues not too long ago in the pa...
by holvoetn
Tue Sep 03, 2024 3:36 pm
Forum: Wireless Networking
Topic: Capsman V3
Replies: 7
Views: 630

Re: Capsman V3

Same will happen using a fallback capsman controller ... or e.g. DFS channel detection.
You can never guarantee 100% wifi availability.
by holvoetn
Tue Sep 03, 2024 1:39 pm
Forum: Wireless Networking
Topic: Capsman V3
Replies: 7
Views: 630

Re: Capsman V3

At this point - no. Actually, yes. You can use "capsman or local" for the access points manager. If capsman is available, it will be used. If not, AP will revert to local settings (which are can be pretty identical to capsman settings, so rather easy to copy over once). Other then that, a...
by holvoetn
Tue Sep 03, 2024 8:52 am
Forum: General
Topic: netinstall ethernet port of hap ax3?
Replies: 4
Views: 395

Re: netinstall ethernet port of hap ax3?

It's impossible to run V6 on AX3.
You can not go below factory version and for all AX devices that's V7 (here at home I see 7.5 on AX3).

Added argument: wifi drivers needed for AX3 only run on V7.
by holvoetn
Mon Sep 02, 2024 9:01 pm
Forum: Beginner Basics
Topic: capsman stops working after 7.14 upgrade [SOLVED]
Replies: 4
Views: 1752

Re: capsman stops working after 7.14 upgrade [SOLVED]

Simple explanation... As of 7.13 wireless is removed from base package in favor of wave 2 drivers. This IS clearly mentioned in release notes. Not a lot seem to care to read those. If you follow the normal upgrade procedure, this will be handled automatically in background. If you upgrade manually r...
by holvoetn
Mon Sep 02, 2024 3:49 pm
Forum: Containers
Topic: Horrible container performance from 7.14 up to 7.15rc2
Replies: 28
Views: 4845

Re: Horrible container performance from 7.14 up to 7.15rc2

I discovered that using a "normal" USB3-Memory-Stick in a RB5009 slows down the performance massive. When running my project in a chr-environment it is very much faster. Be careful (expecially with RB5009) when using USB3 as storage. For some USB devices it will after reboot come back up ...
by holvoetn
Mon Sep 02, 2024 12:42 pm
Forum: General
Topic: wAPR-2nD LTE - registration denied with new modem QUECTEL EC2004-EU [SOLVED]
Replies: 5
Views: 792

Re: wAPR-2nD LTE - registration denied with new modem QUECTEL EC2004-EU [SOLVED]

The fact your Vodafone SIM is working on both modems, proves there is no HW problem. So there must be a config problem using WINDTRE SIM on the new modem. You can try with latest 7.16rc version, there have been some LTE related improvements in there. If that also doesn't work, best to contact support.
by holvoetn
Sun Sep 01, 2024 10:31 pm
Forum: General
Topic: Route wireguard peers through vxlan
Replies: 12
Views: 952

Re: Route wireguard peers through vxlan

Contextually similar to this thread ...
viewtopic.php?t=210594
by holvoetn
Sun Sep 01, 2024 5:45 pm
Forum: RouterBOARD hardware
Topic: HAP AC3 vs AX3 Wifi
Replies: 5
Views: 979

Re: HAP AC3 vs AX3 Wifi

If you use CAPsMAN, the main difference is the datapath config. AC3/2 don't support VLANID from datapath AX3/2 support VLANID from datapath I'm planned to replace all my AC devices with AX for easier config management. Small addition: If you keep using legacy wireless and legacy capsman, vlanid is ...
by holvoetn
Sun Sep 01, 2024 4:35 pm
Forum: General
Topic: Unable to get basic VXLAN tunnel to work over Wireguard
Replies: 5
Views: 486

Re: Unable to get basic VXLAN tunnel to work over Wireguard

Just an observation:
if your aim is to extend L2, why not use EOIP across wireguard ?
Connect both ends of the EOIP interface to their respective bridges and that should be more or less it (be careful with possible loops).
by holvoetn
Sun Sep 01, 2024 2:13 pm
Forum: General
Topic: RBcAPGi-5acD2nD - cpu not running at default frequency [SOLVED]
Replies: 2
Views: 432

Re: RBcAPGi-5acD2nD - cpu not running at default frequency [SOLVED]

Somewhere in earlier versions it was changed that CPU frequency should be set to auto.
Then the message will disappear.
by holvoetn
Fri Aug 16, 2024 7:25 pm
Forum: Beginner Basics
Topic: CAPsMAN through Switch under VLAN [SOLVED]
Replies: 15
Views: 1887

Re: CAPsMAN through Switch under VLAN [SOLVED]

Good job !
by holvoetn
Fri Aug 16, 2024 8:42 am
Forum: Beginner Basics
Topic: Assign ports to passthrough WAN [SOLVED]
Replies: 4
Views: 864

Re: Assign ports to passthrough WAN [SOLVED]

Move bridge to WAN interface list.
by holvoetn
Thu Aug 15, 2024 7:43 pm
Forum: General
Topic: RB5009UG+S+IN - Rack options
Replies: 2
Views: 451

Re: RB5009UG+S+IN - Rack options

At first sight I would say it can be done since the standard 19" rack mount kit can be adjusted. I took a (rough) measurement on the breaking places on my mounted RB5009 (mounted in a 19" frame) and it comes out at just shy of 25.5 cm, that's 10". If you want to be 100% sure, ask supp...
by holvoetn
Thu Aug 15, 2024 1:39 pm
Forum: Wireless Networking
Topic: Mikrotik or others on AX wifi access point
Replies: 160
Views: 7697

Re: Mikrotik or others on AX wifi access point

It's a good ap (for the installations I use it for) but it's freaking big !!
by holvoetn
Wed Aug 14, 2024 11:35 pm
Forum: Beginner Basics
Topic: Assign ports to passthrough WAN [SOLVED]
Replies: 4
Views: 864

Re: Assign ports to passthrough WAN [SOLVED]

Easiest might be to create a second bridge and bundle all WAN ports to it (that would be ether1, 4 and 5 in your case).
Move DHCP client from ether1 to the new bridge.
by holvoetn
Wed Aug 14, 2024 11:24 pm
Forum: Scripting
Topic: Script to delete al user active
Replies: 9
Views: 642

Re: Script to delete al user active

@Monster88
Don't post the same question multiple times, please.
I merged the two threads already containing responses and removed one which was still empty.

Carry on ...
by holvoetn
Wed Aug 14, 2024 4:07 pm
Forum: Beginner Basics
Topic: Can't change network
Replies: 11
Views: 701

Re: Can't change network

Again, basic IP (and again new info is being presented ...) /22 netmask starting from 10.0.8.0 results in IP range from 1.0.8.1 to 1.0.11.254 If you want to have 10.0.12.x and above included, you need to change your network topology (multiple subnets) or the netmask (wider range). E.g. /21 will resu...
by holvoetn
Wed Aug 14, 2024 3:00 pm
Forum: Beginner Basics
Topic: Can't change network
Replies: 11
Views: 701

Re: Can't change network

The way Mikrotik DHCP server works, it will assign addresses from its pool top-down. Has nothing to do with the network numbering. It makes no difference if the pool starts bottom-up or is handed out top-down. It doesn't change anything on how an IP network functions. So once again, where is the act...
by holvoetn
Wed Aug 14, 2024 2:47 pm
Forum: Beginner Basics
Topic: Can't change network
Replies: 11
Views: 701

Re: Can't change network

Basic IP

When you define an address using /22, 10.0.8.0 IS the network indicator for an address in the range 10.0.8.1 - 10.0.11.254.
This is 100% correct.

So what's the actual problem you have and why do you think you need to change this ?
by holvoetn
Tue Aug 13, 2024 7:09 pm
Forum: General
Topic: Frequent Crashes After Updates on MikroTik hAP ac3 – Seeking Solutions
Replies: 8
Views: 588

Re: Frequent Crashes After Updates on MikroTik hAP ac3 – Seeking Solutions

My first approach would be to netinstall to latest ROS6. Then import config block by block via terminal, don't restore from backup because you will bring the problems right back in. It's a working assumption for most experienced users here that after upgrade to upgrade to upgrade ... some blobs can ...
by holvoetn
Tue Aug 13, 2024 5:30 pm
Forum: Wireless Networking
Topic: Missing wAP ax successor to wAP ac, what are outdoor AX WiFi alternatives?
Replies: 29
Views: 2637

Re: Missing wAP ax successor to wAP ac, what are outdoor AX WiFi alternatives?

I know it's not relevant right now but wAP AX versions should be coming.
But over half a year it was already said "soon" ...
by holvoetn
Tue Aug 13, 2024 3:51 pm
Forum: General
Topic: Travel router possible?
Replies: 6
Views: 3487

Re: Travel router possible?

Can we use RouterOS and a Mikrotik device to become a travel router, i.e.[/b] - set up a Wireguard client which will route everything through that tunnel - let a laptop connect through ethernet/wifi - can also connect to eg hotel wifi and let other wifi devices connect to the tunnel - drop/block th...
by holvoetn
Tue Aug 13, 2024 2:33 pm
Forum: RouterBOARD hardware
Topic: Load balancer on a RB5009UPr+S+ for 3 connected devices
Replies: 7
Views: 1355

Re: Load balancer on a RB5009UPr+S+ for 3 connected devices

And why would we provide better info then ChatGPT ??
In all seriousness ... :shock:
by holvoetn
Tue Aug 13, 2024 1:13 pm
Forum: RouterBOARD hardware
Topic: hAP ax3 temperature at 58-60 degrees...
Replies: 24
Views: 3149

Re: hAP ax3 temperature at 58-60 degrees...

You can place AX3 in 2 ways. Logically thinking: airflow on AX3 is most optimal when placing it horizontally since all openings are on the large sides. Warm air goes out on top, cooler air gets automatically sucked in on the bottom. If you place it vertically, it will still cool sufficiently, just a...
by holvoetn
Tue Aug 13, 2024 12:42 pm
Forum: General
Topic: ssh connections per minute
Replies: 7
Views: 588

Re: ssh connections per minute

I understand but that's beyond my knowledge level ... I only can tell (from other data projects I work with where each day millions of data lines are retrieved) you should try to get your data as fast as possible, then process it afterwards. Hopefully someone will chime in providing more specific an...
by holvoetn
Tue Aug 13, 2024 11:58 am
Forum: The User Manager
Topic: User manager on CHR
Replies: 10
Views: 1570

Re: User manager on CHR

But a rather powerful home router, wouldn't you say ? 8)
by holvoetn
Tue Aug 13, 2024 11:22 am
Forum: General
Topic: ssh connections per minute
Replies: 7
Views: 588

Re: ssh connections per minute

I'm not sure you're getting my point ...

Instead of setting up 14 SSH connections for retrieving a single value on each connection, set up 1 SSH connection and get all 14 values in one go.
Should be faster.
by holvoetn
Tue Aug 13, 2024 11:04 am
Forum: Beginner Basics
Topic: CAPsMAN through Switch under VLAN [SOLVED]
Replies: 15
Views: 1887

Re: CAPsMAN through Switch under VLAN [SOLVED]

Are you running the CAP's in default CAPS Mode? Are the CAP's connected to a hybrid port (where MGT VLAN is untagged)? Would you be willing to share your config? 1- Starting from default but some changes: 1.1 added mgmt VLAN to bridge 1.2 changed CAPS discovery interface to mgmt VLAN. 1.3 enabled R...
by holvoetn
Tue Aug 13, 2024 10:52 am
Forum: Beginner Basics
Topic: CAPsMAN through Switch under VLAN [SOLVED]
Replies: 15
Views: 1887

Re: CAPsMAN through Switch under VLAN [SOLVED]

Assuming you have...what switch do you use, @holvoetn?
Mikrotik CSS610
by holvoetn
Tue Aug 13, 2024 10:33 am
Forum: Beginner Basics
Topic: CAPsMAN through Switch under VLAN [SOLVED]
Replies: 15
Views: 1887

Re: CAPsMAN through Switch under VLAN [SOLVED]

I have a similar config at home and don't use VLAN1 AT ALL.
My caps look for capsman manager on that specific mgmt VLAN (which is not 1).

If you go VLAN, do it all the way.
Which means don't use VLAN=1 anywhere.
by holvoetn
Tue Aug 13, 2024 10:07 am
Forum: General
Topic: PoE limit to 200mbps
Replies: 30
Views: 2319

Re: PoE limit to 200mbps

Don't test ON the devices themselves. They are not really suited CPU wise to handle that load. Your results will be too low because the local CPU most likely will not follow. You are also testing via your ISP. You don't know what the impact is there. Use 2 PCs within your network, one on each side o...
by holvoetn
Tue Aug 13, 2024 9:24 am
Forum: General
Topic: ssh connections per minute
Replies: 7
Views: 588

Re: ssh connections per minute

Just thinking ...
since your setup is local LAN hence all trusted devices, doesn't it make more sense to use a single connection which remains open instead of setting up the connection each and every time ?
It should be a lot faster.
by holvoetn
Tue Aug 13, 2024 8:19 am
Forum: The User Manager
Topic: User manager on CHR
Replies: 10
Views: 1570

Re: User manager on CHR

AX3 is level6.
So for less then 50% of an L6 license, you get the HW too.
You don't have to use the wifi part.
by holvoetn
Tue Aug 13, 2024 8:17 am
Forum: General
Topic: Zerotier and WireGuard [SOLVED]
Replies: 4
Views: 1237

Re: Zerotier and WireGuard [SOLVED]

As long as it works, it's ok but suboptimal.

You can specify in Zerotier Instance which interface(s) should be used.
If you leave it to all, it tries all. So don't use all if you do not want it to use WG.
by holvoetn
Fri Aug 09, 2024 5:20 pm
Forum: Wireless Networking
Topic: cAP ax, CRS112-8P-4S and CAPsMAN
Replies: 32
Views: 1468

Re: cAP ax, CRS112-8P-4S and CAPsMAN

Clear certificates on controller.

Personally I don't use certificates for capsman.
by holvoetn
Fri Aug 09, 2024 5:03 pm
Forum: Beginner Basics
Topic: Help with VLAN firewall rules and SMB transfer speed.
Replies: 11
Views: 804

Re: Help with VLAN firewall rules and SMB transfer speed.

Rats, I did check on the switch chip support but failed to see it couldn't handle VLAN offloading ... You could leave the default bridge/Vlan path and see if something can be done using switch chip features on that device. Not a standard approach but still possible. See here for some pointers: https...
by holvoetn
Fri Aug 09, 2024 4:41 pm
Forum: Beginner Basics
Topic: LAN to LAN basics
Replies: 21
Views: 2101

Re: LAN to LAN basics

For starters: nice drawing ! A lot of first posters never show something like it. It surely helps to get a better idea of what you want to do. Now that I'm actually getting my hands on it I can understand the various forum / reddit comments "RouterOS is quite powerful but quite difficult"....
by holvoetn
Fri Aug 09, 2024 4:25 pm
Forum: Forwarding Protocols
Topic: Connecting 2 Sites with VPN
Replies: 4
Views: 680

Re: Connecting 2 Sites with VPN

Can you make a small drawing of your setup and what you want to achieve ?
Because I'm not sure I fully understand what you want to do.
High level I get the idea but which building blocks you want to involve where is fuzzy.
by holvoetn
Fri Aug 09, 2024 3:15 pm
Forum: Beginner Basics
Topic: Help with VLAN firewall rules and SMB transfer speed.
Replies: 11
Views: 804

Re: Help with VLAN firewall rules and SMB transfer speed.

About this part: /interface bridge vlan add bridge=BR1 tagged=BR1 vlan-ids=100 add bridge=BR1 tagged=BR1 vlan-ids=200 add bridge=BR1 tagged=BR1 vlan-ids=99 Where are the interface ports being added to their respective VLAN as untagged members ? Shouldn't that be like this (I know, happens auto but I...
by holvoetn
Fri Aug 09, 2024 2:47 pm
Forum: Beginner Basics
Topic: Help with VLAN firewall rules and SMB transfer speed.
Replies: 11
Views: 804

Re: Help with VLAN firewall rules and SMB transfer speed.

I've run into two issues so far: 1. Time sync on windows hosts isn't working. Had to set up NTP client and server on the router and manually configure windows hosts to target the router as their NTP server. 2. During SMB file transfers between VLANs/ports, router CPU usage peaks at 30% and transfer...
by holvoetn
Fri Aug 09, 2024 1:34 pm
Forum: Beginner Basics
Topic: Please check my Config
Replies: 6
Views: 841

Re: Please check my Config

Because your wireguard interface is not accepted. Simple.

2 options:

add a specific rule to accept input via wireguard as interface
or
add wireguard to LAN interface list (most will do this since wireguard is VPN and conceptually, VPN should be the same trust level as LAN).
by holvoetn
Fri Aug 09, 2024 1:31 pm
Forum: General
Topic: EoIP+bridge Over WAN
Replies: 8
Views: 823

Re: EoIP+bridge Over WAN

What's the problem then ?
by holvoetn
Fri Aug 09, 2024 1:30 pm
Forum: Scripting
Topic: LTE Interface run after reset
Replies: 6
Views: 743

Re: LTE Interface run after reset

Try with the wait loop as referenced in the link by jaclaz.
Just checked again, it should wait for max 115 seconds which is just below that hard limit of 2 minutes.
But do put that part as last part of your script (or as far back as possible).
by holvoetn
Fri Aug 09, 2024 11:46 am
Forum: Announcements
Topic: v7.15.3 [stable] is released!
Replies: 648
Views: 235346

Re: v7.15.3 [stable] is released!

What can I check ?
Log files as a start.
by holvoetn
Fri Aug 09, 2024 10:16 am
Forum: Beginner Basics
Topic: Please check my Config
Replies: 6
Views: 841

Re: Please check my Config

- In the context of "allow what's allowed, drop all the rest", adding addresses to address list for external parties trying to access your device via certain ports is waste of resources. If' it's not allowed, it get's dropped and be done with it. 6. so i just disable the block traffic fro...
by holvoetn
Fri Aug 09, 2024 9:31 am
Forum: Wireless Networking
Topic: Wi-Fi 2.4G limit 30mpbs
Replies: 17
Views: 1613

Re: Wi-Fi 2.4G limit 30mpbs

Do you have to use wpa on wifi ? It's a rather slow security protocol. Try to avoid if you can and only use wpa2. You still use auto frequency selection. Can be next reboot performance becomes a lot worse. Try to see which frequency is the least used and set your frequency manually. Why do you set n...
by holvoetn
Fri Aug 09, 2024 9:19 am
Forum: Beginner Basics
Topic: CAPsMAN Profile Switching
Replies: 3
Views: 683

Re: CAPsMAN Profile Switching

Putting in CAP mode reconfigures device permanently.
Putting in CAP mode using reset sequence, that is ...
You can also use the mode button to make a script which toggles both modes.
by holvoetn
Fri Aug 09, 2024 8:45 am
Forum: Beginner Basics
Topic: Please check my Config
Replies: 6
Views: 841

Re: Please check my Config

Quick comments: - change WG port. This is the default from Help pages. Not that it will cause any trouble for anyone not knowing public key but better use 2 locks on the door then 1. - why the long lease times on DHCP server ? Just wondering. - Your ZT network ID is exposed in the export. I removed ...
by holvoetn
Thu Aug 08, 2024 11:41 pm
Forum: Wireless Networking
Topic: Need Help for Wireless hat lx lite
Replies: 2
Views: 406

Re: Need Help for Wireless hat lx lite

Remove wireless
Add wifi-qcom
Reset to default.
by holvoetn
Thu Aug 08, 2024 10:40 pm
Forum: Wireless Networking
Topic: cAP ax, CRS112-8P-4S and CAPsMAN
Replies: 32
Views: 1468

Re: cAP ax, CRS112-8P-4S and CAPsMAN

If you use VLAN, your caps need to be able to use that same VLAN to reach CRS/capsman.
by holvoetn
Thu Aug 08, 2024 8:32 pm
Forum: Scripting
Topic: LTE Interface run after reset
Replies: 6
Views: 743

Re: LTE Interface run after reset

Yes !
On a smartphone search is not that easy...
by holvoetn
Thu Aug 08, 2024 8:27 pm
Forum: Scripting
Topic: LTE Interface run after reset
Replies: 6
Views: 743

Re: LTE Interface run after reset

I recently answered a similar post but can't find it back right now. Use fixed delay, can be up to 5 minutes ! Or check defconf script how they do it there. Waiting in a loop until lte itf is detected, then proceed or abort. But this should be the last part of your script since you need to take into...
by holvoetn
Thu Aug 08, 2024 7:02 pm
Forum: Beginner Basics
Topic: SWOS does Not Work [SOLVED]
Replies: 3
Views: 1516

Re: SWOS does Not Work [SOLVED]

Check this thread

No SwOS for CRS310-8G+2S+ ?
viewtopic.php?t=200859
by holvoetn
Thu Aug 08, 2024 6:33 pm
Forum: General
Topic: CAP ax - Admin Password Changes After "Reset in CAPS Mode" ?
Replies: 1
Views: 405

Re: CAP ax - Admin Password Changes After "Reset in CAPS Mode" ?

I set a new admin password, then go to System > Reset Configuration > "Reset in CAPS Mode" And did you also tick 'Keep users' ? If not ... reset to default it is. Quite logical. Be careful with sticker passwd. O, 0 Upper I, lower L Even when MAC address shows striked zero, O can be zero, ...
by holvoetn
Thu Aug 08, 2024 6:14 pm
Forum: RouterBOARD hardware
Topic: hAP ax lite
Replies: 95
Views: 21227

Re: hAP ax lite

just be wary, this is a USB-C 5V port, so it will not work with USB PD adapters, you need most likely a USB-A 5V adapter and A-to-C cable It sounds like this is not actually an USB-C port then and you should make that clear on the product page. All USB PD adapters can provide power to USB-C ports. ...
by holvoetn
Thu Aug 08, 2024 5:16 pm
Forum: General
Topic: Bandwidth limitation for VPN client
Replies: 3
Views: 555

Re: Bandwidth limitation for VPN client

Simple queue based on subnet or address, I would say.

https://help.mikrotik.com/docs/display/ROS/Queues
by holvoetn
Thu Aug 08, 2024 4:55 pm
Forum: Scripting
Topic: Disable the prompt from the terminal. [SOLVED]
Replies: 17
Views: 1964

Re: Disable the prompt from the terminal. [SOLVED]

Ah .. the good old saying

"In /dev/null nobody hears you scream"
by holvoetn
Thu Aug 08, 2024 3:49 pm
Forum: General
Topic: EoIP+bridge Over WAN
Replies: 8
Views: 823

Re: EoIP+bridge Over WAN

I've been kind of trying to avoid using IPSEC as the traffic inside the tunnel is already encrypted.
How ? EOIP on its own doesn't encrypt anything.
by holvoetn
Thu Aug 08, 2024 11:30 am
Forum: Wireless Networking
Topic: cAP ax, CRS112-8P-4S and CAPsMAN
Replies: 32
Views: 1468

Re: cAP ax, CRS112-8P-4S and CAPsMAN

However....in de web interface one cAP has "Wifi" and "Wireguard" greyed out. So there sure seems to be a slight difference. Do you have wifi-qcom package on that device ? It's needed as of 7.13. If it's not present, load that package, let it activate (reboot) and then reset the...
by holvoetn
Thu Aug 08, 2024 11:07 am
Forum: Beginner Basics
Topic: email blocking
Replies: 2
Views: 470

Re: email blocking

Your requirements are not really clear.
Sending mail ?
Receiving mail ?
Sending to ... ?
Receiving from ... ?

And how would you plan to do that with a router ?
Can't be done without specialized gear.

Besides, anyone opening a web browser can send/receive and nothing you can do about it ...
by holvoetn
Thu Aug 08, 2024 8:28 am
Forum: General
Topic: EoIP+bridge Over WAN
Replies: 8
Views: 823

Re: EoIP+bridge Over WAN

For intra-LAN traffic, no need to use anything else then EOIP on its own. When crossing WAN, one should really consider some encryption method. My personal preference is Wireguard since it's easier to setup for me. I have plenty of EOIP connections running over Wireguard using all sorts of devices (...
by holvoetn
Thu Aug 08, 2024 8:13 am
Forum: Beginner Basics
Topic: Bandwidth Test Low Results
Replies: 2
Views: 456

Re: Bandwidth Test Low Results

Good observation :D
by holvoetn
Thu Aug 08, 2024 8:10 am
Forum: Wireless Networking
Topic: Slaves-Static Problem with CAPsMAN VLAN and qcom-ac [SOLVED]
Replies: 15
Views: 2255

Re: Slaves-Static Problem with CAPsMAN VLAN and qcom-ac [SOLVED]

For us, It is either we start replacing the existing MikroTik AC devices with their new outdoor AX units -- which will require ALL new switching infrastructure [no more 802af standard], or we swap out for other vendor. Or wait for true wAP AX which surely will use 802af (like cap AX does). But that...
by holvoetn
Wed Aug 07, 2024 2:08 pm
Forum: RouterBOARD hardware
Topic: MikroTik LHG LTE6 kit + MikroTik R11eL-FG621-EA?
Replies: 2
Views: 498

Re: MikroTik LHG LTE6 kit + MikroTik R11eL-FG621-EA?

Modem is included in this kit.

But ... this model is discontinued (which does not mean it will not work !).
Maybe you should also have a look at LHGG LTE6 kit ?
https://mikrotik.com/product/product_ge ... 3_16_41_07
by holvoetn
Wed Aug 07, 2024 11:19 am
Forum: SwOS
Topic: RB260GS(CSS106-5G-1Sr2) - upgrade filed
Replies: 4
Views: 1068

Re: RB260GS(CSS106-5G-1Sr2) - upgrade filed

Best to contact support, maybe they can provide a solution.
support@mikrotik.com
by holvoetn
Wed Aug 07, 2024 10:36 am
Forum: General
Topic: Winbox: router not detected despite being on the same broadcast domain
Replies: 20
Views: 1256

Re: Winbox: router not detected despite being on the same broadcast domain

Save yourself and anyone else a bit of trouble and post your config ...
I just did. I posted just part of it to save time. If everything looks good. I will look elsewhere.
No, you did not.
Those are extracts from print statements. That's not config.

Use the instructions Larsa linked to.
by holvoetn
Wed Aug 07, 2024 9:13 am
Forum: General
Topic: Winbox: router not detected despite being on the same broadcast domain
Replies: 20
Views: 1256

Re: Winbox: router not detected despite being on the same broadcast domain

Save yourself and anyone else a bit of trouble and post your config ...
You can't learn if you are chasing your own tail.

Worst case (if your really don't want to show your config), reset to default and start over.
Take step by step and see where it stops working. That's where you went wrong then.
by holvoetn
Tue Aug 06, 2024 10:09 pm
Forum: Wireless Networking
Topic: Wireless Wire - Increase Throughput [SOLVED]
Replies: 4
Views: 1699

Re: Wireless Wire - Increase Throughput [SOLVED]

A cable is still easier and more efficient from cost and energy point of view...

You can even run 10Gb/s over cable if you really want.
Try that with wireless :lol:
by holvoetn
Tue Aug 06, 2024 10:08 pm
Forum: Beginner Basics
Topic: Forum has stopped sending email notifications
Replies: 3
Views: 708

Re: Forum has stopped sending email notifications

Already for quite a while...

Go to user control panel, tab subscriptions.
That's how I keep track of responses in subscribed threads now.

Edit: ah wait ... it starts working again ?
For how long ?
by holvoetn
Tue Aug 06, 2024 7:29 pm
Forum: The Dude
Topic: Where to download dude server. [SOLVED]
Replies: 2
Views: 1646

Re: Where to download dude server. [SOLVED]

Check extra packages for the device you want to install it on.
It's in there.
by holvoetn
Tue Aug 06, 2024 7:20 pm
Forum: Containers
Topic: Container usb3?
Replies: 15
Views: 2694

Re: Container usb3?

I already created a sup ticket in the past.
It was acknowledged and supposed to be fixed in a new version but no ETA.
by holvoetn
Tue Aug 06, 2024 6:55 pm
Forum: Wireless Networking
Topic: reliable names for wifi slave interfaces on CAP
Replies: 8
Views: 628

Re: reliable names for wifi slave interfaces on CAP

Use dynamic ports on bridge on cap
They will be added automatically.
by holvoetn
Tue Aug 06, 2024 12:46 pm
Forum: Beginner Basics
Topic: No incoming SMS
Replies: 7
Views: 1300

Re: No incoming SMS

That's a rather important piece of info you failed to mention the first time. You never even mentioned what device you have, which version it currently uses, ... Downgrade then if it worked before and make support ticket with all required info so it can be investigated. I understand you don't want t...
by holvoetn
Tue Aug 06, 2024 10:51 am
Forum: Containers
Topic: Container usb3?
Replies: 15
Views: 2694

Re: Container usb3?

Be aware there is a bug on RB5009 (I see it frequently on my device but haven't seen it yet on AX3) where after reboot USB starts up as USB2, not USB3. Again reboot or performing USB reset fixes that. But if this happens, then your speed will drop dramatically. It will also result in drive to be ren...
by holvoetn
Tue Aug 06, 2024 9:25 am
Forum: Beginner Basics
Topic: No incoming SMS
Replies: 7
Views: 1300

Re: No incoming SMS

Same suggestion as one post above you.
Post your config.
by holvoetn
Tue Aug 06, 2024 8:31 am
Forum: General
Topic: Port forwarding is not working
Replies: 1
Views: 382

Re: Port forwarding is not working

Some questions: - is 165.132.145.101 connected to the same network as your router or is it outside ? (WAN part) If inside, your dst-nat rule only allows incoming via sfp. If that PC is inside your network, it will never use that sfp-connection. - is traffic using port 2222 accepted to be forwarded o...
by holvoetn
Tue Aug 06, 2024 8:21 am
Forum: Wireless Networking
Topic: Capsman hap ax3 provisioning only master-config band and vlan-id to caps? [SOLVED]
Replies: 5
Views: 1764

Re: Capsman hap ax3 provisioning only master-config band and vlan-id to caps? [SOLVED]

Slave config will always follow the physical part of master. That's normal. You can play on slave part with ssid, security, fast transition, ... but not channel nor band, those will be taken from master. As for your second question: https://help.mikrotik.com/docs/display/ROS/WiFi#WiFi-CAPsMAN-CAPVLA...
by holvoetn
Tue Aug 06, 2024 8:12 am
Forum: Wireless Networking
Topic: Capsman Setup with hap ax2
Replies: 5
Views: 562

Re: Capsman Setup with hap ax2

First, use the correct documentation: https://help.mikrotik.com/docs/display/ROS/WiFi#WiFi-CAPsMAN-CAPVLANconfigurationexample: Second: if all your devices (cAP and controller) are AX2, there are no additional packages needed then what's needed to run the device standalone. Attention: packages have ...
by holvoetn
Mon Aug 05, 2024 7:25 pm
Forum: General
Topic: Wireguard clients can connect only after peer restart
Replies: 6
Views: 674

Re: Wireguard clients can connect only after peer restart

Can you please post again latest config as well as the one of 2 peers ?

Mask the keys. Just make sure it's clear where they are supposed to be the same.
by holvoetn
Mon Aug 05, 2024 6:21 pm
Forum: Wireless Networking
Topic: MAC authentication on hap ax3
Replies: 6
Views: 850

Re: MAC authentication on hap ax3

With some clever text manipulation (can even be done in Excel) you should be able to get all the lines populated for upload via terminal.
by holvoetn
Mon Aug 05, 2024 4:17 pm
Forum: Wireless Networking
Topic: MAC authentication on hap ax3
Replies: 6
Views: 850

Re: MAC authentication on hap ax3

It does if you foresee rules for known MAC addresses and then drop for all the rest.
Just like in firewall rules...
by holvoetn
Mon Aug 05, 2024 3:34 pm
Forum: Announcements
Topic: v7.16beta [testing] is released!
Replies: 288
Views: 116742

Re: v7.16beta [testing] is released!

Fixed.
by holvoetn
Mon Aug 05, 2024 11:43 am
Forum: Announcements
Topic: v7.16beta [testing] is released!
Replies: 288
Views: 116742

Re: v7.16beta [testing] is released!

Potential memory leak detected on cAP AC using wifi-qcom-ac drivers, resulting in kernel panic due to out of memory.
Simple AP config, 2 SSIDs, not even using VLANs on that device.

SUP-161244 created.
by holvoetn
Mon Aug 05, 2024 9:01 am
Forum: General
Topic: Wireguard clients can connect only after peer restart
Replies: 6
Views: 674

Re: Wireguard clients can connect only after peer restart

From your two examples:
10.8.0.2/32 and 10.8.0.3/32 respectively.

It's quite well explained in the Wireguard documentation.
https://help.mikrotik.com/docs/display/ ... uardtunnel
by holvoetn
Mon Aug 05, 2024 6:53 am
Forum: General
Topic: Wireguard clients can connect only after peer restart
Replies: 6
Views: 674

Re: Wireguard clients can connect only after peer restart

Is that your "server" config ? I suspect your problem is here: add allowed-address=0.0.0.0/0 If you use that on all peers, your "server" will not know what needs to go where. If one peer is active, there is no confusion. If a second one comes in using the same settings, it's chao...
by holvoetn
Sun Aug 04, 2024 4:24 pm
Forum: Wireless Networking
Topic: no_country_set netbox 5 ax
Replies: 2
Views: 705

Re: no_country_set netbox 5 ax

Not.
You need to select the correct country where you are using your device.
by holvoetn
Sun Aug 04, 2024 4:20 pm
Forum: Wireless Networking
Topic: MAC authentication on hap ax3
Replies: 6
Views: 850

Re: MAC authentication on hap ax3

I would think Access List.
by holvoetn
Sun Aug 04, 2024 3:44 pm
Forum: General
Topic: Increasing security of Mikrotik web page
Replies: 8
Views: 661

Re: Increasing security of Mikrotik web page

ROS 7.0beta3 ??
That's ... over 4 years old ? That version was released 2019-10-22.

Security step 1 already omitted.
by holvoetn
Sun Aug 04, 2024 3:37 pm
Forum: RouterBOARD hardware
Topic: How to intentionally make cable that will negotiate at 10 mbps?
Replies: 16
Views: 1720

Re: How to intentionally make cable that will negotiate at 10 mbps?

A simple mAP might be a cheaper alternative.
Can easily be battery powered too.

It has 2 Fast Ethernet ports and it runs ROS.
You can even be devious and change settings based on assignments/progress using Wifi.
by holvoetn
Sun Aug 04, 2024 2:39 pm
Forum: General
Topic: question about "wireguard responder"
Replies: 12
Views: 1103

Re: question about "wireguard responder"

It does result in a lot less log messages on the server side.
by holvoetn
Sun Aug 04, 2024 12:54 pm
Forum: General
Topic: What are the best practices for securing a MikroTik router from external threats?
Replies: 16
Views: 1341

Re: What are the best practices for securing a MikroTik router from external threats?

Actually, security always comes with some level of inconvenience. It's up to the admin to decide what he/she values most: convenience or security. Accept inconvenience then or get rid of humans ... :shock: we all should be quite aware the human factor (and it's accompanying need for convenience) is ...
by holvoetn
Sun Aug 04, 2024 12:48 pm
Forum: Containers
Topic: how to install debian os on mikrotik container?
Replies: 3
Views: 2194

Re: how to install debian os on mikrotik container?

CHR already runs in VM environment, right ?
Put your Linux right next to it. No need to run it in Docker then.
by holvoetn
Sat Aug 03, 2024 4:53 pm
Forum: General
Topic: Problem with connecting new cap ax to the Capsman
Replies: 19
Views: 1881

Re: Problem with connecting new cap ax to the Capsman

Try removing the channel.frequency parameter from the wifi configuration named cfg5ax . If that does not help, where exactly does My 5G on AX cAP's appears for a few seconds and disappears again happen? On the WiFi tab, on the radios tab, or somewhere else? Most likely DFS frequency gets selected (...
by holvoetn
Sat Aug 03, 2024 4:43 pm
Forum: General
Topic: question about "wireguard responder"
Replies: 12
Views: 1103

Re: question about "wireguard responder"

Now you mention this, my explanation was completely backwards :shock: :? Oops ... In that case, tick "responder". That's what it does. It does not go out, it only listens. What it should be then: You should use this for the device which acts as arrival of the connection. Only if some devic...
by holvoetn
Sat Aug 03, 2024 4:17 pm
Forum: Wireless Networking
Topic: Wi-Fi 2.4G limit 30mpbs
Replies: 17
Views: 1613

Re: Wi-Fi 2.4G limit 30mpbs

Change frequency to the LEAST occupied one.
I can get close to 100Mb on 2.4GHz IF you make sure nobody else is on the used frequency (which is rarely the case using that band).

And set your country correct.
by holvoetn
Sat Aug 03, 2024 4:15 pm
Forum: General
Topic: question about "wireguard responder"
Replies: 12
Views: 1103

Re: question about "wireguard responder"

You should use this for the device which acts as initiator of the connection. Not if some device is only waiting for connections to come in (useless there). So roadwarrior situation: The mobile device should have it. The "server" not (yeah yeah, wireguard is all peers, I know ...) Site 2 s...
by holvoetn
Sat Aug 03, 2024 4:12 pm
Forum: General
Topic: RB941-2nD (hAP lite) and RouterOS 7.15
Replies: 2
Views: 630

Re: RB941-2nD (hAP lite) and RouterOS 7.15

Minimum required amount for RAM on ROS7 is 64Mb.
Hap lite doesn't have that.

It may run on that device but you can expect quite a bit of problems.
by holvoetn
Sat Aug 03, 2024 4:10 pm
Forum: Wireless Networking
Topic: Can mANTBox AX 15s be made to use old wireless package
Replies: 2
Views: 496

Re: Can mANTBox AX 15s be made to use old wireless package

I will probably get yelled at for wanting to reject the newest greatest and use the obsolete, but is it possible to use the old wireless packages with the Mantbox ax 15s?
Simple answer: no.
Drivers for AX radios are only in wave2 part. Not in old wireless package.
by holvoetn
Sat Aug 03, 2024 10:18 am
Forum: Scripting
Topic: If the uptime was more than 1 minute
Replies: 14
Views: 1252

Re: If the uptime was more than 1 minute

Why do I have this deja vu feeling? :?:

Same poster, same question, same answers:
viewtopic.php?t=209273
I already had the feeling too I saw this recently with the same reluctance to accept the answer....
by holvoetn
Sat Aug 03, 2024 10:17 am
Forum: General
Topic: Problem with connecting new cap ax to the Capsman
Replies: 19
Views: 1881

Re: Problem with connecting new cap ax to the Capsman

Export of config please, no screenshots.
by holvoetn
Fri Aug 02, 2024 6:23 pm
Forum: Beginner Basics
Topic: Dial-up type VPN between 2 routers with WireGuard
Replies: 12
Views: 905

Re: Dial-up type VPN between 2 routers with WireGuard

Better approach: Just tested it using mAP Lite, this works better. Start from default. Add wireguard interface Once it's working /routing table add name=useWG fib /ip route add distance=1 dst-address=0.0.0.0/0 gateway=wireguard-inet table=useWG /routing rule add src-address=LANsubnet action=lookup t...
by holvoetn
Fri Aug 02, 2024 6:21 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Your config looks rather simple.
Start again from factory setting and change it step by step.
Observe where it stops working.

I'm a bit puzzled too what the cause may be ...
by holvoetn
Fri Aug 02, 2024 4:57 pm
Forum: Beginner Basics
Topic: Wireguard Interface Invalid Address
Replies: 4
Views: 628

Re: Wireguard Interface Invalid Address

Something is wrong in any case with that interface.
You can already see it because the name is italic.

If I simply add another WG interface on my router, it immediately comes in Running state and no italic name.

What ROS version are you using ?
by holvoetn
Fri Aug 02, 2024 4:51 pm
Forum: General
Topic: hAP-OS [SOLVED]
Replies: 3
Views: 1467

Re: hAP-OS [SOLVED]

so your saying, there is no ntp package for smips?
It's not in extra packages ZIP file so yes, it's not available.
by holvoetn
Fri Aug 02, 2024 4:49 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

And you have the same problem whatever ether port you connect to ?
You also had this problem right after starting config (factory config applied) ?
by holvoetn
Fri Aug 02, 2024 4:45 pm
Forum: Beginner Basics
Topic: Wireguard Interface Invalid Address
Replies: 4
Views: 628

Re: Wireguard Interface Invalid Address

Because there is a problem with the interface where you want to apply that address to.
That needs to be fixed first.

Best to export your config, edit on PC and remove serial / WAN IP / public keys /...
Then post back in between [code] quotes for easier reading.
by holvoetn
Fri Aug 02, 2024 4:42 pm
Forum: The User Manager
Topic: License question ...
Replies: 17
Views: 9594

Re: License question ...

Are we necro posting, bpwl ?
Replying to a thread of almost 10 years old ...
by holvoetn
Fri Aug 02, 2024 4:39 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Which version of winbox are you using ? Latest is 3.41.
by holvoetn
Fri Aug 02, 2024 4:19 pm
Forum: General
Topic: LTE Backup Connection, configuration and setup
Replies: 14
Views: 1166

Re: LTE Backup Connection, which hardware would be best?

Easy and RouterOS usually don't go in the same sentence :lol: The learning curve is quite steep but once you get how it works, it's amazing what you can do with these devices. I'm looking forward to use it with a 30GB/365-Days plan for only 40€/year. I used to have an SXT LTE in vacation house in So...
by holvoetn
Fri Aug 02, 2024 4:03 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

OK, already tried putting 7.15.1 on that new device ?
What happens then ?

Because if that works, there might be a bug ...
by holvoetn
Fri Aug 02, 2024 4:00 pm
Forum: General
Topic: hAP-OS [SOLVED]
Replies: 3
Views: 1467

Re: hAP-OS [SOLVED]

Which hap are you talking about ? Because normal hAP is MIPSBE, not SMIPS. hAP LITE perhaps ? That one uses smips architecture. What's the exact board model ? NTP server is part of NTP package BUT that package is not available for SMIPS. What other functions besides ntp do you need ? ROS7 is not rec...
by holvoetn
Fri Aug 02, 2024 3:52 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Same HW so same switch. But 2 different devices. Semantics perhaps yet important distinction. When doing text compare between configs the only differences are: - that manually added route - ether47 not being added to bridge on old config (possible but doubt it) - IP address is different (but that's ...
by holvoetn
Fri Aug 02, 2024 3:23 pm
Forum: General
Topic: LTE Backup Connection, configuration and setup
Replies: 14
Views: 1166

Re: LTE Backup Connection, which hardware would be best?

Depends on the traffic requirements you have for that LTE link and how good/bad reception is in the area where you want to use it.

A simple AX Lite LTE may already be enough (I use it as road warrior device so not stationary installed, always have it with me in my backpack).
by holvoetn
Fri Aug 02, 2024 3:16 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Check IP route
It's different between old and new.
(as in: it's present in new config and it's not in old so there it is default whereas in new it's not default, it has been added)
by holvoetn
Fri Aug 02, 2024 3:11 pm
Forum: Beginner Basics
Topic: USB disk files directory disappears.
Replies: 5
Views: 2591

Re: USB disk files directory disappears.

Check usb part what is being listed there as devices.
Does USB reset bring back the stick ?

If this persists, best to create supout.rif when it disappears again and create ticket with support.

You can also try another USB stick first. Not all brands are equal.
by holvoetn
Fri Aug 02, 2024 2:36 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Best to upload your config between [code] quotes.
I don't seem to get the info via that link.
by holvoetn
Fri Aug 02, 2024 2:17 pm
Forum: Beginner Basics
Topic: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3
Replies: 18
Views: 1241

Re: Issue with Mikrotik CRS354-48P-4S+2Q+ Connectivity on Firmware 7.15.3

Have you checked on the device or in the box if there is a sticker with default admin passwd ? Already quite some time Mikrotik changed the default admin/<blank> entry to a device-specific passwd, available on sticker or label. It could be your previous device did not have this implemented yet and t...
by holvoetn
Fri Aug 02, 2024 1:05 pm
Forum: Beginner Basics
Topic: Dial-up type VPN between 2 routers with WireGuard
Replies: 12
Views: 905

Re: Dial-up type VPN between 2 routers with WireGuard

But this can't work properly, because the ECM routes are ... well ... equal... On DHCP client for ether1 set default distance to something higher. I usually set at least 5 or 10 so my manual routes can be set to a lower distance. For equal destinations, lower distances get preference if they are re...
by holvoetn
Fri Aug 02, 2024 12:03 pm
Forum: Beginner Basics
Topic: Dial-up type VPN between 2 routers with WireGuard
Replies: 12
Views: 905

Re: Dial-up type VPN between 2 routers with WireGuard

Your mAP Lite connects to wireguard using ether1.
Your PC connects to your mAP Lite using local DHCP/network/..., yes ?

Treat that wireguard connection as any other ISP connection for everything coming from bridge.
by holvoetn
Fri Aug 02, 2024 11:33 am
Forum: Virtualization
Topic: Router Os 7.15.3 on Qnap Nas
Replies: 14
Views: 1458

Re: Router Os 7.15.3 on Qnap Nas

First, a nit: you'll want to remove the "&p" bit from the end of the bookmarks you have, as Fossil's latest anti-bot defenses consider this a "complicated" URL, forcing a redirect to a "honeypot" page meant to trap bots, keeping them from running up the CPU usage o...
by holvoetn
Fri Aug 02, 2024 10:51 am
Forum: Beginner Basics
Topic: Dial-up type VPN between 2 routers with WireGuard
Replies: 12
Views: 905

Re: Dial-up type VPN between 2 routers with WireGuard

Agreed, that the maplite will need two wifi connections, probaby 2ghz to the hotel and 5ghz to the customer laptop for example. Small problem: there is no 5GHz on mAP Lite. You need 2 wireless connections then, one slave of the other. First one to connect to whatever network you want to connect to....
by holvoetn
Fri Aug 02, 2024 8:57 am
Forum: Beginner Basics
Topic: Wireless bridge questions
Replies: 12
Views: 1049

Re: Wireless bridge questions

If I'm not much mistaken, RBwAPG-60ad wireless wire kit ...
Ah, missed that one.
You're correct to ask more info.
by holvoetn
Fri Aug 02, 2024 8:18 am
Forum: Beginner Basics
Topic: Wireless bridge questions
Replies: 12
Views: 1049

Re: Wireless bridge questions

RouterOS can be quite daunting at first, that's a fact. Learning curve is quite steep, we've all been there (and still learning). As for your problem: Default your device will act as router with its own subnet. Devices connecting to it should have internet access but you can not see them from your n...
by holvoetn
Thu Aug 01, 2024 8:39 pm
Forum: Scripting
Topic: If the uptime was more than 1 minute
Replies: 14
Views: 1252

Re: If the uptime was more than 1 minute

Delay will take care of that.
No need to complicate things....

What's the difference between checking in a loop until one minute has passed or simply waiting 1 minute ?
What do you think is easier ?
The result is the same....
by holvoetn
Thu Aug 01, 2024 6:58 pm
Forum: Virtualization
Topic: Router Os 7.15.3 on Qnap Nas
Replies: 14
Views: 1458

Re: Router Os 7.15.3 on Qnap Nas

It's not because something can be done that you should do it. Already to start it's crazy to install CHR in VM on Qnap. Yes, you can do it. Is it sensible to do so ? Not so much. Performance wise it's (to say it politely) not so smart. And then you want to dive a virtualization level deeper using do...
by holvoetn
Thu Aug 01, 2024 4:59 pm
Forum: Scripting
Topic: If the uptime was more than 1 minute
Replies: 14
Views: 1252

Re: If the uptime was more than 1 minute

Make script - on startup
First line: delay 60
And then your line.
by holvoetn
Thu Aug 01, 2024 4:35 pm
Forum: SwOS
Topic: problem with Lock On First in swos
Replies: 5
Views: 1091

Re: problem with Lock On First in swos

what is the problem ?? A misunderstanding of the feature, that's what's wrong, I think. Lock On First - Allows to learn source MAC address from the first received frame, this property should be used together with Port Lock. Learning of the first MAC address will reset every time an interface status...
by holvoetn
Thu Aug 01, 2024 4:28 pm
Forum: Virtualization
Topic: Router Os 7.15.3 on Qnap Nas
Replies: 14
Views: 1458

Re: Router Os 7.15.3 on Qnap Nas

The better solution ?
Don't put CHR in VM on QNAP.

I think some others already hinted into that direction...
by holvoetn
Thu Aug 01, 2024 3:48 pm
Forum: Wireless Networking
Topic: IOT - custom wifi passwords, possible?
Replies: 1
Views: 447

Re: IOT - custom wifi passwords, possible?

You can use access list to setup passwd per device.

Old thread, I don't know if it is also applicable to AX-line of devices:
viewtopic.php?t=94842
by holvoetn
Thu Aug 01, 2024 2:31 pm
Forum: Virtualization
Topic: Router Os 7.15.3 on Qnap Nas
Replies: 14
Views: 1458

Re: Router Os 7.15.3 on Qnap Nas

Docker on CHR in VM on Qnap NAS ??
OK ... why not...

https://tangentsoft.com/mikrotik/wiki?n ... re+Not+VMs
(section: CHR Complications)
by holvoetn
Thu Aug 01, 2024 12:02 pm
Forum: Wireless Networking
Topic: CAPsMAN v2 wifi-qcom-ac with CAPs in different IP network don't work
Replies: 7
Views: 705

Re: CAPsMAN v2 wifi-qcom-ac with CAPs in different IP network don't work

Are you sure the master is receiving those requests at all ?
No incoming firewall rules blocking some things ?
by holvoetn
Wed Jul 31, 2024 10:23 pm
Forum: General
Topic: CAPsMAN forwarding in new capsmanager
Replies: 12
Views: 911

Re: CAPsMAN forwarding in new capsmanager

EOIP it is then ...

But I would regard this as a missed business opportunity.
by holvoetn
Wed Jul 31, 2024 9:10 pm
Forum: General
Topic: CAPsMAN forwarding in new capsmanager
Replies: 12
Views: 911

Re: CAPsMAN forwarding in new capsmanager

I don't get it...

You're the isp.
You do control cap and capsman but not the router in between ?
by holvoetn
Wed Jul 31, 2024 6:18 pm
Forum: Wireless Networking
Topic: Issue with connectivity between NetBox 5 ax and SXTsq 5 ac [SOLVED]
Replies: 4
Views: 1973

Re: Issue with connectivity between NetBox 5 ax and SXTsq 5 ac [SOLVED]

It's not because you don't see it, nothing is/was selected.
An export would have made that clear.

But good you found the problem :D
by holvoetn
Wed Jul 31, 2024 5:50 pm
Forum: General
Topic: CAPsMAN forwarding in new capsmanager
Replies: 12
Views: 911

Re: CAPsMAN forwarding in new capsmanager

i'm an ISP... cAPs are installed into clients shops behind NAT. I have no direct access to cAPs. But cAPs can reach my cAPsManager. No need for all layers using L2tp / IPSEC / EOIP, simple EOIP alone should be enough then, no ? Because you do have direct connection (upstream from cap to capsman). J...
by holvoetn
Wed Jul 31, 2024 3:29 pm
Forum: Scripting
Topic: Disable the prompt from the terminal. [SOLVED]
Replies: 17
Views: 1964

Re: Disable the prompt from the terminal. [SOLVED]

Are you referring to the banner showing Mikrotik logo or something else ?

For first, possibly something can be done using branding package but I never tried it myself.
by holvoetn
Wed Jul 31, 2024 2:57 pm
Forum: General
Topic: Problem with connecting new cap ax to the Capsman
Replies: 19
Views: 1881

Re: Problem with connecting new cap ax to the Capsman

Your cap AC are most likely using "old" capsman. You need to use wave2 capsman for AX devices, completely separate menu structure. Good thing: you can have both capsman environments on the same controller but you need to be running at least ROS 7.13. See here for more info: https://help.mi...
by holvoetn
Wed Jul 31, 2024 2:12 pm
Forum: General
Topic: Wireguard Speed - Capping out at 20mb with Mangle rule and MTU of 1420
Replies: 5
Views: 805

Re: Wireguard Speed - Capping out at 20mb with Mangle rule and MTU of 1420

I'm wondering whether the 25mb up speed is the limiting factor that makes the VPN up/down both about 23mb??
That's what I already indicated.
The slowest link determines the speed for the whole chain.

And you need to test from/to both ways.
by holvoetn
Wed Jul 31, 2024 2:11 pm
Forum: General
Topic: wireguard problem with a v 7.14
Replies: 23
Views: 5518

Re: wireguard problem with a v 7.14

There is a mikrotik support team here.
Where ?
This is a USER forum.
Some MT staff visit this place but not all and not everywhere.

The only sure way to get Support attention is to create a support ticket.
by holvoetn
Tue Jul 30, 2024 11:32 pm
Forum: General
Topic: Inter VLAN routing with SwOS
Replies: 2
Views: 427

Re: Inter VLAN routing with SwOS

Inter-VLAN routing is a router function which Swos can not do.
ROS can.
by holvoetn
Mon Jul 29, 2024 5:39 pm
Forum: Wireless Networking
Topic: Mikrotik hEX PoE wifiwave2 support [SOLVED]
Replies: 4
Views: 1693

Re: Mikrotik hEX PoE wifiwave2 support [SOLVED]

For use as capsman controller, yes. That's all to be done.
by holvoetn
Mon Jul 29, 2024 3:30 pm
Forum: Wireless Networking
Topic: Mikrotik hEX PoE wifiwave2 support [SOLVED]
Replies: 4
Views: 1693

Re: Mikrotik hEX PoE wifiwave2 support [SOLVED]

It should be since base hooks for wave2 handling are available in main ROS package as of 7.13.
So you do not need to install wave2 package on Hex POE.

Pre-7.13 a separate wave2 package was needed but there MIPSBE platform was not supported.
But all that changed with 7.13.
by holvoetn
Mon Jul 29, 2024 2:49 pm
Forum: Beginner Basics
Topic: CRS310-1G-5S-4S+ Random reboot
Replies: 7
Views: 839

Re: CRS310-1G-5S-4S+ Random reboot

You are 200% sure nobody "used" the power socket for that device for other purposes for some time ?

If there was no real other power outage there (no other devices being reported down ?), then I would definitely first check that PSU.
by holvoetn
Mon Jul 29, 2024 2:14 pm
Forum: Beginner Basics
Topic: CRS310-1G-5S-4S+ Random reboot
Replies: 7
Views: 839

Re: CRS310-1G-5S-4S+ Random reboot

What does log say right after reboot ?
Kernel failure ? Something else ?

Potential problem with power supply ? Any chance to have that replaced by a spare (you should have a spare if it's critical equipment) ?
by holvoetn
Mon Jul 29, 2024 12:11 pm
Forum: General
Topic: Wireguard Speed - Capping out at 20mb with Mangle rule and MTU of 1420
Replies: 5
Views: 805

Re: Wireguard Speed - Capping out at 20mb with Mangle rule and MTU of 1420

I have a working Wireguard VPN between France and London. Both ends have connection speeds of 500mbs but the max speedtest I get over the VPN is approx 25mbs. This is causing problems with video conferences etc. Up/down on both ends 500Mb ? So you have 500/500 in Paris and 500/500 in London ? And n...
by holvoetn
Sat Jul 27, 2024 8:47 am
Forum: The User Manager
Topic: I forgot my admin password help pls
Replies: 5
Views: 1064

Re: I forgot my admin password help pls

Netinstall, if you have no other entries.
by holvoetn
Sat Jul 27, 2024 8:36 am
Forum: General
Topic: How to configure my Mikrotik as a router
Replies: 11
Views: 988

Re: How to configure my Mikrotik as a router

FWIW I know tangent is working on his own wiki page collecting as much as much possible default configs from various devices. He even made a page describing in detail what one of those default configs does and why it's implemented that way. Rather good material for a beginner. You can find that page...
by holvoetn
Fri Jul 26, 2024 3:51 pm
Forum: General
Topic: How to configure my Mikrotik as a router
Replies: 11
Views: 988

Re: How to configure my Mikrotik as a router

FWIW mAP (even mAP Lite) don't break the bank and can run ROS7 just fine.
by holvoetn
Fri Jul 26, 2024 3:38 pm
Forum: Wireless Networking
Topic: Netbox 5 AX Frequency Settings
Replies: 4
Views: 640

Re: Netbox 5 AX Frequency Settings

Especially with outdoor devices be REALLY careful what you do with your country settings in accordance to your local legislation !

Mikrotik is not and can not be held responsible for wrong use of those devices.
That's your responsibility.
by holvoetn
Fri Jul 26, 2024 9:15 am
Forum: RouterBOARD hardware
Topic: Default password Frustration
Replies: 101
Views: 11062

Re: Default password Frustration

Some keep looking for problems and stay there.
Some keep looking for solutions and move on.
by holvoetn
Wed Jul 24, 2024 9:28 pm
Forum: General
Topic: Unable to Reach NUC in VLAN from LAN [SOLVED]
Replies: 4
Views: 1629

Re: Unable to Reach NUC in VLAN from LAN [SOLVED]

Is that NUC running Windows 10/11 ?
Those versions are known to block incoming ping messages.
Check firewall on that NUC first.
by holvoetn
Wed Jul 24, 2024 9:26 pm
Forum: General
Topic: Cannot create new wireguard interface (not running)
Replies: 3
Views: 362

Re: Cannot create new wireguard interface (not running)

Not the correct info.

terminal
/export file=anynameyouwish
Move file to PC
Edit serial, public wanip, public keys, ...
Post back between [code] quotes.
by holvoetn
Wed Jul 24, 2024 5:24 pm
Forum: Wireless Networking
Topic: Hap AX2 5ghz wifi range less than 1meter
Replies: 9
Views: 695

Re: Hap AX2 5ghz wifi range less than 1meter

And how do you know your PC is connected to THAT specific AX2 ? It might be it's still connected to one of the others. Typically a client device tries to hang on onto a connection as long as possible unless being kicked out (process to be avoided since it may ultimately lead to the client avoiding s...
by holvoetn
Wed Jul 24, 2024 4:35 pm
Forum: General
Topic: Port Forwarding With Real/Public Ip
Replies: 2
Views: 318

Re: Port Forwarding With Real/Public Ip

1- you may want to upgrade to latest ROS6 stable. Just saying ...
2- why direct access via ports ? HIGHLY insecure. Isn't it wiser/safer to use VPN into that Linux box and work from there ?
by holvoetn
Wed Jul 24, 2024 1:29 pm
Forum: Scripting
Topic: Netinstall userscript not working
Replies: 1
Views: 382

Re: Netinstall userscript not working

It is indeed needed to wait a bit longer before touching that LTE interface. Right after startup, it's not there yet. I've seen it sometimes absent for a bit under a minute on AX Lite LTE. Best to move that LTE part as last section of your script so all the rest can finish already. Use a hard coded ...
by holvoetn
Wed Jul 24, 2024 11:21 am
Forum: Announcements
Topic: WinBox v3.41 released!
Replies: 41
Views: 16623

Re: WinBox v3.41 released!

There never has been winbox for MacOS.
On Linux boxes you can run it via Wine, I suppose MacOS has something similar.
by holvoetn
Tue Jul 23, 2024 10:28 pm
Forum: Beginner Basics
Topic: What is the default PoE output voltage/power? [SOLVED]
Replies: 2
Views: 464

Re: What is the default PoE output voltage/power? [SOLVED]

Passive PoE so it will depend on the input voltage of SXT.
Where does it say in the specs you can reliably add a 12V-requiring device to it ?
I don't see it.

So yeah, chances are high you applied already overvoltage to that camera.
by holvoetn
Tue Jul 23, 2024 4:21 pm
Forum: Wireless Networking
Topic: wAP ax?
Replies: 56
Views: 13528

Re: wAP ax?

Decided that I'm not going to wait for AX and decided to get AC. But it's sold out on many places and on MT website it shows as discontinued.... So maybe it's coming and maybe, just maybe my garden wifi project will get post poned to next month in hopes of AX model arrival. Getic.com still has them...
by holvoetn
Tue Jul 23, 2024 1:42 pm
Forum: RouterBOARD hardware
Topic: L009UiGS-2HaxD-IN vs. RBM33G Performance results [SOLVED]
Replies: 11
Views: 3192

Re: L009UiGS-2HaxD-IN vs. RBM33G Performance results [SOLVED]

And it's not because one has ARM it's necessarily "better" :lol: As reference: Hex as same processor as RMB33G. I 've used my device both with ROS6 an ROS7. It's not slower (not that I know and not in my setup). There are even features in ROS7 (HW offloading etc) not possible before in ROS...
by holvoetn
Tue Jul 23, 2024 9:03 am
Forum: General
Topic: Access points shows an error "Warning: CPU not running at default frequency" [SOLVED]
Replies: 17
Views: 4071

Re: Access points shows an error "Warning: CPU not running at default frequency" [SOLVED]

1- depends on how much data each of the clients will send/receive over wifi. But about 30 clients is advised as limit per AP (don't know anymore where I read it). So you're at the border there. Start with one, foresee cabling if needed for second one. 2- if you do your network planning carefully avo...
by holvoetn
Mon Jul 22, 2024 8:33 pm
Forum: Wireless Networking
Topic: Does size of antenna matter?
Replies: 64
Views: 3866

Re: Does size of antenna matter?

Side note

I've seen multiple reports on various posts in this thread during the day.
For now I will let it go but keep things civil, shall we ?
Remember: always play ball, never man.

Carry on ...
by holvoetn
Mon Jul 22, 2024 8:23 pm
Forum: Wireless Networking
Topic: wAP ax?
Replies: 56
Views: 13528

Re: wAP ax?

waiting for wAP AX , need do outdoor roaming. Possibly can be done with netmetal AX but not sure because it have 256MB of RAM and full roaming required 1GB. Count me in but in the mean time I decided to put wap AC on my porch with wifi-qcom-ac drivers. It ain't that bad for outdoor wifi, I would sa...
by holvoetn
Mon Jul 22, 2024 4:31 pm
Forum: Wireless Networking
Topic: Does size of antenna matter?
Replies: 64
Views: 3866

Re: Does size of antenna matter?

If you are not isolated from the world, no matter how hard you try, your neighbor always ruins everything. No matter how much you spend, if you don't insulate all windows, external walls, floor and roof, interference will always enter your home and ruin your signal. Sounds like modern construction ...
by holvoetn
Mon Jul 22, 2024 4:09 pm
Forum: General
Topic: No RoMON Help Please
Replies: 7
Views: 1065

Re: No RoMON Help Please

Best to shoot ticket to support.
MT staff doesn't read all posts on this forum (since this is a user forum).
by holvoetn
Mon Jul 22, 2024 4:08 pm
Forum: Wireless Networking
Topic: Does size of antenna matter?
Replies: 64
Views: 3866

Re: Does size of antenna matter?

And in any case the access point, in principle, should be placed in the center of the apartment, not on the side... Half the power goes to cover the neighbors... Classic problem caused by a lot of installers. They provide internet access somewhere in a basement or garage or some corner and as a con...
by holvoetn
Mon Jul 22, 2024 3:29 pm
Forum: RouterBOARD hardware
Topic: Default password Frustration
Replies: 101
Views: 11062

Re: Default password Frustration

Small observation...

What about UK then ? They're not EU anymore.
California ? Also to hell ?

This is a measurement to protect consumers because as we all know, 99% plug in a device and don't even open admin pages for the rest of the device's lifetime.
by holvoetn
Mon Jul 22, 2024 3:22 pm
Forum: Announcements
Topic: v7.15.3 [stable] is released!
Replies: 648
Views: 235346

Re: v7.15.2 [stable] is released!

https://en.wikipedia.org/wiki/MAC_address#Universal_vs._local_.28U.2FL_bit.29 See the part on locally administered addresses... I'll rephrase my remark... MAC addresses are made of 6 octets. On the 2 provided examples the first octet is as far as I can see not the same, therefor those are 2 differe...
by holvoetn
Mon Jul 22, 2024 12:52 pm
Forum: RouterBOARD hardware
Topic: Mikrotik hAP ax3 poe out question
Replies: 9
Views: 899

Re: Mikrotik hAP ax3 poe out question

I have multiple AX3-eth1 connected to RB5009 and Hex.
No smoke signals seen yet ...
by holvoetn
Mon Jul 22, 2024 12:34 pm
Forum: Announcements
Topic: v7.15.3 [stable] is released!
Replies: 648
Views: 235346

Re: v7.15.2 [stable] is released!


sry, was a copy paste error, the macs are the same, one is with a space :D
wifi2 (main 5ghz Interface): DC:2C:6E:XX:XX:D1
wifi3 (slave 2,4ghz 1):      DE:2C:6E:XX:XX:D1 (SAME AS MAIN 5ghz Interface)
How can on the first part DE be the same as DC ???
by holvoetn
Mon Jul 22, 2024 12:22 pm
Forum: SwOS
Topic: Unable to Boot into SwitchOS on CRS354-48G-4S+2Q+ - Kernel Cannot Be Loaded [SOLVED]
Replies: 2
Views: 2393

Re: Unable to Boot into SwitchOS on CRS354-48G-4S+2Q+ - Kernel Cannot Be Loaded [SOLVED]

Maybe (or not) some added info: https://forum.mikrotik.com/viewtopic.php?t=158326 Initially SWOS was not available for this model. But later SW versions did make it available. Down in the thread is maybe the solution to your problem: sw os released for CRS354. upgrade your routeros to testing versio...
by holvoetn
Sun Jul 21, 2024 4:03 pm
Forum: RouterBOARD hardware
Topic: hAP ax³ not responding
Replies: 3
Views: 606

Re: hAP ax³ not responding

First thing to look at: power supply.
by holvoetn
Sun Jul 21, 2024 12:30 pm
Forum: Beginner Basics
Topic: How to dumb AP hAP ac2 [SOLVED]
Replies: 10
Views: 2491

Re: How to dumb AP hAP ac2 [SOLVED]

Adding (I had the feeling I forgot some things so just did a test with RB5009 and mAP) You also need to open (if needed) firewall for input both on RB and AC2. Add 2 rules 1- Input - tcp 1723 2- input - gre Move both rules above input rule which drops all the rest. Add IP address to both ends of EOI...
by holvoetn
Sun Jul 21, 2024 11:00 am
Forum: Beginner Basics
Topic: How to dumb AP hAP ac2 [SOLVED]
Replies: 10
Views: 2491

Re: How to dumb AP hAP ac2 [SOLVED]

What you ment by isolated port ? Don't connect that port to bridge so it remains isolated. EOIP interface should be connected to bridge and that will then take care of L2 connection across devices. This whole mikrotik thing is kind of new for me. Sometimes, I feel like I'm the one who is dumb inste...
by holvoetn
Sat Jul 20, 2024 3:44 pm
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 1051
Views: 1184154

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Sad sad world ...
Abusing a free service in such a way. I totally understand your point of view.

Wild idea
Free for first x attempts, then paying ?
by holvoetn
Sat Jul 20, 2024 8:33 am
Forum: Wireless Networking
Topic: The most arduous access point ever: hAP ax³
Replies: 48
Views: 2701

Re: The most arduous access point ever: hAP 3ax

without seeing your config nobody will reply to this rant
The only and most sensible reply possible, indeed ...
by holvoetn
Sat Jul 20, 2024 8:31 am
Forum: Beginner Basics
Topic: How to dumb AP hAP ac2 [SOLVED]
Replies: 10
Views: 2491

Re: How to dumb AP hAP ac2 [SOLVED]

Connect AC2 to ISP modem, isolated port EOIP between RB and AC2, connect on both ends to bridge (assuming on RB the port connected to ISP is also considered WAN hence not part of bridge). Default route from AC2 to RB. All other interfaces on AC2 bridge incl wifi will then be part of RB environment. ...
by holvoetn
Fri Jul 19, 2024 3:10 pm
Forum: General
Topic: Why do I see google attempting to connect to my router on the input chain?
Replies: 6
Views: 473

Re: Why do I see google attempting to connect to my router on the input chain?

Portscanners, live with it.

It doesn't make sense to try to understand why The Big Bad World is trying to get into your device.
Your only concern is to make sure they have a real hard time to get in so they give up.
by holvoetn
Fri Jul 19, 2024 11:08 am
Forum: General
Topic: Wireguard stops handshaking out of sudden - Change of port (only) solves it for weeks
Replies: 25
Views: 2908

Re: Wireguard stops handshaking out of sudden - Change of port (only) solves it for weeks

Just been investigating a similar issue. Central RB5009 with multiple WG peers, on an AC3 250km away WG connection dropped dead, already some days ago. All other peers on that RB5009 remain functional. Both RB5009 and AC3 are on 7.15.1. That WG connection is only for management purposes, no signals ...
by holvoetn
Thu Jul 18, 2024 8:03 pm
Forum: Wireless Networking
Topic: Virtual CHR as CAPsMAN for cAP ax with multiple SSIDs/VLANs and third party router/switch
Replies: 18
Views: 2091

Re: Virtual CHR as CAPsMAN for cAP ax with multiple SSIDs/VLANs and third party router/switch

Well, the next actions to be taken remain the same, though ...
export of both manager and caps device please.
by holvoetn
Thu Jul 18, 2024 4:53 pm
Forum: Beginner Basics
Topic: Mikrotik + TP-Link switch drops speed to 100 Mbps
Replies: 9
Views: 1071

Re: Mikrotik + TP-Link switch drops speed to 100 Mbps

Winbox - interfaces - select interface. There you see which speed is being used. On TP-Link you can also see what is being used. The fact you say it changes from time to time, does not point into a problem of the ports on those devices or you would KNOW that speed is being changed. Someone has to do...
by holvoetn
Thu Jul 18, 2024 4:28 pm
Forum: Beginner Basics
Topic: Mikrotik + TP-Link switch drops speed to 100 Mbps
Replies: 9
Views: 1071

Re: Mikrotik + TP-Link switch drops speed to 100 Mbps

My experience
Avoid cat5e if you see this happening.
It's usually a bad cable causing this.
by holvoetn
Thu Jul 18, 2024 4:12 pm
Forum: Beginner Basics
Topic: Mikrotik + TP-Link switch drops speed to 100 Mbps
Replies: 9
Views: 1071

Re: Mikrotik + TP-Link switch drops speed to 100 Mbps

First step:
check what speed is being advertised at the relevant ports of your Mikrotik and TP-Link.
Also check between Mikrotik and ISP device.

Then check cable between each of those combinations, preferably use CAT6 to be sure.
by holvoetn
Thu Jul 18, 2024 10:43 am
Forum: General
Topic: Firewall Fasttrack
Replies: 1
Views: 278

Re: Firewall Fasttrack

The general idea of fasttrack is to bypass as much as possible in order to speed up things and to prevent load on CPU. Related reference material: https://help.mikrotik.com/docs/pages/viewpage.action?pageId=328486 There is a section way down related to fastpath and fasttrack. Key points: - fasttrack...
by holvoetn
Tue Jul 16, 2024 6:39 pm
Forum: Wireless Networking
Topic: CAP AC - Frequency and channel widths query
Replies: 14
Views: 1134

Re: CAP AC - Frequency and channel widths query

FWIW even with Wave2 drivers on cAP AC, it only goes to 5710
[xyz@<devicename>] /interface/wifi> radio reg-info
country: United Kingdom
number: 1
ranges: 2402-2482/20
5170-5250/23/indoor
5250-5330/23/indoor/dfs
5490-5710/30/dfs
by holvoetn
Mon Jul 15, 2024 4:25 pm
Forum: Wireless Networking
Topic: hap ax3 wifi problem
Replies: 22
Views: 1591

Re: hap ax3 wifi problem

Tear down the wall, then? 5GHz and walls don't really work well together ... You can not achieve max results with obstacles in between. Ain't gonna happen. I read somewhere the advice is usually to have a 5GHz radio per room for office environments. You're not required to do so at home but then you ...
by holvoetn
Mon Jul 15, 2024 12:43 pm
Forum: Scripting
Topic: if router uptime is more
Replies: 16
Views: 1061

Re: if router uptime is more

Here is the usecase: I need a script that executes commands if router uptime is more than one minute Which is fulfilled when you run 3s after boot and first wait 57s. Even regardless if time stamp on router has already been adjusted to reality. So why that solution was dismissed, we can not know. Y...
  • 1
  • 2
  • 3
  • 4
  • 5
  • 22