Community discussions

MikroTik App

Search found 105 matches

by swissiws
Fri Jun 08, 2018 10:20 pm
Forum: General
Topic: DNS service on specific Public IP address
Replies: 12
Views: 1727

Re: DNS service on specific Public IP address

I could't get it running with SRC-NAT. I created rule as mentioned, used wireshark on PPPoE interface and source address was still the same as before; even though it hit the rule and the packet counters went up (this might require more research if needed). I enventually have sorted my issue with cre...
by swissiws
Thu Jun 07, 2018 10:40 am
Forum: General
Topic: DNS service on specific Public IP address
Replies: 12
Views: 1727

Re: DNS service on specific Public IP address

I have created Mangle rule and marked the packet, i created a src-nat rule with IP address, still DNS sends its packet thru first ip address in list. Do I overlook something? /ip firewall mangle add action=mark-packet chain=output dst-address=208.67.222.222 dst-port=53 \ new-packet-mark=udp passthro...
by swissiws
Thu Jun 07, 2018 2:23 am
Forum: General
Topic: DNS service on specific Public IP address
Replies: 12
Views: 1727

Re: DNS service on specific Public IP address

When I do out-interface=wan, protocol=udp, DST-port=53 , then action=src-nat, to-address=Desired-IP router Address it keeps sending on previous IP address . !!! Though, I see hits on the RULE but does not apply ?! Jun 6 13:19:55 edge dns-out srcnat: in:(unknown 0) out:Oyster1, proto UDP, 15.1.1.1:34...
by swissiws
Thu Jun 07, 2018 12:40 am
Forum: General
Topic: DNS service on specific Public IP address
Replies: 12
Views: 1727

DNS service on specific Public IP address

Hi I have assigned 12 public IP addresses to my external interface. I have DNS 'allow Remoet Requests' enabled The issue I am facing that DNS udp is send thru first available public ip source address. Due to is fact, DNS request to external DNS server are changing from source IP they are requested f...
by swissiws
Fri Mar 16, 2018 6:46 pm
Forum: SwOS
Topic: css326-24g-2s+rm VLANs
Replies: 14
Views: 11387

Re: css326-24g-2s+rm VLANs

version 2.7 SWos -- CRS326 I still can not access management VLAN when set on switch while connected to port1 on same switch. Still issues? Configure 'VLANs' 99 - all ports are members Configure 'VLAN' on port1 Vlan Mode - enabled, Vlan Receive - Only untagged, Default Vlan Id - 99 Force VLANid - ti...
by swissiws
Thu Apr 27, 2017 10:35 am
Forum: The Dude
Topic: Dude 3.6
Replies: 6
Views: 2187

Re: Dude 3.6

migrated now - very good - did not lose any probes or device settings - the only thing it lost while export/import were the assigned images to the devices - fixable within 1/2 day. There are still bugs in multi user access/modifications and refresh times with some client hanging for several minutes,...
by swissiws
Thu Apr 27, 2017 10:16 am
Forum: General
Topic: Hotspot User - Session timeout / VPN SSL tunnel still keeps being active
Replies: 0
Views: 404

Hotspot User - Session timeout / VPN SSL tunnel still keeps being active

Hi I am experience the following issue with Hotspot user session timeout - If user has open vpn ssl tunnel (outlook anywhere or sstp) and hotspot session times out, the tunnel and particular TCP sessions keep being active established and do not get killed when ongoing packet traffic exists. Analyse ...
by swissiws
Tue Oct 11, 2016 1:46 pm
Forum: General
Topic: Weird 129.0.0.x IPs ?
Replies: 30
Views: 5540

Re: Weird 129.0.0.x IPs ?

Anyone @ Mikrotik?
by swissiws
Tue Oct 11, 2016 1:43 pm
Forum: The Dude
Topic: Dude 3.6
Replies: 6
Views: 2187

Re: Dude 3.6

I have around 600 active probes; around 500 hours labor; dude on ROS currently not working very well, what are the options? MT trashing Dude 3.6 without alternative?
by swissiws
Sun Sep 25, 2016 12:46 am
Forum: General
Topic: Weird 129.0.0.x IPs ?
Replies: 30
Views: 5540

Re: Weird 129.0.0.x IPs ?

it is the local IP address assigned to vlan219. # /snip # sep/24/2016 11:32:46 by RouterOS 6.37 # /interface bridge add mtu=1500 name=BridgeLOCAL add name=bridgeVLAN219 /interface vlan add arp=enabled interface=ether2 mac-address=00:0C:42:D3:D3:97 name=vlan219 \ vlan-id=219 /interface bridge port ad...
by swissiws
Sat Sep 24, 2016 11:41 pm
Forum: General
Topic: Weird 129.0.0.x IPs ?
Replies: 30
Views: 5540

Re: Weird 129.0.0.x IPs ?

The bytes counters are incredible - 4GB - and I run the sniffer only for approx 5 seconds each time (I am using PtP to connect to VLAN, around 40Mbit/s) When I change VLANID, Src Addresses 129.0.x.x changes in captured connections, as long as existing connect exist prior to switching to none existin...
by swissiws
Sat Sep 24, 2016 9:39 pm
Forum: General
Topic: Weird 129.0.0.x IPs ?
Replies: 30
Views: 5540

Re: Weird 129.0.0.x IPs ?

Valid IP address range would not explain why those packets do not get picked up by any firewall filter nor can I see those packets within wireshark.
Capture.PNG
by swissiws
Sat Sep 24, 2016 12:17 pm
Forum: The Dude
Topic: Dude 3.6
Replies: 6
Views: 2187

Dude 3.6

Since 6.27 - I can no longer update package via dude 3.6 - Missing version and/or Package information.

Does anyone else has this issue?
Capture.PNG
Capture1.PNG
Below how it should be was working prior 6.27
Capture3.PNG
by swissiws
Sat Sep 24, 2016 10:13 am
Forum: General
Topic: Weird 129.0.0.x IPs ?
Replies: 30
Views: 5540

Re: Weird 129.0.0.x IPs ?

same here - running on x86

ether1 has no ip address assigned, having vlan interfaces attached to it - maybe this is the issue?
Capture.PNG
Capture1.PNG
by swissiws
Wed Mar 30, 2016 1:45 pm
Forum: General
Topic: Mikrotik RB112 not have licence???
Replies: 14
Views: 1959

Re: Mikrotik RB112 not have licence???

>>>>>>>>> im curious for how long u operate ur RB112? <<<<<<<<<

Wow - my first board -

and you even got support by Normis - great service!


let it go and spend some bucks on an hAP.
by swissiws
Wed Mar 30, 2016 1:28 pm
Forum: General
Topic: Feature Request: RSTP for CRS to build ring network
Replies: 23
Views: 7351

Re: Feature Request: RSTP for CRS to build ring network

We might just have to realize, packing features into hardware and hard wire those is just not as easy as software coding. There is a reason why Cisco switches cost a bunch more just to have such features available. Not that I do not support this request - We have many mikrotik switches without redun...
by swissiws
Wed Mar 30, 2016 12:59 pm
Forum: General
Topic: CCR-1036 only get 500mbps through put
Replies: 10
Views: 2530

Re: CCR-1036 only get 500mbps through put

I love V7 - it will be so awesome - it will fix all CCR speed related issues. It will be multi threaded for single session. I will be able to replace all my x86 ROS servers. 500Mbit/s - acceptable. I never got over 320Mbit/s with a CCR1016 using software routing. Yes man. How exiting it will be in a...
by swissiws
Wed Mar 30, 2016 12:22 pm
Forum: General
Topic: CRS switching RSTP functionality
Replies: 2
Views: 1760

Re: CRS switching RSTP functionality

Whoever concerns - for sure you can archive this with software setup with routerOS - the trouble though, CPU on routerboards are by miles not powerful enough to handle such speeds you suggest and want to archive. As of today - I am still using high frequency CPU rack mount servers with ROS x86, 2 x ...
by swissiws
Sun Aug 23, 2015 10:03 am
Forum: General
Topic: Feature request: Per VLAN MAC
Replies: 17
Views: 9507

Re: Feature request: Per VLAN MAC

Now even more wanted to have with CapsMan v2! thanks. >>>>> Step 3 Assign vendor-specific tunnel attributes in the RADIUS server. The RADIUS server must return these attributes to the switch: •[64] Tunnel-Type = VLAN •[65] Tunnel-Medium-Type = 802 •[81] Tunnel-Private-Group-ID = VLAN name or VLAN ID...
by swissiws
Wed Jul 15, 2015 11:27 am
Forum: General
Topic: Feature Request: RSTP for CRS to build ring network
Replies: 23
Views: 7351

Re: Feature Request: RSTP for CRS to build ring network

Mikrotik MUM 2015 slogan is 'routing the world' - and not switching the world....

- so - if you do switching, go and buy on ebay some cisco 3750G layer 3 switches and get all the switching goodies for less $ than you pay for a CCR.

and they can even be stacked if you use etherchannels.
by swissiws
Tue Sep 30, 2014 11:35 am
Forum: Wireless Networking
Topic: RB Metal AP stability
Replies: 26
Views: 12317

Re: RB Metal AP stability

unbelievable - and not letting public know. yes - latest FW seemed to fix VAP disappearance issue for me, still having port flapping towards CRS125 - 100 half duplex is stable. \ still have to check poe injector - (off mikrotik ..) what is known about those they do not tell? \ sure there are cables ...
by swissiws
Fri Sep 19, 2014 10:30 pm
Forum: General
Topic: Hotspot and inter-VLAN traffic
Replies: 2
Views: 975

Re: Hotspot and inter-VLAN traffic

the easiest way would be to set packet marks on Hotspot user profile (each VLAN has own hotspot user profile) - then use those packet marks to setup simple queue or /queue tree with PCQ / for each.
by swissiws
Fri Sep 19, 2014 1:43 am
Forum: General
Topic: Hotspot Accounting Local / Internet Traffic distingush
Replies: 1
Views: 1669

Hotspot Accounting Local / Internet Traffic distingush

Dear Mikrotik I do have local VLans, each has an hotspot for user authentication and policy queuing. All Vlans share single access route to internet. I would like the option to disable traffic accounting on hotspots for local VLan to VLan traffic for authenticated hotspot users and only account inte...
by swissiws
Thu Sep 18, 2014 8:55 pm
Forum: Wireless Networking
Topic: RB Metal AP stability
Replies: 26
Views: 12317

Re: RB Metal AP stability

hardings,

did you wrote this firmware version yourself?
by swissiws
Wed Sep 17, 2014 11:59 am
Forum: Wireless Networking
Topic: How to Bypass Hotspot Usage Counters for Specific Subnets
Replies: 17
Views: 12392

Re: How to Bypass Hotspot Usage Counters for Specific Subnet

Mikrotik go for it in ROS 6


did I ever mentioned that who developed Dude can stay in my house for free ! With sea view ;-) Amazing /product/ for free!
by swissiws
Tue Sep 16, 2014 10:49 pm
Forum: Wireless Networking
Topic: RB Metal AP stability
Replies: 26
Views: 12317

Re: RB Metal AP stability

Still same issue with AP disappearing

ROS 6.19 firmware 3.17


!!

Metal 2SHPn

can I get refund?
by swissiws
Tue Sep 16, 2014 10:42 pm
Forum: Wireless Networking
Topic: How to Bypass Hotspot Usage Counters for Specific Subnets
Replies: 17
Views: 12392

Re: How to Bypass Hotspot Usage Counters for Specific Subnet

is this still valid?

ROS 6.19 -
by swissiws
Sun Sep 14, 2014 1:35 pm
Forum: General
Topic: CCR-1009-8G-1S-1S+ tops out at ~500mbps?
Replies: 7
Views: 4218

Re: CCR-1009-8G-1S-1S+ tops out at ~500mbps?

no sure about 1009 - though 1016-12G has no switch chip and each port Mikrotik says is hard wired to vCPU - so each should get 1GBit/s - so bonding should get X * 1Gbit/s or close to 1GBit/s for each session. Even with ROS 6.19 I do not get over 300Mbit/s. There seems to be a slight improvement with...
by swissiws
Thu Sep 11, 2014 9:50 am
Forum: General
Topic: Hotspots and simple queue
Replies: 0
Views: 887

Hotspots and simple queue

I have a CCR1016 -6.19 I have 25 VLAN's - each vlan has own Hotspot server on CCR1016, each assigned to VLAN interface. - each Hotspot server has own profile - each user has bandwidth limitations - assigned within hotspot user profile I would like to assign limited bandwidth to each VLAN (can do thi...
by swissiws
Fri Sep 05, 2014 10:31 pm
Forum: General
Topic: Feature request: Bridge name in radius answer for ppp
Replies: 2
Views: 1063

Re: Feature request: Bridge name in radius answer for ppp

yes - me too , or

Mikrotik-Group == 'PPP Profile'
by swissiws
Sat Jul 26, 2014 5:10 am
Forum: General
Topic: CCR-1009-8G-1S-1S+ tops out at ~500mbps?
Replies: 7
Views: 4218

Re: CCR-1009-8G-1S-1S+ tops out at ~500mbps?

no, overall load 1-4% - single core max 10%.
by swissiws
Sat Jul 26, 2014 4:52 am
Forum: General
Topic: CCR-1009-8G-1S-1S+ tops out at ~500mbps?
Replies: 7
Views: 4218

Re: CCR-1009-8G-1S-1S+ tops out at ~500mbps?

I think I do understand that.

but that does not explain why we would get 900Mbit/s over bonded link within same VLAN - but then interVLAN routing does only 200Mbit/s over same physical environment.

(only thing changed - assign physical port to different VLAN Bridge).
by swissiws
Sat Jul 26, 2014 2:48 am
Forum: General
Topic: CCR at the CORE - Best Design for Performance
Replies: 2
Views: 1478

Re: CCR at the CORE - Best Design for Performance

i created same vlan on each bond - then created bridge and add both vlan's to bridge. do not ask me if this is the correct way - intervlan routing currently tops @ 240Mbit/s not sure why? # jul/22/2014 00:02:35 by RouterOS 6.17 /interface bridge add comment=CORE l2mtu=1590 name=bridgeVLAN10 priority...
by swissiws
Sat Jul 26, 2014 2:35 am
Forum: General
Topic: CCR-1009-8G-1S-1S+ tops out at ~500mbps?
Replies: 7
Views: 4218

Re: CCR-1009-8G-1S-1S+ tops out at ~500mbps?

same issue here ccr 1016 bonding towards cisco 3750 iperf tops at around 900Mbit/s without routing within same vlan - Host A connected to CCR1016 - Host B connected to 3750 Port interVLAN routing tops @ 240Mbit/s. I also have a support ticket open with Mikrotik and have not heard back - Was running ...
by swissiws
Thu Jun 05, 2014 12:09 am
Forum: General
Topic: CRS125 LACP/bonding on switch chip
Replies: 2
Views: 1258

CRS125 LACP/bonding on switch chip

Hello

Is bonding of ethernet interfaces now available on CRS125 utilizing switch chip?

many thanks.
by swissiws
Wed Jun 04, 2014 11:42 pm
Forum: Beginner Basics
Topic: VLANs on CRS125: trunk to trunk VLAN configuration?
Replies: 8
Views: 5917

Re: VLANs on CRS125: trunk to trunk VLAN configuration?

having MGMT VLAN99 on master switch interface with static ip address on each CRS125 - set drop-if-invalid-or-src-port-not-member-of-vlan-on-ports=ether1,ether2,ether3 will not allow VLAN99 to pass through. How would have this to be configured? Figured that one - allow traffic to switch-cpu: add tag...
by swissiws
Wed Jun 04, 2014 11:29 pm
Forum: Beginner Basics
Topic: VLANs on CRS125: trunk to trunk VLAN configuration?
Replies: 8
Views: 5917

Re: VLANs on CRS125: trunk to trunk VLAN configuration?

nice!

one more question:

having MGMT VLAN99 on master switch interface with static ip address on each CRS125 -

set drop-if-invalid-or-src-port-not-member-of-vlan-on-ports=ether1,ether2,ether3

will not allow VLAN99 to pass through. How would have this to be configured?

thanks
by swissiws
Tue May 20, 2014 10:53 am
Forum: General
Topic: Bonding , bridging, vlans
Replies: 1
Views: 670

Bonding , bridging, vlans

All

Any idea what goes wrong? Which configuration example would be right for InterVLAN router? Do you have any idea why left example would trash LACP link?

many thanks for thoughts.
by swissiws
Sat May 17, 2014 11:51 pm
Forum: General
Topic: CRS125 - basic wire speed VLAN configuration
Replies: 1
Views: 1119

CRS125 - basic wire speed VLAN configuration

Hi all I have the following config running on a CRS. As this config is CPU intense, I would like to have your input in how I could create a smart wire speed VLAN configuration with below. Thanks for your thoughts. --- /interface ethernet set [ find default-name=ether2 ] master-port=ether1 set [ find...
by swissiws
Fri Mar 14, 2014 12:46 pm
Forum: General
Topic: Known issues and bugs - a list
Replies: 283
Views: 120908

Re: Known issues and bugs - a list

tomaskir I am not an engineer - i am a project manager feeding of your trail - just spend another 10k on MT products which seems not to work due to already published sw bugs with crs and ccr systems - NO doubt about hardware engineering - first class - software too unpredictable to manage, maybe a b...
by swissiws
Fri Mar 14, 2014 11:42 am
Forum: General
Topic: ROS 6.11 ETA
Replies: 11
Views: 2009

Re: ROS 6.11 ETA

- well
[DELETED]


thanks for the clarification regarding ETA.
by swissiws
Fri Mar 14, 2014 11:27 am
Forum: General
Topic: ROS 6.11 ETA
Replies: 11
Views: 2009

Re: ROS 6.11 ETA

ETA

http://en.wikipedia.org/wiki/Estimated_time_of_arrival

Normis - You do already know my basic bugs with crs and ccr - so not delay in publish.

Many thanks.
by swissiws
Fri Mar 14, 2014 11:16 am
Forum: General
Topic: ROS 6.11 ETA
Replies: 11
Views: 2009

Re: ROS 6.11 ETA

normis -

this does not answer my question. Would you please let us know ETA of next release please.

Many thanks.
by swissiws
Fri Mar 14, 2014 10:56 am
Forum: General
Topic: ROS 6.11 ETA
Replies: 11
Views: 2009

ROS 6.11 ETA

Dear Mikrotik

What is your ETA of next release? I am really struggling keeping CRS and CCR in production.

Many thanks.
by swissiws
Fri Mar 14, 2014 3:03 am
Forum: General
Topic: bandwidth test - lost packets during receive but not send
Replies: 2
Views: 2720

Re: bandwidth test - lost packets during receive but not sen

Without knowing your topology - if you use ip phones and classic ip connections on same network infrastructure, you might have to implement vlans.

good luck.
by swissiws
Sat Mar 01, 2014 9:17 am
Forum: General
Topic: Banging my head trying to configure Cloud Switch CRS125-24
Replies: 10
Views: 2455

Re: Banging my head trying to configure Cloud Switch CRS125-

I am having a few CRS125 in production. The only ROS which kind of works for me is 6.6 - anything else causing issues with speed on switched ports (10Mbit/s max) and/or sometimes weird hanging of either ports for (10-20 seconds) ip phones udp connection blend in/out. Just to keep it up and not havin...
by swissiws
Tue Feb 18, 2014 11:02 am
Forum: General
Topic: LACP with dell 8024f
Replies: 4
Views: 1984

Re: LACP with dell 8024f

no sure what version you run on - just had a bad fall with ccr trying to bond to cisco switch. cisco lacp channel falls over after 30 seconds complaining about miss configuration of ethernet interfaces - not port channels - looks like low level packet scrambling/loop at ethernet interface on CCR. Al...
by swissiws
Tue Feb 18, 2014 6:02 am
Forum: General
Topic: bonding and bridging interfaces on CCR1016 - Cisco 3750
Replies: 1
Views: 3626

Re: bonding and bridging interfaces on CCR1016 - Cisco 3750

ok copied config from CCR to MT750G - connected into production - bonded interface on Cisco 3750 are stable. - no err-config mismatch on Gigabit interfaces after approx 30 seconds. it looks like a bug on CCR with bonding/bridging - as CCR is in production I have limited options to further test. wond...
by swissiws
Mon Feb 17, 2014 9:55 am
Forum: General
Topic: bonding and bridging interfaces on CCR1016 - Cisco 3750
Replies: 1
Views: 3626

bonding and bridging interfaces on CCR1016 - Cisco 3750

hi I have 2 physical MT interfaces bonded to Cisco SG200 switch - the bonded interface is added to BRIDGE-CORE i have 2 physical MT interfaces bonded to Cisco 3750 switch - As soon as I add the bonded interface to BRIDGE-CORE, the Cisco physical interfaces are going down reporting configuration faul...
by swissiws
Mon Jan 27, 2014 8:25 pm
Forum: RouterBOARD hardware
Topic: CRS125 ISOLATED VLANS and full switching manual
Replies: 40
Views: 14487

Re: CRS125 ISOLATED VLANS and full switching manual

it looks like ROS for CRS125 is so not functional; they are not able to document any new features as yet.

we are also sitting on a stock of 20 new CRS125 which should be deployed with private VLAN's and some basic bridging features.
by swissiws
Mon Jan 27, 2014 7:31 am
Forum: General
Topic: Expert Required for Implementatingf Network Diagram
Replies: 2
Views: 891

Re: Expert Required for Implementatingf Network Diagram

Great tip! many thanks for that!
by swissiws
Sat Jan 25, 2014 2:51 am
Forum: General
Topic: Expert Required for Implementatingf Network Diagram
Replies: 2
Views: 891

Expert Required for Implementatingf Network Diagram

Summary: We are looking for a Mikrotik / Cisco expert being able to configure and supply running configuration for network design as specified in Attachment 1 for Cisco and Mikrotik Switch/Routers Requirements: You have expertise knowledge of OSI Layer2/3 communication protocols and IOS/ROS and Mikr...
by swissiws
Thu Dec 12, 2013 1:34 am
Forum: General
Topic: Mikrotik Webproxy / Sawmill Customized Plugin
Replies: 0
Views: 1104

Mikrotik Webproxy / Sawmill Customized Plugin

Hi We are utilizing Mikrotik hotspot/radius for AD authentication and user MB allocation. We use transparent Webproxy with parent cache server, Mikrotik Webproxy syslog information are sent to Dude and syslog information are processed with Sawmill Mikrotik plugin. This all works great but Sawmill Mi...
by swissiws
Wed Nov 27, 2013 5:11 am
Forum: General
Topic: Bonding 2 interfaces - waste of cable?
Replies: 2
Views: 820

Bonding 2 interfaces - waste of cable?

hi I had the idea to bond ether1 & ether2 to get 2Gbit/s between 1 MT1100ah and 1 CRS125 and create InterVLAN at the 1100AH (router on a stick). Reading about technical design both devices allow only 1Gbit/s throughput towards CPU. So bonding is a waste of cable and only for utilising fault toleranc...
by swissiws
Wed Nov 27, 2013 4:48 am
Forum: General
Topic: VLAN bridge -Switch
Replies: 1
Views: 845

VLAN bridge -Switch

Do I get this right? My configuration is using CPU to do tagging as it occurs on bridge even though ether2-ether5 are switched? Traffic flow between ether2 - ether5 are switched or are they also processed by CPU? /interface bridge add l2mtu=1594 name=bridge-VLAN20 /interface ethernet set [ find defa...
by swissiws
Fri Apr 05, 2013 12:20 pm
Forum: General
Topic: NOT TO DO. Weird instalations?
Replies: 386
Views: 248226

Re: NOT TO DO. Weird instalations?

Again the core issue is that equipment is very cheap nowadays ... Installation of equipment is extreme expensive - so where is the client who pays the money for installation costs? do not forget! to ever troubleshoot an issue - would pay the money easy for proper installation - though - that's anoth...
by swissiws
Fri Apr 05, 2013 11:40 am
Forum: General
Topic: IOS change LOG
Replies: 0
Views: 336

IOS change LOG

Gents, Again spent hours to locate a simple issue within Mikrotik IOS. I was running 5.22 as for my used purpose, it was stable and I could not find any improvements of features or fixes to sell the client to update router IOS! /ip ipsec peer set 2 address=$newIP (script simply hangs) --> for 'set 0...
by swissiws
Fri Apr 05, 2013 11:26 am
Forum: General
Topic: AAA with Mikrotik - local user database and Windows 2008 AD
Replies: 7
Views: 3559

Re: AAA with Mikrotik - local user database and Windows 2008

Using now FreeRadius/ Ubuntu / myphpadmin and GUI interface still has to be developed for support team. Support team knows winbox very well. What a pain! Sure FreeRadius works great! No doubt what I can do with perl scripting! Powerful. And all the options to query radaccts! My initial idea mentione...
by swissiws
Wed Feb 20, 2013 2:15 am
Forum: General
Topic: AAA with Mikrotik - local user database and Windows 2008 AD
Replies: 7
Views: 3559

Re: AAA with Mikrotik - local user database and Windows 2008

Thanks yes - that's what I tested - I used Windows 2008 Radius server and it works - the issue is that i can not generate MIKROTIK_TOTAL_LIMIT_GIGAWORDS and submit that to the radius client. Every time the radius client connects - it takes the value set in Windows Radius - with means, it does not ca...
by swissiws
Sat Feb 16, 2013 8:05 pm
Forum: General
Topic: AAA with Mikrotik - local user database and Windows 2008 AD
Replies: 7
Views: 3559

Re: AAA with Mikrotik - local user database and Windows 2008

Anybody from Mirkrotik Support team? Normis?
by swissiws
Sat Feb 16, 2013 1:36 pm
Forum: General
Topic: Who has the biggest uptime ?
Replies: 8
Views: 1411

Re: Who has the biggest uptime ?

nope, but improvements in process handing, CPU utilization and speed.
by swissiws
Sat Feb 16, 2013 10:47 am
Forum: RouterBOARD hardware
Topic: SXT are not for outdoor. damaged units
Replies: 29
Views: 13472

Re: SXT are not for outdoor. damaged units

Why do you guys not use coax sealer? I closed all holes and gaps -
by swissiws
Sat Feb 16, 2013 10:31 am
Forum: General
Topic: Radius server
Replies: 4
Views: 1100

Re: Radius server

I think you will be very disappointed about Userman. Mikrotik OS has serious limitation to get a full blown radius server up and running (I have a setup, using a AH1100 as CPU otherwise is constant 100% and configuration do not save etc etc--no scripting blabla...) my suggestion is to download virtu...
by swissiws
Sat Feb 16, 2013 9:49 am
Forum: General
Topic: Who has the biggest uptime ?
Replies: 8
Views: 1411

Re: Who has the biggest uptime ?

Don't you guys use Dude? I surely never would leave a system for such a long time 'unpatched'.. but maybe, I am just too long in Microsoft's business...
by swissiws
Sat Feb 16, 2013 9:38 am
Forum: General
Topic: AAA with Mikrotik - local user database and Windows 2008 AD
Replies: 7
Views: 3559

AAA with Mikrotik - local user database and Windows 2008 AD

As many of you too, I have a Microsoft Active Directory server environment and I have to authenticate wifi hotspot and internet access users towards this database. I am looking for a solution. In a test environment I have setup Windows 2008 Radius NPS server, using Mikrotik as Radius client, which a...
by swissiws
Thu Feb 14, 2013 2:28 am
Forum: General
Topic: Is this max for Microtik?
Replies: 8
Views: 1510

Re: Is this max for Microtik?

True - currently they 750GL hit 55% average while running btest on AH1100 - though, speed on bonding interface seems about the same...
by swissiws
Wed Feb 13, 2013 9:50 am
Forum: General
Topic: Is this max for Microtik?
Replies: 8
Views: 1510

Re: Is this max for Microtik?

Well, i would like more - What's the draw of getting another 4 SXT antenna and bond them to existing infrastucture?

Do I look at double the speed again? Would I have to replace the 750GL with 1100AH for processing reason/ additonal VLan tagging on one site?

thanks lots
by swissiws
Wed Feb 13, 2013 9:25 am
Forum: General
Topic: Is this max for Microtik?
Replies: 8
Views: 1510

Re: Is this max for Microtik?

As requested -signal strength

thanks for the help.
by swissiws
Wed Feb 13, 2013 4:32 am
Forum: General
Topic: Is this max for Microtik?
Replies: 8
Views: 1510

Is this max for Microtik?

Wireless link bonding, bridge, nv2, N, 5Ghz 40Mhz, 2km

750GL - 2 x SX --- 2 x SX - 750GL

Is there anything more I could do to get more speed for this wireless backbone link?

thanks lots

M
by swissiws
Wed Aug 22, 2012 1:54 am
Forum: The User Manager
Topic: Voucher template constants
Replies: 11
Views: 9585

Re: Voucher template constants

Found a post --- USERMAN --- is not currently under development --- sososo, I am wondering then if it is ever getting developed again? BTW - I 'solved' my issue in creating different templates with static values. All other issues I was able to solve. One core problem I had is with refresh of values ...
by swissiws
Wed Aug 22, 2012 1:46 am
Forum: General
Topic: WebProxy - Parent Proxy - MT WebProxy Access Lists
Replies: 0
Views: 547

WebProxy - Parent Proxy - MT WebProxy Access Lists

Hi I am having an issue as soon as I configure a parent proxy on Mikrotik's Webproxy. I have created MT web proxy access control list for users to redirect certain URL's to different destination URL. This works great as long as I have no Parent Proxy configured within MT WebProxy As soon as I have P...
by swissiws
Thu Aug 09, 2012 2:03 pm
Forum: General
Topic: Javascript for Hotspot users logout.html
Replies: 1
Views: 1452

Javascript for Hotspot users logout.html

Hi all I need some help to get final MB left for hotspot users So far I use the following variables $(limit-bytes-total) --> available Bytes when last logged on $(bytes-total) ---> used Bytes during session I now would like to show the user the actual Bytes left $(limit-bytes-total) subtract $(bytes...
by swissiws
Tue Aug 07, 2012 11:59 am
Forum: The User Manager
Topic: Voucher template constants
Replies: 11
Views: 9585

Re: Voucher template constants

Same here v5.19 -RB750 %u_limit_transfer_f% %u_prep_time% not working. Additionally, when generating 1000 batch user vouchers, where is the tick to print Voucher directly? I have currently many users loaded and ticking 1000 newly generated user vouchers can just not work?! example of Voucher printou...
by swissiws
Sat Jul 14, 2012 10:22 am
Forum: General
Topic: RB 751UP
Replies: 1
Views: 689

RB 751UP

slowly but dearly getting upset with mikrotik. yes, i do patch (constantly) rebooting the core of the network. yes, 200+ clients, so night shift. now quick setup on one site planned with 751up as switch supplying power to 4 sites and see no show in setting it up as switch. v5.18 - firmware 2.39 choo...
by swissiws
Sun Feb 26, 2012 1:27 am
Forum: General
Topic: pppoe client not working
Replies: 3
Views: 881

Re: pppoe client not working

hth

M
by swissiws
Sat Feb 25, 2012 12:30 pm
Forum: General
Topic: pppoe client not working
Replies: 3
Views: 881

Re: pppoe client not working

this is my core setup on most MT's whatever release and board type. it works good.

do leave 'service' blank
do leave 'ac name' blank

nat on pppoe-out interface.

let me know if you need more help

M
by swissiws
Sat Feb 25, 2012 12:13 pm
Forum: General
Topic: cheap down to the node - HWMPplus dropped
Replies: 0
Views: 428

cheap down to the node - HWMPplus dropped

All mixed setup of +25 notes with all only having ONE WLan interface, AP bridge, bridge-interface, static WDS, RSTP (used HWMPplus over the past 2 years - dropped it - ;-( most of them act as repeaters/access points, same SSID, same frequency, ending on a wired 450G router used as hotspot/gateway. N...
by swissiws
Mon Feb 13, 2012 11:11 am
Forum: General
Topic: Mikrotik Switch/Routing RB750GL
Replies: 6
Views: 1653

Re: Mikrotik Switch/Routing RB750GL

All I want to thank all for the effort in speeding troubleshooting up. How could I even think it might have to do with MT router ;-) there are great products! The issue was with prime gateway, something wrong, though, can not reboot the device. Changing default GW to Microtik router for particular s...
by swissiws
Thu Feb 09, 2012 1:47 am
Forum: General
Topic: Mikrotik Switch/Routing RB750GL
Replies: 6
Views: 1653

Re: Mikrotik Switch/Routing RB750GL

Thanks a lot for this verification. I am very appreciating this. Oh, i guess you did test to initiate the connection from the 172.16.32.0 network frist, as the other way round all seems to be working and as soon as the ARP is learned on the MT or (maybe it ESXi) it works both ways for me too. BTW, I...
by swissiws
Wed Feb 08, 2012 8:34 am
Forum: General
Topic: Mikrotik Switch/Routing RB750GL
Replies: 6
Views: 1653

Re: Mikrotik Switch/Routing RB750GL

Nope no NAT rules - still would not explain why ICMP traffic works both ways!?

Thanks for having a look at it.

Mat

PS. please note that this is the original example and network 192.168.1.0/24 as explained above is in reality 200.200.200.0/24 due to some IT crack up.
by swissiws
Wed Feb 08, 2012 3:15 am
Forum: General
Topic: Mikrotik Switch/Routing RB750GL
Replies: 6
Views: 1653

Mikrotik Switch/Routing RB750GL

Hi all, having as very strange issue with the above routerboard. IOS 5.12/2.38 port 1 - ip 192.168.1.254/24 port 2-5 switched - port 2 has IP 172.16.32.1/24 now, I can ping all hosts from network 172.16.32.0/24 to 192.168.1.0/24 I can ping all hosts from network 192.168.1.0/24 to 172.16.32.0/24 I ca...
by swissiws
Wed Nov 09, 2011 12:06 pm
Forum: General
Topic: x86 5.5 and 5.7 ssh key problem
Replies: 32
Views: 11964

Re: x86 5.5 and 5.7 ssh key problem

[admin@HiTech-Hotspot] > (21 messages discarded) echo: ssh,debug,packet -------------------- echo: ssh,debug,packet ----- recieved ----- echo: ssh,debug,packet => offset:44 [0x44] echo: ssh,debug,packet => size:44 [0x44] echo: ssh,debug,packet 0000 002c 0f01 0000 000b 0000 000f 7469 echo: ssh,debug,...
by swissiws
Wed Nov 09, 2011 10:27 am
Forum: General
Topic: x86 5.5 and 5.7 ssh key problem
Replies: 32
Views: 11964

Re: x86 5.5 and 5.7 ssh key problem

Same thing here - MT 450G OS 5.7 - Version 5.6 works fine.

Cheers

M


[admin@HiTech-Hotspot] > /system ssh 172.16.32.1 user=admin
password:
password:
password:
password:
password:
password:
password:

Welcome back!
[admin@HiTech-Hotspot] >
by swissiws
Fri Dec 10, 2010 11:56 pm
Forum: Beginner Basics
Topic: Windows Terminal Server
Replies: 1
Views: 708

Windows Terminal Server

Hi not sure if that already got answered somewhere.. Setup: I am having terminal server setup's with 20 -80 thin client users accessing the cluster farms. I am having MT450G router with Hotspot and IAS server authentication. This works all fine. Issue: As the hotspot is authenticating on layer3, the...
by swissiws
Fri Dec 10, 2010 11:44 pm
Forum: General
Topic: MUM in Australia. Would you come?
Replies: 115
Views: 26743

Re: MUM in Australia. Would you come?

Yes! Finally somewhere around the corner ;-) Will be there! Preference Sydney. Still 18 hours travel ;-o


BTW: what about Auckland, New Zealand? Surely having cheaper accommodation and NZ is a nice place to visit anyway...

Matt
HiTech Limited
Rarotonga
Cook Islands
by swissiws
Tue Aug 24, 2010 3:26 am
Forum: The User Manager
Topic: User Manager v4.0 test package
Replies: 269
Views: 77323

Re: User Manager v4.0 test package

To all The Beta works pretty well for 4.11. I am running it on a 450G board. Please note the following thing. Nothing is really clearly documented as yet, some functions, eg, assigning Profiles, 'hiding' profiles, just have to be figured out! It works great, use permission settings etc. I might soon...
by swissiws
Thu Aug 20, 2009 11:12 pm
Forum: General
Topic: ip hotspot loggin page does not automatically redirect??
Replies: 18
Views: 4166

Re: ip hotspot loggin page does not automatically redirect??

Yes, default configuration on Hotspot, modified HTML login page, actually only an addtional picture gets loaded, the login page script has not changed.

interesting you are saying that you do not experience the issue...?~

Thanks

m
by swissiws
Thu Aug 20, 2009 4:54 am
Forum: General
Topic: ip hotspot loggin page does not automatically redirect??
Replies: 18
Views: 4166

Re: ip hotspot loggin page does not automatically redirect??

that's not an option for me as it is a live network. Does MT offer a bug fix for that?

Cheers

m
by swissiws
Wed Aug 19, 2009 5:04 am
Forum: Wireless Networking
Topic: HWMP+ not working as expected
Replies: 9
Views: 2055

Re: HWMP+ not working as expected

Hi There, Using now 3.28 - HWMP+ in a live network with dynamic WDS. I am using Crossroad boards with only one antenna for dynamic WDS links between them and VAP on top of those for Client Access. All on same frequency. WDS is using different SSID and WPA encryption as virtual access point. Some int...
by swissiws
Wed Aug 19, 2009 4:37 am
Forum: General
Topic: ip hotspot loggin page does not automatically redirect??
Replies: 18
Views: 4166

Re: ip hotspot loggin page does not automatically redirect??

Same issue here, using RG450G, hotspot, upgraded from 3.27 due to using HWMP +. Since then, users need to press twice OK button until getting redirected to page. Log file tells , user already authenticated. All was working fine on v3.27! Bug? Again, I have not made any changes on hotspot setup since...
by swissiws
Thu Apr 09, 2009 5:15 am
Forum: General
Topic: Help needed choosing router boards and bridge/routing
Replies: 1
Views: 534

Re: Help needed choosing router boards and bridge/routing

too difficult?

mmmm

Matt
by swissiws
Wed Apr 08, 2009 3:30 pm
Forum: General
Topic: RB firmware update
Replies: 7
Views: 1823

Re: RB firmware update

appreciate your counting :-)

put it this way, used to millions of updates on windoze..

2.1, 2.11, 2.12...
2.2
....
2.6, 2.61, 2.62....


you won!

Cheers

Matt
by swissiws
Wed Apr 08, 2009 3:05 pm
Forum: General
Topic: RB firmware update
Replies: 7
Views: 1823

Re: RB firmware update

why do you need to find it, it's already there. type "upgrade" at that promt and it will upgrade to 2.18. upgrade files are included in the routerboard.npk file. Thanks normis, just confusing as the system says, 2.6 is installed. For me 2.18 is a downgrade, not an upgrade?! current-firmware: "2.6" ...
by swissiws
Wed Apr 08, 2009 2:44 pm
Forum: General
Topic: RB firmware update
Replies: 7
Views: 1823

RB firmware update

Hi Forum can not find the latest firmware for the RB. Maybe I am blind? I have looked at routerboard.com without success. My board information: [admin@AP1] /system routerboard> print routerboard: yes model: "112" serial-number: "0F4D01D59AF7" current-firmware: "2.6" upgrade-firmware: "2.18" Thanks M...
by swissiws
Wed Apr 08, 2009 1:57 pm
Forum: Beginner Basics
Topic: RB 450 +DNS +DHCP +Hotspot +RADIUS
Replies: 7
Views: 2464

Re: RB 450 +DNS +DHCP +Hotspot +RADIUS

Thanks Hilton,

Never touched such a router before as yet, but will keep this in mind and will setup as switch instead of bridge.

Thanks

Matt
by swissiws
Wed Apr 08, 2009 1:06 pm
Forum: General
Topic: Help needed choosing router boards and bridge/routing
Replies: 1
Views: 534

Help needed choosing router boards and bridge/routing

Hello Forum I am having the choice of putting a proposal for a wireless network with client access points together. The main challenge I am facing is dense bush and lots of palm trees. I am located in the tropics. Therefore, none of the access points will unlikely serve more than 3-5 concurrent conn...
by swissiws
Wed Apr 08, 2009 9:55 am
Forum: Beginner Basics
Topic: RB 450 +DNS +DHCP +Hotspot +RADIUS
Replies: 7
Views: 2464

RB 450 +DNS +DHCP +Hotspot +RADIUS

Hi all Is the RB450 powerful enough to support above services and approx 20 simultanious client connections? Config: E1-E4 BRIDGED ---> each port wired to additional MT AP device DNS,DHCP and Hotspot would run on Bridge interface E5 connected to ADSL internet router, therefore no NAT needed on RB 45...
by swissiws
Wed Apr 08, 2009 2:39 am
Forum: Wireless Networking
Topic: WDS - DHCP server still an issue
Replies: 6
Views: 1851

Re: WDS - DHCP server still an issue

Hi Chris, well, i guess i forgot to mention i am using at the lab RB112... 1) configured VAP on both routers. The result was the same.... 2) updated to version 3.22 on both routers. The DHCP problem is now solved (still taking its time while seeing both AP's, but its working. The main issue with thi...
by swissiws
Wed Apr 08, 2009 2:26 am
Forum: Wireless Networking
Topic: Hotspot user speed problem
Replies: 3
Views: 1923

Re: Hotspot user speed problem

hi there, yep, i have a simular requirement as you want to archive. I do not understand why you want to implement 2 hotspots on both MT's. Try to centralise such tasks to one MT. If you are using WDS bridge, the hotspot has to run on the bridge interface. I am/was using Wireless Orbit Radius server ...
by swissiws
Mon Apr 06, 2009 11:14 pm
Forum: Wireless Networking
Topic: WDS - DHCP server still an issue
Replies: 6
Views: 1851

Re: WDS - DHCP server still an issue

Sorry Chris, all is bridged, the MT1 WDS-Bridge interface has IP 192.168.254.254/24 The MT1 ethernet interface has IP 192.168.2.1/24 and is not a member of the bridge ports, therefore routed The DHCP server is running on the WDS-Bridge interface and the IP pool is 192.168.254.100-192.168.254.150 the...
by swissiws
Mon Apr 06, 2009 1:44 pm
Forum: Wireless Networking
Topic: WDS - DHCP server still an issue
Replies: 6
Views: 1851

Re: WDS - DHCP server still an issue

do you mean, each AP should have a DHCP server running? What if I would end up with 20+ AP's? I rather would like to centralise services where i can.

Cheers
by swissiws
Mon Apr 06, 2009 9:40 am
Forum: Wireless Networking
Topic: WDS - DHCP server still an issue
Replies: 6
Views: 1851

WDS - DHCP server still an issue

Hi All, I am still trying to get an responds of my previous posting. I hope, this time i will be a bit better in explaining what i have/want to do: MT 2.95 LEVEL 4 MT1: (1 ETHER, 1 WLAN) DHCP-SERVER (running on WDS bridge) AP-BRIDGE (AP1 for clients) WDS TO MT2 (dynamic) MT2: AP-BRIDGE (AP2 for clie...
by swissiws
Sat Apr 04, 2009 1:23 am
Forum: Wireless Networking
Topic: WDS AP-bridge on single radio with multiple MT's
Replies: 0
Views: 603

WDS AP-bridge on single radio with multiple MT's

Hi There, I have the following physical setup - Both MT's have on 1 radio (WLAN1) - MT1 has E1 interface connected to ADSL modem with NAT [ADSL(NAT)] --- [(MT1)E1 --WLAN1] ----wds-bridge---- [(MT2)WLAN1] Created a WDS AP-BRIDGE on MT1 on WLAN1 interface. Created a WDS AP-BRIDGE on MT2 on WLAN1 inter...