Community discussions

MUM Europe 2020

Search found 103 matches

by smurphy
Sun Sep 18, 2016 12:49 pm
Forum: General
Topic: How to limit IP's provided by DHCP Server to "static" ones ?
Replies: 9
Views: 1521

Re: How to limit IP's provided by DHCP Server to "static" ones ?

Hello .

You could use access list for time based authentication , too.

Regards
Nikem


Sent from my Le X507 using Tapatalk
Yes, I would probably have to test that out too... Thx for the hint.
by smurphy
Sat Sep 17, 2016 1:11 pm
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 160336

Re: RouterOS v7.0 beta1 - when?

Maybe wait until v7 beta is out, and if there are any issues with your specific hardware you can work with support to get the relevant drivers added at that point.
You keep thinking that the version 7 is published?
No. When it comes out.
by smurphy
Fri Sep 16, 2016 2:26 pm
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 160336

Re: RouterOS v7.0 beta1 - when?

Maybe wait until v7 beta is out, and if there are any issues with your specific hardware you can work with support to get the relevant drivers added at that point.
This - I will definitely do :) Hopefully it comes out before I get my Fiber connection :D
by smurphy
Fri Sep 16, 2016 11:29 am
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 160336

Re: RouterOS v7.0 beta1 - when?

If 4.4 or newer boots on J1900 than chances are RouterOS v7 will boot and work. Of course it does not only depend on the kernel version number but also on the kernel configuration options used at compile time. We cannot know what drivers MikroTik include in the compile, we only know that it is not ...
by smurphy
Fri Sep 16, 2016 11:28 am
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 160336

Re: RouterOS v7.0 beta1 - when?

At least, if you provide me access to your currently used kernel source code so I can compile it and run it on that beast (Probably with an alpine OS base). I really just want to make sure that when it is release it will run on that hardware of mine :} Thx. RouterOS v7 will use a 4.4 or newer kerne...
by smurphy
Fri Sep 16, 2016 10:35 am
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 160336

Re: RouterOS v7.0 beta1 - when?

We will release a beta, when it will exist. Currently v7 is in alpha stage, many functions are not completed and non functional. Beta needs at least all functions to be somewhat operational. Right. Any chance to get (even in early Alpha) one minimal V7 release, just to test the installation/booting...
by smurphy
Wed Sep 14, 2016 8:04 pm
Forum: General
Topic: How to limit IP's provided by DHCP Server to "static" ones ?
Replies: 9
Views: 1521

Re: How to limit IP's provided by DHCP Server to "static" ones ?

I created a separate (virtual) access point on a different vlan. Then setup a time-based drop rule for the vlan in the filter. at 8pm the forward rules turns off and a reject rule turns on.
Thx. Thought it would be something like that ;)
by smurphy
Wed Sep 14, 2016 10:28 am
Forum: General
Topic: How to limit IP's provided by DHCP Server to "static" ones ?
Replies: 9
Views: 1521

Re: How to limit IP's provided by DHCP Server to "static" ones ?

Very cool kid. I have two girls (7 and 12), both too smart for their own good. For my house, I ended up with a virtual AP on a vlan that is time based. As long as I keep the router and access point security, I'm all good. You could also go with static MAC's and disable ARP. Or maybe even WPA2/EAP. ...
by smurphy
Tue Sep 13, 2016 10:27 pm
Forum: General
Topic: How to limit IP's provided by DHCP Server to "static" ones ?
Replies: 9
Views: 1521

Re: How to limit IP's provided by DHCP Server to "static" ones ?

Thx for the hint on the dhcp-server (static-only). Wonder how long it will take my little hacker to figure something out :} I was thinking about the dedicated Kid network. I have a router that can do 2.4Ghz and 5Ghz - Kids devices on 2.4Ghz, others on 5Ghz. But we have some old device that would not...
by smurphy
Tue Sep 13, 2016 8:03 pm
Forum: General
Topic: How to limit IP's provided by DHCP Server to "static" ones ?
Replies: 9
Views: 1521

How to limit IP's provided by DHCP Server to "static" ones ?

Hi folks, I have a little question here. In my household I seem to have a "little" hacker (10 year old girl) who does not agree with Dad's network access configuration. Thing is, I have configured the Kids systems to have Internet and NAS Access times based on the day of the week and hour. Now - thi...
by smurphy
Mon Sep 12, 2016 12:31 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

little note on how to use rfc2544 published results from routerboard.com: when you want to know how the router will perform, you can compare these numbers between the routers. As RFC is quite strict on what numbers can be reported relative performance should be as stated. next, when you make test s...
by smurphy
Mon Sep 12, 2016 11:09 am
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

I'll have to check what other methods can be used to try the transfer speeds. At this time, I can't do more tests as I need my network for work again :}
by smurphy
Mon Sep 12, 2016 10:24 am
Forum: General
Topic: Feature Request v7 MacSec CCR 72 Core
Replies: 6
Views: 2248

Re: Feature Request v7 MacSec CCR 72 Core

4.x kernel. Preferably 4.8 :} to support new x86 hardware (j1900 type boards)
by smurphy
Mon Sep 12, 2016 10:22 am
Forum: General
Topic: new kernel for new ROS
Replies: 6
Views: 2101

Re: new kernel for new ROS

The other advantage of using a more recent kernel, are all the updated drivers. Maybe the j1900 platforms out there, which make nice routers, can take advantage of it! Any ETA on when the first Alpha/Beta comes out? I'll be willing to test it. I don't yet use my j1900 in production (well, It's my ho...
by smurphy
Sun Sep 11, 2016 1:39 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

Well - the results are quite disappointing at first sight with iperf. Note that on the J1900 device, the filters seem to have very low influence, if it at all. Test setup done on: - NJ1900FW, J1900 CPU @ 2GHz, 2GB Ram, 32GB SSD/M-SATA, 4xIntel WG82583, ROS License level 1 (test license only - still ...
by smurphy
Sun Sep 11, 2016 11:39 am
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

can be useful to known your config to test it on another equipment Thx, and to all of you others for the advice (and also the link published by Mikrotik). To use Mikrotiks method,I'd need a second device (same one) or a faster device, to measure the capabilities of the J1900 one - reason I will ski...
by smurphy
Sun Sep 11, 2016 11:30 am
Forum: General
Topic: Cant use RouterOS on J1900 mobo
Replies: 10
Views: 1629

Re: Cant use RouterOS on J1900 mobo

I have only found a few boards with UEFI that will handle legacy USB well. Most being Intel or SuperMicro. I don't think I've ever had success with any off-brand. Same for me... I have tried all kind of low-power boards in the past, starting with C3 CPU's from VIA. Theses were a real nightmare. Usu...
by smurphy
Sat Sep 10, 2016 12:18 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

well, just use the same config that you can compare with something that is generally known. That's the point. I don't have a general config. I only have my specialized config... I can compare it, but I don't know if you will be able to make something out of it. IMHO, Mikrotik should have some defau...
by smurphy
Sat Sep 10, 2016 12:07 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

i thik celeron j1900 and the new j3160 and n3160 are very interesting to use it with routeros because the low power consumption and relative good cpu performance vs mipsbe,powerpc e500v2, an tilera cpus will be interesting to see what performance can be achieved with this silvermont 4 core CPU on r...
by smurphy
Sat Sep 10, 2016 12:03 pm
Forum: General
Topic: Cant use RouterOS on J1900 mobo
Replies: 10
Views: 1629

Re: Cant use RouterOS on J1900 mobo

The BIOS needs USB Legacy support (DOS Mode) enabled to boot from a USB device.
Tried it Legacy (DOS mode explicitely does not exist/not mentioned) - doesn't work.
Whatever boots and has an old kernel - loses USB. Probably a UEFI BIOS bug.
by smurphy
Fri Sep 09, 2016 11:36 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

From the Paper I got from the contact - that box supports max 8GB Ram.
Even though I had Virtualbox running on it very nicely - and the cloud routerOS version fine, I am unable to install anything using old kernels.
by smurphy
Fri Sep 09, 2016 11:14 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

smurphy, nice report. Thank you. Do you think it could be possible you try to install the hypervisor directly on the hardware and test chr in it? It could be better option for you too, even you do not like virtualization for production, you might change your mind... I tried. It won't install. As I ...
by smurphy
Fri Sep 09, 2016 8:13 pm
Forum: General
Topic: Cant use RouterOS on J1900 mobo
Replies: 10
Views: 1629

Re: Cant use RouterOS on J1900 mobo

Got it running using netinstall.
Details: http://forum.mikrotik.com/viewtopic.php ... 50#p556389
Problem are all USB Ports. As soon as the kernel boots up - no device attached to USB still works.
by smurphy
Fri Sep 09, 2016 5:26 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

In my opinion the advantage of VMware is that you can draw and construct such a network without limitations on things like network cards, cables, etc. You can define serveral virtual switches for all your internal networks, connect all your services to it as separate virtual machines having access ...
by smurphy
Fri Sep 09, 2016 12:57 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

Ok. So I managed to install RouterOS using the NetInstall method. In fact - what I suspect happens, is that the USB Drivers (This motherboard has USB 3.0 chips inside) cut off the connected devices as soon as the kernel drivers are loaded. Even when using the netinstall method, as soon as the kernel...
by smurphy
Fri Sep 09, 2016 12:20 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

So - I got virtualbox running on that little beast (Headless), and through a remote rdp connection, I got into routeros. smurphy 2613 0.0 0.2 22996 4896 pts/1 Ss 11:08 0:00 -bash smurphy 2681 0.0 0.5 116176 10864 ? S 11:11 0:00 /usr/lib/virtualbox/VBoxXPCOMIPCD smurphy 2686 0.1 0.9 538468 18108 ? Sl...
by smurphy
Fri Sep 09, 2016 12:15 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

When you have that HP server with VMware, why don't you run RouterOS under VMware on that same server? Then you don't need the small box at all. I don't like to mix things up. The Microserver is our NAS. No Internet access, internal cloud etc. Web/Mail Server is again one other dedicated machine, i...
by smurphy
Fri Sep 09, 2016 11:03 am
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

I think the problem will not be to run it. The problem will be to install it. Below the CPU type (4 cores - I think only 2 and HT, didn't check). But the device remains really cool even though it is only passively cooled. I have a 32GB m-stat drive in it, and 2GB Ram (Though I don't need more to run...
by smurphy
Fri Sep 09, 2016 10:36 am
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

I have exactly this device in it: http://hamsing.com/product/html/?39.html FYI - I have virtualbox headless running on the device. I'll have to see if I can run vsphere 6 on it. Well, if it installs. First I got to fo through registration. Will take a while as Greylisting etc. is in play on my mail-...
by smurphy
Thu Sep 08, 2016 9:07 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

Can you try to run vmware type 1 hypervisor and CHR in it virtually?
Good question. As I don't know what you want to do exactly, you have a link somewhere explaining it ?
I have Debian 8.5 running on it at the moment.
by smurphy
Thu Sep 08, 2016 4:21 pm
Forum: General
Topic: Cant use RouterOS on J1900 mobo
Replies: 10
Views: 1629

Re: Cant use RouterOS on J1900 mobo

Having the same issues on a J1900 device. Only CDRom device is not found after kernel booted. That's the device I have: http://hamsing.com/product/html/?39.html I get exactly this error message: http://forum.mikrotik.com/viewtopic.php?t=21240#p397501 Any hints ? If you folks have a alpha image, let ...
by smurphy
Thu Sep 08, 2016 4:13 pm
Forum: Virtualization
Topic: Cheap multi-NIC devices to run CHR in some supervisor
Replies: 43
Views: 6005

Re: Cheap multi-NIC devices to run CHR in some supervisor

I actually just got that one today and tried to install routerOS on it. My plan is to replace the RB493G hareware with that one, as I am getting fiber, and with the current filters and configuration the RB493G is able to forward around 190Mbps. This beast however should be able to max the 4 ethernet...
by smurphy
Sun Aug 16, 2015 6:52 pm
Forum: General
Topic: Best practice in setting up a RouterOS based router - to lower CPU resources ?
Replies: 8
Views: 819

Re:

If you don't need queues or mangle reclassification of already running connections you can pass allowed connections around the firewall by fasttrack. Or at least part of them. That may be an idea. Will have to check that out. Do we have some example on configuration that use fasttrack in combinatio...
by smurphy
Sun Aug 16, 2015 6:51 pm
Forum: General
Topic: Best practice in setting up a RouterOS based router - to lower CPU resources ?
Replies: 8
Views: 819

Re: Best practice in setting up a RouterOS based router - to lower CPU resources ?

Shouldn't queues be the answer? Because described behaviour is very familiar. One PC saturates the line by something and others have hard time squeezing their stuff through. Router's CPU might be almost idle and it still happens. Queues can make sure that all clients get their fair share of bandwid...
by smurphy
Sun Aug 16, 2015 3:45 pm
Forum: General
Topic: Best practice in setting up a RouterOS based router - to lower CPU resources ?
Replies: 8
Views: 819

Re: Best practice in setting up a RouterOS based router - to lower CPU resources ?

Yes. I have specific chains that are activated on specific occurrences. 5 non regular chains (pub2dmz, virus, port_scan,SYNC_Protect and Times). The blacklist is applied to the input chain (to block out any access requests to the router itself), and to the forward chain to limit access to these IP's...
by smurphy
Sat Aug 15, 2015 10:53 pm
Forum: General
Topic: Best practice in setting up a RouterOS based router - to lower CPU resources ?
Replies: 8
Views: 819

Best practice in setting up a RouterOS based router - to lower CPU resources ?

Hi folks, I'm looking for a generic "explanation" on what to take into account to have a configuration that even though is complex, will not slow down the router too much. I looked here and there, and google was not really specific on the found answers. At the moment, when I max out my ADSL link ( 1...
by smurphy
Thu Jan 05, 2012 3:37 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Re: Special Nat/Masquerade setup ? or proxy arp ?

I see that you're in Germany, have you tried with a FritzBox? You can convert those to transparent bridges and you will be able to set up PPPoE on the MikroTik router. *lol* Sorry - I have not changed my location settings yet. I am in France (Moved over actually 3 months ago, but didn't have time y...
by smurphy
Thu Jan 05, 2012 3:04 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Re: Special Nat/Masquerade setup ? or proxy arp ?

Oh now I get it, you're running the dreaded pseudo-bridge config on your modem. To be honest, it's such a bad technology that I try to avoid it as best I can. You would probably be better off if you leave the public IP on your modem, and NAT everything to the router's private IP (192.168.1.2). You ...
by smurphy
Thu Jan 05, 2012 12:56 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Re: Special Nat/Masquerade setup ? or proxy arp ?

What means your NAT rule? chain=srcnat action=masquerade src-address=82.XXX.XXX.XXX out-interface=Bridge-World As my understanding your nat rule means, if packet sourced as 82.X.X.X and is going out through Bridge-World interface, router will translate 82.X.X.X address to new address, which is conf...
by smurphy
Thu Jan 05, 2012 12:30 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Re: Special Nat/Masquerade setup ? or proxy arp ?

Why do you have two IPs -one private and one public- on you Bridge-World interface? Could you send a diagram of your intended network setup? The Private IP is required, because of the bogus ADSL2+ Modem. It connects to the RB493G through the 192.168.1.x/24 LAN, and it cannot be changed. For Monitor...
by smurphy
Wed Jan 04, 2012 5:37 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Re: Special Nat/Masquerade setup ? or proxy arp ?

Anyone has an idea ????
Thx
by smurphy
Tue Jan 03, 2012 4:59 pm
Forum: General
Topic: Special Nat/Masquerade setup ? or proxy arp ?
Replies: 10
Views: 2543

Special Nat/Masquerade setup ? or proxy arp ?

Hi Folks, I'm pretty sure this is just a basic configuration issue - but I'm totally lost here... I finally managed to correct (command line) the configuration of the D-Link 320B ADSL 2+ Modem, and when being on the same host as the assigned public IP, you can go to the Internet fine - no problem. I...
by smurphy
Sat Dec 24, 2011 1:03 pm
Forum: General
Topic: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684
Replies: 5
Views: 2601

Re: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684

Yes, PPPoE Client can use automatic IP or static IP. Look at the profile within the client PPPoE settings in winbox. You have an example configuration of a profile-file ? He didn't take it. I can't set a client IP to configure, only a group of IP's. Only thing I could do is assign an IP to the inte...
by smurphy
Thu Dec 22, 2011 6:08 pm
Forum: General
Topic: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684
Replies: 5
Views: 2601

Re: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684

Just made some more investigative work. Seems the Router does use something different: "The so called "Bridge" mode on the FreeBox, is not a typical bridge as known (Ethernet bridge). Standard bridge mode is: Ethernet bridge on AAL5 on ADSL side, native Ethernet on LAN side, and bridges all in layer...
by smurphy
Thu Dec 15, 2011 5:17 pm
Forum: General
Topic: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684
Replies: 5
Views: 2601

Re: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684

Yes, according to the ISP, no username/password or identifier is requested.
So I don't really know what kind of "bridged" mode they are using.

Can I setup a PPPoE client without user-details ? Never did that in the past. Will try it tonight ...
by smurphy
Thu Dec 15, 2011 11:47 am
Forum: RouterBOARD hardware
Topic: Connect to RB450 serial port
Replies: 2
Views: 2968

Re: Connect to RB450 serial port

Got your first option (linked to the system at the moment actually). Just make sure you configure the serial port correctly: port /dev/ttyUSB0 baudrate 115200 bits 8 parity N stopbits 1 rtscts No At least, that is under linux using minicom.
by smurphy
Thu Dec 15, 2011 11:19 am
Forum: General
Topic: RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684
Replies: 5
Views: 2601

RB493G on ADSL2+ Modem / Bridge RFC 1483 / 2684

I am having a hard issue here for several days now. I can not make, for the sake of any source I have checked, make the RB493G connect to a Modem configured as Bridge RFC 1483 or 2684. Note that I have 2 modems of different brands, and both won't work. I have tested both ADSL2+ modems directly conne...
by smurphy
Wed Feb 09, 2011 10:51 am
Forum: General
Topic: RB1100 crashing/freeze when disconnecting cable from ether13
Replies: 11
Views: 1441

Re: RB1100 crashing/freeze when disconnecting cable from eth

I have the same issue, however nailed it down to one device -> my Philips Skype phone. All other devices work fine - if I unplug that one - and plug it back in - all connectivity goes - and sometimes it reboots the router. Note this is also valid - if I reboot the base station (power cycle). The Net...
by smurphy
Tue Feb 08, 2011 7:02 pm
Forum: General
Topic: Unable to extrac temperature using MRTG from Rb493G ...
Replies: 4
Views: 1738

Re: Unable to extrac temperature using MRTG from Rb493G ...

Just found the issue for the temperature. Actually - MRTG interpretes the returned Data first, then performs the mathematical operation. hence - data coming in at 540 and my absmax value was set to 200. Setting it to 2000 fixed the issue. The value is accepted. However - the tx/rx-tran and strength ...
by smurphy
Tue Feb 08, 2011 6:18 pm
Forum: General
Topic: Unable to extrac temperature using MRTG from Rb493G ...
Replies: 4
Views: 1738

Re: Unable to extrac temperature using MRTG from Rb493G ...

Actually - it's not only the Temperature I'm having issues with. Also the Tx/Rx-rate and strength for the WiFi Cards are not getting through. Here the Interface OID: [smurphy@gw-sollan-RB493G] /interface wireless> print oid 0 ;;; wlan1 - Wireless LAN tx-rate=.1.3.6.1.4.1.14988.1.1.1.1.1.2.10 rx-rate...
by smurphy
Mon Feb 07, 2011 2:05 pm
Forum: General
Topic: Unable to extrac temperature using MRTG from Rb493G ...
Replies: 4
Views: 1738

Re: Unable to extrac temperature using MRTG from Rb493G ...

Oh yes it does. I actually used it before - but the error message remains the same. I'm using it on various data I get. You can actually tell mrtg to perform a a mathematical operation for exactly the case as mentioned/shown here. This tells mrtg to actually divide the result by 10 - having a usable...
by smurphy
Wed Feb 02, 2011 12:33 pm
Forum: General
Topic: DNS issue in 4.16
Replies: 2
Views: 530

Re: DNS issue in 4.16

eventually you want to check the DNS Server and if they are allowed to perform remote queries ? Having had a similar issue - and wanting to be able to perform requests from all my networks (this means, Service/DMZ, LAN, WiFi and AppleTV WiFi), and not allowing all subnets to see the same data - whil...
by smurphy
Wed Feb 02, 2011 12:17 pm
Forum: General
Topic: Unable to extrac temperature using MRTG from Rb493G ...
Replies: 4
Views: 1738

Unable to extrac temperature using MRTG from Rb493G ...

Hi folks, I wonder if someone could help me out here. I have setup the monitoring of my routerboard and am unable to extract the temperature or even voltage using MRTG. here is the setup: [smurphy@gw-sollan-RB493G] > /system health print oid active-fan: .1.3.6.1.4.1.14988.1.1.3.9.0 voltage: .1.3.6.1...
by smurphy
Fri Jan 14, 2011 9:53 pm
Forum: RouterBOARD hardware
Topic: RB493AH, and broken ether1 port ?
Replies: 1
Views: 422

RB493AH, and broken ether1 port ?

Hi Folks ... just wanted to know if someone experienced the same. While being on travel, my home connection went down. When back - everything seemed OK - however internet connectivity was not possible. Apparently for the Router itself, everything was Ok, however a DSL Connection was not to be brough...
by smurphy
Mon Jul 05, 2010 1:45 pm
Forum: General
Topic: Mirror port on RB493AH possible ?
Replies: 1
Views: 772

Mirror port on RB493AH possible ?

Hi Everyone, just tried to setup a mirror port on my RB493AH (trying, as the documentation states not all Chips in these systems support it. The ICPlus175D does support Port Switching and Mirroring. Anyway - here is what the system finds: Flags: I - invalid # NAME TYPE MIRROR-SOURCE MIRROR-TARGET SW...
by smurphy
Fri Nov 20, 2009 3:54 pm
Forum: General
Topic: Access problems to certain sites.
Replies: 1
Views: 787

Re: Access problems to certain sites.

Fixed it. Seems the WebSite is negociating the MTU with the browser itself to transfer data. So - the PPPoE connection MTU seems to not be respected, and this locks the data-transfer. Forcing the MTU/MRU on the PPPoE Interface to MTU/MRU-40 fixed it. My PPPoE MTU being negotiated to 1492, setting th...
by smurphy
Fri Nov 20, 2009 12:30 pm
Forum: General
Topic: Access problems to certain sites.
Replies: 1
Views: 787

Access problems to certain sites.

Hi Folks, I wonder if you also see these issues sometime. When I - b.e. go to https://live.xbox.com to set up a account, I am not able tor each the site- e.g. the website is not loaded correctly. Note that it happens mostly with sites from Microsoft I noticed. According to blacklist checks, my IP is...
by smurphy
Tue Sep 08, 2009 11:45 am
Forum: RouterBOARD hardware
Topic: No reboot on RB493AH with RouterOS 3.2x
Replies: 3
Views: 1163

Re: No reboot on RB493AH with RouterOS 3.2x

Looks like that helped. However I still wonder why the any-key option prevents it from booting.
I'll monitor it for a while. Thx for the hint.
by smurphy
Mon Sep 07, 2009 12:40 pm
Forum: RouterBOARD hardware
Topic: No reboot on RB493AH with RouterOS 3.2x
Replies: 3
Views: 1163

No reboot on RB493AH with RouterOS 3.2x

Hi there folks, anyone experiencing reboot issues with RB493AH with RouterOS 3.2x ? Actually - I only noticed it when the watchdog was rebooting the box due to non availability of a remote system. It just reboots - then is stuck on the boot-menu. Even if I tell it to reboot manually - connected thro...
by smurphy
Tue Jun 09, 2009 11:25 pm
Forum: General
Topic: Access external Public IP from inside ?
Replies: 4
Views: 963

Re: Access external Public IP from inside ?

search the forums for hairpin nat.
That's what I needed :) A hint ...

Will do. Thx.
by smurphy
Mon Jun 08, 2009 5:20 pm
Forum: General
Topic: Access external Public IP from inside ?
Replies: 4
Views: 963

Re: Access external Public IP from inside ?

Configure nat rules to forward ports: http://wiki.unrealadmin.org/FAQ:UT3#Running_Behind_a_Router.2FFirewall that was not the question - as this - I already did... The Problem here is rather that "me" - I already sit behind the firewall inside the LAN. The Game-Server is inside the LAN too, however...
by smurphy
Mon Jun 08, 2009 3:59 pm
Forum: General
Topic: Access external Public IP from inside ?
Replies: 4
Views: 963

Access external Public IP from inside ?

Hi Folks, I was wondering what the best way is to configure the RouterOS if I want to run a GameServer at Home b.e. UT3. When I connect to the Server Browser, this one provides me the external Public IP of my connection. If I want to connect the to my server - Bang. No connection anymore to my serve...
by smurphy
Tue Jul 15, 2008 11:03 am
Forum: General
Topic: Configure mirror port on RB153 ?
Replies: 2
Views: 613

Re: Configure mirror port on RB153 ?

Thx for the hint - but that was the case a long time already: 1 ;;; Service Network - 2 Ethernet Ports connected 192.168.x.x/xx 192.168.x.0 192.168.x.xx Bridge-Service and 2 R ;;; ether3 - Bridge-Service Server ether 1500 3 R ;;; ether4 - Bridge-Service Game ether 1500 [... Snip ...] 6 R Bridge-Serv...
by smurphy
Mon Jul 14, 2008 11:06 am
Forum: General
Topic: Configure mirror port on RB153 ?
Replies: 2
Views: 613

Configure mirror port on RB153 ?

Hi Folks ... I know - I have read the topic about it - but it's from 2006. Anyway - is there a possibility for configuring one interface to port-mirror another one ? I just want to mirror the outbound ADSL interface - hance the issues with RX/TX oversubscribing the TX of the mirror-port does not app...
by smurphy
Mon Mar 31, 2008 4:06 pm
Forum: RouterBOARD hardware
Topic: RB153 - PPPoE faster then WLan ?
Replies: 1
Views: 685

RB153 - PPPoE faster then WLan ?

Hi Folks, I just got my ADSL 2+ line (Upgrade from ADSL 1) - and I noticed that the RB153 is actually capable of handling through the PPPoE Interface a higher bandwidth, than through the WLan Interface. On the WLan Interface I am barely able to get more than 10.4MBit/s throughput, while on the PPPoE...
by smurphy
Fri Mar 28, 2008 10:59 am
Forum: General
Topic: pppoe-client setup - stop for 10secs, then try again ?
Replies: 1
Views: 565

Re: pppoe-client setup - stop for 10secs, then try again ?

Ok - I have circumvented it by using the watchdog functionality - but IMHO - this isn 't clean. I tend to actually solve issues at their source - however - as this is no FOSS - I can't ... Could I kindly ask the developers to add a redial-time variable into it ? E.g. if set - wait that amount of tim...
by smurphy
Wed Mar 26, 2008 11:59 am
Forum: General
Topic: How many clients (RB153 3xR52H)
Replies: 12
Views: 1640

Re: How many clients (RB153 3xR52H)

That should help - yes ...
Faster CPU should definitly help.
by smurphy
Tue Mar 25, 2008 6:48 pm
Forum: General
Topic: How many clients (RB153 3xR52H)
Replies: 12
Views: 1640

Re: How many clients (RB153 3xR52H)

Configuration looks OK. As said - my next question would have been number of concurrent connections/clients...
The concurrent connections might be what is killing the performance on your device. But I can't provide you details on the max number of usable client-connections. sorry.
by smurphy
Tue Mar 25, 2008 5:05 pm
Forum: General
Topic: How many clients (RB153 3xR52H)
Replies: 12
Views: 1640

Re: How many clients (RB153 3xR52H)

Just downloading a 4GB File - check the stats: http://stargate.solsys.org/mod.php?mod=systat&op=list&host=2 CPU Load 100%, and barely over 10MBit ... most of the time ... I don't know what the reason for slow traffic is on your side. Did you activate remote logging - maybe you'll be able to see what...
by smurphy
Tue Mar 25, 2008 4:25 pm
Forum: General
Topic: mtu pppoe
Replies: 2
Views: 715

Re: mtu pppoe

You are not very clear here on what you want ... Sorry ... Don't understand your request - and I guess I'm not the only one ...
by smurphy
Tue Mar 25, 2008 3:59 pm
Forum: General
Topic: How many clients (RB153 3xR52H)
Replies: 12
Views: 1640

Re: How many clients (RB153 3xR52H)

Euh - well - you'll see that the CPU used is able to handle roughly 10.4MBit/s bandwidth ... Means - you can connect 5 Clients using 2MBit/s bandwidth at the same time ... If speed is the reason you bought the RB153 for- then it's the wrong box. Check this thread where I have made some tests ... htt...
by smurphy
Mon Mar 24, 2008 2:35 pm
Forum: General
Topic: pppoe-client setup - stop for 10secs, then try again ?
Replies: 1
Views: 565

pppoe-client setup - stop for 10secs, then try again ?

Hia folks, I am having kind of a little issue. My provider has setup a protection against pppoe-request storms. Means - every client is only allowed to perform on request all 10secs. This means - that when for any reason the router wants to get a new IP - it tries to get an IP address, if it doesn't...
by smurphy
Thu Mar 20, 2008 7:01 pm
Forum: Scripting
Topic: monitoring scripts
Replies: 1
Views: 960

Re: monitoring scripts

Actually - I'd rather do it differently.
Let the Box log to an external Syslog server, and check it there.

Back in the past - using radiator (Radius-Server written in perl) - I modified it to issue me alerts as soon as a bad authentication was detected. Nothings was faster than this.
by smurphy
Thu Mar 20, 2008 6:59 pm
Forum: Scripting
Topic: backup over ftp?
Replies: 5
Views: 2537

Re: backup over ftp?

Well - as I already have a backup server at home - I rather do it the other way around.
I wrote it down in my FAQ, maybe it can be an option for you.
https://stargate.solsys.org/mod.php?mod ... faq_id=128
by smurphy
Thu Mar 20, 2008 3:19 pm
Forum: General
Topic: Routing dead when PPPoE is gone ?
Replies: 1
Views: 671

Routing dead when PPPoE is gone ?

Hi Folks, I was wondering what could cause this ... When the PPPoE is not working - connection to all hosts is interrupted. Anyone has an idea what could be the cause of that ? IMHO - the state of the PPPoE Connection should not affect the routing table for the internal LAN's ? UPDATE: Actually - I ...
by smurphy
Fri Mar 14, 2008 12:32 pm
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Re: Transfer speeds on RB153 through Wlan ?

I can confirm that the max interface speed the RB153 can handle through a WLan Interface is around 10.4Mbps or 1.3MBytes/s. A test to check if the transmission strength is impacted upon high usage - can not be confirmed. I did a longer test by downloading some data from outside the Internet (e.g. da...
by smurphy
Thu Mar 13, 2008 12:38 pm
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Re: Transfer speeds on RB153 through Wlan ?

Hmmm. Could you emphasise on this ? I am natting - also the WLan interface to pppoe only though. I however did the transfer speed test from local LAN (Ether 5) to WLan Interface, where NAT is not configured on. Nat is only configure through pppoe Interface. I have to admit though - that I have rough...
by smurphy
Tue Mar 11, 2008 1:03 pm
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Re: Transfer speeds on RB153 through Wlan ?

OK. thx for the information.
In that case - I am wondering why I only get 1.2MBytes max transfer rate on a 54Mbit link.
I will monitor it a little when back home ...

It may be the PCI Bus though - I don't know if the MIPS CPU is able to handle the full bandwidth of the PCI Bus ?
by smurphy
Mon Mar 10, 2008 12:43 pm
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Re: Transfer speeds on RB153 through Wlan ?

This was an assumption I also had - until I realized that WPA is actually a software part on most Linux side systems - you can add on top of the wireless stack - so - in this specific case - as RouterOS is based on Linux IMHO - it will be handled by the CPU. I'll do some speed-tests without WPA - ju...
by smurphy
Sun Mar 09, 2008 4:49 pm
Forum: General
Topic: Existing OID's for SNMP poll ?
Replies: 2
Views: 610

Re: Existing OID's for SNMP poll ?

Thx. Good to know.
Also found the oid in the /system resource part and the one for the wireless lan.

Any other OID's that do exist ?
by smurphy
Sat Mar 08, 2008 9:30 pm
Forum: General
Topic: Why does the RB153 report a higher load when Idle ?
Replies: 2
Views: 658

Why does the RB153 report a higher load when Idle ?

I wa wondering - when the system is not used at all - or almost not used - e.g. no network traffic - the CPU Utilization is way higher then when in use. Check: http://stargate.solsys.org/mod.php?mod=systat&op=list&host=2 The Overview ... On the bottom - the CPU % Utilization - and the network Usage ?
by smurphy
Sat Mar 08, 2008 9:24 pm
Forum: General
Topic: Existing OID's for SNMP poll ?
Replies: 2
Views: 610

Existing OID's for SNMP poll ?

Did anyone setup such a list ?
If yes - could someone please provide me some references ?

Thx
by smurphy
Sat Mar 08, 2008 9:20 pm
Forum: General
Topic: Request: System utilization in SNMP daemon on RouterOS
Replies: 0
Views: 456

Request: System utilization in SNMP daemon on RouterOS

Hi Folks, just setup my routerbox monitoring (self developped). I noticed however - that there is not that much I can check on the RouterOS side - regarding System utilization. The only OID I found is related to CPU % Utilisation actual status. http://stargate.solsys.org/var/rrd/rb153_load_Daily.png...
by smurphy
Tue Mar 04, 2008 2:30 pm
Forum: General
Topic: Possibility to set the link-speed and type ?
Replies: 1
Views: 451

Re: Possibility to set the link-speed and type ?

Never mind ... Found it ;)
Sorry for the bandwidth.
by smurphy
Tue Mar 04, 2008 2:29 pm
Forum: General
Topic: Possibility to set the link-speed and type ?
Replies: 1
Views: 451

Possibility to set the link-speed and type ?

As I seem to have a buggy mode hooked to the ADSL 2+ Link - I was wondering if there is a possibility to actually configure the ethernet Interface to b.e. 10MBit Full Duplex ? I know that the RB153 is doing a good Job in autodetecting everything - however the Turbolink Sphairon AR871C1-B is a PITA. ...
by smurphy
Mon Mar 03, 2008 11:59 am
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Re: Transfer speeds on RB153 through Wlan ?

Yes - that was what I thought ... Anyway - I would also use openvpn - but I would have the same there then, right ? Have to think about something else. Having some more boxes hanging around. meybe I'll use these a VPN Concentrators, and disable encryption completely on WLan - though route only the o...
by smurphy
Sun Mar 02, 2008 1:53 pm
Forum: General
Topic: What to drop - Bridge Interface, or physical Interface ?
Replies: 0
Views: 529

What to drop - Bridge Interface, or physical Interface ?

Hi folks, I'll be stesting that probably tomorrow - but what shall I drop... for openvpn - I have setup a bridge interface to the Local LAN interface - e.g. Lan - Ether5 and ovpn are linked to Bridge-vpn interface. If I now want to add a rule to drop traffic to Lan and ovpn interfaces - is it enough...
by smurphy
Sat Mar 01, 2008 9:55 pm
Forum: RouterBOARD hardware
Topic: Transfer speeds on RB153 through Wlan ?
Replies: 9
Views: 1702

Transfer speeds on RB153 through Wlan ?

Hi Folks, anyone has tested the transferspeed on the WLan of a RB153 ? - it's R52H board. I am having it running - connection 54Mbit configured - from a linux system on the ethernet port - to WLan, I get a maximun of 1.2MiBytes transfer speed (or 9.6MBit). Can anyone confirm this - or has it somethi...
by smurphy
Sat Mar 01, 2008 9:38 pm
Forum: General
Topic: hotspot client to client isolation
Replies: 7
Views: 7354

Re: hotspot client to client isolation

Hmmm... what shall I say. You can - but that involves quite heavy configuration on the router. Just make sure that every client is using a /30 subnet - and apply separation filter rules on these subnets, especially forward/out-interface rules. It's a PITA to configure - but it is the only suitable s...
by smurphy
Fri Feb 29, 2008 3:39 pm
Forum: General
Topic: How to Identify Routerboard for Firewall Rules ?
Replies: 2
Views: 633

Re: How to Identify Routerboard for Firewall Rules ?

Guosh ... You're right ...
It's been 7? Years I have not struggled on the cli with iptables/ipchains ...

Thx for the heads up ...
by smurphy
Fri Feb 29, 2008 2:26 pm
Forum: General
Topic: How to Identify Routerboard for Firewall Rules ?
Replies: 2
Views: 633

How to Identify Routerboard for Firewall Rules ?

Hi Folks,

is there a direct way to identify the Firewall itself in the rules we could use ?
Or will I have to generate an address list with all local IP-Addresses - to be able to use the firewall ?
by smurphy
Thu Feb 28, 2008 9:11 pm
Forum: General
Topic: Firewall: Best practices to use chains ?
Replies: 0
Views: 1029

Firewall: Best practices to use chains ?

Hi Folks ... I am almost there with my setup. However - I'd like to hear from those of you who have it - how to proceed best with the following setup. I have 4 Network Interface: pppoe,wlan1,Bridge-Service,Bridge-vpn (Which is the LAN) with associated subnets. Now - I want to make sure - that traffi...
by smurphy
Sun Feb 24, 2008 11:26 am
Forum: General
Topic: Firewall - best way to separate the interfaces ?
Replies: 2
Views: 674

Re: Firewall - best way to separate the interfaces ?

Hmm. Thx. That's a good hint. ok - now comes the next issue. As we have separated the traffic flow between the interfaces themselves - now I want to also limit access - on a per interface base.... IMHO - I'll have to create new chains - e.g.: fw2lan, fw2wifi, fw2wan, fw2secure - I have to take into ...
by smurphy
Fri Feb 22, 2008 10:40 pm
Forum: General
Topic: Firewall - best way to separate the interfaces ?
Replies: 2
Views: 674

Firewall - best way to separate the interfaces ?

Hia folks, as my old firewall-router will be repalced with a RB153 - and I tend to reproduce the same setup on the RB153 - I need to separate the Interfaces. Having 6 Interfaces - what is the best method using the builtin Firewall in RouterOS v3.3 - to restrict access to the interfaces from each oth...
by smurphy
Wed Feb 20, 2008 9:27 pm
Forum: RouterBOARD hardware
Topic: manual cli installation of ros 3.3 on rb153 ?
Replies: 5
Views: 2165

Re: manual cli installation of ros 3.3 on rb153 ?

Ok - fixed it. netinstall works - if you don't have a intelligent switch hocked in between. Seems some of the security settings of that switch prevented some protocols to go over - hence performing the installation. After plugging the network side into a Dumb switch - everything started working. Sor...
by smurphy
Wed Feb 20, 2008 4:53 pm
Forum: RouterBOARD hardware
Topic: manual cli installation of ros 3.3 on rb153 ?
Replies: 5
Views: 2165

Re: manual cli installation of ros 3.3 on rb153 ?

FYI - software versions: Netinstall: Mikrotik Route Installer v3.3 Router RB153: RouterBOOT booter 2.12 RouterBoard 153 CPU frequency: 175 MHz Memory size: 32 MB I have also formatted the NAND before, resetted the RouterBoot config etc. - changed nothing. When launching the install - through linux/o...
by smurphy
Wed Feb 20, 2008 4:40 pm
Forum: RouterBOARD hardware
Topic: manual cli installation of ros 3.3 on rb153 ?
Replies: 5
Views: 2165

Re: manual cli installation of ros 3.3 on rb153 ?

Hmmm... Here is what I did - followed the example at your site: 1. netinstall started. 2. Net Booting -> Boot Server enabled / IP in Local LAN assigned (10.0.4.13) 3. Set router to boot ... 3. Select router through MAC in netinstall 4. Select Software Package -> RouterOS for routerBoard RB5xx & RB1x...
by smurphy
Wed Feb 20, 2008 1:56 pm
Forum: RouterBOARD hardware
Topic: manual cli installation of ros 3.3 on rb153 ?
Replies: 5
Views: 2165

manual cli installation of ros 3.3 on rb153 ?

Hi there, having my Rb153 sitting here - I wonder how I can try to reinstall ros 3.3 on it. Have tried ros 2.9.29, 2.9.50 and 3.3, after that checked debian and openwrt (both of the later ones - I can still put on it have setup an own/decent tftp-server etc. doing the job well over bootp). However -...
by smurphy
Thu Feb 14, 2008 9:19 pm
Forum: General
Topic: Multiple VPN dyndns
Replies: 2
Views: 1407

Re: Multiple VPN dyndns

actually - you will have a problem when using same subnets on all remote locations - connecting to the VPN concentrator. Back in time - we used a trick by actually natting the traffic on each router at the gateway-level - e.g. on te interface doing the VPN. Using DynDNS - we were able to connect the...
by smurphy
Mon Feb 11, 2008 4:58 pm
Forum: General
Topic: ulog support in RouterOS ?
Replies: 1
Views: 609

ulog support in RouterOS ?

Hi Folks,

does a ulog package exist for the routeros iptables implementation ?
That would ease a lot integration of Logging & Databses.

Thx
by smurphy
Mon Feb 11, 2008 1:07 pm
Forum: General
Topic: Firewall Zone separation ?
Replies: 0
Views: 528

Firewall Zone separation ?

Hi There, I was wondering if the builtint firewall was able - through a simple configureation setup - to handle zone separation, or to bind certain rules to specific Interfaces ? By this I mean - b.e. I define on a RB153, eth0 -> world eth1 -> dmz eth2 -> lan eth3 -> lan eth4 -> lan wifi0 -> wifi th...
by smurphy
Fri Feb 08, 2008 9:25 pm
Forum: Scripting
Topic: dynamic blacklisting ? ulog/shorewall ?
Replies: 2
Views: 1513

Re: dynamic blacklisting ? ulog/shorewall ?

Thx for the headsup ... I did also read all I could find and discovered that a similar way to dynamically blacklist IP's exist somewhere else. However add to it the fetch option sounds really great. another question - as I do some decent statistical analysis - do you have ulog extention for the rout...
by smurphy
Thu Feb 07, 2008 8:39 pm
Forum: Scripting
Topic: dynamic blacklisting ? ulog/shorewall ?
Replies: 2
Views: 1513

dynamic blacklisting ? ulog/shorewall ?

Hi Folks, as I do this on my already existing router/modem/firewall (Based on a CV860A Lex mini-ITX), and I am planing in duplicating that functionality onto the RB153 that should arrive soon - here my specific question. I have a DB-Server that concentrates all security informations from portscan, s...