Community discussions

MUM Europe 2020

Search found 127 matches

by NickOlsen
Mon Jun 04, 2018 6:54 pm
Forum: Scripting
Topic: Send email if route active
Replies: 2
Views: 563

Re: Send email if route active

It's dynamic on both the primary circuit, And the LTE backup (LTE is via a ppp client). Which is why I think monitoring which route is active, And emailing based on that is the best method.
by NickOlsen
Thu May 31, 2018 8:26 pm
Forum: Scripting
Topic: Send email if route active
Replies: 2
Views: 563

Send email if route active

Hello, I've got a router with an LTE dongle for backup. The router has two default routes. One (primary) with check-gateway=ping. And a secondary pointing toward the LTE gateway. I'm trying to come up with a script that will check if the primary default route is active, And if it isn't. It sends an ...
by NickOlsen
Wed May 23, 2018 8:07 pm
Forum: General
Topic: VPNFilter malware [SOLVED]
Replies: 9
Views: 9957

Re: VPNFilter malware [SOLVED]

MRZ, I assume you're indicating this vulnerability was patched in 6.38.5? Can you confirm?
by NickOlsen
Tue May 15, 2018 7:02 am
Forum: Forwarding Protocols
Topic: packets lost inside VPLS but not outside
Replies: 16
Views: 1404

Re: packets lost inside VPLS but not outside

Ah yes. As long as your VPLS is never crossing the RM2, Then I don't think my issue is the same as yours.

We never saw latency issues across the AF5x. Sorry!
by NickOlsen
Tue May 15, 2018 5:04 am
Forum: Forwarding Protocols
Topic: packets lost inside VPLS but not outside
Replies: 16
Views: 1404

Re: packets lost inside VPLS but not outside

Oh, No, I never saw these issues on the Airfiber line. It was specifically limited to the Airmax M series. So like the Nanostation M5, Nanobridge M5..etc. You can test by disabling Airmax. In my testing, Disabling Airmax caused the issue to stop. However it also hurt the performance of the link. I n...
by NickOlsen
Tue May 15, 2018 4:41 am
Forum: Forwarding Protocols
Topic: packets lost inside VPLS but not outside
Replies: 16
Views: 1404

Re: packets lost inside VPLS but not outside

To my knowledge, the 5.x airmax (The Non-AC M series) radios have never been fixed. The workaround we performed was installing different product (We used Cambium PMP450 for that link). I never tested the newer AC style radios. From what I remember. Technically any traffic MPLS tagged (Like all VPLS ...
by NickOlsen
Mon May 14, 2018 9:03 pm
Forum: Forwarding Protocols
Topic: packets lost inside VPLS but not outside
Replies: 16
Views: 1404

Re: packets lost inside VPLS but not outside

See this thread I posted a long time ago on the UBNT forums. https://community.ubnt.com/t5/airMAX-General-Discussion/Airmax-QOS-Deprioritzing-traffic-when-using-MPLS-VPLS/td-p/708575 Basically, The ICMP traffic isn't being properly marked by airmax due to the MPLS labels. This doesn't affect your pi...
by NickOlsen
Mon May 14, 2018 5:06 pm
Forum: Forwarding Protocols
Topic: packets lost inside VPLS but not outside
Replies: 16
Views: 1404

Re: packets lost inside VPLS but not outside

Is this traffic crossing Ubiquiti wireless links?
by NickOlsen
Fri May 26, 2017 5:30 pm
Forum: Forwarding Protocols
Topic: set multiple communities in filters
Replies: 3
Views: 683

Re: set multiple communities in filters

You have to hit the little down arrow that allows you to enter multiple communities via winbox.

Image
by NickOlsen
Thu Apr 13, 2017 10:45 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

Re: MPLS incorrect forwarding table

We made the following change approximately 2 weeks ago and no longer have to disable LDP after restarting a specifically problematic router, which would otherwise never be accessible unless we connected via mac telnet, disabled LDP, waited a couple of seconds and re-enabled it: /mpls set dynamic-la...
by NickOlsen
Fri Mar 31, 2017 10:14 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

Re: MPLS incorrect forwarding table

I'll have to roll 6.38.x out and see if it makes any difference. I can definitely say it has something to do with route instability. It appears that it exacerbates the problem. One particular site use to have this issue almost daily during the rainy season. The site had an AF24 with a 5Ghz backup. W...
by NickOlsen
Wed Nov 23, 2016 8:22 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

Re: MPLS incorrect forwarding table

Thanks for the tip!

Checked all of my Loopbacks. They're all /32's as expected.
by NickOlsen
Wed Nov 23, 2016 7:01 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

Re: MPLS incorrect forwarding table

I'd argue that an MPLS MTU problem would manifest itself in packet loss of larger packets. The This allows us to transport jumbo-ish frames for customer L2VPN's with less fragmentation. I'd run it at 9600 if the underlying transport gear supported it. While nothing with Mikrotik is bomb proof. I can...
by NickOlsen
Wed Nov 23, 2016 6:10 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

Re: MPLS incorrect forwarding table

All interfaces are running a 2020 l2mtu. MPLS works great. It's just when it randomly decides to get out of Sync that the issues start to occur. Export below. Pulled from tower that had the issue most recently (This morning). It's running 6.35. Loopbacks are fully redistributed in OSPF. [admin@car1....
by NickOlsen
Wed Nov 23, 2016 4:48 pm
Forum: Forwarding Protocols
Topic: MPLS incorrect forwarding table
Replies: 15
Views: 3116

MPLS incorrect forwarding table

Greetings. I've got a fully OSPF routed network. Over 65 "Core" sites. On top of this, I've applied MPLS to facilitate in L2VPN services. Since we started running MPLS (~6.6ROS) I've had this problem where the MPLS forwarding table will come out of sync with the OSPF driven local routing table. Caus...
by NickOlsen
Sun Jul 03, 2016 5:57 am
Forum: RouterBOARD hardware
Topic: New Dual Radio Units Coming
Replies: 1
Views: 782

Re: New Dual Radio Units Coming

Every Dual radio unit I've ever put my hands on from MT has had two physical radio interfaces. So yes, You could perhaps configure the device to connect on 5Ghz, And provide client wifi on 2Ghz.
by NickOlsen
Sun Jul 03, 2016 5:52 am
Forum: RouterBOARD hardware
Topic: wAP AC Temperature
Replies: 2
Views: 1802

wAP AC Temperature

Anyone else notice the wAP AC runs really hot? The AP is blazing fast. But when you really load it up. It gets really hot. I've seen it as high as 100C. The device is in my AC cooled apartment at ~72F. I'm powering it via 802.3AF POE from a cisco switch. The device is quite warm to the touch. So I d...
by NickOlsen
Fri Sep 25, 2015 10:11 pm
Forum: General
Topic: Loss of ARP causing bridge to function like a Hub?
Replies: 1
Views: 604

Loss of ARP causing bridge to function like a Hub?

Greetings, Recently. I've come across and issue. Both instances have been on an RB2011. One running 6.29.1 and run running 6.30.2. The second instance, Running on 6.30.2 has continued after a router swap. So the problem survived a router swap. Here's the config. Ether 1 and 2 are OSPF routed backhau...
by NickOlsen
Thu Jul 24, 2014 5:26 am
Forum: Forwarding Protocols
Topic: OSPFv3 IPv6 Learned Next-hop
Replies: 3
Views: 1241

Re: OSPFv3 IPv6 Learned Next-hop

OK. So I set a loopback IPv6 address on a lobridge [admin@router] /ipv6 address> print Flags: X - disabled, I - invalid, D - dynamic, G - global, L - link-local # ADDRESS FROM-POOL INTERFACE ADVERTISE 0 DL fe80::d6ca:6dff:fee9:1a55/64 bridge1 no 1 DL fe80::d6ca:6dff:fee9:1a57/64 ether2 no 2 DL fe80:...
by NickOlsen
Wed Jul 23, 2014 11:31 pm
Forum: Forwarding Protocols
Topic: OSPFv3 IPv6 Learned Next-hop
Replies: 3
Views: 1241

OSPFv3 IPv6 Learned Next-hop

Hello, Recently we've been configuring IPv6 on our core. And I've noticed something that seems strange. Sorry if this has been answered before, My search skills have failed me. Each Interface has it's own link-local IPv6 address, That I get. But with OSPF uses this link local next-hop instead of the...
by NickOlsen
Wed Jan 15, 2014 8:58 pm
Forum: Forwarding Protocols
Topic: Applying DSCP to VPLS tunnel
Replies: 3
Views: 1768

Re: Applying DSCP to VPLS tunnel

Close, We're trying to tag the VPLS traffic as it crosses our network (Airmax supposely honors these DSCP settings). The senario is a Point to Point Metro-E link between the 2011's. The problem we're having is the Latency inside the VPLS tunnel is in some cases much higher than the non-VPLS encapula...
by NickOlsen
Wed Jan 15, 2014 7:37 pm
Forum: Forwarding Protocols
Topic: Applying DSCP to VPLS tunnel
Replies: 3
Views: 1768

Applying DSCP to VPLS tunnel

I'm curious as to how I can set a DSCP tag on VPLS traffic. The senario is 2011>Ubiquity PTMP to tower>Tower Router>Backhaul>Tower Router>Backhaul>Tower Router>Ubiquity PTMP to Customer> 2011 I understand that any changes to traffic must be set before it enters the MPLS cloud. But in a situation whe...
by NickOlsen
Thu Dec 19, 2013 10:35 pm
Forum: Forwarding Protocols
Topic: UPNP
Replies: 2
Views: 1149

Re: UPNP

This is how I'm doing it. /ip upnp set allow-disable-external-interface=no enabled=yes show-dummy-rule=yes /ip upnp interfaces add disabled=no forced-external-ip=xx.xx.xx.xx interface=WAN type=external add disabled=no interface=LAN1 type=internal Obviously, Replace x.x.x.x with your external static ...
by NickOlsen
Thu Dec 19, 2013 10:21 pm
Forum: Forwarding Protocols
Topic: Downstream BGP Peer
Replies: 1
Views: 1129

Re: Downstream BGP Peer

1. No, You only place items in "Networks" that you wish to originate from that router. 2. You technically don't need to do any filtering on the outbound prefixes. IE. Allow your full table toward them. Like you said, You are already filtering their prefixes inbound. Which is good. PS. Remember, Any ...
by NickOlsen
Thu Dec 19, 2013 10:12 pm
Forum: Forwarding Protocols
Topic: MPLS Stale Forwarding Table
Replies: 0
Views: 1331

MPLS Stale Forwarding Table

Hello, We're running ROS 6.6 and 6.7 on a number of routerboards. CCR's, 2011's..etc. And they all have a strange issue from time to time. Consider the following triangle scenario. Three Routers. Router 1 and 2 connect. Router 2 and 3 connect. And Finally Router 1 and 3 connect to form a ring or tri...
by NickOlsen
Mon Nov 11, 2013 5:53 pm
Forum: Forwarding Protocols
Topic: MPLS issue need immediate help if you can offer any
Replies: 14
Views: 4728

Re: MPLS issue need immediate help if you can offer any

Ok. So Reading the slides, I would understand that the interfaces which do not support an L2MTU would need to be replaced? What about X86 interfaces that DO show an L2MTU but just do not allow you to change it (Grayed out, says 9014). If it were the case that it was dropping packets >1500 wouldn't t...
by NickOlsen
Mon Nov 11, 2013 4:56 pm
Forum: Forwarding Protocols
Topic: MPLS issue need immediate help if you can offer any
Replies: 14
Views: 4728

Re: MPLS issue need immediate help if you can offer any

Hello Tomaskir. We've got the interface MTU set to 2000, The L2MTU set to 2020. And the MPLS MTU set to 2000 on all devices. On the x86 routers which don't show the L2MTU we've just set the interface MTU. And the MPLS MTU. The actual frames going over the links should be ~1508 (we set 2000 to allow ...
by NickOlsen
Thu May 24, 2012 10:44 pm
Forum: General
Topic: EOIP/GRE Performance
Replies: 0
Views: 962

EOIP/GRE Performance

Afternoon All, We've got a few locations that we service with a dedicated connection of ours. We extend OSPF to our router on site..etc.etc.. If the customer would like. We let them purchase a cable connection from the local cable company for backup. We create a EOIP or GRE tunnel over this cable co...
by NickOlsen
Wed Apr 25, 2012 4:35 pm
Forum: Forwarding Protocols
Topic: Level 3 BGP communities.
Replies: 3
Views: 1432

Re: Level 3 BGP communities.

yeah ive ran into this before as well, i cant remember if i got it to work on the CLI or not. It would be nice to have this feature working. Ah. Your a genius! I hadn't even thought of using the CLI (It was a long day yesterday..) That worked great. So, it's just a winbox issue. Thanks for your help!
by NickOlsen
Tue Apr 24, 2012 11:30 pm
Forum: Forwarding Protocols
Topic: Level 3 BGP communities.
Replies: 3
Views: 1432

Level 3 BGP communities.

Greetings all. We recently turned up peering with Level 3 here in Florida. In interest of traffic engineering. We'd like to use some of Level 3's available BGP Communities. For instance. They have 65001:0 which advertises normally to customers, And prepends 3356 once to peers. However, when I attemp...
by NickOlsen
Mon Apr 25, 2011 2:53 am
Forum: Forwarding Protocols
Topic: MPLS on existing network.
Replies: 3
Views: 1127

Re: MPLS on existing network.

So, If I understand correctly. The L2MTU setting is how you tell mikrotik the mtu of the underlying link? So if all of our gear was set for 1500 we should set the L2MTU to 1500? And this would tell Mikrotik that the BH is only going to pass things up to 1500? Let me know if I'm completely missing th...
by NickOlsen
Fri Apr 22, 2011 10:43 pm
Forum: Forwarding Protocols
Topic: MPLS on existing network.
Replies: 3
Views: 1127

MPLS on existing network.

Good day all. We recently upgraded all of our tower routers to 5.1 Our network consists of about 25 towers, And is all OSPF routed internally. And we speak BGP to external peers. All is well with this We wanted to enable MPLS on our network and did so. We did the following steps. 1. Enabled MPLS pac...
by NickOlsen
Fri Sep 24, 2010 6:12 pm
Forum: General
Topic: MK v5 rc1 - bug torch
Replies: 33
Views: 7293

Re: MK v5 rc1 - bug torch

I can confirm the multiple IP traffic torch bug. And can reproduce it easy. Was hoping it would be fixed in rc1 :(
by NickOlsen
Mon Nov 02, 2009 4:32 pm
Forum: General
Topic: IPv6 IPSec
Replies: 3
Views: 2168

Re: IPv6 IPSec

Yes it is.
Its running over the EOIP tunnel
And anything that moves from my router to another router is ipsec by IP.
by NickOlsen
Fri Oct 16, 2009 9:28 pm
Forum: Wireless Networking
Topic: 3.20>4.0
Replies: 7
Views: 1234

Re: 3.20>4.0

Well, with us, The package was enabled. but all the settings were overwritten and the interface was disabled on both sides. Good thing we had a route to the other side, or it would have been a late night drive.
by NickOlsen
Fri Oct 16, 2009 6:31 pm
Forum: Wireless Networking
Topic: 3.20>4.0
Replies: 7
Views: 1234

3.20>4.0

We have a few point to point links. RB411's they were running 3.20 with a superchannel licence. After upgrade to 4.0 wlan was Disabled and all (wlan) settings were overwritten. This happened on a total of 4 radios. we also had another set of wireless N links updated from 4.0RC1 to 4.0 and they kept ...
by NickOlsen
Thu Oct 15, 2009 9:59 pm
Forum: Beginner Basics
Topic: RouterOS Performnce issues
Replies: 5
Views: 1120

Re: RouterOS Performnce issues

I've maxed out the 10/100 ports on my 750, at about 60% load.
And my X86 router, which is a AMD 3000+ with 1gb of ram, I've maxed out the 2 intel gig interfaces in it. at about 70% cpu load
by NickOlsen
Tue Oct 06, 2009 8:50 am
Forum: General
Topic: IPv6 IPSec
Replies: 3
Views: 2168

Re: IPv6 IPSec

I'm running IPsec between 3 routers, in a triangle like topology. All traffic from one to the other is IPSEC'ed and i run a EOIP tunnel over that. Including OSPFv2 and v3. And IPv6 will run over that all day long.
Don't know if that will work for you or not. But it does for me.
by NickOlsen
Tue Aug 18, 2009 2:23 am
Forum: General
Topic: Setting Masquerade IP
Replies: 4
Views: 2290

Re: Setting Masquerade IP

Tim,
This worked perfect. Thanks.
by NickOlsen
Mon Aug 17, 2009 10:29 pm
Forum: General
Topic: Setting Masquerade IP
Replies: 4
Views: 2290

Re: Setting Masquerade IP

Hmm, that would work, Was hoping for a better way though :)
And yes, Mikrotik connects directly to cable modem.
by NickOlsen
Mon Aug 17, 2009 9:11 pm
Forum: General
Topic: Setting Masquerade IP
Replies: 4
Views: 2290

Setting Masquerade IP

I have 5 static ip's assigned to the wan interface of my router. Lets say they are 10.10.10.58-62 internal range is 172.16.0.x/24 I know on internal port forwards i can do dst-nat dst-address=10.10.10.59 and forward any packet coming TO that ip to a internal 172 ip. I have a normal masquerade rule s...
by NickOlsen
Mon Aug 10, 2009 7:53 pm
Forum: General
Topic: IPv6 Torch
Replies: 0
Views: 407

IPv6 Torch

Anyone know when IPv6 Torch will come around. I'm starting to move a decent amount of IPv6 and torch would be awesome.
You can run it now, but don't see any of the ipv6.
by NickOlsen
Tue Jun 16, 2009 5:27 am
Forum: Forwarding Protocols
Topic: IPv6 OSPF
Replies: 4
Views: 1522

Re: IPv6 OSPF

That worked.
And since 3.25 fixed the route issue and them still being visable in winbox routing-test is working great. Thanks
by NickOlsen
Sun Jun 14, 2009 8:09 pm
Forum: Forwarding Protocols
Topic: IPv6 OSPF
Replies: 4
Views: 1522

IPv6 OSPF

With the routing test package I have OSPFv3 and I'm trying to announce a IPv6 prefix (/64). Without the networks tab how would I go about that?
by NickOlsen
Tue Jan 20, 2009 5:12 pm
Forum: General
Topic: VoIP Passthrough Problem with Mikrotik ROS
Replies: 30
Views: 8620

Re: VoIP Passthrough Problem with Mikrotik ROS

I have about 4 sip devices behind my nat'ed mikrotik router running 3.18 and it passes sip all day long. And always has all the way back to 3.0 which is what i started out with.
by NickOlsen
Tue Jan 20, 2009 4:26 am
Forum: General
Topic: Router Addressing
Replies: 4
Views: 626

Re: Router Addressing

depending on how many ip's you got you might want to consider breaking them out into smaller subnets and making your router the gateway and assigning them right to the server. Or you can assign them all to the router and dst nat the whole ip to a internal ip in a nat fashion.
by NickOlsen
Tue Jan 20, 2009 4:07 am
Forum: Beginner Basics
Topic: Question about 2.4ghz n 5ghz
Replies: 4
Views: 836

Re: Question about 2.4ghz n 5ghz

Well, 2-3Mb/s isn't much. But yeah, i would aggree that 5ghz is the way to go, If you have that much 2.4 in the area i would also look into how much 5 is in the air. Many of the newer consumer ap's are dual band and transmit on both 2.4 and 5
by NickOlsen
Tue Jan 20, 2009 4:04 am
Forum: Beginner Basics
Topic: Request for Mikrotik Team, ability to cache Youtube?
Replies: 26
Views: 9760

Re: Request for Mikrotik Team, ability to cache Youtube?

To MikroTik developers: I am contacting my buddies guerilla activists right now. We are organizing protest in front of MikroTik building and we are blocking all exits until developers implement the video cache into MT Web Proxy.

I love it when people talk big on the internet.
by NickOlsen
Fri Dec 26, 2008 3:14 am
Forum: Beginner Basics
Topic: What size of Maximum RAM I can use?
Replies: 21
Views: 10919

Re: What size of Maximum RAM I can use?

What would be the point of puting that much ram into a router?
my router use's like 40mb max. and it has 1gb in it.
by NickOlsen
Sat Nov 01, 2008 5:13 pm
Forum: General
Topic: VPN instead EOIP
Replies: 2
Views: 753

Re: VPN instead EOIP

For the end user, EOIP with two mikrotik routers would be the easiest. This is because the connection would be transparent to the end user, it would be like there in the same room as what there connecting to.
by NickOlsen
Sat Nov 01, 2008 4:58 pm
Forum: Beginner Basics
Topic: Best OS and Software for Mikrotik VPN
Replies: 3
Views: 1361

Re: Best OS and Software for Mikrotik VPN

I have a remote server running CentOS 5.2, And it PPTP's into my router here on boot. That way I can access its file shares and stuff.
I just use the generic PPTP client and it works great, super stable.
by NickOlsen
Wed Oct 22, 2008 7:18 pm
Forum: General
Topic: EOIP speed
Replies: 1
Views: 973

EOIP speed

I run EOIP tunnels between a friends router. He has 3.14 and i have 3.11.
The most bandwidth we can ever move is about 2mb/s
outside the tunnel we can do about 7-9Mb/s
I do run QOS, but thats not limiting it.

Any ideas?
This was confirmed with bandwidth tests. From both sides.
by NickOlsen
Tue Oct 21, 2008 10:51 pm
Forum: General
Topic: VOIP Mikrotik
Replies: 9
Views: 3859

Re: VOIP Mikrotik

I'm running 3.11 And with EOIP tunnels i can never push or pull more then 2mb/s from it.
friend has a very fast connection and over the tunnel he can't push me more then 2mb/s but when we do it just normal over the net its like 7-9Mb/s

So i'm hoping for a answer to this
by NickOlsen
Sat Oct 11, 2008 2:04 am
Forum: Beginner Basics
Topic: Help with enabling game ports
Replies: 6
Views: 1848

Re: Help with enabling game ports

Port forwarding isn't going to help in this situation. Port forwarding only opens the port if it needs to be-99% of games do not need them open to work. Really, I don't think that this is the problem. When you start the game and connect to a server it creates a connection, And uses this connection. ...
by NickOlsen
Mon Oct 06, 2008 6:51 pm
Forum: General
Topic: Sample Hotspot Page - Sticky Please
Replies: 438
Views: 311495

Re: Sample Hotspot Page - Sticky Please

Contact a consultant.
by NickOlsen
Sat Oct 04, 2008 10:31 pm
Forum: General
Topic: Sample Hotspot Page - Sticky Please
Replies: 438
Views: 311495

Re: Sample Hotspot Page - Sticky Please

thanks for all,
but i want to say that i tried for many times before to edit that page, but i failed because of the fields for username and password
can any one tell me about the program used to fix that ???
:lol:
You will need to understand code first. No program is going to help you.
by NickOlsen
Sun Sep 28, 2008 8:36 pm
Forum: General
Topic: VPN or EoIP but how
Replies: 5
Views: 992

Re: VPN or EoIP but how

Eoip is simple.
just create the interface, the remote address will be the ip address of the other side of the tunnel and match the tunnel id's
Then just create a bridge, and add both ports to it.

It is all simply done through winbox.
by NickOlsen
Sun Sep 28, 2008 12:38 pm
Forum: Beginner Basics
Topic: Email tool
Replies: 6
Views: 1216

Re: Email tool

File might be a little to big.
mine are around 400kb

Make sure that your email server ip in the script is right and that it doesn't require auth.
by NickOlsen
Sun Sep 28, 2008 1:16 am
Forum: General
Topic: VPN or EoIP but how
Replies: 5
Views: 992

Re: VPN or EoIP but how

create a EOIP tunnel between them and bridge it with the lan interface.

That will make it like they are in the same physical location.
by NickOlsen
Sun Sep 28, 2008 1:13 am
Forum: General
Topic: Web Server behind Mikrotik Server
Replies: 15
Views: 8674

Re: Web Server behind Mikrotik Server

I found the same problem. My fix was to have 2 DNS servers. 1 internal were www pointed to the servers internal 172 address. 1 external where www points to my external ip. And only people from the outside see this. it is called 'split DNS' and can be configured with 1 dns server =) Yeah, I know, i ...
by NickOlsen
Sun Sep 28, 2008 1:04 am
Forum: Beginner Basics
Topic: Email tool
Replies: 6
Views: 1216

Re: Email tool

I just set that script up. Heres what works for me, I have my own email server so yours will very. :log info "backup beginning now" :global backupfile ([/system identity get name] . "-" . [/system clock get time]) /system backup save name=$backupfile :log info "backup pausing for 10s" :delay 10s :lo...
by NickOlsen
Sat Sep 27, 2008 1:40 pm
Forum: Beginner Basics
Topic: License level 1
Replies: 5
Views: 5280

Re: License level 1

well routerboards dont have pci slots.
so no.
by NickOlsen
Sat Sep 27, 2008 11:18 am
Forum: General
Topic: Web Server behind Mikrotik Server
Replies: 15
Views: 8674

Re: Web Server behind Mikrotik Server

I found the same problem.
My fix was to have 2 DNS servers.
1 internal were www pointed to the servers internal 172 address.
1 external where www points to my external ip. And only people from the outside see this.
by NickOlsen
Fri Sep 26, 2008 3:33 am
Forum: Beginner Basics
Topic: License level 1
Replies: 5
Views: 5280

Re: License level 1

Yes, you can install a R52, but you need a mini pci to pci adapter. Like this one. http://www.titanwirelessonline.com/ProductDetails.asp?ProductCode=RB-11 But you would need atleast a level 4 for this (use it as a AP) Also, make sure you get some sort of antenna or the wireless isn't going to reach ...
by NickOlsen
Wed Sep 24, 2008 10:20 pm
Forum: Scripting
Topic: Interface log status script
Replies: 2
Views: 1366

Interface log status script

Simple script but I have no idea how to do it.
Basically I would like a script that watches a certain interface and just logs it if it goes down (no link).

Can anybody make me this script?
I take it that netwatch would be used.
by NickOlsen
Tue Sep 23, 2008 4:33 am
Forum: General
Topic: Intel igb nic driver
Replies: 8
Views: 2010

Re: Intel igb nic driver

They don't add drivers.
They wait till the kernel includes them.
by NickOlsen
Mon Sep 22, 2008 9:44 am
Forum: Beginner Basics
Topic: pptp problem
Replies: 5
Views: 1016

Re: pptp problem

Have you tried testing from another place outside your network. Some routers don't like PPTP and it doesn't work.
I know at a friends house when i try to PPTP into my network it takes a few trys and he has a linksys wrt54g.
by NickOlsen
Mon Sep 22, 2008 7:28 am
Forum: General
Topic: Router to Rouer VPN
Replies: 15
Views: 2465

Re: Router to Rouer VPN

Well, that would be great if they wanted to dial in. The best thing to make it transparent would be run a EOIP tunnel between the 2 locations and bridge the eoip with the lan interface Using different ip ranges on each side and blocking DHCP on the tunnel so that you don't have dhcp jumping offices....
by NickOlsen
Sun Sep 21, 2008 8:14 pm
Forum: General
Topic: Router to Rouer VPN
Replies: 15
Views: 2465

Re: Router to Rouer VPN

Your better off doing a EOIP tunnel between them and bridging it with the lan.
by NickOlsen
Thu Sep 18, 2008 8:03 am
Forum: General
Topic: Sample Hotspot Page - Sticky Please
Replies: 438
Views: 311495

Re: Sample Hotspot Page - Sticky Please

Wow, that is awesome
by NickOlsen
Thu Sep 18, 2008 7:40 am
Forum: General
Topic: Web Server behind Mikrotik Server
Replies: 15
Views: 8674

Re: Web Server behind Mikrotik Server

add action=dst-nat chain=dstnat comment="" disabled=no dst-port=80 in-interface=wan0 protocol=tcp \
to-addresses=INTERNAL_IP_HERE to-ports=80
by NickOlsen
Wed Sep 17, 2008 8:06 am
Forum: General
Topic: Web Server behind Mikrotik Server
Replies: 15
Views: 8674

Re: Web Server behind Mikrotik Server

You can only forward port 80 to one computer. period
you can setup a host based web server. Such has Apache virtual hosts.
Google it.
by NickOlsen
Tue Sep 16, 2008 10:54 pm
Forum: Beginner Basics
Topic: MIkrotik RouterOS problem
Replies: 5
Views: 1116

Re: MIkrotik RouterOS problem

Try upgrading to one of the 3.x versions, i use 3.11 and it works great.
by NickOlsen
Tue Sep 16, 2008 10:53 pm
Forum: General
Topic: Web Server behind Mikrotik Server
Replies: 15
Views: 8674

Re: Web Server behind Mikrotik Server

what version of routeros?
by NickOlsen
Fri Sep 12, 2008 8:42 am
Forum: Beginner Basics
Topic: Hspda modem support problem
Replies: 11
Views: 1713

Re: Hspda modem support problem

Its not going to happen over night.
IF they integrate it, IF, it will be a few releases down the line, don't get your hopes up.
by NickOlsen
Fri Sep 12, 2008 12:39 am
Forum: General
Topic: Get enterprise IP outside office, is possible?
Replies: 2
Views: 616

Re: Get enterprise IP outside office, is possible?

I doubt it can be done. The internet just doesn't work like that. If the ip is assigned to one place it cant be assigned in another. It would be like setting a static ip on a computer and not connecting it to the right network. The data just wouldn't beable to talk to anyone. And if someone on the o...
by NickOlsen
Fri Sep 12, 2008 12:30 am
Forum: Beginner Basics
Topic: I want to use ipv6 with pppoe
Replies: 7
Views: 1073

Re: I want to use ipv6 with pppoe

I would add IPv6 tunnels to someone like HE (6-4 tunnel) so you have ipv6 internet access. And keep ipv4 also.
That way your network can move both types of ip's and when the time comes, you can turn off ipv4.
by NickOlsen
Wed Sep 10, 2008 8:04 am
Forum: Beginner Basics
Topic: Can I use RouterOS for this requirement?
Replies: 1
Views: 643

Re: Can I use RouterOS for this requirement?

Not sure if you could get those exact settings.


If you run mikrotik on a x86 machine it will need a whole computer. Its not a application. It is a OS.
If it is possible a level 4 should be fine.
by NickOlsen
Wed Sep 10, 2008 8:00 am
Forum: Beginner Basics
Topic: I want to use ipv6 with pppoe
Replies: 7
Views: 1073

Re: I want to use ipv6 with pppoe

IPv6 tunneling? so you could provide ipv6 access to your customers?
My only idea would be break your assigned /48 out into /64's and assign that to each pppoe interface on the client side of the PPPoE.
I have no idea if that would actually work though.
by NickOlsen
Wed Sep 10, 2008 7:57 am
Forum: General
Topic: Exclude VoIP Traffic from UM
Replies: 1
Views: 609

Re: Exclude VoIP Traffic from UM

Well, SIP uses 5060 and 10000-20000
5060 for control i guess you could say
and 10000-20000 for actual audio streams.
Layer 7? I'm not sure how you could mark VOIP traffic as it would be just like all other UDP traffic.
by NickOlsen
Sun Sep 07, 2008 11:46 pm
Forum: Beginner Basics
Topic: How can i create Network on TelePhone Line Like DSL
Replies: 2
Views: 791

Re: How can i create Network on TelePhone Line Like DSL

You can get VDSL bridges. Basically they are ethernet a phone pair.
If you want to do something like the phone company's do, you will need a DSLAM as posted above.
by NickOlsen
Sun Sep 07, 2008 11:38 pm
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

Well, I only noticed problems when i maxed out my 2mbs upload, which is why its limited to 1900k just to cover some overhead of SNMP and other things that are outside that parent. I never noticed a problem limiting the download. And my download bursts to 18mbs or so and I didn't want to get rid of t...
by NickOlsen
Fri Sep 05, 2008 5:31 am
Forum: Beginner Basics
Topic: Why the value is zero, is there a problem in proxy
Replies: 6
Views: 1208

Re: Why the value is zero, is there a problem in proxy

I wouldn't worry about it.
As long as there is a Cache on a disc. as in "cache used" is more then 0 its working and is as fast as your going to get it.
by NickOlsen
Wed Sep 03, 2008 7:33 am
Forum: General
Topic: Partial System Hang
Replies: 2
Views: 802

Re: Partial System Hang

Surely you mean 252 TOTAL queues.
If you have 252 for EACH ip that is ridiculous and that would be your problem.
by NickOlsen
Wed Sep 03, 2008 7:26 am
Forum: Beginner Basics
Topic: Why the value is zero, is there a problem in proxy
Replies: 6
Views: 1208

Re: Why the value is zero, is there a problem in proxy

This is because you are cache'ing to the hard drive not the ram. you have about 2gb cached if i read that right. If you had it cache to ram you would need at least 2gb of ram, it could be faster in theory. But every time you reboot the router it would clear the whole cache becuase that's how ram wor...
by NickOlsen
Sun Aug 31, 2008 9:23 am
Forum: General
Topic: How to Login
Replies: 5
Views: 935

Re: How to Login

If the static IP is assigned to a interface on the Mikrotik box you shouldn't have to do anything. just login.
by NickOlsen
Thu Aug 28, 2008 4:51 pm
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

I have never done anything with hotspot so your guess is as good as mine. Sorry.
by NickOlsen
Thu Aug 28, 2008 4:27 am
Forum: General
Topic: CPU overload
Replies: 8
Views: 1328

Re: CPU overload

2.9.51 is free?
if you bought a license in the first place. Yes
if you are using a illegal version (you didn't pay for it) don't expect any help.
by NickOlsen
Thu Aug 28, 2008 4:25 am
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

Any time :D
by NickOlsen
Thu Aug 28, 2008 4:21 am
Forum: General
Topic: change page (Mikrotik HttpProxy).????
Replies: 9
Views: 4216

Re: change page (Mikrotik HttpProxy).????

It is not possible to change this text.
ok I know ... But How???????????????????

Re-read that.


it is NOT possible to change this text.
by NickOlsen
Wed Aug 27, 2008 6:26 pm
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

It all looks good. Is your wan interface ether 1? are the rules getting increments on the hit counters? which would show that they are marking traffic. are the queue rules getting increments? showing that they are prioritizing traffic to the rules that you have set. What are you trying to give prior...
by NickOlsen
Wed Aug 27, 2008 9:19 am
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

These are queue trees not simple queues.
if you mark just one type of traffic and set it to priority 1 it takes no priority over non-prioritized traffic.
Thats why you have to mark all traffic as 8 or so and just up the priority on what you want to have priority (with other mangle rules).
by NickOlsen
Wed Aug 27, 2008 2:31 am
Forum: General
Topic: Filter rule !80 whats the exclamation do?
Replies: 2
Views: 1569

Re: Filter rule !80 whats the exclamation do?

it means NOT 80
so that rule would be applyed to ALL ports put 80

Lets say your blocking p2p, but you want p2p to be avalible on computer 192.168.0.3
you could say src address !192.168.0.3
so it would apply to ALL but 192.168.0.3
by NickOlsen
Wed Aug 27, 2008 12:18 am
Forum: General
Topic: high priority
Replies: 14
Views: 3251

Re: high priority

You can't just prioritize one type of traffic. You have to prioritize it all, then give the app priority over another. What is posted above is good. I would add these under the rules that he posted add action=mark-packet chain=prerouting comment=udp disabled=no in-interface=\ wan0 new-packet-mark=ud...
by NickOlsen
Wed Aug 27, 2008 12:10 am
Forum: General
Topic: change page (Mikrotik HttpProxy).????
Replies: 9
Views: 4216

Re: change page (Mikrotik HttpProxy).????

As it has been said before, stop using big text, it doesn't get you anywhere.

As for your issue, I don't think it can be changed.
by NickOlsen
Tue Aug 26, 2008 5:55 am
Forum: General
Topic: Traffic Shaping
Replies: 5
Views: 967

Re: Traffic Shaping

I don't think it really matters, bandwidth control is what it is, no matter what type of connection.
Just change the main upload and download queues to reflect your upload and download speeds you get from your provider.
by NickOlsen
Mon Aug 25, 2008 8:51 am
Forum: General
Topic: Traffic Shaping
Replies: 5
Views: 967

Re: Traffic Shaping

This is what I did to control bandwidth, you might have to modify it a little for your needs

http://141networks.com/files/queue.txt
by NickOlsen
Sat Aug 23, 2008 10:08 am
Forum: General
Topic: Help !!!
Replies: 20
Views: 2396

Re: Help !!!

You need to hire a consultant or read the manual. This topic really needs to be locked.
All the help you need is in the Manual, if you cant understand it, hire a consultant.
by NickOlsen
Sun Aug 17, 2008 10:15 am
Forum: General
Topic: Help !!!
Replies: 20
Views: 2396

Re: Help !!!

Use PPPoE, like they have stated 5 times already.
by NickOlsen
Fri Aug 15, 2008 2:40 am
Forum: General
Topic: IAX2 asterisk firewall rules?
Replies: 1
Views: 2040

Re: IAX2 asterisk firewall rules?

Ah, yes, i have a asterisk server behind my router and this is what i did.

add action=dst-nat chain=dstnat comment="" disabled=no dst-port=4569 \
in-interface=wan0 protocol=udp src-address=put-src-asterisk-ip-here to-addresses=\
internal-ip-here to-ports=4569
by NickOlsen
Tue Aug 12, 2008 10:21 pm
Forum: General
Topic: Ethernet interface stops responding, RouterOS PC reboots
Replies: 5
Views: 1236

Re: Ethernet interface stops responding, RouterOS PC reboots

I would disable whatever rules you can and see how it fairs, I know with my old D-Link card when i started moving a lot of traffic through it with all my src-nat rules and filter/mangle rules it would lock up. But that was fixed by the RB44 i got. And I would assume that the RB44G would have done ju...
by NickOlsen
Tue Aug 12, 2008 6:07 pm
Forum: General
Topic: Ethernet interface stops responding, RouterOS PC reboots
Replies: 5
Views: 1236

Re: Ethernet interface stops responding, RouterOS PC reboots

I had the same problem when i had a D-Link 530T+ in my box. It would stop responding and i would have to reboot it. Now I have a RB44 and it works flawlessly. Is the "public" interface on one of the RB44G's? Do you have any special rules on that interface? Does it get way more traffic then the others?
by NickOlsen
Mon Aug 11, 2008 9:51 am
Forum: General
Topic: Help !!!
Replies: 20
Views: 2396

Re: Help !!!

Just open winbox, and hit the little ... next to the ip
It should find the mikrotik box, then connect to it by MAC address NOT ip address.
by NickOlsen
Wed Aug 06, 2008 9:27 am
Forum: General
Topic: Critical login failure via ftp
Replies: 6
Views: 1749

Re: Critical login failure via ftp

well, you can lookup the IP in the whois database's but that will only give you a ISP. Don't let it get to you, it happens to everyone. just do one of the above suggestions and be done with it. These things scan the web looking for open ports like 21 for ftp and 22 for SSH, when they find one they s...
by NickOlsen
Tue Aug 05, 2008 7:42 am
Forum: General
Topic: Critical login failure via ftp
Replies: 6
Views: 1749

Re: Critical login failure via ftp

Its just a FTP scaning bot, My FTP server use to get that all the time.
If you don't use Mikrotik's FTP just disable it under services. Its like a brute force, they are just trying many usernames and password, and you can tell its a bot because it goes so fast.
by NickOlsen
Tue Aug 05, 2008 2:19 am
Forum: General
Topic: VOIP NAT & Mikrotik
Replies: 7
Views: 2308

Re: VOIP NAT & Mikrotik

Need more info, Are you using one lan interface and one wan?
Are the requests coming from the outside(wan) to the inside (lan)

I have a 1wan 1lan setup and VOIP works fine. I can register to the work VOIP server and stuff can register to my voip box.
by NickOlsen
Fri Aug 01, 2008 9:18 pm
Forum: General
Topic: Quality of Service (QoS)
Replies: 12
Views: 3989

Re: Quality of Service (QoS)

this is what i use for my 15/2 cable service. Works really well, you might have to modify it for your own needs though.
http://141networks.com/files/queue.txt
by NickOlsen
Fri Aug 01, 2008 9:05 pm
Forum: General
Topic: Rules for firewall + queue
Replies: 4
Views: 994

Re: Rules for firewall + queue

its fixed now, try again. DNS server crashed and i just got it back up.
by NickOlsen
Thu Jul 31, 2008 7:24 pm
Forum: General
Topic: Rules for firewall + queue
Replies: 4
Views: 994

Re: Rules for firewall + queue

Wow, it was weird seeing my own domain for a minute
Here are the rules, they have been updated since then and work better.
http://141networks.com/files/queue.txt
by NickOlsen
Thu Jul 31, 2008 7:22 pm
Forum: General
Topic: p2p limitation on v3.10 or upper
Replies: 9
Views: 1263

Re: p2p limitation on v3.10 or upper

I use queues to limit all my traffic, It catches utorrent and i can limit it to what i like. Haven't tried limewire, that program is a waste of code.
Here is my queue setup and mangle rules.
http://141networks.com/files/queue.txt
by NickOlsen
Tue Jul 29, 2008 7:45 pm
Forum: General
Topic: bandwidth control problem
Replies: 9
Views: 2192

Re: bandwidth control problem

You should upgrade to the latest Mikrotik Software (3.11)
by NickOlsen
Mon Jul 28, 2008 3:30 am
Forum: General
Topic: Static IP issued from Bellsouth\ATT DSL configuration
Replies: 15
Views: 10099

Re: Static IP issued from Bellsouth\ATT DSL configuration

I'm Not sure, Ask bellsouth. I think you should still beable to get to it, if you disable nat and give your self a ip in that range. Or hook right up to the modem. I'm Really not sure. If you find out let me know, will help next time i need to know. i take it you already tryed that ip in the browser...
by NickOlsen
Mon Jul 28, 2008 1:51 am
Forum: General
Topic: Static IP issued from Bellsouth\ATT DSL configuration
Replies: 15
Views: 10099

Re: Static IP issued from Bellsouth\ATT DSL configuration

Cool, I'm glad to hear it worked well.
by NickOlsen
Sun Jul 27, 2008 11:11 am
Forum: General
Topic: Static IP issued from Bellsouth\ATT DSL configuration
Replies: 15
Views: 10099

Re: Static IP issued from Bellsouth\ATT DSL configuration

Ok, so i forgot to grab the config.
But heres what you do.
Add the PPPoE client, with your login and password and select use peer dns
it will add the static ip for you. and the default route. Its not DHCP its some PPPoE magic, but it worked great.
by NickOlsen
Sat Jul 26, 2008 11:34 pm
Forum: General
Topic: Latency Priority
Replies: 8
Views: 1745

Re: Latency Priority

I copyed this http://wiki.mikrotik.com/wiki/Mangle%2C_Queue_Tree_and_prio_by_fly_man_..._almost_done then modified it to fit my needs. It works really well. So far its done everything the way it should. Haven't found anything that gets past it. Note that i did start over from the rules i had in the ...
by NickOlsen
Sat Jul 26, 2008 11:25 pm
Forum: General
Topic: Static IP issued from Bellsouth\ATT DSL configuration
Replies: 15
Views: 10099

Re: Static IP issued from Bellsouth\ATT DSL configuration

I think the PPPoE Client will create its own interface, and you assign the static Ip to that interface, not Eth0 Eth1 would be your lan side, as in what you connect computers to, and you need to have a DHCP server on that interface. I'm going to a friends house in a few hours to setup a router, and ...
by NickOlsen
Sat Jul 26, 2008 9:27 am
Forum: General
Topic: MikroTik router to Cisco Switch....pings SLOW!
Replies: 1
Views: 571

Re: MikroTik router to Cisco Switch....pings SLOW!

Well, swap stuff out. Does a different switch show the same problem?
If so swap the nic in the router(or eth port on a rb)
If not I would guess it was the switch. Swap cables to just in case.
by NickOlsen
Sat Jul 26, 2008 9:19 am
Forum: General
Topic: Static IP issued from Bellsouth\ATT DSL configuration
Replies: 15
Views: 10099

Re: Static IP issued from Bellsouth\ATT DSL configuration

You need to put the modem in bridge mode. Right now it is doing the PPPoE'ing and giving out nat'd addresses from itself. The modem should have a webpage on it that you can change settings on it. Contact Bellsouth for more info on that if you can't find it. Once you bridge the modem it is basically ...
by NickOlsen
Thu Jul 24, 2008 11:04 am
Forum: General
Topic: Latency Priority
Replies: 8
Views: 1745

Re: Latency Priority

yeah i know, the problem is the fact that I'm maxing out the upload on my modem, I think it has something to do with the way they (my isp) throttles connections. Once you hit your max upload latency goes way up. So my fix was to give what was causing the latency lowest priority. Which I did. I can n...
by NickOlsen
Thu Jul 24, 2008 10:51 am
Forum: General
Topic: Help!!!
Replies: 1
Views: 773

Re: Help!!!

I know the quad port intel will work. I know a router with 2 of them in it.
by NickOlsen
Thu Jul 24, 2008 10:43 am
Forum: General
Topic: Latency Priority
Replies: 8
Views: 1745

Re: Latency Priority

By 10ms I ment a change of 10ms, such as having a 50ms ping and it going to 60ms. if my ping was 10ms I would not be complaining. Also, I understand that games don't use ICMP, Counterstrike source for example uses 27015 udp. But I gave ICMP priority for the simple fact that my latency/bandwidth moni...
by NickOlsen
Thu Jul 24, 2008 9:40 am
Forum: General
Topic: Latency Priority
Replies: 8
Views: 1745

Re: Latency Priority

Well, After a long time of playing and reading wiki's i figured it out. Its quite complex

Here is a screen shot. http://141networks.com/Files/queue.jpg

This doesn't really show the inner workings of each rule, but if someone wants them i can get them.
by NickOlsen
Thu Jul 24, 2008 4:35 am
Forum: General
Topic: Latency Priority
Replies: 8
Views: 1745

Latency Priority

Ok, I use to have a D-Link DGL-4300, but really liked the idea of having a x86 based router that could do the stuff i wanted. Such as SNMP, Tunneling ect... On it, If i set a port to have priority such as port 27015 for Counterstrike Source and Team Fortress 2, No matter what I would do max out uplo...
by NickOlsen
Tue Jul 08, 2008 3:59 am
Forum: General
Topic: Routing challenge
Replies: 3
Views: 926

Re: Routing challenge

Yeah, Smartermail supports use of IIS, So i switched over to IIS and set that up with host headers.

Cable internet here (central Florida, USA) is very good. I am a business class customer, speeds are rated at 15M/2M
But its faster all of the time. With about 99.999% uptime.
by NickOlsen
Mon Jul 07, 2008 5:12 am
Forum: General
Topic: Routing challenge
Replies: 3
Views: 926

Routing challenge

Alright Here is what i have. Cable internet(1 static ip)>MT(X86 3.7)>managed switch. Here is what i want to do. I host my website here at my house(example.com). I only have 1 public ip so i run a masquerade rule, And port 80 is DST-NAT'ed to my webserver. I have a email server that has a webinterfac...
by NickOlsen
Thu Mar 27, 2008 2:20 pm
Forum: Beginner Basics
Topic: Monitoring Website vistits
Replies: 1
Views: 856

Monitoring Website vistits

I there a way to monitor the websites visited from my network? And possibly the IP that did it? I'm using Mikrotik 3.2 (x86) with a level 4 license. It is connected to my cable modem then connected to my switch on the other interface. I'm only have one external IP so im using a src-nat and masquerad...
by NickOlsen
Wed Feb 13, 2008 9:37 pm
Forum: Beginner Basics
Topic: Routing External ip
Replies: 3
Views: 2950

Routing External ip

I host some stuff here at my house. Including a webserver. On my old router if i were to try to connect to my external ip it would work and i could view my website. Using Router OS 3.2 I can only hit the internal IP and get the site to come up. How can I make it so when i hit my external ip from the...