Wait until you get a SYN Flood DDoS and watch your MikroTik (doesn't matter which model or how much bandwidth you have) become totally unresponsive.R1CH, there is no crash here my friend so no worries, What you are saying is already well known and not the issue here but thanks anyways! ;)
Of course! We wouldn't want to be able to do what we need with our network. That would be outrageous!ABSOLUTELY no need for NAT under ipv6 ......
https://www.welivesecurity.com/2020/08/ ... sdropping/Can we have more information on CVE-2020-3702 and what it is.
More should I patch now or later type of question.
I don't think he is the one stuck in the past, rather the "IT companies" (more like Cisco resellers), which prefer to charge 10.000€ for a Cisco that does 1/10 of what a MikroTIk will do at 1/10 the price.Don't get stuck in the past
You can tell that to Cisco. With ALL their wizards for noobs. Right? ;)It's a good thing you aren't in sales.
Gave it a try on a hEX (RB750Gr3) and it worked out of the box!!) added WireGuard support;
The argument against this, is that it will produce anecdotal time and money savings.The argument against this is similar to the argument that the gui isn't needed at all because there's a command line.
'Don\'t require permissions'
/dude export-db dude.db
Correctthat way I will have 2 cores "dedicated" by CHR and I will not have problems with processor overload
it is? Am I right?
Note: RouterOS v6 does not support any USB Wi-Fi adapter
Probably.Strange that other people deny that they have a problem, maybe they don't understand what issue I mean?
I confirm the problem on Windows 7 64, using 64bit winbox.The problem with windows that have dynamic updates remains the same, I went back to 3.21 after 10 seconds of test...
++Colored rules could be useful. It would allow users to make it look like circus, but it would be everyone's choice. When used responsibly, it could sometimes help.
Aww, did your feelings got hurt?I don't know why this anav guy is so hostile to me. I put him into my ignore list. He has to stay out of all my discussions b/c of his sick and hostile comments to my postings.
Can you give more information about this?*) wireless - fixed Nstreme wireless protocol performance decrease;
Yeap! Added to foes... can't stand 100 posts per day blaming incompetence as bugs.As I wrote ... waste of my time.@mkx, you seem not to understand the problem.
Then you are doing something wrong.Like I said: even the standard downgrade function does not work, as the version is the same as before, after the reboot.
And double click on an input field does not select the text.I guess most of you have already noticed that <TAB> key does not move focus from one input field to another.
:global dns [:resolve "www.google.com"]
:put $dns
216.58.212.4
ROS cannot work as a container.Do you or anybody else can tell me whether RouterOS can be tested also in an LXC (or LXD) container in Linux as well?
Yeah, DoH is cool, but DNS forwarding is more essential to me.I was waiting for this much more than for DoH but each has their own preferences I guess.
Is this an subtle acknowledgement that you are working on it?nz_monkey is spot on
*) dns - added support for forwarding DNS queries of static entries to specific server (CLI only);
*) dns - added support for multiple type static entries (CLI only);
Also Android 10 on Samsung Galaxy S9+Android 9: terminates after about 83 seconds...
+1Yes! Bring our colors back! It is much easier to find something on a glance when it is different from its neighbors...Those new are just UGLY, one color type.Agreed. New icon set is horrendous
This is not true.ROS didn't use Quagga.
Or just revert it back to how it was...or use other more reliable ways.
It got announced today in Athens' MUM.The next two Mum's are on the 14th of November and the 28-29 of November. My money is on Brazil in two weeks.
+1could you please consider changing application bar/other WinBOX window component colour while in SafeMode? Regardless of information when exiting the app it would help to identify the current mode.
Interesting detail.One thing that may help replicate this issue is using the sfp port. Both times I have witnessed this and all times our tech support has witnessed this the sfp port is in use.
Amen!Please remove it, or at a minimum put it in a separate .NPK from the base OS. maybe a separate soho.npk that includes the torrent client, kid-control and SMB server..![]()
Torrent is an essential feature of every router!Wait, torrent wasn't a joke?
I guess asking for more info on that is pointless until you provide an update for stable/long-term channels, right?*) system - accept only valid string for "name" parameter in "disk" menu (CVE-2019-15055);
Do you want to elaborate more?Huh?..cpu spikes
You mean NPT, and both NAT66 and NPT (or netmap) are types of NAT.NETMAP needed.
not nat.
+1Will it ever be possible to filter ipsec logs by peer? Debugging is pretty much impossible if you have a ton of tunnels active.
When will it be fixed? This has been reported for many releases by now.Incorrect time is cosmetic Winbox bug noticed when there are multiple Winbox instances open. If you check in terminal, time is reported correctly.
Besides suggesting putting it in a landfill, polluting the environment for no good reason, do you have anything on-topic to suggest?In year 2019 - this RB belongs to the trash
Try connecting to port 12 instead of port1.3. Cannot find my router in Netinstall. Ethernet cable to Ether1 slot from my laptop, no other network connection and strictly follow instruction.
It takes just a few seconds. You don't really need to shut it down before removing power.How long does RouterOS take to shut down typically? I cannot find any indication of the progress once shutdown has been initiated? How vital it is to always shut down a unit properly (referring to SXT-LTE)
Thanks for including this fix.*) ipsec - allow multiple peers to the same address with different local-address (introduced in v6.43);
No, you don't need a better model. You need to configure FastTrack and you will able to reach 1Gbps.So now my problem would be whether I need a better model.
So, everyone else that does not use the default firewall will get annoying warnings about a supposedly insecure firewall configuration?Everything outside default protection rules. It should be only warning, nothing else.
+1Stop the use of the bundle package
Can you give more info on your setup/workflow?I have set up automated exports and the output is saved in version control system, so I know what exactly changed and when.