Community discussions

MikroTik App

Search found 1769 matches

by jaclaz
Sun Nov 10, 2024 2:28 am
Forum: Beginner Basics
Topic: Set Up problem
Replies: 2
Views: 93

Re: Set Up problem

Also, maybe It Is not your case, but before connecting a device to internet you should make sure to disable all services but Winbox and limit It to LAN interface(s), possibly changing its default port number. AND add a new user, give It full powers, and a strong password and remove or disable the de...
by jaclaz
Sun Nov 10, 2024 2:09 am
Forum: Beginner Basics
Topic: Configuring wireless on wAP R from zero
Replies: 4
Views: 174

Re: Configuring wireless on wAP R from zero

Please allow me to doubt the advice in #1, the good Mikrotik guys are not particularly cautious when tagging a release as "stable" and - if not common - it is far from unusual that in releases marked as stable (and thus subject of automatic updates) new or regression bugs appear. Of course...
by jaclaz
Sat Nov 09, 2024 8:07 pm
Forum: Wireless Networking
Topic: Half a Bridge Is NOT Better Than None!
Replies: 2
Views: 118

Re: Half a Bridge Is NOT Better Than None!

Only hurricane winds or heavy rain too?

JFYI, issues with water have been reported several times:
viewtopic.php?t=189614
by jaclaz
Thu Nov 07, 2024 11:21 pm
Forum: Wireless Networking
Topic: wAP ax?
Replies: 188
Views: 22679

Re: wAP ax?

Well, access points on external walls seem to me a rather common need.

Anyway the coverage Is surely not 180 degrees, more like 120 or less.

On the other thread here:
viewtopic.php?t=212255
the shape of emissions is described with links to the FCC documentation.
by jaclaz
Thu Nov 07, 2024 11:14 am
Forum: General
Topic: wAP coverage -- picture included
Replies: 37
Views: 1488

Re: wAP coverage -- picture included

maybe an option like mANTBox ax 15s can be considered, i know is not so cheap as the wAP but can be very useful https://mikrotik.com/product/mantbox_ax_15s Yep, but I think OP is already beyond the WAP, a Netmetal Ax (+antenna(s)) is going to cost much more. What is not clear (to me) is how wide th...
by jaclaz
Wed Nov 06, 2024 2:26 pm
Forum: General
Topic: Loopback interface sending DHCP broadcasts [SOLVED]
Replies: 7
Views: 384

Re: Loopback interface sending DHCP broadcasts [SOLVED]

... and it is Rule #4 of my Mikrotik Club Rules:
1) You do not use VLAN1
2) You DO NOT use VLAN1
3) You do not use Quickset
4) You do not use detect internet
5)....

If the good Mikrotik guys would remove it, I would need to change the list ... :lol:
by jaclaz
Wed Nov 06, 2024 12:11 pm
Forum: Wireless Networking
Topic: Cube 60ac Pro not connecting.
Replies: 2
Views: 173

Re: Cube 60ac Pro not connecting.

Unless you changed the original configuration, the Cube Pro original one has a static IP 192.168.88.3 or 192.168.88.2 on the ethernet port, it is not grabbing it from anywhere, so it sounds like the device is not booting properly, and - even if the IP is gone because the configuration is invalid - t...
by jaclaz
Wed Nov 06, 2024 12:00 pm
Forum: General
Topic: VLANs - there has to be a simpler way!
Replies: 17
Views: 821

Re: VLANs - there has to be a simpler way!

If I may, there are some inconsistencies in the actual question. There are seemingly two of them: 1) Is there a simple way to VLAN? 2) How can I have a Guest network? Answers: #1 No, it is a complex, advanced topic. #2 Yes, actually two ways, one at L3 level (tangent) and one at L2 level (original M...
by jaclaz
Tue Nov 05, 2024 11:44 pm
Forum: General
Topic: wAP coverage -- picture included
Replies: 37
Views: 1488

Re: wAP coverage -- picture included

They are not common, but they exist.
Example:
https://www.quwireless.com/product/qusector-7v-120-2
120 degrees, dual connector, mimo 2x2.
by jaclaz
Tue Nov 05, 2024 3:35 pm
Forum: Beginner Basics
Topic: Problem with failover to backup ISP [SOLVED]
Replies: 10
Views: 467

Re: Problem with failover to backup ISP [SOLVED]

And again /ip route print will show whether the routes are static or dynamic or if coming from the dhcp, etc..
by jaclaz
Tue Nov 05, 2024 11:05 am
Forum: Beginner Basics
Topic: Problem with failover to backup ISP [SOLVED]
Replies: 10
Views: 467

Re: Problem with failover to backup ISP [SOLVED]

Provide the output of /ip route print, twice, once when in the "normal" state and once when you have the ISP WAN cable detached, as it will be more clear what actually happens. As a side note, and JFYI, another possible approach (IMHO simpler): https://forum.mikrotik.com/viewtopic.php?t=19...
by jaclaz
Tue Nov 05, 2024 10:55 am
Forum: General
Topic: VLANs - there has to be a simpler way!
Replies: 17
Views: 821

Re: VLANs - there has to be a simpler way!

Just to be clear, this config only applies to the cAP? There's no additional config for the hEX? If not, the new firewall rules being added to the cAP won't affect the current set of rules on the hEX? Yes and no. Yes, the "tangent's way" only applies to the cAp, but no, the described appr...
by jaclaz
Tue Nov 05, 2024 1:23 am
Forum: General
Topic: VLANs - there has to be a simpler way!
Replies: 17
Views: 821

Re: VLANs - there has to be a simpler way!

What if I told you that you don't *need* a VLAN?

https://tangentsoft.com/mikrotik/wiki?n ... ns%20VLANs
by jaclaz
Mon Nov 04, 2024 11:35 pm
Forum: Beginner Basics
Topic: hAP ac2 - help me make it into a simple managed switch please
Replies: 11
Views: 518

Re: hAP ac2 - help me make it into a simple managed switch please

Ah, ok, I thought that mac-telnet was dependent on telnet service, good to know that it Is instead completely independent and thus must be restricted separately.
by jaclaz
Mon Nov 04, 2024 6:57 pm
Forum: Beginner Basics
Topic: hAP ac2 - help me make it into a simple managed switch please
Replies: 11
Views: 518

Re: hAP ac2 - help me make it into a simple managed switch please

Thank you :) , so one should go for the: https://help.mikrotik.com/docs/spaces/ROS/pages/328229/IP+Services way and disable services, to prevent access from anything but Winbox, then, if I get it right, the none in mac-server has in practice the same effect as disabling the telnet service, but this ...
by jaclaz
Mon Nov 04, 2024 5:56 pm
Forum: General
Topic: wAP coverage -- picture included
Replies: 37
Views: 1488

Re: wAP coverage -- picture included

No, the device comes without antennas. The photo on Mikrotik store is more explicit :wink: https://www.mikrotik-store.eu/media/images/org/L23UGSR-5HaxD2HaxD-NM-Beispielantennen_1.png The top cover has two passages so you would normally use two external antenna connected with a (short) piece of cable...
by jaclaz
Mon Nov 04, 2024 5:39 pm
Forum: Beginner Basics
Topic: hAP ac2 - help me make it into a simple managed switch please
Replies: 11
Views: 518

Re: hAP ac2 - help me make it into a simple managed switch please

I see now, that prevents telnet connections, thanks :) .(I wish the good Mikrotik guys had called it "/tool mac-server telnet") But the moment the device has an IP address one can still connect via browser/webfig? :? I.e. is there a need for a firewall rule *like*: /ip firewall filter add ...
by jaclaz
Mon Nov 04, 2024 2:09 pm
Forum: General
Topic: wAP coverage -- picture included
Replies: 37
Views: 1488

Re: wAP coverage -- picture included

@infabo Maybe we should rename to: CSS->CASS (Cloud Actually Switching Switch) and CRS->CARS (Cloud Almost Routing Switch) @flynno Maybe stupid question, but aren't the two HGO-antenna-OUT directly mounted too near to each other to do any good? I know it is even on Mikrotik official pictures: https:...
by jaclaz
Mon Nov 04, 2024 1:17 pm
Forum: Scripting
Topic: Voltage monitoring script not working in ROS v7
Replies: 4
Views: 608

Re: Voltage monitoring script not working in ROS v7

I think it is a matter of (double) quotes. The dot means "concatenate" (same as - to give you an example - & in Excel formulas), text and variable(s) needs to be separated. And seemingly you missed a closing round bracket (or maybe they are not needed. Your test: /tool e-mail send to=e...
by jaclaz
Mon Nov 04, 2024 12:58 pm
Forum: Beginner Basics
Topic: Not enough permissions? [SOLVED]
Replies: 17
Views: 1205

Re: Not enough permissions? [SOLVED]

Bravo... Grazie. :) Though I am not convinced that my hypothesis holds, I think that attackers won't spend much time on a "difficult" device (unless of course it is a targeted attack) it is far easer for them go looking for another one, I presume that they go for the low-hanging fruits (t...
by jaclaz
Mon Nov 04, 2024 12:14 pm
Forum: Beginner Basics
Topic: hAP ac2 - help me make it into a simple managed switch please
Replies: 11
Views: 518

Re: hAP ac2 - help me make it into a simple managed switch please

@anav Now that the OP issue is solved, can we talk of the absolute minimum configuration? In my perverted mind it would be: /interface bridge add admin-mac=<tt:uu:vv:xx:yy:zz> admin-mac=no name=bridge1 /interface bridge port add bridge=bridge1 interface=all /ip dhcp client add disabled=no interface=...
by jaclaz
Mon Nov 04, 2024 11:48 am
Forum: General
Topic: wAP coverage -- picture included
Replies: 37
Views: 1488

Re: wAP coverage -- picture included

In case you missed: this thread was about wAP and @Normis tried to explain that wAP (due to being wall AP) doesn't really have spherical radiation pattern. Well, we do have a drawing: https://fccid.io/TV7WAPGR52AX/Test-Report/Antenna-specification-7634095 I think we can define the pattern as "...
by jaclaz
Mon Nov 04, 2024 11:21 am
Forum: RouterBOARD hardware
Topic: Chateau LTE18 ax what Antenna Ports?
Replies: 2
Views: 668

Re: Chateau LTE18 ax what Antenna Ports?

Reading the manual would help: https://help.mikrotik.com/docs/spaces/UM/pages/141197416/Chateau+LTE18+ax the hint is here. Antenna usage SMA connectors are for LTE antennas. External antenna sockets are located on the back of the device. Device comes with connected wireless antennas, LTE antennas ar...
by jaclaz
Sun Nov 03, 2024 5:11 pm
Forum: RouterBOARD hardware
Topic: Support for external LTE antennas
Replies: 10
Views: 615

Re: Support for external LTE antennas

They do sell this pigtail: https://mikrotik.com/product/acsmaufl Which should be a hint towards the DIY path, but if I get it right the U.fl connector(s) are on the actual modem card, so it can be applied to *any* of their LtE products. Example for the WAP ac LTE6: https://forum.mikrotik.com/viewtop...
by jaclaz
Sun Nov 03, 2024 2:50 pm
Forum: Wireless Networking
Topic: Connection lost when lease extended?
Replies: 15
Views: 1010

Re: Connection lost when lease extended?

If it is a new installation, it doesn't surprise me that much, it is not unusual that the settings need to be tweaked/tuned, these new devices have a lot of "delicate" settings. Only anecdotal data, and likely completely unrelated to your case, but not so long ago I had a largish Viessman ...
by jaclaz
Sun Nov 03, 2024 2:16 pm
Forum: Beginner Basics
Topic: Separate internet while using 3 modems
Replies: 12
Views: 634

Re: Separate internet while using 3 modems

Well, yes, firewall is the thing that might (or might not) allow the ports on the different subnets to talk to each other, so, it is about firewall. Not so sure about routing, in the sense that the routes (at IP level) should be autogenerated in the Mikrotik router, i.e. come out as DAC (dynamic, ac...
by jaclaz
Sun Nov 03, 2024 11:57 am
Forum: Beginner Basics
Topic: Separate internet while using 3 modems
Replies: 12
Views: 634

Re: Separate internet while using 3 modems

"Forcing" the internet access to the one or the other router (ether1/ether2/ether3) could be - I believe - done with routing rules based on source ports (ether4/ether5/ether6): https://help.mikrotik.com/docs/spaces/ROS/pages/59965508/Policy+Routing The other requirement (windows share acro...
by jaclaz
Sat Nov 02, 2024 8:54 pm
Forum: Beginner Basics
Topic: L009UiGS-2HaxD as WiFi Bridge?
Replies: 3
Views: 398

Re: L009UiGS-2HaxD as WiFi Bridge?

No, different devices have (or have not) a number of quicksets (it seems like more recent ones have few of them that's why I asked if your L009 had it). It is not a bad thing in an absolute way, as quickset is known to be prone to cause issues, unless used "from clean" (and this piece of i...
by jaclaz
Sat Nov 02, 2024 4:59 pm
Forum: Beginner Basics
Topic: Not enough permissions? [SOLVED]
Replies: 17
Views: 1205

Re: Not enough permissions? [SOLVED]

What we don't know (or at least I don't know) is what changes the attackers make to the router configuration, it is possible that they do not make any besides changing the permissions to user "admin" and adding the "system" one (of which they set the password to a complex one). I...
by jaclaz
Sat Nov 02, 2024 4:19 pm
Forum: Beginner Basics
Topic: Can Ping websites. No internet when trying to access
Replies: 4
Views: 282

Re: Can Ping websites. No internet when trying to access

Let's see how accurate is my crystal ball (I just got it back from the guy that tunes it, but sometimes he doesn't set it right ): a. User 1: J***** K******, commonly called "dad", age 48, Sagittarius User 2: F**** G******, commonly called "mom" age 47, Gemini User 3: R**** K****...
by jaclaz
Sat Nov 02, 2024 3:53 pm
Forum: Beginner Basics
Topic: L009UiGS-2HaxD as WiFi Bridge?
Replies: 3
Views: 398

Re: L009UiGS-2HaxD as WiFi Bridge?

If I get it right you want to have your L009 in the garage as a "client[1]" to an Access Point that is in your home, right? Is the Access Point also a Mikrotik device or not? The WiFi standards do not really cover this usage, so different manufactures have worked around with different solu...
by jaclaz
Fri Nov 01, 2024 6:06 pm
Forum: Wireless Networking
Topic: Connection lost when lease extended?
Replies: 15
Views: 1010

Re: Connection lost when lease extended?

Side question, but do you really-really need DHCP client on the boiler?
I mean, if you don't go around with your access point (be it the ax or the ax2) the boiler should be pretty much static.
Cannot you set it to a static address and see if the disconnecitons continue or stop?
by jaclaz
Fri Nov 01, 2024 11:50 am
Forum: The Dude
Topic: Teltonika SMS gateway for notifikations
Replies: 3
Views: 309

Re: Teltonika SMS gateway for notifikations

No idea about the actual issue, but also the board parser seems to behave just like you describe, it "interrupts" the hyperlink on the first space (after the "The"). So it could be something similar. Try replacing the spaces with %20, a http URL must contain no spaces: https://fo...
by jaclaz
Fri Nov 01, 2024 11:14 am
Forum: Beginner Basics
Topic: Help with setting up my first Mikrotik
Replies: 5
Views: 367

Re: Help with setting up my first Mikrotik

From what I understand the default configuration is good enough in most cases, particularly, for an internet facing router, do not change the firewall rules until you have understood them[1] (which definitely will take some time) and make sure that interfaces are correctly categorized as LAN and WAN...
by jaclaz
Fri Nov 01, 2024 1:35 am
Forum: Wireless Networking
Topic: SXTsq 5ac as a PtP link - looking for suggestions for improvements
Replies: 8
Views: 846

Re: SXTsq 5ac as a PtP link - looking for suggestions for improvements

Very interesting, thanks. All the tweaks you did make a lot of sense to me, what I find surprising Is the relevance of the positioning. 5 db difference in 10-15 cm displacement seems a lot, I wonder what the reason could be for such a dramatic change at such a short distance, I believed that there w...
by jaclaz
Thu Oct 31, 2024 4:47 pm
Forum: RouterBOARD hardware
Topic: Hap AX3 as an access point
Replies: 15
Views: 1379

Re: Hap AX3 as an access point

Is the power supply provided with the RB5009 sufficient? That is a 24V 1,5A power adapter. Yes and no (actually no and yes, but ...) :shock: . The power supply provided with the "PoE Out" version of the RB5009 (RB5009 UPr +S+IN ) is the 48V 2A: https://mikrotik.com/product/48v2a96w so it ...
by jaclaz
Thu Oct 31, 2024 2:02 pm
Forum: General
Topic: Small bug in DHCP Relay settings 6.49.17 [SOLVED]
Replies: 2
Views: 225

Re: Small bug in DHCP Relay settings 6.49.17 [SOLVED]

Ah, OK :) , I tried again (started from scratch after a reset with no default configuration to be sure) and you are right, though the "logic" is inverted, I can confirm that now it works as you described, then it was only a false alarm, sorry :oops: I wonder how it could have happened yest...
by jaclaz
Thu Oct 31, 2024 11:58 am
Forum: General
Topic: Small bug in DHCP Relay settings 6.49.17 [SOLVED]
Replies: 2
Views: 225

Small bug in DHCP Relay settings 6.49.17 [SOLVED]

While doing some "crazy" experiments on a hap lite running 6.49.17 I happened to find a "strange" thing related to the /ip dhcp-relay. I tried adding a dhcp relay: /ip dhcp-relay add dhcp-server=192.168.1.151 interface=bridge1 name=relay1 ok. The I tried adding a second one, and ...
by jaclaz
Thu Oct 31, 2024 11:18 am
Forum: Beginner Basics
Topic: POE Questions
Replies: 9
Views: 503

Re: POE Questions

Good (all is well that ends well). :) The 8.9 W (183 mA@48.9V) that you see on the RB5009 is what I would have expected for a device that is essentially a media converter/modem, but even if you add to it the wireless (and that is enough to have the Mikrotik freak out) the added draw for the radio(s)...
by jaclaz
Thu Oct 31, 2024 10:47 am
Forum: RouterBOARD hardware
Topic: Hap AX3 as an access point
Replies: 15
Views: 1379

Re: Hap AX3 as an access point

Not that it anywhere documented properly, but the RB5009UPr+S+IN should be compatible with BOTH 802.3af/at (the latter limited to 440 mA) AND with the "old" Mikrotik passive power @24V. If you power the RB5009 at 24V (by either passive PoE or jack/terminal) it will output 24V (Passive PoE ...
by jaclaz
Wed Oct 30, 2024 7:40 pm
Forum: Wireless Networking
Topic: SXTsq 5ac as a PtP link - looking for suggestions for improvements
Replies: 8
Views: 846

Re: SXTsq 5ac as a PtP link - looking for suggestions for improvements

Contacted LinITX.com and they helped me tweak the settings on both APs. Now I am getting solid 400-500Mbps link between the aerials and I am very happy with the bridge! And, unless they are a trade secrets, can you share these tweaks? (I am assuming that they are "generic good practice" t...
by jaclaz
Wed Oct 30, 2024 7:25 pm
Forum: Beginner Basics
Topic: Not enough permissions? [SOLVED]
Replies: 17
Views: 1205

Re: Not enough permissions? [SOLVED]

Check the users you have. A normal Mikrotik (default) has only "admin" as user (and it is generally recommended to change the name to something else). There are botnets that try to accesa Mikrotik devices and if they succeed, they remove permissions from "admin" and add a user &q...
by jaclaz
Wed Oct 30, 2024 4:38 pm
Forum: Beginner Basics
Topic: POE Questions
Replies: 9
Views: 503

Re: POE Questions

But your splitter is one with the conversion at 12V? It is entirely possible that the "default" power supply is oversized ( and by turning off the radio surely you reduced the power needed). As well it is possible that a device provided with a 12V supply actually accepts a much wider range...
by jaclaz
Wed Oct 30, 2024 11:50 am
Forum: General
Topic: WireGuard link on 7.15 gets stuck after peer was down, a ping or cycling the peer will unstuck it [SOLVED]
Replies: 16
Views: 3307

Re: WireGuard link on 7.15 gets stuck after peer was down, a ping or cycling the peer will unstuck it [SOLVED]

You could experiment with the Mikrotik Cloud service: https://help.mikrotik.com/docs/spaces/ROS/pages/97779929/Cloud#Cloud-Updatetime no idea how fast it is (and whether its uptime is reliable enough). From the little experience I have with NTP, the time it takes to sync is "random", somet...
by jaclaz
Wed Oct 30, 2024 11:30 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

It seems just fine to me :) in the sense that it should work, but is not really what I suggested. The idea was that the manual addresses given to the Mikrotik interfaces should be outside the range of the addresses the DHCP of the ISP and LTE would lease, so that when/if you connect additionally ano...
by jaclaz
Wed Oct 30, 2024 1:25 am
Forum: Beginner Basics
Topic: Brand new CRS-305-1G-4S+-IN, login doesn't work
Replies: 9
Views: 1584

Re: Brand new CRS-305-1G-4S+-IN, login doesn't work

New passwords do not contain those characters anymore.
Sure, but how do you know whether the device ericmason64 is having issues with has an "old style" or a "new style" password?
by jaclaz
Tue Oct 29, 2024 11:04 pm
Forum: Beginner Basics
Topic: Brand new CRS-305-1G-4S+-IN, login doesn't work
Replies: 9
Views: 1584

Re: Brand new CRS-305-1G-4S+-IN, login doesn't work

Be very aware of possible ambiguous characters like oO0, Il1, G6, B8, S5, Z2, the password Is usually written in tiny characters in a not particularly readable font.
by jaclaz
Tue Oct 29, 2024 10:52 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Of course It depends, but usually DHCP servers (in *any* device) are pre- configured to not cover the whole address space of the network. As an example, Mikrotik devices are usually configured (defconf) for addresses 192.168.88.10 to 192.168.88.254, while keeping for itself 192.168.88.1. (the wirele...
by jaclaz
Tue Oct 29, 2024 8:06 pm
Forum: Beginner Basics
Topic: POE Questions
Replies: 9
Views: 503

Re: POE Questions

It looks a lot like an Altice UBC1326 (AA00) made by UBEE in Vietnam. I thought that our good guys at italian TIM/Telecom were good at re-branding/re-naming routers in the most confusing manner possible :shock: , but it seems like the french SFR people are even better at it :lol: . Check here: https...
by jaclaz
Tue Oct 29, 2024 4:35 pm
Forum: General
Topic: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]
Replies: 47
Views: 2063

Re: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]

Maybe it is just a case of serendipity, one of the good Mikrotik developers had this driver/fix/whatever ready in his drawer but never found the time/opportunity to add it to ROS, and crosswind's request just triggered the mechanism that allowed adding it to the next release. About the UEFI booting ...
by jaclaz
Tue Oct 29, 2024 4:16 pm
Forum: Beginner Basics
Topic: POE Questions
Replies: 9
Views: 503

Re: POE Questions

Post the exact model of that ISP box, maybe specs can be found. Loosely, if the replacement power supply is @12V, it seems like it wants 12V (or maybe 24V) while the Mikrotik will output PoE at the highest available power source (in your case only the default power brick @48V). The PoE splitter that...
by jaclaz
Tue Oct 29, 2024 12:46 pm
Forum: Wireless Networking
Topic: Best hardware for indoor extension of high speed wireless connection
Replies: 6
Views: 569

Re: Best hardware for indoor extension of high speed wireless connection

I see, in historical buildings - besides the (high) costs - the paperwork/authorizations are usually an issue (please read as "huge PITA").. It is strange how each country has different (besides standards) local uses when it comes to wiring. When I was living in Germany for a short period ...
by jaclaz
Tue Oct 29, 2024 2:24 am
Forum: Wireless Networking
Topic: Mikrotik hAP ax2 as a media bridge, versus other options (Mikrotik models or others)
Replies: 4
Views: 720

Re: Mikrotik hAP ax2 as a media bridge, versus other options (Mikrotik models or others)

Unlike what one could imagine from intuition a higher antenna gain is not necessarily correlated with "better" or "faster" connection. If norms are followed, there is a limit in the output power of the device (tramission), It depends on the device, but if the limit on a given cha...
by jaclaz
Tue Oct 29, 2024 2:13 am
Forum: Wireless Networking
Topic: RF Characteristics of hAP AC Lite
Replies: 8
Views: 386

Re: RF Characteristics of hAP AC Lite

Well, if 2.4GHz only is needed, maybe the Ax Lite should be considered.
by jaclaz
Tue Oct 29, 2024 1:18 am
Forum: General
Topic: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]
Replies: 47
Views: 2063

Re: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]

how is it possible for someone to get a "Forum Guru" tag while being so confidently and completely wrong about something like this? No correlation, JFYI. As an example, I got mine automatically when reaching a certain number of posts, the tag is independent from my knowledge or how much a...
by jaclaz
Mon Oct 28, 2024 2:53 pm
Forum: Wireless Networking
Topic: Mikrotik hAP ax2 as a media bridge, versus other options (Mikrotik models or others)
Replies: 4
Views: 720

Re: Mikrotik hAP ax2 as a media bridge, versus other options (Mikrotik models or others)

If the "source" is "slow" it is not like having an AX device will make it faster, from what you write, an AC Lite TC seems like a good bet:
https://mikrotik.com/product/RB952Ui-5ac2nD-TC
by jaclaz
Mon Oct 28, 2024 2:31 pm
Forum: Wireless Networking
Topic: RF Characteristics of hAP AC Lite
Replies: 8
Views: 386

Re: RF Characteristics of hAP AC Lite

Here is a (better) photo of the AC Lite TC. The board seems identical, and definitely in one corner (now top left on this photo) there are two PCB antennas on two contiguous sides, so at 90°: https://nanoteh.md/en/quickview/9858 https://6e616e6f7465680a.ultracdn.net/radix/img/items/20210219/11/602f8...
by jaclaz
Mon Oct 28, 2024 2:17 pm
Forum: RouterBOARD hardware
Topic: Replacement rack ear screws
Replies: 4
Views: 363

Re: Replacement rack ear screws

A fellow forum user @arnd did measurements and posted results in this post . I strongly believe that all MT rack-mountable devices use same type of "ear mounting" screws... But I don't fully trust that piece of info because of this post (about the 4011 that has a different way to mount ea...
by jaclaz
Mon Oct 28, 2024 1:15 pm
Forum: Wireless Networking
Topic: RF Characteristics of hAP AC Lite
Replies: 8
Views: 386

Re: RF Characteristics of hAP AC Lite

Here is a maybe better description: https://www.arednmesh.org/comment/10459#comment-10459 One connector is definitely in the left hand corner, but you are right, the other two are on the opposite side of the PCB. In any case the thingy seems intended to stay flat, not vertical, at least in the inten...
by jaclaz
Mon Oct 28, 2024 12:57 pm
Forum: RouterBOARD hardware
Topic: Replacement rack ear screws
Replies: 4
Views: 363

Re: Replacement rack ear screws

Can you check the measure of the hole and the thickness of the ear? The screws should be either M4 8 mm length, or M3 6 mm, but if they are a couple mm longer it shouldn't be an issue. Or you can get a suitable kit on (say) Amazon, example: https://www.amazon.com/SZHKM-480pcs-Assortment-Stainless-As...
by jaclaz
Mon Oct 28, 2024 11:09 am
Forum: Wireless Networking
Topic: RF Characteristics of hAP AC Lite
Replies: 8
Views: 386

Re: RF Characteristics of hAP AC Lite

Look if you can find some data on the FCC documents: https://fccid.io/TV7RB952-5AC2ND In the internal photo: https://fccid.io/TV7RB952-5AC2ND/Internal-Photos/Internal-Photos-3088357 the two antennas are the two dark blocks in bottom left corner, they should be omnidirectional thus emissions should h...
by jaclaz
Mon Oct 28, 2024 10:48 am
Forum: Wireless Networking
Topic: WiFi Disconnect Issues with hAP ax² - Seeking Advice on Stable Version and Future Updates
Replies: 8
Views: 1145

Re: WiFi Disconnect Issues with hAP ax² - Seeking Advice on Stable Version and Future Updates

Yep, I understand, but due to the way Mikrotik creates the updates (since they "mix" bug fixes with new features) just updating because a new version came out can actually be less safe. :shock: The same new feature that creates the instability (whatever it is) may well - for all we know - ...
by jaclaz
Sun Oct 27, 2024 8:06 pm
Forum: Wireless Networking
Topic: Best hardware for indoor extension of high speed wireless connection
Replies: 6
Views: 569

Re: Best hardware for indoor extension of high speed wireless connection

Coax cables (of course it depends on the exact type and on the actual conditions they are in) can actually be very fast, up to 2.5 Gb in theory, but the quality of the cables matters, I think that realistically something around 1 GB can be achieved on *any* coaxial cable. MoCA adapters/converters ca...
by jaclaz
Sun Oct 27, 2024 5:49 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Well, RouiterOS 7 (on a beefy enough device, such as a RB5009, but given the slow internet connection also an Ax2/3 might do, cannot say) can run containers, including Pi-hole and Adguard.

No idea how complex (or simple) it is to run one.
by jaclaz
Sun Oct 27, 2024 2:30 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 126
Views: 13270

Re: hap ax3 random wireless disconnects

7.15 patch notes include wifi-qcom driver update.
I thought that the issues were caused mainly by that driver update :shock: , it doesn't sound like a desired new functionality ... :lol:
by jaclaz
Sun Oct 27, 2024 2:10 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

@KiwiBloke I believe the question is up for debate, and possible answers to it can be different depending on use and hardware involved, some devices (ISP router and LTE modem router) might have very good built-in firewalls or may have not any. If we take for granted that the Mikrotik firewall is the...
by jaclaz
Sun Oct 27, 2024 10:14 am
Forum: Scripting
Topic: Script for CENTRAL-BACKUPS
Replies: 3
Views: 357

Re: Script for CENTRAL-BACKUPS

Only to clear how it seems like we ( baragoon, rextended and myself) are a bunch of crazy guys there was an initial post by user andreacar: https://forum.mikrotik.com/memberlist.php?mode=viewprofile&u=225916 promoting an article on his blog: https://andreacaracciolo.it/2024/10/26/mikrotik-centra...
by jaclaz
Sun Oct 27, 2024 9:59 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Rethinking about it, I think this is "normal" (and had to be expected) due to the dynamic nature of the setup. It should be tested/checked, but this is what I believe it is happening: 1) Since the route to the LTE is created by the LTE modem DHCP, when you turn it off it simply disappears ...
by jaclaz
Sun Oct 27, 2024 9:38 am
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

I would probably go with two L009 since they are switches with SFP Hmmm. You must have missed the memo about the "on the cheap" requirement :wink: , you go to the OP parents telling them how it is much better to spend 2x119$=238$ instead of 2x40=80$ to be able to switch at 1352.09 Mbps (i...
by jaclaz
Sat Oct 26, 2024 8:14 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Or you could do with a couple of these:
https://www.crxconec.com/en/product/CC-10-00026.html

You can find them as Intellinet IWP-BOX SC-6 or EAN : 4049759111489, at least here they can be found for 7/10 €/each.
by jaclaz
Sat Oct 26, 2024 7:51 pm
Forum: Scripting
Topic: Script for CENTRAL-BACKUPS
Replies: 3
Views: 357

Re: Script for CENTRAL-BACKUPS

I can translate the "article" easily, in one sentence: Here is a video about it: https://www.youtube.com/watch?v=YRscjpVouXA No subtitles, nice (tiny) quad Winbox screenshots. Maybe someone with a huge screen, putting youtube fullscreen, may be able to read something in it. BTW the site re...
by jaclaz
Sat Oct 26, 2024 6:18 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Yep, as I see it, if you go down the rack avenue go down it in full (and it has a steep price), otherwise either have long cables from the wall or use wall plates on a box, and keystones all the way. The Hex/hexS/hex refresh are not "rack mountable", the RB5009 or the L009 (say) and higher...
by jaclaz
Sat Oct 26, 2024 12:37 pm
Forum: General
Topic: How to block YouTube effectively
Replies: 43
Views: 15692

Re: How to block YouTube effectively

"you get internet on your workplace and you are not allowed to use it to stream youtube for background music and video, if we find you doing that you are fired on the spot". Then you don't have to worry about site blocking anymore. https://www.imdb.com/title/tt0079470/quotes/?item=qt04719...
by jaclaz
Sat Oct 26, 2024 12:01 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Yep, but don't take me as an example of "clean", "neat" cables architect. As long as something works, it is enough for me (I know people that buy patch cables with a given colour because they fit better in the environment). I like orange cables, they give you a sense of calm urge...
by jaclaz
Sat Oct 26, 2024 11:33 am
Forum: Wireless Networking
Topic: Connect to Hotel Wifi
Replies: 21
Views: 1907

Re: Connect to Hotel Wifi

It is strange, "consumer" devices all have a basic default configuration (including firewall) AFAIK (all with comment "defconf"). Typical default firewall set (it may depend on the exact version of RouterOS yoiu are running, these come from 6.48.6) /ip firewall filter add action=...
by jaclaz
Sat Oct 26, 2024 2:55 am
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Well, a wall plate Is 11$, a patch panel has at least 4 connector and It Is more around 70$, if you don't see the difference, your parents surely will. :roll: :wink: But yes, if you are going to make anyway a panel (why?[1]) you can add a fiber keystone to It. [1] I mean, you are not going to put to...
by jaclaz
Sat Oct 26, 2024 2:32 am
Forum: General
Topic: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]
Replies: 47
Views: 2063

Re: RouterOS x86, no support for Chelsio T540 VF? [SOLVED]

Amm0 has a dedicated GitHub repository with the updated scripts/mods, AND pre-made corrected images, see here: https://forum.mikrotik.com/viewtopic.php?t=184254 https://github.com/tikoci/fat-chr/releases You can try one of the pre-made images. There are no issues when updating, once an image works i...
by jaclaz
Fri Oct 25, 2024 11:43 pm
Forum: Wireless Networking
Topic: WiFi Disconnect Issues with hAP ax² - Seeking Advice on Stable Version and Future Updates
Replies: 8
Views: 1145

Re: WiFi Disconnect Issues with hAP ax² - Seeking Advice on Stable Version and Future Updates

If I may, a meta-question. Why (the heck) are most people here on the forum obsessed with updating? Besides the obvious mistakes the good Mikrotik guys insist on making, pushing out new versions without appropriate testing, and mixing all together, without even an attempt to prioritize them, new fea...
by jaclaz
Fri Oct 25, 2024 11:15 pm
Forum: General
Topic: RouterOS 7 WAN failover -- ARP?
Replies: 11
Views: 502

Re: RouterOS 7 WAN failover -- ARP?

I have no idea how easy It was in v6, but It can be fairly easy in v7.

JFYI:
viewtopic.php?t=198999
by jaclaz
Fri Oct 25, 2024 8:36 pm
Forum: Beginner Basics
Topic: so I can use cAP ax as my router?!?! [SOLVED]
Replies: 9
Views: 649

Re: so I can use cAP ax as my router?!?! [SOLVED]

The "efficiently" depends on the Mikrotik device involved, the mentioned map lite is barely capable of routing 100 Mbps (but it is a 3.5 W device) a Cap AX is rather capable and should top at around 1 Gbps (but it is 11 W). Even if you can, it doesn't mean you should, an hap Ax2 is a more ...
by jaclaz
Fri Oct 25, 2024 8:04 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

Well, if you hadn't this "fiber opportunity", anyone would have advised you a CAT6 cable, 1 Gb speed. With the two RB260GS, you need (for single mode fiber) two of these: https://mikrotik.com/product/S-31DLC20D-181 and thus get a 1.25 Gb connection. A camera feed may be what 10-15 Mbps? Hi...
by jaclaz
Fri Oct 25, 2024 7:02 pm
Forum: Beginner Basics
Topic: Can POE be "daisy chained" ?
Replies: 1
Views: 198

Re: Can POE be "daisy chained" ?

Yes and no, mostly no. CSS610-8P-2S+IN PoE-out Details PoE-out ports Ether1-Ether8 PoE out 802.3af/at Max out per port output (input 18-30 V) 1000 mA Max out per port output (input 30-57 V) 625 mA Total output power 140 CRS112-8P-4S-IN Powering Details Number of DC inputs 2 (DC jack) DC jack input V...
by jaclaz
Fri Oct 25, 2024 4:00 pm
Forum: RouterBOARD hardware
Topic: Recommend router and switch connected with private fiber
Replies: 26
Views: 1145

Re: Recommend router and switch connected with private fiber

If you are on the cheap, you can get away with two RB260GS'. one on each side of the 250 feet fiber, list price 2x$39.95. The "main" router (in the house), for the low speeds you are going to get from the ISP, could be an Ax2 or Ax3 (99-139$) and you would save one AP. Or even an Ax Lite (...
by jaclaz
Thu Oct 24, 2024 7:00 pm
Forum: Wireless Networking
Topic: Best hardware for indoor extension of high speed wireless connection
Replies: 6
Views: 569

Re: Best hardware for indoor extension of high speed wireless connection

How are the coaxial cables laid?

Fiber is really thin (much thinner than a coaxial cable (or any ethernet > CAT3 cable), and can normally replace old cables in *any* conduit/paasage/hole, the only thing one needs to be careful with is small (very small) radius curves.
by jaclaz
Thu Oct 24, 2024 3:08 pm
Forum: Wireless Networking
Topic: Poor Wi-Fi range on cAP AX
Replies: 15
Views: 854

Re: Poor Wi-Fi range on cAP AX

I don't see any AX3 falling from the ceiling ... I got a couple hanging upside down (also AC3, exact same enclosure). That plastic foot is designed to be used for it. Vertical mount on desk, horizontal mount on desk but also wall mount and ceiling mount . Interesting. :roll: Instead of a large blac...
by jaclaz
Thu Oct 24, 2024 12:45 pm
Forum: Wireless Networking
Topic: Poor Wi-Fi range on cAP AX
Replies: 15
Views: 854

Re: Poor Wi-Fi range on cAP AX

Of course I will drill the housing and on the end they will be outside and I will have kind of white & black spider on the wall. Naaah, you don't want that HGO antenna, besides it being black, it has not the hinge at the bottom, they are straight to the connector only. You can get a (white) thi...
by jaclaz
Thu Oct 24, 2024 10:57 am
Forum: RouterBOARD hardware
Topic: rbwsAP-5hac2nd discontinued
Replies: 5
Views: 4038

Re: rbwsAP-5hac2nd discontinued

The newish Wap Ax may be suitable, without the base/support it can be wall mounted and it is small enough to be unobtrusive:

viewtopic.php?t=196813
https://www.wifihw.cz/img.asp?attid=3848208
by jaclaz
Wed Oct 23, 2024 8:20 pm
Forum: General
Topic: hAC ax2 Mode Button To Power Off and Power On when pressed? [SOLVED]
Replies: 5
Views: 328

Re: hAC ax2 Mode Button To Power Off and Power On when pressed? [SOLVED]

Don't unplug/replug, and certainly don't make your parents do that. Buy an extension cable with a switch (with light) and a surge protector. mkx is very correct in describing the best possible approach, but it must be convenient for the user. I can imagine (old) parents unplugging, but I have diffic...
by jaclaz
Wed Oct 23, 2024 4:16 pm
Forum: Beginner Basics
Topic: Auto Failover 2 ISP SAME Ip Range
Replies: 1
Views: 209

Re: Auto Failover 2 ISP SAME Ip Range

Well, you have the same IP range, but different IP addresses 192.168.3. 3 and 192.168.3. 4 , so it is nothing "special", it is a normal situation with two distinct gateways. The only issue may be if one of the two gateways is also a DHCP server, if that device goes down you will have troub...
by jaclaz
Wed Oct 23, 2024 11:33 am
Forum: General
Topic: Datasheet for new improved hEX?
Replies: 53
Views: 4798

Re: Datasheet for new improved hEX?

I use these quite a lot, anything I buy gets swapped over to a multi 2.1-2.5mm plug, I did a couple of items last week, a new record player and my hAP ax2 which are now rocking this type of dual plug https://www.farnell.com/datasheets/2286781.pdf Interesting hobby :shock: , voiding warranties of ne...
by jaclaz
Tue Oct 22, 2024 11:35 pm
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

Unlikely, Power/Power management issues should not influence MAC addresses or DHCP mis-assignments.
by jaclaz
Tue Oct 22, 2024 9:12 pm
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

was reading some forums and someone suggested this: https://support.windwardsoftware.com/support/solutions/articles/66000487622-disable-power-saving-and-power-options-in-windows it doesn't work the behavior doesnt change at reboot Sure, last time my car engine didn't start I did make sure that tire...
by jaclaz
Tue Oct 22, 2024 9:02 pm
Forum: General
Topic: Datasheet for new improved hEX?
Replies: 53
Views: 4798

Re: Datasheet for new improved hEX?

Well, several resellers provide this info (which is missing on Mikrotik power supplies official pages), example: https://www.batna24.com/en/p/mikrotik-saw302401200ga-power-supply-rmmip Anyway, it is a "standard" 5.5mm*2.1mm DC Plug. Should be 11 mm long, but I have seen in the wild slightl...
by jaclaz
Tue Oct 22, 2024 7:27 pm
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

It is a long time I don't deal with docking stations, so this info may be outdated/not applicable, there are two kinds of docking stations, AFAICR, one that *somehow* bridges the laptop network card (sort of passthrough and thus has the same MAC on the network), and one that has an own, different fr...
by jaclaz
Tue Oct 22, 2024 2:25 am
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

In terminal, run
/log print
then you can copy and paste the text.
by jaclaz
Mon Oct 21, 2024 2:42 am
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

Conceptually an APIPA address Is generated when these two happen: 1) a device connected has a DHCP client 2) for *some reasons* the DHCP server fails to lease an address to it A computer that falls back to an APIPA address will try periodically to get a "proper" IP address from the DHCP se...
by jaclaz
Sun Oct 20, 2024 6:32 pm
Forum: Beginner Basics
Topic: why my computer assigned IANA IP?
Replies: 39
Views: 1522

Re: why my computer assigned IANA IP?

Yes, you can delete it. But do check again the ARP list in a week time, APIPA addresses tend to appear out of nowhere on wednesday and friday nights (with or without a full moon) :wink: :lol: . Seriously, a same given MAC can have more than one IP address, that APIPA one most likely was created at t...
by jaclaz
Sun Oct 20, 2024 6:22 pm
Forum: Scripting
Topic: KNOT - Execute AT commands through a script [SOLVED]
Replies: 3
Views: 319

Re: KNOT - Execute AT commands through a script [SOLVED]

Yep :) , the link to thread #207137 you just posted looks very different from the link to the thread #207137 I suggested. :lol:
by jaclaz
Sun Oct 20, 2024 5:12 pm
Forum: General
Topic: disconnected, register to other interface
Replies: 9
Views: 548

Re: disconnected, register to other interface

It depends on what you want to do. As mkx wrote Note that in new wifi drivers it's not possible to disable legacy radio standards, it's only possible to cap it to certain radio standards and disable newest ones (yes, sometimes this can be necessary). and according to this: https://forum.mikrotik.com...
by jaclaz
Sun Oct 20, 2024 4:57 pm
Forum: Beginner Basics
Topic: No internet access HAP AC lite LTE 6
Replies: 6
Views: 352

Re: No internet access HAP AC lite LTE 6

A presumably default firewall configuration can be extracted from this thread: https://forum.mikrotik.com/viewtopic.php?t=199154 /ip firewall filter add action=accept chain=input comment="defconf: accept established,related,untracked" connection-state=established,related,untracked add acti...
by jaclaz
Sun Oct 20, 2024 4:51 pm
Forum: Scripting
Topic: KNOT - Execute AT commands through a script [SOLVED]
Replies: 3
Views: 319

Re: KNOT - Execute AT commands through a script [SOLVED]

It is not easy/straightforward, and there are limitations. For ARM devices there is a "better" solution through a container: https://forum.mikrotik.com/viewtopic.php?t=193785 the same thread contains some hints towards the possibility of using /interface/ppp-client/at-chat: https://forum.m...
by jaclaz
Sun Oct 20, 2024 4:20 pm
Forum: Beginner Basics
Topic: mikrotik advanced Firewall Rules
Replies: 9
Views: 685

Re: mikrotik advanced Firewall Rules

So, if I get this right, the three rules are a way to write something logically *like* (pseudo-pseudo code):
IF (NOT LAN AND NOT WAN) THEN DROP
or "accept only from LAN and WAN"
Correct? :?:
Good to know. :)
by jaclaz
Sun Oct 20, 2024 2:54 pm
Forum: General
Topic: disconnected, register to other interface
Replies: 9
Views: 548

Re: disconnected, register to other interface

What is wrong with allowing 802.11b for 2ghz? Not a direct answer to your question, but I have read in multiple places how having b enabled slows down connection. I don' t think it is really-really true, in the sense that having it enabled AND having a b device connected does slow it a bit, but hav...
by jaclaz
Sun Oct 20, 2024 2:01 pm
Forum: Beginner Basics
Topic: add an DNS server to Mikrotik router
Replies: 6
Views: 1038

Re: add an DNS server to Mikrotik router

This should be the cleaned up version in CODE tags: # 2024-10-04 18:08:16 by RouterOS 7.16 # software id = UE3C-1FI0 # # model = RB760iGS # serial number = /interface bridge add admin-mac=00:00:00:00:00:00 auto-mac=no comment=defconf name=local \ port-cost-mode=short /interface ethernet set [ find d...
by jaclaz
Sun Oct 20, 2024 12:59 pm
Forum: Wireless Networking
Topic: hAP ax^3 - AP-Bridge support
Replies: 12
Views: 810

Re: hAP ax^3 - AP-Bridge support

Are we allowed to state that the adjective "graceful" cannot be used to describe the transition between old and new/wireless and wifi/capsman and capsman(2)? :?
:lol:
by jaclaz
Sun Oct 20, 2024 12:44 pm
Forum: RouterBOARD hardware
Topic: RB941-2ND/TC Still Produce/Support?
Replies: 6
Views: 877

Re: RB941-2ND/TC Still Produce/Support?

Yep, but would it be better an egg today tomorrow or a hen tomorrow some unknown time in the future? :?:
:lol:
by jaclaz
Sun Oct 20, 2024 12:37 pm
Forum: Virtualization
Topic: Router OS 7 on UEFI
Replies: 65
Views: 13511

Re: Router OS 7 on UEFI

Hey! When I was setting up ROS 7.1.3 on Hyper-V Gen2, I found it helpful to use a VHDX file for the installation. Make sure the image you’re using is compatible with UEFI boot since that can cause issues if it’s not. I had some trouble downloading the image smoothly too, so I ended up switching net...
by jaclaz
Sun Oct 20, 2024 3:09 am
Forum: Beginner Basics
Topic: ISP modem and MikroTik (CRS310-8G+2S+IN) no link on interface, cannot connect to internet
Replies: 19
Views: 3675

Re: ISP modem and MikroTik (CRS310-8G+2S+IN) no link on interface, cannot connect to internet

It Is still not at all clear ( to me ) if the issue Is just the DHCP client or something else. I would try the following experiment: 1) connect ISP router->dumb switch->Mikrotik (ether1) 2) the ether1 should get an IP address and connection established 3) check which ip the ether1 got, with /ip addr...
by jaclaz
Sat Oct 19, 2024 8:05 pm
Forum: RouterBOARD hardware
Topic: RB941-2ND/TC Still Produce/Support?
Replies: 6
Views: 877

Re: RB941-2ND/TC Still Produce/Support?

Surely there are a few "holes" in Mikrotik product range, the hex is now to be considered "obsolete" an the "new hex" is near to be ready for production/sale: https://mt.lv/hex_october the plan seems to be selling it for the same price of the current hex (same 50-60 pri...
by jaclaz
Sat Oct 19, 2024 5:27 pm
Forum: RouterBOARD hardware
Topic: RB941-2ND/TC Still Produce/Support?
Replies: 6
Views: 877

Re: RB941-2ND/TC Still Produce/Support?

But if mikrotik has similar product, with minimum all port gigabit Ethernet, dual core arm64 processor, 1024MB Ram and 512MB Internal Storage, USB 3.0, and price still under $50, I think I will save money and consider to buy new mikrotik hardware. ... and also be able to make coffee (black, strong ...
by jaclaz
Sat Oct 19, 2024 2:51 pm
Forum: Beginner Basics
Topic: Need help and suggestions for new network
Replies: 14
Views: 722

Re: Need help and suggestions for new network

And - IMHO - leave the desktop alone, unless it is a low power one (but then probably it won't have enough "juice" to run with 10 Gb interfaces) . Until a few years ago (with much slower networks) it made a lot of sense to use re-purposed desktops passive cooled thin clients to do any kind...
by jaclaz
Fri Oct 18, 2024 11:20 pm
Forum: General
Topic: External antenna for MikroTik mAP 2nD [SOLVED]
Replies: 6
Views: 1752

Re: External antenna for MikroTik mAP 2nD [SOLVED]

Yes and no.
Yes It will work.
No that Is not intended for permanent connection, It Is a kind of probe, for temporary connection and It Is too long to be practical.

But this should do:
https://it.aliexpress.com/item/1005007500175358.html
the key is the "mini".
by jaclaz
Fri Oct 18, 2024 2:53 pm
Forum: Beginner Basics
Topic: Need help and suggestions for new network
Replies: 14
Views: 722

Re: Need help and suggestions for new network

There are two sides to your "underlying" issue. If you think you can outsmart your kids, you are wrong :shock: , they will find a way out, before or later. But on the other hand, knowing that - one way or the other - you will lose your battle, you (and them) can still have a lot of fun fig...
by jaclaz
Fri Oct 18, 2024 11:12 am
Forum: Scripting
Topic: import dry-run inconsistent results (bug?)
Replies: 3
Views: 622

Re: import dry-run inconsistent results (bug?)

The line x column 24 corresponds to just before the = sign in "set [ find default-name=" Could it be that (for *whatever* reason) the issue is in the path? I.e. would a one liner work? /interface wifi set [ find default-name=wifi1 ] configuration.manager=capsman datapath=capdp disabled=no ...
by jaclaz
Fri Oct 18, 2024 12:43 am
Forum: Beginner Basics
Topic: Need help and suggestions for new network
Replies: 14
Views: 722

Re: Need help and suggestions for new network

I will throw on the table the idea of using wall access points *like* the TP-Link EAP615-Wall: https://www.tp-link.com/en/business-networking/omada-sdn-access-point/eap615-wall/ No idea if these specific devices are any good, but the concept seems perfect for a newly cabled building, a small PoE pow...
by jaclaz
Thu Oct 17, 2024 11:16 pm
Forum: RouterBOARD hardware
Topic: RB5009 vs RB4011
Replies: 4
Views: 1017

Re: RB5009 vs RB4011

Naah, with a RB5009/L009 rackmount kit K-79 you can mount a single RB5009 in a standard rack: https://mikrotik.com/product/rb5009_mount#fndtn-gallery https://cdn.mikrotik.com/web-assets/rb_images/2071_hi_res.png The list price of the two routers Is the same $219, It Is strange that on your local mar...
by jaclaz
Thu Oct 17, 2024 1:53 am
Forum: Beginner Basics
Topic: hAP ax^3 - access to NAS
Replies: 11
Views: 2104

Re: hAP ax^3 - access to NAS

Cannot really say. Windows (not only 10/11, also - though in a minor way - also Vista and 7) has a lot of complications related to networking, like the differences between private and public network and in 10 and 11 additionally there are some default rules in the internal firewall that may well pre...
by jaclaz
Wed Oct 16, 2024 11:45 pm
Forum: RouterBOARD hardware
Topic: Any recommendation for 57V PSU (RB5009)?
Replies: 10
Views: 1799

Re: Any recommendation for 57V PSU (RB5009)?

As often happens It depends, while having the lowest acceptable voltage may be a good thing for the internal power supply, It Is not such a good thing for the cable (and connectors). If we have an hypothetical powered device that accepts *any* voltage and needs the same 24W of the previous example, ...
by jaclaz
Wed Oct 16, 2024 9:15 pm
Forum: RouterBOARD hardware
Topic: Any recommendation for 57V PSU (RB5009)?
Replies: 10
Views: 1799

Re: Any recommendation for 57V PSU (RB5009)?

I wouldn't go to the max voltage (57V). It won't bring you any benefit over 48V. Better to get a beefy 48V PSU than a flimsy 57V. The router's internal electronics (DC/DC converter) will step down the voltage anyway. It's never a good idea to operate a device at its absolute maximum ratings if you ...
by jaclaz
Wed Oct 16, 2024 8:32 pm
Forum: Beginner Basics
Topic: Airprint for guest network
Replies: 8
Views: 881

Re: Airprint for guest network

... and the usual advice: don't use VLAN1 on Mikrotiks.
by jaclaz
Wed Oct 16, 2024 5:40 pm
Forum: Beginner Basics
Topic: hAP ax^3 - access to NAS
Replies: 11
Views: 2104

Re: hAP ax^3 - access to NAS

Typically you add all ports to the bridge and disable the DHCP server, the device will become a "switch". The DHCP client that normally runs on ether1 can then be removed (it should become disabled anyway the moment ether1 becomes slave to the bridge). The device should be "pass-throu...
by jaclaz
Wed Oct 16, 2024 3:34 pm
Forum: Beginner Basics
Topic: Mikrotik novice and PTP setup
Replies: 11
Views: 686

Re: Mikrotik novice and PTP setup

So, the two configuration you posted are working? Good. :) The general advice is to not use the default "admin" as username, what is happening at large is that on devices on which there is not a valid (secure) password set and the (only) user is "admin" and the device is accessib...
by jaclaz
Wed Oct 16, 2024 12:11 am
Forum: Beginner Basics
Topic: hAP ax^3 - access to NAS
Replies: 11
Views: 2104

Re: hAP ax^3 - access to NAS

For simple setups, there Is only one device that acts as router, this Is either the ISP modem/router or - if that device Is used only essentially as modem/adapter, the first device behind It, vital as firewall. This device Is the border between WAN (outside, here be lions) and LAN (inside, home). Ev...
by jaclaz
Tue Oct 15, 2024 11:21 pm
Forum: Beginner Basics
Topic: I can't install mikrotik os x86.
Replies: 11
Views: 651

Re: I can't install mikrotik os x86.

Sometimes it is only to do new, strange things, go where no men has been before and similar.
Is It "smart" or produttive?
Certainly not, but It can be a lot of fun.
by jaclaz
Tue Oct 15, 2024 8:39 pm
Forum: Beginner Basics
Topic: Mikrotik novice and PTP setup
Replies: 11
Views: 686

Re: Mikrotik novice and PTP setup

OK, now that you have *something* even if incomplete and not (yet) working, follow the instructions here: https://forum.mikrotik.com/viewtopic.php?t=203686#p1051720 and post the configuration of both devices (AP and "station"), so that it can be reviewed and - hopefully - the issue(s) can ...
by jaclaz
Tue Oct 15, 2024 3:23 pm
Forum: Beginner Basics
Topic: Mikrotik novice and PTP setup
Replies: 11
Views: 686

Re: Mikrotik novice and PTP setup

To simplify the matter, I need the antenna management part to be reachable on a specific IP and VLAN and that the tagged and untagged packets arrive on the other side as they left. Splitting that in two, and inverting the two requirements it becomes: 1) the tagged and untagged packets arrive on the...
by jaclaz
Mon Oct 14, 2024 11:33 pm
Forum: General
Topic: Hardware suggestion please
Replies: 3
Views: 248

Re: Hardware suggestion please

The Ax3 will choke around 1.1-1.2 Gbps.
Rule of the thumb Is test results for routing with 25 firewall filter rules, 512 bytes packets.
For 1.6 Gbps you will need a RB5009 (or a RB4011).
by jaclaz
Mon Oct 14, 2024 6:19 pm
Forum: Beginner Basics
Topic: Mikrotik novice and PTP setup
Replies: 11
Views: 686

Re: Mikrotik novice and PTP setup

I don't care :shock: . If instead of a wireless link you had the possibility of running 175 m of ethernet cable, which kind of special cable would you have used to manage properly the VLANs? As I see it a wireless link is a replacement for an ethernet cable, whatever enters it on one end should arri...
by jaclaz
Mon Oct 14, 2024 6:11 pm
Forum: Wireless Networking
Topic: Connect to Hotel Wifi
Replies: 21
Views: 1907

Re: Connect to Hotel Wifi

Naah, Mikrotik has its share of responsabilities with (mis-)naming, but if you look at other vendors, the same thing is called "client" by TP-Link and a few other, but "WiFi Bridge" by D-Link (who calls the other end "station" :shock: ). More generally - besides "A...
by jaclaz
Mon Oct 14, 2024 6:09 pm
Forum: Beginner Basics
Topic: I can't install mikrotik os x86.
Replies: 11
Views: 651

Re: I can't install mikrotik os x86.

The emmc drivers are probably missing, very likely, emmc is not very common outside "embedded" systems nowadays, even if there used to be common user machines that ran on emmc storage a few years ago that did run Windows 10. In any case 8 Gb are not enough to install any recent Windows (un...
by jaclaz
Sun Oct 13, 2024 11:50 pm
Forum: Wireless Networking
Topic: security wpa2 and wpa3 psk : how to know wich one is used per clients ?
Replies: 14
Views: 663

Re: security wpa2 and wpa3 psk : how to know wich one is used per clients ?

Just imagine that you are hacker and you want to hack your network, will you use WPA2 or WPA3 for that attack?
... or some drug and a $5 wrench? :shock:
https://xkcd.com/538
by jaclaz
Sun Oct 13, 2024 11:42 pm
Forum: Beginner Basics
Topic: hAP ax^3 - access to NAS
Replies: 11
Views: 2104

Re: hAP ax^3 - access to NAS

I will ask another question ( which is actually - I believe - the same one erlinden asked but worded differently).

Do you really need to use two distinct networks (192.168.0.0/24 and 192.168.88.0/24)?

It is of course doable, but It adds complexity to the setup.
by jaclaz
Sun Oct 13, 2024 11:29 pm
Forum: Wireless Networking
Topic: Connect to Hotel Wifi
Replies: 21
Views: 1907

Re: Connect to Hotel Wifi

The terminology Is a mess. Station in layman speak means "client", an interface in station mode connects to an existing wireless network (hotel access point) just like your phone or laptop would. AP is much more intuitive as a name, It is the mode where the interface creates a new wireless...
by jaclaz
Sun Oct 13, 2024 8:13 pm
Forum: Beginner Basics
Topic: I can't install mikrotik os x86.
Replies: 11
Views: 651

Re: I can't install mikrotik os x86.

Maybe the issue is with the emmc.

Which motherboard are you using?

An emmc disk should go in Linux-like OS to /dev/mmcblk*, cannot say what happens with RouterOS, but I wouldn't be too surprised if there was no support for that.
by jaclaz
Sun Oct 13, 2024 7:20 pm
Forum: Beginner Basics
Topic: Firmware version discrepancy
Replies: 6
Views: 908

Re: Firmware version discrepancy

If I may ask a question, what is (if any) the *needed* correspondence between firmware and RouterOS? I mean OP ended up with having (newer) 7.15 firmware but running (older) RouterOS 7.14.3. Is this only "cosmetic" or it worked because the two versions were very "near"? In the PC...
by jaclaz
Sun Oct 13, 2024 6:05 pm
Forum: Beginner Basics
Topic: after reboot dhcp warning message
Replies: 1
Views: 189

Re: after reboot dhcp warning message

78:9A:18 is the oui for routerboard.com (read Mikrotik):
https://maclookup.app/macaddress/789a18

So, it is likely another Mikrotik device or some port/interface/bridge/whatever on your RB5009.
by jaclaz
Sat Oct 12, 2024 11:07 pm
Forum: Beginner Basics
Topic: I can't get internet connection
Replies: 4
Views: 341

Re: I can't get internet connection

In a configuration a route can be usually:
1) be generated by connection (Dynamic)
2) be provided by DHCP server (Dynamic)
3) be set manually (Static)

No way to know what you did or did not do without seeing your configuration.
by jaclaz
Sat Oct 12, 2024 11:00 pm
Forum: Beginner Basics
Topic: Routing Policy Issue - Not Working as Expected
Replies: 15
Views: 975

Re: Routing Policy Issue - Not Working as Expected

Maybe related to: https://help.mikrotik.com/docs/display/ROS/Policy+Routing It is not recommended to use both methods at the same time or you should know exactly what you are doing. If you really do need to use both mangle and routing rules in the same setup then keep in mind that mangle has higher ...
by jaclaz
Sat Oct 12, 2024 9:09 pm
Forum: General
Topic: RouterOS 7.x Connection Tracking, Failover and NAT
Replies: 14
Views: 669

Re: RouterOS 7.x Connection Tracking, Failover and NAT

Maybe it is the same thing we were discussing with Amm0 here:
viewtopic.php?t=198999#p1102299
In a nutshell masquerade vs. src-nat helps, but there is not a magic provision that helps in all types of connections.
by jaclaz
Sat Oct 12, 2024 7:41 pm
Forum: Wireless Networking
Topic: RBcAPGi Wireless no internet random
Replies: 4
Views: 266

Re: RBcAPGi Wireless no internet random

Which of the two devices is intended to run a DHCP server? At a quick glance it seems to me like you are running two DHCP servers on the two devices (with overlapping pool), and the CAP one is "strange": router: /ip pool add name=dhcp ranges=192.168.88.10-192.168.88.254 /ip dhcp-server add...
by jaclaz
Sat Oct 12, 2024 7:11 pm
Forum: Beginner Basics
Topic: I can't get internet connection
Replies: 4
Views: 341

Re: I can't get internet connection

"no route to host" means, that a valid route to the destination cannot be found, i.e. you either have no route for that particular address or - more likely if you did not configure properly the device, no routes at all. You will need to post the configuration of your hap Ac2, follow the in...
by jaclaz
Sat Oct 12, 2024 7:06 pm
Forum: Wireless Networking
Topic: Quickset Guest WiFi
Replies: 9
Views: 448

Re: Quickset Guest WiFi

I don't know, maybe the bridge filter rule need to be narrowed to the device address?
by jaclaz
Sat Oct 12, 2024 6:59 pm
Forum: Beginner Basics
Topic: Ax2 dhcp offering same ip already bound to other pc
Replies: 10
Views: 666

Re: Ax2 dhcp offering same ip already bound to other pc

You have a technician? :shock: I thought that the Asus was a router, not another PC, and, no, it is not "normal" that when "cloning" a PC also the network MAC is cloned, only the hard disk contents (and it is normally never a proper clone, strictly speaking, as drivers, the OS li...
by jaclaz
Sat Oct 12, 2024 4:29 pm
Forum: Beginner Basics
Topic: Ax2 dhcp offering same ip already bound to other pc
Replies: 10
Views: 666

Re: Ax2 dhcp offering same ip already bound to other pc

I don't buy that you have a casual MAC collision. It is more likely that either of the two devices has had the MAC address manually set (cloned from the other) for one reason or the other in the past. It is more probable that you set the MAC on the Asus Rog than on the Dell, but cannot say, it is a ...
by jaclaz
Sat Oct 12, 2024 4:19 pm
Forum: General
Topic: VLAN 0 priority tagging with RB5009
Replies: 3
Views: 334

Re: VLAN 0 priority tagging with RB5009

There is a post/tutorial by pcunite (that might need to be adapted to newish RoS7) about this specific matter:
viewtopic.php?t=154954

No idea if newer versions have different provisions.
by jaclaz
Sat Oct 12, 2024 4:03 pm
Forum: Beginner Basics
Topic: ISP modem and MikroTik (CRS310-8G+2S+IN) no link on interface, cannot connect to internet
Replies: 19
Views: 3675

Re: ISP modem and MikroTik (CRS310-8G+2S+IN) no link on interface, cannot connect to internet

Well, start by posting the exact make/model of the ISP router/modem AND a copy of your current Mikrotik configuration, follow the instructions here: https://forum.mikrotik.com/viewtopic.php?t=203686#p1051720 What you report is an error at a pretty much "basic" level, if it is something con...
by jaclaz
Sat Oct 12, 2024 3:49 pm
Forum: Wireless Networking
Topic: Quickset Guest WiFi
Replies: 9
Views: 448

Re: Quickset Guest WiFi

Cannot one add to the quickset (reference is still tangent's article): /interface wifi add … master-interface=wifi2 name=wifi2g … /interface bridge filter add action=drop chain=forward in-interface=wifi2g /interface bridge filter add action=drop chain=forward out-interface=wifi2g /interface bridge p...
by jaclaz
Sat Oct 12, 2024 2:30 pm
Forum: Beginner Basics
Topic: NAT - Port forwarding, closing ports
Replies: 4
Views: 323

Re: NAT - Port forwarding, closing ports

It is not even clear what should be achieved? Forwarding and not forwarding at same time? Closed and open at same time? This makes no sense to me.
Now, don't tell me you never heard of Schroedinger's ports... :lol:
by jaclaz
Sat Oct 12, 2024 2:10 pm
Forum: Wireless Networking
Topic: Quickset Guest WiFi
Replies: 9
Views: 448

Re: Quickset Guest WiFi

Tangent has an article about that:
https://tangentsoft.com/mikrotik/wiki?n ... ns%20VLANs

Check if your quickset did make the settings detailed in the last part of the article.
by jaclaz
Sat Oct 12, 2024 12:55 pm
Forum: General
Topic: MikroTik RouterOS Enterprise
Replies: 11
Views: 786

Re: MikroTik RouterOS Enterprise

I don't think that it is easy to manage a (vast) software project such as RouterOS and - at the same time - manage the development of the hardware it runs on, but - as seen from the outside - it seems like the priorities are largely mixed up. The amount of changes in each new release (and the number...
by jaclaz
Fri Oct 11, 2024 11:29 pm
Forum: General
Topic: Netwatch icmp problem
Replies: 3
Views: 273

Re: Netwatch icmp problem

Do you mean that friends don't let friends use netwatch icmp? :shock:
:lol:
by jaclaz
Fri Oct 11, 2024 8:33 pm
Forum: General
Topic: Tailscale now NAT-PMP problem
Replies: 20
Views: 821

Re: Tailscale UPNP problem

i add a manual nat rule, chain=dstnat action=dst-nat to-addresses=192.168.8.195 to-ports=61125 protocol=udp in-interface=sfp-sfpplus1 dst-port=61125 log=no log-prefix="" and it just works, i figure the upnp on MT sets dst-port and to-port differently is the problem (ASUS router is the sam...
by jaclaz
Fri Oct 11, 2024 7:44 pm
Forum: Beginner Basics
Topic: IP and Routing: SFP GPON Module WebUI access hmm [SOLVED]
Replies: 11
Views: 937

Re: IP and Routing: SFP GPON Module WebUI access hmm [SOLVED]

I would try removing the sfp1 from bridge (as opposed to leaving it there disabled) but it may be unrelated:
/interface bridge port
...
add bridge=bridge comment=defconf disabled=yes interface=sfp1
by jaclaz
Fri Oct 11, 2024 7:28 pm
Forum: General
Topic: MikroTik RouterOS Enterprise
Replies: 11
Views: 786

Re: MikroTik RouterOS Enterprise

You’re complaining the cheaper product isn’t keeping up with a more expensive product? I think that what was really meant is that the (admittedly cheaper) Mikrotik environment (hardware+software) is not keeping up with some more expensive product (which is expected and OK) but also misses in practi...
by jaclaz
Fri Oct 11, 2024 6:35 pm
Forum: General
Topic: Netwatch icmp problem
Replies: 3
Views: 273

Re: Netwatch icmp problem

There are some presets of icmp type in netwatch that are (stupidly) not shown/visible. One of them may be the reason why the link is sensed as down, probably thr-rrt-avg (whatever it is), but it may also be another (hidden) default parameter. Check: https://forum.mikrotik.com/viewtopic.php?t=190925 ...
by jaclaz
Fri Oct 11, 2024 3:24 pm
Forum: Beginner Basics
Topic: QuickSet uses 0.0.0.0 for DHCP server network
Replies: 17
Views: 810

Re: QuickSet uses 0.0.0.0 for DHCP server network

. Nowhere quickset is being mentioned. You must be joking. If I had one euro for each thing (command/setting/reference/whatever) that exists in router OS or on the device that is not mentioned anywhere (and certainly not on the related documentation) I wouldn't be rich, but certainly I would be muc...
by jaclaz
Thu Oct 10, 2024 11:33 pm
Forum: Beginner Basics
Topic: Configure a mAP where ETH1 is a AP and ETH2 a full Router
Replies: 6
Views: 383

Re: Configure a mAP where ETH1 is a AP and ETH2 a full Router

Since there are two devices available, the easiest would be to configure and test one device as AP-router working on ether1 and the other as AP-bridge working on ether2, then, once each one works as expected, find the differences and adapt a script *like* this one: https://forum.mikrotik.com/viewtop...
by jaclaz
Thu Oct 10, 2024 11:02 pm
Forum: Wireless Networking
Topic: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]
Replies: 37
Views: 1308

Re: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]

Right now watching some Youtube cat videos over this connection.
Be very aware of cupboard cat attacks :shock::
https://youtu.be/QefxGauB3_c
You'll never know what hit you. :wink:
by jaclaz
Thu Oct 10, 2024 6:47 pm
Forum: Beginner Basics
Topic: Mikrotik novice and PTP setup
Replies: 11
Views: 686

Re: Mikrotik novice and PTP setup

As often happens I may be wrong, but if there is no particular need to "filter" or block VLAN(s) you don't need to care about them, a simple "wireless wire" setup between the two devices would be enough. I.e., as I see it, the two devices should behave like a two ports unmanaged ...
by jaclaz
Thu Oct 10, 2024 5:15 pm
Forum: Wireless Networking
Topic: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]
Replies: 37
Views: 1308

Re: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]

The APN, then if needed username, password, etc. It depends on the SIM, it could be "internet" or "internet.telekom" or "internet.v6.telekom": https://www.telekom.de/hilfe/mobilfunk/mobiles-internet/mobilfunkstandards/apn See also this: https://forum.mikrotik.com/viewto...
by jaclaz
Thu Oct 10, 2024 4:39 pm
Forum: Wireless Networking
Topic: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]
Replies: 37
Views: 1308

Re: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]

Yes, pinging a public IP like 8.8.8.8 gives error "timeout". So it is not a missing route the issue (otherwise you would have "no route to host"). Have you configured (properly) the APN? It depends on the ISP that issued the SIM, some work just nicely with the automatic APN (tha...
by jaclaz
Thu Oct 10, 2024 4:31 pm
Forum: Wireless Networking
Topic: SXTsq 5ac as a PtP link - looking for suggestions for improvements
Replies: 8
Views: 846

Re: SXTsq 5ac as a PtP link - looking for suggestions for improvements

Did you have a double glazed glass on the bench between the two devices? :shock: If not, speed is not comparable, let's say that you lose 1 Mbps because of the 75 m distance and 499 because of the glass. Can you try (briefly) what do you have with the window open? Are you sure-sure that you have no ...
by jaclaz
Thu Oct 10, 2024 4:03 pm
Forum: Wireless Networking
Topic: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]
Replies: 37
Views: 1308

Re: Setting up "MikroTik hAP ax lite LTE6" [SOLVED]

Now I finally have found the country setting on the QuickSet window, unexpectly under the wireless settings, as I was thinking wireless means local wireless stuff, not mobile stuff. And you were right, the country is related to local wireless (the wifi radio) as different countries allow different ...
by jaclaz
Thu Oct 10, 2024 3:42 pm
Forum: Beginner Basics
Topic: Can't connect to internet from LAN [SOLVED]
Replies: 9
Views: 947

Re: Can't connect to internet from LAN [SOLVED]

Sure, it is DA d H, maybe it is just the newish RoS that calls (why?) the interface "vrf-interface" :? . A thing that is not advised is the use of VLAN1, if you would use (say) VLAN99 as management you would remove a possible source of issues (but that again might or might not be connected...
by jaclaz
Thu Oct 10, 2024 3:25 pm
Forum: General
Topic: Using DHCP Relay
Replies: 2
Views: 348

Re: Using DHCP Relay

It seems to me that what you want is exactly like the example given in :
https://help.mikrotik.com/docs/display/ ... -DHCPRelay
(it has two DHCP servers and relays, but you need only one).
by jaclaz
Thu Oct 10, 2024 2:16 pm
Forum: Beginner Basics
Topic: Can't connect to internet from LAN [SOLVED]
Replies: 9
Views: 947

Re: Can't connect to internet from LAN [SOLVED]

No idea if part of the problem, but in your /ip route print detail there is: vrf-interface=ether3-wan-backup but there is no vrf in your configuration that I can see. Shouldn't that be (like the other routes) something *like*: local-address=XXX.XXX.205.39%ether3-wan-backup But if this is an issue, i...
by jaclaz
Thu Oct 10, 2024 2:52 am
Forum: Beginner Basics
Topic: Configure a mAP where ETH1 is a AP and ETH2 a full Router
Replies: 6
Views: 383

Re: Configure a mAP where ETH1 is a AP and ETH2 a full Router

So, you want a DHCP server running on ether1 and a DHCP client running on ether2. This Is not in any way and issue, as a matter of fact most Mikrotik devices (cannot say the mAp) have a similar setup, only "reversed", with a DHCP client running on ether1 (which is WAN) and a DHCP server ru...
by jaclaz
Thu Oct 10, 2024 1:29 am
Forum: Beginner Basics
Topic: Simpler Failover for two Gateways I found working
Replies: 32
Views: 6730

Re: Simpler Failover for two Gateways I found working

@Amm0 I guess that the doubts (my ones) are only: 1) is masquerade preferrable also on static setup ( because of the way It handles inherently the existing connections in case of failover) 2) or is src-nat "better" and it can be integrated by a simple ( like rextended's one, a few lines) s...
by jaclaz
Thu Oct 10, 2024 12:35 am
Forum: Beginner Basics
Topic: Configure a mAP where ETH1 is a AP and ETH2 a full Router
Replies: 6
Views: 383

Re: Configure a mAP where ETH1 is a AP and ETH2 a full Router

Can you try to better explain the intended use?
Possibly making a couple examples, I cannot understand what do you mean by "sole wireless AP" and "generic wireless router".

And - if I get It right - you want a same device be capable of changing between the two scenarios?
by jaclaz
Wed Oct 09, 2024 11:55 pm
Forum: Beginner Basics
Topic: Simpler Failover for two Gateways I found working
Replies: 32
Views: 6730

Re: Simpler Failover for two Gateways I found working

I have still not fully grasped the implications, in practice, that can make one prefer masquerade over src-nat or viceversa, but yes masquerade should be able to take care - at least partially - of the existing/interrupted connections, but for static settings I understood that src-nat was to be pref...
by jaclaz
Wed Oct 09, 2024 11:20 pm
Forum: Wireless Networking
Topic: LtAP Mini - EE LTE Help [SOLVED]
Replies: 5
Views: 563

Re: LtAP Mini - EE LTE Help [SOLVED]

If you put an APN manually, It Is ignored if the "use network APN" is ticked. Not to be overly critic of the good Mikrotik guys, but I think that GUI designer apprentices learn on the first or maybe second day that when a check box disables a field, the field must be grayed out and made no...
by jaclaz
Wed Oct 09, 2024 6:30 pm
Forum: Beginner Basics
Topic: Can't connect to internet from LAN [SOLVED]
Replies: 9
Views: 947

Re: Can't connect to internet from LAN [SOLVED]

The lines that have a # sign prepended and that the board code parser marks red are not good: /ip dhcp-client # Interface not active add interface=ether3-wan-backup use-peer-dns=no use-peer-ntp=no # Interface not active add interface=sfp1-xgspon use-peer-dns=no use-peer-ntp=no The second one is expe...
by jaclaz
Wed Oct 09, 2024 4:58 pm
Forum: Scripting
Topic: Help with editing existing configurations using scripting
Replies: 1
Views: 206

Re: Help with editing existing configurations using scripting

I don't think that edit works in scripts, it is interactive, thus command line only.

You can try using the set command, something *like*:
/interface bonding set [find name=wan1] slaves=ether1, ether2
or - possibly easier - remove the whole bonding and re-add it with the new settings.
by jaclaz
Wed Oct 09, 2024 3:58 pm
Forum: Beginner Basics
Topic: Cannot access my new rb5009, incorrect username or password, after update from 7.12.2 to 7.16 [SOLVED]
Replies: 5
Views: 1024

Re: Cannot access my new rb5009, incorrect username or password, after update from 7.12.2 to 7.16 [SOLVED]

I seem to remember that it was already reported in at least one case that a Mikrotik device that should have had the sticker password was actually found as having a blank one, probably because of an hiccup of some kind in factory. So it is possible that the "old" password was blank (by mis...
by jaclaz
Wed Oct 09, 2024 3:45 pm
Forum: Beginner Basics
Topic: How create two wifi SSIDs belonging to two different networks on the same wifi access point. ? Need a help
Replies: 8
Views: 1048

Re: How create two wifi SSIDs belonging to two different networks on the same wifi access point. ? Need a help

/export file=anynameyouwish ( minus router serial number, any public WANIP info, keys etc..) Hi Anav, I don't get your message Translated :wink: it means: Please follow the instructions here and post your complete configuration: https://forum.mikrotik.com/viewtopic.php?t=203686#p1051720 The generic...
by jaclaz
Wed Oct 09, 2024 3:36 pm
Forum: Wireless Networking
Topic: New Wireless setup with Mikrotik will be good choice!
Replies: 1
Views: 219

Re: New Wireless setup with Mikrotik will be good choice!

There are not that many choices in current Mikrotik range of products, I think that you can choose between the CAp Ax: https://mikrotik.com/product/cap_ax or - it still has to be announced officially, but should become available soon - the WAp Ax: https://forum.mikrotik.com/viewtopic.php?t=210117#p1...
by jaclaz
Wed Oct 09, 2024 3:17 pm
Forum: RouterBOARD hardware
Topic: CRS310-8G+2S+IN batches are broken
Replies: 7
Views: 1827

Re: CRS310-8G+2S+IN batches are broken

I will just update this thread with the fact that it happened again, and we have given up completely on the switch. We simply can't get the suppliers to check them first, and we waste weeks sending unit back and forth, it's a complete circus show. If anyone knows a supplier (anywhere in the world, ...
by jaclaz
Wed Oct 09, 2024 11:47 am
Forum: Beginner Basics
Topic: Simpler Failover for two Gateways I found working
Replies: 32
Views: 6730

Re: Simpler Failover for two Gateways I found working

Interesting approach :) , I like the idea of the "cross backup" for this case of two different sources (home and business traffic). Now next step would be IMHO to see if it is the case in such or similar setups, to add to the netwatch up and down scripts the "reset existing connection...
by jaclaz
Wed Oct 09, 2024 11:41 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

You are welcome :).

In the meantime there is yet another very interesting ongoing thread about firewall,and its rules, JFYI:
viewtopic.php?t=211574
by jaclaz
Wed Oct 09, 2024 12:27 am
Forum: Beginner Basics
Topic: Simpler Failover for two Gateways I found working
Replies: 32
Views: 6730

Re: Simpler Failover for two Gateways I found working

I am not sure to understand, the netwatch Is associated to a ping address (8.8.4.4) in this example. To get there, there Is one /32 route (going through the "main" DSL connection. If 8.8.4.4 is reachable, the LTE route is disabled, if It Is not the LTE router Is enabled and takes precedenc...
by jaclaz
Tue Oct 08, 2024 4:04 pm
Forum: General
Topic: I cannot route from mikrotik to my internal network.
Replies: 6
Views: 600

Re: I cannot route from mikrotik to my internal network.

Follow this:
viewtopic.php?t=203686#p1051720
and post your configuration.
by jaclaz
Tue Oct 08, 2024 3:58 pm
Forum: General
Topic: Can't netinstall hAP ac2
Replies: 17
Views: 773

Re: Can't netinstall hAP ac2

No packets at all... It seems like it doesn't even try to boot into netboot mode. Maybe it has some protection options enabled? If so, how to disable them? It is possible that it has a protected routerboot timing set, see: https://help.mikrotik.com/docs/display/ROS/RouterBOARD#RouterBOARD-Protected...
by jaclaz
Tue Oct 08, 2024 3:25 pm
Forum: Beginner Basics
Topic: Simpler Failover for two Gateways I found working
Replies: 32
Views: 6730

Re: Simpler Failover for two Gateways I found working

Only to keep things as together as possible I just "sold" this Filo's approach to a new user, with a few changes. I got rid of the separate routing table and of the mangle by adding a "narrow" /32 route to the "canary" ip address in "main" table. And I didn't ...
by jaclaz
Tue Oct 08, 2024 12:16 pm
Forum: RouterBOARD hardware
Topic: HEX S sometimes fails to start properly
Replies: 3
Views: 428

Re: HEX S sometimes fails to start properly

If when you touch the area (i.e. you exert some pressure on some components) the thingy works it could also mean a (invisible or almost invisible) cold solder point. A failed component is of course possible, but it shouldn't change behaviour if you touch it. You could try to see how the board behave...
by jaclaz
Mon Oct 07, 2024 11:53 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Not that I am actually qualified for giving an expert opinion on bridging vs. routing, so take my advice with a grain or two of salt. In theory the bridge mode is more direct, so It should be faster, in practice in your case It Is slower, and not a little slower, some 30 percent slower is a lot. Of ...
by jaclaz
Mon Oct 07, 2024 8:34 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

My bad, should have been: /ip route add blackhole dst-address=8.8.4.4 distance=2 Let's see if I can help you grasp the concepts, the more you get them the more you will be able to correct/fix/tune your setup. Normally there are two "all internet" rules, the first going through the LTE (dis...
by jaclaz
Mon Oct 07, 2024 7:04 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Ok, it starts to make sense, so, for *some reasons* the "narrow" route becomes invalid if the ether1 cable is disconnected. (I suspect it to be due to the ether1 still having the dhcp client and not a static address, but maybe there are other reasons) so the 8.8.4.4 ping takes the "LT...
by jaclaz
Mon Oct 07, 2024 5:35 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

So: Netwatch disabled, mangle disabled, LTE enabled: both 8.8.4.4 and 8.8.8.8 works., got back all the answers no timeout
With ether1 disconnnected?

Is it the same with ether1 connected but internet not available because dsl line is disconnected from router?
by jaclaz
Mon Oct 07, 2024 4:54 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Sorry, I do not understand your last report. Can you try EXACTLY this test: Let's try the alternative. 1) disable (temporarily) the netwatch scripts 2) disable (temporarily) the mangle rule 3) enable (temporarily) the LTE route 2) add a "narrow" route to the "main" table: /ip rou...
by jaclaz
Mon Oct 07, 2024 2:42 pm
Forum: Beginner Basics
Topic: Configure a Single Switch (CRS305-1G-4S+) and ISP Router
Replies: 8
Views: 581

Re: Configure a Single Switch (CRS305-1G-4S+) and ISP Router

The only thing I know about VLANs is Rules #1 and #2 of the Mikrotik Club, which may or may not be useful in your case, still I would respect them, to avoid possible issues: https://forum.mikrotik.com/viewtopic.php?t=210809#p1096639 One explanation: https://forum.mikrotik.com/viewtopic.php?t=208061#...
by jaclaz
Mon Oct 07, 2024 12:25 pm
Forum: Beginner Basics
Topic: Could you audit my firewall rules
Replies: 6
Views: 538

Re: Could you audit my firewall rules

The usual advice is to post the whole configuration, see: https://forum.mikrotik.com/viewtopic.php?t=203686#p1051720 There are reasons for that, the way a configuration works (or completely fails to) can be "hidden" in a seemingly unrelated part, but more than that a member willing to help...
by jaclaz
Mon Oct 07, 2024 12:25 am
Forum: Scripting
Topic: by DHCP-CLIENT lease found rogue DHCP-SERVER
Replies: 3
Views: 362

Re: by DHCP-CLIENT lease found rogue DHCP-SERVER

Yep, but I meant that at first sight this:
interface=$"iface"
seems like a typo for the (probably) intended:
interface="$iface"
or maybe:
interface=$iface
Only a doubt. :-?
by jaclaz
Mon Oct 07, 2024 12:17 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

I am still not sure to understand what re-triggers the "up" script. You are simulating the down by disconnecting ether1, right? Try to simulate It instead by leaving the ISP router connected and disconnecting the DSL/telephone line from It. Does It still flap? If not, the issue could be in...
by jaclaz
Sun Oct 06, 2024 7:51 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Don't worry about the /30, the /24 is just fine, however JFYI, most non-mikrotik routers use the different notation for network mask: 255.255.255.0=/24 <- 256 values of which 254 usable (first and last are reserved for network and broadcast) ... 255.255.255.248=/29 <- 8 values of which 6 usable 255....
by jaclaz
Sun Oct 06, 2024 3:36 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

That script should go as the DHCP client script (on the ether1 entry), it is a property (just like interface or default-route-distance) of /ip dhcp client. https://help.mikrotik.com/docs/display/ROS/DHCP#DHCP-Properties I.e. this: /ip dhcp-client add comment=defconf default-route-distance=2 interfac...
by jaclaz
Sun Oct 06, 2024 1:37 am
Forum: Scripting
Topic: by DHCP-CLIENT lease found rogue DHCP-SERVER
Replies: 3
Views: 362

Re: by DHCP-CLIENT lease found rogue DHCP-SERVER

You sure about these double quotes?
interface=$"iface"
by jaclaz
Sun Oct 06, 2024 12:02 am
Forum: Beginner Basics
Topic: List:unknown
Replies: 5
Views: 324

Re: List:unknown

The strength of lists Is that the default firewall (again on soho devices) Is based on those categories (LAN/WAN) so you can easily add to the two categories the wanted interfaces without ever needing to modify firewall filters (and also NAT). Home made and - with all due respect - half baked firewa...
by jaclaz
Sat Oct 05, 2024 11:21 pm
Forum: General
Topic: wireless + ethernet on audio app config
Replies: 7
Views: 317

Re: wireless + ethernet on audio app config

Well, if the CQ-18 Is an AP, It Is an AP and will never become a client device. If you can have the two devices near between them and connect both via ethernet to the mAp then yes, you can have the mAp configured as a bridge for the two ethernet ports and have the wifi either bridged or routed. But ...
by jaclaz
Sat Oct 05, 2024 9:17 pm
Forum: Beginner Basics
Topic: List:unknown
Replies: 5
Views: 324

Re: List:unknown

CHR is Mikrotik Cloud Hosted Router.
It is more or less the same that you have, but intended to be run in a Virtual Machine, so I assume it has the same non-configuration.
by jaclaz
Sat Oct 05, 2024 8:48 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Good, happy it is more or less working :). So the links/routes are sometimes "flapping"? Every thirty seconds look suspiciously linked to the running of the netwatch script. Try changing the interval to a higher value or - maybe better - try inserting in the netwatch script a small delay *...
by jaclaz
Sat Oct 05, 2024 7:20 pm
Forum: Beginner Basics
Topic: List:unknown
Replies: 5
Views: 324

Re: List:unknown

I am not sure to understand. Normally the default configuration of Mikrotik devices of the SOHO series is - though basic - rather complete, while the configuration on professional devices is (so I read) almost inexistent. You are talking of the CHR, right? I was just playing with a CHR in a virtual ...
by jaclaz
Sat Oct 05, 2024 7:00 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 126
Views: 13270

Re: hap ax3 random wireless disconnects

I've recently heard an opinion that connected USB3 device may affect wireless (friends who have ax3 had problems with usb and didn't have without). I had problems before I attached USB disk, and now there isn't much transfers (only error logs by now). Maybe it will be useful if anyone who has probl...
by jaclaz
Sat Oct 05, 2024 4:10 pm
Forum: Beginner Basics
Topic: Router configuration
Replies: 8
Views: 703

Re: Router configuration

RB1100AHx4 list 329$, dual power supply
CCR2004-16G-2S+ list 465$, lots of ports you don't need.

Alternative:
RB5009UG+S+IN list 219$, enough ports for your use, faster in routing than the RB1100AHx4
by jaclaz
Sat Oct 05, 2024 3:55 pm
Forum: General
Topic: wireless + ethernet on audio app config
Replies: 7
Views: 317

Re: wireless + ethernet on audio app config

If I get it right, the CQ-18T will be "main" device, connected wirelessly with the mAp, and the mAp connected via ethernet cable to the Driverrack. From what I can understand, the CQ-18T works as Access Point. This means that the mAp needs to be configured as client, i.e. in Mikrotik jargo...
by jaclaz
Sat Oct 05, 2024 12:31 pm
Forum: General
Topic: OpenVPN does not allow to set Auth-Type for RADIUS
Replies: 4
Views: 377

Re: OpenVPN does not allow to set Auth-Type for RADIUS

You should both open a ticket at Mikrotik Support, while sometimes the developers do read forum posts, it is not given that they will do anything without an opened ticket.
by jaclaz
Sat Oct 05, 2024 12:25 pm
Forum: RouterBOARD hardware
Topic: PW48V-12V85W compatiblity list
Replies: 1
Views: 379

Re: PW48V-12V85W compatiblity list

On this page (third party): https://www.getic.com/product/psu-open-frame-12v-7a-for-ccr-r2 the compatible models are listed as: CCR1016-12G CCR1036-12G-4S CCR1036-12G-4S-EM CCR1036-8G-2S+ CCR1036-8G-2S+EM CCR1016-12S-1S+ CRS326-24S+2Q+RM CCR2004-1G-12S+2XS CCR2116-12G-4S+ but cannot say if the sourc...
by jaclaz
Sat Oct 05, 2024 11:13 am
Forum: General
Topic: RB4011 does not work
Replies: 2
Views: 258

Re: RB4011 does not work

You could try a different power supply, it is a common failure mode for (switching) power supplies to still be able to provide some Volts but not enough Amperes, so that some basic things works (like led lights) but the device doesn't actually boot or doesn't boot completely.
by jaclaz
Fri Oct 04, 2024 8:47 pm
Forum: Beginner Basics
Topic: Router configuration
Replies: 8
Views: 703

Re: Router configuration

It is not clear (to me) what you actually need/want, a router or a switch?

Anyway missing requirements are:
  • number of ports
  • speed of the ISP connection and of the LAN
  • need for SFP sockets/connections
by jaclaz
Fri Oct 04, 2024 7:41 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Yep, it looks fine to me. :) Now you have: D d 0.0.0.0/0 5.187.172.1 2 D A d 0.0.0.0/0 192.168.1.1 1 The "main" one is NOT A ctive, the LTE is. If you disable the LTE, the main should immediately be back to A ctive (i.e. D A d). JFYI, when you have more than one table, from CLI you can use...
by jaclaz
Fri Oct 04, 2024 7:19 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

I could change the distance to 2 and 1 in respective, now the DSL IP is blue not black like others, I created the DSL routing table with FIG, but cannot change the routing table for Dd 0.0.0.0/0 5.187.172.1 ether1 blue line, it is grayed out for main, or should I add with the + a new one? and delet...
by jaclaz
Fri Oct 04, 2024 6:35 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Right now you have both the DSL and the LTE routers connected and the two routes "towards internetet" (the 0.0.0.0/0) active at the same time (the + sign tells us this) because they both have the same distance (of 1 which is the default). Next step is changing the distance of the two conne...
by jaclaz
Fri Oct 04, 2024 5:23 pm
Forum: General
Topic: Device got hacked 1 min after connected to internet
Replies: 51
Views: 5034

Re: Device got hacked 1 min after connected to internet

Maybe stupid question, but couldn't the (safe/complex/random/whatever) password be asked during the netinstall process for those (older) devices that still have the blank one?
by jaclaz
Fri Oct 04, 2024 5:17 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

/interface detect internet is not part of the firewall, it is something that very few people actually use, let alone *need*, and is known to mess things in some subtle ways in some configurations. Disabling it is usually advised, see: https://forum.mikrotik.com/viewtopic.php?t=187814 In the best cas...
by jaclaz
Fri Oct 04, 2024 12:57 pm
Forum: General
Topic: Help Mikrotik AC3
Replies: 1
Views: 181

Re: Help Mikrotik AC3

Follow instructions here and post your configuration:
viewtopic.php?t=203686#p1051720
by jaclaz
Fri Oct 04, 2024 11:09 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Yes the only change I turned off for the second result the LTE modem, if I turn on I will get the same result, the problem is when I disconnect ether1 internet is gone no internet going trough ether2 But the same LTE modem works fine when connected to ether1? In theory you should be able to connect...
by jaclaz
Thu Oct 03, 2024 11:25 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Well, you had just posted an /ip route print where both ether1 and ether2 got their ip route just fine (so the DHCP client worked fine on both interfaces), now your /ip route print seems to show that it only works on ether1 and not (anymore) on ether2, so something has changed. The main ISP modem cr...
by jaclaz
Thu Oct 03, 2024 8:09 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Two vlans makes much sense to me. Not only to you, but there are logical priorities, that you are not taking into account, and as well you are not considering how the OP is a beginner. Priorities (in my perverted mind): 1) have a decent setup for 1 internet connection 2) add a second connection 3) ...
by jaclaz
Thu Oct 03, 2024 6:19 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

@anav there is no reason why OP would want or should have two VLANs. Very likely the double entry in: /ip dhcp-server network is a mistake/accident. OP is a beginner and is trying to get the hang of a simple home/soho setup, no need for now to make it more complex than needed. @bbmikrotik You have t...
by jaclaz
Thu Oct 03, 2024 4:51 pm
Forum: General
Topic: Ether6 on RB5009 only working with 100 Mbps. Hardware fault?
Replies: 7
Views: 442

Re: Ether6 on RB5009 only working with 100 Mbps. Hardware fault?

It could well be one of the pin disconnected (like a cold solder on the PCB).
10/100 use 4 pins/wires, if 1,2,3 and 6 are good, up to 100 the connection is good
1000 uses all 8 of them, so if any among 4,5,7 and 8 is disconnected, 1000 connection will fail.
by jaclaz
Thu Oct 03, 2024 12:00 pm
Forum: Scripting
Topic: DNS Update script error after 7.15 upgrade [SOLVED]
Replies: 8
Views: 539

Re: DNS Update script error after 7.15 upgrade [SOLVED]

7.15 is seemingly much more "strict" than previous versions. It could be a permission/policy issue or something nearly invisible, such as a missing quote or an excess newline. Check this: https://forum.mikrotik.com/viewtopic.php?t=208272 saving the script as .rsc and then dry-run importing...
by jaclaz
Thu Oct 03, 2024 11:37 am
Forum: Beginner Basics
Topic: the irrationality of [find]
Replies: 18
Views: 852

Re: the irrationality of [find]

No, i am not user command /ip hotspot user reset-counters; i used: /ip hotport user reset-counters [find name = "a"]; but it still works for all in case "a" is removed. Exactly. :) You use the command: /ip hotspot user reset-counters [find name = "a"] BUT the find comm...
by jaclaz
Thu Oct 03, 2024 11:27 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

No, you just need to remove the ether2 from the bridge, leaving in the bridge only ether3,4,5. Ether2, once outside the bridge, will be able to have a DHCP client enabled on it, just like it is now ether1. in CLI that would be: /interface bridge port remove [ find interface=ether2 ] Let see if I can...
by jaclaz
Thu Oct 03, 2024 12:33 am
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

Don't mistake me for a Mikrotik expert, I am also only a beginner, just knowing enough for basic configurations like yours. /interface bridge port add bridge=bridge comment=defconf interface=ether2 Your ether2 is still part of the bridge, hence the DHCP server error, that sees it as slave interface ...
by jaclaz
Wed Oct 02, 2024 11:16 pm
Forum: General
Topic: Switch rule to block out everything but 1 mac, not working as expected
Replies: 9
Views: 479

Re: Switch rule to block out everything but 1 mac, not working as expected

Allow me to disagree Syntax/commands need to be precise, actually exact. Comments need to be descriptive/understandable. The ethernet cable physically connects ether5 to a port on another device identified by the MAC address. Packets/whatever travel back and forth on this ethernet cable. It is clear...
by jaclaz
Wed Oct 02, 2024 7:29 pm
Forum: Beginner Basics
Topic: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]
Replies: 60
Views: 3219

Re: Secondary WAN and failover setup hap ax2 (7.16) for a beginner [SOLVED]

The default is: ether1:WAN ether2-5:joined in a bridge LAN What you have to do is to take ether2 (by convention the lower numbered ports are those that connect to the internet) out of the bridge, so that you will have: ether1:WAN (1) ether2:WAN (2) ether3-5 joined in a bridge:LAN Be careful to not l...
by jaclaz
Wed Oct 02, 2024 6:57 pm
Forum: General
Topic: Switch rule to block out everything but 1 mac, not working as expected
Replies: 9
Views: 479

Re: Switch rule to block out everything but 1 mac, not working as expected

So, there is the need of two "monodirectional" rules:
comment="Allow from 00:E0:4C:00:03:A7 to ether5"
and:
comment="Allow to 00:E0:4C:00:03:A7 from ether5"
? :?:
by jaclaz
Wed Oct 02, 2024 5:07 pm
Forum: Beginner Basics
Topic: Getting no internet on Hap AC Lite
Replies: 3
Views: 272

Re: Getting no internet on Hap AC Lite

Maybe I see it from a different perspective :shock: , but I would have said that the Hap Ac Lite has a reset/wps button (inside a hole) on the front . Like: https://www.youtube.com/watch?v=LMz49kUvH_c This is interesting, however, many/most "consumer" devices have the ethernet ports on wha...
by jaclaz
Wed Oct 02, 2024 4:38 pm
Forum: Beginner Basics
Topic: the irrationality of [find]
Replies: 18
Views: 852

Re: the irrationality of [find]

yes, there are many ways to fix this "bug", I just brought up an irrationality of the [find] condition. But that [find name="a"] works just fine, as it finds nothing and returns nothing. The issue is in the command: /ip hotspot user reset-counters that works for "all" ...
by jaclaz
Wed Oct 02, 2024 11:30 am
Forum: Beginner Basics
Topic: the irrationality of [find]
Replies: 18
Views: 852

Re: the irrationality of [find]

So it is not a quirk of the find command in itsellf, but rather a "wrong implied default" of "all" in the command /ip hotspot user reset-counters?

How can it be worked around?
Like checking if "numbers" is defined and only run the command if the condition is true?
by jaclaz
Wed Oct 02, 2024 11:05 am
Forum: Scripting
Topic: FTP - /tool fetch - failure: Unexpected timeout [SOLVED]
Replies: 6
Views: 486

Re: FTP - /tool fetch - failure: Unexpected timeout [SOLVED]

Good. :)

For next time, a good practice when testing/troubleshooting a script is to add commands that shows the actual value variables get.
If you had a:
:put $ftpDstPath
you would have seen that the value was not correct.
by jaclaz
Wed Oct 02, 2024 1:46 am
Forum: Beginner Basics
Topic: Getting no internet on Hap AC Lite
Replies: 3
Views: 272

Re: Getting no internet on Hap AC Lite

Many (important) details are missing or are unclear. On the back of which router? I believe that the AC LITE has not a physical WPS button. :? The 192.168.1.1 is the AC LITE or another device? If the former, how do you connect to it? Winbox, normal browser (Webfig), or what? You should describe with...
by jaclaz
Wed Oct 02, 2024 1:09 am
Forum: Scripting
Topic: FTP - /tool fetch - failure: Unexpected timeout [SOLVED]
Replies: 6
Views: 486

Re: FTP - /tool fetch - failure: Unexpected timeout [SOLVED]

If the server is the same and out of two different ways to connect to it one works and the other doesn't it is more likely that the server response is a (misleading) reflection of something wrong on the client. The FTP error 553 error could mean "I don't like the Path and Name of the file you w...
by jaclaz
Tue Oct 01, 2024 11:47 pm
Forum: RouterBOARD hardware
Topic: Mikrotik CRS326-24G-2S+RM only turns on blue power light
Replies: 2
Views: 305

Re: Mikrotik CRS326-24G-2S+RM only turns on blue power light

The first thing I would try is another power supply/adapter. It Is a common failure mode of (switching) power supplies to be able to still supply *some* Volts but not enough Amperes. The effects on many devices is that some led(s) lights up seemingly normally but when during booting some more "...
by jaclaz
Tue Oct 01, 2024 7:31 pm
Forum: Virtualization
Topic: Router OS 7 on UEFI
Replies: 65
Views: 13511

Re: Router OS 7 on UEFI

OK, so, if anyone is interested in this "universal image", in the attached spreadsheet there are the basic instructions to modify the image so that it boots both in BIOS and in UEFI. NOT a fully tested script, only the needed info and the commands I used manually. Due to the hardcoded addr...
by jaclaz
Tue Oct 01, 2024 5:21 pm
Forum: General
Topic: hap ax3 random wireless disconnects
Replies: 126
Views: 13270

Re: hap ax3 random wireless disconnects

@tangent The origin is (probably) a (I believe now lost forever) twitter post, cited here (which explains some of the reasons to increase DTIM interval for Apple devices): https://www.sniffwifi.com/2016/05/go-to-sleep-go-to-sleep-go-to-sleep.html The analysis seems to make sense, and this "set ...
by jaclaz
Tue Oct 01, 2024 12:06 am
Forum: General
Topic: Mikrotik setup for private home -> Switch + AccessPoints
Replies: 7
Views: 466

Re: Mikrotik setup for private home -> Switch + AccessPoints

Only for the record, there is a lot of confusion around POE and Mikrotik has some own quirks on top of that. 802.3af=POE 802.3at=POE+ 802.3bt=POE++ Mikrotik's 802.3af/at=POE and almost, but not quite, POE+, as mkx noted earlier the amount of current is below the one in the standard, and even raising...
by jaclaz
Mon Sep 30, 2024 7:56 pm
Forum: RouterBOARD hardware
Topic: Extending the SMD LED
Replies: 3
Views: 302

Re: Extending the SMD LED

The "cleanest" option is to use a sensor (soldering on the board will void warranty). A small circuit *like* this one: https://www.arrow.com/en/research-and-events/articles/build-and-use-a-simple-light-detector-sensor-circuit can be used as "led signal extender". Or - even simple...
by jaclaz
Mon Sep 30, 2024 6:49 pm
Forum: General
Topic: hexS with PoE 20°C warmer?
Replies: 7
Views: 444

Re: hexS with PoE 20°C warmer?

Consumer grade equipment can run without any issues at 70C, industry grade goes to 85C or so. Military grade can surpass 120C. Yep, as said it is not "preoccupying", but it all depends on where the sensor is and what kind of dissipation happens. If a temperature sensor is near the *whatev...
by jaclaz
Mon Sep 30, 2024 12:35 pm
Forum: General
Topic: hexS with PoE 20°C warmer?
Replies: 7
Views: 444

Re: hexS with PoE 20°C warmer?

Yep, but 20 degrees? At which voltage are you powering the hexS: 1. when using the jack 2. when using the PoE ? The hexS power supply is 24V. It accepts 12-57V as PoE In, if you are using the (normal) 48V, it could be the voltage regulator/converter that creates the heat, but it doesn't sound right ...
by jaclaz
Mon Sep 30, 2024 12:11 pm
Forum: General
Topic: Mikrotik router asking for ARP resolution of alot of IPs
Replies: 8
Views: 1066

Re: Mikrotik router asking for ARP resolution of alot of IPs

I am sorry, I have no idea about that. The (little) theory I understood is that ARP is a L2 protocol, so it should be limited to local network. From this (and the linked to Linux article): https://forum.mikrotik.com/viewtopic.php?t=176461#p865029 I understand that when you do a "normal" pi...
by jaclaz
Sun Sep 29, 2024 8:03 pm
Forum: Virtualization
Topic: Router OS 7 on UEFI
Replies: 65
Views: 13511

Re: Router OS 7 on UEFI

With all due respect for the good guys @Mikrotik, in this particular case something went wrong, they failed, and failed big. If they wanted to have the CHR image to be only BIOS bootable (through their - let's call it "strange" - method, bootsector code and hardcoded map) why did they add ...
by jaclaz
Sun Sep 29, 2024 3:51 am
Forum: Virtualization
Topic: Router OS 7 on UEFI
Replies: 65
Views: 13511

Re: Router OS 7 on UEFI

@jaclaz, I wouldn't get too crazy. Sure, I know, it is more like, you know :wink: The way I see it, if you're gonna build a time machine into a car, why not do it with some *style?* The IPXE could be another royal PITA, I am now a bit rusty about BIOS/UEFI and filesystems, but at least in my days I...
by jaclaz
Sun Sep 29, 2024 2:55 am
Forum: Virtualization
Topic: Router OS 7 on UEFI
Replies: 65
Views: 13511

Re: Router OS 7 on UEFI

@jaclaz, you're the boss - 7.17.beta2 mangled using your gdisk magic made Vultr happy. Good. :) So this part of the problem is solved, at least until the good Mikrotik guys don't change something relevant in the images. A solution to the other part ( keeping compatibility with BIOS booting) is on i...
by jaclaz
Sat Sep 28, 2024 8:10 pm
Forum: Beginner Basics
Topic: Configuring Extension Router Separately [SOLVED]
Replies: 11
Views: 1257

Re: Configuring Extension Router Separately [SOLVED]

So you're telling me that until now I've been connecting via RouterOS to the CPE, not the AC Lites? Yep :) . We (highly specialized technicians :roll: ) call that "barking up the wrong tree" :wink: . So if I find the IP for the AC Lites (somewhere in the range 192.168.1.10-192.168.1.200) ...
by jaclaz
Sat Sep 28, 2024 4:04 pm
Forum: Beginner Basics
Topic: Configuring Extension Router Separately [SOLVED]
Replies: 11
Views: 1257

Re: Configuring Extension Router Separately [SOLVED]

Well, there is something strange going on. Does the device(s) you are using look *like*: https://mikrotik.com/product/rblhgr#fndtn-gallery https://cdn.mikrotik.com/web-assets/rb_images/1874_m.png or more like: https://mikrotik.com/product/RB952Ui-5ac2nD#fndtn-gallery https://cdn.mikrotik.com/web-ass...
by jaclaz
Sat Sep 28, 2024 1:19 am
Forum: RouterBOARD hardware
Topic: hAP ax Lite USB power
Replies: 12
Views: 4658

Re: hAP ax Lite USB power

Please re-read the post just above yours, all the needed information is there, what is that you have doubts about?