Community discussions

Search found 437 matches

  • 1
  • 2
by reinerotto
Tue Oct 01, 2019 10:47 pm
Forum: General
Topic: How to configure auto login feature into Freeraius
Replies: 1
Views: 184

Re: How to configure auto login feature into Freeraius

Although this question is not MT-specific, as a general guideline you need to use MAC-based auth on the second login. Which is to be set up both on freeradius, and the hotspot itself.
Sorry, no details for MT, as I only do openwrt-based hotspots. More suited for advanced configs.
by reinerotto
Tue Oct 01, 2019 4:19 pm
Forum: General
Topic: Recommended hotel hotspot management software?
Replies: 5
Views: 638

Re: Recommended hotel hotspot management software?

OP not asking for radius only. Radius usually is part of any good management system, but only small part.
by reinerotto
Tue Oct 01, 2019 7:58 am
Forum: General
Topic: Recommended hotel hotspot management software?
Replies: 5
Views: 638

Re: Recommended hotel hotspot management software?

This is not the right place to make recommendations out of mikrotiks environment.
For openwrt based systems, which includes several mikrotik devices, hotspotsystem.com is a good choice. Or ct-networks.io

I have no connections with both.
by reinerotto
Mon Sep 30, 2019 10:02 pm
Forum: General
Topic: Recommended hotel hotspot management software?
Replies: 5
Views: 638

Re: Recommended hotel hotspot management software?

Unfortunately, mikrotik is not the best platform for hotspot services, having above-basic requirements. One reason is, that RoS is closed, so no special customization possible. This said, you might take into consideration, that there are a few hotspot+management packages available for openwrt-based ...
by reinerotto
Sun Sep 15, 2019 7:21 pm
Forum: General
Topic: Contact to hotspot-providers requested
Replies: 0
Views: 256

Contact to hotspot-providers requested

I am looking for business-related contacts, regarding filtering services for hotspots, either at home, or public.
Yes, there is openDNS. But there might be a better, and cheaper, alternative.
Pls, mail augustus_meyerATyahoo.de
by reinerotto
Sun Sep 01, 2019 6:48 am
Forum: Beginner Basics
Topic: Monitor Users Web activity
Replies: 11
Views: 6953

Re: Monitor Users Web activity

Using squid: YES.
I did that for "Parental Control" , for a commercial product.
by reinerotto
Tue Aug 20, 2019 10:40 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

1) This question has nothing to do with Mikrotik, all vendors do it in their own unique way (and also change those ways from time to time). 2) I doubt anyone of this forum will be able to answer this particular question fully. 1) Correct. 2) Wrong. However, because of 1), no further details here. Q...
by reinerotto
Tue Aug 20, 2019 9:52 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

And how does does it know the hotspot login page to send the user to? Lets say the hotspot is hosted at 1.1.1.1, how does it know to send the user to 1.1.1.1? Back to one of my previous posts: Using openwrt for hotspots will show you, because open source. I.e. check the docs and source code for coo...
by reinerotto
Tue Aug 20, 2019 8:32 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

What I did do is scour all the walled garden section (there's a bunch) and found *gstatic.com and *akamai* was infact in the wallen garden list. We are using HSNM (lets see if that now fixes the issue and reduces complaints) These were not in the configurable parameters but actually came from a php...
by reinerotto
Tue Aug 20, 2019 8:14 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

Correct.
But thats not all, as firefox, for example, has a pre-loaded list of HSTS sites. I guess, same for Chrome.
by reinerotto
Sun Aug 18, 2019 8:21 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

When buying a certificate for your website, buy from "trusted" authority.
Otherwise you might face inconvenient issues when using newer IOS clients.
by reinerotto
Sat Aug 17, 2019 5:44 pm
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

hing I see on the software page that is a bit alarming is the fact that they display YouTube videos when you are not authenticated Yes, this is very, very suspicious, at least. Good indication would be problems with Android phones, as their CP-detection relies on google servers. IOS should not be c...
by reinerotto
Sat Aug 17, 2019 12:14 pm
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

So the CP-detection is your real issue. I am a bit wondering about this, as I thought, MT-hotspots are quite often used, and I expected MT to have a reasonable solution, at least. Your issue(s) need more detailed discussion, it looks like, as CP-detection also is dependent upon clients device, altho...
by reinerotto
Sat Aug 17, 2019 8:44 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

As I wrote already, you will _never_ be able to reliably redirect HTTPS (for purpose of Captive Portal CP or anything else), unless you are able to install special certificate on the users device. Which is not possible for a public hotspot. Valid for MT-hotspots, openwrt-based ones etc. No differenc...
by reinerotto
Fri Aug 16, 2019 9:46 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

If the hotspot server is a mikrotik router, how do you accomplish this?
Sorry, no idea, but doing this for long time already, on openwrt-based devices.
Which are much better suited for hotspots with "advanced features", like this one.
by reinerotto
Thu Jul 25, 2019 6:42 pm
Forum: General
Topic: Why Mikrotik ???
Replies: 32
Views: 6249

Re: Why Mikrotik ???

RouterOS is a configurable router, this puts it in the same category as ubiquiti, cisco, junipter, pfsense, your typical x86 based and linux OS. The mean weakness that mikrotik has is that unlike ubiquiti or any standard OS you cant install anything else onto the router other than what mikrotik dev...
by reinerotto
Tue Jul 16, 2019 8:43 am
Forum: RouterBOARD hardware
Topic: Legal mikrotiks for Brazil ?
Replies: 4
Views: 707

Re: Legal mikrotiks for Brazil ?

Thanx for confirmation. But what about using MT plus USB-dongle from carrier, where applicable ?
Also the MT-boards need "Certification" ?
by reinerotto
Mon Jul 15, 2019 9:40 pm
Forum: RouterBOARD hardware
Topic: Legal mikrotiks for Brazil ?
Replies: 4
Views: 707

Legal mikrotiks for Brazil ?

For a friend in BR I want to buy a MT with LTE modem.
However, I am advised, that such equipment needs some type of 'Certification' for legal usage in BR.
Are all MTs legal to be used in BR ?
by reinerotto
Sun Apr 07, 2019 11:33 pm
Forum: General
Topic: [Feature request] Wireguard
Replies: 94
Views: 22634

Re: [Feature request] Wireguard

Why so complicated ?
Use MT for "plain and simple" routing/networking.
And an openwrt-box for the missing functions, like wireguard, squid proxy, nginx web server etc.
Or, just use openwrt devices for routing/networking, too.
by reinerotto
Mon Feb 18, 2019 11:46 am
Forum: Beginner Basics
Topic: Monitor Users Web activity
Replies: 11
Views: 6953

Re: Monitor Users Web activity

This you can do yourself, using squid proxy. However, it needs quite some expertise for correct setup.
However: Does forcepoint work with _ALL_ domains ? (facebook, google ...)
Just thinking about pinned certs ...
by reinerotto
Sat Nov 24, 2018 11:46 pm
Forum: General
Topic: Hotspot Javascript
Replies: 1
Views: 243

Re: Hotspot Javascript

Dunno. But the MT should be able to determine the MAC itself, from IP and leases of dhcp.
by reinerotto
Thu Oct 11, 2018 5:17 pm
Forum: General
Topic: Hotspot captive portal prevent automatic close on redirect after login
Replies: 22
Views: 12936

Re: Hotspot captive portal prevent automatic close on redirect after login

Sorry, but I do this for a living, and on openwrt. Besides, impossible to do the same on MT, because not open, and it needs some software (openwrt-packages; or LINUX, if you want) not available on MT. I often stated several times here that for hotspots with special requirements, MT is _no_ good choi...
by reinerotto
Fri Oct 05, 2018 8:54 pm
Forum: General
Topic: Hotspot captive portal prevent automatic close on redirect after login
Replies: 22
Views: 12936

Re: Hotspot captive portal prevent automatic close on redirect after login

Congrats. So you are the second :-)
Works for Android 7, too, I hope ...
by reinerotto
Mon Jul 30, 2018 11:32 pm
Forum: General
Topic: Mikrotik + Squid Proxy server to log HTTPS traffic
Replies: 2
Views: 977

Re: Mikrotik + Squid Proxy server to log HTTPS traffic

>... and they must be explicitly configured to use the proxy - transparent proxying does not work for HTTPS.< This is not absolutely correct, with respect to the requested logging. (Not to mention fiddling aroud with certs, which allows transparent https-proxying to some extent even further.) Transp...
by reinerotto
Sat Jul 14, 2018 10:48 am
Forum: Beginner Basics
Topic: SSID for kids Zone with OpenDNS
Replies: 14
Views: 1532

Re: SSID for kids Zone with OpenDNS

Sorry, but publishing more details about a future commercial product goes too far. Wait, and you'll see. As a good comparison, for hotspots with special requirements, MT also is not properly suited, because closed. No problem to install squid or nginx on openwrt, for eample, if required for special ...
by reinerotto
Fri Jul 13, 2018 6:52 pm
Forum: Beginner Basics
Topic: SSID for kids Zone with OpenDNS
Replies: 14
Views: 1532

Re: SSID for kids Zone with OpenDNS

Perfectly within the realms of a MikroTik
Yes, you are correct, to match the basic requirements of the thread starter.
However, in case of more demanding functionality, MT not usable any more
for commercial product.
by reinerotto
Fri Jul 13, 2018 9:09 am
Forum: Beginner Basics
Topic: User activity log
Replies: 9
Views: 1209

Re: User activity log

>I don't think squid can log mac address and hostname right?< First: In general, squid only logs for http/https. mac adrs - only available (for logging) on same network segment (router drops MAC.). So, in case squid runs on same segment, then answer is YES, can be logged. - hostname: Shure, logged. ...
by reinerotto
Thu Jul 12, 2018 10:21 pm
Forum: General
Topic: Block HTTPS sites
Replies: 11
Views: 1886

Re: Block HTTPS sites

R1CH had the best proposal: Fake a Captive Portal. Implementation details depend upon your network structure, i.e. using DNS-hijack. And might not be so simple, though. However, will work without flaws on http only, but on connecting devices the Captive Portal Detection will be triggered, and you ca...
by reinerotto
Thu Jul 12, 2018 10:11 pm
Forum: Beginner Basics
Topic: SSID for kids Zone with OpenDNS
Replies: 14
Views: 1532

Re: SSID for kids Zone with OpenDNS

You might simply wait, to buy a router with your requested features. Time to wait depends upon your location, as I am doing a commercial product based on openwrt
implementing your request :-)
MT is not the best platform for such a device. Because too closed.
by reinerotto
Thu Jul 12, 2018 10:05 pm
Forum: Beginner Basics
Topic: User activity log
Replies: 9
Views: 1209

Re: User activity log

No need for appliance. You can use a standard PC running squid as a proxy. And interface MT to it .
_OR_ use a better device, LINUX based, or openwrt, which can do native logging via proxy.
by reinerotto
Sat Jul 07, 2018 10:59 pm
Forum: Beginner Basics
Topic: Disable video on Facebook, YouTube and etc...
Replies: 8
Views: 1525

Re: Disable video on Facebook, YouTube and etc...

@Isko900: As many sites, like youtube or facbook, use https, which is encrypted, it is not possible any more to block certain (video-) file types, like .avi or .mp4. Simply, because they are not recognizable any more, as when using http. Slowing down the connection per user, i.e. to 128kbit/s, would...
by reinerotto
Fri Jul 06, 2018 5:53 pm
Forum: General
Topic: Installing a basic webpage on the router? [SOLVED]
Replies: 4
Views: 631

Re: Installing a basic webpage on the router? [SOLVED]

Or use a device, much better suited to hotspot functionality with above-average requirements: openwrt-based device. There we (can) do such tricks. And a few more. _But_ your requirement impossible to fulfill cleanly for https, of course. In best case, you reach the redirected page after some browser...
by reinerotto
Tue Jun 12, 2018 3:54 pm
Forum: Beginner Basics
Topic: Trying to block sites. Mild success.
Replies: 8
Views: 1133

Re: Trying to block sites. Mild success.

OpenDNS which is a free service for home or private users.
FYI: For commercial use, OpenDNS asks for subscription payments. So, for a public WISP, I did a simple clone of OpenDNS, to save the $$.
In case of interest, lemme know.
by reinerotto
Tue Jun 05, 2018 3:04 pm
Forum: General
Topic: Mikrotik Hotspot issues
Replies: 3
Views: 529

Re: Mikrotik Hotspot issues

Agree to previous post in general; however, something else must be wrong, too. As practically every client-device with recent OS (iOS, Android, Windows ...) tests the internet connection using _standard_ http, which triggers the captive portal. Or the MT hotspot. At least, it should trigger, _unless...
by reinerotto
Tue Jun 05, 2018 2:53 pm
Forum: General
Topic: Hotspot with ADS
Replies: 1
Views: 325

Re: Hotspot with ADS

Use the search function on this forum, and you will find some advice regarding your question. Also some comments from me.
by reinerotto
Thu May 24, 2018 9:11 am
Forum: General
Topic: How to block URL-s contains IP address (Proxy)
Replies: 11
Views: 1261

Re: How to block URL-s contains IP address (Proxy)

Dump IPFire, install a small/old x86-PC running squid as local proxy within your network. This can do, what you want.
It is always strange, to read some questions, having already a supposed-to-work answer included :-)
by reinerotto
Wed May 23, 2018 11:34 pm
Forum: General
Topic: How to block URL-s contains IP address (Proxy)
Replies: 11
Views: 1261

Re: How to block URL-s contains IP address (Proxy)

Yes: Use a full-featured proxy, like squid.

Your usage case is one more argument against using MT for hotspots
with above-basic requirements.
As in openwrt, I often integrated squid. Also to implement
your requested functionality :-)
by reinerotto
Wed May 16, 2018 10:41 pm
Forum: General
Topic: Showing or pop up a warning message when user browse blocked content
Replies: 3
Views: 405

Re: Showing or pop up a warning message when user browse blocked content

MT is not the wright platform for the functionality, you want.
On openwrt-based devices, you can do this either based on
DNS
or by impleneting a full fletched proxy.
Will also work on https, with some browser warnings, though.
by reinerotto
Tue Mar 13, 2018 2:59 pm
Forum: General
Topic: Hotspot Authentication Even Without Internet
Replies: 11
Views: 4910

Re: Hotspot Authentication Even Without Internet

Did several commercial systems, like you are asking for. However, MT is not the wright platform for this, because not flexible enough. openwrt is the way to go. I.e. I did a "local hotspot" for on board aircraft, without internet connection, to work as media server, for order processing etc. In case...
by reinerotto
Thu Mar 01, 2018 1:57 pm
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

No. As you wrote, it also needs an (impossible) https-redir. "Best" you could do is to trigger some error messages from browser, regarding invalid cert. But this frightens the user even more.
So just to ignore https here only viable solution.
by reinerotto
Thu Mar 01, 2018 11:58 am
Forum: General
Topic: Redirect or advertising project
Replies: 5
Views: 757

Re: Redirect or advertising project

There was (still is ?) a function for regular adverts (via REDIRs) available, for MT-hotspots. However, this was/is not a solution for wide production use, as it does a REDIR simply time-based. Which disturbes the rendering of a web page just being requested. (Browser must request multiple objects t...
by reinerotto
Thu Mar 01, 2018 11:48 am
Forum: General
Topic: Using webproxy to Cache Hotspot Users contents
Replies: 3
Views: 500

Re: Using webproxy to Cache Hotspot Users contents

goggle for "squid cache"
by reinerotto
Thu Mar 01, 2018 11:42 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 53
Views: 5538

Re: Hotspot and HTTPS? What solutions?

In general, you will _never_ be able to reliably redirect HTTPS (for purpose of Captive Portal CP or anything else), unless you are able to install special certificate on the users device. Which is not possible for a public hotspot. This is just a feature of HTTPS, especially designed to inhibit suc...
by reinerotto
Thu Mar 01, 2018 11:27 am
Forum: Beginner Basics
Topic: Hotspot without internet
Replies: 3
Views: 454

Re: Hotspot without internet

Yes. I did this already several times for various clients, but based on openwrt/LEDE-devices as hotspots.
As I wrote here already:: For more than basic requirements for hotspots, MT is _NOT_ the best platform.
For commercial help, you can contact me: augustus_meyerATyahoo.de
by reinerotto
Thu Jan 25, 2018 3:40 pm
Forum: General
Topic: Block many websites
Replies: 20
Views: 11852

Re: Block many websites

ivicask gave the simplest and most complete solution to the problem. Also works for https-sites, of course.
by reinerotto
Fri Jan 19, 2018 4:32 pm
Forum: General
Topic: tool kid-control
Replies: 42
Views: 13030

Re: tool kid-control

>Regarding using mac address instead of IP would not solve anything.. .< No. Because it depends upon, how to use the MAC. ALmost 2 years ago I did a commercial parental control device (AP/router) on openwrt, based on MAC-control. And DNS-hijacking. Unknown MACs have everything blocked, so faking the...
by reinerotto
Wed Jan 10, 2018 11:46 am
Forum: General
Topic: iOS Captive Network Assistant problems on Mikrotik
Replies: 2
Views: 691

Re: iOS Captive Network Assistant problems on Mikrotik

>Is there a way to "fool" the CNA to "think" the user has internet access and display "Done" so when Captive window is closed, the device stays connected to our Hotspot?< Yes. _But_ I dunno, how to do it on MT, as it is closed. So, no surprise, you got no other response :-) You gave me one more arg,...
by reinerotto
Sun Dec 03, 2017 5:22 am
Forum: General
Topic: Remotely monitor large amount of routers
Replies: 20
Views: 2080

Re: Remotely monitor large amount of routers

wifibus.com.mx Why to block the path to evolution, by starting too limited ? You might convince the client about alternative hw, and its possibilities. I.e. we also do GPS tracking of busses,of course. And, I do not know cost structure of 3g/4g in your area, but it might be quite expensive. So the u...
by reinerotto
Sun Dec 03, 2017 5:08 am
Forum: General
Topic: Remotely monitor large amount of routers
Replies: 20
Views: 2080

Re: Remotely monitor large amount of routers

Same idea here. Hotspot redirects to a page (without user/pass) and serves the first video that must be seen complete. Then, redirects to free web. We do much more: Local server to serve real movies, music, simple games, local news etc. from web-site within device. For entertainment of user (to sav...
by reinerotto
Fri Dec 01, 2017 7:27 am
Forum: General
Topic: Remotely monitor large amount of routers
Replies: 20
Views: 2080

Re: Remotely monitor large amount of routers

I have more than 1000 routers moving on vehicles serving as hotspot. They're connected to 4G. I need to periodically (say, every hour) read the uptime, traffic consumption, clients connected, know if Did that for public transport system in big Mexican city. Using openwrt-based devices, also deliver...
by reinerotto
Wed Nov 29, 2017 9:34 am
Forum: General
Topic: drop https requests then force a redirect
Replies: 3
Views: 563

Re: drop https requests then force a redirect

>and then after login immediately shut down< This happens on new Android devices automatically, because the mini-browser closes the window, as soon as web access granted. Same for Windows-mobile. Some possible workarounds for this behaviour, but not on MT. Needs smarter (or more open) hotspot system...
by reinerotto
Mon Nov 20, 2017 7:51 pm
Forum: Beginner Basics
Topic: HTTPS traffic redirect problem
Replies: 8
Views: 1676

Re: HTTPS traffic redirect problem

So sorry, mixed up with this one:
>Forcepoint strips of https certificate, looks at were you go and allow/block session. If it allows session it uses the real cert from the site you are visiting.<
by reinerotto
Mon Nov 20, 2017 7:03 pm
Forum: Beginner Basics
Topic: HTTPS traffic redirect problem
Replies: 8
Views: 1676

Re: HTTPS traffic redirect problem

Both methods require to install custom root CA cert on the clients. Again, in case you want to filter/log certain _hostnames_ (_NOT_ complete URLs) or IPs, you do _NOT_ need to install the certificate for https. Exactly, what I did for a special router (openwrt/LEDE) for parental control. Which is ...
by reinerotto
Sun Nov 19, 2017 6:44 pm
Forum: General
Topic: HTTPS does not records in Mikrotik log
Replies: 13
Views: 903

Re: HTTPS does not records in Mikrotik log

The only thing you'll get with HTTPS [edit: if you're explicitly proxying it] is the hostname that the connection was proxied to
I have to disagree here. You can get the same info for transparently proxied https, using squid.
However, configuring "splice/bump" for this is non-trivial.
by reinerotto
Sun Nov 19, 2017 6:33 pm
Forum: Beginner Basics
Topic: HTTPS traffic redirect problem
Replies: 8
Views: 1676

Re: HTTPS traffic redirect problem

Not 100% correct.
squid (open source) can do the same. So, in open Linux environments (also on openwrt/LEDE), this can be done without separate product.
by reinerotto
Sun Nov 19, 2017 6:19 pm
Forum: Beginner Basics
Topic: captive portal safari or chrome instead of microbrowsers
Replies: 1
Views: 769

Re: captive portal safari or chrome instead of microbrowsers

>how can i force the devices to open safari, chrome or firefox instead of microbrowsers< You can not. As it is a functionality of the users device. However, you can switch to the philosophy, that user has to _explicitly_ open the browser to connect to the WiFi. _And_ you need to fake the internet co...
by reinerotto
Fri Oct 27, 2017 9:30 am
Forum: Beginner Basics
Topic: Business with limited Bandwidth and out of control usage
Replies: 6
Views: 656

Re: Business with limited Bandwidth and out of control usage

@cpctech: Yes, setup is the most suitable, and simplest. @troffasky: "You aren't going to get any caching or a lot of useful info from Squid about HTTPS sites without MITM." No caching effect without MITM, correct. Amd this setup is for (very) advanced users. However, useful info from https-logging ...
by reinerotto
Fri Oct 27, 2017 12:23 am
Forum: Beginner Basics
Topic: Business with limited Bandwidth and out of control usage
Replies: 6
Views: 656

Re: Business with limited Bandwidth and out of control usage

To fulfill clients prio #1 simplest and best is to set up an intermediate caching proxy with logging for the whole network. Old PC running LINUX+squid reduces required bandwidth (because of cache) and provides extensive logging of user activities on http and https.Various log analyzers for squid log...
by reinerotto
Mon Oct 23, 2017 4:49 pm
Forum: Beginner Basics
Topic: Convert URL to static internal IPs
Replies: 2
Views: 380

Re: Convert URL to static internal IPs

Own DNS-server makes sense. However, BIND is overkill for what you want to achieve.
dnsmasq will do the job; much easier to configure.
by reinerotto
Sat Oct 21, 2017 3:21 pm
Forum: Beginner Basics
Topic: Websites not being blocked/logged?
Replies: 6
Views: 683

Re: Websites not being blocked/logged?

The last thing I'll leave you with, you may need to look at DNS based blocking from a provider like OpenDNS if you can't install a device that MITM's SSL.
Agreed. However, you also have the option to do DNS-based blocking yourself.
by reinerotto
Mon Oct 09, 2017 8:43 pm
Forum: General
Topic: Hotspot captive portal prevent automatic close on redirect after login
Replies: 22
Views: 12936

Re: Hotspot captive portal prevent automatic close on redirect after login

You have the best solution, possible on mikrotik. However, very best solution can be done on open (openwrt/LEDE) hotspot systems. I.g. it means, to filter (or to fake) the internet-connection probes by iOs, WP, Android. Your issue is one more confirmation for my decision, to drop MT for hotspots wit...
by reinerotto
Sun Oct 08, 2017 8:59 pm
Forum: General
Topic: Can I block HTTPS site with proxy?
Replies: 11
Views: 3197

Re: Can I block HTTPS site with proxy?

Only correct, when you talk about mikrotik.
I did a (better) clone of openDNS on an average ubuntu server, blocking about 1.2Mio porno sites.
Theoretically, could be done on MT, too. In case, it were open (for mods).
by reinerotto
Sun Sep 17, 2017 8:46 pm
Forum: General
Topic: What is the best router to use in hotspot for wifi vendo machine
Replies: 4
Views: 8719

Re: What is the best router to use in hotspot for wifi vendo machine

best router for hotspot is based on openwrt/LEDE. As youhave (almost) all possibilities of linux packages available. I.e. you can integrate full featured caching proxy like squid. Or captive portal like coova-chilli. miktotiks have similar functionalities, but closed and more limited. But are easier...
by reinerotto
Sun Sep 03, 2017 9:27 pm
Forum: Beginner Basics
Topic: customer frequency tracking
Replies: 5
Views: 647

Re: customer frequency tracking

1) How to send PM here ?
2) Some people are willing to compensate for " Best Know-How". Or for better functions/higher quality.
3) Quite a few "leechers" on various forums, to get financial advantages from free high-quality advice.
by reinerotto
Sun Sep 03, 2017 12:33 am
Forum: Beginner Basics
Topic: customer frequency tracking
Replies: 5
Views: 647

Re: customer frequency tracking

You can just read this post:
viewtopic.php?f=13&t=125057

Which is for free, too, and much smarter than your contribution.
However, no continous (streaming) solutions.
As you get, what you pay for.
by reinerotto
Sat Sep 02, 2017 6:44 pm
Forum: Beginner Basics
Topic: customer frequency tracking
Replies: 5
Views: 647

Re: customer frequency tracking

Yes; not a big deal. In case you can use openWRT, at least, as it is much more flexible. In plain words: open in its features. Did it for two clients already; right now for a third one in South America. As I do coding, incl. firmware, for a living. However, there are some limitations to the interpre...
by reinerotto
Mon Jul 31, 2017 4:12 pm
Forum: Beginner Basics
Topic: possible to limit bandwidth per user not per device in Hotspot?
Replies: 6
Views: 1770

Re: possible to limit bandwidth per user not per device in Hotspot?

DMA Radius (based on free radius) is not able to do this. I am wondering. The limitations is RoS, I strongly suspect. As Radius can control a lot of various quota policy. You are another example, that RoS is not the best choice for hotspots with special requirements. openwrt/LEDE + freeradius backe...
by reinerotto
Sun Jul 30, 2017 9:35 pm
Forum: General
Topic: How to only open .ir sites ?
Replies: 3
Views: 587

Re: How to only open .ir sites ?

I wanted to write: Use proxy, like squid. However, in case the user opens https-tunnel, or uses VPN, then ...
by reinerotto
Tue Jul 25, 2017 2:43 pm
Forum: General
Topic: can I redirect https to my router?
Replies: 24
Views: 3974

Re: can I redirect https to my router?

Can you give an example, where a porn hosting website would also have family oriented pages on the same domain :) ? The problem is usually not that, but there are indeed cases where some people want to block "part of a site". E.g. some site that offers games (that are seen as unwanted, e.g. timewas...
by reinerotto
Mon Jul 24, 2017 10:11 am
Forum: General
Topic: can I redirect https to my router?
Replies: 24
Views: 3974

Re: can I redirect https to my router?

Because of the costs of openDNS for commecial use, but the necessity of filtering the access to public, open hotspots of a client, I did a "worst case" DNS-server, considering several blocklists, most of all porn, of course, but also gambling etc. So no special consideration of age-ranges, because ...
by reinerotto
Sun Jul 23, 2017 4:55 pm
Forum: General
Topic: can I redirect https to my router?
Replies: 24
Views: 3974

Re: can I redirect https to my router?

Because of the costs of openDNS for commecial use, but the necessity of filtering the access to public, open hotspots of a client, I did a "worst case" DNS-server, considering several blocklists, most of all porn, of course, but also gambling etc. So no special consideration of age-ranges, because o...
by reinerotto
Thu Jul 20, 2017 10:30 pm
Forum: General
Topic: Facebook Login on Captive Portal
Replies: 3
Views: 1520

Re: Facebook Login on Captive Portal

Doing fb-login with large hotspot provider, haven't heard of this issue. Not using MT, though, but openwrt-based solution. With special backend for auth.
Did you contact fb already, to get the reason for the "temp locked" ?
by reinerotto
Thu Jul 20, 2017 10:25 pm
Forum: General
Topic: can I redirect https to my router?
Replies: 24
Views: 3974

Re: can I redirect https to my router?

To use it for business purposes it is formally required to ask them for a quote for a paid account. And it is very expensive (I tried).
And that is the reason, I developed a simple clone of openDNS for a hotspot provider. With custom "Blocked !" page, of course :-)
by reinerotto
Tue Jul 18, 2017 10:48 pm
Forum: General
Topic: How to deliver In-Session Ads via Mikrotik HotSpot
Replies: 3
Views: 1939

Re: How to deliver In-Session Ads via Mikrotik HotSpot

Hi, Previously Mikrotik had a feature called advertisement in HotSpot, which is obsolete in latest ROS versions. Any suggestions? I remember this RoS-feature. After first usage, few years ago, I recognized the pitfalls, as it was not good enough for real production use. As it might interrupt the re...
by reinerotto
Tue Jul 18, 2017 10:29 pm
Forum: Beginner Basics
Topic: possible to limit bandwidth per user not per device in Hotspot?
Replies: 6
Views: 1770

Re: possible to limit bandwidth per user not per device in Hotspot?

This is typical task for a (free-)radius server as backend. Dunno how to interface to RoS, though. openwrt/LEDE is better suited to special hotspot configs, like this one.
by reinerotto
Fri Jun 23, 2017 8:25 am
Forum: General
Topic: Hotspot MAC exception not working for XBox/PS4/Sonos
Replies: 7
Views: 1139

Re: Hotspot MAC exception not working for XBox/PS4/Sonos

CCR-support on openwrt/LEDE looks unreliable to me, far from production stability. However, you hit an interesting feature. Having developed a lot of different firmware for special purpose hotspots/routers (incl. parental control, social login, access logging, local content distribution etc.) on var...
by reinerotto
Thu Jun 22, 2017 9:32 pm
Forum: General
Topic: Hotspot MAC exception not working for XBox/PS4/Sonos
Replies: 7
Views: 1139

Re: Hotspot MAC exception not working for XBox/PS4/Sonos

Depending upon number of hotspots required, I might consider some special development using openwrt/LEDE. Which _might_ even run on certain mikrotiks.
Which MTs are you using ?
by reinerotto
Thu Jun 22, 2017 10:22 am
Forum: General
Topic: Filter rules + Hotspot
Replies: 4
Views: 809

Re: Filter rules + Hotspot

>several hotspot rules were added dynamically on top of the list!< This is normal for Captive Portals to work. However, sequence of rules depends upon sequence of module activitation (custom rules, rules fom captive portal) Which is obvious in open systems, like openwrt/LEDE; but _NOT_ in RoS, becau...
by reinerotto
Wed Jun 21, 2017 10:49 pm
Forum: General
Topic: rate limit on https not applied
Replies: 2
Views: 382

Re: rate limit on https not applied

Dunno on MT. openwrt/LEDE-based hotspots (incl. coova-chilli) do not have your problem. And may solve a few more sophisticated issues (i.e. site/url-logging).
by reinerotto
Wed Jun 21, 2017 5:13 pm
Forum: Beginner Basics
Topic: Problem with hotspot
Replies: 1
Views: 320

Re: Problem with hotspot

1)It seems that at some point the mikrotik or radius (who releases the ip) after a while seems to end the ip, I increased the time lease but the problem persists as I can do it? Sounds like session terminated by radius. because of inactivity, or session too long 2)Is there a script that allows me to...
by reinerotto
Wed Jun 21, 2017 5:06 pm
Forum: Beginner Basics
Topic: Web-Proxy site speed limit.
Replies: 2
Views: 661

Re: Web-Proxy site speed limit.

Add an external squid Proxy. Or use openwrt/LEDE based router/hotspot, incl. squid.
by reinerotto
Mon Jun 19, 2017 4:58 pm
Forum: Beginner Basics
Topic: RouterOS for custom device
Replies: 2
Views: 467

Re: RouterOS for custom device

Agreed.
Thats the reason, I left RoS for development of special purpose WiFi devices (routers), like for integration of parental control or similar.
_OR_ simply better hotspot functionality.
by reinerotto
Sun Jun 18, 2017 8:25 pm
Forum: Beginner Basics
Topic: simple redirect after HS connect
Replies: 5
Views: 475

Re: simple redirect after HS connect

I do not remember, sorry. Although I am on upwork, too, several completed projects are on freelancer.
Allso containing, what you still want to achieve. Both UBT and MT are the wrong tools for that.
by reinerotto
Sun Jun 18, 2017 7:05 pm
Forum: Beginner Basics
Topic: simple redirect after HS connect
Replies: 5
Views: 475

Re: simple redirect after HS connect

Yes.
I have hotspots, delivering local content only. But these are based on openwrt/LEDE.
Which contain such a special feature you are looking for :-)
However, own developed firmware.
MT is too closed for such advanced features.
by reinerotto
Sun Jun 18, 2017 9:25 am
Forum: Beginner Basics
Topic: simple redirect after HS connect
Replies: 5
Views: 475

Re: simple redirect after HS connect

- Automatic popup/captive window after connect to the HS (each time you connect to this HS) This is standard, but ... - this redirected page has to be opened in native webbrowser (Safari, Chrome,.. ) not on "lightweight login Browser window" Here is the problem: Some OS (certain Android versions) do...
by reinerotto
Mon Jun 12, 2017 7:51 am
Forum: General
Topic: Event webpage injection to hotspot user
Replies: 3
Views: 731

Re: Event webpage injection to hotspot user

Injection of content into 3rd party pages can help in funding free hotspots. You are correct, that there _might_ be interference, but only in case of extremely dynamic (tricky) sites.. Which need to be blacklisted.
MTs 'interstetials' are much more risky regarding disturbance of 3rd party sites.
by reinerotto
Sun Jun 11, 2017 7:32 pm
Forum: General
Topic: Event webpage injection to hotspot user
Replies: 3
Views: 731

Re: Event webpage injection to hotspot user

In principal, YES, there is. I developed some commercial software to do 'injection of content' into HTML, on-the-fly, using a proxy (http only).
A common usage scenario is the injection of ads, typically overlays, by means of injected JS.
In case of interest, contact me augustus_meyerATyahoo.com
by reinerotto
Sat May 13, 2017 10:12 am
Forum: General
Topic: How to block Youtube and facebook Android App in router Mikrotik
Replies: 30
Views: 71401

Re: How to block Youtube and facebook Android App in router Mikrotik

Instead of messing around with this one >...you can disrupt the connection before SSL is fully negotiated. certificate exchange takes place "in cleartext", < on MT on low level, similar can be done in a clean way using squids https interception. Which also allows to block facebook etc. However, this...
by reinerotto
Fri May 12, 2017 1:45 pm
Forum: General
Topic: how can I see HTTPS on proxy
Replies: 11
Views: 6669

Re: how can I see HTTPS on proxy

You can _not_ detect inline-malware, like injected javascript, using DNS.
You _could_ keep privacy using local intercepting https proxy.
But, privacy (read: protection) of advertisers is the crucial issue here.
by reinerotto
Fri May 12, 2017 11:55 am
Forum: General
Topic: how can I see HTTPS on proxy
Replies: 11
Views: 6669

Re: how can I see HTTPS on proxy

There are pros and conns to SSL intercept. I.e. SSL-intercept could be useful to better detect malware. Or to do parental control more refined.
Or to do better ad blocking. Which, I guess, is the main reason, quite a few "browser vendors" try hard to make this impossible.
by reinerotto
Fri May 12, 2017 11:49 am
Forum: Beginner Basics
Topic: Parental Control for Certain MAC
Replies: 15
Views: 3393

Re: Parental Control for Certain MAC

Yes, that is part of the story.
by reinerotto
Fri May 12, 2017 10:53 am
Forum: Beginner Basics
Topic: Parental Control for Certain MAC
Replies: 15
Views: 3393

Re: Parental Control for Certain MAC

Nobody tried this or there is no solution for this kind of parental control? :(
I did a (commercial) clone of openDNS. Which also can be tailored for individual MACs. However, needs private server, and special router (non-MT; but openwrt/LEDE)
by reinerotto
Thu May 11, 2017 4:42 pm
Forum: General
Topic: how can I see HTTPS on proxy
Replies: 11
Views: 6669

Re: how can I see HTTPS on proxy

>I wouldn't be surprised if Squid supports this.< You are correct in some sense. Using squid, it is possible to determine the target domain/IP of the SSL session, without installation of special certs in the clients. However, a bit tricky. And _NOT_ possible to see the full URL, domain only. Install...
by reinerotto
Thu May 11, 2017 4:37 pm
Forum: General
Topic: Integrating Facebook Connect with Hotspot Login / Authent ..
Replies: 132
Views: 275219

Re: Integrating Facebook Connect with Hotspot Login / Authent ..

>the Facebook logon page is launched in the mobile phone's browser instead of in the Facebook app. Most people, myself included, don't have my Facebook credentials stored in my mobile phone's browser so people simply click on the "Skip logon" link which defeats the object of the system.< You have to...
by reinerotto
Thu May 11, 2017 4:15 pm
Forum: General
Topic: Hotspot + Facebook ??
Replies: 3
Views: 1202

Re: Hotspot + Facebook ??

This is so called 'Like-Gating'. Which is prohibited since end of 2015 by facebook. Unless fb explicitly grants this right to your app. Which is very unlikely, but you can try. However, it is allowed to ask for a like. But user may refuse. Login via fb I can only setup using special backend server, ...
by reinerotto
Mon Jun 13, 2016 1:33 pm
Forum: General
Topic: how to use hotspot advertise oprion?
Replies: 3
Views: 1392

Re: how to use hotspot advertise oprion?

>why Mikrotik keep holding this option< Marketing argument. It works "in principal". However, not good enough for production with _many_ users, as number of complaints will increase. Better alternative: I have a few, depending upon requirements. However, I make my living from "good knowledge". In ca...
by reinerotto
Sun Jun 12, 2016 12:17 am
Forum: General
Topic: Open-source, alternative firmware
Replies: 2
Views: 2900

Re: Open-source, alternative firmware

Depends upon the device and what you need. You can squeeze openwrt, for example, just by installing necessary packages (SW).
Then you will need to build your own image, for real downsizing.
Not all MTs run openrwrt, BTW.
openwrt is open, RoS is not.
openwrt the best choice for hotspots, for example.
by reinerotto
Sun Jun 12, 2016 12:14 am
Forum: General
Topic: how to use hotspot advertise oprion?
Replies: 3
Views: 1392

Re: how to use hotspot advertise oprion?

Worked for me in the past, but then I dropped usage. As not a good solution for production. There are btter alternatives.
Anyway: You need to do active browsing. When the timer for advertisements expires, it will redirect you, when navifating to another URL.
Simple wait will not work :-)
by reinerotto
Thu May 19, 2016 12:33 pm
Forum: Wireless Networking
Topic: Contact to WLAN-installers for several sites in Greece required
Replies: 0
Views: 932

Contact to WLAN-installers for several sites in Greece required

Addendum to my previous post http://forum.mikrotik.com/viewtopic.php?f=7&t=108527
We might offer the WLAN-contract also to foreign partners. A charity org always has low budget :-)
by reinerotto
Thu May 19, 2016 12:18 pm
Forum: Wireless Networking
Topic: Contact to WISPs (WAN or WLAN) in Greece required
Replies: 1
Views: 796

Contact to WISPs (WAN or WLAN) in Greece required

As technical consultant for an international charity org, also active in several refugee camps in Greece, I am looking for contacts with WISPs, which can establish PtP-WAN-connections to the camps or setup WLANs within the camps. However, this will be two separate contracts. For the largest camp we ...
by reinerotto
Wed Apr 27, 2016 1:39 pm
Forum: General
Topic: Social Login on Hotspot Mikrotik
Replies: 6
Views: 3543

Re: Social Login on Hotspot Mikrotik

Hi, I have a contact in Mexico, who just did that also for MT. Send me a mail, to augustus_meyer@ahoo.de, so I can forward you. Note: facebook does not allow (any more) "Like-Gating", which means, forcing the user to give a "Like" before receiving some service. However, is is possible to ask for a "...
by reinerotto
Tue Nov 17, 2015 9:38 pm
Forum: General
Topic: Dual WAN PCC + Squid Transparent Proxy + Hotspot
Replies: 4
Views: 2293

Re: Dual WAN PCC + Squid Transparent Proxy + Hotspot

Don't know pfsense in detail. However, you might also install the squid-box (or pfsense ?) inbetween the MTs.
Then you can use the easy solution for your hotspot users, at least.
squid-box could be old/simple ubuntu-PC (or your netbook) , with lot of RAM (fastest cache :-) and (fast) HDD, 2 NICs.
by reinerotto
Tue Nov 17, 2015 3:25 pm
Forum: General
Topic: Dual WAN PCC + Squid Transparent Proxy + Hotspot
Replies: 4
Views: 2293

Re: Dual WAN PCC + Squid Transparent Proxy + Hotspot

In general, installation of HTTP-intercepting squid is simple in any standard LINUX environment, as it only needs an iptables-rule to REDirect http-traffic to squid on same machine. In case, squid runs on another PC (NOT the one with the iptables-rule) it is more difficult. So, in your case, having ...
by reinerotto
Fri Sep 25, 2015 10:18 am
Forum: General
Topic: Hotspot Server using a SQUID server on the Internet (Public IP) as the upstream proxy
Replies: 3
Views: 525

Re: Hotspot Server using a SQUID server on the Internet (Public IP) as the upstream proxy

You are wright, VPN is an alternative.
Did not think about it that time :-)
by reinerotto
Thu Sep 24, 2015 11:52 pm
Forum: General
Topic: Hotspot Server using a SQUID server on the Internet (Public IP) as the upstream proxy
Replies: 3
Views: 525

Re: Hotspot Server using a SQUID server on the Internet (Public IP) as the upstream proxy

Yes. For a customer, having very similar problem, I developed a solution using email, to signal "valid IP" to server running squid. In case of interest, consider a project on "freelancer.com". And let me know :-)
by reinerotto
Thu Sep 24, 2015 2:35 pm
Forum: General
Topic: How to open hotspot login page automatically after connecting to wifi
Replies: 5
Views: 2058

Re: How to open hotspot login page automatically after connecting to wifi

>you get opened browser with login page<
Which is triggered by the browser OR OS-dependent activities in case of successful connection to WiFi, like Apple or MS or Android do.
by reinerotto
Wed Sep 16, 2015 9:40 pm
Forum: General
Topic: DNS server and cache server
Replies: 4
Views: 728

Re: DNS server and cache server

Caching DNS-server (like dnsmasq) and a caching proxy (like squid). There are some solutions around to cache youtube with squid.
by reinerotto
Tue Aug 25, 2015 10:02 am
Forum: General
Topic: RB951G-2HND bootloop after overwrite firmware
Replies: 46
Views: 19204

Re: RB951G-2HND bootloop after overwrite firmware

Hi, I came across this thread as trying to find a minimum 16mb flash & 64mb RAM router with USB & 2.4ghz wifi we can install WRT on. There are a lot of different devices available, meeting your specs. I have done mods to OM2Ps FW (r481) and programmed different openwrt-devices (various TP-Links, no...
by reinerotto
Tue Jun 02, 2015 6:53 pm
Forum: General
Topic: Block a host on the LAN to internet and show a warningpage
Replies: 3
Views: 598

Re: Block a host on the LAN to internet and show a warningpage

Transp proxy should also work, in case "specific host" has fixed IP, and you only redirect its traffic.
Otherwise, you need to redirect evething to proxy, and then deny access/display message for "specific hosts" domain.
by reinerotto
Sun May 31, 2015 7:04 pm
Forum: General
Topic: Transparent Web Proxy configuration
Replies: 3
Views: 1040

Re: Transparent Web Proxy configuration

Use a real proxy, like squid, on a separate box.
by reinerotto
Wed May 06, 2015 3:43 pm
Forum: General
Topic: Redirect connection to static webpage with Radius
Replies: 2
Views: 570

Re: Redirect connection to static webpage with Radius

Using radius-CoA you can command a redirect from the server. Question is, whether client (Mikrotik) supports it.
by reinerotto
Mon May 04, 2015 12:45 pm
Forum: General
Topic: costume login page
Replies: 1
Views: 462

Re: costume login page

Yes.
by reinerotto
Sun May 03, 2015 11:55 pm
Forum: Beginner Basics
Topic: Freeradius + Mikrotik Routers + Bandwidth Throttling and Data Cap + Paid Support?????
Replies: 2
Views: 1186

Re: Freeradius + Mikrotik Routers + Bandwidth Throttling and Data Cap + Paid Support?????

Sounds like a typical "MAC-auth"-scenario, in which the MAC of the WiFi device is used for AAA. This can be done using plain freeradius on a server; also to take care of bandwidth-control and volume limits. Just searched around here on the forum (serach for mac-auth); looks like MTs hotspot can inte...
by reinerotto
Sat Feb 07, 2015 1:09 am
Forum: General
Topic: Hotspot. Captive portal with only a checkbox.
Replies: 1
Views: 583

Re: Hotspot. Captive portal with only a checkbox.

You need to modify the hotspot functionality of MT/RoS to do simple redirection, without authorization. Especially to modify the standard "Splash Page". You can hire me :-)
by reinerotto
Sat Feb 07, 2015 1:01 am
Forum: Beginner Basics
Topic: How to redirect a website in mikrotik
Replies: 1
Views: 683

Re: How to redirect a website in mikrotik

Have a look at the hotspot functionality in RoS. That includes redirection.
by reinerotto
Fri Jan 30, 2015 10:46 pm
Forum: Beginner Basics
Topic: Some sites are not responding in mikrotik routerboard
Replies: 6
Views: 1117

Re: Some sites are not responding in mikrotik routerboard

Does not work for me either, of course:
share.earthlinktele.com. 2249 IN A 192.168.1.66
by reinerotto
Fri Jan 30, 2015 4:49 pm
Forum: Beginner Basics
Topic: Some sites are not responding in mikrotik routerboard
Replies: 6
Views: 1117

Re: Some sites are not responding in mikrotik routerboard

An example (Link !) will make it much more likely to receive a response.
by reinerotto
Thu Jan 22, 2015 6:11 pm
Forum: General
Topic: Add a toolbar to client's web browser???
Replies: 16
Views: 2708

Re: Add a toolbar to client's web browser???

reinerotto yes, you give me price of 5555 USD and other guy 750 for same work.... Just for one coffe bar I still have a small solution, which is not server-based for high volume. But it can only be used together with openWRT running on Mikrotik, as integration in RoS is too difficault, as not Open ...
by reinerotto
Wed Jan 21, 2015 1:34 pm
Forum: Beginner Basics
Topic: Free Wifi to login with social media websites
Replies: 4
Views: 3160

Re: Free Wifi to login with social media websites

My question is in some places we are providing free wifi. I want people to login through email or social media profiles to excess our free wifi. For example when you go to barclays bank or subway you need to register with them and you can use wifi for free. Cheers! In case, you need some consulting...
by reinerotto
Tue Jan 20, 2015 10:19 am
Forum: General
Topic: Add a toolbar to client's web browser???
Replies: 16
Views: 2708

Re: Add a toolbar to client's web browser???

Still open for payed-for offers. As I do it already for years, looks like time is ripe for it, you will get a solid solution.
I am open for cooperation, exclusively for certain contries.
Hm - squid and MT - you might ask on freelancer. Did some bids there, right now.
by reinerotto
Mon Jan 19, 2015 5:04 pm
Forum: General
Topic: LTE performance
Replies: 1
Views: 567

Re: LTE performance

Interesting. I am using same MC7710 on a real (small) debian based system, with 1GHz CPU. Thruput is almost as good as on your mobile phone. However, I had quite some work to get the newest QMI-driver running the MC7710 on my debian. As the MC7710 can also be used in the (suppose to be) inferior DIP...
by reinerotto
Wed Dec 31, 2014 8:41 pm
Forum: General
Topic: Webproxy does not forward original client IP address
Replies: 3
Views: 1199

Re: Webproxy does not forward original client IP address

In case, no solution directly on the MT: Use a full featured proxy, like squid. You might assign an old PC to this task-
by reinerotto
Tue Dec 23, 2014 11:57 am
Forum: General
Topic: RB951G-2HND web proxy
Replies: 4
Views: 3633

Re: RB951G-2HND web proxy

Relevant parts: max-cache-size: 3906250KiB !Set to 64MB max-cache-object-size: 4096KiB !Set to 64kb cache-on-disk: yes !No max-client-connections: 50 !Set to 128 for single user max-server-connections: 50 !Set to 128 for single user These values are "best guesses" for the beginning. Only RAM-cache; ...
by reinerotto
Mon Dec 22, 2014 5:14 pm
Forum: General
Topic: RB951G-2HND web proxy
Replies: 4
Views: 3633

Re: RB951G-2HND web proxy

>max-cache-size: 3906250KiB
max-cache-object-size: 4096KiB
cache-on-disk: yes<

I would set it to RAM-cache only. As 128MB on the board, there shoud be quite some RAM (>64MB) left for cache.
And set max-cache-object lower, as most objects on the web are rather small. Would suggest 64kb or similar.
by reinerotto
Sat Dec 13, 2014 7:44 pm
Forum: General
Topic: RB951G-2HND bootloop after overwrite firmware
Replies: 46
Views: 19204

Re: RB951G-2HND bootloop after overwrite firmware

Hi, any update on this one ? Looking to buy this RB951Ui-2HnD for openWRT; fortunately I discovered this thread :-)
by reinerotto
Thu Oct 23, 2014 7:03 am
Forum: General
Topic: hiring PHP/mikrotik programmer
Replies: 4
Views: 1442

Re: hiring PHP/mikrotik programmer

Pls contact me at my email, to be found in my profile.
by reinerotto
Thu Oct 02, 2014 10:11 am
Forum: General
Topic: Bandwidth Compression between Mikrotik Routers
Replies: 3
Views: 1125

Re: Bandwidth Compression between Mikrotik Routers

For a serious solution, you should - install local PC+squid cache as a proxy - use some type of ad-blocker (DNS-based) to avoid download of adverts to local PC - install remote PC + compression software (ziproxy) - use remote PC as a parent proxy for local squid Works only for http, but might give y...
by reinerotto
Mon Sep 08, 2014 4:13 pm
Forum: General
Topic: working with MC7710
Replies: 6
Views: 1157

Re: working with MC7710

I use a MC7710 with QMI on a pcengines APU-board, running "voyage", a Debian based LINUX.
Works like a charm.
by reinerotto
Sat Sep 06, 2014 2:18 am
Forum: General
Topic: Walled Garden problems: youtube
Replies: 1
Views: 1065

Re: Walled Garden problems: youtube

There are more domains for youtube videos, at least googlevideo.com to add.
As it might depend upon the region, you are located in, you should use firefox+firebug to see, which domains you have to put into walled garden.
by reinerotto
Sun Aug 24, 2014 8:23 pm
Forum: General
Topic: open-mesh FW on MT equipment ?
Replies: 0
Views: 514

open-mesh FW on MT equipment ?

Did anybody try/succeed in running OM-FW on a Mikrotik AP/router ?
by reinerotto
Sun Aug 17, 2014 7:14 pm
Forum: General
Topic: [Solved [can´t be done]] Proxy and https issues
Replies: 10
Views: 2500

Re: Proxy and https issues

Hi, sorry for the late reply.

So, to summarize, there is no way to achieve this using our router alone.

Is that correct?
Yes.
by reinerotto
Wed Aug 06, 2014 4:36 pm
Forum: General
Topic: [Solved [can´t be done]] Proxy and https issues
Replies: 10
Views: 2500

Re: Proxy and https issues

you mean - add a static entry, and everyone who queries for that name will get set address? No
Too bad. Then to use a (transparent) proxy, doing DNS with dnsmasq, for example.
by reinerotto
Wed Aug 06, 2014 3:51 pm
Forum: General
Topic: [Solved [can´t be done]] Proxy and https issues
Replies: 10
Views: 2500

Re: Proxy and https issues

1) So I don't think I was doing transparent Proxy since I had the browser config in place. 2) - As you mentinoed, I also considered tinkering with DNS but I am not sure I can make mikrotik send bogus DNS responses like facebook=120.0.0.1 1) Correct 2) You should be able to "poison" MTs DNS :-) You ...
by reinerotto
Wed Aug 06, 2014 2:21 pm
Forum: General
Topic: Banner ADS on HotSpot
Replies: 7
Views: 2389

Re: Banner ADS on HotSpot

Please explain more about this?
In production already. However, as it seems to be "A Hot Topic", only contact via email. Look at my profile.
And, it is a commercial solution, not bound to MT. Actually being implemented in USA on Open-Mesh equipment, too.
by reinerotto
Wed Aug 06, 2014 2:10 pm
Forum: General
Topic: [Solved [can´t be done]] Proxy and https issues
Replies: 10
Views: 2500

Re: Proxy and https issues

Hi, I want to block access to certain sites in a work environment (mostly facebook and adult sites). Since there is no domain blocking in the firewall I thought I would use the Proxy feature which does have it, but then I´ve found intermittent problems to access https sites that are not blocked, GM...
by reinerotto
Tue Aug 05, 2014 10:34 am
Forum: General
Topic: Opening an Website Automatically
Replies: 5
Views: 1195

Re: Opening an Website Automatically

Hi Thanks for reply. It may be a Captive Portal, Customer Self-Care or any Website- what I was wondering - can any website be automatically opened, after login by a PPPoE dialer ? It is a common practice in Hotspot but can it be applied to PPPoE dialing as well ? Abhishek Actually, it should, assum...
by reinerotto
Tue Aug 05, 2014 1:15 am
Forum: General
Topic: Opening an Website Automatically
Replies: 5
Views: 1195

Re: Opening an Website Automatically

Any alternate way out ? Abhishek May be, you are talking about a "Captive Portal". This means, instead of the users first requested page, he is redirected to another one. Then, depending upon the page, either this redirected one "replaces" the original page requested, OR automatically redirects aft...
by reinerotto
Fri Jul 25, 2014 11:08 pm
Forum: General
Topic: redirect user to a site after wifi access
Replies: 2
Views: 650

Re: redirect user to a site after wifi access

Add squid as a proxy.
by reinerotto
Sat Jul 19, 2014 2:23 pm
Forum: General
Topic: Ethernet interface Up\Down
Replies: 10
Views: 10933

Re: Ethernet interface Up\Down

A typical reason is "Auto negotiate ON". I even had the case, that the Ethernet-link between two NT-routers of same type went up and down, because they could not always agree upon the link speed to be used. So you might try to set both sides of the links affected to 100MBit, half dplx. And see, what...
by reinerotto
Wed Jul 16, 2014 11:19 pm
Forum: General
Topic: Block Microsoft updates over 3G network
Replies: 9
Views: 1636

Re: Block Microsoft updates over 3G network

I can't ask them to carry allso a server with them.
An APU with internal SSD is only marginally larger than a MT-box. And has the advantage, you can install latest modem drivers.
And you can install internal mSATA-SSD-card, for caching, if you want.
by reinerotto
Wed Jul 16, 2014 10:16 pm
Forum: General
Topic: Block Microsoft updates over 3G network
Replies: 9
Views: 1636

Re: Block Microsoft updates over 3G network

Hi,
The firewall rule L7 works.
But is it also possible to redirect it to an other page?
So I can display to the uses why thy are blocked.
Use a real proxy, like squid. Caching on large disk would be an advantage, anyway.
Which means, not to use MT, but an embedded LINUX box, like ALIX or APU.
by reinerotto
Tue Jul 15, 2014 10:56 pm
Forum: General
Topic: Looking for a suggestion for a x86 SBC for RouterOS
Replies: 10
Views: 2046

Re: Looking for a suggestion for a x86 SBC for RouterOS

www.pcengines.ch
The APU or ALIX boards are very solid. Although better to be run using some kind of LINUX.
by reinerotto
Thu Jul 10, 2014 6:08 pm
Forum: General
Topic: Hotspot: SMS authentication
Replies: 13
Views: 8429

Re: Hotspot: SMS authentication

I am using
hotspotsystems.com
services for AAA via SMS.
The simplest for a start.
by reinerotto
Tue Jul 01, 2014 11:12 pm
Forum: General
Topic: Hotspot login/redirect page without internet
Replies: 27
Views: 14127

Re: Hotspot login/redirect page without internet

that there is something that Mikrotik cannot do Has nothing to do with MT. In case, there is no DNS entry in browsers or clients PC DNS-cache, the proposed solution will work, as there has to be a DNS request, immediately going to your no-connection-page. In case, user just navigates to another pag...
by reinerotto
Tue Jul 01, 2014 10:07 pm
Forum: General
Topic: Hotspot login/redirect page without internet
Replies: 27
Views: 14127

Re: Hotspot login/redirect page without internet

the browser tries to browse anything on first attemtp it gets page not found 404 error and on the second it gets the "Sorry internet not available" So it looks like it can be done, please give me a suggestion on how to get it on the first try to browse. Do not believe, this can be done reliably: Th...
by reinerotto
Mon Jun 30, 2014 3:29 pm
Forum: General
Topic: GRE Sequencing
Replies: 1
Views: 602

Re: GRE Sequencing

AFAIK, a sequence is optional, but has to be "signalled" in GRE-header: S, Sequence Number present. 1 bit. If set then the Sequence Number field is present and contains valid information. Otherwise, sequencing is also done on the TCP/IP-layer, wrapping GRE. So within GRE, is seems to be redundant, u...
by reinerotto
Fri Jun 27, 2014 1:35 am
Forum: General
Topic: Q About Block Sites
Replies: 3
Views: 517

Re: Q About Block Sites

I have a special proxy in USA, to allow access for German users to blocked videos on youtube. Access for Germans only, as the proxy is sponsored by injected ads, targeted to Germany only. In case, you have multiple clients, you can set up such a solution yourself. Or pay me :-) In case of many users...
by reinerotto
Tue Jun 24, 2014 11:57 pm
Forum: General
Topic: ROS 5.26 Web Proxy problem
Replies: 1
Views: 1344

Re: ROS 5.26 Web Proxy problem

You might consider implementing a dedicated cache machine, running squid, for example. Might even cache videos.
by reinerotto
Sun Jun 08, 2014 9:51 pm
Forum: General
Topic: Welcome page on free wifi
Replies: 6
Views: 1933

Re: Welcome page on free wifi

squid
by reinerotto
Fri May 23, 2014 10:50 pm
Forum: General
Topic: Hotspot session info in html overlay
Replies: 8
Views: 1605

Re: Hotspot session info in html overlay

Hello!
Is there a way I could somehow inject a html overlay at the bottom of browser/page,
Matej
Yes; inject into every page visited. This principle is used for ads more often; but will work for your ideaa, too.In case of interest, email to my adrs in profile.
by reinerotto
Sun May 18, 2014 8:10 pm
Forum: General
Topic: Feature Request: Router with USB and SIM Slot
Replies: 5
Views: 1143

Re: Feature Request: Router with USB and SIM Slot

will be costly compare to routerboard
The you should better say: APU has too much power for my requirements :-)
by reinerotto
Sat May 17, 2014 11:38 am
Forum: General
Topic: Feature Request: Router with USB and SIM Slot
Replies: 5
Views: 1143

Re: Feature Request: Router with USB and SIM Slot

will be costly compare to routerboard
Hm, to which routerboard do you compare, CPU-wise ?
by reinerotto
Fri May 16, 2014 11:10 pm
Forum: General
Topic: Feature Request: Router with USB and SIM Slot
Replies: 5
Views: 1143

Re: Feature Request: Router with USB and SIM Slot

pcengines.ch, APU: 3 ports, SIM slot.
by reinerotto
Wed May 14, 2014 9:24 am
Forum: General
Topic: private messages..
Replies: 2
Views: 395

Re: private messages..

I'm not authorised to send private messages.

How can I get permission?

Thanks
You might vote up this issue here
http://forum.mikrotik.com/viewtopic.php?f=2&t=75436

Alternative: Publish a special email-adrs in your profile. Like I do.
by reinerotto
Tue May 13, 2014 1:48 pm
Forum: General
Topic: Redirect users to other sites
Replies: 10
Views: 1770

Re: Redirect users to other sites

Hi,
How can I do that in Squid, could you please let me know any instructions do you have?
thank you,
ven
Sorry, this is a MT forum.
by reinerotto
Tue May 13, 2014 1:47 pm
Forum: General
Topic: Block hd videos via proxy or firewall
Replies: 8
Views: 1549

Re: Block hd videos via proxy or firewall

YES, but only to be started with. This URL will be redirected according to your location/requested resolution into something much more complicated. And this will contain "...id=..." specifying the resolution. You should use firebug in firefox to observe. As this is a MT-forum, no more info on this t...
by reinerotto
Tue May 13, 2014 2:38 am
Forum: General
Topic: Block hd videos via proxy or firewall
Replies: 8
Views: 1549

Re: Block hd videos via proxy or firewall

I do not see any "hd" tag in youtube video url
It seems really impossible
Then I give you a hint to do the impossible: Examine "id"
by reinerotto
Tue May 13, 2014 12:24 am
Forum: General
Topic: Block hd videos via proxy or firewall
Replies: 8
Views: 1549

Re: Block hd videos via proxy or firewall

I was wondering if there's a way to block high definition videos such as youtube hd or other websites that offer hd streaming videos. any proxy/firewall rule? No problem regarding youtube-videos when using squid, as yt identifies HD-videos within URL. Only need to set up proper ACL & regex for bloc...
by reinerotto
Mon May 12, 2014 6:53 pm
Forum: General
Topic: Redirect users to other sites
Replies: 10
Views: 1770

Re: Redirect users to other sites

Hi,

I am using Squid Proxy in transparent mode , is that possible to redirect users?

thank you,

ven
Yes.
by reinerotto
Sun May 11, 2014 2:07 pm
Forum: General
Topic: Redirect user without hotspot and authentication
Replies: 9
Views: 951

Re: Redirect user without hotspot and authentication

>On the second case
/ip proxy access
add action=deny dst-host=* redirect-to=www.pay.it<

Same you can do with squid, too, with so-called "ACL", access-control-list.
Assuming, you have edited a "customer_needs_to_pay.lst" text file, containing some kinf of ID, like username, IP, or similar.
by reinerotto
Sun May 11, 2014 11:03 am
Forum: General
Topic: View clients' http requests and traffic
Replies: 45
Views: 7676

Re: View clients' http requests and traffic

You're talking about users redirection? I always thought to use squid as caching server...so it could solve traffic logging & saving I guess First of all caching server, that is correct. But a lot of features besides, like configurable details of traffic logging, and various options to allow redire...
by reinerotto
Sun May 11, 2014 2:26 am
Forum: General
Topic: View clients' http requests and traffic
Replies: 45
Views: 7676

Re: View clients' http requests and traffic

Simplest solution for logging all stuff would be the use of squid as an upstream proxy. will also solve your question regarding "redirection" with "url_rewrite" or "session_control".
by reinerotto
Sat May 10, 2014 3:24 pm
Forum: General
Topic: Redirect users to other sites
Replies: 10
Views: 1770

Re: Redirect users to other sites

You can use opendns to block porn sites and add /ip firewall nat add chain=dstnat protocol=udp dst-port=53 dst-address-type=!local action=redirect to-ports=53 to redirect DNS queries. Is not sufficent. What will be sufficient in this scenario, assuming, access via http(s)+IP is already blocked, too.
by reinerotto
Thu May 08, 2014 9:23 am
Forum: General
Topic: Central Hotspot Deployment
Replies: 1
Views: 477

Re: Central Hotspot Deployment

Hi, as there is no PM allowed, :-(, pls email me at my adrs from profile. Subject: Financing.
by reinerotto
Thu May 01, 2014 9:42 pm
Forum: General
Topic: transparent proxy not working - help!!
Replies: 3
Views: 2483

Re: transparent proxy not working - help!!

The HW-config is not clear to me: You want the MT-box to be used as a hotspot, and to have the squid-machine as upstream proxy ?
by reinerotto
Wed Apr 30, 2014 5:58 pm
Forum: General
Topic: How to redirect to Hotspot login page
Replies: 5
Views: 1799

Re: How to redirect to Hotspot login page

AFAIK a web-server on MT is not possible. You are not the first one to ask for it, though :-) Why don't you do it the opposite way, set up a hotspot, and within the login-page you check the IP. In case, no auth/logon necessary to be done by the client, then do an automatic and silent (hidden) auth t...
by reinerotto
Wed Apr 30, 2014 12:12 pm
Forum: General
Topic: How to redirect to Hotspot login page
Replies: 5
Views: 1799

Re: How to redirect to Hotspot login page

Btw. is it possible to create a new html file something.html and access it somehow?
Not sure, what you are looking for exactly, but this might help you:
http://wiki.mikrotik.com/index.php?oldid=20225
by reinerotto
Tue Apr 29, 2014 2:43 pm
Forum: General
Topic: Selecting hardware for small P2MP+MP area cover installation
Replies: 14
Views: 2726

Re: Selecting hardware for small P2MP+MP area cover installa

@levak:
As PMs are disabled now, pls contact me using my email from profile. Subject: "Financing".
by reinerotto
Tue Apr 29, 2014 1:02 am
Forum: General
Topic: why i cannot private message?
Replies: 12
Views: 1857

Re: why i cannot private message?

We already have enough spam in the public forum, we wouldn't be able to delete all the spammers if we would enable PM
To enable sending of PM for members with a minimum no. of posts should be safeguard.
Reconsider, pls.
by reinerotto
Thu Apr 03, 2014 12:04 pm
Forum: General
Topic: Blocking video streaming or youtube using L7
Replies: 3
Views: 2146

Re: Blocking video streaming or youtube using L7

It works blocking youtube by using L7 protocol using regexp : "www.youtube.com",
At least in Germany and USA, youtube videos are delivered from "*.\.googlevideos\.com" since a few months already.
So try to block this one, too.
by reinerotto
Tue Apr 01, 2014 12:03 am
Forum: General
Topic: RouterOS Development (poll): Bug Elimination vs New Features
Replies: 3
Views: 1789

Re: RouterOS Development (poll): Bug Elimination vs New Feat

It might also be an alternative, to backport bug-fixes to older versions of RoS, to the last mayor versions, at least, if possible. As a very dumb MT-user, I only use MTs hotspot features, so I am happy with RoS 4.x, or even 3.x And I am hesitating to do any upgrade, although there are some glitches...
by reinerotto
Sun Mar 30, 2014 10:17 pm
Forum: General
Topic: Ad Blocking hosts file
Replies: 34
Views: 28598

Re: Ad Blocking hosts file

Use your own DNS-server on a separate LINUX box, with transparent squid cache. Then you convert host.txt to named.conf.local (there is a script to do that) and feed it into your bind9. Your resulting named.conf.local will contain lines like this one: zone "ad-srv.net" { type master; notify no; file ...
by reinerotto
Sun Mar 30, 2014 9:15 am
Forum: General
Topic: Known issues and bugs - a list
Replies: 283
Views: 110931

Re: Known issues and bugs - a list

New issue regarding NAT during close of connection: Pls, refere to this thread.
http://forum.mikrotik.com/viewtopic.php ... 34#p418434
by reinerotto
Sun Mar 30, 2014 9:13 am
Forum: General
Topic: Problem: NAT masquerade is bypassing some packets
Replies: 8
Views: 3025

Re: Problem: NAT masquerade is bypassing some packets

In normal situations this packet bypassing will not affect network operation, but this is not my case: The WAN port of my mikrotik is connected to a Netgear Prosafe SRX5308 router that is load balancing 4 ADSL lines. These frames are confusing this router causing FIN frames to be sent to the wrong ...
by reinerotto
Fri Mar 21, 2014 1:58 pm
Forum: Wireless Networking
Topic: RB951-2n - Wireless range ?
Replies: 1
Views: 1057

RB951-2n - Wireless range ?

I want to install an AP in a large room, about 5mx8m, just to be mounted to one wall, to cover only this room. Is the RB951-2n good enough, regarding its relatively low TX/RX-power ?
(Looking at the low-power RB951-2n, because not to interfere with my neighbours)
by reinerotto
Wed Mar 19, 2014 12:08 pm
Forum: General
Topic: Split proxy for injection of ads ?
Replies: 0
Views: 791

Split proxy for injection of ads ?

Actually I am using RoS-proxy to forward all traffic to a PC, injecting ads to finance my open hotspots. Although my SW on the PC can handle (simply ignore) all the traffic, into which the injection of ads makes no sense, like into .png, .mpg etc., it would lessen the burden onto that PC, and it wou...
by reinerotto
Sat Mar 01, 2014 10:11 am
Forum: General
Topic: 4 WAN load balancing + squid proxy server
Replies: 1
Views: 1395

Re: 4 WAN load balancing + squid proxy server

Pls, be a bit more specific about config: Is MT used ? If YES: How/where ? Or just a PC+squid, with 5 interfaces (LAN + 4 WAN), as an upstream proxy to a MT box ? Standard http/https-proxy only ? (Which means, https is tunneled/not cached) How strict are the requirements regarding equal balacing ? T...
by reinerotto
Sat Mar 01, 2014 4:20 am
Forum: General
Topic: Wireless default protocol setting in ROS needs correction
Replies: 5
Views: 955

Re: Wireless default protocol setting in ROS needs correctio

If you don`t know what the settings really do (like most starters) you might now be dissapointed in a product just because some ill default configs point you in the wrong direction... Applause, applause, applause. Unfortunately, as RoS is more or less LINUX based AFAIK, you are asking for an absolu...
by reinerotto
Wed Jan 29, 2014 12:54 pm
Forum: General
Topic: Squid for caching file hardware requirement?
Replies: 2
Views: 1414

Re: Squid for caching file hardware requirement?

16GB: More is better. Squid stores some info about every cached object in memory. The more RAM available, the more objects squid can handle efficiently. However, there is a max no of objects squid can manage for one cache directory, it uses. Independent upon size of objects. Which then determines th...
by reinerotto
Thu Jan 16, 2014 2:45 pm
Forum: General
Topic: Mikrotik + external Squid proxy
Replies: 11
Views: 81089

Re: Mikrotik + external Squid proxy

In the MT you have to use the Proxy (transparent), and for this MT then to define the squid(SuSE, routing) as parent/upstream proxy. And the squid(Suse) as default gateway. SusE is fine, I have also 11.4 running. No problem. You can generate squid from source, or use a package, which is easier, as i...
by reinerotto
Thu Jan 16, 2014 1:29 pm
Forum: General
Topic: Mikrotik + external Squid proxy
Replies: 11
Views: 81089

Re: Mikrotik + external Squid proxy

1. inserting the squid before the Mikrotik; would it still be able to perform the full capability of caching and full speed delivery of cached objects to users? 2. would i still be able to monitor the squid network with the tail command? Thank you. 1.)Sure. squid will do only the caching of port80-...
by reinerotto
Thu Jan 16, 2014 11:31 am
Forum: General
Topic: Mikrotik + external Squid proxy
Replies: 11
Views: 81089

Re: Mikrotik + external Squid proxy

Like this (explicit upstream proxy for MT). Or to let squid run on your gateway, transparent.
by reinerotto
Thu Jan 16, 2014 10:25 am
Forum: General
Topic: Mikrotik + external Squid proxy
Replies: 11
Views: 81089

Re: Mikrotik + external Squid proxy

Is it really impossible to have a simpler setup: To install the squid-box 172.16.11.2 just in-between the MT-hotspot 10.5.50.1 and gateway. And then use the squid-box as an upstream-proxy for MT-hotspot, which can be explicitly defined there. No need to define proxy in hotspot-clients, though.
by reinerotto
Tue Jan 07, 2014 3:11 pm
Forum: General
Topic: How i block google or other ads
Replies: 10
Views: 8916

Re: How i block google or other ads

In case, MTs DNS is flexible enough, and you are happy with "brutal" blockage of ads, you can create something like this: ...... zone "pagead2.googleadservices.com" { type master; notify no; file "/etc/null_zone"; }; zone "www.google-analytics.com" { type master; notify no; file "/etc/null_zone"; };...
by reinerotto
Mon Jan 06, 2014 10:39 pm
Forum: General
Topic: can we redirect only video to squid cache ?
Replies: 10
Views: 3235

Re: can we redirect only video to squid cache ?

Instead of youtube.com you must use "googlevideo.com" to handle the videos, at least in my geogr. area. In case, you do not succeed with your MT-setup, consider to route all traffic to your 1'st squid, and then use special ACLs to forward (youtube.com|googlevideo.com) to 2'nd squid, acting as upstre...
by reinerotto
Mon Jan 06, 2014 4:31 pm
Forum: General
Topic: Web Proxy Best Practise
Replies: 3
Views: 1856

Re: Web Proxy Best Practise

Using MT or squid will also depend upon - number of clients: squid can be easily configured for high loads/many users - user preferences: In case of mostly caching html etc. MT might be good enough. In case of caching large files (videos) squid is much more capable to do that Expecting inceasing num...
by reinerotto
Sun Sep 29, 2013 10:14 am
Forum: Wireless Networking
Topic: WISP from satalite modem
Replies: 2
Views: 783

Re: WISP from satalite modem

Just because of curiosity: I have a running proxy, which I set up a couple of years ago to speed up my internet access via fixed lines, when working abroad. Speed up is accomplished using 3 methods, reducing necessary bandwidth drastically: Removal of ads in the proxy, reduction of graphics quality ...
by reinerotto
Sun Sep 29, 2013 9:46 am
Forum: General
Topic: working youtube cache (free version)
Replies: 2
Views: 761

Re: working youtube cache (free version)

Yes, there is. However, I really doubt, that anybody, who spent quite some time in adapting it to the varying protocols of youtube, would make it available to the public free of charge. Which would also mean, that the chance of a new change at youtube would become much higher, for the one, having a ...
by reinerotto
Sun Aug 11, 2013 11:52 pm
Forum: General
Topic: Mikrotik + external Squid proxy
Replies: 11
Views: 81089

Re: Mikrotik + external Squid proxy

Only being an amateur regarding MT, but having several complicated squids up and running as (caching-)proxies, I would keep your config as simple as possible. Reason is, that squid should work as a transparent proxy in your config. The setup for this, which is not the standard, is different between ...
by reinerotto
Tue Jul 30, 2013 12:15 pm
Forum: General
Topic: Need help to redirect youtube website to a specific WAN
Replies: 4
Views: 1010

Re: Need help to redirect youtube website to a specific WAN

Should be possible using an intermediate squid-proxy.
And setting up correct ACLs, to forward all youtube traffic to specific interface.
by reinerotto
Thu Jun 20, 2013 11:50 pm
Forum: Wireless Networking
Topic: HotSpot. injecting js, and dynamic dns name
Replies: 3
Views: 1294

Re: HotSpot. injecting js, and dynamic dns name

Not free of charge, because a lot of work (German engineering). I am looking for commercial international partners ; not MT-specific.
by reinerotto
Thu Jun 20, 2013 12:28 pm
Forum: Wireless Networking
Topic: HotSpot. injecting js, and dynamic dns name
Replies: 3
Views: 1294

Re: HotSpot. injecting js, and dynamic dns name

>How i can injecting javascript file to http traffic for showing ads.<

Mail me at
augustus_meyer@yahoo.de

I have a solution, in production already in European country. More partners welcome.
by reinerotto
Thu Jun 20, 2013 12:17 pm
Forum: Beginner Basics
Topic: HOTSPOT - issues with secure web pages.
Replies: 22
Views: 12553

Re: HOTSPOT - issues with secure web pages.

In case of access to https://google.com only there is a DNS-based, special solution on LINUX. However, do not know about
the chance to do the same on RoS.

@server8:
Pls, mail me at augustus_meyer@yahoo.de because of some commercial coop.
by reinerotto
Sun Jun 02, 2013 12:45 pm
Forum: General
Topic: DDOS Attack, Need some input from the Pros!
Replies: 5
Views: 2001

Re: DDOS Attack, Need some input from the Pros!

Only managed to defend this attack using IPCop (linux distribution)
Pls, give some details about IPcop's config. May be, I can adapt it to iptables/ubuntu, which I use as an upstream proxy for my MT's.
by reinerotto
Thu May 02, 2013 12:57 pm
Forum: General
Topic: Block this virus using layer7?
Replies: 2
Views: 1115

Re: Block this virus using layer7?

>I put just "function bredir" but nothing.< Strange. Question is, whether this EXACTLY is the string on layer7. In case, a html-page is split into 2 TCP-packets, does layer7 filtering still match ? Another idea: /bredir\(.*top != self\)\ {/ However, I do not know, if L7-filter spans such a number of...
by reinerotto
Tue Apr 30, 2013 3:29 pm
Forum: General
Topic: Web Proxy for small network
Replies: 36
Views: 8466

Re: Web Proxy for small network

I have put countless number of hours in just getting ip-tables configuration to stay permanent after reboot of ubuntu I am wondering, why you had to fiddle around with iptables etc. I connected a MT-box to a squid-PC simply by defining the squid-PC to be an upstream (parent) proxy to the MT-proxy. ...
by reinerotto
Sat Apr 27, 2013 9:41 am
Forum: General
Topic: Web Proxy for small network
Replies: 36
Views: 8466

Re: Web Proxy for small network

@dotnet: >New user can not properly setup & maintaince squid-proxy-cache.< Users, new to Mikrotik, also can not properly set up a cache on MT :-) But, in principle you are correct, that setting up mikrotik proxy is simpler compared to squid. So for very small networks, MT proxy/cache can be good eno...
by reinerotto
Fri Apr 26, 2013 4:36 pm
Forum: General
Topic: Web Proxy for small network
Replies: 36
Views: 8466

Re: Web Proxy for small network

Same HW config would result in a more capable squid-proxy-cache. As there is the opportunity to cache videos, for example. Or to improove disk-IO using aufs.
by reinerotto
Sat Apr 20, 2013 1:01 am
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

>So, any ranged request involves fetching the entire file, even if it will never be requested again. That's lame, hehe.< Yes. However, I do not consider it a serious disadvantage. In case, rest of file is not requested, sooner or lter it will be evicted from cache. Otherwise, the requested bytes are...
by reinerotto
Sat Apr 20, 2013 12:54 am
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

If you like, we could start a thread in http://www.overnix.com, which is our official support forum, there i can answer your doubts without being afraid of breaking rules here with MK guys (although i sure must had done it already :( ). Good idea. Would like to continue the discussion :-) May be, y...
by reinerotto
Fri Apr 19, 2013 10:22 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

As we are a bit off the mikrotik track here, I have to make it short: > It has 6 days running, about 400 thousand objects and is now at 29,64% link saving and rising :).< My squid has only space for 200.000 objects; 26.6% bytehit yesterday. However, I expect this to improove, because just got an ide...
by reinerotto
Fri Apr 19, 2013 6:53 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

Interesting response. Hopefully, not to be deleted. Some comments: - >If you want to cache "dynamic" content, you'll have to wirte an url rewriter, < Yes, you need rewriters with squid. Otherwise, to rely on any type of DB for indexing the cached objects, generates a performance hit. - >That allows ...
by reinerotto
Thu Apr 18, 2013 11:11 am
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

I am seriuosly questioning, whether cacheMARA is so much better compared to squid. Assuming identical HW-resources, of course. However, it needs some tweaking and tailoring of the squid installation according to the workload. Only deficit I see here is, that squid is not able to do caching of torren...
by reinerotto
Thu Apr 18, 2013 11:11 am
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

I am seriuosly questioning, whether cacheMARA is so much better compared to squid. Assuming identical HW-resources, of course. However, it needs some tweaking and tailoring of the squid installation according to the workload. Only deficit I see here is, that squid is not able to do caching of torren...
by reinerotto
Mon Apr 15, 2013 2:16 pm
Forum: General
Topic: How to develop/install custom SW for/on RouterOS ?
Replies: 2
Views: 654

How to develop/install custom SW for/on RouterOS ?

Actually I am using ALIX/Voyage for custom hotspots. So the OS is Debian based.
Is there any realistic chance to port my custom SW, developed for Debian, to RoS, assuming, the problem of doing a cross compile can be solved, as the ALIX is x386-based ?
by reinerotto
Mon Apr 01, 2013 12:47 am
Forum: General
Topic: Detecting file type on http requests
Replies: 1
Views: 312

Re: Detecting file type on http requests

Can be done with additional LINUX+squid.
by reinerotto
Tue Mar 19, 2013 5:01 pm
Forum: General
Topic: Thundercache
Replies: 20
Views: 8753

Re: Thundercache

Only for youtube. Because in my country, netflix can (officially) not be rxed, anyway.

Mail me at my public pseudo adrs augustus_meyerATyahoo.de
by reinerotto
Tue Mar 19, 2013 1:55 pm
Forum: General
Topic: Thundercache
Replies: 20
Views: 8753

Re: Thundercache

Youtube caching gives me about 20% of HITs. When you've slow connections, it's great.
(
I have a squid-based, self-made solution for youtube videos. Gives me about 30%-35% daily byte-hitrate, having about 20GB/day youtube traffic (incl. cached data), using 4TB of disk space.
by reinerotto
Mon Mar 18, 2013 10:58 pm
Forum: General
Topic: Hotspot redirect does not work when initiating a "HTTPS" URL
Replies: 7
Views: 5317

Re: Hotspot redirect does not work when initiating a "HTTPS"

There MIGHT be a solution for google, at least on LINUX it can be done. Question only: Is it possible on MT, too ? The key is the possibility to force the search to be completed NOT using https. This was introduced by google, to have a chance to block smart guys at school to search for "hot" web pag...
by reinerotto
Mon Mar 18, 2013 2:01 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

But I assure you that you wont see more than %35 bandwidth savings from Cachemara.
Thanx for sharing the info. That means, it does not beat my "self-made" solution for squid/youtube regarding bandwidth-savings.
Good to know :-)
by reinerotto
Mon Mar 18, 2013 12:26 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

Your thinking is correct. I found it after some more searching. However, the src is hidden, so I can not compare, and I do not want to do the complex setup in a lab for benchmarking. So I still consider my "German Engineering" to be superior, until somebody will give some performance info using Thun...
by reinerotto
Sat Mar 16, 2013 7:41 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

I could only look at the version from sourceforge, which is dated 11.3.2009
by reinerotto
Fri Mar 15, 2013 4:04 pm
Forum: General
Topic: CacheMARA
Replies: 34
Views: 11980

Re: CacheMARA

Regarding youtube, at least: Should not be difficult to be much more effective than Thundercache. That code seems to be quite outdated. Youtube did several changes, not properly taken care of in Thundercache. I have a special squid-setup to cache youtube videos: Between 30% and 35% daily byte-hitrat...
by reinerotto
Fri Mar 15, 2013 1:27 am
Forum: General
Topic: zph with squid + videocache > behind mikrotik
Replies: 1
Views: 642

Re: zph with squid + videocache > behind mikrotik

i installed videocache helper for squid lately , to cache youtube and other 13 video sites .. again everything is working perfectly .. Sorry, off topic, but I am just curious: What is the byte-hitrate for the video cache, and how large are the caching disks ? (I have squid2.7, self-made rewriter, o...
by reinerotto
Tue Mar 12, 2013 10:19 am
Forum: General
Topic: Load Balancing, how can I add a squid server?
Replies: 7
Views: 3022

Re: Load Balancing, how can I add a squid server?

It is always a bit risky to rely on second-hand advice. Setting up working transparent squid is a bit problematic. Have a look at the info from the authors of squid regarding this feature: http://wiki.squid-cache.org/ConfigExamples/Intercept/IptablesPolicyRoute And http://wiki.squid-cache.org/Config...
by reinerotto
Mon Mar 11, 2013 11:26 pm
Forum: General
Topic: Load Balancing, how can I add a squid server?
Replies: 7
Views: 3022

Re: Load Balancing, how can I add a squid server?

http://aacable.wordpress.com/2011/12/30/howto-add-squid-mikrotik-short-reference-guide/ Sorry, I do not see any info in the link, so I only can tell, how I would have done it. First config, to start with, to keep it simple: Squid to be put into one dedicated PC with eth0 and eth1. eth0: to your LAN...
by reinerotto
Sun Mar 10, 2013 9:15 pm
Forum: General
Topic: Load Balancing, how can I add a squid server?
Replies: 7
Views: 3022

Re: Load Balancing, how can I add a squid server?

Sorry, I do not understand your Setup. "Load balancing" ... you have 4 WAN (Internet lines), to be balanced, for 1 LAN ? Or, 4xLAN, 1 WAN (Internet Connection), into which squid has to be inserted ? And, do you use squid in a transparent Setup (bit tricky), or as an explicit upstream proxy, which is...
by reinerotto
Tue Feb 19, 2013 10:13 am
Forum: General
Topic: Forward only youtube traffic with user with public IP addres
Replies: 14
Views: 16523

Re: Forward only youtube traffic with user with public IP ad

It will be simpler, and much more reliable, to use a proxy, like squid. Then you can direct all traffic containing youtube.com to a dedicated interface, which must be on the squid box, of course. Fiddling around with all the different youtube IPs will be a pain, especially, because google plays some...
by reinerotto
Tue Jan 22, 2013 6:54 pm
Forum: Wireless Networking
Topic: Asking for Coop with Wireless-ISPs and Hotspot-Owners
Replies: 1
Views: 633

Asking for Coop with Wireless-ISPs and Hotspot-Owners

Hi, I have a software suite to be used with MT Hotspots, which allow you simple on-the-fly modification of the pages passing thru. This can be used to inject your own Ads, for instance, to advertise "The Special of the Day" in case of a hotspot in a bar, or the "Pizza of the Day", for example. Wheth...
by reinerotto
Wed Aug 03, 2011 9:07 am
Forum: Beginner Basics
Topic: stealing ad spaces
Replies: 13
Views: 2211

Re: stealing ad spaces

Post your mail so we can meet with the price :) You can mail me using my public adrs to avoid too much spam: augustus_meyer@yahoo.de screenshots were from a short demo video, which I prepared already sometime ago, when it was still a bit less than perfect :-) Anyway: Link to video: https://rapidsha...
by reinerotto
Tue Aug 02, 2011 9:47 pm
Forum: Beginner Basics
Topic: stealing ad spaces
Replies: 13
Views: 2211

Re: stealing ad spaces

The solution using squid is a good and simple one. Howeve, it has its limitations. Being an old German engineer, destined for perfection, I was developing for quite some time a far more flexible and efficient method, which now is ready for the market. Have a look at the possibilities: Shot 1 shows a...
by reinerotto
Fri Jul 29, 2011 9:43 am
Forum: General
Topic: Remote logging with rsyslog
Replies: 6
Views: 3271

Re: Remote logging with rsyslog

Hi,

you might support my request for including "Identity" into the remote log message. To have some clue at least, from where the log message originates, especially in case of dynamic IP.
http://forum.mikrotik.com/viewtopic.php ... it=logging
by reinerotto
Thu Jul 28, 2011 10:16 pm
Forum: General
Topic: How to trace down spontaneous reboots ?
Replies: 9
Views: 1969

Re: How to trace down spontaneous reboots ?

I'm pretty pragmatic this way, but I'd just hook up a computer to the serial port, and use a terminal program that allows you to log sessions to file. That'll catch everything happening at the time, including the boot process. Sorry, I do not understand, what you mean. Will not show more than the l...
by reinerotto
Thu Jul 28, 2011 10:07 pm
Forum: General
Topic: How to trace down spontaneous reboots ?
Replies: 9
Views: 1969

Re: How to trace down spontaneous reboots ?

/log print entries show reason for reboot.
Got one reboot. And what does log print say ?

"01:00:20 system,error,critical router was rebooted without proper shutdown (cause 1)"

Is that good enough for you to have an idea about the real cause ?
by reinerotto
Wed Jul 27, 2011 11:43 pm
Forum: General
Topic: How to trace down spontaneous reboots ?
Replies: 9
Views: 1969

Re: How to trace down spontaneous reboots ?

/log print entries show reason for reboot.
Actually, I used remote logging. No info about reason of spontaneous boot, which might be understandable.
So, which logging (error, critical ?) to set to "disk", to get reason of spontaneous boot later on ? I assume, "memory" will not be good enough.
by reinerotto
Wed Jul 27, 2011 10:30 am
Forum: General
Topic: How to trace down spontaneous reboots ?
Replies: 9
Views: 1969

How to trace down spontaneous reboots ?

I have upgraded my hotspot (411AR) from 4.12 to 5.5. Now I am having spontaneous reboots. It looks lilke they occure, when a download is started, via BT for instance. So it might be connected with a sudden peak in download traffic. Until now I have no limitations on traffic implemented, no queues. A...
by reinerotto
Wed Jul 27, 2011 10:15 am
Forum: General
Topic: Banner ADS on HotSpot
Replies: 7
Views: 2389

Re: Banner ADS on HotSpot

Hi,

I actually have something like you want, just preparing it for the market. But a proxy is MUST. Contact me with private message, if interested in details.
by reinerotto
Mon Jul 25, 2011 10:56 am
Forum: General
Topic: hotspot - inactive dhcp leases can deplete the pool of adrs
Replies: 3
Views: 5023

Re: hotspot - inactive dhcp leases can deplete the pool of a

@fewi: Thanx for clarification. Looks like the disconnects of "legal users" are the result of spurious automatic reboots of the MT-box. But that is another issue.

I reduced the lease-time to 30 sec., and it works.
by reinerotto
Sun Jul 24, 2011 6:32 pm
Forum: General
Topic: hotspot - inactive dhcp leases can deplete the pool of adrs
Replies: 3
Views: 5023

hotspot - inactive dhcp leases can deplete the pool of adrs

Hi, I have a hotspot, which requires login, controlled by the user manager. However, I can observe, that many non-authorized users (bad guys ??) receive an IP adrs from the pool, which creates the danger of depleting the pool of available adrs, I guess. Which opens the door for a DoS-attack. I do no...
by reinerotto
Fri Jul 15, 2011 5:29 pm
Forum: General
Topic: Remote logging: Request for simple improovement
Replies: 5
Views: 1400

Re: Remote logging: Request for simple improovement

Addition:
To have "Identity" in the remote log messages, enables syslog-ng on the logging server to directly route the logs from different MT-boxes to different files. As long as "Identity" is unique :-)
Confirmations from other users for my request welcome !
by reinerotto
Wed Jul 13, 2011 10:25 pm
Forum: General
Topic: Remote logging: Request for simple improovement
Replies: 5
Views: 1400

Re: Remote logging: Request for simple improovement

Maybe adding prefix to topics you are logging remotely would solve your problem? In case, you mean "Identity topics ..." in the log message, YES, that would be a good compromise. So, then instead of Jul 13 19:28:29 1.2.3.4 wireless,info WiFi: data from unknown device .... I would see Jul 13 19:28:2...
by reinerotto
Wed Jul 13, 2011 10:55 am
Forum: General
Topic: Remote logging: Request for simple improovement
Replies: 5
Views: 1400

Remote logging: Request for simple improovement

It would be very helpful, in case "logging remote" would prefix all messages text with the "Identity" of the MT-box. To make it simple, to differentiate the logs from various clients. Actually, either the IP is logged, or the user of the domain name, the MT-box is connected thru to the internet. In ...
by reinerotto
Tue Jul 12, 2011 5:42 pm
Forum: General
Topic: remote logging: Hostname/Identity ?
Replies: 2
Views: 943

Re: remote logging: Hostname/Identity ?

No. I did manual "Reverse DNS" for the IP of the MT-box, and found out, that "reinerotto" is the user name, the MT-Box uses to log in to the ISP. Situation improoved, now I have the IP at least: Jul 12 16:32:40 xxx.yyy.zzz.123 system,info,account user admin logged out The trick is in syslog-ng.conf:...
by reinerotto
Tue Jul 12, 2011 3:19 pm
Forum: General
Topic: remote logging: Hostname/Identity ?
Replies: 2
Views: 943

remote logging: Hostname/Identity ?

I started using remote logging, non-BSD style, from ROS 5.5 to a Linux server running syslog-ng. In principal, it works, however, I am missing the identification/source/hostname/Identity of the log messages. For instance, I see on my LINUX in /var/log/messages: Jul 12 14:07:08 reinerotto system,info...
by reinerotto
Tue May 10, 2011 1:16 pm
Forum: General
Topic: how block connection of p2p?
Replies: 291
Views: 153584

Re: how block connection of p2p?

Why would it affect other users if you have normal QoS set up? If one guy has 1Mbit, let him use it however he wants, even if it's all 1Mbit with P2P other users will not be affected. There are legal problems here in Germany for prof. services "tolerating" violation of copyrights. Or, in other word...
by reinerotto
Tue Apr 26, 2011 12:34 am
Forum: General
Topic: how block connection of p2p?
Replies: 291
Views: 153584

Re: how block connection of p2p?

Why would it affect other users if you have normal QoS set up? If one guy has 1Mbit, let him use it however he wants, even if it's all 1Mbit with P2P other users will not be affected. There are legal problems here in Germany for prof. services "tolerating" violation of copyrights. Or, in other word...
by reinerotto
Mon Apr 04, 2011 12:51 am
Forum: General
Topic: Add a toolbar to client's web browser???
Replies: 16
Views: 2708

Re: Add a toolbar to client's web browser???

Hi, I have some software, which I am using to add my own advertisements into the displayed pages. (actually I am doing banners and layered ads, but in principle other types are also possible) But my SW does not run on RoS, an upstream proxy has to be used. I never thought of adding a toolbar, but in...
by reinerotto
Thu Aug 26, 2010 12:19 pm
Forum: General
Topic: How To: Hotspot + routed internet on Eth_2
Replies: 3
Views: 1193

Re: How To: Hotspot + routed internet on Eth_2

Sorry, looks like it works like stated. HW-problem :-)
by reinerotto
Thu Aug 26, 2010 11:47 am
Forum: General
Topic: How To: Hotspot + routed internet on Eth_2
Replies: 3
Views: 1193

How To: Hotspot + routed internet on Eth_2

I have a RB433 running RoS 4.11 and completely configured a working HotSpot using standard MT-setup, plus a few more firewall-rules to secure the remote access to the RB. Now I want to add another (switched) network on another Ethernet-Interface with NAT, to access the Internet for gaming. How to mo...
by reinerotto
Mon Jul 05, 2010 5:56 pm
Forum: General
Topic: MT-Hotspot behind non-MT router/switch
Replies: 1
Views: 503

MT-Hotspot behind non-MT router/switch

Is it possible to set up a standard MT-hotspot after an upstream router/switch combo ?
So, instead having a direct PPPoE-connection to the internet, it would be a connection to a switch, then to a router (with NAT) and finally the web.
by reinerotto
Sat Jul 03, 2010 8:08 pm
Forum: General
Topic: Script problem
Replies: 2
Views: 514

Re: Script problem

Hi all I'm new in scripts and i want to explain something I need to save one interface throughput in a global variable called X. I can do this already :D but I need to send an e-mail (I can do this too), but i need to send the value of X in the body of e-mail or maybe in a file or something, can so...
by reinerotto
Thu May 20, 2010 11:02 am
Forum: Beginner Basics
Topic: Help
Replies: 6
Views: 2116

Re: Help

Hi, sergejs: I think, all the offered solutions are not user friendly enough for a public/free hotspot. And they interfere with the standard hotspot-setup of RoS. So installation is not easy. I would appreciate a "99%" solution, easy to be used together with default MT hotspot setup. May be, we can ...
by reinerotto
Wed May 19, 2010 3:05 pm
Forum: Beginner Basics
Topic: Hotpot
Replies: 2
Views: 664

Re: Hotpot

Hi i have recently purchased Router board 1000 and would like to use it as a Hotspot gateway. I am looking at consultants who can set it up. Hi, where are you located ? I'm German. I could do it for you also remotely. And in case, you use "Advertising", I could tell you some special tricks. Mail me...
by reinerotto
Wed May 19, 2010 2:59 pm
Forum: Beginner Basics
Topic: Help
Replies: 6
Views: 2116

Re: Help

Looks like I have the same problem with "Netcut" on my payed hotspot (Standard MT-hotspot), but only from time to time. However, now I am asked to implement several FREE hotpots on an university campus. Actually I am afraid of it, because of the chance to attract a crowd of "netcutters" from the sma...
by reinerotto
Fri Mar 26, 2010 7:52 pm
Forum: General
Topic: Update 4.4 -> 4.6 on RB411: HOWTO ?
Replies: 2
Views: 2602

Update 4.4 -> 4.6 on RB411: HOWTO ?

According to http://wiki.mikrotik.com/wiki/Upgrading_RouterOS it should be sufficient, to copy the combined package to the files window on my RB411. Did not work. After copying and reboot, no update done. Then I did an unzip of the combined package on my PC, and copied the folder (incl. files) to th...
by reinerotto
Tue Mar 23, 2010 6:18 pm
Forum: Forwarding Protocols
Topic: HOWTO: Manually correct wrong routing ?
Replies: 4
Views: 1443

Re: HOWTO: Manually correct wrong routing ?

Any "Guru" out there who can give me a hand regarding this problem ? The point is, I can not easily change the ISP, because in fact I have rent a root server, from which I can not reach vkontakte.ru, and the technical support of the owner of the server states, that this is not their problem, I shoul...
by reinerotto
Sun Mar 21, 2010 1:18 pm
Forum: RouterBOARD hardware
Topic: Inexpensive Starter Core Router?
Replies: 7
Views: 1615

Re: Inexpensive Starter Core Router?

If you're looking to use proxy research first if RouterOS proxy is adequate to your needs. RouterOS proxy is very rudimentary. Gotcha, I've noticed you can embed Squid on the RB450G using Metarouter. http://www.tiktube.com/?video=300 fast forward to 11:30 of this presentation Unfortunately, Metarou...
  • 1
  • 2