Community discussions

MikroTik App

Search found 7025 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 24
by holvoetn
Thu Dec 12, 2024 7:16 pm
Forum: RouterBOARD hardware
Topic: Where is the Audience AX?
Replies: 6
Views: 402

Re: Where is the Audience AX?

How long did it take for wap AX to come out ?

Let's assume they are working on it.
by holvoetn
Thu Dec 12, 2024 2:57 pm
Forum: SwOS
Topic: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?
Replies: 8
Views: 514

Re: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?

RB5009 even has a 3th powering option on the side.

Also, POE version of RB5009 can be powered using POE on ALL 8 ether ports.
by holvoetn
Thu Dec 12, 2024 12:21 pm
Forum: SwOS
Topic: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?
Replies: 8
Views: 514

Re: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?

Do you have any informations that RB5009UPr+S+IN can be tricky when using 2.5Gbit port for ISP and transfer goes above 1Gbit and also SPF+ i utilized to connect to CRS326-24G-2S+RM SPF+, I have read that there are some problems that router can make lags or some kind of problems?. Not that I am awar...
by holvoetn
Thu Dec 12, 2024 11:18 am
Forum: General
Topic: CRS326-24G-2S+RM only act as switch, without any other option, possible ?
Replies: 6
Views: 289

Re: CRS326-24G-2S+RM only act as switch, without any other option, possible ?

Yes.
Surely your default subnet is not going to be 192.168.88.0/24, is it ?
by holvoetn
Thu Dec 12, 2024 11:16 am
Forum: SwOS
Topic: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?
Replies: 8
Views: 514

Re: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?

That's a logical consequence from daisy-chaining those switches one after the other. Only the part which is behind the switch which breaks down, will go down. If it's the first one, everything goes down. If it's the last one, only 24 clients will go down. If it's the RB5009 going down, everything is...
by holvoetn
Thu Dec 12, 2024 11:00 am
Forum: Wireless Networking
Topic: CAPSMAN on L009UiGS-2HaxD
Replies: 6
Views: 278

Re: CAPSMAN on L009UiGS-2HaxD

Anyway, I think I'm going to test in my office if it is possible to add the wifiwave2 driver to the AC2s and link them with the L009UiGS-2HaxD with the same driver. I'm not sure if it will work, but we have to try it. It will work. I have several AC devices runing wifi-qcom-ac package without probl...
by holvoetn
Thu Dec 12, 2024 10:03 am
Forum: General
Topic: Mikrotik hap lite can't start
Replies: 3
Views: 184

Re: Mikrotik hap lite can't start

This is VERY odd indeed ?!

And did you try simply using the mips package as it indicates ?
Because what strikes me as equally odd, is that same QCA9533 CPU is used in mAP Lite and cAP Lite and those ARE mips devices. Not SMIPS.
by holvoetn
Thu Dec 12, 2024 9:55 am
Forum: Wireless Networking
Topic: CAPSMAN on L009UiGS-2HaxD
Replies: 6
Views: 278

Re: CAPSMAN on L009UiGS-2HaxD

In that case you have another option but you should thoroughly test it ... hAP AC2 can also make use of wifiwave2 drivers (wifi-qcom-ac) IF you're not doing other things on that device (plain switch, pure AP, nothing more). Problem with AC2 is that it has a quite limited storage and using wifi-qcom-...
by holvoetn
Thu Dec 12, 2024 9:34 am
Forum: Wireless Networking
Topic: CAPSMAN on L009UiGS-2HaxD
Replies: 6
Views: 278

Re: CAPSMAN on L009UiGS-2HaxD

I am going to assume all your other access points are using legacy wireless (read: not AX). And there is your problem now. See this Help page: https://help.mikrotik.com/docs/spaces/ROS/pages/1409138/Wireless and this: https://help.mikrotik.com/docs/spaces/ROS/pages/224559120/WiFi For AX radios capsm...
by holvoetn
Thu Dec 12, 2024 8:16 am
Forum: SwOS
Topic: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?
Replies: 8
Views: 514

Re: Connect 3x CRS326-24G-2S+RM x1 RB5009UPr+S+IN and NAS, is it possible ?

Yes. And the beauty ? On CRS326 you do not have to do anything except for changing IP address.
by holvoetn
Thu Dec 12, 2024 8:14 am
Forum: General
Topic: CRS326-24G-2S+RM only act as switch, without any other option, possible ?
Replies: 6
Views: 289

Re: CRS326-24G-2S+RM only act as switch, without any other option, possible ?

Sure.
That's how it default starts.
You only need to look at the IP address, rest of config default starts as a pure switch (because ... that's what it is !).
by holvoetn
Wed Dec 11, 2024 4:36 pm
Forum: Beginner Basics
Topic: Need HELP!!!!!!!!
Replies: 2
Views: 315

Re: Need HELP!!!!!!!!

Topic locked since the exact same question is already being handled in another thread.
by holvoetn
Wed Dec 11, 2024 4:21 pm
Forum: General
Topic: Do AP's come with all router functions?
Replies: 19
Views: 928

Re: Do AP's come with all router functions?

Add-ons: not really or not in the way you may see it. But you can install containers. So if it works in a container, it may work. Not full-fledged docker but usable. Provided you have enough storage, memory, ... My personal view: a router is not my primary target devide to run such things. I also to...
by holvoetn
Wed Dec 11, 2024 11:27 am
Forum: RouterBOARD hardware
Topic: Switch in RB509/L009 FormFactor
Replies: 8
Views: 1403

Re: Switch in RB509/L009 FormFactor

Having just purchased all material for a small shop, bit of router functions and 4 APs which needed to be POE powered. Some printers, some PCs. About 10 connections in total. Give it some spare for near future and I should need 16 ports. I was initially thinking towards RB5009Pr but that would reall...
by holvoetn
Wed Dec 11, 2024 10:53 am
Forum: General
Topic: IP Cloud (Dynamic DNS) down?
Replies: 95
Views: 12731

Re: mynetname is down ?

It seems to be working now, checking from Greece. BTW, free service means "Best effort" SLA... If critical systems depend on connectivity other means should be used for DDNS, usually with a fee.
Correct attitude !
by holvoetn
Wed Dec 11, 2024 10:52 am
Forum: General
Topic: IP Cloud (Dynamic DNS) down?
Replies: 95
Views: 12731

Re: IP Cloud (Dynamic DNS) down?

Threads merged.
by holvoetn
Tue Dec 10, 2024 9:04 pm
Forum: Containers
Topic: Heimdall container on AX3
Replies: 8
Views: 5417

Re: Heimdall container on AX3

Nice job :D
by holvoetn
Tue Dec 10, 2024 7:52 pm
Forum: General
Topic: Limited Bandwidth on Thunderbird? [SOLVED]
Replies: 6
Views: 379

Re: Limited Bandwidth on Thunderbird? [SOLVED]

Sure it's not Gmail capping that connection ?
150Gb is HUUUUGE !

https://support.google.com/a/answer/1071518?hl=en
by holvoetn
Tue Dec 10, 2024 6:06 pm
Forum: General
Topic: Do AP's come with all router functions?
Replies: 19
Views: 928

Re: Do AP's come with all router functions?

- In case I do need to verify via SSH, can I use typical tools like PuTTY? I think PuTTY works with OpenSSL and if RouterOS doesn't support that, then I don't know...
All that should work, although been years since I tried PuTTY.
PuTTY works just fine.
by holvoetn
Tue Dec 10, 2024 5:05 pm
Forum: RouterBOARD hardware
Topic: Quickset modes C53UiG+5HPaxD2HPaxD
Replies: 13
Views: 1819

Re: Quickset modes C53UiG+5HPaxD2HPaxD

First things first ... ROS is so powerful because you can almost do anything with it. And here is the drawback, because you can almost do anything with it, a lot of people get lost. Mesh is there from older legacy wireless HW. It's not applicable anymore to AX HW. Cap is there from older HW with leg...
by holvoetn
Tue Dec 10, 2024 4:20 pm
Forum: General
Topic: Wireguard tunnel stopping on its own
Replies: 5
Views: 291

Re: Wireguard tunnel stopping on its own

Check on client peer side if Persistent Keepalive is set (typical: set it to 25s = 00:00:25).
by holvoetn
Tue Dec 10, 2024 3:28 pm
Forum: General
Topic: CAPSMAN provisioning + DHCP server not working for CAP devices
Replies: 9
Views: 953

Re: CAPSMAN provisioning

This solved the issue with CAPsMAN provisioning, but now DHCP server don't give IP addresses to devices connected to WiFi trough the CAP devices. External radios or local radios ? What's this ? /ip dhcp-server network add address=0.0.0.0/24 gateway=0.0.0.0 netmask=24 I think that shouldn't be there...
by holvoetn
Tue Dec 10, 2024 3:19 pm
Forum: Containers
Topic: Heimdall container on AX3
Replies: 8
Views: 5417

Re: Heimdall container on AX3

Wouldn't it be sensible then to present your config for review ?
by holvoetn
Tue Dec 10, 2024 1:13 pm
Forum: Beginner Basics
Topic: PVID
Replies: 10
Views: 645

Re: PVID

Interesting read: Rules of the Mikrotik Club: 1) You do not use VLAN1 2) You DO NOT use VLAN1 3) You remove default user admin and set a strong password before connecting to the internet. 4) You do not use Quickset. 5) You do not use detect internet. 6)... Now #6 might be added as either: 6) You set...
by holvoetn
Tue Dec 10, 2024 12:45 pm
Forum: General
Topic: WireGuard, OpenVPN client not working
Replies: 4
Views: 351

Re: WireGuard, OpenVPN client not working

I have plenty of WG tunnels between MT gear and other stuff (Linux, Windows, Android, ...). It works. It is not impossible nor difficult if you use the correct settings. Having only TX and no RX is normal. Wireguard always tries to send. Only when you see something coming back, then you know it work...
by holvoetn
Tue Dec 10, 2024 12:31 pm
Forum: General
Topic: Winbox on arm64
Replies: 5
Views: 361

Re: Winbox on arm64

wine doesnt works native implementation will be nice Why not ? It should work. https://pimylifeup.com/raspberry-pi-wine/#:~:text=Installing%20Wine%20on%20to%20your,aren't%20compiled%20for%20ARM. Again: ask support. This is a USER forum. MT staff sometimes frequents this place but not always and cer...
by holvoetn
Tue Dec 10, 2024 11:39 am
Forum: Announcements
Topic: 📣 WinBox 4 is here 📣
Replies: 1594
Views: 399232

Re: 📣 WinBox 4 is here 📣

Same problem here.

WIN 11 23H2 22631.4460
After 3th attempt, it succeeded and restarted with new version.
by holvoetn
Tue Dec 10, 2024 11:26 am
Forum: Announcements
Topic: 📣 WinBox 4 is here 📣
Replies: 1594
Views: 399232

Re: 📣 WinBox 4 is here 📣

Same problem here.

WIN 11 23H2 22631.4460
by holvoetn
Tue Dec 10, 2024 10:16 am
Forum: General
Topic: map lite, Netinstall, Linux
Replies: 1
Views: 171

Re: map lite, Netinstall, Linux

Command used looks correct to me (as in: it's the same I have in my notes). But ... you should not forget to ALSO send wireless package. Wireless drivers are not in the base ROS package anymore as of 7.13. So the wireless package (or wifi-qcom or wifi-qcom-ac depending on device) needs to be send as...
by holvoetn
Tue Dec 10, 2024 9:43 am
Forum: General
Topic: Winbox on arm64
Replies: 5
Views: 361

Re: Winbox on arm64

Best to ask support but I guess you will have to revert to using Wine.
by holvoetn
Tue Dec 10, 2024 9:11 am
Forum: General
Topic: Do AP's come with all router functions?
Replies: 19
Views: 928

Re: Do AP's come with all router functions?

My personal experience with wireguard between two routers both on same ISP network with 1gig connections was in the 300 range.
Also curious as to what others see.
AX Lite to RB5009: 405/400 Mbps
by holvoetn
Tue Dec 10, 2024 8:48 am
Forum: Announcements
Topic: v7.16.2 [stable] is released!
Replies: 481
Views: 168756

Re: v7.16.2 [stable] is released!

Something odd going on with partitioning ... [xyz@RB5009] > part [xyz@RB5009] /partitions> activate copy-to find repartition restore-config-from set comment edit print reset save-config-to [xyz@RB5009] /partitions> print Flags: A - ACTIVE; R - RUNNING Columns: NAME, FALLBACK-TO, VERSION, SIZE # NAME...
by holvoetn
Tue Dec 10, 2024 8:03 am
Forum: General
Topic: Initial config of CRS304-4XG-IN?
Replies: 3
Views: 135

Re: Initial config of CRS304-4XG-IN?

Post config and specify what you want to do. 1 bridge All interfaces to bridge Possibly dhcp client to bridge or fixed ip. There is not much more to it. For config open terminal export file=anynameyouwish move file to PC redact serial number post contents back here in between [ code] [/ code] quotes...
by holvoetn
Mon Dec 09, 2024 8:10 pm
Forum: RouterBOARD hardware
Topic: OmniTik Wireless Cable
Replies: 3
Views: 548

Re: OmniTik Wireless Cable

And you still did not specify what the actual problem is...
by holvoetn
Mon Dec 09, 2024 8:03 pm
Forum: General
Topic: Do AP's come with all router functions?
Replies: 19
Views: 928

Re: Do AP's come with all router functions?

Correct observation :lol:
by holvoetn
Mon Dec 09, 2024 7:12 pm
Forum: Wireless Networking
Topic: Struggling with HAP AX2 wifi config
Replies: 21
Views: 1149

Re: Struggling with HAP AX2 wifi config

Why one bridge instead of one ?

...

If I wrote something wrong someone will correct me.
First line is not correct :lol:
by holvoetn
Mon Dec 09, 2024 6:25 pm
Forum: General
Topic: Do AP's come with all router functions?
Replies: 19
Views: 928

Re: Do AP's come with all router functions?

Every device runs ROS, so every device can act as a router if that is your question. Not all Mikrotik devices, there are devices running SWOS or SWOS Lite. But the ones that do run ROS, all have a full-featured version of ROS, taking into account some HW restrictions. (e.g. don't load too many addi...
by holvoetn
Mon Dec 09, 2024 5:52 pm
Forum: Containers
Topic: Heimdall container on AX3
Replies: 8
Views: 5417

Re: Heimdall container on AX3

What ROS version are you using ?
I seem to recall there have been some fixes especially for this permission problem.
by holvoetn
Mon Dec 09, 2024 5:11 pm
Forum: Wireless Networking
Topic: Wireless, CAPSMAN, update from pre 7.13
Replies: 2
Views: 291

Re: Wireless, CAPSMAN, update from pre 7.13

Two things ... you can perfectly keep using legacy wireless with those cap-ac devices. Al you need to do then is load wireless package on RB5009 (as of ROS 7.13) and you're good to go (just be aware the menu structure will be on another place. Not wifi but wireless/wifi, or something like that) If y...
by holvoetn
Mon Dec 09, 2024 2:31 pm
Forum: RouterOS beta
Topic: Wireguard use Hostname in endpoint
Replies: 66
Views: 23848

Re: Wireguard use Hostname in endpoint

Works already for quite a while so what is the problem ?

2024-12-09_13-30-08.jpg
by holvoetn
Mon Dec 09, 2024 10:30 am
Forum: Wireless Networking
Topic: Struggling with HAP AX2 wifi config
Replies: 21
Views: 1149

Re: Struggling with HAP AX2 wifi config

Well... If you are using your ax2 as an AP then you should try to enable VLAN filtering on your bridge. Well... yes I did, however I removed it while trying to get the router to become an AP, once it starts doing its thing I will put that config back. VLAN filtering is not likely to be the issue wi...
by holvoetn
Sat Dec 07, 2024 4:19 pm
Forum: Beginner Basics
Topic: Help with setup issues on RB951
Replies: 16
Views: 1036

Re: Help with setup issues on RB951

Netinstall and starting again from default is seldom a wrong approach :wink:
by holvoetn
Sat Dec 07, 2024 3:02 pm
Forum: Containers
Topic: PiHole / files not persistent Topic is solved
Replies: 6
Views: 669

Re: PiHole / files not persistent Topic is solved

Possibly an issue with the mount location ?

On RB5009 there is a confirmed issue with startup of some USB3 stick so I have to be really careful with my containers too after restart/ reboot.
by holvoetn
Sat Dec 07, 2024 1:27 pm
Forum: Beginner Basics
Topic: Help with setup issues on RB951
Replies: 16
Views: 1036

Re: Help with setup issues on RB951

I know.
And that usually means weak admin passwd.
by holvoetn
Sat Dec 07, 2024 11:43 am
Forum: Beginner Basics
Topic: Help with setup issues on RB951
Replies: 16
Views: 1036

Re: Help with setup issues on RB951

Of course it's always possible that router was compromised from LAN side (some computer running malware) so if things happen again, check your LAN clients (or restrict access to router management to a dedicated management port). That would mean a real weak passwd was used or someone in the 'trust' ...
by holvoetn
Sat Dec 07, 2024 9:54 am
Forum: General
Topic: Problem with 7.16.2
Replies: 4
Views: 387

Re: Problem with 7.16.2

Well ... and the question is?
That was my first reaction too when I approved that post :lol:

OP
post your config as requested, provide a bit more detail on how things fit in the larger picture and we can work from there.
by holvoetn
Fri Dec 06, 2024 7:07 pm
Forum: General
Topic: Wireguard VPN and Home LAN
Replies: 7
Views: 543

Re: Wireguard VPN and Home LAN

Use 0.0.0.0/0 as allowed addresses.
Everything will go down the tunnel then.
by holvoetn
Fri Dec 06, 2024 12:04 pm
Forum: Beginner Basics
Topic: hAP ax lite LTE6 how to set as repeater
Replies: 13
Views: 1010

Re: hAP ax lite LTE6 how to set as repeater

Just a minute.
It all depends on how the uplink is going to be... if LTE you are leaving the device wide open.
by holvoetn
Fri Dec 06, 2024 10:12 am
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Bonding still requires multi stream or you will have zero effect.
by holvoetn
Fri Dec 06, 2024 10:11 am
Forum: Wireless Networking
Topic: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]
Replies: 6
Views: 820

Re: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]

Not when used indoors.
Only 1 minute DFS.
by holvoetn
Fri Dec 06, 2024 9:42 am
Forum: Wireless Networking
Topic: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]
Replies: 6
Views: 820

Re: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]

What is wrong with 52 or 60 ? You don't HAVE to use 80MHz channels. Sometimes it is even better to go smaller.

Problem with these high ranges is that quite a bit of client devices are not able to use them.
So be careful and check.
by holvoetn
Fri Dec 06, 2024 8:32 am
Forum: Beginner Basics
Topic: hAP ax lite LTE6 how to set as repeater
Replies: 13
Views: 1010

Re: hAP ax lite LTE6 how to set as repeater

Once you are done we can proceed. Do not forget to update modem firmware as well. The device can be used as wifi repeater but I wonder why you use an LTE device for that ? How is it going to repeat the wifi signal ? Through local ethernet or via that LTE ? Maybe best to describe in more detail what ...
by holvoetn
Fri Dec 06, 2024 6:54 am
Forum: Wireless Networking
Topic: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]
Replies: 6
Views: 820

Re: Setting up wireless network with hAP ax3 and cAP ax [SOLVED]

Also: scan the environment for each ap separately. You have the tools available in ROS, use them.

Choose a frequency which is not already used by others ( even your own AP if it is close enough) to avoid interference.
by holvoetn
Thu Dec 05, 2024 11:47 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Depends on what you want to favor.
You can not ace each and every parameter. Not with the prices these things cost.
by holvoetn
Thu Dec 05, 2024 11:42 pm
Forum: General
Topic: CAPSMAN provisioning + DHCP server not working for CAP devices
Replies: 9
Views: 953

Re: CAPSMAN provisioning

Then it may be time to put your config on the table.
Controller and 1 wap AX please.
Make sure to remove all private/public info.
And please post both configs between code quotes.
by holvoetn
Thu Dec 05, 2024 11:39 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Errrmm ... you might as well look at the test results posted by Mikrotik then.
That's more or less what they do when conducting those tests.
by holvoetn
Thu Dec 05, 2024 6:14 pm
Forum: Beginner Basics
Topic: Secure Remote Access - QuickSet VPN
Replies: 16
Views: 1592

Re: Secure Remote Access - QuickSet VPN

First wireguard
Then winbox over the wireguard tunnel.

You accept the wireguard traffic.
And then you accept winbox coming via wireguard.

No marking / mangling needed.
by holvoetn
Thu Dec 05, 2024 4:07 pm
Forum: RouterBOARD hardware
Topic: hEX refresh (E50UG) - router for gigabit internet?
Replies: 21
Views: 2008

Re: hEX refresh (E50UG) - router for gigabit internet?

Unmanaged switch ? Not for me, thank you.
I wanted a managed switch running ROS on arm :lol:

Serious
purely for home lab purposes. To replace old Hex.
And W?BIC.





Why ? Because I Can.
by holvoetn
Thu Dec 05, 2024 4:00 pm
Forum: Beginner Basics
Topic: Mac filtering is not working
Replies: 1
Views: 292

Re: Mac filtering is not working

And AI is not able to solve that problem for you ? :o Put a log action on that drop rule and see which MAC addresses are being dropped. Chances are high it's not the one from DELL in your accept rule ... Are you sure there is nothing in between sender and your firewall changing src MAC address ? Are...
by holvoetn
Thu Dec 05, 2024 3:32 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

But, back to that thread.... It is lively, with an evolution, so it's a little hard to follow what the current/latest instructions and supporting files/apps are. I haven't tried that version Ammo posted there. As indicated, semaja's version works, I'm not touching it. Follow the steps in the first ...
by holvoetn
Thu Dec 05, 2024 3:19 pm
Forum: General
Topic: RB912UAG-2HPnD - wifi interface is missing
Replies: 17
Views: 912

Re: RB912UAG-2HPnD - wifi interface is missing

But this is about: RB912UAG-2HPnD, without OUT

https://mikrotik.com/product/RB912UAG-2HPnD

That's still being listed as active.
by holvoetn
Thu Dec 05, 2024 3:01 pm
Forum: General
Topic: RB912UAG-2HPnD - wifi interface is missing
Replies: 17
Views: 912

Re: RB912UAG-2HPnD - wifi interface is missing

What if you go back to last know working version( ROS5 ... uh, shivers ...) and then use upgrade path from within the system towards ROS6 and then towards ROS7 ? If there is truly a limit, that upgrade process should stop you. Netinstall most like doesn't. Last resort: ask support. File a ticket and...
by holvoetn
Thu Dec 05, 2024 2:53 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Being someone who also had my fingers on a keyboard the first time in 1980 (VIC-20, oldtimers will surely remember it with its 3.5Kb of free RAM) when I was 12... I never played games (ok, not much :lol: ) I'm an auto-didact and I am blessed to learn pretty fast. I learned myself to do so. Same with...
by holvoetn
Thu Dec 05, 2024 2:24 pm
Forum: General
Topic: Winbox mac-connect Windows 11 not working
Replies: 18
Views: 6086

Re: Winbox mac-connect Windows 11 not working

You are aware there is now a native Mac Winbox client ?
by holvoetn
Thu Dec 05, 2024 2:23 pm
Forum: General
Topic: Wireguard VPN and Home LAN
Replies: 7
Views: 543

Re: Wireguard VPN and Home LAN

Again theoretically... yes but you see what rabbit hole you're going to get into ? What if there is another device with overlapping IP address ? Again: is it only the PC of the USER requiring access ? In that case the issue might be a lot less. Simply (during that session) let all traffic go over VP...
by holvoetn
Thu Dec 05, 2024 12:48 pm
Forum: Wireless Networking
Topic: Beginner CAPsMAN questions
Replies: 8
Views: 710

Re: Beginner CAPsMAN questions

You mean my settings in /interface/wifi/provisioning/export , but instead per AP and Radio MAC defined there? I guess, by setting which frequency you mean, so you don't have any overlapping, which could happen, if AP chooses on its own a frequency from list? Yes. If you let them choose, it might st...
by holvoetn
Thu Dec 05, 2024 12:42 pm
Forum: RouterBOARD hardware
Topic: hEX refresh (E50UG) - router for gigabit internet?
Replies: 21
Views: 2008

Re: hEX refresh (E50UG) - router for gigabit internet?

Could be a config issue but I don't think so. These results are a pure consequence from having that ether1 port directly connected to CPU and not to switch chip. Keep in mind: this was a MANAGED SWITCH config so everything VLAN not being HW offloaded to switch, has to pass CPU. Again: I used the EXA...
by holvoetn
Thu Dec 05, 2024 12:22 pm
Forum: General
Topic: hEX refresh and Verizon FIOS Slow Upload Speed
Replies: 6
Views: 602

Re: hEX refresh and Verizon FIOS Slow Upload Speed

If I did not make it clear enough that it wasn’t just a hEX refresh issue when I mentioned others having the same (or similar) issues with other routers, I don’t know what to say there…
No, no, you made that very clear :lol:
by holvoetn
Thu Dec 05, 2024 12:14 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

PC with intel AX211, so it supports 160Mhz-wide channels.
About 940-950Mbps using iperf3 to internal iperf container, which are normal values for a 1Gb link.
So the limit is the ethernet port, I guess.
by holvoetn
Thu Dec 05, 2024 12:11 pm
Forum: Wireless Networking
Topic: Beginner CAPsMAN questions
Replies: 8
Views: 710

Re: Beginner CAPsMAN questions

You don't need anything else on RB5009 except for base ROS package, capsman is available and can be used. High level it looks ok with some remarks: You allow channels on 5Ghz which may result in overlaps/interference if you use 160MHz on your APs (e.g. 5180 and 5260, 5500 and 5580). You also let the...
by holvoetn
Thu Dec 05, 2024 11:47 am
Forum: General
Topic: Wireguard VPN and Home LAN
Replies: 7
Views: 543

Re: Wireguard VPN and Home LAN

Connecting 2 subnets with the same IP-range is asking for trouble. You WILL get conflicts. I'm not saying it can not be done (you still need to take care of overlapping addresses) but you will probably create a lot of other problems. Changing the home subnet is the best option in my view. One of the...
by holvoetn
Thu Dec 05, 2024 10:57 am
Forum: General
Topic: ND Proxy
Replies: 2
Views: 379

Re: ND Proxy

Biggest problem of these times ... AI making things up and most are unable to determine what's right or wrong and just think is has to be right. It LOOKS right but it is not, as you have seen. There is no proxy-property to be set in ROS7. It looks to me this is coming from ROS6 because The Dude (new...
by holvoetn
Thu Dec 05, 2024 10:47 am
Forum: Beginner Basics
Topic: SSID not broadcasting
Replies: 1
Views: 262

Re: SSID not broadcasting

Can you access the device using webfig (webbrowser) or Winbox ?

Are both 2Ghz and 5GHz radios not transmitting ?
When certain frequencies are being used for 5GHz it can take several minutes before it appears due to radar detection checks (even up to 15 minutes)
by holvoetn
Thu Dec 05, 2024 10:16 am
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Actually, that's 2 separate gigabit ethernet ports. It may seem strange but you will rarely get there. That 2400Mbit/s is the physical data rate. Has little to do with the actual throughput (though higher data rate usually results in higher throughput). Rule of thumb: roughly 50% of data rate is wha...
by holvoetn
Thu Dec 05, 2024 10:14 am
Forum: RouterBOARD hardware
Topic: hEX refresh (E50UG) - router for gigabit internet?
Replies: 21
Views: 2008

Re: hEX refresh (E50UG) - router for gigabit internet?

FWIW ... from PC using wAP AX as AP and Hex Refresh in between towards RB5009 as router with iperf3 container ... I was able to get 900Mbps. Hex wasn't even sweating. But that's with Hex Refresh in managed switch mode (read: VLANs being used) NOT using ether1 as uplink ! In that same config using et...
by holvoetn
Thu Dec 05, 2024 9:38 am
Forum: General
Topic: CAPSMAN provisioning + DHCP server not working for CAP devices
Replies: 9
Views: 953

Re: CAPSMAN provisioning

Are you referring to caps radios becoming visible in capsman or the radios themselves becoming visible to clients ? The former should be rather quick. On my installations it is a matter of seconds after reboot. The latter can take up to 15 minutes if you use DFS frequencies (radar checks needs to be...
by holvoetn
Thu Dec 05, 2024 9:33 am
Forum: General
Topic: hEX refresh and Verizon FIOS Slow Upload Speed
Replies: 6
Views: 602

Re: hEX refresh and Verizon FIOS Slow Upload Speed

So the problem is clearly with Verizon ONT ... Just wondering: What port did you use for uplink to ISP device ? I suppose ether1 ? You are aware ether1 is handled completely different from the 4 other ether ports on that particular version of Hex ? (see block diagram) When you do speedtests maxing o...
by holvoetn
Thu Dec 05, 2024 9:19 am
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Sure, why not ?
by holvoetn
Thu Dec 05, 2024 8:23 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

So, is something wrong with 7.17RC for RB5009 with Capsman? Or was I just very unlucky for some reason? I don't think it has anything to do with capsman. I had a complete crash on my RB5009 (needed to power cycle to get it back) and had to revert to 7.17b6. After trying to partition that device, it...
by holvoetn
Thu Dec 05, 2024 8:11 am
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

Are you saying that the hAP ax2 is more versitile than the hAP ax3? If so, how? Try to fit an AX3 in your backpack. Or simply move it around to another place. Those big ears make it a bit less handy for that. I'd love to hear what netinstalled "using container on AX3" means? Simple. Usb s...
by holvoetn
Wed Dec 04, 2024 7:50 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

For versatility I would also go for AX2 but ... it has no usb port.

Just netinstalled 5 cap ac ( ros and wifi-qcom-ac) using container on AX3.
First time right on each occurrence.
by holvoetn
Wed Dec 04, 2024 7:36 pm
Forum: Wireless Networking
Topic: RB4011iGS+5HacQ2HnD-IN and WPA3
Replies: 14
Views: 2048

Re: RB4011iGS+5HacQ2HnD-IN and WPA3

Sure. Each slave radio needs to be attached to a master and will take over the physical properties but can have separate SSID and security. Each of those slave radios will be an interface on its own and then the VLAN game can be applied again. Just don't overdo it because each virtual SSID will ulti...
by holvoetn
Wed Dec 04, 2024 7:34 pm
Forum: Beginner Basics
Topic: Port based Routing to 2 identical IP [SOLVED]
Replies: 11
Views: 1231

Re: Port based Routing to 2 identical IP [SOLVED]

Good job !
by holvoetn
Wed Dec 04, 2024 6:54 pm
Forum: Wireless Networking
Topic: Which is fastest wifi device
Replies: 33
Views: 2034

Re: Which is fastest wifi device

From those 3, wap AX since it allows for 160MHz channels (if you can use it within your environment. I can :lol: ).
by holvoetn
Wed Dec 04, 2024 4:45 pm
Forum: General
Topic: RB912UAG-2HPnD - wifi interface is missing
Replies: 17
Views: 912

Re: RB912UAG-2HPnD - wifi interface is missing

It does seem odd wireless package is loaded yet not being used ?

You could try to simply MANUALLY add the wifi interface (in case that interface really needs a long time before it becomes operational after startup). What happens then ?
by holvoetn
Wed Dec 04, 2024 4:36 pm
Forum: Beginner Basics
Topic: Port based Routing to 2 identical IP [SOLVED]
Replies: 11
Views: 1231

Re: Port based Routing to 2 identical IP [SOLVED]

I think I have seen a similar question recently and if I'm not mistaking, you need to use some sort of address remapping based on port.

Edit: I knew I saw it already before not too long ago :D

viewtopic.php?p=1108865#p1108865
by holvoetn
Wed Dec 04, 2024 3:53 pm
Forum: General
Topic: VPN Site to site ?
Replies: 11
Views: 789

Re: VPN Site to site ?

What model of mikrotik routers do you have in Venezuela and Espana?
It's hidden in the wall of text :lol:

AC3 in Venezuela, already present.
Planned to buy AC2 for Spain.
by holvoetn
Wed Dec 04, 2024 3:38 pm
Forum: General
Topic: Is mAP still relevant with RouterOS 7.16 ?
Replies: 5
Views: 443

Re: Is mAP still relevant with RouterOS 7.16 ?

100Mbps over 2.4GHz legacy wireless ? Yeah, one can dream. Make no mistake about my sentiments, however. That mAP is still a fabulous device for its price and flexibility ! I even prefer it over mAP Lite (I do keep that one in my backpack wherever I go). But I get what you mean. Everyone always refe...
by holvoetn
Wed Dec 04, 2024 2:50 pm
Forum: General
Topic: VPN Site to site ?
Replies: 11
Views: 789

Re: VPN Site to site ?

For wireguard you only need one public IP, as long as that is present, there is no problem to setup a VPN tunnel which you then can cross from the other side, there are plenty of examples how this should be done, do you have by now also the idea that use of proper interpunction and line breaks is a ...
by holvoetn
Wed Dec 04, 2024 11:25 am
Forum: General
Topic: Is mAP still relevant with RouterOS 7.16 ?
Replies: 5
Views: 443

Re: Is mAP still relevant with RouterOS 7.16 ?

It is more an issue with its routing speed, that may be too slow for your requirements, it should be in the 150-200 Mbit range.
And how are you going to do that with only 100Mb ports ??? :lol:
by holvoetn
Wed Dec 04, 2024 11:23 am
Forum: General
Topic: Is mAP still relevant with RouterOS 7.16 ?
Replies: 5
Views: 443

Re: Is mAP still relevant with RouterOS 7.16 ?

Yes, works just fine !

(IPSEC to Azure, Wireguard, EOIP, , DHCP for about 15 devices, routing, ISP connection of 50/20Mb...)
"only" 19d uptime because I did upgrade of that version, before it was 139d.

2024-12-04_10-22-02.jpg
by holvoetn
Wed Dec 04, 2024 7:53 am
Forum: Beginner Basics
Topic: 5GHz Wireless
Replies: 2
Views: 346

Re: 5GHz Wireless

Can go up to 15 minutes...
by holvoetn
Tue Dec 03, 2024 6:41 pm
Forum: Beginner Basics
Topic: Copying a hAP setup to a hAP ac2
Replies: 2
Views: 313

Re: Copying a hAP setup to a hAP ac2

Manually is the safest way. Also observe defaults which may be present on the ac2 which may have been different on the older one. Go for the newer settings then. Don't copy MAC addresses for bridge or interfaces. They will be filled in by default. On itself it is not really a big deal, done it plent...
by holvoetn
Tue Dec 03, 2024 6:32 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

My experience so far is that wifi-qcom-ac is just not worth the trouble, it is way more unstable and there is no significant performance gain so if you don't absolutely need new CAPsMAN just stay with the older wireless package... I disagree. +1 on disagreeing. MAJOR difference in performance betwe...
by holvoetn
Tue Dec 03, 2024 6:26 pm
Forum: Wireless Networking
Topic: Cap to cap connection
Replies: 7
Views: 514

Re: Cap to cap connection

Super, no issue there then !
by holvoetn
Tue Dec 03, 2024 3:34 pm
Forum: Wireless Networking
Topic: Cap to cap connection
Replies: 7
Views: 514

Re: Cap to cap connection

As long as the second device gets sufficient power and it can " see" capsman controller network-wise, no problem. What i want to do is: capsman<----wired--->cap1<---wired--->cap2 Or it is daisy-chained (controller wired to cap wired to 2nd cap) in which case there should not be a problem ...
by holvoetn
Tue Dec 03, 2024 2:55 pm
Forum: Beginner Basics
Topic: firewall drop connection
Replies: 6
Views: 596

Re: firewall drop connection

You got a point.
You can check for src_address!=192.168.88.0/27, dst_address=192.168.88.0/27
by holvoetn
Tue Dec 03, 2024 2:52 pm
Forum: Containers
Topic: Fitting a container inside hAP ax lite LTE6
Replies: 8
Views: 983

Re: Fitting a container inside hAP ax lite LTE6

I doubt that USB-C connector can be used for anything else then powering the device. It's not even mentioned on block diagram (whereas for other devices where I know it works, it clearly is indicated as USB). I even seem to recall Normis (MT staff) mentioned it somewhere (would have to look for it)....
by holvoetn
Tue Dec 03, 2024 11:13 am
Forum: Wireless Networking
Topic: Quectel Redcap RG255C-GL PCI-e 5G Modem Support
Replies: 5
Views: 1250

Re: Quectel Redcap RG255C-GL PCI-e 5G Modem Support

Best to fire ticket to support.
They are the only ones able to tell if and when it can be supported.
by holvoetn
Tue Dec 03, 2024 9:13 am
Forum: General
Topic: RouterOS v7.16 on CRS354-48G-4S+2Q+ (and other models) = slow, predictable crash - OOM
Replies: 11
Views: 2151

Re: RouterOS v7.16 on CRS354-48G-4S+2Q+ (and other models) = slow, predictable crash - OOM

Just to check:
did anyone create a ticket to support about this ?
Otherwise chances are high they do not know about it ...
by holvoetn
Tue Dec 03, 2024 8:32 am
Forum: General
Topic: Firewall rules sanity check
Replies: 2
Views: 363

Re: Firewall rules sanity check

Not an expert either so my personal view. Functionally both are mostly the same. In some edge case (which I can not directly imagine) the second version will catch more so I guess it is the better option. On second option: why use 2 rules for hw-offload or not ? Since I have been looking into this m...
by holvoetn
Tue Dec 03, 2024 8:02 am
Forum: Beginner Basics
Topic: Problem after updating to 7.16.2
Replies: 15
Views: 1612

Re: Problem after updating to 7.16.2

My initial comment to move that one rule to the top was based on the rest not being secure enough already. The only true way to solve this: Use outgoing vpn to some public accessible ip ( either your own or some cloud server) and use that as pivot point to get back in. And then you can close that op...
by holvoetn
Mon Dec 02, 2024 9:36 pm
Forum: Beginner Basics
Topic: Problem after updating to 7.16.2
Replies: 15
Views: 1612

Re: Problem after updating to 7.16.2

Whenever you change something in firewall, clear all connections or wait 10 minutes or reboot.
by holvoetn
Mon Dec 02, 2024 7:09 pm
Forum: Beginner Basics
Topic: Problem after updating to 7.16.2
Replies: 15
Views: 1612

Re: Problem after updating to 7.16.2

Move this rule as first on input chain

add action=accept chain=input comment=WinBox dst-port=8321 protocol=tcp
by holvoetn
Mon Dec 02, 2024 6:19 pm
Forum: Beginner Basics
Topic: Problem after updating to 7.16.2
Replies: 15
Views: 1612

Re: Problem after updating to 7.16.2

Open terminal
/export file=anynameyouwish
Move file to PC
Open file with text editor and remove serial number, passwds, public IP,...
Post contents between [code] [/code] quotes for easier readability.
by holvoetn
Mon Dec 02, 2024 6:00 pm
Forum: General
Topic: am i using SOHO Firewall or not?
Replies: 38
Views: 3254

Re: am i using SOHO Firewall or not?

That recommendation was repeated in post #11 and #12
I was going to post again in my view starting from default would be the ONLY sensible starting point but alas ... some are more interesting in patching holes instead of starting from a clean, known to be working config.
by holvoetn
Mon Dec 02, 2024 5:55 pm
Forum: Beginner Basics
Topic: HAPac^2 Ethernet Mode
Replies: 5
Views: 730

Re: HAPac^2 Ethernet Mode

My view:
Then you did not reset to default config.
You can also do this from Winbox/webfig, you know ? System / reset configuration.
Uncheck Caps mode
check Keep users.
Uncheck No Default config
Check Do not backup
by holvoetn
Mon Dec 02, 2024 5:28 pm
Forum: Beginner Basics
Topic: firewall drop connection
Replies: 6
Views: 596

Re: firewall drop connection

hmmm... 24 is not a nice binary number like 16 or 32 (110000 vs 10000/100000). Using a subnet mask is out then. You can add those addresses in an address list and use that one in your firewall rule, I would think ? Address list SERVER_RANGE (or whatever), add all addresses from 192.168.88.1 to 192.1...
by holvoetn
Mon Dec 02, 2024 5:09 pm
Forum: General
Topic: Hex REFRESH
Replies: 11
Views: 721

Re: Hex REFRESH

Why the question asking the question? Typically the LTS is acutally the most stable version available, who doesnt want that (rhetorical question)! However, I have moved off vers6 on my main router recently to ver 7.16, as an LTS for ver7 seems unlikely. :-) yep sir, you’re correct. more stable than...
by holvoetn
Mon Dec 02, 2024 4:35 pm
Forum: General
Topic: Hex REFRESH
Replies: 11
Views: 721

Re: Hex REFRESH

Personal view: To be honest, the way MT handles their versions, LTS-label is not really worth a lot to me. Some may value it as being super stable (based on what ??) but there will always be bugs in it which are sorted out in subsequent non-LTS versions. Which is the more stable then ? LTS or the ne...
by holvoetn
Mon Dec 02, 2024 4:03 pm
Forum: General
Topic: Hex REFRESH
Replies: 11
Views: 721

Re: Hex REFRESH

There is no LTS version yet for ROS7 and since Hex Refresh came out of factory with 7.15.3 (I have one right here on my desk), you can not go lower.

But I have the same remark: why the question for LTS ?
by holvoetn
Mon Dec 02, 2024 4:01 pm
Forum: Beginner Basics
Topic: correcting password field via CLI
Replies: 5
Views: 484

Re: correcting password field via CLI

Observation:
user passwd the same as user name ? Then it could just as well be kept blank. Gives the same level of security.
by holvoetn
Mon Dec 02, 2024 3:36 pm
Forum: Beginner Basics
Topic: correcting password field via CLI
Replies: 5
Views: 484

Re: correcting password field via CLI

Prepare everything in Excel or whatever and then use text functions to create the script. Or any other text processing tool of your preference. I once had to move over about 100 DHCP leases based on Mac address from Win DHCP server to RB5009 and used that approach via Excel. Export from MS Windows D...
by holvoetn
Mon Dec 02, 2024 12:45 pm
Forum: Wireless Networking
Topic: "not responding" - f.k.a. SA Query timeout
Replies: 272
Views: 43058

Re: "not responding" - f.k.a. SA Query timeout

@gjmelena
And your point is ?? It's not really clear from your post.

PS I always use create enabled on capsman provisioning, simply to avoid numbers creeping up whenever a reboot/reconnect happens for whatever reason.
by holvoetn
Mon Dec 02, 2024 12:42 pm
Forum: General
Topic: Wireguard is blocked by ISP any other solution
Replies: 20
Views: 1421

Re: Wireguard is blocked by ISP any other solution

Or change ISP ?
A party blocking VPN is not worth to receive your money.
by holvoetn
Mon Dec 02, 2024 12:22 pm
Forum: Wireless Networking
Topic: Cap to cap connection
Replies: 7
Views: 514

Re: Cap to cap connection

Yes, the second device is wired to the capsman. Now you are contradicting yourself :D Either it is directly connected and then there is no issue. Or it is daisy-chained (controller wired to cap wired to 2nd cap) in which case there should not be a problem either if that first cap is in full bridged...
by holvoetn
Mon Dec 02, 2024 11:50 am
Forum: Announcements
Topic: 📣 WinBox 4 is here 📣
Replies: 1594
Views: 399232

Re: 📣 WinBox 4 is here 📣

Please implemnt column vertical divider lines as it's much easier to read data and recognize where one info ends and a new one starts.
Agree.

On Windows 11 you can't really see it unless you start hovering over the area with your mouse. Inefficient.
by holvoetn
Sun Dec 01, 2024 7:18 pm
Forum: Wireless Networking
Topic: Frequency control
Replies: 3
Views: 371

Re: Frequency control

Configure 2GHz radio and leave 5GHz as it is ...
by holvoetn
Sun Dec 01, 2024 5:41 pm
Forum: Wireless Networking
Topic: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion
Replies: 17
Views: 2053

Re: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion

Vlan and qcom-ac using capsman is ... special.
With ax it is really easy.
by holvoetn
Sun Dec 01, 2024 3:55 pm
Forum: Wireless Networking
Topic: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion
Replies: 17
Views: 2053

Re: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion

No, you do not have to use VLAN.

If you setup devices separately, you can use this approach on each.
https://tangentsoft.com/mikrotik/wiki?n ... ns%20VLANs

But to be honest, once you get how vlans work, they make things easier.
by holvoetn
Sun Dec 01, 2024 2:28 pm
Forum: Wireless Networking
Topic: how to add virtual wifi?
Replies: 4
Views: 433

Re: how to add virtual wifi?

And the solution is ?
Might help others having the same issue as you...
by holvoetn
Sun Dec 01, 2024 2:20 pm
Forum: Beginner Basics
Topic: CHECK MY CONFIGURATION
Replies: 3
Views: 415

Re: CHECK MY CONFIGURATION

First, please have a look at the
code
tag. That makes it easier to read configs.
Fixed.
by holvoetn
Sun Dec 01, 2024 2:11 pm
Forum: Wireless Networking
Topic: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion
Replies: 17
Views: 2053

Re: Advice please hardware/Wifi/Wireless/CapsMan/VLAN confusion

1- Your choice. See later. 2- wifi is using qcom drivers. Wireless is using MT own developed drivers. With arrival of AX line, MT decided to use qcom drivers. qcom-ac was also made to get wave2 compatibility for older HW having compatible chipsets. 3- Who knows ? :D 4- It just has been redone with w...
by holvoetn
Sun Dec 01, 2024 12:58 pm
Forum: Beginner Basics
Topic: Forward chain "drop all else"- counter is zero
Replies: 10
Views: 799

Re: Forward chain "drop all else"- counter is zero

It doesn't harm, true.

But if everything is already handled before, it doesn't make sense. That's all.
by holvoetn
Sun Dec 01, 2024 12:33 pm
Forum: Beginner Basics
Topic: help with DHCP on VLAN
Replies: 5
Views: 535

Re: help with DHCP on VLAN

Not sure where to start, quite a bit of things which are off. You may want to start reading this excellent tutorial on setting up VLAN: https://forum.mikrotik.com/viewtopic.php?t=143620 Where is the firewall ? Where is DHCP server for the rest of your network ? Where is address assignments for route...
by holvoetn
Sun Dec 01, 2024 10:47 am
Forum: Beginner Basics
Topic: Forward chain "drop all else"- counter is zero
Replies: 10
Views: 799

Re: Forward chain "drop all else"- counter is zero

Simple explanation. The rule doesn't get hit. As a test, disable the forward, invalid rule. See what happens. It's not because a rule doesn't count it is not working. It simply means all the rest before, catches everything before it gets there. But in default firewall, that specific combination is n...
by holvoetn
Sun Dec 01, 2024 10:45 am
Forum: General
Topic: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]
Replies: 95
Views: 8140

Re: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]

And now all notifications from the past weeks are coming through :shock:
by holvoetn
Sat Nov 30, 2024 11:08 pm
Forum: Wireless Networking
Topic: how to add virtual wifi?
Replies: 4
Views: 433

Re: how to add virtual wifi?

And where is the virtual wifi in that config ??

If you add it again, don't forget to attach it to bridge.
by holvoetn
Sat Nov 30, 2024 11:05 pm
Forum: General
Topic: am i using SOHO Firewall or not?
Replies: 38
Views: 3254

Re: am i using SOHO Firewall or not?

Netinstall
Start from default
Learn.
by holvoetn
Sat Nov 30, 2024 11:05 pm
Forum: Beginner Basics
Topic: Hex capsman
Replies: 5
Views: 449

Re: Hex capsman

Yes, for managing wave2 radios it is already there.
by holvoetn
Sat Nov 30, 2024 11:04 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

That container thing I saw as well.
Luckily it was pretty straightforward to bring them back to life.
by holvoetn
Sat Nov 30, 2024 8:47 pm
Forum: Wireless Networking
Topic: Cap to cap connection
Replies: 7
Views: 514

Re: Cap to cap connection

As long as the second device gets sufficient power and it can " see" capsman controller network-wise, no problem.
by holvoetn
Sat Nov 30, 2024 7:31 pm
Forum: Beginner Basics
Topic: Hex capsman
Replies: 5
Views: 449

Re: Hex capsman

IF , and that's intentionally in capitals, AC3 uses wifi-qcom-ac drivers.
Then wave2 capsman will work on hex.

If AC3 still uses legacy wireless, you need to load wireless package as well on Hex but storage space might become very restricted.
by holvoetn
Sat Nov 30, 2024 4:13 pm
Forum: General
Topic: am i using SOHO Firewall or not?
Replies: 38
Views: 3254

Re: am i using SOHO Firewall or not?

That would be my take as well.
Given the inexperience of the user, no offense intented, it's best to start from default with a netinstalled device.
by holvoetn
Sat Nov 30, 2024 10:54 am
Forum: General
Topic: am i using SOHO Firewall or not?
Replies: 38
Views: 3254

Re: am i using SOHO Firewall or not?

Looks like someone emptied that firewall.
I hope you haven't got it connected to a WAN interface ?
by holvoetn
Fri Nov 29, 2024 8:37 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

Well, that planned netinstall came earlier then expected.
Wanted to partition my device for future mishaps. Completely bricked.

Luckily I had an export from 3 days ago. Biggest problem was getting netinstall to work (after some attempts with Windows. I used container on AX3, first time right).
by holvoetn
Fri Nov 29, 2024 8:01 pm
Forum: Beginner Basics
Topic: Just updated mAP firmware and now it's broke
Replies: 4
Views: 500

Re: Just updated mAP firmware and now it's broke

As of 7.13 wireless or wifi-qcom, depending on your device, is a separate package.

I have a couple of mAP devices running just fine with ROS7 incl wireguard and IPSEC tunnels.
by holvoetn
Fri Nov 29, 2024 5:55 pm
Forum: Wireless Networking
Topic: CAPsMAN and VLAN filtering
Replies: 5
Views: 505

Re: CAPsMAN and VLAN filtering

And still you don't answer all questions... ether4 on RB5009 to the swith. ether10 and ether12 from the switch to CAP devices. Which incoming port on the switch ? From your switch config I see there is a trunk specified for ether1 and 12 for VLANs 20 and 30. /interface bridge vlan add bridge=bridge ...
by holvoetn
Fri Nov 29, 2024 5:07 pm
Forum: Wireless Networking
Topic: CAPsMAN and VLAN filtering
Replies: 5
Views: 505

Re: CAPsMAN and VLAN filtering

You did not specify which is the port from your RB5009 going to the switch ?
Which port on the switch does it come in ?

Which ports on switch are feeding CAP devices ?

Also, it is generally advised NOT to use VLAN1. Use VLAN all the way or don't use it all.
by holvoetn
Fri Nov 29, 2024 11:16 am
Forum: Wireless Networking
Topic: CAPsMAN and VLAN filtering
Replies: 5
Views: 505

Re: CAPsMAN and VLAN filtering

You do not specify which router, which switch, which APs (capsman behavior w.r.t. VLAN is quite different when talking about legacy wireless or wave2 wifi) You do not specify how things are connected. And you do not show your config, what you already tried. So I doubt anyone can have a clue, without...
by holvoetn
Fri Nov 29, 2024 11:06 am
Forum: General
Topic: how to create a master port on crs
Replies: 4
Views: 470

Re: how to create a master port on crs

Errmm ... that's an article from 2014 ?!
by holvoetn
Fri Nov 29, 2024 11:03 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

... something weird happened in 7.17RC...
Really ?
viewtopic.php?p=1111415#p1111415
by holvoetn
Fri Nov 29, 2024 6:54 am
Forum: Wireless Networking
Topic: Capsman update mechanism
Replies: 1
Views: 327

Re: Capsman update mechanism

Has been a while since I used "old" capsman but I assume it still works more or less the same with the wave2 version. When updating, it's started all at once. And since all package files then need to come from your controller, it may feel like it takes more time since you may create a bott...
by holvoetn
Thu Nov 28, 2024 6:31 pm
Forum: General
Topic: LTE Interface Problems in OS 7.16.1
Replies: 3
Views: 437

Re: LTE Interface Problems in OS 7.16.1

I've seen LTE interface disappear due to FW crash on modem (FW bug on AX Lite LTE with FG621-EA modem, some versions ago). You could recreate it but it vanishes again shortly after creating (when the crash happens again). But this should show in logs. It might be possible you have to go back to ROS ...
by holvoetn
Thu Nov 28, 2024 5:35 pm
Forum: Virtualization
Topic: Are there prebuilt Linux Images for Metarouter? (OpenWrt or other Linux distros)
Replies: 2
Views: 445

Re: Are there prebuilt Linux Images for Metarouter? (OpenWrt or other Linux distros)

To make it simple;
Requirements
Container package is compatible with arm arm64 and x86 architectures. Using of remote-image (similar to docker pull) functionality requires a lot of free space in main memory, 16MB SPI flash boards may use pre-build images on USB or other disk media.
by holvoetn
Thu Nov 28, 2024 1:20 pm
Forum: General
Topic: How to block webpages by URL?
Replies: 5
Views: 612

Re: How to block webpages by URL?

Use external devices more suited for this type of action (and those usually come with a HEAVY price tag).
Not L7 filters on Mikrotik.
by holvoetn
Thu Nov 28, 2024 11:00 am
Forum: Beginner Basics
Topic: im begginer and i have hex refresh
Replies: 5
Views: 529

Re: im begginer and i have hex refresh

Are you expecting us to make your config ?
You may as well ask ChatGPT, who knows what comes out given the limited info you provided.

First show what you already did yourself and you need to describe in a lot more detail what's needed where.
by holvoetn
Thu Nov 28, 2024 9:54 am
Forum: Beginner Basics
Topic: multple vlans same dhcp subnet
Replies: 4
Views: 536

Re: multple vlans same dhcp subnet

For starters ... why create 2 VLANs yet overlapping subnets ? Use 192.168.0.0/24 for first vlan Use 192.168.1.0/24 for second vlan Much easier. You may want to read this nice tutorial: https://forum.mikrotik.com/viewtopic.php?t=143620 Secondly: supout should NEVER be posted here. Only communicated t...
by holvoetn
Wed Nov 27, 2024 10:24 pm
Forum: Wireless Networking
Topic: Any reason not use 20Mhz channel on AX devices, if stability is preferred over max speed?
Replies: 11
Views: 1797

Re: Any reason not use 20Mhz channel on AX devices, if stability is preferred over max speed?

Even for 5GHz I use 20MHz in that setup. All cAP AX and AX3 devices. Stable as a house AND more options to stay on below-DFS channels (scanners in use there don't support higher channels so I had to cut down channel width to create more possibilities to avoid overlaps). That one higher channel is fo...
by holvoetn
Wed Nov 27, 2024 10:12 pm
Forum: Beginner Basics
Topic: routing in mikrotik
Replies: 3
Views: 414

Re: routing in mikrotik

Moved to beginner basics 8)
by holvoetn
Wed Nov 27, 2024 10:12 pm
Forum: Wireless Networking
Topic: Plain 802.11-an better then NV2!
Replies: 13
Views: 6295

Re: Plain 802.11-an better then NV2!

You do know that was a response to a 6-year old thread ??
by holvoetn
Wed Nov 27, 2024 8:00 pm
Forum: Beginner Basics
Topic: routing in mikrotik
Replies: 3
Views: 414

Re: routing in mikrotik

Add route for subnet using gateway where it needs to go to.

So ... routing.
by holvoetn
Wed Nov 27, 2024 7:31 pm
Forum: Wireless Networking
Topic: CAPSMAN Setup Help for better roaming
Replies: 34
Views: 2686

Re: CAPSMAN Setup Help for better roaming

Correct.
by holvoetn
Wed Nov 27, 2024 4:57 pm
Forum: General
Topic: Netinstall issue
Replies: 4
Views: 424

Re: Netinstall issue

Nice link :lol: Want to emphasize again that even after 2 years some users (yeah, me included) have a much higher success rate using Linux for netinstall. Recently I even started using a container option on AX3 (am going to move it to Hex Refresh which I recently added to home lab setup). Another op...
by holvoetn
Wed Nov 27, 2024 4:50 pm
Forum: Beginner Basics
Topic: Secure Remote Access - QuickSet VPN
Replies: 16
Views: 1592

Re: Secure Remote Access - QuickSet VPN

Or some cheap VPS in the cloud and install CHR on it, then use that one as pivot point for all Wireguard connections ? Shouldn't be too expensive ? Anav always claims it's about 7$ / month but I don't know what supplier provides it. The IP address doesn't need to be static per se. You can also use a...
by holvoetn
Wed Nov 27, 2024 3:43 pm
Forum: Beginner Basics
Topic: Secure Remote Access - QuickSet VPN
Replies: 16
Views: 1592

Re: Secure Remote Access - QuickSet VPN

If your device is passing the requirements, you can also use Mikrotik's Back To Home.
It's meant for those cases where one side is behind CGNAT.
by holvoetn
Wed Nov 27, 2024 1:43 pm
Forum: General
Topic: Complaints from v7.17rc [testing]
Replies: 45
Views: 3445

Re: Complaints from v7.17rc [testing]

Just checked the details of the ticket again ... The problem was that with 7.17b4, after changing device mode to advanced, routerboard settings could be changed without first changing that setting (it was "yes" without doing anything). It seems that part has been "corrected" (7.1...
by holvoetn
Wed Nov 27, 2024 1:28 pm
Forum: General
Topic: Complaints from v7.17rc [testing]
Replies: 45
Views: 3445

Re: Complaints from v7.17rc [testing]

On routerboard, there is an important thing to be taken into account... upgrade or autoupgrade FW to latest version. There have been quite a bit of fixes lately where this upgrade was needed for some corrections to work afterwards. E.g. *) ethernet - improved linking after reboot for hAP ax lite dev...
by holvoetn
Wed Nov 27, 2024 1:10 pm
Forum: Wireless Networking
Topic: cAP or hAPax3?
Replies: 8
Views: 647

Re: cAP or hAPax3?

I could do the corner, but I'd be surprised if it make much difference. Line of sight will be better for most of the area so it will make a difference. 2 APs, let alone table mounted, would fail the WAF (wife acceptance factor) immediately. In fact, it is likely that the AP on the outside of the wa...
by holvoetn
Wed Nov 27, 2024 11:29 am
Forum: Announcements
Topic: v7.16.2 [stable] is released!
Replies: 481
Views: 168756

Re: v7.16.2 [stable] is released!

Since this version has some specific changes related to certificates for capsman, it might be needed to clear certificates on capsman controller.
by holvoetn
Wed Nov 27, 2024 11:09 am
Forum: Wireless Networking
Topic: Chateau 5G ax - 802.11ac and ax support [SOLVED]
Replies: 5
Views: 562

Re: Chateau 5G ax - 802.11ac and ax support [SOLVED]

Just one more question - how can I disable TKIP as encryption method and the legacy standards - a/b/g and leave only n/ac/ax? Currently I haven't checked any of the cyphers and I guess that all of them are acceptable. As for legacy standards, in legacy wireless drivers this was possible to specify....
by holvoetn
Wed Nov 27, 2024 10:54 am
Forum: Announcements
Topic: v7.16.2 [stable] is released!
Replies: 481
Views: 168756

Re: v7.16.2 [stable] is released!

Personal view:
the fact 7.16.2 is being made, makes me think/hope it might take a bit longer before 7.17 becomes stable since all bug fixes here, are also available in 7.17 chain.
And that might be a good thing so more issues can be ironed out for 7.17.
by holvoetn
Wed Nov 27, 2024 10:48 am
Forum: Beginner Basics
Topic: bridge has stopped working, all ports marked as not running
Replies: 12
Views: 804

Re: bridge has stopped working, all ports marked as not running

@EdPa, While I fully understand the rationale for this message in my view the problem here is not the message itself but the fact it currently looks too much like an error (which it is not for a lot of cases, certainly not when no cable or active connection is present). There is also a partially dou...
by holvoetn
Wed Nov 27, 2024 8:39 am
Forum: Wireless Networking
Topic: cAP or hAPax3?
Replies: 8
Views: 647

Re: cAP or hAPax3?

(thread moved) Why not use the corner then ? 2024-11-27_07-36-23.jpg Added options: (as much as I prefer not to, sometimes it can be of use) Can you use powerline adapters in order to be able to place 2 APs in diagonal corners (left bottom and right top) ? If so, I'd go with wAP AX, table mounted. V...
by holvoetn
Wed Nov 27, 2024 8:25 am
Forum: Wireless Networking
Topic: CAPSMAN Setup Help for better roaming
Replies: 34
Views: 2686

Re: CAPSMAN Setup Help for better roaming

You do not need wireless (unless that RB5009 acts as capsman controller for legacy wifi APs).
If you only have AX or Qcom-AC APs, remove wireless from RB5009.

As of 7.13 support is default available in base ROS package to act as capsman controller for wave2 devices.
by holvoetn
Tue Nov 26, 2024 10:35 pm
Forum: Beginner Basics
Topic: HAPac^2 Ethernet Mode
Replies: 5
Views: 730

Re: HAPac^2 Ethernet Mode

Return to default config.

Then use Webfig or Winbox to simply disable wifi interfaces (don't delete, use disable :shock: :? ).
by holvoetn
Tue Nov 26, 2024 10:29 pm
Forum: Wireless Networking
Topic: cAP ax 5GHz low signal strength
Replies: 7
Views: 917

Re: cAP ax 5GHz low signal strength

You are surprised no valid frequency is selected with a config line like this ? set [ find default-name=wifi1 ] channel.band=5ghz-ax .frequency=2300-7300 Steps to be taken 1- start from default config 2- use proper country setting 3- scan your environment, see which channels are free or least used 4...
by holvoetn
Tue Nov 26, 2024 10:15 pm
Forum: Wireless Networking
Topic: Any reason not use 20Mhz channel on AX devices, if stability is preferred over max speed?
Replies: 11
Views: 1797

Re: Any reason not use 20Mhz channel on AX devices, if stability is preferred over max speed?

I have capsman setup with cAP AX devices in warehouse environment where I set the channel width to 20Mhz. No need for more speed with warehouse scanners. I prefer stability there. At home however (really interference-free environment "thanks to" modern building methods, not even GSM signal...
by holvoetn
Tue Nov 26, 2024 10:01 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

Without RIF file, we can't fix issues that only some people have observed. For your convenience I upgraded again to 7.17rc1. Result: 2024-11-26_20-26-16.jpg Nice empty windows. Supout could not be created (dead hang and frequent disconnect from Winbox). Downgrading resulted in dead device. I had to...
by holvoetn
Tue Nov 26, 2024 9:41 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

some post moved to new place.
viewtopic.php?t=212859

Continue the complaining there please.
by holvoetn
Tue Nov 26, 2024 6:20 pm
Forum: Beginner Basics
Topic: bridge has stopped working, all ports marked as not running
Replies: 12
Views: 804

Re: bridge has stopped working, all ports marked as not running

I see the same behavior in Winbox4 or Webfig on RB5009 (7.17b6) and Hex Refresh (7.17rc1) for ports with no cable in it.
So big possibility it's just that and nothing else.

Or you want my config as well ? :lol:
by holvoetn
Tue Nov 26, 2024 6:11 pm
Forum: Containers
Topic: Issue with container not working on new HEX Refresh (E50UG)
Replies: 23
Views: 2142

Re: Issue with container not working on new HEX Refresh (E50UG)

Sweet, now I don't have to try :lol: And yet I did ... tiny teeny container run from usb1 and it seems to work. 2024-11-26 17:09:33 container,info,debug layer sha256:4c3160818a1f052453d094c490acbae70caa44bbed5fe8ea47be90c560c515fc downloaded 2024-11-26 17:09:33 container,info,debug import successfu...
by holvoetn
Tue Nov 26, 2024 5:24 pm
Forum: Beginner Basics
Topic: bridge has stopped working, all ports marked as not running
Replies: 12
Views: 804

Re: bridge has stopped working, all ports marked as not running

Now you're using a canon to kill a mosquito ...
Config export is not needed here if it is a mere representation issue.
by holvoetn
Tue Nov 26, 2024 5:19 pm
Forum: Containers
Topic: Issue with container not working on new HEX Refresh (E50UG)
Replies: 23
Views: 2142

Re: Issue with container not working on new HEX Refresh (E50UG)

Sweet, now I don't have to try :lol:
by holvoetn
Tue Nov 26, 2024 4:50 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

[1] For the love of God, they're not going to release a stable version on Black Friday like they did sometimes in the past... It's already a hectic day in the life of every network operator... Another little surprise as a software update wouldn't be pleasant. And ?? You're not letting updates pass ...
by holvoetn
Tue Nov 26, 2024 3:59 pm
Forum: Beginner Basics
Topic: CRS510-8XS-2XQ stuck on config [SOLVED]
Replies: 6
Views: 506

Re: CRS510-8XS-2XQ stuck on config [SOLVED]

Okido, glad you found it yourself.
Usually one will remember it a lot better then next time :lol:
by holvoetn
Tue Nov 26, 2024 3:16 pm
Forum: Beginner Basics
Topic: CRS510-8XS-2XQ stuck on config [SOLVED]
Replies: 6
Views: 506

Re: CRS510-8XS-2XQ stuck on config [SOLVED]

It might help if you show us export of your config and a bit more info on what you are trying to do (which port trunk/access and which vlan). Terminal export file=anynameyouwish Move file to PC Edit file, remote serial, obfuscate remaining sensitive info Post back between [ code] [/ code] quotes for...
by holvoetn
Tue Nov 26, 2024 1:36 pm
Forum: Beginner Basics
Topic: CRS510-8XS-2XQ stuck on config [SOLVED]
Replies: 6
Views: 506

Re: CRS510-8XS-2XQ stuck on config [SOLVED]

Checkout this VLAN tutorial, the part about switch:

viewtopic.php?t=143620
by holvoetn
Tue Nov 26, 2024 1:32 pm
Forum: Beginner Basics
Topic: bridge has stopped working, all ports marked as not running
Replies: 12
Views: 804

Re: bridge has stopped working, all ports marked as not running

It's not "all ports". Some are active. What client are you using to represent this info ? Which ROS version ? Is something plugged in on those ports ? If not, that may be the reason together with the new style info is being represented in Winbox4/Webfig (7.17beta/rc) I am seeing this too w...
by holvoetn
Tue Nov 26, 2024 1:24 pm
Forum: Wireless Networking
Topic: CapsMan and Cap on the same device [SOLVED]
Replies: 8
Views: 616

Re: CapsMan and Cap on the same device [SOLVED]

Not necessarily something I plan to do but just a pitfall to keep in mind when things are not going as foreseen when you used that method before.
by holvoetn
Tue Nov 26, 2024 10:46 am
Forum: Wireless Networking
Topic: CapsMan and Cap on the same device [SOLVED]
Replies: 8
Views: 616

Re: CapsMan and Cap on the same device [SOLVED]

you can use /interface/wifi/radio provision to provision you local radios according to your provisioning rules. Thats it. Also documented. https://help.mikrotik.com/docs/spaces/ROS/pages/224559120/WiFi#WiFi-RadioProvisioning Woah ! I wasn't aware of that option. Nice ! But there is a caveat That be...
by holvoetn
Tue Nov 26, 2024 8:48 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

Nope, didn't have the time to do so ( and to be honest, totally forgot).
I had to get my network back up because I had to start working.

I may try again this evening.
by holvoetn
Tue Nov 26, 2024 8:20 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

Upgraded home-RB5009 from 7.17beta6 to rc1, containers, capsman, ... Winbox3.41 - lots of dialogs with empty info at first (Files, Wireless Registration, Capsman Remote Cap, DHCP Lease, ...). Only after sometimes minutes the info came through. - some containers started, some not. No reason visible w...
by holvoetn
Tue Nov 26, 2024 7:35 am
Forum: Beginner Basics
Topic: Problem with WAX204 (AP mode) in VLAN setup and security questions [SOLVED]
Replies: 4
Views: 435

Re: Problem with WAX204 (AP mode) in VLAN setup and security questions [SOLVED]

When using VLAN on Mikrotik devices, it is generally advised here to NOT use VLAN 1.
Some devices from other brands can do funny things with pvid=1 making the whole thing break down when it passes Tik gear.
by holvoetn
Tue Nov 26, 2024 7:01 am
Forum: RouterBOARD hardware
Topic: Quickset modes C53UiG+5HPaxD2HPaxD
Replies: 13
Views: 1819

Re: Quickset modes C53UiG+5HPaxD2HPaxD

Can you provide a simple drawing (can be on paper) about your understanding of mesh network and what it should look like in total ?
And why the need for a mesh network ?
by holvoetn
Mon Nov 25, 2024 11:00 pm
Forum: Wireless Networking
Topic: Run Two version Capsman in the same Router (CCR2004) [SOLVED]
Replies: 2
Views: 369

Re: Run Two version Capsman in the same Router (CCR2004) [SOLVED]

Yes you can.
When using ROS version 7.13 or higher, load wireless package as well and you have both environments.
by holvoetn
Mon Nov 25, 2024 8:16 pm
Forum: RouterBOARD hardware
Topic: Quickset modes C53UiG+5HPaxD2HPaxD
Replies: 13
Views: 1819

Re: Quickset modes C53UiG+5HPaxD2HPaxD

First comments: 1- remove serial from export of config ! 2- One of the least smart things one can do is rename interfaces. Really ! You're making it harder for yourself and others to review config files. Especially so if you are encountering issues and hunting for problem causes. 3- What packages ar...
by holvoetn
Mon Nov 25, 2024 7:57 pm
Forum: Wireless Networking
Topic: Security setting with WPA3 breaks 2Ghz on hAP AX2
Replies: 4
Views: 451

Re: Security setting with WPA3 breaks 2Ghz on hAP AX2

I have both wifi-qcom and wifi-qcom- ac.

Your ac3 is running wireless or wifi-qcom-ac ?
The former doesn't have WPA3 but I ask to be sure.
by holvoetn
Mon Nov 25, 2024 6:37 pm
Forum: Wireless Networking
Topic: Security setting with WPA3 breaks 2Ghz on hAP AX2
Replies: 4
Views: 451

Re: Security setting with WPA3 breaks 2Ghz on hAP AX2

Unlikely.

I have a bunch of IoT devices REFUSING to connect to 2GHz when WPA3 is added to the mix.
I have a separate SSID ONLY using WPA2 (nothing else security-wise) and then they're happy.
by holvoetn
Mon Nov 25, 2024 6:08 pm
Forum: General
Topic: WAN interface Passes more data than the LAN interface
Replies: 13
Views: 842

Re: WAN interface Passes more data than the LAN interface

Start by simply blocking ALL incoming traffic, then see what happens.
by holvoetn
Mon Nov 25, 2024 5:34 pm
Forum: General
Topic: Doubt regarding network configuration with VLAN in AP
Replies: 8
Views: 859

Re: Doubt regarding network configuration with VLAN in AP

Regarding unmanaged switch, especially when it does not handle VLAN tagged frames correctly: one thing I have already done in the past to circumvent such an issue is using EOIP link between router and AP to virtually bypass unmanaged switch. EOIP link is then used as trunk for VLAN traffic. Ofcourse...
by holvoetn
Mon Nov 25, 2024 3:05 pm
Forum: Beginner Basics
Topic: VLAN setup problem
Replies: 2
Views: 603

Re: VLAN setup problem

You posted your question in the tutorial thread about Using VLAN in RouterOS but it seems you haven't read it...

So again:
viewtopic.php?t=143620
by holvoetn
Mon Nov 25, 2024 8:44 am
Forum: General
Topic: Map Lite - Cant get this thing to work!
Replies: 6
Views: 1715

Re: Map Lite - Cant get this thing to work!

1. Hardware Check -Power Supply: Ensure the mAP Lite is receiving adequate power. If you’re using a USB adapter, try a different adapter with at least 1A output. -LED Behavior: Compare the LED activity to show power and other interfaces. If power supply is not sufficient, the thing will not power o...
by holvoetn
Mon Nov 25, 2024 8:39 am
Forum: General
Topic: Map Lite - Cant get this thing to work!
Replies: 6
Views: 1715

Re: Map Lite - Cant get this thing to work!

Hey @muaazteladia, welcome to the forum! Great to see more knowledgeable and dedicated people joining us. Have a nice weekend! :-)
Errm. NOT !
Couple of things in that response which are blatantly wrong if you know your stuff.
by holvoetn
Mon Nov 25, 2024 8:37 am
Forum: General
Topic: Winbox vs Webfig
Replies: 5
Views: 1053

Re: Winbox vs Webfig

Did you write this, or was it generated by ChatGPT ?

Its sounds very GPT like....
To be honest ... I've seen other posts where I had the exact same feeling.
by holvoetn
Mon Nov 25, 2024 8:12 am
Forum: Wireless Networking
Topic: wAP ax as replacement for old UniFi AC Pro?
Replies: 11
Views: 1210

Re: wAP ax as replacement for old UniFi AC Pro?

The wAP Ax Is a very new device, so there are not reports on how It behaves. It is standing on my desk here since a little over 2 weeks, under capsman control via RB5009. It behaves really stable (ZERO drops that I can tell on my PC, using Azure Remote Desktop which is VERY sensitive to drops) and ...
by holvoetn
Sun Nov 24, 2024 8:52 pm
Forum: Wireless Networking
Topic: How to increase wifi signal distance/strenght ?
Replies: 10
Views: 795

Re: How to increase wifi signal distance/strenght ?

- 60db is a pretty good signal already.

If you really want to improve that situation ...
( drum roll)

add a cat6 cable.
Or powerline.
Or Moca.

You get where I am going to by now :lol:
by holvoetn
Sun Nov 24, 2024 8:46 pm
Forum: General
Topic: AWS Wireguard Slow
Replies: 21
Views: 1423

Re: AWS Wireguard Slow

RB5009 does have IPSEC HW acceleration.
For quite a while already.
by holvoetn
Sun Nov 24, 2024 8:06 pm
Forum: General
Topic: AWS Wireguard Slow
Replies: 21
Views: 1423

Re: AWS Wireguard Slow

It's not a mute point if one of both ends is a Tik... as was indicated ?
by holvoetn
Sun Nov 24, 2024 6:15 pm
Forum: General
Topic: AWS Wireguard Slow
Replies: 21
Views: 1423

Re: AWS Wireguard Slow

Your point 3 is where I beg to differ.

I tested connections between 2 Tiks using HW offload.

RB5009 to RB5009
Hex Refresh to RB5009
AXLite to RB5009

WG won each time.
by holvoetn
Sun Nov 24, 2024 5:55 pm
Forum: Wireless Networking
Topic: Chateau 5G ax - 802.11ac and ax support [SOLVED]
Replies: 5
Views: 562

Re: Chateau 5G ax - 802.11ac and ax support [SOLVED]

AC or AX band selection are physical settings always driven by master radio. If you set radio to AX, AC clients should connect just fine. Same with 2GHz AX radio and N clients. I have plenty of IoT clients only using N connecting to 2GHz AX radio. Just make sure your security settings are OK. Usuall...
by holvoetn
Sun Nov 24, 2024 5:52 pm
Forum: Wireless Networking
Topic: wAP ax as replacement for old UniFi AC Pro?
Replies: 11
Views: 1210

Re: wAP ax as replacement for old UniFi AC Pro?

Should be fine.
WAP AX can use 160MHz wide channel so there should not be that much difference ( provided your environment allows you to use it. Read: relatively interference free).

Unify and wAP AX both use 1gb ether ports, so that's probably going to be your limiting factor anyhow.
by holvoetn
Sun Nov 24, 2024 5:44 pm
Forum: General
Topic: Blocking Video and Music Downloads on MikroTik
Replies: 4
Views: 443

Re: Blocking Video and Music Downloads on MikroTik

You will never win that battle...
If e.g. they start using VPN, you will not see anything about their actions.

Wild idea: how about applying queues so their bandwidth is limited to normal browsing and mail traffic ?
by holvoetn
Sun Nov 24, 2024 5:15 pm
Forum: RouterBOARD hardware
Topic: Bridge filter on L009UiGS not working
Replies: 2
Views: 444

Re: Bridge filter on L009UiGS not working

Without config, nobody can tell.

PS L009 doesn't run ROS6.
by holvoetn
Sun Nov 24, 2024 5:14 pm
Forum: Beginner Basics
Topic: Can't get Wifi clients connected on 2GHz - bug or misconf
Replies: 4
Views: 491

Re: Can't get Wifi clients connected on 2GHz - bug or misconf

Why do you set AX device to 2GHz-N ?
Leave it blank, it will choose on it's own what it should be.

Most IoT devices (in my experience) are only accepting WPA2 at most. Nothing else.
by holvoetn
Sun Nov 24, 2024 5:11 pm
Forum: Wireless Networking
Topic: RB4011iGS+5HacQ2HnD-IN and WPA3
Replies: 14
Views: 2048

Re: RB4011iGS+5HacQ2HnD-IN and WPA3

In 95% of cases: 1 bridge for whatever you want to throw at it. As for VLAN: you may want to check this excellent tutorial: https://forum.mikrotik.com/viewtopic.php?t=143620 Use the wifi interface in your bridge settings. If the radio on your RB4011 is being listed as dynamic, it means you have it c...
by holvoetn
Sun Nov 24, 2024 3:39 pm
Forum: General
Topic: Minimum requirement to be a official Mikrotik consultant
Replies: 14
Views: 989

Re: Minimum requirement to be a official Mikrotik consultant

Some members here never took an exam yet are far more knowledgeable then those being listed as consultant...

My 0.02€...
by holvoetn
Sun Nov 24, 2024 3:37 pm
Forum: General
Topic: Map Lite - Cant get this thing to work!
Replies: 6
Views: 1715

Re: Map Lite - Cant get this thing to work!

Make sure it is properly reset.
Out of the box it should broadcast an SSID.
That's where you need to connect to for further config since default ether will be considered WAN and blocked for entry by firewall.
by holvoetn
Sun Nov 24, 2024 3:31 pm
Forum: Wireless Networking
Topic: RB4011iGS+5HacQ2HnD-IN and WPA3
Replies: 14
Views: 2048

Re: RB4011iGS+5HacQ2HnD-IN and WPA3

Don't set vlan on datapath.
Use interface as with other ports via bridge.

Wireless capsman menu might be there but doesn't do anything anymore if you use wifi-qcom-ac driver.
by holvoetn
Sun Nov 24, 2024 3:16 pm
Forum: Wireless Networking
Topic: RB4011iGS+5HacQ2HnD-IN and WPA3
Replies: 14
Views: 2048

Re: RB4011iGS+5HacQ2HnD-IN and WPA3

Do not setup local radio under capsman.
Treat it as a local radio with vlan etc.
by holvoetn
Sun Nov 24, 2024 3:00 pm
Forum: Wireless Networking
Topic: Mikrotik hAP ax3 (C53UiG+5HPaxD2HPaxD). No Wireless Interface [SOLVED]
Replies: 7
Views: 1115

Re: Mikrotik hAP ax3 (C53UiG+5HPaxD2HPaxD). No Wireless Interface [SOLVED]

That's the page for AC3.
You can tell seeing arm version instead of arm64.

Different thing.

Page for AX3 is correct.

And the only correct driver for AX3 is wifi-qcom.
NOT wifi-qcom-ac.
by holvoetn
Sun Nov 24, 2024 11:08 am
Forum: General
Topic: AWS Wireguard Slow
Replies: 21
Views: 1423

Re: AWS Wireguard Slow

Repeat...

When testing Tik to Tik with both devices capable of HW offloading IPSEC, WG is still faster.
Since one side is Tik, performance will always be dictated by the slowest one.

Wireguard will be faster given same underlying HW.

Do the test yourself.
I already did. Hence my conclusion.
by holvoetn
Sun Nov 24, 2024 11:03 am
Forum: General
Topic: CAP ax - Admin Password Changes After "Reset in CAPS Mode" ?
Replies: 5
Views: 1797

Re: CAP ax - Admin Password Changes After "Reset in CAPS Mode" ?

Interesting ... 7.11.3 may contain a bug then for that part.

But in the mean time we're already at 7.16.1.
by holvoetn
Sun Nov 24, 2024 11:02 am
Forum: General
Topic: VLAN Trunk - DHCP issue
Replies: 12
Views: 890

Re: VLAN Trunk - DHCP issue

Once you define a port properly as trunk, pvid setting doesn't matter anymore.
by holvoetn
Sat Nov 23, 2024 7:11 pm
Forum: General
Topic: AWS Wireguard Slow
Replies: 21
Views: 1423

Re: AWS Wireguard Slow

Drop IPSEC.
It will also be SW based on CHR side and therefor even be slower then WG.

When testing Tik to Tik with both devices capable of HW offloading IPSEC, WG is still faster.

My view ...
by holvoetn
Sat Nov 23, 2024 6:48 pm
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

I had a strange behaviour after updating my both CHR CAPsMAN (AX) from 7.17beta6 to 7.17RC1. Both devices lost their CAPsMAN config. All entries were emty (wifi -> Config, Channel, Security, datapath aso.) Next I tried to re-import the settings from an RSC-file, but the import hangs while importing...
by holvoetn
Sat Nov 23, 2024 6:34 pm
Forum: General
Topic: VLAN Trunk - DHCP issue
Replies: 12
Views: 890

Re: VLAN Trunk - DHCP issue

I cleaned it up as you said and understood a little more. However, I think that the edit "add bridge=brLAN ingress-filtering=yes frame-types= admit-only-vlan-tagged interface=ether4" fixed the fact that I could see the other IPs coming from Ubiquiti and now I cannot which is perfect. I be...
by holvoetn
Sat Nov 23, 2024 2:02 pm
Forum: General
Topic: VLAN Trunk - DHCP issue
Replies: 12
Views: 890

Re: VLAN Trunk - DHCP issue

I am going to assume you are using the other ports as untagged for ... vlan 1 ? Something does show on your screenshot indicating it. Rule (somewhere between 1 and 3) for Mikrotik admin: Avoid vlan 1. If you use vlan on Mikrotik, use it all the way. Set proper tagged/ untagged ports with correct vla...
by holvoetn
Sat Nov 23, 2024 11:28 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

My mistake. It should be there. It's not listed in pheripherals section but others.
by holvoetn
Sat Nov 23, 2024 10:03 am
Forum: Announcements
Topic: v7.17rc [testing] is released!
Replies: 196
Views: 56536

Re: v7.17rc [testing] is released!

What's the point if there is no temperature sensor ?
by holvoetn
Sat Nov 23, 2024 8:52 am
Forum: General
Topic: Wireguard only for WiFi sitting in its own VLAN
Replies: 4
Views: 557

Re: Wireguard only for WiFi sitting in its own VLAN

3. I am not sure if this is LEGAL. your slave WLAN for wireguard has a different BAND from the master. Is this allowed, I know the frequency and such is copied over......... I believe the virtual WLAN can have ONLY its own SSID, and security setting and can be assigned to a different subnet/vlan. T...
by holvoetn
Sat Nov 23, 2024 12:02 am
Forum: Beginner Basics
Topic: RB4011 wont run at default CPU frequency
Replies: 8
Views: 645

Re: RB4011 wont run at default CPU frequency

First enable changing of routerboard settings in device mode.
This will require a reboot.

Then you can change the setting.
by holvoetn
Fri Nov 22, 2024 5:07 pm
Forum: RouterBOARD hardware
Topic: FCC Compliance Testing Support
Replies: 4
Views: 712

Re: FCC Compliance Testing Support

Best to contact support with your specific requests.

support@mikrotik.com
by holvoetn
Fri Nov 22, 2024 4:22 pm
Forum: Wireless Networking
Topic: Framed Route on Chateau 5G
Replies: 4
Views: 2381

Re: Framed Route on Chateau 5G

Same issue for me... Mokrotik support any feedback? is frame routing supported by chateau 5G???
Ask support via support@mikrotik.com to be sure.
This is a user forum, they don't read everything on this place.
by holvoetn
Fri Nov 22, 2024 2:46 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 143
Views: 17729

Re: hap ax3 random wireless disconnects

FWIW I had AX3 and now wAP AX on my desk. Since I have that wAP AX I use my laptop only via wifi. Zero disconnects. And using Azure Remote Desktop when working from home I would know immediately ... that environment is HIGHLY allergic to disconnects, even for a split second. (Using AX3 I also have u...
by holvoetn
Fri Nov 22, 2024 2:40 pm
Forum: RouterBOARD hardware
Topic: Quickset modes C53UiG+5HPaxD2HPaxD
Replies: 13
Views: 1819

Re: Quickset modes C53UiG+5HPaxD2HPaxD

No screenshots please !
Export of config.
And a clear description of what your problem is and what you want to achieve.
by holvoetn
Thu Nov 21, 2024 11:23 pm
Forum: RouterBOARD hardware
Topic: Which 8 port fanless switch?
Replies: 10
Views: 1792

Re: Which 8 port fanless switch?

Got 5 or 6 of those installed with customer.
They are very good.
by holvoetn
Thu Nov 21, 2024 8:33 pm
Forum: Announcements
Topic: Newsletter #121 | October 2024
Replies: 54
Views: 8422

Re: Newsletter #121 | October 2024

One can dream....
by holvoetn
Thu Nov 21, 2024 6:30 pm
Forum: General
Topic: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]
Replies: 95
Views: 8140

Re: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]

Side note: one added benefit from this whole situation ... spammers have little interest the past days for this place.
It's remarkably quiet on that front :lol:
by holvoetn
Thu Nov 21, 2024 6:23 pm
Forum: Beginner Basics
Topic: hAP ax3: change default internet port ether1 to ether2 [SOLVED]
Replies: 23
Views: 1632

Re: hAP ax3: change default internet port ether1 to ether2 [SOLVED]

The ether1 is PoE-Out on the A x 3: The A C 3 has it on port 5: I knew that :lol: One of the comments I had when I first got AX3. I have some installations with AC3 powering other stuff and all of a sudden it was changed to ether1 with AX3. This is the key thing to look for: POE IN and POE OUT and ...
by holvoetn
Thu Nov 21, 2024 5:54 pm
Forum: Beginner Basics
Topic: hAP ax3: change default internet port ether1 to ether2 [SOLVED]
Replies: 23
Views: 1632

Re: hAP ax3: change default internet port ether1 to ether2 [SOLVED]

Connect PC to ether3 Connect using Winbox Change Interface List WAN -> remove ether1, add ether2 Change Interface list LAN -> remove ether2, add ether1 Change bridge ports -> remove ether2, add ether1 IP DHCP Client: change client to ether2 And that should be it. Reboot router to be sure (firewall w...
by holvoetn
Thu Nov 21, 2024 5:42 pm
Forum: General
Topic: CRS312-4C+8XG - routing performance
Replies: 4
Views: 424

Re: CRS312-4C+8XG - routing performance

Re: New Hex: be careful how you use the ports. Ether1 is differently connected then ether 2-5 which results in ether1 always passing CPU. Makes a big difference depending on your config. RB5009 is the more future proof option IMHO (and can be rack-mounted if you get the mounting brackets, 4 in 1U if...
by holvoetn
Thu Nov 21, 2024 11:21 am
Forum: General
Topic: [7.6] CAP mode fails after custom netinstall
Replies: 7
Views: 1325

Re: [7.6] CAP mode fails after custom netinstall

Caps mode for wave2 only became available as of 7.8. So use latest stable.
by holvoetn
Thu Nov 21, 2024 7:46 am
Forum: Wireless Networking
Topic: No default steering neighbour group with CAPsMAN [SOLVED]
Replies: 29
Views: 5706

Re: No default steering neighbour group with CAPsMAN [SOLVED]

No, you can't!? One level up you can define custom steering settings which can refer to an existing neighbor-group, but as far as I can tell there is no possibility to create your own custom neighbor-group. Really ? /interface/wifi/steering> add neighbor-group=test name=test DONE. Don't confuse wit...
by holvoetn
Thu Nov 21, 2024 7:42 am
Forum: General
Topic: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]
Replies: 95
Views: 8140

Re: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]


Looks like my residential IP was blocked - using Tor to post this. They must be dropping address blocks that originated attacks, and I got caught on the crossfire.
Fire ticket to support to have it unblocked, or at least get explanation.
by holvoetn
Thu Nov 21, 2024 7:38 am
Forum: RouterBOARD hardware
Topic: Quickset modes C53UiG+5HPaxD2HPaxD
Replies: 13
Views: 1819

Re: Quickset modes C53UiG+5HPaxD2HPaxD

What's wrong with the default settings ?
by holvoetn
Thu Nov 21, 2024 7:35 am
Forum: Wireless Networking
Topic: RB4011iGS+5HacQ2HnD-IN and WPA3
Replies: 14
Views: 2048

Re: RB4011iGS+5HacQ2HnD-IN and WPA3

You may have to uninstall wireless driver on the RB4011 and add wifi-qcom-ac. You will loose 2.4GHz radio on that device but 5GHz radio can be used as local radio with WPA3. Not within capsman. Just a minute ... It will also be able to be used as capsman controller for AX devices. Now comes the nift...
by holvoetn
Tue Nov 19, 2024 7:12 pm
Forum: General
Topic: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]
Replies: 95
Views: 8140

Re: FOR THE LOVE OF "DEITY OF CHOICE" FIX YOUR FRIGGEN (forum) WEBSITE [SOLVED]

Not really.
Just got error page referring to overload.
by holvoetn
Tue Nov 19, 2024 6:19 pm
Forum: Beginner Basics
Topic: hAP ac2 - routeros-7.16.1-arm - wifi [SOLVED]
Replies: 2
Views: 495

Re: hAP ac2 - routeros-7.16.1-arm - wifi [SOLVED]

Added info for clarification: as of 7.13 you are required to load the wireless or wifi package as well when doing netinstall. Not only main ROS package. BTW that Help page you linked to, go 1 level up and then see what's written there, section Old 802.11ac ARM CPU devices: https://help.mikrotik.com/...
by holvoetn
Sun Nov 17, 2024 5:42 pm
Forum: Wireless Networking
Topic: wAP ax?
Replies: 250
Views: 29940

Re: wAP ax?

Not even sure if I have it right but it works, its snappy, no complaints.
Now, was this so hard to admit ? :lol:
by holvoetn
Sun Nov 17, 2024 11:32 am
Forum: Beginner Basics
Topic: Do switch rules on the RB5009ug+s+in work to assign VLAN by MAC?
Replies: 3
Views: 670

Re: Do switch rules on the RB5009ug+s+in work to assign VLAN by MAC?

That first article you link to refers to a table with supported switch chips and models. Neither 88E6393 ( swich used in RB5009) nor RB5009 are mentioned there. The second link you mention is related to netpower, which is mentioned in the first table. So why do you think those instructions would app...
by holvoetn
Sat Nov 16, 2024 7:27 pm
Forum: Wireless Networking
Topic: Caps network connectivity issue dhcp deassigned assigned
Replies: 12
Views: 1526

Re: Caps network connectivity issue dhcp deassigned assigned

How many caps and connected to which power source ? Sure it can handle the combined load ?
by holvoetn
Sat Nov 16, 2024 12:22 pm
Forum: Beginner Basics
Topic: Netwatch a Windows 11 firewalled client
Replies: 9
Views: 532

Re: Netwatch a Windows 11 firewalled client

That's not how it works in my head.

Once wireguard tunnel is up, you pass firewall. Period.
Firewall doesn't know nor care what goes through that tunnel.

If peer settings have a dedicated ip, you can always contact that address IF wireguard is active.

That's the whole point of a VPN.
by holvoetn
Sat Nov 16, 2024 10:50 am
Forum: Beginner Basics
Topic: Netwatch a Windows 11 firewalled client
Replies: 9
Views: 532

Re: Netwatch a Windows 11 firewalled client

The whole point of using a VPN like Wireguard is to travel through firewall if needed.

So what's the problem ?
Netwatch to peer IP address.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 24