Community discussions

Search found 181 matches

by ojsa
Sat Dec 20, 2014 11:38 pm
Forum: General
Topic: simple capsman feature request..
Replies: 7
Views: 2185

Re: simple capsman feature request..

Comments are already in Registration Table. Add device with comment to Access List and Registration Table will show it. It works from version 6.16/6.17. No not under Capsman registration table, under traditional wireless yes, but not under the capsman registration table. So, my question or request ...
by ojsa
Mon Oct 13, 2014 1:28 pm
Forum: Beginner Basics
Topic: 802.1q trunk - two VLAN's working, one not
Replies: 3
Views: 1562

Re: 802.1q trunk - two VLAN's working, one not

And be aware of the "native vlan" in cisco, that is set to vlan 1 default. Change it to something else og try another vlan instead of 1.

But try the other suggestions before.
by ojsa
Mon Oct 13, 2014 1:25 pm
Forum: Beginner Basics
Topic: 802.1q trunk - two VLAN's working, one not
Replies: 3
Views: 1562

Re: 802.1q trunk - two VLAN's working, one not

Or this page, http://wiki.mikrotik.com/wiki/Manual:Sw ... p_Features

With this on your trunk ports against cisco,
set ether5 vlan-mode=secure vlan-header=add-if-missing
by ojsa
Mon Oct 13, 2014 1:23 pm
Forum: Beginner Basics
Topic: 802.1q trunk - two VLAN's working, one not
Replies: 3
Views: 1562

Re: 802.1q trunk - two VLAN's working, one not

Had a look at this page. http://wiki.mikrotik.com/wiki/Manual:CRS_examples ?

The only thing i'm wondering about it the lack of ingress and egress tagging/untagging.

Not sure if that is only functionality on the CRS switchchip, still a suggestion. I don't have a rb450 to test on at the moment.
by ojsa
Sat Sep 13, 2014 12:55 am
Forum: General
Topic: Routerboard RB2011 Fiber link
Replies: 4
Views: 1161

Re: Routerboard RB2011 Fiber link

Try to force speed on one side of the link.
by ojsa
Wed Jul 23, 2014 1:12 am
Forum: General
Topic: simple capsman feature request..
Replies: 7
Views: 2185

simple capsman feature request..

I would love the possibility to add comment to entities under "remote cap","radio" and "registration table".
This would make it a hole lot easier to backtrack users and devices that is all ready known.
by ojsa
Tue Jul 22, 2014 1:16 am
Forum: General
Topic: CAPsMAN auto frequency
Replies: 39
Views: 27385

Re: CAPsMAN auto frequency

Still the same, three different AP select the same channel, all managed by capsman with frequency set to auto.

They all have this "comment", frequency confirmed with network scanner..
;;; managed by CAPsMAN
;;; channel: 2412/20-Ce/gn(30dBm), SSID: teknisk, CAPsMAN forwarding
by ojsa
Mon Jul 21, 2014 2:46 pm
Forum: General
Topic: CAPsMAN auto frequency
Replies: 39
Views: 27385

Re: CAPsMAN auto frequency

Seems strange, but I could switch back to support N later today.
by ojsa
Mon Jul 21, 2014 12:01 am
Forum: General
Topic: CAPsMAN auto frequency
Replies: 39
Views: 27385

Re: CAPsMAN auto frequency

Strange, it seems to select the same channel on all three AP when frequency set to auto. AP2 # managed by CAPsMAN # channel: 2412/20/g(30dBm), SSID: teknisk, CAPsMAN forwarding AP3 # managed by CAPsMAN # channel: 2412/20/g(30dBm), SSID: teknisk, CAPsMAN forwarding AP4 # managed by CAPsMAN # channel:...
by ojsa
Sat Jul 19, 2014 1:17 pm
Forum: General
Topic: Feature request for v7.x
Replies: 269
Views: 63568

Re: Feature request for v7.x

I haven't read all suggestions, but a simple way of filtering the log view on routeros would be nice. A way to only see a curtain PREFIX f.ex from the logfile while its running. in linux something like this. tail -30f /var/log/syslog | grep -i FW-DROP-LOG-PREFIX1 or even better to see several things...
by ojsa
Fri Jul 18, 2014 4:44 pm
Forum: General
Topic: v6.16/v6.17
Replies: 187
Views: 46600

Re: v6.16/v6.17

Changing profiles in quickset you get a warning that you could loose connectivity, no matter what i answer it just pops back to my original quickset profile.

Running Chromes and windows 7.
by ojsa
Fri Jul 18, 2014 4:42 pm
Forum: General
Topic: v6.16/v6.17
Replies: 187
Views: 46600

Re: v6.16/v6.17

Nice feature with this "fast vpn" setup. Is it possible to enable fast and easy from either command prompt or winbox regardless of quickset?
by ojsa
Fri Jul 18, 2014 3:14 pm
Forum: General
Topic: Winbox 3 beta
Replies: 243
Views: 119908

Re: Winbox 3

Export function should export the group that is selected. This way I could export all routers for a customer and send it over.

Seems to export everything as it is now.
by ojsa
Thu Jul 17, 2014 10:41 am
Forum: General
Topic: CAPsMAN auto frequency
Replies: 39
Views: 27385

Re: CAPsMAN auto frequency

Thanks, this is a lifesaver ;-)
by ojsa
Thu Jul 17, 2014 10:36 am
Forum: RouterBOARD hardware
Topic: RB 800 x Switch Cisco Catalyst 3750, POE Problem.
Replies: 6
Views: 3179

Re: RB 800 x Switch Cisco Catalyst 3750, POE Problem.

We moved along and dropped the use of RB800.

When powering with PoE on all our Mikrotik devices we now use http://routerboard.com/RBPOE-CON-HP
by ojsa
Thu Jul 17, 2014 10:31 am
Forum: The User Manager
Topic: I would like to block users (kids) from 23-07 hours?
Replies: 4
Views: 1483

Re: I would like to block users (kids) from 23-07 hours?

Yeah, make a virtual ap, change password on the old ap and connect the kids to the new one.

Then turn of this new virtual ap when you want or make a small script/scheduler to turn it on and off automaticly.

I have one for each kid as well due to the wide range in age.
by ojsa
Sun Dec 08, 2013 4:35 am
Forum: General
Topic: v6.7 released
Replies: 225
Views: 109429

Re: v6.7 released

Upgraded RB333, RB411, RB433*, Omnitik, CCR. RB2011*, SXT and other than my last post about the missing poe upgrade function it seems to work without problems. Even my old dude installation is running like a charm, but I would love to see some development on the dude server soon.? Everything is rout...
by ojsa
Sun Dec 08, 2013 4:05 am
Forum: General
Topic: v6.7 released
Replies: 225
Views: 109429

Re: v6.7 released

6.7 contained new Poe Firmware for devices with Poe-out possibilities, is the "poe-upgrade" future removed?

"/interface ethernet poe settings upgrade" command - does not seem to work..

Is it automaticly.??
by ojsa
Sat Nov 09, 2013 10:49 pm
Forum: General
Topic: serialterminal vs. hyperterminal - 411 and MC7710 GPS
Replies: 14
Views: 3650

Re: serialterminal vs. hyperterminal - 411 and MC7710 GPS

Drivers, windows detect and opens the "second" serialport with gps data automaticly, linux (and ROS) does not. http://opencpn.org/ocpn/setting_up_gps We solved this by using 3g card with the mpci-express slot and a separate gps module on the usb. Now the mobile device is reporting back home every day.
by ojsa
Sat Nov 09, 2013 10:42 pm
Forum: General
Topic: RouterOS 6.6 OpenVPN error - unsupported cipher
Replies: 3
Views: 4429

Re: RouterOS 6.6 OpenVPN error - unsupported cipher

Hi, I upgraded my RouterOS to 6.6 because 6.5 was timing out when trying to import certificates (http://forum.mikrotik.com/viewtopic.php?f=1&t=77998). Device: RB951Ui-2HnD I've created a openvpn interface to my openvpn server, but the interface won't connect. The status bar on top keeps showing: St...
by ojsa
Sat Nov 09, 2013 10:38 pm
Forum: General
Topic: RouterOS v6.6 released
Replies: 164
Views: 72654

Re: RouterOS v6.6 released

BUG REPORT Ros 6.6 Routerboard: 3.10 Platerforme: RB1100AH2 Something has changed about Vlan because when I upgrade from 6.5 to 6.6, I loose Vlan to ethernet. but I found a workaround to stay in 6.6 previous config in 6.5, I have a bridge, vlan30 created on the bridge, ethernet7 in the bridge, so v...
by ojsa
Sat Nov 09, 2013 9:55 pm
Forum: General
Topic: RouterOS v6.6 released
Replies: 164
Views: 72654

Re: RouterOS v6.6 released

BUG REPORT Ros 6.6 Routerboard: 3.10 Platerforme: RB1100AH2 Something has changed about Vlan because when I upgrade from 6.5 to 6.6, I loose Vlan to ethernet. but I found a workaround to stay in 6.6 previous config in 6.5, I have a bridge, vlan30 created on the bridge, ethernet7 in the bridge, so v...
by ojsa
Tue Sep 03, 2013 11:27 pm
Forum: General
Topic: New Packet flow diagram
Replies: 103
Views: 72495

Re: New Packet flow diagram

Is it possible to get this flow chart pictures in SVG or other vectorbased picture format?
by ojsa
Sun May 19, 2013 2:24 pm
Forum: The User Manager
Topic: Import User From active directory or From csv file
Replies: 3
Views: 2950

Re: Import User From active directory or From csv file

http://www.youtube.com/watch?v=YmmObbL24lA for the windows setup on windows server 2012. And under the "radius" setup on mikrotik point it to the ip address on the windows server. Use the same shared secret and open 1812 and 1813 in the firewall for authentification and accounting. You also need to ...
by ojsa
Sun May 19, 2013 1:31 pm
Forum: The User Manager
Topic: Import User From active directory or From csv file
Replies: 3
Views: 2950

Re: Import User From active directory or From csv file

Not sure, but should with a little script magic be possible. But a better solution is to send the radius traffic to AD and its Radius service. Then you can maintaine one userdatabase. If you control this with your a realm f.ex username@ad.ltd for your ad, you should still be able to have users with ...
by ojsa
Sat May 18, 2013 10:49 pm
Forum: Forwarding Protocols
Topic: Difficulties with Omnitik, ether1, mpls and RX/TX too long..
Replies: 1
Views: 1199

Difficulties with Omnitik, ether1, mpls and RX/TX too long..

I manage mpls network with different routerboard hardware, everything workes smoothly exept for interface ether1 on omnitik. It strugles with increasing "RX/TX too long", the mtu size should be good, the sxt and CCR dont complain, even ether2,3,4 and 5 workes nice. Its kind of strange since ether1 s...
by ojsa
Sat Dec 08, 2012 3:28 pm
Forum: General
Topic: MetaRouter failes to start on ROS 6.0RC5 mipsbe
Replies: 0
Views: 622

MetaRouter failes to start on ROS 6.0RC5 mipsbe

I'm unable to make a support.rif file since the process seems to start, but it's never finishing. This is the console window on the metarouter. MikroTik 6.0rc5 MikroTik Login: admin Password: Oops[#1]: Cpu 0 $ 0 : 00000000 00000000 00000000 00000003 $ 4 : 00000000 ffffffff 00000000 c0406b3c $ 8 : 00...
by ojsa
Sat Dec 08, 2012 4:35 am
Forum: General
Topic: Strange ipv6 behavior..
Replies: 0
Views: 514

Strange ipv6 behavior..

I'm trying to establish ipv6 peering with my isp. Earlier today the supplied the link address we should use to connect our routers. I got 2001:8c0:XXX:1::2/64 and they should use 2001:8c0:XXX:1::1/64 when the addresses where added I could not ping the 2001:8c0:XXX:1::1/64 and I tried the other way a...
by ojsa
Fri Nov 09, 2012 5:42 pm
Forum: RouterBOARD hardware
Topic: CLOUD CORE ROUTER
Replies: 1374
Views: 1015419

Re: CLOUD CORE ROUTER

Finally ;-)

Reserved 6 from the first batch to my country. Taking the day
off to meet the trailer when it arrives in about two weeks.

Childish I know, but we are taking about the router of the year ;-)
by ojsa
Wed Aug 01, 2012 12:12 am
Forum: RouterBOARD hardware
Topic: Reflector SXT 25 and Reflector SXT 30
Replies: 38
Views: 15743

Re: Reflector SXT 25 Live Test

Some more info from the field.
Distance 30km speed 10 Mbit
At base station sector antenna + 802.1a equipment.
With ReflectorSXT25 + 10dBi
Image
Why don´t you place the SXT out from the back reflector and point it backwards to the reflector. ??
by ojsa
Wed Aug 01, 2012 12:04 am
Forum: General
Topic: Portforward masking source IP?
Replies: 1
Views: 480

Re: Portforward masking source IP?

use src-nat with action masquerade
by ojsa
Tue Jul 31, 2012 11:38 pm
Forum: Forwarding Protocols
Topic: Problem with routing filters
Replies: 8
Views: 1920

Re: Problem with routing filters

I tried something similar once and ended up with one sentence but with "invert-match" and action "discard" or "reject"

Sorry, but i don´t seem to find back to this example code so give it a go.
by ojsa
Tue Jul 31, 2012 10:38 pm
Forum: General
Topic: HELP, CPU MIKROTIK 100%
Replies: 6
Views: 1374

Re: HELP, CPU MIKROTIK 100%

And it also disabled under resources and queue?
by ojsa
Tue Jul 31, 2012 10:31 pm
Forum: General
Topic: About MIkrotik Queue And Interface Issue
Replies: 1
Views: 408

Re: About MIkrotik Queue And Interface Issue

Do you connect on mac level or on ip level?

Ip is recommended.
by ojsa
Tue Jul 31, 2012 10:28 pm
Forum: General
Topic: Walled garden limiting
Replies: 2
Views: 585

Re: Walled garden limiting

Don´t add anything, or better add everything (or a selected address) with reject?

Please explain a little bit more. ;-)
by ojsa
Tue Jul 31, 2012 10:24 pm
Forum: Beginner Basics
Topic: How to Add More then one type of Network on Mikrotik ?
Replies: 2
Views: 665

Re: How to Add More then one type of Network on Mikrotik ?

Upgrade to a newer software release, i could be so many things with older releases.
Remember to upgrade the routerboard bios after a software upgrade. (/system routerboard upgrade)
by ojsa
Tue Jul 31, 2012 10:21 pm
Forum: Forwarding Protocols
Topic: VPLS destroying
Replies: 1
Views: 1040

Re: VPLS destroying

Look for underlaying problems with the connectivity. Monitor your ip connections, and routing. Increase your log level (/system logging) to f.ex debug and your should get more sensible information in your log files.
by ojsa
Tue Jul 31, 2012 10:18 pm
Forum: RouterBOARD hardware
Topic: Bandwidth Managment
Replies: 1
Views: 1131

Re: Bandwidth Managment

I think point 2 should be removed, at least. You should be routing in between ether1 and ether2, not bridging.
by ojsa
Tue Jul 31, 2012 10:15 pm
Forum: Forwarding Protocols
Topic: BGP session stuck in opensent
Replies: 1
Views: 1915

Re: BGP session stuck in opensent

and the ip connectivity in between is alright?
by ojsa
Tue Jul 31, 2012 10:10 pm
Forum: The User Manager
Topic: Time interval
Replies: 1
Views: 984

Re: Time interval

first you need to add the function "radius incoming" (coa) so your usermanager actuly can disconnect the user after its amount of time or usage. then add a script that runs every night with the command "/tool user-manager user reset-counters username" and the user account should be all right to use ...
by ojsa
Tue Jul 31, 2012 10:03 pm
Forum: Wireless Networking
Topic: IGMP mac on bridge port
Replies: 5
Views: 1023

Re: IGMP mac on bridge port

I´m on deep water after 14 hours of networking today, i anyone else see that this is completely wrong, please correct me.

Do you have and "admin mac" on your bridge, if i remember correctly that is something you have to keep in mind in this senario.
by ojsa
Tue Jul 31, 2012 9:57 pm
Forum: General
Topic: Differenciating download packets to navigations packets
Replies: 1
Views: 356

Re: Differenciating download packets to navigations packets

What you want it to differ downloads less than f.ex 10mb fast and downloads bigger than 10mb slow. Look into burst mode under f.ex simple queue. Add a queue with f.eks 2mb and burst mode with 10mb for 10 seconds, then normal webpages will work like a charm, but bigger downloads will slow down to 2mb...
by ojsa
Tue Jul 31, 2012 9:54 pm
Forum: Beginner Basics
Topic: need help for begginer
Replies: 1
Views: 523

Re: need help for begginer

Add a simple queue for each ip adresse you use within your dhcp pool. ;-) You should look into using dhcp with radius and user manager, then you get the possibility to keep track of the usage and to regulate the bandwidth. But its kind of complicated so start with the simple queue and add graph to y...
by ojsa
Tue Jul 31, 2012 9:48 pm
Forum: Beginner Basics
Topic: How to reach external syslog server (VM + VPN)
Replies: 1
Views: 568

Re: How to reach external syslog server (VM + VPN)

Your config is something like this mikrotik routerboard ether1 connected to ---> virtual management machine --> physical vpn router 1. Could you fill in the ip adresses so I could get the thread. 2. From where do you want to connect (through the vpn from another location?) If you route through vpn a...
by ojsa
Tue Jul 31, 2012 9:37 pm
Forum: General
Topic: How to check services usage in v4.11 450g router
Replies: 1
Views: 342

Re: How to check services usage in v4.11 450g router

Services like;

What services is running (http, telnet, ftp)? ( /system service print )
What processes is running and how much they are using? ( /tools profile print )
What services in point of packages like ipv6 and hotspot? ( /system packages print )

Could you give a few more details?
by ojsa
Fri Jun 01, 2012 11:05 am
Forum: General
Topic: RouterOS v5.17 released
Replies: 47
Views: 16798

Re: RouterOS v5.17 released

Strange thing with "voucher generation" and "reports" under user manager. Downgraded to 5.16 solved the problem. It seems that the report url is something like "http://192.168.31.254/userman?serviceId=UMT.Report" on 5.16 and working, but if I remember correct on 5.17 its more like "http://192.168.31...
by ojsa
Sun Apr 29, 2012 10:53 am
Forum: General
Topic: v5.15 released!
Replies: 150
Views: 29454

Re: v5.15 released!

Seem that my RB1100 also stopped after a while. I'll try to investigate later today, first some gardening.

RB333, RB433, RB433AH, SXT, OMNITIK works fine for me, RB1100 difficult, and my RB800 are not yet upgraded.
by ojsa
Wed Feb 29, 2012 3:58 pm
Forum: General
Topic: Who is coming to the MUM ?
Replies: 21
Views: 4032

Re: Who is coming to the MUM ?

Sending two of my colleges from the main airport in Norway. Had to spend some time with the family, hope your video up-link is working good this year.
by ojsa
Wed Dec 21, 2011 12:57 am
Forum: Beginner Basics
Topic: Need Script to reboot mikrotik ??
Replies: 2
Views: 722

Re: Need Script to reboot mikrotik ??

setup watchdog to ping something stable f.ex a gateway and you will have your solution. ;-)

look at the wiki pages.
by ojsa
Tue Dec 20, 2011 8:10 pm
Forum: Wireless Networking
Topic: Help with 11n link of 32KM
Replies: 12
Views: 2722

Re: Help with 11n link of 32KM

I think Mikrotik will solve your problem with a new wireless radiocard soon.
by ojsa
Wed Dec 14, 2011 10:05 pm
Forum: Beginner Basics
Topic: web acess to router
Replies: 6
Views: 876

Re: web acess to router

Just open incoming port 80 to your static ip from the internet interface. Of course much better if you setup encryption and use port 443.
by ojsa
Wed Dec 14, 2011 9:24 pm
Forum: General
Topic: Please HELP
Replies: 6
Views: 586

Re: Please HELP

Use station wds on client side.

could you also post the content of your wireless settings.
/interface wireless export hide-sensitive
by ojsa
Wed Dec 14, 2011 6:57 pm
Forum: Wireless Networking
Topic: Help with 11n link of 32KM
Replies: 12
Views: 2722

Re: Help with 11n link of 32KM

I have a similar link today, but only with SR5 cards and 40mhz bandwidth. Planing to change this to use R52HN card, RB433 and http://en.jirous.com/antenna-5ghz/jrc-29-dx-pr antennas. http://en.jirous.com/img/obrazky/51bb8a3451730455bee7f92f1c32e7b6.jpg I noticed that the mikrotik card have better no...
by ojsa
Wed Dec 14, 2011 6:33 pm
Forum: General
Topic: Please HELP
Replies: 6
Views: 586

Re: Please HELP

bridge_tagged_side is just a name of an ordinary bridge containing tagged ethernet for vlan - similar to cisco trunk.
The hole config is there, if you use winbox and walk slowly through you should have a full working solution.
by ojsa
Wed Dec 14, 2011 4:34 pm
Forum: General
Topic: Please HELP
Replies: 6
Views: 586

Re: Please HELP

If you add ethernet ports connected to your cisco equipment to "bridge_tagged_side" under bridge ports you should have a working solution.

ref. http://forum.mikrotik.com/viewtopic.php?f=13&t=57492
by ojsa
Wed Dec 14, 2011 3:54 pm
Forum: Forwarding Protocols
Topic: share VPN
Replies: 3
Views: 1534

Re: share VPN

Add a route or a default gw through the vpn and the traffic should pass that way. Could be that you have to nat outgoing on the vpn interface.
by ojsa
Wed Dec 14, 2011 3:49 pm
Forum: Wireless Networking
Topic: 3G with Sierra Wireless MC8790
Replies: 6
Views: 1219

Re: 3G with Sierra Wireless MC8790

I belive i run 5.8 (maybe 5.7) on those routers, since they are operational I have to wait for a service window to upgrade them.
by ojsa
Wed Dec 14, 2011 10:10 am
Forum: Wireless Networking
Topic: IPTV/VOIP over Mikrotik
Replies: 7
Views: 2432

Re: IPTV/VOIP over Mikrotik

You should look into a routed network with use of multicast to avoid wasting more bandwidth if you connect several users.
Tested all those things on the MTCINE course a couple of weeks ago and it was fascinating how the the routers avoid wasting bandwidth.
by ojsa
Wed Dec 14, 2011 10:02 am
Forum: General
Topic: Firewall rules for two seperated networks
Replies: 8
Views: 781

Re: Firewall rules for two seperated networks

The return packets are blocked?

Use some rule abowe this is connection-state set to esablished, your should also add rule for connection-state related and set both of these rules to accept.
You don't need interfaces on these rules since you want your router to accept already checked sessions.
by ojsa
Tue Dec 13, 2011 11:51 pm
Forum: The Dude
Topic: Dude tools
Replies: 2
Views: 1422

Re: Dude tools

Yes, thoose options should be there if you right-click on a managed device.
I will recommend this excellent MUM presentation by Patrik - http://mum.mikrotik.com/presentations/HU11/patrik.pdf
by ojsa
Tue Dec 13, 2011 11:46 pm
Forum: The User Manager
Topic: Hotspots no static IP
Replies: 2
Views: 806

Re: Hotspots no static IP

I haven't tested, but what if you make a "loopback" bridge with no interfaces connected to and add a static privat ip address to it just to have somthing to connect to when using the usermanager / radius.? Everything else could be dynamic...
by ojsa
Sun Dec 11, 2011 1:44 pm
Forum: RouterBOARD hardware
Topic: Power 12v - 18 Amps
Replies: 2
Views: 637

Re: Power 12v - 18 Amps

Put in a fuse to protect your equipment.
by ojsa
Sun Dec 11, 2011 11:46 am
Forum: General
Topic: [help] cache hit with no limit
Replies: 1
Views: 1890

Re: [help] cache hit with no limit

Do you "pick up" the traffic with a dst-nat rule? Something like, /ip firewall nat add action=dst-nat chain=dstnat disabled=no dst-port=80 protocol=tcp \ src-address=192.168.99.0/24 to-addresses=172.16.24.1 to-ports=8080 Where 172.16.24.1 is the proxy and 192.168.88.0/24 is your internal lan.
by ojsa
Sun Dec 11, 2011 10:27 am
Forum: Forwarding Protocols
Topic: MPLS and EOIP tunning, which will be the best for the ERP
Replies: 6
Views: 4104

Re: MPLS and EOIP tunning, which will be the best for the ER

Remember that everything in between on this EOIP link also need to have increased MTU size since you are setting this on the hole EOIP link.
by ojsa
Sun Dec 11, 2011 12:32 am
Forum: Forwarding Protocols
Topic: MPLS and EOIP tunning, which will be the best for the ERP
Replies: 6
Views: 4104

Re: MPLS and EOIP tunning, which will be the best for the ER

I would really recommend mpls rather than eoip. Check http://wiki.mikrotik.com/wiki/Manual:Maximum_Transmission_Unit_on_RouterBoards to check if your unit can handle the increased MTU Refering to this page http://wiki.mikrotik.com/wiki/Manual:Interface/EoIP eoip adds 42 bytes. EoIP tunnel adds at le...
by ojsa
Sun Dec 11, 2011 12:04 am
Forum: General
Topic: How configure RB433UAH with modem USB Huawei E173
Replies: 5
Views: 6094

Re: How configure RB433UAH with modem USB Huawei E173

add PPP interface with details refering to your cellphone provider and connect the PPP to your selected port (port0?)
Could be that you have to add data channel en info channel, but since i don't have this equipment i can not test that.
by ojsa
Sat Dec 10, 2011 11:12 pm
Forum: RouterBOARD hardware
Topic: Whether to update the boot loader files ?
Replies: 1
Views: 575

Re: Whether to update the boot loader files ?

Difficult to say.

I update every time there is a new release ;-)
by ojsa
Sat Dec 10, 2011 10:53 pm
Forum: Beginner Basics
Topic: MikroTik P-To-P configuration
Replies: 4
Views: 1479

Re: MikroTik P-To-P configuration

Start by naming the router. /system identity set name=Router2 Add the bridges you need, this router don't need your private ADSL, only your lan side and customer ADSL. /interface bridge add admin-mac=00:00:00:00:00:00 ageing-time=5m arp=enabled auto-mac=yes comment=\ "All vlan tagges travels here, l...
by ojsa
Sat Dec 10, 2011 10:00 pm
Forum: Beginner Basics
Topic: MikroTik P-To-P configuration
Replies: 4
Views: 1479

Re: MikroTik P-To-P configuration

ok, here it goes, tried to comment all the way.. First name your router /system identity set name=Router1 Add some bridges that vi are going to use. /interface bridge add admin-mac=00:00:00:00:00:00 ageing-time=5m arp=enabled auto-mac=yes comment=\ "All vlan tagges travels here, like a cisco trunk."...
by ojsa
Sat Dec 10, 2011 7:29 pm
Forum: General
Topic: correct pratice to set dial-on-demand pppoe ?
Replies: 2
Views: 865

Re: correct pratice to set dial-on-demand pppoe ?

Yes, seems to be correct.
by ojsa
Sat Dec 10, 2011 5:52 pm
Forum: Forwarding Protocols
Topic: MPLS and EOIP tunning, which will be the best for the ERP
Replies: 6
Views: 4104

Re: MPLS and EOIP tunning, which will be the best for the ER

Since EOIP reduces your MTU on the link you will probably have a lot of fragmentation. MPLS could solve this better, but if you have control over the link in between you could increase the MTU to support full ethernet frame for EOIP as well. Yes, the your routerboard model will support MPLS without ...
by ojsa
Sat Dec 10, 2011 5:46 pm
Forum: General
Topic: How to allow access to blocked site for specific ip ??
Replies: 4
Views: 4212

Re: How to allow access to blocked site for specific ip ??

depend how you blocked it. if you did it in a firewall rule, you could something like this. add action=drop chain=forward disabled=no dst-address=10.11.12.13 \ src-address=!192.168.99.1 This will blocked forwarded all traffic to 10.11.12.13 for all others than 192.168.99.1 Or you add a separate rule...
by ojsa
Sat Dec 10, 2011 5:38 pm
Forum: Beginner Basics
Topic: MikroTik P-To-P configuration
Replies: 4
Views: 1479

Re: MikroTik P-To-P configuration

Something like this? router 1 - management in your lan ether1 - your router ether2 - customer router ether3 - your lan side router2 - management in your lan ether1 - customer setup router1 as AP-Bridge and vlan, assign a bridge to carrier for all tagged vlans, assign vlan to you and your customer, m...
by ojsa
Sat Dec 10, 2011 5:28 pm
Forum: General
Topic: Help to setup routing
Replies: 3
Views: 427

Re: Help to setup routing

your welcome. ;-)
by ojsa
Sat Dec 10, 2011 12:39 pm
Forum: General
Topic: PCQ + Squid + Webproxy
Replies: 3
Views: 1242

Re: PCQ + Squid + Webproxy

2. Use radius in conjunction with dhcp or pppoe, add the users to radius (which will keep track of the data use), add user user to an addresslist and make pcq use that addresslist to shape the users.
by ojsa
Sat Dec 10, 2011 11:26 am
Forum: General
Topic: does disabling Forward but brdging isolate users?
Replies: 10
Views: 1141

Re: does disabling Forward but brdging isolate users?

Mmm.. I haven't tested that. But according to http://mum.mikrotik.com/presentations/US11/workshop-wireless-2011-US.pdf is seems possible, but since your interfaces is added dynamically you could try to press the "copy" button on one of the dynamic WDS interfaces under bridge port and set the horizon...
by ojsa
Sat Dec 10, 2011 10:13 am
Forum: General
Topic: Help to setup routing
Replies: 3
Views: 427

Re: Help to setup routing

Im guessing the ADSL router have a default gw to somthing other than your Mikrotik router.
You could try to add a nat on this port with the destination address of the modem and src as your internal lan.
If this connects correctly, add a static route to your internal lan on your adsl router.
by ojsa
Fri Dec 09, 2011 11:03 pm
Forum: General
Topic: PCQ + Squid + Webproxy
Replies: 3
Views: 1242

Re: PCQ + Squid + Webproxy

3. Because you no longer is routing the traffic through your router, but terminating the traffic to your proxy functionality in the router?
by ojsa
Fri Dec 09, 2011 9:31 pm
Forum: Wireless Networking
Topic: RouterOS reboot when wireless clients connect or hibernat
Replies: 10
Views: 2727

Re: RouterOS reboot when wireless clients connect or hiberna

And you are running current Ros release with updated firmware on the router?
by ojsa
Fri Dec 09, 2011 8:22 pm
Forum: General
Topic: Feature request Option 82 at layer2
Replies: 3
Views: 1664

Re: Feature request Option 82 at layer2

Chupaka got it to work together with radius.

http://forum.mikrotik.com/viewtopic.php ... 43#p166222
by ojsa
Fri Dec 09, 2011 8:16 pm
Forum: General
Topic: VPLS over PPPoE
Replies: 5
Views: 927

Re: VPLS over PPPoE

Could you post relevant config?
by ojsa
Fri Dec 09, 2011 8:13 pm
Forum: Forwarding Protocols
Topic: PPPoE Server over QinQ interface
Replies: 5
Views: 3484

Re: PPPoE Server over QinQ interface

Nice, document it on the wiki page for further reference.
by ojsa
Fri Dec 09, 2011 7:58 pm
Forum: General
Topic: Feature request Option 82 at layer2
Replies: 3
Views: 1664

Re: Feature request Option 82 at layer2

I haven't tried, but it seem to me that they fixed this several years ago in the in the 3.3 release
*) fixed bug - DHCP server did not parse Relay-Agent-Info option 82;
http://www.mikrotik.com/download/CHANGELOG_3
by ojsa
Fri Dec 09, 2011 7:47 pm
Forum: General
Topic: Using more than one VLAN on RB411 or 433 problem
Replies: 1
Views: 383

Re: Using more than one VLAN on RB411 or 433 problem

You can ;-) I run several vlan on the same interface, but i run between Mikrotik routers, and between Mikrotik and Cisco. The only difference it that i add the ethernet to a bridge and the use the bridge as the source for the vlan, this way I could easily extend with another tagged port by adding an...
by ojsa
Fri Dec 09, 2011 7:35 pm
Forum: RouterBOARD hardware
Topic: controlling wireless users
Replies: 3
Views: 796

Re: controlling wireless users

If wlanX with your hotspot have its own ip segment and are not bridged with your other interfaces, then ethX should be invisible to the guest users.

If you used the hotspot wizard to create a guest network it would tight down access to your router from this network.
by ojsa
Fri Dec 09, 2011 7:35 pm
Forum: RouterBOARD hardware
Topic: controlling wireless users
Replies: 3
Views: 796

Re: controlling wireless users

If wlanX with your hotspot have its own ip segment and are not bridged with your other interfaces, then ethX should be invisible to the guest users.

If you used the hotspot wizard to create a guest network it would tight down access to your router from this network.
by ojsa
Thu Dec 08, 2011 11:05 pm
Forum: General
Topic: default search domain name
Replies: 3
Views: 908

Re: default search domain name

on the main routerboard, i don't think so, but the dhcp server could send this information to clients.
by ojsa
Wed Dec 07, 2011 7:49 pm
Forum: Wireless Networking
Topic: How to make nv2 look good
Replies: 5
Views: 1101

Re: How to make nv2 look good

Mangle the icmp packets and respond back in the CE router ;-) The the packet never travels across the link..
by ojsa
Wed Dec 07, 2011 7:47 pm
Forum: Scripting
Topic: Script to check status of parent proxy server, remove if dow
Replies: 2
Views: 824

Re: Script to check status of parent proxy server, remove if

Greg made a smart solution for a customer. He shared it on his blog.

http://gregsowell.com/?p=3329

Maybe that could help you out.
by ojsa
Wed Dec 07, 2011 7:44 pm
Forum: RouterBOARD hardware
Topic: wlan setup
Replies: 3
Views: 602

Re: wlan setup

Its kind of normal to get this throughput if the radio is connected with 54mb but your computer is getting 18mb.

http://en.wikipedia.org/wiki/Comparison ... throughput

Watch the line, 802.11g - and look at the "Typical Downlink throughput" column.
by ojsa
Wed Dec 07, 2011 7:34 pm
Forum: General
Topic: ipv6 and double NATing
Replies: 4
Views: 603

Re: ipv6 and double NATing

Ohh.. to me it seems that your windows have a ::/0 (default route to a fe80..... address, this is a link local address.

http://en.wikipedia.org/wiki/IPv6_addre ... ne_indices

Add a correct default gw and try again.
by ojsa
Wed Dec 07, 2011 12:29 am
Forum: General
Topic: Migrating from Netscreen 100 to RB1100
Replies: 2
Views: 508

Re: Migrating from Netscreen 100 to RB1100

Convert it manually, and check the need for every rule.
Old routers and firewalls have a lot of old fun ;-)
by ojsa
Wed Dec 07, 2011 12:25 am
Forum: General
Topic: Can't connect to winbox or webgui from one pc
Replies: 4
Views: 1014

Re: Can't connect to winbox or webgui from one pc

Since you can ping the routing should be ok.

Have your tried telnet or ssh?
by ojsa
Wed Dec 07, 2011 12:17 am
Forum: General
Topic: vlans
Replies: 1
Views: 366

Re: vlans

Look into the switchchip functionality.

http://wiki.mikrotik.com/wiki/Manual:Sw ... p_Features
by ojsa
Wed Dec 07, 2011 12:04 am
Forum: General
Topic: POE issue suggestion
Replies: 1
Views: 750

Re: POE issue suggestion

Do you mean on the connected ethernet port? What about the cusom led on the SXT, you could code one or several of them to give you information.

http://wiki.mikrotik.com/wiki/Manual:System/LEDS
by ojsa
Wed Dec 07, 2011 12:00 am
Forum: General
Topic: Giving out public IP addresses
Replies: 3
Views: 811

Re: Giving out public IP addresses

Mmm.. you could try "NAT" with action "netmap"

http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT
by ojsa
Tue Dec 06, 2011 11:51 pm
Forum: Beginner Basics
Topic: connection problems after first install
Replies: 4
Views: 628

Re: connection problems after first install

Change "out-interface" in the sentence below and paste it in terminal window.

/ip firewall nat
add action=masquerade chain=srcnat disabled=no out-interface=out-interface

The routing depends if you have pppoe, dhcp or static configured wan link.
by ojsa
Tue Dec 06, 2011 11:45 pm
Forum: Beginner Basics
Topic: Port forwarding using WebfigV5.2
Replies: 2
Views: 956

Re: Port forwarding using WebfigV5.2

The screenshot in webfig was to long. You can get the commandline from me and guess the rest ;-) Here is a rule to connect with telnet to one of mye routers. External port is in this case 10023 and its redirected to 23, in your case you want 80 on both sides. If you want public access you can drop t...
by ojsa
Tue Dec 06, 2011 11:27 pm
Forum: Beginner Basics
Topic: connection problems after first install
Replies: 4
Views: 628

Re: connection problems after first install

And you added correct routing and nat on the outgoing interface?
by ojsa
Tue Dec 06, 2011 10:21 pm
Forum: General
Topic: Req: RADIUS EAP-TTLS Server
Replies: 1
Views: 736

Re: Req: RADIUS EAP-TTLS Server

I second your request, but I would post it in RouterOS Beta - http://forum.mikrotik.com/viewforum.php?f=1
by ojsa
Tue Dec 06, 2011 10:07 pm
Forum: General
Topic: ipv6 and double NATing
Replies: 4
Views: 603

Re: ipv6 and double NATing

Did your computer receive ipv6 adresser other than link-local address? I could be that those addresses played you a trick.
What about gw on the computer?
by ojsa
Tue Dec 06, 2011 9:58 pm
Forum: RouterBOARD hardware
Topic: RB500 Series problem :(
Replies: 1
Views: 559

Re: RB500 Series problem :(

You can also power the RB532 unit with standard PoE - http://wiki.mikrotik.com/wiki/RB500_Power_options_%28Jumpers_settings%29 Connect at the RS232 port with at serial cable (look at the wiki.mikrotik.com page for details) and watch the output. This eliminates so many possible things to investigate ...
by ojsa
Mon Dec 05, 2011 9:54 pm
Forum: General
Topic: does disabling Forward but brdging isolate users?
Replies: 10
Views: 1141

Re: does disabling Forward but brdging isolate users?

Yes, ports with the same horizon will prevent traffic in between.

I usually use this function in a mpls/vpls where every vpls participant are directly connected and the bridge only should forward data out to external interfaces.
by ojsa
Sun Dec 04, 2011 9:58 pm
Forum: General
Topic: does disabling Forward but brdging isolate users?
Replies: 10
Views: 1141

Re: does disabling Forward but brdging isolate users?

Yes, set horizon to ex. 1 on the the port against wlan1 and wlan2, that would prevent traffic between those two and leave traffic flow between wlan and eoip as you want.
by ojsa
Sun Dec 04, 2011 4:41 pm
Forum: Forwarding Protocols
Topic: PPPoE Server over QinQ interface
Replies: 5
Views: 3484

Re: PPPoE Server over QinQ interface

by ojsa
Sun Dec 04, 2011 2:25 pm
Forum: General
Topic: Transparent proxy not caching that well
Replies: 8
Views: 3056

Re: Transparent proxy not caching that well

And do you see the packet count increase on those rules when you try too surfe the internet?
by ojsa
Sun Dec 04, 2011 11:43 am
Forum: General
Topic: Transparent proxy not caching that well
Replies: 8
Views: 3056

Re: Transparent proxy not caching that well

Could you provide the firewall rules that fetches the traffic and redirects to your transparent proxy?
by ojsa
Sun Dec 04, 2011 11:29 am
Forum: General
Topic: MT just stop with work
Replies: 1
Views: 411

Re: MT just stop with work

I haven't seen anything like this before. Increase the loglevel under /system log to debug. If apt-get -t squeeze-backports install linux-image-2.6-amd64 Upgrade to an newer RouterOS release (remember to upgrade routerboard firmware from commandline on version 4.x) If you still don't get anything, m...
by ojsa
Sun Dec 04, 2011 11:27 am
Forum: General
Topic: does disabling Forward but brdging isolate users?
Replies: 10
Views: 1141

Re: does disabling Forward but brdging isolate users?

No, if you bridge those to interfaces the user would be connected on L2
by ojsa
Sun Dec 04, 2011 10:45 am
Forum: Forwarding Protocols
Topic: PPPoE Server over QinQ interface
Replies: 5
Views: 3484

Re: PPPoE Server over QinQ interface

It should be possible, the only thing that strikes me is to beware of and issues with MTU since you get another 4 bits in the ip headers due to the QinQ (or "use service tag" like Mikrotik call it). If you have a clean Mikrotik network for the QinQ links, all Routerboard units should support suffici...
by ojsa
Sun Dec 04, 2011 10:34 am
Forum: Beginner Basics
Topic: Lost Wireless links
Replies: 4
Views: 583

Re: Lost Wireless links

Could you clarify the mode you use on both sides. ?? Remember that only bridge and ap bridge is transmitting modes, and that station, stations wds and all the other stations modes is client sides. It is techniques to solve this with AP (bridge and bridge AP) modes on both sides, but I would not reco...
by ojsa
Sun Dec 04, 2011 12:25 am
Forum: General
Topic: EoIP Tunnels reporting as 10mbps in SNMP
Replies: 1
Views: 555

Re: EoIP Tunnels reporting as 10mbps in SNMP

I have a similar problem with interfaces that auto select to 1gb. MRTG still reports 100mb, it seems that SNMP does not check for actual connected speed but reports what is under the ethernet setting instead. Setting the default speed to 1gb solved it, but if the interface now autoselect to 100mb MR...
by ojsa
Sun Dec 04, 2011 12:19 am
Forum: General
Topic: VPLS over PPPoE
Replies: 5
Views: 927

Re: VPLS over PPPoE

mtu problems?
by ojsa
Sun Dec 04, 2011 12:07 am
Forum: General
Topic: what if the MTU increased ?
Replies: 1
Views: 385

Re: what if the MTU increased ?

The question is "why do you need to"?

If you plan to use MPLS, QinQ yes, but otherwise leave it untouched, its little to nothing to gain from changing it.
by ojsa
Sat Dec 03, 2011 11:45 pm
Forum: RouterBOARD hardware
Topic: Sierra Wireless AirCard® 754S wireles hotspot
Replies: 3
Views: 2625

Re: Sierra Wireless AirCard® 754S wireles hotspot

I would try a bit further than 3, discovered that my Sierra card user 4 and 3 a while back. http://forum.mikrotik.com/viewtopic.php?f=2&t=51549 I didn't understand how this usb card did anything to your hotspot on your mikrotik? And disable the SIM code, if there is one, i always seems to make my day.
by ojsa
Sat Dec 03, 2011 11:40 pm
Forum: Beginner Basics
Topic: RB750 not opening in winbox
Replies: 1
Views: 515

Re: RB750 not opening in winbox

Have you updated RouterOs and the firmware for the routerboard?
by ojsa
Sat Dec 03, 2011 11:37 pm
Forum: Beginner Basics
Topic: Lost Wireless links
Replies: 4
Views: 583

Re: Lost Wireless links

The disabled part under the bridge is just because the wireless link is down, it would come right back up when the wireless link is back. You would see the same with you connect or disconnect your laptop from a wireless card connected in a bridge. Since your wireless signal is gone you have to narro...
by ojsa
Sat Dec 03, 2011 11:27 pm
Forum: General
Topic: Backhaul with monotoring and public address
Replies: 3
Views: 480

Re: Backhaul with monotoring and public address

You solved with one bridge less since you connected to ethernet interfaces without the use of the bridge-t. correct in you testlab, but if you use dynamic wds over the wireless link you would need that bridge aswell. Design seems ok to me, but of course you could be right about the mac thing. Yes yo...
by ojsa
Sat Dec 03, 2011 11:19 pm
Forum: Beginner Basics
Topic: RB450G max wan speed?
Replies: 10
Views: 2523

Re: RB450G max wan speed?

Mm.. are you sure that speedtest could give you a accurate measurement with such a good line? If you try with a computer attached to the line instead? Or turn of the connection tracking in the rb450g? Have you testet elsewhere? (some other speedtest or with ping speed against your providers router ;...
by ojsa
Sat Dec 03, 2011 11:02 pm
Forum: Beginner Basics
Topic: RB450G max wan speed?
Replies: 10
Views: 2523

Re: RB450G max wan speed?

Refering to http://routerboard.com/pdf/275/rb450g.pdf you should be able to get a lot more. Still if you use a lot of connection tracking and firewall functions this would reduce your troughput. I'm wondering since you get 100mb if it could be a speed problem with the interface? Have you checked if ...
by ojsa
Sat Dec 03, 2011 3:54 pm
Forum: General
Topic: cant reach rb250g switch even though its on same subnet
Replies: 4
Views: 746

Re: cant reach rb250g switch even though its on same subnet

Assign f.ex 192.168.6.0/24 as the extra network on the wan side, change the rb250 to 192.168.6.0/24 network. But yes, it does not make any sense to have the 192.168.5.0/24 on both sides of of the firewall. You either have to change the the network on the wan or lan side, or make another solution wit...
by ojsa
Sat Dec 03, 2011 1:53 pm
Forum: General
Topic: Backhaul with monotoring and public address
Replies: 3
Views: 480

Re: Backhaul with monotoring and public address

Ohh.. I would redesigned it and used vlan instead so if your customer change ip range or you terminate several lines you could separate them easily. Something like this. Internet -> eth1 -> bridge-i -> vlan10 -> bridge-t -> wireless wds dynamic bridge-t -> bridge-t -> vlan10 --> bridge-i --> eth1 As...
by ojsa
Sat Dec 03, 2011 1:32 pm
Forum: General
Topic: cant reach rb250g switch even though its on same subnet
Replies: 4
Views: 746

Re: cant reach rb250g switch even though its on same subnet

Do you use the same subnet on both sides of the firewall.

Change to a different subnet on rb250 and assign one extra address to the firewall on the wan side.
by ojsa
Sat Dec 03, 2011 1:27 pm
Forum: General
Topic: IP issues
Replies: 7
Views: 1082

Re: IP issues

Drop the bridge of eth1 and eth2 since you want to route this traffic to internet.

This should solve your problem.
by ojsa
Fri Dec 02, 2011 12:52 am
Forum: General
Topic: v5.9 upgrade WARNING!!!!
Replies: 8
Views: 1654

Re: v5.9 upgrade WARNING!!!!

The renaming of interfaces is confirmed on metarouters on rb49x router. I also had difficulties with high load on metarouters in general on rb493g. Profile stated metarouter-fs stealing spare resources. I have to get som sleep now, MTCINE exam to morrow ;-) if MT needs support.rif files I could prov...
by ojsa
Wed Sep 28, 2011 10:40 am
Forum: RouterBOARD hardware
Topic: mikrotik power over ethernet supported for cisco ?
Replies: 8
Views: 8596

Re: mikrotik power over ethernet supported for cisco ?

I have upgraded to a cisco 3750x switch with poe+ standard (30w), still it's kind of random if the rb800 powers up. I have mounted 2 brand new rb800 without any radio cards on the same switch. One powers up, and one reports power failure. First RB800 switch1#show power inline GigabitEthernet1/0/37 I...
by ojsa
Tue May 31, 2011 2:34 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

Hey ojsa , please try to login with SSH from another host on A DIFFERENT NETWORK. It looks like your connection on port 22 is being redirected somewhere. :) Tried to login with another username than admin and that showes in the log so I think the connection should work. I haven't changed anything o...
by ojsa
Tue May 31, 2011 12:55 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

does it work if you don't specify "-l admin" ? No... user@x1:~$ ssh admin@192.168.xx.51 admin@192.168.xx.51's password: Permission denied, please try again. admin@192.168.xx.51's password: Permission denied, please try again. admin@192.168.xx.51's password: Permission denied (password). user@x1:~$ ...
by ojsa
Tue May 31, 2011 12:36 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

Several of my routers won't let me in on ssh anymore after upgrading to Ros 5.4. The ssh service is responding, but it replies "permission denied", when logging in with telnet and checking the log there is no trace of the ssh attempt in the log. The first ssh login attempt. user@x1:~$ ssh -l admin 1...
by ojsa
Tue May 31, 2011 11:52 am
Forum: General
Topic: import export of snmp won't work...
Replies: 1
Views: 760

import export of snmp won't work...

I wanted to update snmp settings on the whole lot of routers. This is my old snmp settings which i easly could export on one router and import on another. /snmp set contact=mail@company.net enabled=yes engine-id="" location=somewhere trap-target=0.0.0.0 trap-version=1 /snmp community set passcode ad...
by ojsa
Mon May 30, 2011 1:35 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

If you read his post Normis you would see that he is reporting that when the NTP package is disabled both NTP client and server are missing from winbox but there in CLI, when package is enabled both client and server are in winbox Hmm, so you are saying that something is missing when disabled :) ? ...
by ojsa
Mon May 30, 2011 12:55 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

NTP client is not missing, it's in "System -> SNTP client"
Noticed it now ;-)

And also the documentation on http://wiki.mikrotik.com/wiki/Manual:System/Time

thnx.
by ojsa
Mon May 30, 2011 12:17 am
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

Some problems on RBs could be caused by not enough space on the flash. Please uninstall the unused packages.
Checked and should not be a problem. Anyone else who lost the ntp-client setting in the winbpx menu with the ntp package (ntp-server) disabled?
by ojsa
Sun May 29, 2011 9:26 pm
Forum: General
Topic: RouterOS v5.4 released
Replies: 118
Views: 31406

Re: RouterOS v5.4 released

With the ntp package disable ntp-client seems to be missing in the winbox menu. 'With the ntp package enable both ntp-client and ntp-server shows as expected in the winbox menu. Configuration from CLI still works nicely with both alternatives. Seems to be a problem on rb333, rb450g and rb433ah so i ...
by ojsa
Sat May 14, 2011 6:43 pm
Forum: General
Topic: XR3, XR5, XR7 and XR9 support on mikrotik HW?
Replies: 1
Views: 490

Re: XR3, XR5, XR7 and XR9 support on mikrotik HW?

Running XR9 without any problems, it's simulates a 802.11b radio card, so when you select like channel 1 thats equal to a 9xx mhz frequency. I guess this is the same way with cards on other frequencies. Remember your countries regulations for this, the range is rather large on lower frequencies and ...
by ojsa
Sat May 14, 2011 6:37 pm
Forum: General
Topic: {HELP}HOW TO GET A ISO OUT OF A (PC) THAT MIKROTIK..help dev
Replies: 8
Views: 746

Re: {HELP}HOW TO GET A ISO OUT OF A (PC) THAT MIKROTIK..help

I guess you talk about routerOS since you are posting here.

Download the latest release of routerOS from the download pages and transfer it with FTP or SCP.

But read the wiki pages.
by ojsa
Sat May 07, 2011 11:18 pm
Forum: General
Topic: Sierra Wireless MC8790 and RB411U / RB411UAHR success....
Replies: 0
Views: 1513

Sierra Wireless MC8790 and RB411U / RB411UAHR success....

Just bought 15 pieces of Sierra Wireless MC8790 to use on mobile units (RB411U and RB411UAHR) deployed in the field. It didn't work at first, and some searching I was worried I've bought the wrong card. It turned out that this card had several more data-channels than I was justed to. add add-default...
by ojsa
Fri Apr 15, 2011 9:36 pm
Forum: General
Topic: 5.1 CLI locking up on me
Replies: 2
Views: 423

Re: 5.1 CLI locking up on me

I experienced the same on two om my rb800, but for me it stopped everytime I tried to display (or was it change?) information under "/interface ethernet switch"
by ojsa
Sat Apr 09, 2011 5:51 pm
Forum: General
Topic: RouterOS 5.1 is out!
Replies: 93
Views: 13486

Re: RouterOS 5.1 is out!

Upgraded RB1100 to 5.1 worked fine, earlier problems with switch-chip and vlan are now gone. RB800 (two of them) crashes every 30 second with kernel somthing. RB493ahg stopped responding (haven't checked this with console yet) But on the brightside several RB450g worked fine. All units upgraded from...
by ojsa
Sun Apr 03, 2011 11:03 am
Forum: The User Manager
Topic: Does anyone now how to use..
Replies: 0
Views: 482

Does anyone now how to use..

In ROS 5.0 usermanger there is a choice under "user"
userman.png
where you can choose a preshared key for the user account.
i've tried a lot of different settings but I need help.

Any suggestions??
by ojsa
Fri Apr 01, 2011 1:45 am
Forum: General
Topic: RouterOS 5.0 is out!
Replies: 153
Views: 27061

Re: RouterOS 5.0 is out!

Seems there is some issue with the ethernet switch functionality on my RB1100
Trunk in on ether1, vlan100 out on ether2
Works with 4.17, stopped when upgrading to 5.0.

I had to return to 4.17 due to customer need, but i'll make a support file to morrow.
by ojsa
Fri Dec 17, 2010 1:20 pm
Forum: Beginner Basics
Topic: Winbox on Linux?
Replies: 47
Views: 129765

Re: Winbox on Linux?

Disable firewall worked for me.

And now it discover.
by ojsa
Tue Nov 23, 2010 8:29 pm
Forum: RouterBOARD hardware
Topic: RB1100
Replies: 185
Views: 64314

Re: RB1100

MT does not have today any product with ability to connect it directly to the fiber. That's a shame... So, how much empty miniGBIC or SFP slot will costs? $10-20? Today, even $100 switches come with one or two of these, so they can not be more expensive than that. Well, ok, if MT will add that pric...
by ojsa
Tue Oct 26, 2010 8:23 pm
Forum: General
Topic: VLAN Tagging and spanning
Replies: 2
Views: 576

Re: VLAN Tagging and spanning

Could be that i misunderstand now, but put both the selected ethernet port and the wireless in the same bridge (and the selected vlan).

I have also tried this switch furture, but without any good success so far.
by ojsa
Tue Oct 26, 2010 8:18 pm
Forum: Wireless Networking
Topic: need suggestions
Replies: 1
Views: 539

Re: need suggestions

I think you should try, but I would have changed the 411 with something more powerful like the RB433AH og RB800. If you are going to connect all your users I would have added one or two more antennas and to more radio cards and transmitted on different 802.11a channels, use the area-code, ssid or ac...
by ojsa
Tue Oct 26, 2010 8:01 pm
Forum: RouterBOARD hardware
Topic: Help with RB493AH
Replies: 6
Views: 1282

Re: Help with RB493AH

I think default configuration on RB750g should do the trick, change the ip adress, ether1 i set to wan interface, switching on the rest. Nat enabled, the only thing you need to fix is the ip adress and disable dhcp. I don't have that unit with me now, but i could download the config tomorrow. Or, yo...
by ojsa
Tue Oct 26, 2010 1:27 am
Forum: General
Topic: LLDP
Replies: 126
Views: 42881

Re: LLDP

Mmm... I our case we are sending vlan information to voip phones too get the correct vlan for the computer vlan (phones with builtin switchport). So we just apply the config in the switch and the phone learns. And of course, as mentioned before, we retrieve now about twice the amount of information ...
by ojsa
Thu Oct 21, 2010 12:03 pm
Forum: General
Topic: LLDP
Replies: 126
Views: 42881

Re: LLDP

by ojsa
Sat Oct 16, 2010 11:50 am
Forum: General
Topic: Sample Hotspot Page - Sticky Please
Replies: 438
Views: 307593

Re: Sample Hotspot Page - Sticky Please

Here is my working example. I still have to find a new picture since i borrowed this one from a friend. Could be that the text box on the right side is extended to contain more information. The transparency of the text box is adjustable, so is the location of everything. All the design is done throu...
by ojsa
Tue Oct 05, 2010 7:12 pm
Forum: General
Topic: MUM video is now LIVE!
Replies: 30
Views: 7472

Re: MUM video is now LIVE!

fixed
Kind of strange on page 8, 9 10 and 11.

"This page is intensionally kept empty" springs to mind ;-)
by ojsa
Tue Oct 05, 2010 3:37 pm
Forum: General
Topic: MUM video is now LIVE!
Replies: 30
Views: 7472

Re: MUM video is now LIVE!

they will appear here after the MUM is done:
http://wiki.mikrotik.com/wiki/MUM_2010_US
Link Aggregation with VPLS - Workshop by Maris Bulans (MikroTik, Latvia) has a broken link.
by ojsa
Tue Sep 14, 2010 7:29 pm
Forum: RouterBOARD hardware
Topic: RB 800 x Switch Cisco Catalyst 3750, POE Problem.
Replies: 6
Views: 3179

Re: RB 800 x Switch Cisco Catalyst 3750, POE Problem.

Still wrong, now with the latest software.
by ojsa
Tue Sep 14, 2010 5:22 pm
Forum: The Dude
Topic: Dude and radius probing..
Replies: 9
Views: 4926

Re: Dude and radius probing..

I made the suggestion of changing some of the fields but what we need is someone who knows which field is which... I don't know if they are using pap or chap or ms-chap or chapv2. I would assume that they are just using pap. Does you radius server accept pap? I would not allow unencrypted password ...
by ojsa
Tue Sep 14, 2010 4:06 pm
Forum: General
Topic: Help with Switch Chip and VLAN..
Replies: 2
Views: 826

Re: Help with Switch Chip and VLAN..

Ok, my network drawing is different from the first text i wrote, but you catch the draft.
by ojsa
Tue Sep 14, 2010 4:03 pm
Forum: General
Topic: Help with Switch Chip and VLAN..
Replies: 2
Views: 826

Re: Help with Switch Chip and VLAN..

The problem still remains. I solve this today with the use of bridges and tagging on and off with the use of vlan. But I would really love to change this to use the switch chip to increase the throughput. I have now read forums, wiki pages and bother one of the main suppliers in my country but still...
by ojsa
Tue Aug 31, 2010 2:00 pm
Forum: The Dude
Topic: Dude and radius probing..
Replies: 9
Views: 4926

Re: Dude and radius probing..

I changed the password, but it didn't help. In the dude the settings are now. \x01D\0,0123456789012345\x01\x06TEST\x02\x121234567890\0 And in the usermanager I get this in the log 35840 TEST 0.0.0.0 192.168.xxx.xxx Aug/30/2010 23:23:28 authorization failure With this detail invalid password for user...
by ojsa
Mon Aug 30, 2010 10:51 pm
Forum: The Dude
Topic: Dude and radius probing..
Replies: 9
Views: 4926

Re: Dude and radius probing..

Mmm.. that was my first thought as well, but i guess I have to use wireshark to find out what kind of password it tries (since I couldn't figure out the string) . And I have to change the expected response in dude something else than the expected "\x03D" response. Anyone who could enlighten me on th...
by ojsa
Mon Aug 30, 2010 12:28 pm
Forum: The Dude
Topic: Dude and radius probing..
Replies: 9
Views: 4926

Re: Dude and radius probing..

This is still a problem. Dude tries to connect to the radius with the user "TEST" and the radius (user-manager) is logging the attempt as a failure. Work around could be to stop failure logging on the radius (user-manager), or stop probing the radius service in dude. None of those options is a good ...
by ojsa
Mon Aug 30, 2010 1:41 am
Forum: General
Topic: Help with Switch Chip and VLAN..
Replies: 2
Views: 826

Help with Switch Chip and VLAN..

Today I use bridges to connect different vlan access-ports and vlan trunk-ports with different ports. I want to solve something like this, but with the use of hardware switch chip. Rg450G - 1 Port1 - Access-port server1 - VLAN 10 Port2 - Access-port server2 - VLAN 10 Port3 - Access-port dmzserver - ...
by ojsa
Thu Aug 26, 2010 9:15 pm
Forum: RouterBOARD hardware
Topic: RB 800 x Switch Cisco Catalyst 3750, POE Problem.
Replies: 6
Views: 3179

Re: RB 800 x Switch Cisco Catalyst 3750, POE Problem.

Strange.. I have now upgraded my 3750G-48PS twice, and still the same error. This is the " show power inline " information for the port with RB800. Interface Admin Oper Power Device Class Max (Watts) --------- ------ ---------- ------- ------------------- ----- ---- Gi1/0/20 auto faulty 0.0 n/a n/a ...
by ojsa
Tue Aug 10, 2010 1:12 am
Forum: RouterBOARD hardware
Topic: RB 800 x Switch Cisco Catalyst 3750, POE Problem.
Replies: 6
Views: 3179

Re: RB 800 x Switch Cisco Catalyst 3750, POE Problem.

I can second that. I've tried RB800, with and without extension card (RB816) and with and without RB52 wireless cards. I just get a short blink and then the rb800 dies. The Cisco 3750 states error when you use "show power inline". I have also tried "power inline static" to remove any problems with a...
by ojsa
Fri Jun 11, 2010 9:42 pm
Forum: General
Topic: RouterOS v4.10 released
Replies: 63
Views: 14619

Re: RouterOS v4.10 released

I took the MTCWE course a couple of weeks ago and during som testing on "management protection key" we found a bug, since the client did not disconnect with required key. The instructor said that he would report, but my question are "is this fixed in 4.10 release"
by ojsa
Fri Jun 11, 2010 7:38 pm
Forum: General
Topic: dynamic wireless vlan assignment
Replies: 16
Views: 5907

Re: dynamic wireless vlan assignment

Based upon 802.1x, we are implementing something similar with Meru. But it would be a neath future in mikrotik as well.

I would love 802.1x on ethernet ports as well. And of course Calea and Metarouter through the store service.
by ojsa
Mon Jun 07, 2010 11:10 pm
Forum: General
Topic: No indication that calea works.
Replies: 7
Views: 958

Re: No indication that calea works.

Really strange. After a couple of reboots it suddenly started to log without any changes. And from then on it worked like a charme. It could be that i spesified the in and out interface rather running without it, but i really thought that it would not be necessary Anyway thank you for pointing out t...
by ojsa
Mon Jun 07, 2010 2:51 pm
Forum: General
Topic: No indication that calea works.
Replies: 7
Views: 958

Re: No indication that calea works.

The rules where added on Gw (192.168.1.1 and 192.168.2.1) with the admin user, with permission to sniff. The client has ip 192.168.1.101 connected to 192.168.1.1 (gateway with the /ip/firewall/calea rules). The gw then sends the data to the Calea "server" with ip 192.168.2.8. The gateway has also 19...
by ojsa
Mon Jun 07, 2010 1:24 pm
Forum: General
Topic: No indication that calea works.
Replies: 7
Views: 958

Re: No indication that calea works.

;-) It was empty. No information, not even zero..
[admin@gw] > 
[admin@gw] > 
[admin@gw] > /ip firewall calea print all stats
Flags: X - disabled, I - invalid, D - dynamic 
 #   CHAIN       ACTION   BYTES           PACKETS        
[admin@gw] > 
[admin@gw] > 
by ojsa
Mon Jun 07, 2010 12:29 pm
Forum: General
Topic: No indication that calea works.
Replies: 7
Views: 958

Re: No indication that calea works.

[admin@solbakken_450g_test] > /ip firewall calea print all stats Flags: X - disabled, I - invalid, D - dynamic # CHAIN ACTION BYTES PACKETS And [admin@gw] > /ip firewall calea print all stats Flags: X - disabled, I - invalid, D - dynamic # CHAIN ACTION BYTES PACKETS Both of them are now running Cal...
by ojsa
Sun Jun 06, 2010 9:25 pm
Forum: General
Topic: Dyndns for clients behind 1 public ip
Replies: 10
Views: 1208

Re: Dyndns for clients behind 1 public ip

Since all your clients is routed through one public ip it's pointless with several public domain names. If the reason is for maintenance i would use vpn to your main router and access the customers from there. If you add the customer ip to your dns (at your main router) you could achieve something s...
by ojsa
Sun Jun 06, 2010 3:13 pm
Forum: General
Topic: No indication that calea works.
Replies: 7
Views: 958

No indication that calea works.

I try to implement Calea. In my lab I have testet on routerOS 4.9 and 4.10 with the lastes of firmware (bios), I use a RB800 and RB450. The configuration is as close to the documentation example on Calea that I could get. There is no data send in between then, sniffing on the interface shows no data...
by ojsa
Tue Mar 09, 2010 10:12 pm
Forum: The Dude
Topic: Dude and radius probing..
Replies: 9
Views: 4926

Dude and radius probing..

Default it seems that Dude is probing my radius server (mikrotik user-manager), the problem is that i use user-manager for personal user-accounts for every mikrotik routerboards, so there is a router config for the dude server also that make it possible for the dude session to connect to radius. Dud...
by ojsa
Thu Sep 10, 2009 3:33 pm
Forum: General
Topic: Iprovements In WinBox I Would Like To See...
Replies: 17
Views: 4353

Re: Iprovements In WinBox I Would Like To See...

Some inspiration for å winbox solution - http://www.nilpo.com/2007/08/windows-xp ... l-for-ssh/
by ojsa
Thu Sep 10, 2009 3:03 pm
Forum: General
Topic: Iprovements In WinBox I Would Like To See...
Replies: 17
Views: 4353

Re: Iprovements In WinBox I Would Like To See...

Something i miss a lot in our enterpise environment is the posibility to read a common config file from f.ex a webserver or fileserver. So when I put out new devices i only save it to that file and its ready for everyone else the next time they start winbox. OR. A solution that help me execute winbo...
by ojsa
Wed Sep 02, 2009 12:42 pm
Forum: General
Topic: RB1000 with MetaRouter restarting after 3.28 upgrade
Replies: 11
Views: 1581

Re: RB1000 with MetaRouter restarting after 3.28 upgrade

Also confirmed with three different RB1000 and release 3.28, reboots and continues in loop after creating metarouter.

Is 3.29 with a butfix around the corner or should i downgrade?
by ojsa
Tue May 05, 2009 6:36 pm
Forum: General
Topic: Kill Canopys
Replies: 69
Views: 18072

Re: Kill Canopys

Strange, i have a tower full with 5,4 and 5,7 Canopy together with mikrotik in the same freq. range.

And it works like a charm.

Canopy uses 20mhz channels like other equipment, and as long as you have control on your envirement it should not be a problem.
by ojsa
Sat Jan 31, 2009 9:48 pm
Forum: General
Topic: Winbox Version for Linux OS (Linux Linpus)
Replies: 14
Views: 2281

Re: Winbox Version for Linux OS (Linux Linpus)

latest version of winbox and wine is no problem, but i have som difficulties with the 3.1 release of dude.
by ojsa
Thu Jan 29, 2009 1:21 pm
Forum: General
Topic: Winbox Version for Linux OS (Linux Linpus)
Replies: 14
Views: 2281

Re: Winbox Version for Linux OS (Linux Linpus)

dude and wine has been working perfectly until the 3.1 release,

Does anyone else have problem with dude 3.1 and wine ?
by ojsa
Tue Jan 27, 2009 9:35 pm
Forum: RouterBOARD hardware
Topic: Mini-PCI Card Embedded Module - HSDPA/UMTS - support RBoard
Replies: 19
Views: 8721

Re: Mini-PCI Card Embedded Module - HSDPA/UMTS - support RBoard

Could this minipci to minipcie adapter with sim card slot be used instead or in the absence of rb21 ? http://www.ceedtec.com/mini-pci-to-single-pci-express-mini-card-interface-board.html and some spesification http://www.ceedtec.com/upload_files/12/mPCImPCIeM1EBSpec.pdf To me it seems to be a nice s...