Community discussions

MikroTik App

Search found 498 matches

  • 1
  • 2
by onnoossendrijver
Wed Mar 06, 2024 12:00 pm
Forum: Announcements
Topic: SwOS Lite version 2.18 released!
Replies: 23
Views: 19309

Re: SwOS Lite version 2.18 released!

When auto negotiation is disabled you often need a crossover cable. Auto-crossover is often also disabled if auto negotiation is disabled
by onnoossendrijver
Mon Mar 04, 2024 1:52 pm
Forum: Announcements
Topic: v7.15beta [testing] is released!
Replies: 409
Views: 75336

Re: v7.15beta [testing] is released!

*) vlan - ensure that VLAN MTU remains unchanged when adjustments are made to the parent interface MTU, only modifications to the L2MTU might impact VLAN MTU; *) vlan - fixed MTU reset on bridge after reboot; Thank you! this fixed my problem with 7.13 / 7.14 where I had to disable/enable my interne...
by onnoossendrijver
Thu Feb 29, 2024 12:55 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 47335

Re: v7.14rc [testing] is released!

Is this an issue introduced in 7.14? I see heavy discussion in this thread but no mention in 7.13 topic.
I have VLAN/MTU/Bridge related problems since 7.13
by onnoossendrijver
Wed Jan 24, 2024 2:24 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 150021

Re: v7.14beta [testing] is released!

*) vlan - fixed non-running VLAN interface after failed MTU change;
I don't know if related, but since 7.13, and also in 7.14beta8 I have to disable/enable the VLAN interface to make PPPoE on that interface work.
by onnoossendrijver
Mon Jan 15, 2024 3:41 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257605

Re: v7.13.2 [stable] is released!

*) vlan - fixed non-running VLAN interface after failed MTU change; I don't know if it is related, but I still need to disable/enable the underlying VLAN interface to make PPPoE work. Strangely the logging tells me that PPPoE is connected and then terminates and reconnects, over and over again. The...
by onnoossendrijver
Wed Dec 20, 2023 8:17 pm
Forum: RouterBOARD hardware
Topic: Mikrotik RS485 support?
Replies: 7
Views: 7106

Re: Mikrotik RS485 support?

The KNOT can do Modbus / RS485.
Does that suit your needs?
by onnoossendrijver
Fri Dec 15, 2023 8:28 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257605

Re: v7.13 [stable] is released!

I had to disable/enable the VLAN interface underneath the PPPoE interface to make the PPPoE client work on my RB5009. Am I the only one having this problem?
by onnoossendrijver
Mon Oct 09, 2023 11:36 pm
Forum: General
Topic: RB5009 2.5Gbe not working?
Replies: 5
Views: 1297

Re: RB5009 2.5Gbe not working?

You need to enable fasttrack (Google/MT wiki)
by onnoossendrijver
Mon Sep 25, 2023 2:19 pm
Forum: General
Topic: PPPoE works, but no route to host error on clients
Replies: 3
Views: 788

Re: PPPoE works, but no route to host error on clients

You have no default gateway configured in your DHCP settings.
by onnoossendrijver
Fri Sep 22, 2023 5:20 pm
Forum: RouterBOARD hardware
Topic: RB2011UiAS-RM gigabit performance
Replies: 7
Views: 2680

Re: RB2011UiAS-RM gigabit performance

There is not much you can do. You may see some small improvements if you remove the WAN bridge (do you really need it?). Or you can gain a tiny bit for improving the firewall rule order.. Like mkx said before: This thing is old! If you have the money, get a RB5009. It's a beast! RB4011 is also very ...
by onnoossendrijver
Fri Sep 22, 2023 1:17 pm
Forum: RouterBOARD hardware
Topic: RB2011UiAS-RM gigabit performance
Replies: 7
Views: 2680

Re: RB2011UiAS-RM gigabit performance

Do you have fasttrack enabled?
by onnoossendrijver
Thu Aug 31, 2023 6:06 pm
Forum: General
Topic: 2.5Gbps speed on RB5009 not working
Replies: 4
Views: 1331

Re: 2.5Gbps speed on RB5009 not working

I have my PC (Realtek 2.5G PCIe onboard) connected to ether1on the RB5009. The 5009 is connected via DAC cable to CRS309. My Synology NAS is connected to a 2.5G SFP in the same CRS309 using a Realtek RTL8156B USB cable https://github.com/bb-qq/r8152/releases Result: steady 280 MB/s (2250 Mbit/s) bot...
by onnoossendrijver
Tue Aug 29, 2023 12:16 pm
Forum: General
Topic: IPSec VTI
Replies: 55
Views: 22878

Re: IPSec VTI

Agreed.. IPsec without VTI is terrible.
I really don't understand why it is not available yet. _ALL_ VPN's I use and manage ( about 2000, I work for some governmental agency ) are route based.
by onnoossendrijver
Wed Aug 23, 2023 3:58 pm
Forum: RouterBOARD hardware
Topic: hAP lite RB041-2nD how to update?
Replies: 7
Views: 4207

Re: hAP lite RB041-2nD how to update?

Why not do a netinstall with the latest v6 version?
by onnoossendrijver
Wed Aug 16, 2023 11:49 pm
Forum: General
Topic: RB3011 - still a good choice?
Replies: 22
Views: 2595

Re: RB3011 - still a good choice?

I believe that the LCD screen is not supported on RouterOS 7. So, forget that the screen.
by onnoossendrijver
Sat Jul 01, 2023 3:08 pm
Forum: RouterBOARD hardware
Topic: Which devices support S/FTP cables?
Replies: 2
Views: 2379

Re: Which devices support S/FTP cables?

You really don't need shielded cable in most situations. Power cables alongside network cables are not a problem in general. Also, if using shielded cable, you don't need shielded connectors on both sides of the cable. Mind you.. using shielded cables can cause more problems than it solves, because ...
by onnoossendrijver
Thu Jun 29, 2023 3:01 pm
Forum: General
Topic: Question regarding IKEv2/IPSEC route based
Replies: 16
Views: 5521

Re: Question regarding IKEv2/IPSEC route based

Sorry to reply on this old thread.. Now that most requested features are implemented :wink: .. I would really like to have Route based ipsec in RouterOS.
It is the only reason why we are still using Juniper and Edgerouter (not many, because lack of development) on certain locations.
by onnoossendrijver
Fri Jun 16, 2023 9:59 am
Forum: Beginner Basics
Topic: Fiber SC connector: SFP or adapt to LC?
Replies: 3
Views: 1252

Re: Fiber SC connector: SFP or adapt to LC?

I have an old single fibre SC SFP. It's made by FiberXon.
Because it's quite old its probably not available anymore.
by onnoossendrijver
Tue May 30, 2023 11:05 am
Forum: RouterBOARD hardware
Topic: hAP ax3 as firewall
Replies: 4
Views: 2528

Re: hAP ax3 as firewall

No sweat!
by onnoossendrijver
Tue May 30, 2023 9:37 am
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 52957

Re: v7.10rc is released!

I have the same issue on 7.9. A device after coming from sleep connects to 10M instead of 1000M. I manually set 1000M on the router side to avoid this. Why not solve the "problem" at the source? Disable power saving.. Also, why do you want it to connect at 1G ? If the device leaves low po...
by onnoossendrijver
Wed May 24, 2023 4:24 pm
Forum: General
Topic: Cisco IPsec To Mikrotik
Replies: 8
Views: 1069

Re: Cisco IPsec To Mikrotik

Are you sure about the source and destination addresses in the ipsec policy?
You should configure here the subnets being routed through the ipsec tunnel.
by onnoossendrijver
Wed May 24, 2023 10:45 am
Forum: General
Topic: Cisco IPsec To Mikrotik
Replies: 8
Views: 1069

Re: Cisco IPsec To Mikrotik

no one can help me ?
It is probably not that difficult... Here is a good example:
https://help.mikrotik.com/docs/display/ ... Ev1)tunnel

And please.. upgrade your security to IKEv2, AES(preferably AES-GCM), etcetera...
3DES / MD5 is a joke.
by onnoossendrijver
Wed Mar 08, 2023 10:21 pm
Forum: SwOS
Topic: CRS309-1G-8S+IN - From Routeros to Swos
Replies: 15
Views: 3832

Re: CRS309-1G-8S+IN - From Routeros to Swos

I think you don't understand. You can use multiple vlans on a single bridge.
That way you keep hardware switching turned on.
See https://help.mikrotik.com/docs/display/ ... +Switching for examples / explanation.
by onnoossendrijver
Wed Mar 08, 2023 5:05 pm
Forum: SwOS
Topic: CRS309-1G-8S+IN - From Routeros to Swos
Replies: 15
Views: 3832

Re: CRS309-1G-8S+IN - From Routeros to Swos

What is wrong with the port speeds? Are you aware that you should have only 1 bridge to preserve hardware switching?
by onnoossendrijver
Wed Jan 11, 2023 9:36 pm
Forum: RouterBOARD hardware
Topic: RB4011iGS+RM power consumption
Replies: 7
Views: 1784

Re: RB4011iGS+RM power consumption

Calm down...
A RB4011 without any attachments is doing 7.5 watt on my desk, not 33.
by onnoossendrijver
Wed Jan 11, 2023 7:40 pm
Forum: RouterBOARD hardware
Topic: RB4011iGS+RM power consumption
Replies: 7
Views: 1784

Re: RB4011iGS+RM power consumption

Actually it does.
by onnoossendrijver
Wed Jan 11, 2023 4:30 pm
Forum: RouterBOARD hardware
Topic: MikroTik cAP ax [cAPGi-5HaxD2HaxD] (r2)
Replies: 114
Views: 24830

Re: MikroTik cAP ax [cAPGi-5HaxD2HaxD] (r2)

2.5g on first port would have been nice... But still.. instabuy :)
by onnoossendrijver
Wed Jan 11, 2023 2:40 pm
Forum: RouterBOARD hardware
Topic: MikroTik cAP ax [cAPGi-5HaxD2HaxD] (r2)
Replies: 114
Views: 24830

Re: MikroTik cAP ax [cAPGi-5HaxD2HaxD] (r2)

Shut up and take my money! ;-)
by onnoossendrijver
Tue Jan 03, 2023 12:58 pm
Forum: RouterBOARD hardware
Topic: CCR2216-PERFORMANCE problem
Replies: 12
Views: 4512

Re: CCR2216-PERFORMANCE problem

You should give your configuration before we can say anything about your problems.
by onnoossendrijver
Mon Aug 22, 2022 2:17 pm
Forum: SwOS
Topic: SwOS 2.15?
Replies: 10
Views: 4840

Re: SwOS 2.15?

Wow... that is really not what I was expecting from a new SwOS release.
Is it so hard to finally push out a bugfix release for existing devices?
Why release a new version when there are no bugfixes in it?
by onnoossendrijver
Fri Aug 19, 2022 6:20 pm
Forum: SwOS
Topic: SwOS 2.15?
Replies: 10
Views: 4840

Re: SwOS 2.15?

Older devices will not have those changed components and do not need a software update.
by onnoossendrijver
Fri Aug 19, 2022 5:47 pm
Forum: SwOS
Topic: SwOS 2.15?
Replies: 10
Views: 4840

Re: SwOS 2.15?

My guess: Factory only releases are for changed components (different memory chips, different power management controller etc..)
by onnoossendrijver
Fri Jun 10, 2022 5:46 pm
Forum: RouterBOARD hardware
Topic: MikroTik router RB2011UIAS-2HND-IN to slow
Replies: 4
Views: 691

Re: MikroTik router RB2011UIAS-2HND-IN to slow

Do you have fasttrack configured?
Also.. The RB2011 is not the fastest router anymore.. Consider upgrading to a 4011 or 5009.
by onnoossendrijver
Wed Mar 16, 2022 10:16 am
Forum: RouterOS beta
Topic: Is not possible to downgrade beyond the factory installed version 7.1.1
Replies: 9
Views: 2923

Re: How to downgrade beyond the factory installed version 7.1.1

This is completely unacceptable for a vendor to start pushing new HW revision without backward compatibility and without any EOS/EOL dates announcement for the previous HW revision. Well I guess it is ok for one's cheap home wifi router.... so nice reminder of where these products are targeted at, ...
by onnoossendrijver
Tue Feb 08, 2022 9:58 pm
Forum: RouterBOARD hardware
Topic: powering wall wart devices in a datacenter
Replies: 11
Views: 1687

Re: powering wall wart devices in a datacenter

In Europe the power is 230V AC asymmetric (one side is ~gnd the other is 230V AC) and the next step up is 3-phase 230/400V AC. I.e. you have 3 230V AC circuits like the above, with 400V between the phases. This is the low voltage setup commonly available in domestic and small industrial environment...
by onnoossendrijver
Thu Dec 09, 2021 11:18 am
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 224846

Re: v7.1 is released!

Mikrotik releases to the market a product with an outdated kernel. The RouterOS v7.1 is still in the testing phase. When v7 will be really stable the kernel will be ancient. And the cycle will repeat for RouterOS v8. It will take 10 years to complete it, by the time v8 will be stable the kernel wil...
by onnoossendrijver
Mon Nov 29, 2021 3:20 pm
Forum: RouterOS beta
Topic: v7.1beta4 on RB600A
Replies: 8
Views: 4518

Re: v7.1beta4 on RB600A

Thanks for the tip. This works great!
by onnoossendrijver
Wed Nov 10, 2021 4:54 pm
Forum: RouterOS beta
Topic: v7.1rc1 multicast / igmp-proxy
Replies: 12
Views: 6739

Re: v7.1rc1 multicast / igmp-proxy

Does anyone use IGMP proxy on ROS 7?
I really want to test, but my wife doesn't want to give me a change window ;-)
Ok, I got a change window and upgraded my IPTV router (RB750Gr3) to 7.1rc6.
It works great :)
IGMP proxy is working as expected.
by onnoossendrijver
Thu Nov 04, 2021 6:13 pm
Forum: Announcements
Topic: v6.49 [stable] is released!
Replies: 219
Views: 95854

Re: v6.49 [stable] is released!

But this is 6.49 thread, so enough of this off-topic ROS 7 mumbling...
Oops.. sorry, I didn't see that. Sorry.
I didn't have any problems upgrading 6.48.? to 6.49 on my RB600A.
by onnoossendrijver
Wed Nov 03, 2021 6:16 pm
Forum: Announcements
Topic: v6.49 [stable] is released!
Replies: 219
Views: 95854

Re: v6.49 [stable] is released!

Me too. I would really like to get ROS 7 on the RB600 fixed. It has plenty of storage and RAM, and the CPU is still very capable.
by onnoossendrijver
Tue Oct 26, 2021 6:34 pm
Forum: RouterOS beta
Topic: v7.1rc1 multicast / igmp-proxy
Replies: 12
Views: 6739

Re: v7.1rc1 multicast / igmp-proxy

Does anyone use IGMP proxy on ROS 7?
I really want to test, but my wife doesn't want to give me a change window ;-)
by onnoossendrijver
Mon Oct 04, 2021 12:23 pm
Forum: RouterOS beta
Topic: CRS317 l3hw + firewall question [SOLVED]
Replies: 22
Views: 12776

Re: CRS317 l3hw + firewall question [SOLVED]

Very nice!!
by onnoossendrijver
Sat Sep 18, 2021 9:34 pm
Forum: RouterOS beta
Topic: v7.1rc3 [development] is released!
Replies: 172
Views: 49688

Re: v7.1rc3 [development] is released!

You can't downgrade below factory-firmware (/sys routerboard print). There are 2 types of CCR2004, CCR2004-16G-2S+ and CCR2004-1G-12S+2XS. CCR2004-1G-12S+2XS works with v6, the new CCR2004-16G-2S+ does not. Not good enough !! The downloads page clearly does not differentiate between the two...It ne...
by onnoossendrijver
Mon Sep 06, 2021 11:23 pm
Forum: RouterBOARD hardware
Topic: Hex S + SFP Gpon Onu
Replies: 4
Views: 2692

Re: Hex S + SFP Gpon Onu

Bonding? Do you mean bridging?
by onnoossendrijver
Wed Aug 25, 2021 1:31 pm
Forum: RouterOS beta
Topic: mDNS repeater feature
Replies: 330
Views: 99566

Re: mDNS repeater feature

In a network where I need mDNS repeater I placed a small linux box running avahi (could be a Raspberry PI) with interfaces in both vlans.
This works really great.
Offcourse disable routing and/or configure the local firewall correctly...
by onnoossendrijver
Thu Jul 22, 2021 8:47 am
Forum: RouterBOARD hardware
Topic: MikroTik RB5009UG+S+IN
Replies: 202
Views: 91960

Re: MikroTik RB5009UG+S+IN

Also the cpu on a Pi doesn't have 10/25g interfaces or the insanely fast crypto engine.
by onnoossendrijver
Wed Jul 21, 2021 8:58 am
Forum: RouterBOARD hardware
Topic: MikroTik RB5009UG+S+IN
Replies: 202
Views: 91960

Re: MikroTik RB5009UG+S+IN

Shut up and take my money!

It looks like the switch chip supports L3 switching/routing:)
by onnoossendrijver
Tue Jul 13, 2021 8:36 pm
Forum: RouterOS beta
Topic: Plans with wireguard [SOLVED]
Replies: 1
Views: 1808

Re: Plans with wireguard [SOLVED]

When RouterOS 7 becomes Testing or Stable.
by onnoossendrijver
Fri Jun 18, 2021 12:54 pm
Forum: Announcements
Topic: v6.48.3 [stable] is released!
Replies: 111
Views: 69471

Re: v6.48.3 [stable] is released!

I see a some issues with scripts that are launched by scheduler. Log is showing "not enough permissions".
Maybe:
*) console - require "write+ftp" permissions for exporting configuration to file;
by onnoossendrijver
Fri Jun 18, 2021 11:02 am
Forum: RouterBOARD hardware
Topic: RB4011 10G SFP Module Question
Replies: 3
Views: 1944

Re: RB4011 10G SFP Module Question

Did you bridge the SFP+ port with the other ports?
by onnoossendrijver
Sun May 02, 2021 10:13 am
Forum: RouterBOARD hardware
Topic: RB 1100 AHx4 Off
Replies: 19
Views: 3336

Re: RB 1100 AHx4 Off

Why do you want to change the voltage? There seems nothing wrong with the voltage.
by onnoossendrijver
Sat Apr 24, 2021 12:34 pm
Forum: Announcements
Topic: v6.48.2 [stable] is released!
Replies: 141
Views: 61770

Re: v6.48.2 [stable] is released!

After the upgrade I also needed to add write to the policies.
Any idea?
Did you read the changelog?
*) console - require "write+ftp" permissions for exporting configuration to file;
by onnoossendrijver
Thu Mar 25, 2021 6:19 pm
Forum: RouterBOARD hardware
Topic: RB760iGS - idle power consumption
Replies: 1
Views: 1129

Re: RB760iGS - idle power consumption

I believe it was <4 watt, nothing connected.
by onnoossendrijver
Mon Mar 08, 2021 10:57 pm
Forum: RouterBOARD hardware
Topic: CCR2004 packet loss
Replies: 135
Views: 58607

Re: CCR2004 packet loss

A week ago I was told by MT support they were hoping to have a fix out in the next beta. Seems one was launched today but nothing in release notes, but could be non-documented. Anybody have any more information? /Mikael What about: *) switch - improved packet transmit between CPU and 98PX1012 for C...
by onnoossendrijver
Sat Mar 06, 2021 11:32 pm
Forum: RouterBOARD hardware
Topic: RB4011iGS+RM - idle power consumption [SOLVED]
Replies: 4
Views: 2763

Re: RB4011iGS+RM - idle power consumption [SOLVED]

Nothing connected: 7.5 watt.
by onnoossendrijver
Mon Feb 22, 2021 9:26 pm
Forum: General
Topic: css326 and rb4011 getting errors with 10G SFP+ uplink
Replies: 10
Views: 2360

Re: css326 and rb4011 getting errors with 10G SFP+ uplink

About this particular cable: can someone explain to me why this one works in the 4011, while others (sfp+) do not?
by onnoossendrijver
Fri Feb 19, 2021 6:02 pm
Forum: RouterBOARD hardware
Topic: CCR1009 poor bridge performance [SOLVED]
Replies: 10
Views: 3697

Re: CCR1009 poor bridge performance [SOLVED]

Older model CCR1009 had a switch chip.
by onnoossendrijver
Fri Feb 19, 2021 3:11 pm
Forum: RouterOS beta
Topic: v7.1beta4 on RB600A
Replies: 8
Views: 4518

v7.1beta4 on RB600A

Hi, I cannot get it to work.. After netinstall: RouterBOOT booter 6.48.1 RouterBoard 600A CPU frequency: 400 MHz Memory size: 128 MiB NAND size: 64 MiB Press any key within 2 seconds to enter setup.. loading kernel... OK setting up elf image... kernel out of range kernel loading failed Is this old d...
by onnoossendrijver
Fri Feb 19, 2021 11:32 am
Forum: Beginner Basics
Topic: Chromecast not detectable
Replies: 22
Views: 7115

Re: Chromecast not detectable

You need an MDNS repeater between the subnets to make the chromecast work. I believe RouterOS doesn't have MDNS functionality.. I use a linux machine with avahi for this.
by onnoossendrijver
Wed Feb 17, 2021 9:47 am
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 56407

Re: v7.1beta4 [development] is released!

What if someone sells devices running development software. Mind blown. That is not winning prizes... But the big boys do the same. They even don't call it beta or development.. First Cisco Nexus switches: Total crap. First Juniper SRX: the same. Checkpoint modular firewalls: after all these years ...
by onnoossendrijver
Tue Feb 16, 2021 7:34 pm
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 56407

Re: v7.1beta4 [development] is released!

But complaining that something put into the "development" branch is broken? That's a little too much.
I totally agree!
I have devices where 7 is working great, and other devices where I can't even get 7 to boot. I accept that for its a development release.
by onnoossendrijver
Mon Feb 15, 2021 11:52 am
Forum: Beginner Basics
Topic: Rb4011+IPv6 from ISP - Problem
Replies: 6
Views: 1313

Re: Rb4011+IPv6 from ISP - Problem

If you turn on logging on the ICMPv6 firewall rules, do you see packets matching the rule when pinging from outside?
It would help us if you place your configuration here, so we can check...
by onnoossendrijver
Thu Feb 11, 2021 5:57 pm
Forum: General
Topic: Home Network is Failing
Replies: 10
Views: 1610

Re: Home Network is Failing

There is almost no chance that the RB4011 is not good enough for you.
Do you believe that the CPU load is too high?
by onnoossendrijver
Sun Feb 07, 2021 10:32 am
Forum: RouterBOARD hardware
Topic: 10G Fiber run of 700m, which SFP+ module and cable?
Replies: 6
Views: 2346

Re: 10G Fiber run of 700m, which SFP+ module and cable?

I believe the costs of fibre are really low. If it costs less than a few 100 euros/dollars extra for running 4 or even more strands, please consider doing that. You never know what you need it for. Doing it later is much more expensive. Also don't be cheap with the fibre quality. If adding just a fe...
by onnoossendrijver
Sat Feb 06, 2021 10:23 am
Forum: RouterBOARD hardware
Topic: 10G Fiber run of 700m, which SFP+ module and cable?
Replies: 6
Views: 2346

Re: 10G Fiber run of 700m, which SFP+ module and cable?

If you have duplex fibre, you should use something like https://www.fs.com/de-en/products/11555.html or https://mikrotik.com/product/xs_31lc10d . For single fibre take the https://mikrotik.com/product/Splus2332LC10D , which is actually full duplex. Sending is done on a different wavelength as receiv...
by onnoossendrijver
Fri Jan 22, 2021 10:43 pm
Forum: RouterOS beta
Topic: Feature Request - Clean up IPSEC Tabs
Replies: 3
Views: 1502

Re: Feature Request - Clean up IPSEC Tabs

+1, and also add VTI support
by onnoossendrijver
Thu Dec 03, 2020 3:14 pm
Forum: RouterOS beta
Topic: v7.1beta3 [development] is released!
Replies: 261
Views: 79139

Re: v7.1beta3 [development] is released!

Of course I would really like to have these features..
But come on guys... I believe Mikrotik never promised wave2/mimo support on these devices. Also, never buy hardware for a feature that may or may not be available later.
by onnoossendrijver
Fri Oct 23, 2020 10:53 am
Forum: Announcements
Topic: v6.47.6 [stable] is released!
Replies: 39
Views: 24455

Re: v6.47.6 [stable] is released!

Will this fix the high battery issue with mobile devices? this started with the 6.47 versions, up to 6.46 the battery drain was normal on phones and tablets, it went up to 4x with the 6.47 versions. I see no improvement here. My Oneplus drains like crazy, but GF's Nokia doesn't seem to have problem...
by onnoossendrijver
Thu Oct 01, 2020 1:44 pm
Forum: RouterOS beta
Topic: fq_codel or cake in v7
Replies: 68
Views: 41282

Re: fq_codel or cake in v7

I have the feeling that a new beta is coming :)
by onnoossendrijver
Tue Jul 28, 2020 10:15 am
Forum: RouterBOARD hardware
Topic: Just going to leave this here...
Replies: 164
Views: 79304

Re: Just going to leave this here...

If I remember correctly it is in a file called 'net'.
by onnoossendrijver
Mon Jul 27, 2020 10:49 pm
Forum: RouterBOARD hardware
Topic: Just going to leave this here...
Replies: 164
Views: 79304

Re: Just going to leave this here...

(also a reference to a lovely addition to the crs3 series is in the image, but i don't want to spoil all the fun)
Found it.. Nice :D
by onnoossendrijver
Sun Jul 26, 2020 11:27 am
Forum: RouterBOARD hardware
Topic: Fixed AP's with external sensors
Replies: 1
Views: 1232

Re: Fixed AP's with external sensors

I tend to be from the other camp: don't add these kind of things to networking equipment. But on this one I agree with you. I would really like to have some simple sensors on an AP and let is communicate it's values with an MQTT server for example. It would save me having to install extra cables or ...
by onnoossendrijver
Sat Jul 25, 2020 10:51 am
Forum: RouterOS beta
Topic: v7.1beta1 [development] is released!
Replies: 103
Views: 57504

Re: v7.1beta1 [development] is released!

I tried (net)installing ROS7 on a spare RB600A. It didn't work. The board didn't boot with the new software.
@Mikrotik: Will the RB600A be supported in a future release? Or am I doing something wrong?
by onnoossendrijver
Thu Jul 09, 2020 4:12 pm
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 184
Views: 114720

Re: v6.48beta [testing] is released!

Let me tell you that this 802.1BR support makes me very excited :)
by onnoossendrijver
Thu Jul 09, 2020 3:53 pm
Forum: RouterOS beta
Topic: Add RTL8125B driver request
Replies: 3
Views: 3305

Re: Add RTL8125B driver request

This looks like an awesome device! Please tell me when it's available and what the price will be :)
by onnoossendrijver
Mon Jul 06, 2020 10:45 am
Forum: Announcements
Topic: v6.47 [stable] is released!
Replies: 348
Views: 172000

Re: v6.47 [stable] is released!

i had some wireless problems with this version, my battery powered wireless devices (phones, tablets, ipad) started to drain battery fast, i had to rollback to 6.46.6 to fix that. my setup is a hap ac2 as capsman manager/cap and a cap ac as a cap, here's more info https://forum.mikrotik.com/viewtop...
by onnoossendrijver
Wed Jun 24, 2020 5:48 pm
Forum: RouterBOARD hardware
Topic: CCR2004-1G-12S+2XS - Throughput Question
Replies: 13
Views: 7198

Re: CCR2004-1G-12S+2XS - Throughput Question

I don't know many routers that can route at the speed of all ports combined, so this CCR2004 is no exception.
In most situations this is not a problem.
by onnoossendrijver
Mon Jun 08, 2020 12:28 am
Forum: RouterOS beta
Topic: Feature Request - Wireguard Protocol
Replies: 167
Views: 84213

Re: Feature Request - Wireguard Protocol

@markwien Detailed benchmarks: https://an.undulating.space/post/181227-er_alternate_firmware_vpn_benchmarks/ TL;DR - on budget EdgeRouter Lite (dualcore, 500Mhz MIPS64): Screen Shot 2020-06-06 at 11.56.00 PM.png I don't know how they did those benchmarks, but my edgerouter lite is just as fast when...
by onnoossendrijver
Fri May 08, 2020 6:17 pm
Forum: RouterBOARD hardware
Topic: CCR2004-1G-12S+2XS with more RAM ?
Replies: 15
Views: 8243

Re: CCR2004-1G-12S+2XS with more RAM ?

Can someone measure its idle power usage? Preferably with one or two 10g ports connected (optical sfp+ or DAC).
Also, how loud is it under low load circumstances?
by onnoossendrijver
Thu Feb 28, 2019 2:25 pm
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 613
Views: 256084

Re: RouterOS v7.0 beta1 - when?

The only feature that makes me sometimes buy from the other guys is ipsec with VTI support. So please implement this :)
by onnoossendrijver
Tue Feb 19, 2019 5:40 pm
Forum: RouterBOARD hardware
Topic: How to update RB450G from 3.23 ?
Replies: 3
Views: 2209

Re: How to update RB450G from 3.23 ?

If I remember correctly.. You need to update the license somewhere in the upgrade path. I would do this: Upgrade to latest 3 release. Try to update the license. Upgrade to latest 4 release. Upgrade to latest 5 release. Upgrade to latest 6 release. Update bootloader. You can find the upgrade files in...
by onnoossendrijver
Thu Dec 20, 2018 12:38 pm
Forum: General
Topic: Protected RouterBOOT
Replies: 127
Views: 91637

Re: Protected RouterBOOT

The link to the universal package is not working: File does not exist.
Can you fix the link?
by onnoossendrijver
Tue Apr 24, 2018 12:15 am
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 203
Views: 258459

Re: Advisory: Vulnerability exploiting the Winbox port

Hello please tell me how I will update my 3000 mikrotiks again quickly and easily is already the second time that this happens ... If you know how to manage 3000 devices you must have heard of The Dude or expect scripting. At work we use expect scripting to automate a lot of networking related tasks.
by onnoossendrijver
Wed Mar 21, 2018 10:58 pm
Forum: Wireless Networking
Topic: how to use d-link wireless adapter with routerOS 5.20 on a Computer
Replies: 9
Views: 2439

Re: how to use d-link wireless adapter with routerOS 5.20 on a Computer

They will not work in any RouterOS version currently available. The chipset is unsupported.
by onnoossendrijver
Sun Feb 25, 2018 6:46 pm
Forum: Wireless Networking
Topic: Any chance to see NV3?
Replies: 24
Views: 6023

Re: Any chance to see NV3?

What about:
*) wireless - added initial support for "nstreme-plus";
In the latest beta changelog
by onnoossendrijver
Mon Dec 18, 2017 11:05 am
Forum: Announcements
Topic: v6.41rc [release candidate] is released! New bridge implementation!
Replies: 561
Views: 207657

Re: v6.41rc [release candidate] is released! New bridge implementation!

*) ipsec - improved hardware accelerated IPSec performance on 750Gr3;
Can you tell me more about this?
by onnoossendrijver
Wed Nov 08, 2017 12:58 pm
Forum: Wireless Networking
Topic: New home wire install...CAT6, OM3, OM4..Need help...
Replies: 1
Views: 1090

Re: New home wire install...CAT6, OM3, OM4..Need help...

I'd stay away from fiber to each room. It may be cheap, but it is difficult wo work with, can't do PoE and requires 'special' equipment. Good quality cat6 or better is fine for 10g speeds at home. I have only a two fibers at home: between router and switch (because DAC cable didn't work), and a fibe...
by onnoossendrijver
Fri Nov 03, 2017 11:02 am
Forum: Announcements
Topic: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!
Replies: 109
Views: 49505

Re: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!

Would the new S+RJ10 establish 10Gbps connection over 50 meters cat5e cable? My cables are in walls of my home and can not be upgraded.
According to the spec. sheet it probably will not work.
https://i.mt.lv/routerboard/files/sfp_s ... 151033.pdf
by onnoossendrijver
Thu Oct 26, 2017 6:09 pm
Forum: RouterBOARD hardware
Topic: Please add performance results for IPsec tunnel!
Replies: 32
Views: 8523

Re: Please add performance results for IPsec tunnel!

Maybe EoIP is responsible for that. Can you check without EoIP ?
I think it is still a good result for such device.
by onnoossendrijver
Wed Oct 25, 2017 12:35 pm
Forum: Wireless Networking
Topic: Problem after upgrate to 6.40.4
Replies: 2
Views: 1206

Re: Problem after upgrate to 6.40.4

Maybe because these are old devices, you should try the latest RouterOS 5 (5.26) also..

Also.. try configuring a fixed rate.
by onnoossendrijver
Tue Oct 24, 2017 4:26 pm
Forum: RouterBOARD hardware
Topic: Replace 1921 cisco with routerboard
Replies: 6
Views: 1982

Re: Replace 1921 cisco with routerboard

https://mikrotik.com/product/RB750Gr3 if at home
or
https://mikrotik.com/product/rb1100ahx4 if you have the budget or business use.. :)

CCR mentioned by nemanja82 is also good, but a little more expensive.
by onnoossendrijver
Tue Oct 24, 2017 2:23 pm
Forum: Wireless Networking
Topic: DISAPPOINTED 10Km link+netmetal+CCQ>94%+650Mbps@80Mhz < 180Mbps Throughtput
Replies: 13
Views: 3889

Re: DISAPPOINTED 10Km link+netmetal+CCQ>94%+650Mbps@80Mhz < 180Mbps Throughtput

Do not test with the RB devices. Their CPU is not suited for a decent speed test. You should use a normale PC/laptop and a tool like IPerf3.
by onnoossendrijver
Wed Sep 20, 2017 3:53 pm
Forum: RouterBOARD hardware
Topic: best integrated board for vehicle mount
Replies: 10
Views: 3340

Re: best integrated board for vehicle mount

how about LTE modem, I want to ensure I can set a static Ip on the mikrotik LTE interface, but I hear the Huawei sticks are only NAT modem, DMZ as an option, but have not tried this yet. Any suggestions on an LTE stick that works well as bridge and compatible with mikrotik hAP ac lite? Huawei stick...
by onnoossendrijver
Sun Sep 17, 2017 10:42 am
Forum: General
Topic: Backup mikrotik configurations
Replies: 10
Views: 4480

Re: Backup mikrotik configurations

I use rancid http://www.shrubbery.net/rancid/ for config backup. At a previous employer they use it to backup 10s of thousands devices with great success.
by onnoossendrijver
Fri Sep 01, 2017 9:48 pm
Forum: RouterBOARD hardware
Topic: RB M11G 802.3af/at
Replies: 7
Views: 2505

RB M11G 802.3af/at

Hi,

I cannot find a conclusive answer on the web...
Can I power the RB M11G with a regular 802.3af/at switch(and have gigabit connectivity)?
by onnoossendrijver
Wed Aug 02, 2017 1:32 pm
Forum: Beginner Basics
Topic: Backup All Mikrotik Configuration
Replies: 13
Views: 99342

Re: Backup All Mikrotik Configuration

If you need to backup all your network devices automatically, use RANCID.
http://www.shrubbery.net/rancid/

I use it at several customers to backup Cisco, Juniper, Mikrotik, Ubiquiti, etcetera.. devices.
by onnoossendrijver
Fri Jun 02, 2017 2:22 pm
Forum: General
Topic: only half duplex in 10Mbps Ethernet
Replies: 5
Views: 3680

Re: only half duplex in 10Mbps Ethernet

Set all interfaces to autonegotiation and try to change the cable.
by onnoossendrijver
Wed May 17, 2017 2:44 pm
Forum: General
Topic: Feature Request: IPSEC Improvements
Replies: 148
Views: 45265

Re: Feature Request: IPSEC Improvements

VTI +2 (me and a friend of mine)
IPSec VTI +2 here also :)
by onnoossendrijver
Wed Apr 12, 2017 2:47 pm
Forum: RouterBOARD hardware
Topic: MUM Europe 2017: new hardware incoming!
Replies: 86
Views: 30459

Re: MUM Europe 2017: new hardware incoming!

Can someone tell me what CPU is used in the CRS328-24P-4S+RM?
I hope for at least a Mediatek CPU like in the RB750Gr3...
by onnoossendrijver
Tue Apr 04, 2017 5:56 pm
Forum: General
Topic: wap-ac PoE issue with Dlink switches , help needed please ! [solved...]
Replies: 21
Views: 7505

Re: wap-ac PoE issue with Dlink switches , help needed please !

I have 2 WAP AC's functioning correctly on both a Netgear GS110TP(v1) and a Juniper EX2300C-12P (my current switch).
Both are gigabit switches.
by onnoossendrijver
Tue Apr 04, 2017 5:03 pm
Forum: Beginner Basics
Topic: RB-450G with Fiber Optic 200/50M ?
Replies: 2
Views: 1258

Re: RB-450G with Fiber Optic 200/50M ?

Have you configured Fasttrack?
by onnoossendrijver
Fri Mar 31, 2017 11:20 am
Forum: RouterBOARD hardware
Topic: MUM Europe 2017: new hardware incoming!
Replies: 86
Views: 30459

Re: MUM Europe 2017: new hardware incoming!

Great lineup! I'd like to hear about release dates and prices.
by onnoossendrijver
Fri Mar 10, 2017 6:26 pm
Forum: Announcements
Topic: v6.39rc [release candidate] is released
Replies: 390
Views: 138541

Re: v6.39rc [release candidate] is released

Version 6.39rc51 has been released.
!) tile - fixed IPsec hardware acceleration out-of-order packet problem, significantly improved performance;
Can you tell more about this?
Does this also improve IPsec on other multicore platforms like RB750GR3?
by onnoossendrijver
Wed Mar 01, 2017 6:00 pm
Forum: General
Topic: Are units in ROS base 2 or 10?
Replies: 3
Views: 1385

Re: Are units in ROS base 2 or 10?

Telecommunications have used SI units/powers for as long as I remember :)
by onnoossendrijver
Wed Feb 15, 2017 3:55 pm
Forum: RouterBOARD hardware
Topic: Question about DAT cable maximum length.
Replies: 5
Views: 1922

Re: Question about DAT cable maximum length.

I believe 10g optics and a piece of fiber are cheaper than a 10 meter (active) DAC cable...
by onnoossendrijver
Thu Feb 02, 2017 11:44 am
Forum: RouterBOARD hardware
Topic: What is exactly direct attach cable?... Does it contain SFP+ interface?
Replies: 13
Views: 5231

Re: What is exactly direct attach cable?... Does it contain SFP+ interface?

DAC cables are usually the best option for the very short distances, unless electrical isolation matters.
It is much simpler (less electronics). They use less energy than fiber and much less than UTP.
by onnoossendrijver
Wed Jan 04, 2017 12:25 pm
Forum: Announcements
Topic: v6.38 [current] is released!
Replies: 168
Views: 63660

Re: v6.38 [current] is released!

Really would appreciate you or others to confirm if there is a serious problem with this upgrade on RB750Gr3.

Thanks in advance.
I experienced no problems when upgrading my RB750Gr3 from version 6.37.3 to version 6.38
by onnoossendrijver
Wed Dec 21, 2016 3:06 pm
Forum: RouterBOARD hardware
Topic: Lower ISP speeds after swapping 450G to CRS125-24G
Replies: 10
Views: 8651

Re: Lower ISP speeds after swapping 450G to CRS125-24G

I believe there is something else wrong in your setup. The 2011 should not drop packets that massively.
Do you see the TX Drop counter increment on the Interface TX Stats Tab?
by onnoossendrijver
Mon Nov 28, 2016 10:30 am
Forum: RouterBOARD hardware
Topic: New CPU - new product RB750Gr3 - RB750G family - now mmips
Replies: 180
Views: 98030

Re: New CPU - new product RB750Gr3 - RB750G family - now mmips

Maybe if that BGP session does not import a full routing table and you don't use heavy firewall and qos rules.
by onnoossendrijver
Tue Nov 22, 2016 4:39 pm
Forum: RouterBOARD hardware
Topic: Only 100mbit on 1000mbit ethernet ports
Replies: 15
Views: 24671

Re: Only 100mbit on 1000mbit ethernet ports

Make sure you only use 100% copper cables, not the cr.ppy ;) CCA types.
by onnoossendrijver
Tue Nov 22, 2016 11:31 am
Forum: RouterBOARD hardware
Topic: New CCR1009-7G-1C-1S+PC ?
Replies: 5
Views: 4470

Re: New CCR1009-7G-1C-1S+PC ?

It was announced at Dutch MUM:
7x Gigabit UTP ports
1x combo gigabit SFP/UTP port
1x SFP+ 10G port
NO switchchip, only direct ports
by onnoossendrijver
Wed Oct 12, 2016 2:40 pm
Forum: Beginner Basics
Topic: RB450G max wan speed?
Replies: 10
Views: 5008

Re: RB450G max wan speed?

First, you should enable Fasttrack.
But even then I doubt if the RB450G can handle 300 mbit/s.
The CPU on this router is not very fast compared to modern routers.
by onnoossendrijver
Wed Oct 05, 2016 10:44 am
Forum: RouterBOARD hardware
Topic: New CPU - new product RB750Gr3 - RB750G family - now mmips
Replies: 180
Views: 98030

Re: New CPU - new product RB750Gr3 - RB750G family - now mmips

What is the CPU in this device? Does it support hardware encryption for ipsec?
by onnoossendrijver
Mon Oct 03, 2016 1:50 pm
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 59430

Re: wAP AC (General questions and experience)

So, is Wap AC 802.3af compliant ??
According to the specs it is :)
by onnoossendrijver
Sun Oct 02, 2016 8:08 pm
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 59430

Re: wAP AC (General questions and experience)

af Power problem wit netgear GS110TP. Switch will deliver no power to device. Regardless of power mode. Port was running with unifi AP pro without an issue ... I just borrowed a WAP AC from Quindor (thanks!). It's working fine on my Netgear GS110TP (v1) switch running firmware 5.4.2.25. Power is de...
by onnoossendrijver
Wed Sep 28, 2016 5:11 pm
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 67395

Re: v6.37 [current] is released!

Is TPC support on the RouterOS roadmap?
by onnoossendrijver
Mon Sep 05, 2016 1:19 pm
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 59430

Re: wAP AC (General questions and experience)

The GS110TP is just an ordinary 802.3af switch.
It is supposed to work.
by onnoossendrijver
Mon Sep 05, 2016 11:39 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 59430

Re: wAP AC (General questions and experience)

Damn, I was about to order 3 pcs. of WAP AC to connect to my Netgear GS110TP :(

Do you have version1 or version 2 of this switch? Are you running the latest software version?
by onnoossendrijver
Tue Jul 26, 2016 1:39 pm
Forum: General
Topic: Unknown Upload!
Replies: 8
Views: 2835

Re: Unknown Upload!

This looks like a DNS amplification attack.
Drop port 53 just like InoX above me suggests.
by onnoossendrijver
Fri Feb 26, 2016 1:51 pm
Forum: RouterBOARD hardware
Topic: Supported/tested SFP for single fiber networks
Replies: 2
Views: 1738

Re: Supported/tested SFP for single fiber networks

Mikrotik sells these modules by themselves: http://routerboard.com/S-3553LC20D. They should work I think :wink:
I will soon try a Draytek module in a Miktrotik device.
by onnoossendrijver
Fri Feb 26, 2016 1:48 pm
Forum: General
Topic: Mikrotik does not recongnise Alfa wireless card AWUS036H
Replies: 5
Views: 2386

Re: Mikrotik does not recongnise Alfa wireless card AWUS036H

I believe Mikrotik only supports Qualcomm / Atheros wifi chipsets, no Realtek.
by onnoossendrijver
Thu Nov 19, 2015 2:46 pm
Forum: General
Topic: 6.33.1 version is released!
Replies: 48
Views: 19392

Re: 6.33.1 version is released!

If you have had imported configuration from old export, then you will have this: /tool romon port add If you will run "/tool romon port" print then now you will have two entries for port=all. You can delete one of them. Old export was incorrect and now if you import it, then it seems like...
by onnoossendrijver
Thu Nov 19, 2015 12:32 pm
Forum: General
Topic: 6.33.1 version is released!
Replies: 48
Views: 19392

Re: 6.33.1 version is released!

Well, this is not a config that you can copy/paste in a router. The CLI expects some input after 'add'.
by onnoossendrijver
Thu Nov 19, 2015 11:52 am
Forum: General
Topic: 6.33.1 version is released!
Replies: 48
Views: 19392

Re: 6.33.1 version is released!

I think I found a little bug. export shows this: [...] /tool romon port add On the previous 6.33 version it showed: [...] /tool romon port set [ find default=yes ] cost=100 forbid=no interface=all secrets="" add cost=100 disabled=yes forbid=no interface=all secrets="" Something i...
by onnoossendrijver
Wed Nov 11, 2015 1:33 pm
Forum: Wireless Networking
Topic: Setting up AC Link
Replies: 14
Views: 5437

Re: Setting up AC Link

I have 1 AC link with my neighbor:
2x NetMetal 5
cheap dual-polar antenna on both sides.
currently running RouterOS 6.33 with wireless-cm2 package and NV2

Speeds: 300-320 mbit/s for a single TCP session (iperf)
-55dB signal
by onnoossendrijver
Thu Nov 05, 2015 10:39 pm
Forum: General
Topic: When will there be a new stable version of RouterOs?
Replies: 5
Views: 2157

Re: When will there be a new stable version of RouterOs?

What's wrong with the current stable version? Since Mikrotik decided to release a stable, current, beta and legacy version things have been really good.
by onnoossendrijver
Wed Nov 04, 2015 9:51 am
Forum: General
Topic: Fasttrack on CCR 1009-8G-1S-1S+
Replies: 9
Views: 3375

Re: Fasttrack on CCR 1009-8G-1S-1S+

Fasttrack is only helping for connections that need connection tracking. NATed connections for example. Regular routing does not benefit from Fasttrack. What does help is Fastpath. You don't need to enable anything to enable fastpath. It just works when the hardware and configuration supports it. Al...
by onnoossendrijver
Mon Nov 02, 2015 2:21 pm
Forum: General
Topic: submask 22
Replies: 4
Views: 1584

Re: submask 22

Is the subnetmask configured correctly on both the router interface and the pc's interface?
by onnoossendrijver
Wed Oct 28, 2015 2:24 pm
Forum: Beginner Basics
Topic: RB 1200 max user
Replies: 4
Views: 1565

Re: RB 1200 max user

Also monitor the amount of sessions you are using.
by onnoossendrijver
Wed Oct 28, 2015 2:22 pm
Forum: RouterBOARD hardware
Topic: CRS226 throughput problem - only 28Mbps
Replies: 8
Views: 2403

Re: CRS226 throughput problem - only 28Mbps

A CRS can do much more than 28 Mbps. Try enabling fasttrack (search for the fasttrack topic on this forum).
by onnoossendrijver
Wed Oct 28, 2015 2:17 pm
Forum: RouterBOARD hardware
Topic: hEX nand size ONLY 16MB !!!!
Replies: 61
Views: 28548

Re: hEX nand size ONLY 16MB !!!!

Flash is not very good for writing large volumes of data. Logging to flash can wear the flash really fast.
by onnoossendrijver
Wed Oct 28, 2015 11:36 am
Forum: Beginner Basics
Topic: RB 1200 max user
Replies: 4
Views: 1565

Re: RB 1200 max user

There is no such thing as 'max users' per router. There is, however, something like maximum number of simultaneous sessions per router. If you download a file, that counts as a session, opening a webpage is like 50 sessions (a download for every image, html page, stylesheet, etcetera..) Every router...
by onnoossendrijver
Wed Oct 28, 2015 9:28 am
Forum: General
Topic: CCR1016 CPU load not balanced ok
Replies: 6
Views: 1623

Re: CCR1016 CPU load not balanced ok

If CPU load is less than 10-15% all is ok, if any goes over that there is droped data.
I don't think the CPU load is the problem here. You should be able to hit near 100% CPU load on any core without any dropped packets.
by onnoossendrijver
Tue Oct 27, 2015 5:52 pm
Forum: General
Topic: TCP 80 forwarding for webserver (how relevant are TCP flags)
Replies: 9
Views: 2433

Re: TCP 80 forwarding for webserver (how relevant are TCP flags)

How relevant is it also to set the TCP flags ACK, SYN, PSH, FIN in firewall rules? How must be the TCP flags set for the two firewall rules that the routing is secure? In this case it is not relevant. I saw that TCP connections to the webserver are very long established - can I set a lower timeout?...
by onnoossendrijver
Tue Oct 27, 2015 1:04 pm
Forum: General
Topic: CCR1016 CPU load not balanced ok
Replies: 6
Views: 1623

Re: CCR1016 CPU load not balanced ok

Why is that a problem? Some processes can not run on multiple cores.
If you try to add 2 and 4, it does not matter is you are doing the calculation only in your own head or if you have 15 colleagues to help with the calculation.
by onnoossendrijver
Tue Oct 13, 2015 11:19 am
Forum: RouterBOARD hardware
Topic: RouterBOARD 912.
Replies: 4
Views: 1646

Re: RouterBOARD 912.

If there are cables connected to CH0 and CH1, why would you need to cover it?
If there ar NO cables connected, I don't think it really matters if they are covered. Just make sure that the radio is disabled and clean the connectors when you are going to use them again.
by onnoossendrijver
Tue Oct 13, 2015 10:10 am
Forum: General
Topic: junos to mikrotik trunk does not function
Replies: 5
Views: 1901

Re: junos to mikrotik trunk does not function

Can you put your juniper config in a block. Right now it is missing large parts of configuration.
by onnoossendrijver
Thu Oct 08, 2015 10:06 am
Forum: Forwarding Protocols
Topic: BGIP Routing in CCR1009, ISP given WAN, my /24 needs to work
Replies: 11
Views: 2292

Re: BGIP Routing in CCR1009, ISP given WAN, my /24 needs to work

You say that you see your subnet on the Advertisements tab? That's good! You can do a traceroute from your PC to an internetaddress (8.8.8.8 from google for instance) and see where it ends. You can also do a traceroute from a different internet connection to your own subnet and see where that ends. ...
by onnoossendrijver
Thu Oct 08, 2015 9:51 am
Forum: Forwarding Protocols
Topic: BGIP Routing in CCR1009, ISP given WAN, my /24 needs to work
Replies: 11
Views: 2292

Re: BGIP Routing in CCR1009, ISP given WAN, my /24 needs to work

NAT translates your locally used IP addresses to your WAN IP. That's not what you want, so disable NAT. Because you are running BGP you need to make sure that you announce the addresses that you want to be reachable from the internet to your ISP. One way to do that is to enable "Redistribute co...
by onnoossendrijver
Thu Sep 03, 2015 3:09 pm
Forum: General
Topic: v6.33rc release candidate (final testing)
Replies: 202
Views: 64998

Re: v6.33rc1 release candidate

*) wlan - improve single connection TCP performance for ac chipset with cm2 package;
Sounds nice!

Will 6.32 return in a fixed form or do we have to wait for 6.33 to become stable?
by onnoossendrijver
Fri Jul 17, 2015 3:08 pm
Forum: Beginner Basics
Topic: Abnormally high traffic on My Wan Port
Replies: 7
Views: 7421

Re: Abnormally high traffic on My Wan Port

Disable access to your DNS service from the WAN connection.
This type of attack is called: DNS amplification attack.
by onnoossendrijver
Fri Jul 17, 2015 11:38 am
Forum: Announcements
Topic: v6.30.x bugfix release
Replies: 136
Views: 52035

Re: v6.30.1 bugfix release

You said you would present 6.31.1 as the next bugfix upgrade to someone on 6.30.3, and I say this is wrong because it does not guarantee that all the bugs introduced in 6.31.0 are fixed. Going up the minor version is a feature upgrade, even to a bugfix release. They will not endlessly provide bugfi...
by onnoossendrijver
Mon Jun 15, 2015 8:31 pm
Forum: General
Topic: Auto terminate TCP connections after client disconnects.
Replies: 2
Views: 1205

Re: Auto terminate TCP connections after client disconnects.

You can change that under IP>Firewall>Connections
by onnoossendrijver
Sat Jun 13, 2015 11:17 pm
Forum: General
Topic: 921UAGS-5SHPacT WLAN 'Card' and License
Replies: 2
Views: 1663

Re: 921UAGS-5SHPacT WLAN 'Card' and License

Enable the wireless-fp driver and reboot. The you should have your wireless interface back.
by onnoossendrijver
Thu Jun 11, 2015 1:00 pm
Forum: Announcements
Topic: FastTrack - New feature in 6.29
Replies: 237
Views: 203978

Re: FastTrack - New feature in 6.29

I really like the latest beta/rc release! Better speeds than before. Don't know if it is because of the AC improvements or the FastPath/VLAN support..
by onnoossendrijver
Wed Jun 10, 2015 2:40 pm
Forum: General
Topic: Wan balance + merge
Replies: 2
Views: 1173

Re: Wan balance + merge

That is not possible, unfortunately.
by onnoossendrijver
Tue Jun 02, 2015 3:31 pm
Forum: General
Topic: Netherlands: 1M+ >100Mbps subscribers - Spain: 1.8M FTTH
Replies: 7
Views: 1926

Re: Netherlands: 1M+ >100Mbps subscribers - Spain: 1.8M FTTH

interesting info. on cable ( i supose is docsis ) how many channels are they using for download on a node supporting 100+mbps speed clients?? upload speed?? Download: Currently most systems support 8 channels, but most ISP's are in the process of upgrading to 16 channels. 500M Down / 40M Up account...
by onnoossendrijver
Fri May 29, 2015 1:13 pm
Forum: Forwarding Protocols
Topic: OSPF not work between 2 mikrotiks.
Replies: 5
Views: 2932

Re: OSPF not work between 2 mikrotiks.

Also check MTU on all participating interfaces and check if you really are able to send maximum sized packets.
by onnoossendrijver
Thu May 28, 2015 7:32 pm
Forum: Wireless Networking
Topic: NetMetal 5 AC ( 921UAGS-5SHPacT ) Triple Chain after upgrade to 6.29 Issue
Replies: 9
Views: 2469

Re: NetMetal 5 AC ( 921UAGS-5SHPacT ) Triple Chain after upgrade to 6.29 Issue

The question is: what tool are you using and on which device is it running?
by onnoossendrijver
Wed May 27, 2015 10:25 am
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 125490

Re: Feature request: OpenVPN compression LZO and UDP

I agree OpenVPN is very easy and straightforward to install. PPTP is about as easy but requires GRE to pass through and is not as secure. IPsec is also okay, but requires a bit more configuration and doesn't like NAT very much. Still, I think this kind of functionality does not belong on a router. I...
by onnoossendrijver
Mon May 25, 2015 6:57 pm
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 125490

Re: Feature request: OpenVPN compression LZO and UDP

I don't understand why you would desperately need OpenVPN/UDP support. I can't think of any professional router manufacturer that has OpenVPN support.
Besides that there are many good (better?) alternatives to OpenVPN.
by onnoossendrijver
Thu Mar 05, 2015 12:45 pm
Forum: RouterBOARD hardware
Topic: Celeron j1900 routing performance
Replies: 3
Views: 3686

Re: Celeron j1900 routing performance

My guess would be: better than anything non-CCR, and probably better than most CCR's depending on what the router needs to do.
by onnoossendrijver
Thu Feb 19, 2015 4:06 pm
Forum: RouterBOARD hardware
Topic: CRS226-24G-2S+ routing speed
Replies: 2
Views: 1546

Re: CRS226-24G-2S+ routing speed

Unfortunately routing is completely done in software/CPU. Performance will be nowhere near 10G, even 1G is impossible.
Replace one of the CRS with a CCR for much faster routing.
by onnoossendrijver
Tue Nov 25, 2014 8:40 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 - Release date?
Replies: 193
Views: 66906

Re: RB850Gx2 - Release date?

5. ~150-200Mbps
That would be great. It's more than most routers do with hardware encryption enabled.
by onnoossendrijver
Tue Nov 11, 2014 11:02 am
Forum: RouterBOARD hardware
Topic: RB2011 serial port voltages
Replies: 5
Views: 2171

Re: RB2011 serial port voltages

I'm pretty sure they are official RS232 level.
If you see garbage then your serial speed is probably incorrect.
by onnoossendrijver
Sun Nov 02, 2014 7:10 pm
Forum: Beginner Basics
Topic: Untag and tag again the same vlan
Replies: 3
Views: 1461

Re: Untag and tag again the same vlan

You can create a second tunnel for only vlan546 traffic.
by onnoossendrijver
Sun Nov 02, 2014 3:52 pm
Forum: RouterBOARD hardware
Topic: Where can I download RouterBoot for RB850G?
Replies: 2
Views: 1762

Re: Where can I download RouterBoot for RB850G?

6.0rc13? That's soooooo old.
In general you should not downgrade to a lower version than the version the router was shipped with.
I'm pretty sure that 6.0rc13 does not support the RB850G.
Maybe netinstall can fix this.
by onnoossendrijver
Wed Oct 29, 2014 8:29 pm
Forum: General
Topic: yosemite
Replies: 4
Views: 3028

Re: yosemite

I can confirm that :)
by onnoossendrijver
Thu Oct 23, 2014 10:15 am
Forum: General
Topic: v6.20 released!
Replies: 146
Views: 74995

Re: v6.20 released!

I have no problems with OSPF between 6.19 and 6.20 machines. Can you check all MTU settings on both devices? OSPF is very picky about wrong MTU sestings.
by onnoossendrijver
Fri Oct 03, 2014 8:37 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 - Release date?
Replies: 193
Views: 66906

Re: RB850Gx2 - Release date?

It is available since a few days.
by onnoossendrijver
Fri Oct 03, 2014 4:40 pm
Forum: General
Topic: 32Mb RAM devices and ROS 6
Replies: 24
Views: 7852

Re: 32Mb RAM devices and ROS 6

Well, 10MB is not 0MB free :)

It can work fine, but I would monitor RAM usage on the device using SNMMP/Cacti (just like with any other device).
by onnoossendrijver
Tue Sep 23, 2014 4:57 pm
Forum: General
Topic: Viber not working??
Replies: 3
Views: 2991

Re: Viber not working??

I don't know Viber, but Triple NAT is certainly not helping.
Maybe you need port-forwarding on all these routers for Viber to work.
by onnoossendrijver
Mon Sep 22, 2014 1:37 pm
Forum: General
Topic: v6.19 released
Replies: 256
Views: 117287

Re: v6.19 released

Tested 6.19 on SXT5G-HnD Link... but Throughput is very bad. Link is Only-N, 20/40 above, nv2 signal -40dB to -45dB on both chains. no wireles-fs enabled 6.19 winbox freeze ... try BTest and Throughput is 1-10mbps (WTF?) in 1TCP connection Downgrade to 6.18 Try Btest and Throughput si 70-80Mbps in ...
by onnoossendrijver
Mon Sep 15, 2014 10:44 am
Forum: RouterBOARD hardware
Topic: CRS125-24G & CRS226-24G L2 performance
Replies: 7
Views: 3019

Re: CRS125-24G & CRS226-24G L2 performance

You can safely assume that traffic through the switchchip is linerate.
by onnoossendrijver
Tue Aug 26, 2014 2:03 pm
Forum: Wireless Networking
Topic: SXT AC withouth line of site
Replies: 9
Views: 3335

Re: SXT AC withouth line of site

I recently build a connection like this through 3 buildings. It works very well. Speed and reliability are fine. I used normal SXT.
This depends very much on the buildings and on the used/allowed TX-Power.
Of-course... When there is no line-of-sight it is always a bit of a gamble.
by onnoossendrijver
Tue Aug 26, 2014 10:42 am
Forum: Wireless Networking
Topic: SXT AC withouth line of site
Replies: 9
Views: 3335

Re: SXT AC withouth line of site

I recently build a connection like this through 3 buildings. It works very well. Speed and reliability are fine. I used normal SXT.
by onnoossendrijver
Fri Aug 15, 2014 7:30 pm
Forum: RouterBOARD hardware
Topic: Millions of connections - CCR1036 or x86?
Replies: 5
Views: 2855

Re: Millions of connections - CCR1036 or x86?

The amount of sessions only matters if you do something that needs connection tracking.
If you do simple routing this is not an issue, but if you are doing NAT, this can be an issue.
by onnoossendrijver
Fri Aug 15, 2014 7:29 pm
Forum: General
Topic: Maximum number of NAT users / sessions
Replies: 45
Views: 22831

Re: Maximum number of NAT users / sessions

65500 is about the maximum number of session per single NAT IP (in general your public IP). If you need to do more sessions, make shure you have more IP's to do NAT on.
by onnoossendrijver
Sat Aug 09, 2014 1:33 pm
Forum: RouterBOARD hardware
Topic: 160MHz channel width support?
Replies: 2
Views: 2379

Re: 160MHz channel width support?

The current chipset doesn't support this. But there is a new Qualcomm chipset on its way that does support 160MHz channels.
by onnoossendrijver
Wed Jul 30, 2014 12:36 pm
Forum: General
Topic: Weird LACP Issue
Replies: 7
Views: 5452

Re: Weird LACP Issue

this is one problem with proper 802.3ad from what i mostly see - its a per-flow kind of load balance means at best you might get a 70/30 balance, and a single stream always only 1 link worth. Mikrotiks own balance-rr gives proper bonding in my eyes, yet to get Mikrotik + Cisco doing good proper loa...
by onnoossendrijver
Tue Jul 29, 2014 11:11 pm
Forum: General
Topic: Weird LACP Issue
Replies: 7
Views: 5452

Re: Weird LACP Issue

Can you tell me the layer 3 configuration of this part of the network?

If the Mikrotik only receives on 1 interface that's because the Cisco sends only on 1 interface :)
The Cisco is the problem here.

What is the hash policy on the Cisco?
by onnoossendrijver
Mon Jul 28, 2014 9:02 am
Forum: General
Topic: Downgrade from 6.15 to 5.12 on 911-5Hn
Replies: 7
Views: 2015

Re: Downgrade from 6.15 to 5.12 on 911-5Hn

I don't think they even support version 5.x.
In general you should not downgrade to a version lower than it was shipped with. This is also true for Cisco and other manufacturers.
by onnoossendrijver
Sun Jul 27, 2014 7:54 pm
Forum: General
Topic: Newsletter 60: 802.11ac
Replies: 104
Views: 65460

Re: Newsletter 60: 802.11ac

Question, why the heck are you guys making the R11E-AC card a Mini-PCIe, instead of all the standard PCI cards? Does it support faster speeds on PCI or something?
(mini)PCI-E is the industry standard these days. (mini)-PCI es getting extinct. Current wifi chips do NOT support PCI, only PCI-E.
by onnoossendrijver
Tue Jul 22, 2014 8:18 pm
Forum: Wireless Networking
Topic: Is wireless-fp useful for something besides CAPsMAN?
Replies: 15
Views: 6416

Re: Is wireless-fp useful for something besides CAPsMAN?

On the contrary... I've seen devices not working with wireless that are now working correctly with wireless-fp :)
by onnoossendrijver
Tue Jul 22, 2014 9:34 am
Forum: RouterBOARD hardware
Topic: RB2011UiAS-2HnD-IN, is Gigabit routing possible?
Replies: 33
Views: 28153

Re: RB2011UiAS-2HnD-IN, is Gigabit routing possible?

The link is full-duplex, but it your WAN and LAN are on the same switchchip the traffic flows from switchchip to CPU twice.
That way you can reach only 500 mbit/s full-duplex or 1gbit/s half-duplex maximum.
by onnoossendrijver
Sun Jul 20, 2014 3:54 pm
Forum: General
Topic: Newsletter 60: 802.11ac
Replies: 104
Views: 65460

Re: Newsletter 60: 802.11ac

And yes, as I said it is possible to use 2 batteries serial-connected to deliver 24v, but that does NOT mean that you get double the power in cause of power failure. If serial connected to 24v you get higher voltage, but current(Ahours) remain THE SAME! Example: -If you have 2 x 100Ah batteries 12v...
by onnoossendrijver
Sat Jul 19, 2014 7:51 pm
Forum: General
Topic: Doubts about pppoe MTU
Replies: 5
Views: 1787

Re: Doubts about pppoe MTU

Normally PPPoE supports maximum MTU of 1492. I you need more then BOTH server and client need to support RFC4638.
by onnoossendrijver
Sat Jul 19, 2014 1:31 pm
Forum: General
Topic: Newsletter 60: 802.11ac
Replies: 104
Views: 65460

Re: Newsletter 60: 802.11ac

It's sad that 12v is not supported anymore. But I like the fact that 48v is supported now.
by onnoossendrijver
Sat Jul 19, 2014 1:30 pm
Forum: General
Topic: v6.17 SNMP - Interface Stats
Replies: 56
Views: 24566

Re: v6.17 SNMP - Interface Stats

I had the same problem with 6.16. I lost all 64bit (HC) counters. When upgrading to 6.17 this was fixed. It was probably the reboot itself that fixed this.
by onnoossendrijver
Tue Jul 15, 2014 12:53 am
Forum: Wireless Networking
Topic: No luck with Compex WLE600v5-23
Replies: 4
Views: 2113

Re: No luck with Compex WLE600v5-23

It's from the datasheet on the compex site.
by onnoossendrijver
Mon Jul 14, 2014 1:46 pm
Forum: Wireless Networking
Topic: No luck with Compex WLE600v5-23
Replies: 4
Views: 2113

Re: No luck with Compex WLE600v5-23

Did you verify this is a v2 card? (QCA9882-AR4x)
Did you connect the 5v pin to a 5v powersource? As I read on the site this is mandatory.
by onnoossendrijver
Thu Jul 10, 2014 10:40 pm
Forum: Wireless Networking
Topic: NV2 link with a very different speed in TCP and UDP
Replies: 22
Views: 5354

Re: NV2 link with a very different speed in TCP and UDP

The CPU on most routerboards isn't fast enough for TCP testing. Use a normal PC behind the device at test.
by onnoossendrijver
Thu Jul 10, 2014 9:56 am
Forum: RouterBOARD hardware
Topic: new AC products
Replies: 4
Views: 4412

Re: new AC products

Well, the devices from the other big manufacturer in the same segment had/has its fair share of problems with their AC products.
by onnoossendrijver
Wed Jul 09, 2014 1:34 pm
Forum: General
Topic: v6.16 RC test release now includes 802.11ac support
Replies: 52
Views: 27401

Re: v6.16 RC test release now includes 802.11ac support

Do you support only the v2 cards (-AR4A ?) and not the v1 cards (-AR1A?), like many other AC implementations?
by onnoossendrijver
Thu Jul 03, 2014 8:31 pm
Forum: RouterBOARD hardware
Topic: Case for RB953GS-5HnT
Replies: 23
Views: 13303

Re: Case for RB953GS-5HnT

Here are some pics...
The pigtails I use in these pictures are a little 'large'. Normal sized cable will fit fine.
by onnoossendrijver
Thu Jul 03, 2014 5:43 pm
Forum: Beginner Basics
Topic: Cant ping past Mikrotik rb1100hx2
Replies: 18
Views: 4035

Re: Cant ping past Mikrotik rb1100hx2

Quick question I need my 10.0.0.* devices to be able to report to the 192.168.1.3 address's I can ping and ssh into the 10.0.0.* devices but they have no route back. I have tried some nat addresses and have been able to port 10.0.0.0 address to 192.168.1.0 address's but that does not solve the prob...
by onnoossendrijver
Thu Jul 03, 2014 10:50 am
Forum: RouterBOARD hardware
Topic: Case for RB953GS-5HnT
Replies: 23
Views: 13303

Re: Case for RB953GS-5HnT

Just got my RB953GS-5HnT. CA/433 case fits fine :) I've looked at that previously but the cut outs on the rear panel of the CA433 case doesn't match the RB953GS-5HnT (antenna & SFP cages). Did you modify the case ? I did not modify the case. The cuts don't match but there is enough space for pi...
by onnoossendrijver
Wed Jul 02, 2014 7:12 pm
Forum: RouterBOARD hardware
Topic: Case for RB953GS-5HnT
Replies: 23
Views: 13303

Re: Case for RB953GS-5HnT

Just got my RB953GS-5HnT. CA/433 case fits fine :)
by onnoossendrijver
Mon Jun 30, 2014 11:06 am
Forum: General
Topic: LACP Question...
Replies: 15
Views: 14451

Re: LACP Question...

Regarding load-balancing with LACP... Mikrotik switches behave exactly the same as other switches with LACP functionality. You need more than one session to use the extra bandwidth. Windows 2012/8 with SMB3 supports the 'multichannel' feature to achieve higher bandwith with a single action. 'Under t...
by onnoossendrijver
Wed Jun 25, 2014 2:49 pm
Forum: Wireless Networking
Topic: is the trunk mode allowed by the Wireless bridge ?
Replies: 2
Views: 1444

Re: is the trunk mode allowed by the Wireless bridge ?

Look in the Wiki for WDS.

Maybe a more elegant solution: make wifi routed and use VPLS on top of it to transport VLANs.
by onnoossendrijver
Wed Jun 25, 2014 1:57 pm
Forum: General
Topic: BUG was found. IPsec works not stable
Replies: 12
Views: 3393

Re: BUG was found. IPsec works not stable

Well, this is by 'design' and not a bug. You should explicitly take precautions to keep the tunnel up. On Juniper and Cisco you need to do the same thing.
An IPSEC tunnel only stays up when there is traffic.
by onnoossendrijver
Wed Jun 25, 2014 12:18 pm
Forum: General
Topic: v6.15 released
Replies: 302
Views: 133359

Re: v6.15 released

:P
We have absolutely no problems with 6.15 on our 'neighbor-network' with 8 Mikrotik's.
Running OSPF, OSPFv3, DHCP, VPLS/LDP, Queues, VLANs, NAT, DHCP, NV2, 80211 wireless, etcetera..
by onnoossendrijver
Wed Jun 25, 2014 9:56 am
Forum: General
Topic: When will we have 802.11ac Support?
Replies: 33
Views: 14134

Re: When will we have 802.11ac Support?

You did enable the wireless-fp package?
by onnoossendrijver
Tue Jun 24, 2014 11:26 am
Forum: RouterBOARD hardware
Topic: Case for RB953GS-5HnT
Replies: 23
Views: 13303

Re: Case for RB953GS-5HnT

Luckily I have some SMA to N cables lying around :)
by onnoossendrijver
Tue Jun 24, 2014 10:53 am
Forum: RouterBOARD hardware
Topic: Case for RB953GS-5HnT
Replies: 23
Views: 13303

Case for RB953GS-5HnT

I can't find any casings for the RB953GS-5HnT.
It looks like the CA/433 case fits if I modify the rear-end of the case. Am I right?
by onnoossendrijver
Mon Jun 16, 2014 7:14 pm
Forum: General
Topic: How to raise "upgradeable to"?
Replies: 26
Views: 7651

Re: How to raise "upgradeable to"?

What kind of board is it and what software version is it running?
I bought my RB600A years ago with version 3.x, which was upgradeable to version 4 at the time. Now I'm running version 6, without ever buying a license.
by onnoossendrijver
Sat Jun 14, 2014 12:24 pm
Forum: Beginner Basics
Topic: slow ping
Replies: 10
Views: 3213

Re: slow ping

First rule of network testing: NEVER use the device under test as endpoint for the test: NO pings to/from a router, only pings THROUGH the router. Same for bandwidth test: ONLY test THROUGH the router. The ISP I work for has expensive testers from Spirent behind every big Juniper MX or T router, but...
by onnoossendrijver
Mon Jun 09, 2014 11:04 pm
Forum: General
Topic: CCR1016 fw6.14 -reverts to old config on reboot
Replies: 2
Views: 1306

Re: CCR1016 fw6.14 -reverts to old config on reboot

I don't know why you have this problem, but if you use 'rancid' you can get a config backup every X hours and see the differences you made over a period of time.
by onnoossendrijver
Mon Jun 09, 2014 10:12 pm
Forum: Forwarding Protocols
Topic: IP address on ospf link
Replies: 5
Views: 2160

Re: IP address on ospf link

I think I understand now..
Can't you just let the wireless 'bridges' also route? Enable OSPF on them, that way OSPF will allways make sure there is a working path (if possible).
by onnoossendrijver
Mon Jun 09, 2014 8:56 pm
Forum: Forwarding Protocols
Topic: IP address on ospf link
Replies: 5
Views: 2160

Re: IP address on ospf link

Use the IP addresses on the loopback/bridge interfaces to access the router. This IP address will not go down if the physical interface goes down.

Maybe I don't understand your question..
by onnoossendrijver
Mon Jun 09, 2014 8:10 pm
Forum: Forwarding Protocols
Topic: IP address on ospf link
Replies: 5
Views: 2160

Re: IP address on ospf link

Not only add an IP address to the interface, but also add a bridge interface to OSPF (for loopback, without physical interfaces added) and give that bridge an IP address.
by onnoossendrijver
Mon Jun 09, 2014 6:34 pm
Forum: General
Topic: v6.14 released
Replies: 114
Views: 37790

Re: v6.14 released

I really like the wireless-fp package. I had one device that would not even see my AP. Now works fine.
Speeds are much better too.
by onnoossendrijver
Sun Jun 08, 2014 6:38 pm
Forum: Wireless Networking
Topic: NV2 vs Nstream vs 802.11
Replies: 6
Views: 9257

Re: NV2 vs Nstream vs 802.11

And... 6.13 works great on my x86 :)
by onnoossendrijver
Thu Jun 05, 2014 4:11 pm
Forum: General
Topic: What is better, NAT or Route
Replies: 1
Views: 1160

Re: What is better, NAT or Route

The second one is better. NAT=dirty and gives problems with several protocols like SIP and FTP.
double NAT is even worse than single NAT :)
by onnoossendrijver
Thu Jun 05, 2014 12:10 pm
Forum: General
Topic: DNS Requests coming from my public interface?
Replies: 12
Views: 3323

Re: DNS Requests coming from my public interface?

Disable DNS access from the WAN.
by onnoossendrijver
Thu Jun 05, 2014 10:41 am
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 125490

Re: Feature request: OpenVPN compression LZO and UDP

Come on guys... You know UDP support will not be available. Also: No other high-end router manufacturer even supports OpenVPN. Not Cisco, not Juniper, not Alcatel... I think IPsec is the way to go if you need a secure connection. And if you really need OpenVPN, just pick a cheap x86 (atom) machine w...
by onnoossendrijver
Wed Jun 04, 2014 1:38 pm
Forum: General
Topic: how to disable ipsec encryption ??
Replies: 4
Views: 3111

Re: how to disable ipsec encryption ??

If you currently run IPsec with ESP you can change to AH. AH will not encrypt the data payload.
by onnoossendrijver
Tue Jun 03, 2014 10:55 pm
Forum: General
Topic: Enclosure for four (4) antennas?
Replies: 6
Views: 2810

Re: Enclosure for four (4) antennas?

Oh.. I Like that one! :D
by onnoossendrijver
Tue Jun 03, 2014 5:34 pm
Forum: General
Topic: Enclosure for four (4) antennas?
Replies: 6
Views: 2810

Re: Enclosure for four (4) antennas?

Buy a basebox2/5 with an extra mini-pci-express card and pigtails.
This way you have 4 or 5 antenna holes (RP-SMA).
by onnoossendrijver
Sun Jun 01, 2014 12:39 am
Forum: Beginner Basics
Topic: VPN bonding = low speed
Replies: 3
Views: 2626

Re: VPN bonding = low speed

Bonding on VPN links? I don't think that's a good idea.
You will very like suffer from out-of-order packets. Very bad for your speed.
Can you draw a picture of your setup?
by onnoossendrijver
Fri May 30, 2014 8:19 pm
Forum: RouterBOARD hardware
Topic: CPU to 100% in some cores ! CCR1036-12G-4S
Replies: 6
Views: 5969

Re: CPU to 100% in some cores ! CCR1036-12G-4S

Well, what does the Routerboard itself say about CPU usage?

As for any SNMP monitoring of bandwith: Always select the HC / 64bit counters.
Cacti has absolutely no problem with 64bit SNMP counters.
by onnoossendrijver
Thu May 29, 2014 12:21 pm
Forum: Wireless Networking
Topic: Questions about rb912uag series
Replies: 3
Views: 1805

Re: Questions about rb912uag series

Correct me if I'm wrong, but I believe you can only use one of these for USB. Remember that miniPCIe has USB pins, which are mainly used for 3G cards in the miniPCIe slot. So, if you have a miniPCIe card that does not require USB (most (all?) wifi cards) you can use both USB and miniPCIe at the same...
by onnoossendrijver
Wed May 28, 2014 5:16 pm
Forum: General
Topic: High Speed VPN - 100Mbps +
Replies: 25
Views: 23536

Re: High Speed VPN - 100Mbps +

GCM is not hardware encrypted, so in this case you can get max 80Mbps gre/ipsec traffic on CCR1009.
Will GCM be hardware-encrypted in future software?
by onnoossendrijver
Tue May 27, 2014 11:18 am
Forum: General
Topic: v6.13 released!
Replies: 176
Views: 65824

Re: v6.13 released!

You can add a 'vlan interface' to a physical port and give that interface a specific vlan tag.
Then you can do whatever you want with that interface. All traffic from that interface will have the specified vlan tag on the underlying physical interface.
by onnoossendrijver
Fri May 23, 2014 10:38 pm
Forum: RouterBOARD hardware
Topic: CPU to 100% in some cores ! CCR1036-12G-4S
Replies: 6
Views: 5969

Re: CPU to 100% in some cores ! CCR1036-12G-4S

Some things cannot be balanced over multiple cores. Among things that can only run on 1 core: the routing protocol processes (routing itself is multithreaded) and scripts. Tool -> Profile can give you a hint on what's causing load on the CPU. Some of these singlethreaded things will ultimately be ma...
by onnoossendrijver
Fri May 23, 2014 10:57 am
Forum: Beginner Basics
Topic: Wierd Traffic in a Poin to point /30 network
Replies: 2
Views: 1217

Re: Wierd Traffic in a Poin to point /30 network

Well... If you only see traffic belonging to that subnet it would mean that there is only traffic originating from the first router with destination the 2nd router. The traffic you see is traffic originating from different parts of your network being routed to other parts of your network, traversing...
by onnoossendrijver
Wed May 21, 2014 11:10 am
Forum: General
Topic: If supported Alcon AP ACP-2405g?
Replies: 4
Views: 1147

Re: If supported Alcon AP ACP-2405g?

I don't think there is any standard for AP management, so you won't find any controller that is able to manage an Alcon AP.
You need to buy a controller from Alcon to do that.
by onnoossendrijver
Wed May 21, 2014 10:05 am
Forum: General
Topic: New Wireless package
Replies: 53
Views: 33521

Re: New Wireless package

How did you test the TCP and UDP speeds?
by onnoossendrijver
Tue May 20, 2014 9:15 am
Forum: General
Topic: CRS125-24G-1S-RM and LACP: Bottlenecks?
Replies: 10
Views: 6305

Re: CRS125-24G-1S-RM and LACP: Bottlenecks?

I think the name is wrong. A trunk is a port that carries more than 1 virtual connections. VLANs in our ethernet world :)
by onnoossendrijver
Thu May 15, 2014 9:44 am
Forum: Beginner Basics
Topic: log: excessive or late collision, link duplex mismatch ????
Replies: 24
Views: 78696

Re: log: excessive or late collision, link duplex mismatch

You should always configure both ends of the connection the same way. So if you configure one end to autonegotiation you need to configure the other end also for autonegotiation. If you configure one end to 100/full, the other end must also be 100/full. Configuring one end to autonegotiation and the...
by onnoossendrijver
Tue May 13, 2014 9:22 pm
Forum: Beginner Basics
Topic: Resolving external DNS:Ports to IP's
Replies: 5
Views: 2047

Re: Resolving external DNS:Ports to IP's

It depends on what's running on port 3900, but in general you can not do this. You need a real public IP per server. (Update) I believe there are application aware routers/firewalls that can do this. Maybe even a Mikrotik with correctly configured L7 filter can do this, but it will be very slow and ...
by onnoossendrijver
Tue May 13, 2014 9:05 pm
Forum: Forwarding Protocols
Topic: How Do I add a link local address?
Replies: 13
Views: 6527

Re: How Do I add a link local address?

Is that correct would the link local be the same on 2 different bridges?
Look more closely.. it is not the same :)
The link-local address usually contains the mac-address of the interface. That's why they only differ slightly.
by onnoossendrijver
Tue May 13, 2014 11:55 am
Forum: General
Topic: ICMP
Replies: 1
Views: 879

Re: ICMP

So your latency is too high... Get a better ISP. If you are on DSL, switch to cable or fiber access.
by onnoossendrijver
Tue May 13, 2014 11:11 am
Forum: General
Topic: v6.12 released
Replies: 236
Views: 81574

Re: v6.12 released

As Mikrotik has said many times there will be no UDP support for OpenVPN.
There are lots of alternatives for OpenVPN.
And if you desperately need OpenVPN with UDP you can install OpenWRT in metarouter or just use a second physical router for OpenVPN. These things are VERY cheap and power efficient.
by onnoossendrijver
Mon May 12, 2014 2:56 pm
Forum: RouterBOARD hardware
Topic: RB1100AHx2 or CCR1009-8G-1S-1S+
Replies: 19
Views: 15278

Re: RB1100AHx2 or CCR1009-8G-1S-1S+

Both have hardware encryption and both are fast enough for your connections. If you think the redundant PSU is worth the extra money... go for the CCR, else the 1100AHx2 will be fine.
by onnoossendrijver
Fri May 09, 2014 12:17 pm
Forum: Forwarding Protocols
Topic: IPv6 BGP Routes Show as unreachable
Replies: 6
Views: 5068

Re: IPv6 BGP Routes Show as unreachable

The interface should at least have 2 IPv6 addresses: 1. an fe80:/64 IP address, this is called a link-local address. 2. your 2001:xxxx::/112 address from cogent The fe80 link-local address is used for most host-to-host communication. For example OSPFv3 uses this address for communication with neighb...
by onnoossendrijver
Fri May 09, 2014 10:27 am
Forum: Forwarding Protocols
Topic: IPv6 BGP Routes Show as unreachable
Replies: 6
Views: 5068

Re: IPv6 BGP Routes Show as unreachable

It should work automatically. From Wiki: A link-local address is required on every IPv6-enabled interface, applications may rely on the existence of a link-local address even when there is no IPv6 routing, that is why link-local address is generated automatically for every active interface using it'...
by onnoossendrijver
Thu May 08, 2014 7:32 pm
Forum: RouterBOARD hardware
Topic: 10GBASE-T SFP+?
Replies: 4
Views: 4109

Re: 10GBASE-T SFP+?

I don't think there are any available yet.
It probably has to do with power consumption. I believe that an SFP+ port can deliver about 2 watts, but a 10G UTP transceiver currently requires about 5 watts.
I hope they will soon produce more energy efficient 10G transceivers.
by onnoossendrijver
Thu May 08, 2014 3:37 pm
Forum: Forwarding Protocols
Topic: IPv6 BGP Routes Show as unreachable
Replies: 6
Views: 5068

Re: IPv6 BGP Routes Show as unreachable

Well, does your interface have a link-local address? (fe80:....)
If not, add one :)
by onnoossendrijver
Wed May 07, 2014 11:36 pm
Forum: RouterBOARD hardware
Topic: CCR1009-8G-1S-1S+ General info & Questions
Replies: 100
Views: 101720

Re: CCR1009-8G-1S-1S+ General info & Questions

+1 thank you for this excellent overview. Much appreciated. So then, it does not route over 1 gigabit over a single upstream port? What is the 10 gigabit SFP+ port for then?
What about inter-vlan routing on the 10g port? :)
by onnoossendrijver
Wed May 07, 2014 4:01 pm
Forum: Forwarding Protocols
Topic: Bridged (rstp) + OSPF (nbma) possible ?
Replies: 3
Views: 2283

Re: Bridged (rstp) + OSPF (nbma) possible ?

Unless there is a reason for a large layer 2 network PLEASE consider making all connections between routers layer 3 / point-to-point. Also add a bridge interface with IP address to the OSPF process and use it as router ID. This will make a MUCH more stable network. If you need layer 2 services over ...
by onnoossendrijver
Fri May 02, 2014 3:19 pm
Forum: Beginner Basics
Topic: Where do you masquerade you network?
Replies: 3
Views: 1369

Re: Where do you masquerade you network?

Well, if you only have 1 public IP address you can only perform masquerading right after the modem.
by onnoossendrijver
Thu May 01, 2014 10:59 pm
Forum: General
Topic: [bug][CRS226] SFP module does not normally Linkup
Replies: 8
Views: 5023

Re: [bug][CRS226] SFP module does not normally Linkup

This is what the datasheet tells: First port supports 1.25G/10G modules, second port only 10G modules.
I assume that's not the problem here?
by onnoossendrijver
Tue Apr 29, 2014 11:29 am
Forum: RouterBOARD hardware
Topic: packet loss with ethernet cable
Replies: 2
Views: 1636

Re: packet loss with ethernet cable

I assume that these (UDP!) packets are dropped because the CPU is on 100% utilization. Do a TCP test test instead, You will see lower speeds, but no drops. BTW: A speed test between these boards is useless. You are testing the CPU on both boards, instead of its throughput. If you want to do a good t...
by onnoossendrijver
Tue Apr 29, 2014 8:36 am
Forum: RouterBOARD hardware
Topic: RB912UAG 5HPnD not stable
Replies: 8
Views: 2515

Re: RB912UAG 5HPnD not stable

I ordered a 12V, 2A power supply from a Chinese seller on ebay (5 euro incl. shipping). I will try that one (I will put it on a scope, and measure the harmonics with a spectrum analyzer) to see, if it gives "problems" for the RF part. Please do not buy cheap power supplies on ebay! In gen...
by onnoossendrijver
Sat Apr 26, 2014 6:55 pm
Forum: General
Topic: PCC with VRRP? Wise to do so?
Replies: 5
Views: 2089

Re: PCC with VRRP? Wise to do so?

That can only work if the VRRP implementation supports load-sharing. I don't know if Mikrotiks implementation supports that.
by onnoossendrijver
Sat Apr 26, 2014 6:31 pm
Forum: General
Topic: VRRP Pair
Replies: 1
Views: 966

Re: VRRP Pair

Why not? Every device that can do VRRP should be able to work together.
by onnoossendrijver
Thu Apr 24, 2014 1:32 pm
Forum: Wireless Networking
Topic: Full Duplex Wireless Links, Multi-Radio, Wireless network
Replies: 7
Views: 2579

Re: Full Duplex Wireless Links, Multi-Radio, Wireless networ

What about:
Creat also a connection from 1 to 2 and from 2 to 3.
Make the whole network routed and run VPLS on top of that.
If the AP link dies the connection would be rerouted via station 2.
by onnoossendrijver
Sun Apr 20, 2014 12:22 pm
Forum: General
Topic: CRS question about tagged/untagged and SVI
Replies: 5
Views: 2283

Re: CRS question about tagged/untagged and SVI

Ah sh*t... I read CCR, instead of CRS. I can't help you with CRS. Sorry.
by onnoossendrijver
Fri Apr 18, 2014 11:56 am
Forum: General
Topic: CRS question about tagged/untagged and SVI
Replies: 5
Views: 2283

Re: CRS question about tagged/untagged and SVI

Create a VLAN interface per VLAN on every physical interface. for example: ether1_vlan30 ether1_vlan40 ether2_vlan30 ether2_vlan40 Create a bridge for every VLAN and put the VLAN interfaces for that VLAN in that bridge: bridge_vlan30 -ether1_vlan30 -ether2_vlan30 bridge_vlan40 -ether1_vlan40 -ether2...
by onnoossendrijver
Thu Apr 17, 2014 3:28 pm
Forum: Forwarding Protocols
Topic: RFC 5185 OSPF Multi-Area Adjacency
Replies: 4
Views: 3027

Re: RFC 5185 OSPF Multi-Area Adjacency

I'm not sure but maybe you can abuse OSPF Virtual Link to achieve the same?
by onnoossendrijver
Wed Apr 16, 2014 12:16 pm
Forum: RouterBOARD hardware
Topic: CCR 1009
Replies: 102
Views: 33007

Re: CCR 1009

Sorry didn't understand what you meant. You want 3 power sources? Yes, it's possible, but you need to use less than 24V for PoE. 22V or something like that. PoE and PSU can't have equal voltage, and PSU gives 24V That's great! I'd like to use 48v PoE and 1 or 2 IEC connections. Will PoE then be the...
by onnoossendrijver
Wed Apr 16, 2014 11:54 am
Forum: RouterBOARD hardware
Topic: CCR 1009
Replies: 102
Views: 33007

Re: CCR 1009

It's in the brochure:
It says nothing about PoE as backup.
by onnoossendrijver
Wed Apr 16, 2014 10:32 am
Forum: RouterBOARD hardware
Topic: CCR 1009
Replies: 102
Views: 33007

Re: CCR 1009

2x IEC C14 power jacks AC 110/220V, PoE
in 12-58V, 802.3af/at compliant
Cool! What about redundancy? Can you connect both IEC and PoE and have them failover?

I saw some prices online: 350-400 euro.
  • 1
  • 2