Community discussions

MikroTik App

Search found 1025 matches

by Cha0s
Wed Oct 07, 2020 1:53 pm
Forum: General
Topic: DDoS detection and blocking [SOLVED]
Replies: 8
Views: 466

Re: DDoS detection and blocking [SOLVED]

R1CH, there is no crash here my friend so no worries, What you are saying is already well known and not the issue here but thanks anyways! ;)
Wait until you get a SYN Flood DDoS and watch your MikroTik (doesn't matter which model or how much bandwidth you have) become totally unresponsive.
by Cha0s
Thu Oct 01, 2020 2:11 pm
Forum: Virtualization
Topic: Cant Find Software ID
Replies: 1
Views: 100

Re: Cant Find Software ID

There is no License Level 4 for CHR.
https://wiki.mikrotik.com/wiki/Manual:CHR#CHR_Licensing
by Cha0s
Tue Sep 22, 2020 7:26 pm
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 127
Views: 50781

Re: v6.48beta [testing] is released!

All I am saying is, that those who have enough switches that will benefit from a single management plane, will almost certainly need HA features to go with it. In other words, introducing SPOFs on the network just to save on management costs, probably wont fly with most network engineers. At least t...
by Cha0s
Tue Sep 22, 2020 10:59 am
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 127
Views: 50781

Re: v6.48beta [testing] is released!

If there's no redundancy and no efficiency (local switching), what's the point in this technology?

Why not implement something that's more datacenter/enterprise friendly?
Even if it's proprietary. It's not like everyone else's stacking options are inter-compatible anyway...
by Cha0s
Thu Sep 17, 2020 3:22 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 70
Views: 8986

Re: WinBox v3.27 released!

Firewall and Bridge Filter rules lists are still misbehaving. As long as a rule detail window is open, the list itself will not let you drag and drop rules properly. When you're dragging a rule, it jumps to the very bottom of the list every second (on each window refresh). It seems to only happen w...
by Cha0s
Tue Sep 15, 2020 12:25 pm
Forum: Announcements
Topic: Expected down time for this forum SEPT 11
Replies: 42
Views: 4241

Re: Expected down time for this forum SEPT 11

In my 20 years of experience with PHP and phpBB, I've never ever seen users' password stop working because of a PHP version change.

So was this sudden "migration and maintenance" some type of compromise which MikroTik failed to inform us about?
by Cha0s
Sun Sep 13, 2020 3:19 am
Forum: Announcements
Topic: Expected down time for this forum SEPT 11
Replies: 42
Views: 4241

Re: Expected down time for this forum SEPT 11

Same here. Password was not working. Had to reset.
by Cha0s
Sun Sep 06, 2020 3:16 pm
Forum: General
Topic: Feature Request: IPv6 NAT support
Replies: 18
Views: 5160

Re: Feature Request: IPv6 NAT support

ABSOLUTELY no need for NAT under ipv6 ......
Of course! We wouldn't want to be able to do what we need with our network. That would be outrageous!
by Cha0s
Fri Sep 04, 2020 4:53 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 70
Views: 8986

Re: WinBox v3.27 released!

This issue (autoscroll hiding the last line) actually exists since forever. If you run ping and resize the window a little bit, you can make it hide the last line, just the way you see it now in the log window. It all has to do with the correct window size for autoscroll to work properly. Annoying, ...
by Cha0s
Fri Sep 04, 2020 3:16 am
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 70
Views: 8986

Re: WinBox v3.27 released!

What's new in v3.27: *) fixed content drawing of read-only tables (introduced in v3.26); I did not try that version at first (because I did not install 3.26) but now I got a message from OskarsK asking if it fixes the column/rule dragging problem, and indeed it seems that this issue is now resolved...
by Cha0s
Thu Sep 03, 2020 1:29 pm
Forum: Announcements
Topic: v6.47.3 [stable] is released!
Replies: 50
Views: 9960

Re: v6.47.3 [stable] is released!

Can we have more information on CVE-2020-3702 and what it is.
More should I patch now or later type of question.
https://www.welivesecurity.com/2020/08/ ... sdropping/
by Cha0s
Thu Sep 03, 2020 1:28 pm
Forum: RouterBOARD hardware
Topic: Boards keep Freezing
Replies: 4
Views: 279

Re: Boards keep Freezing

I am left to conclude that there is a problem with software version Router OS 6.2 and later perhaps even earlier as this problem was never there before. Do you really run RouterOS v6.2? That's 7 years old! There are dozens and dozens of fixes and new features since then! I'd say, try to upgrade fir...
by Cha0s
Wed Sep 02, 2020 1:32 pm
Forum: General
Topic: Feature Request: IPv6 NAT support
Replies: 18
Views: 5160

Re: Feature Request: IPv6 NAT support

Also for every NAT that happens in v6, 4 kitties are murdered!

Keep that in mind next time you people ask such outrageous features that other vendors support for years now!
The body(kitty) count is in the billions by now! A tragedy really...
by Cha0s
Fri Aug 28, 2020 1:43 pm
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 5966

Re: WinBox v3.25 released!

Problem with moving firewall rules and jumping around randomly has not been resolved.

So winbox >3.21 is still not usable.
by Cha0s
Wed Aug 26, 2020 5:25 pm
Forum: RouterOS v7 BETA
Topic: Wireguard consideration !!!!!
Replies: 3
Views: 579

Re: Wireguard consideration !!!!!

I've been using Wireguard the last few months on my Smartphone and Laptop and regardless what that article says, for my use case it is a godsend! Never before I could truly have "always-on" VPN on android while on the move (frequent change of networks/ips) without having constant connectivity and ba...
by Cha0s
Tue Aug 25, 2020 12:30 pm
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 89
Views: 4583

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

Don't get stuck in the past
I don't think he is the one stuck in the past, rather the "IT companies" (more like Cisco resellers), which prefer to charge 10.000€ for a Cisco that does 1/10 of what a MikroTIk will do at 1/10 the price.

To me, it's just ignorance and many times arrogance.
by Cha0s
Mon Aug 24, 2020 4:05 pm
Forum: SwOS
Topic: RB260GS and LACP or LAG
Replies: 2
Views: 223

Re: RB260GS and LACP or LAG

RB260GS (and/or CSS106-5G-1S) does not support any kind of bonding.
by Cha0s
Sat Aug 22, 2020 4:27 pm
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

It's a good thing you aren't in sales.
You can tell that to Cisco. With ALL their wizards for noobs. Right? ;)
by Cha0s
Fri Aug 21, 2020 5:27 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 275
Views: 70268

Re: v7.1beta2 [development] is released!

I don't have it at hand, but I remember someone had posted it in the forum a while ago.
by Cha0s
Fri Aug 21, 2020 5:14 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 275
Views: 70268

Re: v7.1beta2 [development] is released!

So in terms of MikroTik and RouterOS I do not see ANY functionality that mimics or deals with wire-speed Routing at the switch level. L3 offloading happens on the switch chip. That's why it's called "L3 offloading". They offload the routing functionality from the CPU, to the switch chip, thus achie...
by Cha0s
Fri Aug 21, 2020 3:42 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 275
Views: 70268

Re: v7.1beta2 [development] is released!

!) added WireGuard support;
Gave it a try on a hEX (RB750Gr3) and it worked out of the box!

The performance was capped at around 100mbit though. Maybe the hEX is not powerful enough.
More tests are warranted :)
by Cha0s
Tue Aug 18, 2020 6:03 pm
Forum: Announcements
Topic: Winbox v3.24 released!
Replies: 106
Views: 57441

Re: Winbox v3.24 released!

It would be useful when there would be some kind of "pause" button or a way to configure the update rate of such screens +1 This would be very helpful, especially on the connections tab (firewall window) and on the routes window. On routers with hundreds of thousands of connections and/or routes, t...
by Cha0s
Sun Aug 16, 2020 1:37 am
Forum: Forwarding Protocols
Topic: Redundant BGP With Redundant Routers VIA VRRP Need Help
Replies: 5
Views: 1177

Re: Redundant BGP With Redundant Routers VIA VRRP Need Help

On the one hand, using VRRP the way OP described, will not necessarily make failover any faster, if for example the physical link stays up but it doesn't pass any traffic. Even if you failover on your end, the other end will still have to timeout before using the routes from the other BGP peer. On t...
by Cha0s
Fri Aug 14, 2020 7:41 pm
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

Anecdotal? How can you pretend to know the benefits, or lack thereof, without fine details regarding the way that it would work? I do not pretend. I know that it won't be more beneficial, faster, more money saving (or whatever) than pasting a single command on CLI for example. There are all the too...
by Cha0s
Fri Aug 14, 2020 1:36 pm
Forum: Forwarding Protocols
Topic: Redundant BGP With Redundant Routers VIA VRRP Need Help
Replies: 5
Views: 1177

Re: Redundant BGP With Redundant Routers VIA VRRP Need Help

You don't need VRRP if you already have 2 BGP sessions with your upstream. Just ditch VRRP on the public side (ether1), and do 1 BGP peering on each of your routers. BGP will take care of failover, etc. You can also use BGP MED to control which router will be the "primary" (ie: on which router you w...
by Cha0s
Fri Aug 14, 2020 12:54 am
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

The argument against this is similar to the argument that the gui isn't needed at all because there's a command line.
The argument against this, is that it will produce anecdotal time and money savings.
by Cha0s
Thu Aug 13, 2020 10:22 am
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

If you like wizards and non industry standard terminology (jargon), you can always use vendors like TP-Link, D-Link, Netgear, etc.
by Cha0s
Thu Aug 06, 2020 10:43 pm
Forum: Beginner Basics
Topic: "Reset Button" purpose in Winbox GUI
Replies: 6
Views: 1376

Re: "Reset Button" purpose in Winbox GUI

Which reset button exactly?
There are many reset buttons on Winbox windows.
by Cha0s
Thu Aug 06, 2020 12:41 pm
Forum: General
Topic: Webfig Skin broken by BUG
Replies: 1
Views: 466

Re: Webfig Skin broken by BUG

I have no idea how WebFig skins work. I've never used WebFig (I am not a masochist :P ).
But you may try escaping single quotes.
'Don\'t require permissions'
by Cha0s
Thu Aug 06, 2020 12:05 pm
Forum: RouterBOARD hardware
Topic: CCR2004 : BGP Benchmarks
Replies: 41
Views: 10183

Re: CCR2004 : BGP Benchmarks

Looks like LibreNMS.
by Cha0s
Wed Aug 05, 2020 1:13 pm
Forum: The Dude
Topic: Dude VM Licensing Issue
Replies: 4
Views: 985

Re: Dude VM Licensing Issue

RouterOS backups do not include the Dude data.

You need to backup the dude database separately using the following command:
/dude export-db dude.db
by Cha0s
Tue Aug 04, 2020 7:54 pm
Forum: The Dude
Topic: Dude 3.6 & 6 compatibility
Replies: 1
Views: 641

Re: Dude 3.6 & 6 compatibility

Dude 3.6 cannot connect to newer versions of ROS. In recent (well not so recent) versions of ROS the authentication method has changed, so old Dude cannot connect anymore. AFAIK there is no workaround except to update. But, while updating might sound cool, you make sure you do tons of tests and back...
by Cha0s
Fri Jul 31, 2020 3:30 pm
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 147
Views: 58401

Re: v6.47.1 [stable] is released!

LE: It seems somehow my vlan interface was not initialized properly since its interface route didn't appear in the routing table. After an edit/update of the interface it seems to be fixed. This has happened to me starting with v6.45.7 (also on a CCR1009). Disabling/enabling the interface fixes the...
by Cha0s
Wed Jul 29, 2020 5:35 pm
Forum: Virtualization
Topic: CHR does not support more than two cores, is this true?
Replies: 5
Views: 1579

Re: CHR does not support more than two cores, is this true?

that way I will have 2 cores "dedicated" by CHR and I will not have problems with processor overload
it is? Am I right?
Correct
by Cha0s
Wed Jul 29, 2020 5:34 pm
Forum: Virtualization
Topic: WIreless interface detected as ethernet interface
Replies: 3
Views: 782

Re: WIreless interface detected as ethernet interface

https://wiki.mikrotik.com/wiki/Supporte ... less_cards
Note: RouterOS v6 does not support any USB Wi-Fi adapter
by Cha0s
Sat Jul 25, 2020 3:10 pm
Forum: Virtualization
Topic: CHR does not support more than two cores, is this true?
Replies: 5
Views: 1579

Re: CHR does not support more than two cores, is this true?

It is not true. You can have more than 2 cores per CHR instance. I believe the linux kernel can handle 2048 cores (and that's an old info - this may have been increased in recent years). BUT, you should NOT proceed with your suggested setup. Disable hyperthreading on the hypervisor's CPU and only gi...
by Cha0s
Thu Jul 23, 2020 4:08 pm
Forum: RouterBOARD hardware
Topic: Replacing RB493G
Replies: 2
Views: 507

Re: Replacing RB493G

The backup will work. Here are the differences between those 2 levels. https://wiki.mikrotik.com/wiki/Manual:License#License_Levels I don't think that you'll have any problems, unless you use more than 200 PPPoE interfaces or something. BUT, backups from other devices will cause you headaches restor...
by Cha0s
Wed Jul 22, 2020 6:56 pm
Forum: Forwarding Protocols
Topic: L2 Tunnel with Minimum CPU Usage?
Replies: 10
Views: 2085

Re: L2 Tunnel with Minimum CPU Usage?

Both routers support AES hw acceleration. So both can do way more than 70mbit/s with encryption. Also, AFAIK, increasing the CPU cores, will not increase your throughput if all traffic flows through a single IPsec session. EoIP and L2TP can both do hundreds of mbits/s without breaking a sweat. So, i...
by Cha0s
Mon Jun 29, 2020 3:54 pm
Forum: General
Topic: RB4011 and RB1100 AHx4 "bricks" randomly
Replies: 156
Views: 31343

Re: RB4011 and RB1100 AHx4 "bricks" randomly

I've got the same issue with multiple RB4011's. Completely locked out, while still forwarding traffic. My common denominator on the boards that lock me out, is the use of IPsec. More specifically the devices that crash are VPN concentrators that allow IPsec sessions from anyone in the world. One of ...
by Cha0s
Wed Jun 24, 2020 6:12 pm
Forum: Announcements
Topic: Winbox v3.24 released!
Replies: 106
Views: 57441

Re: Winbox v3.24 released!

Strange that other people deny that they have a problem, maybe they don't understand what issue I mean?
Probably.
I just confirmed the issue is also present on Windows 10.
by Cha0s
Wed Jun 24, 2020 5:02 pm
Forum: Announcements
Topic: Winbox v3.24 released!
Replies: 106
Views: 57441

Re: Winbox v3.24 released!

The problem with windows that have dynamic updates remains the same, I went back to 3.21 after 10 seconds of test...
I confirm the problem on Windows 7 64, using 64bit winbox.
by Cha0s
Mon Jun 08, 2020 1:37 pm
Forum: General
Topic: BGP Questions
Replies: 14
Views: 1948

Re: BGP Questions

The L3 hardware offload will take many months (or years - we are talking about v7 after all) before you can consider it stable. And even then, it will still be a... switch.
by Cha0s
Sun Jun 07, 2020 3:55 pm
Forum: General
Topic: BGP Questions
Replies: 14
Views: 1948

Re: BGP Questions

Forget CRS.
CRS are switches. NOT routers.

You DON'T want to use a switch as a router no matter how good you think it looks.

You need a CCR. Check mikrotik.com/products to find the one that suits your needs.
by Cha0s
Sun Jun 07, 2020 2:53 pm
Forum: Wireless Networking
Topic: Latency Spikes
Replies: 8
Views: 1510

Re: Latency Spikes

If you need fixed/stable latency then you must use an ethernet cable to connect.
Using WiFi, especially in 2.4GHz, you will always have jitter.
by Cha0s
Sun Jun 07, 2020 1:10 pm
Forum: Forwarding Protocols
Topic: DHCP Relay over OSPF?
Replies: 3
Views: 1354

Re: DHCP Relay over OSPF?

If there is L3 reach-ability between the relay and the server, it doesn't matter how they reach each other (OSPF, BGP, RIP, static, whatever).
by Cha0s
Sun Jun 07, 2020 12:55 pm
Forum: General
Topic: Feature request: rules groups or rules colors in WinBox
Replies: 6
Views: 1407

Re: Feature request: rules groups or rules colors in WinBox

Colored rules could be useful. It would allow users to make it look like circus, but it would be everyone's choice. When used responsibly, it could sometimes help.
++
by Cha0s
Fri Jun 05, 2020 4:15 pm
Forum: RouterBOARD hardware
Topic: CCR2004 : BGP Benchmarks
Replies: 41
Views: 10183

Re: CCR2004 : BGP Benchmarks

You can reach 80gbps of unrealistic traffic with a 1072, but with real traffic, it begins to lost packets with a fraction of the max throughput. :? Have you tried with disabled connection tracking? You will not have stateful firewall without connection tracking, but the performance is way better. I...
by Cha0s
Mon Jun 01, 2020 2:59 pm
Forum: Announcements
Topic: v6.47rc [testing] is released!
Replies: 63
Views: 15980

Re: v6.47rc [testing] is released!

I didn't notice any difference on an 802.11n Nstreme link that I tried 6.47rc2 on. But it was working fine before anyway. The general problem with Nstreme, since 802.11n, is that it keeps disconnecting for no apparent reason. "Polling timeout" IIRC. When it works OK (clean frequency and biting your ...
by Cha0s
Sun May 31, 2020 9:27 pm
Forum: Announcements
Topic: v6.47rc [testing] is released!
Replies: 63
Views: 15980

Re: v6.47rc [testing] is released!

This is irrelevant.
by Cha0s
Sun May 31, 2020 9:26 pm
Forum: General
Topic: [request] WinBox Log window - wrong columns width
Replies: 6
Views: 2389

Re: [request] WinBox Log window - wrong columns width

This has been addressed in Winbox 3.24. You can move the columns around and also apply filters on the log window. In your case, going from VGA to HDMI, I can only assume that your PC changed it's dpi scaling. With dpi scaling anything other than 100%, older versions of winbox will cause the log wind...
by Cha0s
Sun May 31, 2020 9:21 pm
Forum: Announcements
Topic: v6.47rc [testing] is released!
Replies: 63
Views: 15980

Re: v6.47rc [testing] is released!

Upgraded from 6.45.5 to 6.47rc2.

Noticed that btest is taking up more memory causing boards with 32MB RAM to become unresponsive.

I don't know in which version this started. I also tried 6.46.6 with the same results.
by Cha0s
Sun May 31, 2020 2:26 pm
Forum: RouterOS v7 BETA
Topic: V7 questions?
Replies: 34
Views: 7783

Re: V7 questions?

I don't know why this anav guy is so hostile to me. I put him into my ignore list. He has to stay out of all my discussions b/c of his sick and hostile comments to my postings.
Aww, did your feelings got hurt? :mrgreen:
by Cha0s
Fri May 29, 2020 3:14 pm
Forum: SwOS
Topic: SwitchOS not treating lag like single link for spanning tree?
Replies: 2
Views: 979

Re: SwitchOS not treating lag like single link for spanning tree?

I've got a CRS317 with LACP bonding.
On the other end I've got two Cisco Nexus 7706 (portchannel with VPC).

I don't have the issue you describe.
But I use RouterOS instead of SwOS.
by Cha0s
Tue May 26, 2020 3:04 pm
Forum: Announcements
Topic: v6.47rc [testing] is released!
Replies: 63
Views: 15980

Re: v6.47rc [testing] is released!

Frankly since 802.11n, but I am curious what exactly they fixed.
by Cha0s
Tue May 26, 2020 1:33 pm
Forum: Beginner Basics
Topic: Recover admin password [SOLVED]
Replies: 2
Views: 783

Re: Recover admin password [SOLVED]

Open Addresses.CDB with notepad and you will probably be able to find the password in there.
by Cha0s
Tue May 26, 2020 1:30 pm
Forum: General
Topic: My MikroTik is Hacked!!! Found file 7wmp0b4s.rsc [SOLVED]
Replies: 23
Views: 4356

Re: My MikroTik is Hacked!!! Found file 7wmp0b4s.rsc [SOLVED]

[joking]
I am using Windows 95, they have been working great for the last 25 years without any updates!
I've also been using no firewall, since firewalls are for newbs.

But, today I logged in only to find out that they were hacked!

How could this have happened???
[/joking]
by Cha0s
Tue May 26, 2020 1:15 pm
Forum: Announcements
Topic: v6.47rc [testing] is released!
Replies: 63
Views: 15980

Re: v6.47rc [testing] is released!

*) wireless - fixed Nstreme wireless protocol performance decrease;
Can you give more information about this?
by Cha0s
Sun May 24, 2020 2:06 pm
Forum: Beginner Basics
Topic: How to downgrade RouterOS from v6.46.6 to v6.45.1 ? [SOLVED]
Replies: 13
Views: 2432

Re: How to downgrade RouterOS from v6.46.6 to v6.45.1 ? [SOLVED]

@mkx, you seem not to understand the problem.
As I wrote ... waste of my time.
Yeap! Added to foes... can't stand 100 posts per day blaming incompetence as bugs.
by Cha0s
Sat May 23, 2020 8:31 pm
Forum: Beginner Basics
Topic: The extra packages in RouterOS [SOLVED]
Replies: 21
Views: 2963

Re: The extra packages in RouterOS [SOLVED]

You mean constructive, like telling you exactly how to downgrade and you ignoring it?
by Cha0s
Sat May 23, 2020 7:44 pm
Forum: Beginner Basics
Topic: The extra packages in RouterOS [SOLVED]
Replies: 21
Views: 2963

Re: The extra packages in RouterOS [SOLVED]

Like I said: even the standard downgrade function does not work, as the version is the same as before, after the reboot. Then you are doing something wrong. Read the fine manual again and retry until you succeed. Only with exercise you will learn how to properly use ROS. [admin2@CRS125] /ip service...
by Cha0s
Sat May 23, 2020 5:54 pm
Forum: Wireless Networking
Topic: Wireless sniffing - Is this possible
Replies: 1
Views: 509

Re: Wireless sniffing - Is this possible

I believe that Wireless Sniffer uses the same protocol as Packet Sniffer to stream the data to a server. TZSP
by Cha0s
Sat May 23, 2020 5:48 pm
Forum: Beginner Basics
Topic: interface rate-limit on bridge with VLAN
Replies: 2
Views: 659

Re: interface rate-limit on bridge with VLAN

Go to the Switch window and then on the Port tab.

There you can set the Ingress and Egress rate of each interface.
by Cha0s
Sat May 23, 2020 5:44 pm
Forum: Beginner Basics
Topic: DSL Behind Modem
Replies: 1
Views: 463

Re: DSL Behind Modem

You need to either set a different subnet for the modem (or LAN) or bridge ether1 and ether2 so they are both in the same broadcast domain. Right now you've got 10.0.0.0/24 for both the modem (ether1) and your lan (ether2) Also, you probably will need to set up a SNAT rule to be able to access the m...
by Cha0s
Sat May 23, 2020 5:40 pm
Forum: Beginner Basics
Topic: CHR licensing
Replies: 1
Views: 517

Re: CHR licensing

It used to be different (I don't recall when they changed their licensing model) and a license would not cover unlimited major version upgrades. At some point (I think during v5) they changed this model. I've got licenses that I bought in 2005 using v2.9.x and have upgraded them to v3, v4, v5, v6 ov...
by Cha0s
Sat May 23, 2020 5:30 pm
Forum: Beginner Basics
Topic: The extra packages in RouterOS [SOLVED]
Replies: 21
Views: 2963

Re: The extra packages in RouterOS [SOLVED]

Like I said: even the standard downgrade function does not work, as the version is the same as before, after the reboot.
Then you are doing something wrong.
Read the fine manual again and retry until you succeed.

Only with exercise you will learn how to properly use ROS.
by Cha0s
Sat May 23, 2020 4:37 pm
Forum: Beginner Basics
Topic: The extra packages in RouterOS [SOLVED]
Replies: 21
Views: 2963

Re: The extra packages in RouterOS [SOLVED]

To upgrade you can use the System > Packages window and click on "Check for Upgrades". From there you can also change channels (stable, long-term, rc, dev) If you want to downgrade to a specific version, then you have to upload the packages manually to the router and then from the System > Packages ...
by Cha0s
Sat May 23, 2020 3:57 pm
Forum: General
Topic: ECMP LoadBalancing
Replies: 15
Views: 2338

Re: ECMP LoadBalancing

@Cha0s, what you suggest would likely work, but sending individual packets of the same TCP session via different physical paths is what 9 of 10 dentists advice against as that may cause packets to arrive to destination in shuffled order. So a good exercise but a possible headache if deployed in pro...
by Cha0s
Sat May 23, 2020 3:21 am
Forum: General
Topic: ECMP LoadBalancing
Replies: 15
Views: 2338

Re: ECMP LoadBalancing

One way to evenly distribute the traffic among all interfaces with using pure ECMP (no routing marks, etc), is by disabling route cache in IP > Settings. This will make each packet to go through a different interface in round-robin fashion (I think), instead of per src/dst ip. So even a single conne...
by Cha0s
Sat May 16, 2020 6:16 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

What's broken in beta60? I use it on a lora gateway and I haven't noticed any issues (albeit - it's just a lora gateway). By the way, I kind of gotten used to the new icon-set, but it appears terribly low quality. Like using old gifs (256colors) in 90s web pages and manually setting the dimensions i...
by Cha0s
Sat May 16, 2020 5:43 pm
Forum: RouterBOARD hardware
Topic: hardware idea for a multiport switch
Replies: 64
Views: 31797

Re: hardware idea for a multiport switch

Small DIN switches.. Wide input DC power. It'd be nice to be able to mount small switches on walls in closets, cabinets, backboards, industrial situations, etc... Good idea! Also something like what Nexans is doing with their Microswitches for FTTO. I've used them in a few buldings and while the id...
by Cha0s
Sat May 16, 2020 5:27 pm
Forum: RouterOS v7 BETA
Topic: UI/UX On WinBox
Replies: 23
Views: 4311

Re: UI/UX On WinBox

r00t, you are spot on!

(too bad there isn't a 'hear hear' or 'clapping' emoticon available)
by Cha0s
Sat May 16, 2020 2:12 pm
Forum: RouterOS v7 BETA
Topic: UI/UX On WinBox
Replies: 23
Views: 4311

Re: UI/UX On WinBox

Winbox is more than comfortable. If you don't feel comfortable with the current UI, then Winbox is not for you. You can look into TP-Link or Netgear. I hear their devices are VERY comfortable to use. Hey bro, I think you are too proud with wrong direction, I just suggest to Mikrotik for better user...
by Cha0s
Fri May 15, 2020 9:06 pm
Forum: Announcements
Topic: v6.46.6 [stable] is released!
Replies: 69
Views: 33581

Re: v6.46.6 [stable] is released!

by Cha0s
Thu May 14, 2020 3:39 pm
Forum: RouterOS v7 BETA
Topic: UI/UX On WinBox
Replies: 23
Views: 4311

Re: UI/UX On WinBox

Third, UI/UX dose not harm WinBox, it only interface to make more comfortable look and feel to use network as simple configuration. By definition changing the UI you change the interface . It's the "I" in UI. Winbox is more than comfortable. If you don't feel comfortable with the current UI, then W...
by Cha0s
Sat May 09, 2020 8:40 pm
Forum: Announcements
Topic: Winbox v3.23 released!
Replies: 60
Views: 29176

Re: Winbox v3.23 released!

But now they are aspiring to be in the range of Enterprise hardware/software vendors, so such topics must receive top priority. Unfortunately they are just aspiring to get into the enterprise sector. They don't actually try to. I can't imagine any big enterprise that can wait for over 6 years for f...
by Cha0s
Sat May 09, 2020 12:39 pm
Forum: Announcements
Topic: Updated btest.exe available for download
Replies: 15
Views: 7143

Re: Updated btest.exe available for download

I guess most of you have already noticed that <TAB> key does not move focus from one input field to another.
And double click on an input field does not select the text.
by Cha0s
Fri May 08, 2020 4:58 pm
Forum: Announcements
Topic: Updated btest.exe available for download
Replies: 15
Views: 7143

Re: Updated btest.exe available for download

Also tried using the server feature in btest, but router can't connect to it, no matter if using UDP or TCP. Going to server tab, checking "Enabled" and pressing "Apply settings" does nothing. I don't even see open btest TCP port... Works ok here. Maybe your windows firewall blocks the incoming bte...
by Cha0s
Fri May 08, 2020 4:40 pm
Forum: Beginner Basics
Topic: nslookup on Mikrotik
Replies: 17
Views: 39020

Re: nslookup on Mikrotik

:global dns [:resolve "www.google.com"]     
:put $dns
216.58.212.4
by Cha0s
Fri May 08, 2020 1:08 pm
Forum: RouterOS v7 BETA
Topic: UI/UX On WinBox
Replies: 23
Views: 4311

Re: UI/UX On WinBox

What does SDN have to do with Winbox UI?

I strongly disagree with redesigning the Winbox UI.
by Cha0s
Tue May 05, 2020 6:59 pm
Forum: General
Topic: Bandwidth alert
Replies: 5
Views: 929

Re: Bandwidth alert

I think it's more complicated than that. No matter what method you choose, how would you (automatically/inside ROS only) know that the bottleneck is between you and the ISP (thus the ISP cheating) or somewhere outside your ISP's network (depending on how/with who you perform the tests) ? If the ISP ...
by Cha0s
Tue May 05, 2020 3:29 pm
Forum: Forwarding Protocols
Topic: BGP advertise smaller prefix than /24 [SOLVED]
Replies: 7
Views: 3382

Re: BGP advertise smaller prefix than /24 [SOLVED]

Sure, that's all true (that was implied by my "user defined policy" comment).
But OP didn't mention anything about RIRs or the public internet or any "provider".

Those were your assumptions followed by a false statement about what the protocol can or cannot do.
by Cha0s
Sun May 03, 2020 6:19 pm
Forum: Forwarding Protocols
Topic: BGP advertise smaller prefix than /24 [SOLVED]
Replies: 7
Views: 3382

Re: BGP advertise smaller prefix than /24 [SOLVED]

BGP not allow to announce /24 to provider over eBGP but if you are in your network with iBGP you can do it! This is a false statement. BGP doesn't care about prefix length on its advertisements, regardless of eBGP or iBGP. You are confusing user defined policy (which yes, /24 is usually the smalles...
by Cha0s
Sat May 02, 2020 8:59 pm
Forum: Virtualization
Topic: Docker Mikrotik - In two minutes ( en dos minutos )
Replies: 3
Views: 2339

Re: Docker Mikrotik - In two minutes ( en dos minutos )

So... you are using Docker to run a fully virtualized instance of CHR using qemu.
Meaning this is not a container but a full fledged VM over Docker.

What exactly is the point of this?
by Cha0s
Wed Apr 29, 2020 4:34 pm
Forum: Announcements
Topic: MikroTik newsletter May 2020 (#95)
Replies: 50
Views: 27652

Re: MikroTik newsletter May 2020 (#95)

Unfortunatley every time MikroTik features in a Linus Tech Tips video he never gives the product the showcase it deserves, makes me wonder if he really understands it! After watching their 10 Gbit home network video a while back and they were having trouble figuring out how to configure it/couldn't...
by Cha0s
Tue Apr 28, 2020 10:42 pm
Forum: RouterOS v7 BETA
Topic: V7 questions?
Replies: 34
Views: 7783

Re: V7 questions?

Do you or anybody else can tell me whether RouterOS can be tested also in an LXC (or LXD) container in Linux as well? ROS cannot work as a container. Do you happen to know whether RouterOS can be installed on the following dual-core ARM device with multiple Gigabit interfaces: http://wiki.banana-pi...
by Cha0s
Tue Apr 28, 2020 7:26 pm
Forum: RouterOS v7 BETA
Topic: V7 questions?
Replies: 34
Views: 7783

Re: V7 questions?

Do you or anybody else can tell me whether RouterOS can be tested also in an LXC (or LXD) container in Linux as well?
ROS cannot work as a container.
by Cha0s
Sat Apr 25, 2020 4:01 pm
Forum: General
Topic: L2TP/IPSEC and Android Disconnect after ~83 seconds
Replies: 15
Views: 5492

Re: L2TP/IPSEC and Android Disconnect after ~83 seconds

So I don't see this one getting fixed any time soon (even if it's fixed, it will probably never make it to each vendor's updates). Wow! Talk about bad prediction! Just today I got an update from Samsung! And while it didn't mention anything in the changelog, it appears that they included a fix for ...
by Cha0s
Sat Apr 25, 2020 2:54 pm
Forum: Forwarding Protocols
Topic: BGP advertise smaller prefix than /24 [SOLVED]
Replies: 7
Views: 3382

Re: BGP advertise smaller prefix than /24 [SOLVED]

BGP can and will announce any prefix length.

Check your filters, you probably discard any prefix smaller than /24.
by Cha0s
Fri Apr 24, 2020 7:52 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

I was waiting for this much more than for DoH but each has their own preferences I guess.
Yeah, DoH is cool, but DNS forwarding is more essential to me.
I personally had given up on it. So this was a pleasant surprise!
by Cha0s
Fri Apr 24, 2020 3:57 pm
Forum: RouterOS v7 BETA
Topic: Feature Request - Wireguard Protocol
Replies: 163
Views: 46965

Re: Feature Request - Wireguard Protocol

nz_monkey is spot on
Is this an subtle acknowledgement that you are working on it? :D
by Cha0s
Fri Apr 24, 2020 3:51 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

*) dns - added support for forwarding DNS queries of static entries to specific server (CLI only);
*) dns - added support for multiple type static entries (CLI only);
Finally!!!
Can't wait to test this one out!

Will forwarding be able to match regex entries also?
by Cha0s
Fri Apr 24, 2020 3:25 pm
Forum: General
Topic: L2TP/IPSEC and Android Disconnect after ~83 seconds
Replies: 15
Views: 5492

Re: L2TP/IPSEC and Android Disconnect after ~83 seconds

From what I understand this is an Android bug and it's not specific to MikroTik. So I don't see this one getting fixed any time soon (even if it's fixed, it will probably never make it to each vendor's updates). For the time being I switched to Wireguard, and so far I am very happy with it. I'll pro...
by Cha0s
Fri Apr 24, 2020 3:54 am
Forum: General
Topic: L2TP/IPSEC and Android Disconnect after ~83 seconds
Replies: 15
Views: 5492

Re: L2TP/IPSEC and Android Disconnect after ~83 seconds

Android 9: terminates after about 83 seconds...
Also Android 10 on Samsung Galaxy S9+
Prior to the recent Android 10 upgrade from Android 9, it was definitely working for me without problems.

Has anyone found out any solution?
by Cha0s
Thu Apr 23, 2020 12:03 pm
Forum: General
Topic: Transparent L2 Passthrough [SOLVED]
Replies: 5
Views: 2261

Re: Transparent L2 Passthrough [SOLVED]

That's exactly what EoIP is for.
by Cha0s
Fri Apr 17, 2020 2:55 pm
Forum: RouterBOARD hardware
Topic: The correct scheme for connecting two Mikrotiks to three switches
Replies: 3
Views: 2160

Re: The correct scheme for connecting two Mikrotiks to three switches

Pay attention to the implementation scheme, are there any comments? He just told you. The switches you are using are not routers. You need to put in proper routers if you need to route (not switch) traffic. MikroTik switches, are not L3 switches. They may technically be able to do routing, but not ...
by Cha0s
Sun Mar 29, 2020 6:16 pm
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

This is certainly true but why not do an identical procedure on ROS via WinBox or WebFig? Because it is a waste of developer resources. MikroTik should focus on fixing bugs and introducing new features. Not cater to noobs that cannot be bothered to read the manual. Seriously, the amount of posts as...
by Cha0s
Fri Mar 27, 2020 12:07 am
Forum: RouterOS v7 BETA
Topic: FEATURE REQUEST: Add Basic Firewall Rule Wizard
Replies: 63
Views: 13082

Re: FEATURE REQUEST: Add Basic Firewall Rule Wizard

This is exactly why I hate the IT community. Simplifying something isn’t going to cost you your job. That's why I hate the non-IT community . Instead of complaining about what you don't know how to use and asking to dumb down things, you should start by RTFM. It doesn't cost your job. It isn't even...
by Cha0s
Wed Mar 25, 2020 5:14 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

That what you wrote is still in the future. All major web servers support TLS 1.3 already. Browsers too. It is NOT in the future. It's already being rolled out. It has started since 2018. At the moment using DoH is futile if you want to have privacy. I remember back in the non SSL/TLS days, people ...
by Cha0s
Wed Mar 25, 2020 2:30 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

It is a FALSE assumption, that your traffic (metadata) is invisible when using HTTPS or/and DoH. When TLS 1.3 becomes mainstream, it will no longer be an assumption. Right now even using TLS, the ISP can see the domain you are visiting. After TLS 1.3 that will no longer be possible and the L3-L4 "m...
by Cha0s
Mon Mar 02, 2020 9:18 pm
Forum: Announcements
Topic: v6.47beta [testing] is released!
Replies: 269
Views: 125596

Re: v6.47beta [testing] is released!

Agreed. New icon set is horrendous
Those new are just UGLY, one color type.
Yes! Bring our colors back! It is much easier to find something on a glance when it is different from its neighbors...
+1
by Cha0s
Mon Feb 17, 2020 3:14 pm
Forum: Announcements
Topic: Winbox v3.21 released!
Replies: 55
Views: 18238

Re: Winbox v3.21 released!

People who asked to do the interface smaller probably work on a FullHD monitor because on a 4K monitor (3840x2160) the interface looks incredibly small even with the maximal zoom. Please make the interface bigger or add more zoom levels. QHD, and I still prefer it smaller than the default. The more...
by Cha0s
Fri Feb 07, 2020 12:45 pm
Forum: Announcements
Topic: Winbox v3.21 released!
Replies: 55
Views: 18238

Re: Winbox v3.21 released!

I'll go slightly against the flow. Everyone seems to want things bigger, but I'd rather have them smaller. Or maybe better term would be more condensed. It's about one specific thing, line height. +1 Finally I see someone talking about UI efficiency and not looks! I too want to be able to see as mu...
by Cha0s
Tue Jan 28, 2020 3:22 pm
Forum: RouterOS v7 BETA
Topic: Feature Request - BGP RPKI
Replies: 23
Views: 7576

Re: Feature Request - BGP RPKI

ROS didn't use Quagga.
This is not true.
Back in 2.x days ROS was using quagga. And a rather buggy version at that.

But yes, the current implementation AFAIK is not based on quagga.
by Cha0s
Mon Jan 20, 2020 3:37 pm
Forum: Beginner Basics
Topic: ping script
Replies: 5
Views: 1210

Re: ping script

What did you try?
by Cha0s
Mon Jan 20, 2020 12:06 pm
Forum: Beginner Basics
Topic: ping script
Replies: 5
Views: 1210

Re: ping script

by Cha0s
Mon Jan 20, 2020 11:59 am
Forum: Announcements
Topic: v6.46.2 [stable] is released!
Replies: 121
Views: 34563

Re: v6.46.2 [stable] is released!

or use other more reliable ways.
Or just revert it back to how it was...
by Cha0s
Mon Jan 20, 2020 11:57 am
Forum: Announcements
Topic: v6.46.2 [stable] is released!
Replies: 121
Views: 34563

Re: v6.46.2 [stable] is released!

System files have always been hidden / not accessible for a user in RouterOS. Packages are now following the same principle. That is just plain silly! Now when I check for new version and click Download, or after uploading files using FTP, I cannot even check if the files were loaded completely bef...
by Cha0s
Mon Jan 06, 2020 7:25 pm
Forum: Announcements
Topic: v6.46.1 [stable] is released!
Replies: 72
Views: 37358

Re: v6.46.1 [stable] is released!

I'd like to ask the developers if they can, so please kindly fix the bug, according to their natural priority ... It appears that Mikrotik's priority on cosmetic bugs is very very low. This bug has been reported many many times for many many months now and it has been thoroughly ignored by MikroTik...
by Cha0s
Tue Dec 17, 2019 4:31 pm
Forum: Announcements
Topic: v6.44.6 [long-term] is released!
Replies: 54
Views: 47612

Re: v6.44.6 [long-term] is released!

Remove tr069 package, then manually upload the new packages (not the bundle) you need.

Reboot, and you are good to go.
by Cha0s
Tue Dec 10, 2019 4:15 pm
Forum: Virtualization
Topic: proxmox 6.1 with chr - ethernet speed problem
Replies: 6
Views: 3132

Re: proxmox 6.1 with chr - ethernet speed problem

CHR's virtio/vmxnet3 based interfaces seem to always show "Auto Negotiation: Incomplete | Rate: Unknown".
License doesn't matter. You can try it yourself with a P10 demo license and it will still show Incomplete/Unknown.

Regardless of the negotiation status, it does actually work at 10Gbit.
by Cha0s
Tue Dec 10, 2019 3:55 pm
Forum: Forwarding Protocols
Topic: How can I send a received BGP Full table to a peer?
Replies: 2
Views: 1944

Re: How can I send a received BGP Full table to a peer?

What have you tried?
Post you configuration.
by Cha0s
Thu Nov 28, 2019 9:10 pm
Forum: General
Topic: IPv6 feature development speedup.
Replies: 8
Views: 1470

Re: IPv6 feature development speedup.

"my ISP does not offer it" To me this is kind of a chicken and egg problem. If ROS doesn't fully support it, then yes, ISPs based on ROS won't offer it, and then users won't use it, which in turn translates to "low demand" in MUMs, etc. IPv6 doesn't bring much benefit to the end user. Yeah they wil...
by Cha0s
Mon Nov 25, 2019 5:06 pm
Forum: General
Topic: IPv6 feature development speedup.
Replies: 8
Views: 1470

IPv6 feature development speedup.

Today we got this announcement from RIPE. Dear colleagues, Today, at 15:35 UTC+1 on 25 November 2019, we made our final /22 IPv4 allocation from the last remaining addresses in our available pool. We have now run out of IPv4 addresses. Our announcement will not come as a surprise for network operato...
by Cha0s
Mon Nov 25, 2019 4:47 pm
Forum: Forwarding Protocols
Topic: BGP/Routing question
Replies: 5
Views: 2301

Re: BGP/Routing question

I don't think you can do that.

The way I understand it, if you need a prefix to be passed through the Anti-DDoS ISP, you need to only announce it via them and not any other ISP.
Otherwise, anyone that is closer to that other ISP will choose that path to reach you instead of the Anti DDoS ISP.
by Cha0s
Mon Nov 25, 2019 4:32 pm
Forum: RouterBOARD hardware
Topic: RB4011iGS+RM WAN port and LAN switching
Replies: 9
Views: 3025

Re: RB4011iGS+RM WAN port and LAN switching

I've used various SFP+ modules on RB4011 without any issues. CISCO-AVAGO 10Gbase-SR SFBR-709SMZ-CS2 CISCO-AVAGO 10Gbase-LR SFCT-739SMZ FS 10GBase-ER SFP-10GER-31 OPTIC 10Gbase-SR S+85DLC03D MikroTik 10Gbase-SR S+85DLC03D And a few more (mainly 1Gbit) that I don't recall at the moment. As a matter of...
by Cha0s
Mon Nov 25, 2019 4:00 pm
Forum: Forwarding Protocols
Topic: BGP/Routing question
Replies: 5
Views: 2301

Re: BGP/Routing question

I don't know if I fully understand what you ask, but I believe that in order to achieve what you want, you stop announcing your prefixes to the worldwide ISP and only announce them to the Anti-DDoS ISP, and they in turn announce them to the world. This way your incoming world-wide traffic will arriv...
by Cha0s
Thu Nov 14, 2019 5:14 pm
Forum: Announcements
Topic: Newsletter 91
Replies: 25
Views: 28608

Re: Newsletter 91

The next two Mum's are on the 14th of November and the 28-29 of November. My money is on Brazil in two weeks.
It got announced today in Athens' MUM.
https://youtu.be/ZKLtPiFoX4k?t=3514
by Cha0s
Fri Nov 01, 2019 8:12 am
Forum: General
Topic: TCP SYN Flood attack causing high cpu
Replies: 21
Views: 15084

Re: TCP SYN Flood attack causing high cpu

Thank you for your opinion.
by Cha0s
Fri Nov 01, 2019 2:36 am
Forum: General
Topic: TCP SYN Flood attack causing high cpu
Replies: 21
Views: 15084

Re: TCP SYN Flood attack causing high cpu

FastPath needs Route Cache to be enabled.

With route cache enabled, the router becomes almost completely unresponsive during any moderate SYN flood attack.
by Cha0s
Sat Oct 26, 2019 8:12 pm
Forum: Wireless Networking
Topic: WiFi4EU
Replies: 13
Views: 5756

Re: WiFi4EU

They will not get such contracts anyway, and those that do get them generally deliver equipment that is a little more sturdy. At its price, of course. Yeap, I agree. In my country at least, it is certain that the job will go to the company with the worst price and the most kickbacks to the politici...
by Cha0s
Sat Oct 26, 2019 8:06 pm
Forum: General
Topic: Block Anydesk
Replies: 10
Views: 13899

Re: Block Anydesk

I presume if port 80 is blocked, it will also try port 443 and even port 6568 as implied in the FAQ. Here are some logs from a corporate proxy blocking anydesk. 1572105939.836 0 x.x.x.x TCP_DENIED/403 2045 CONNECT 144.76.103.6:80 - NONE/- text/html 1572105941.837 0 x.x.x.x TCP_DENIED/403 2059 CONNE...
by Cha0s
Tue Oct 22, 2019 11:54 am
Forum: Virtualization
Topic: Routeros docker container image
Replies: 9
Views: 7835

Re: Routeros docker container image

This is not a Docker image for ROS but for OpenVPN.

Not to mention that it hasn't been updated for over 4 years.
https://github.com/AlexBeznos/openvpn-mikrotik

IMHO, ROS on Docker (or any other container platform) is a waste of time.
by Cha0s
Mon Oct 21, 2019 4:14 pm
Forum: Virtualization
Topic: Routeros docker container image
Replies: 9
Views: 7835

Re: Routeros docker container image

Docker is a container.
ROS is not just a web server or some app to be run in a container.

It is heavily dependent on its kernel to implement many of its features.

So my guess is that there will never be a docker image for ROS.
by Cha0s
Fri Oct 18, 2019 2:52 pm
Forum: Announcements
Topic: Winbox v3.20 released!
Replies: 42
Views: 26225

Re: Winbox v3.20 released!

could you please consider changing application bar/other WinBOX window component colour while in SafeMode? Regardless of information when exiting the app it would help to identify the current mode.
+1
by Cha0s
Fri Oct 18, 2019 2:51 pm
Forum: RouterBOARD hardware
Topic: New High Performance Routers ! ?
Replies: 48
Views: 11366

Re: New High Performance Routers ! ?

MikroTik routers are fine for many purposes, but when it appears you are pushing the limits it may be time to look at others. Sadly, this is very true. I would love to see higher end models using ASICs (with the appropriate price tag) to be able to use MikroTik hardware for enterprise solutions. CC...
by Cha0s
Wed Oct 16, 2019 12:35 am
Forum: General
Topic: Winbox 3.20 x64 still with bugs from YEARS AGO
Replies: 9
Views: 1690

Re: Winbox 3.20 x64 still with bugs from YEARS AGO

With only 60 routes, it is indeed annoying! If you try to login with a fresh/empty ( <none> ) winbox session, does it change anything? ingdaka on every single router I manage that has more than 1-2 thousands of advertisements, it always occurs. Without exception and regardless of architecture. Proba...
by Cha0s
Tue Oct 15, 2019 1:50 am
Forum: General
Topic: Block Anydesk
Replies: 10
Views: 13899

Re: Block Anydesk

Also you cannot block port 80/443 obviously, so the anydesk client will be able to reach the anydesk servers, and from there I believe if port 7070 is blocked, it will work over 443. I never said blocking ports 80 or 443... in my previous post i said block the listening port which is not 80 or 443 ...
by Cha0s
Mon Oct 14, 2019 11:29 pm
Forum: General
Topic: Block Anydesk
Replies: 10
Views: 13899

Re: Block Anydesk

L7 firewall blocking is not recommended anymore...! Especially when what you want can be achieved by a simple TCP port block..! I don't think that a simple block will do it. https://support.anydesk.com/FAQ Which ports does AnyDesk use? To connect to the AnyDesk network port 80, 443 or 6568 is used....
by Cha0s
Mon Oct 14, 2019 11:16 pm
Forum: RouterBOARD hardware
Topic: RB4011: wlan1 disabling itself [SOLVED]
Replies: 302
Views: 70208

Re: RB4011: wlan1 disabling itself [SOLVED]

One thing that may help replicate this issue is using the sfp port. Both times I have witnessed this and all times our tech support has witnessed this the sfp port is in use.
Interesting detail.

In my board that the issue occurs, I indeed use the SFP port.
by Cha0s
Thu Oct 10, 2019 10:33 am
Forum: RouterBOARD hardware
Topic: RB4011: wlan1 disabling itself [SOLVED]
Replies: 302
Views: 70208

Re: RB4011: wlan1 disabling itself [SOLVED]

For the problem to manifest you have to have no device connected to 5GHz wifi for a few hours. Then it "crashes". The title is a bit misleading. The interface doesn't get disabled, in that you don't see it disabled (greyed out) in winbox. It shows up/enabled fine in winbox/cli, but it doesn't trans...
by Cha0s
Wed Oct 09, 2019 11:55 pm
Forum: General
Topic: OpenVPN .ovpn
Replies: 5
Views: 2774

Re: OpenVPN .ovpn

+1 :)
by Cha0s
Tue Oct 08, 2019 9:52 pm
Forum: RouterBOARD hardware
Topic: RB4011: wlan1 disabling itself [SOLVED]
Replies: 302
Views: 70208

Re: RB4011: wlan1 disabling itself [SOLVED]

For the problem to manifest you have to have no device connected to 5GHz wifi for a few hours. Then it "crashes". The title is a bit misleading. The interface doesn't get disabled, in that you don't see it disabled (greyed out) in winbox. It shows up/enabled fine in winbox/cli, but it doesn't transm...
by Cha0s
Thu Oct 03, 2019 12:06 pm
Forum: RouterBOARD hardware
Topic: As for the equipment purchased in the past two years, it's broken and can't be repaired now.
Replies: 6
Views: 2524

Re: As for the equipment purchased in the past two years, it's broken and can't be repaired now.

"Broken" is rather vague.

Post proper pictures with proper lighting of both sides of all boards so we can see what the damage is exactly.
Posting 3 boards on top of each other, and on their back where there are no components, is just silly.
by Cha0s
Mon Sep 23, 2019 3:10 pm
Forum: RouterOS v7 BETA
Topic: Torrent client
Replies: 59
Views: 17538

Re: Torrent client

Please remove it, or at a minimum put it in a separate .NPK from the base OS. maybe a separate soho.npk that includes the torrent client, kid-control and SMB server.. :)
Amen! :P
by Cha0s
Wed Sep 11, 2019 6:46 pm
Forum: General
Topic: RouterOS v7.0beta1 (ARM)
Replies: 203
Views: 62210

Re: RouterOS v7.0beta1 (ARM)

Wait, torrent wasn't a joke?
Torrent is an essential feature of every router!
DNS on the other hand... :lol: :lol:
by Cha0s
Mon Sep 09, 2019 7:44 pm
Forum: General
Topic: Request: FEC tunnel types
Replies: 29
Views: 5893

Re: Request: FEC tunnel types

At the moment there is no fully automated method in ROS to switch from a bad uplink (bad as in slight packet loss or increased latency somewhere between you and the destination - but still functional as far as ROS is concerned) to a backup/good one. You either have to resort to cumbersome scripts a...
by Cha0s
Mon Sep 09, 2019 6:17 pm
Forum: General
Topic: Request: FEC tunnel types
Replies: 29
Views: 5893

Re: Request: FEC tunnel types

I don't know (or care) about how LTE handles loss, etc, but I think we've got offtopic comparing this to LTE. LTE is just one type of Internet access and is irrelevant to the topic at hand IMHO. I can see this technology having significant benefits even if your uplinks are fiber based with 99.999% u...
by Cha0s
Tue Sep 03, 2019 5:52 pm
Forum: Beginner Basics
Topic: Best VPN for Mikrotik / RouterOS
Replies: 12
Views: 9260

Re: Best VPN for Mikrotik / RouterOS

I did Anav. One of the first hits was NordVPN, but I see it doesn't support MikroTik anymore. Hence I'm asking here. Since v6.45 MikroTik can connect to NordVPN without problems. using IKEv2. https://nordvpn.com/tutorials/mikrotik/ikev2/ https://wiki.mikrotik.com/wiki/IKEv2_EAP_between_NordVPN_and_...
by Cha0s
Tue Sep 03, 2019 2:44 pm
Forum: General
Topic: [Feature Request] interface events
Replies: 2
Views: 1109

Re: [Feature Request] interface events

+1 :)
by Cha0s
Tue Sep 03, 2019 2:36 pm
Forum: RouterBOARD hardware
Topic: RB4011 Metal temperature is really hot
Replies: 52
Views: 15050

Re: RB4011 Metal temperature is really hot

Yes, ~45 degrees seems to be the norm for this device.
graph.php.png
Here's a comparison between RB3011 and and RB4011 that replaced it around a month ago.
by Cha0s
Mon Sep 02, 2019 11:03 pm
Forum: RouterBOARD hardware
Topic: RB4011: wlan1 disabling itself [SOLVED]
Replies: 302
Views: 70208

Re: RB4011: wlan1 disabling itself [SOLVED]

Several days passed, still no replies and not a single email about this issue. Is the RB4011 5GHz issue resolved? The problem still exists. For me it took about 29 days on a brand new RB4011, before it occurred. Since then the wifi gets disabled (stuck in "initializing") in less than a day for 3 da...
by Cha0s
Sat Aug 31, 2019 2:26 pm
Forum: RouterBOARD hardware
Topic: Why Mikrotik block google translate
Replies: 10
Views: 3271

Re: Why Mikrotik block google translate

Mikrotik doesn't block Google Translate, or any other service for that matter. All RouterOS does, is route packets from one network to another, according to however you configure the device to do so. It doesn't take it on itself to decide whether you should be able to access a webservice or not. If ...
by Cha0s
Thu Aug 22, 2019 3:22 pm
Forum: General
Topic: [Feature Request] Winbox and netinstall 64 Bit versions - URGENT
Replies: 21
Views: 5184

Re: [Feature Request] Winbox and netinstall 64 Bit versions - URGENT

Don't touch my WinBox, it's one of the best tools invented by mankind, and it's perfect as it is now. It's like trying to reform hammer, sure you can come up with something else that's not bad either, but it still won't be good replacement for the simple and reliable tool in all cases. Native WinBo...
by Cha0s
Thu Aug 22, 2019 3:09 pm
Forum: Announcements
Topic: v6.46beta [testing] is released!
Replies: 150
Views: 76719

Re: v6.46beta [testing] is released!

*) system - accept only valid string for "name" parameter in "disk" menu (CVE-2019-15055);
I guess asking for more info on that is pointless until you provide an update for stable/long-term channels, right?
by Cha0s
Mon Aug 12, 2019 3:27 pm
Forum: Beginner Basics
Topic: File download block?
Replies: 25
Views: 4904

Re: File download block?

Yes, I am aware of that, but how do the others do it, at train stations, airports ... ? a few weeks ago I set up a WLAN connection at the airport and I couldn't download any files. So there has to be a solution. I doubt they were able to block files download over an HTTPS connection. Only whole dom...
by Cha0s
Mon Aug 12, 2019 3:25 pm
Forum: Beginner Basics
Topic: File download block?
Replies: 25
Views: 4904

Re: File download block?

Strangely enough, URL Block also works for HTTPS pages. This works here, for example: ^.+(youtube.com|facebook.com).*$ Domain block (not URL block) works because the domain is visible (unencrypted) during the TLS session setup between the browser and the server. After that, you cannot see anything ...
by Cha0s
Mon Aug 12, 2019 2:57 pm
Forum: Announcements
Topic: v6.45.3 [stable] is released!
Replies: 90
Views: 38298

Re: v6.45.3 [stable] is released!

This L7 Regexp does not work anymore since update: \.(exe|dmg|cab|msi|flv|mp2|mp3|m4a|mp4|torrent)($|\?) I used this to block file download. I also don't know which MikroTik version I had before. I think it was the 6.43. You do understand that this is useless in an ever growing https world, right?
by Cha0s
Mon Aug 12, 2019 2:55 pm
Forum: General
Topic: Software Download section-Problems
Replies: 1
Views: 765

Re: Software Download section-Problems

Probably something wrong on your side. An antivirus messing up with the downloads maybe?

All links work fine on my end.
by Cha0s
Thu Aug 08, 2019 12:39 pm
Forum: RouterBOARD hardware
Topic: Is RB4011iGS+5HacQ2HnD ready?
Replies: 9
Views: 2513

Re: Is RB4011iGS+5HacQ2HnD ready?

I've got a few of the non wifi RB4011 models and I have no issues. In fact I found that RB4011 was the only model that I could saturate the uplink with a single connection over IPsec, while others couldn't go much higher than 150Mbps (and that with multiple connections only). Granted, my configurati...
by Cha0s
Tue Jul 16, 2019 5:10 pm
Forum: General
Topic: TCP SYN Flood attack causing high cpu
Replies: 21
Views: 15084

Re: TCP SYN Flood attack causing high cpu

Almost two years have passed, and absolutely nothing has changed.

CCRs still cannot route (not drop) a moderate flood of SYN packets.
by Cha0s
Tue Jul 09, 2019 10:47 pm
Forum: Announcements
Topic: Winbox v3.19 released!
Replies: 33
Views: 21159

Re: Winbox v3.19 released!

cpu spikes
Huh?..
Do you want to elaborate more? :roll:
by Cha0s
Tue Jul 09, 2019 1:39 pm
Forum: Announcements
Topic: Winbox v3.19 released!
Replies: 33
Views: 21159

Re: Winbox v3.19 released!

Also, Winbox on Linux/Wine is definitely heavier/slower than on windows. Each screen refresh causes cpu spikes when having multiple windows open.
On windows there is no such cpu usage no matter how many windows I have open in winbox.
by Cha0s
Mon Jul 08, 2019 2:15 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 125313

Re: v6.45.1 [stable] is released!

Last Link Up/Down Time botched. It started happening to me (951G-2HnD, 941-2nD) on the latest stable ROS 6.45.1 / WinBox 3.19. Ethernet and ppp links. WinBox Terminal - correct: last-link-down-time=jul/08/2019 12:31:21 WinBox Interface List - wrong: Last Link Down Time: Jul/14/2019 09:44:52 Today i...
by Cha0s
Tue Jul 02, 2019 4:38 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 125313

Re: v6.45.1 [stable] is released!

Everyone who is experiencing problems with Winbox authorization - we will release a new Winbox loader with a fix for this problem as soon as possible. We are very sorry for any inconvenience caused. While you are at it, will you fix the interfaces last up/down times on winbox that are in the future?
by Cha0s
Mon Jul 01, 2019 7:00 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 125313

Re: v6.45.1 [stable] is released!

My configurations use all types of tunnels.

GRE, IPIP, EoIP. All of them, over IPsec without any problems on my end.
by Cha0s
Mon Jul 01, 2019 6:50 pm
Forum: Forwarding Protocols
Topic: BGP load-balance per-packet
Replies: 3
Views: 2366

Re: BGP load-balance per-packet

You are looking for ECMP - Equal Cost Multipath. https://wiki.mikrotik.com/wiki/Manual:BGP_Load_Balancing_with_two_interfaces ECMP by default (route cache=on), will load balance per connection and not per packet. By disabling route cache (in IP > Settings) then ECMP load balances per packet on all a...
by Cha0s
Mon Jul 01, 2019 6:43 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 125313

Re: v6.45.1 [stable] is released!

2 Mikrotik Team Do you confirm some troubles with GRE interfaces + IPSec (transport) ? What we have to do in that case? Maybe there is something special with update? For example: We have to update passive sites first to 6.45.1 and after main router to 6.45.1 Or another way? Thanks! I have IPsec tun...
by Cha0s
Mon Jul 01, 2019 3:10 pm
Forum: General
Topic: Forum reliability
Replies: 18
Views: 3506

Re: Forum reliability

I agree with pe1chl. phpBB can also send mails using the native mail() function of PHP, which by default will send mails using sendmail executable to localhost. This can be blazing fast since it doesn't even care if the local MTA is loaded or not or even running at all. It writes directly to the fil...
by Cha0s
Mon Jul 01, 2019 2:55 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 125313

Re: v6.45.1 [stable] is released!

i upgrade my RB433AH after that...i couldn't access with current user and password and with admin???? . My observation is that after a reboot, the first login attempt fails ... subsequent logins are successful. This behavior has been reproducible after every reboot, of the single device I'm testing...
by Cha0s
Mon Jun 24, 2019 10:48 am
Forum: General
Topic: Feature Request: IPv6 NAT66 Support
Replies: 28
Views: 10703

Re: Feature Request: IPv6 NAT66 Support

NETMAP needed.

not nat.
You mean NPT, and both NAT66 and NPT (or netmap) are types of NAT.
by Cha0s
Sat Jun 15, 2019 2:18 pm
Forum: Announcements
Topic: v6.45beta [testing] is released!
Replies: 305
Views: 101212

Re: v6.45beta [testing] is released!

Will it ever be possible to filter ipsec logs by peer? Debugging is pretty much impossible if you have a ton of tunnels active.
+1
by Cha0s
Fri May 31, 2019 5:47 pm
Forum: Beginner Basics
Topic: RB3011 Show LTE in Quickset
Replies: 13
Views: 2011

Re: RB3011 Show LTE in Quickset

If you have many custom settings, then you should most definitely not use quickset. If you can still sensibly change settings using quick set, then ... you don't have that many settings after all. I'm sorry but reset is not a solution Then you shouldn't use Quickset. Quickset is only for initial se...
by Cha0s
Fri May 31, 2019 12:45 pm
Forum: Announcements
Topic: v6.44.3 [stable] is released!
Replies: 123
Views: 44970

Re: v6.44.3 [stable] is released!

That wrong time is a "known problem" that was introduced several versions ago, not with this version. It likely is already on the list of things to fix. Also I believe it's a winbox bug and not a ROS bug. CLI shows the correct times. IIRC deleting the session on winbox also shows the correct times ...
by Cha0s
Mon May 20, 2019 3:41 am
Forum: RouterBOARD hardware
Topic: LtAP Kit no registration - Vodafone ES SIM
Replies: 2
Views: 971

Re: LtAP Kit no registration - Vodafone ES SIM

LtAP mini Kit has two SIM slots. Is it possible you are using the wrong SIM slot?

They way those slots are it's not always clear weather you've inserted the SIM on slot 1 or slot 2 (they call it up/down in System>Routerboard>SIM menu).
by Cha0s
Mon May 20, 2019 3:35 am
Forum: General
Topic: iframe issue at MTU 1500
Replies: 1
Views: 667

Re: iframe issue at MTU 1500

What does the browser's web developer's tools console shows when it cannot load the iframe? If the iframe url can load when accessed directly, then it's almost certain that it is not a networking/MTU/MSS issue. Is it possible that the client's browser is messed up (or some other software is messing ...
by Cha0s
Mon May 20, 2019 3:24 am
Forum: General
Topic: Need help in choosing l3 switch with 10G fiber SFP+ ports
Replies: 2
Views: 718

Re: Need help in choosing l3 switch with 10G fiber SFP+ ports

MikroTik has no L3 switch that can do wirespeed routing. Can can do L3 stuff on MikroTik switches, but the performance will be way lower than 10Gbit (maybe even lower than 1Gbit) since all those functions are done on the CPU and not on the switch chips. The CCR line are not switches but routers. Tha...
by Cha0s
Mon May 20, 2019 3:00 am
Forum: General
Topic: Suggestion: At new releases
Replies: 9
Views: 1855

Re: Suggestion: At new releases

Just got an RB4011iGS+RM. It has 512MB flash, so I might have been interested, but the online documentation states that it's only available for MIPS, TILE and PowerPC. Too bad. RB4011 perfectly supports multiple partitions. I am using it on multiple RB4011s. AFAIK as long as you have >=64MB of flas...
by Cha0s
Fri May 10, 2019 10:01 am
Forum: General
Topic: Feature request: Do not block highlighting/selecting torch table contents
Replies: 5
Views: 1638

Re: Feature request: Do not block highlighting/selecting torch table contents

If you double click on the source address it gets copied to the Src. Address Filter field.
Same goes for Destination address.

No the best solution, but it's better than nothing.
by Cha0s
Thu Mar 21, 2019 5:58 pm
Forum: Announcements
Topic: Statement on Vault 7 document release
Replies: 92
Views: 58115

Re: Statement on Vault 7 document release

For Unimus, connect to router periodically (user configured scheduling), and retrieve "/export compact". After that, strip all dynamic content in the output (timestamps, log messages, runtime comments, etc.). Parse the config, check if anything changed against last retrieved config. If a change is ...
by Cha0s
Thu Mar 21, 2019 5:14 pm
Forum: Announcements
Topic: Statement on Vault 7 document release
Replies: 92
Views: 58115

Re: Statement on Vault 7 document release

Does anyone know how to have "Configuration changes notifications" as mentioned in the talk? Is this something that ROS can do natively (or with scripting) or you have to do that using syslog etc? Usually a configuration management system does this for you. Unimus does this out-of-the box and you c...
by Cha0s
Tue Mar 19, 2019 6:47 pm
Forum: Announcements
Topic: v6.45beta [testing] is released!
Replies: 305
Views: 101212

Re: v6.45beta [testing] is released!

In what scenario? If it's road warrior (typical when src is unknown or when src has dynamic IP) then policies should be already auto generated. In the scenario where an ISP doesn't provide a static IP to it's client, instead using Dynamic IP or PPPoE with a dynamic IP. In such cases, a DDNS hostnam...
by Cha0s
Tue Mar 19, 2019 6:44 pm
Forum: Announcements
Topic: Statement on Vault 7 document release
Replies: 92
Views: 58115

Re: Statement on Vault 7 document release

Does anyone know how to have "Configuration changes notifications" as mentioned in the talk?
Is this something that ROS can do natively (or with scripting) or you have to do that using syslog etc?
by Cha0s
Sat Mar 02, 2019 8:49 pm
Forum: General
Topic: Feature Request: TACACS/TACACS+
Replies: 40
Views: 13286

Re: Feature Request: TACACS/TACACS+

+1 for TACACS+ support
by Cha0s
Thu Feb 28, 2019 6:39 pm
Forum: Announcements
Topic: v6.44 [stable] is released!
Replies: 219
Views: 53614

Re: v6.44 [stable] is released!

Incorrect time is cosmetic Winbox bug noticed when there are multiple Winbox instances open. If you check in terminal, time is reported correctly.
When will it be fixed? This has been reported for many releases by now.
by Cha0s
Mon Feb 18, 2019 12:05 am
Forum: General
Topic: Wrong "Last Link Down Time" in Winbox
Replies: 22
Views: 6632

Re: Wrong "Last Link Down Time" in Winbox

I confirm the problem.
by Cha0s
Wed Feb 13, 2019 3:45 pm
Forum: Forwarding Protocols
Topic: BEST BGP Scneario
Replies: 4
Views: 2230

Re: BEST BGP Scneario

by Cha0s
Thu Feb 07, 2019 4:41 pm
Forum: Announcements
Topic: Suggestions requested: general hotspot controller improvements in functionality
Replies: 11
Views: 7425

Re: Suggestions requested: general hotspot controller improvements in functionality

On RB951 and similar boards, I don't expect the best performance and I don't think PHP should be supported at all on these models due to the low power CPU and resources. But for the more capable models, like RB3011, RB4011, CHR and CCR-series, it could be a nice addition. Yeah, but that ain't gonna...
by Cha0s
Wed Feb 06, 2019 4:49 pm
Forum: Announcements
Topic: v6.43.11 [stable] is released!
Replies: 79
Views: 20635

Re: v6.43.11 [stable] is released!

Legal limits are about EIRP. EIRP is not Tx power at transmitter's RF connector, it's power at antenna perimeter. And that value is affected by antenna gain. Which is not how most of WiFi users (and, sadly, WISPs) understood things ... I remember attending a Netgear "seminar" back in 2005-2006ish a...
by Cha0s
Wed Feb 06, 2019 4:38 pm
Forum: Announcements
Topic: Suggestions requested: general hotspot controller improvements in functionality
Replies: 11
Views: 7425

Re: Suggestions requested: general hotspot controller improvements in functionality

PHP Support for webpages. So, that we can make advanced webpages without visible scripts (JavaScript is visible to the user, PHP scripts are not). I know MikroTik's webserver is meant to provide the basics, but you don't always have the space and budget to place an external webserver (and no.... a ...
by Cha0s
Sat Feb 02, 2019 2:10 pm
Forum: RouterBOARD hardware
Topic: Schematics for RB112
Replies: 11
Views: 2959

Re: Schematics for RB112

In year 2019 - this RB belongs to the trash
Besides suggesting putting it in a landfill, polluting the environment for no good reason, do you have anything on-topic to suggest?
Like for example, what is the value of C78?
by Cha0s
Sat Feb 02, 2019 1:41 pm
Forum: RouterBOARD hardware
Topic: Schematics for RB112
Replies: 11
Views: 2959

Re: Schematics for RB112

Those are C67 and C68 and their value is: 560μF 6.3V 105°C

While we are at it, does anyone know the value of C78?
It's right behind the DC barrel connector and it's an SMD one.
ima_82b5a40.jpeg
by Cha0s
Sat Feb 02, 2019 1:29 pm
Forum: General
Topic: Spindown network Disk
Replies: 1
Views: 547

Re: Spindown network Disk

AFAIK there is no such option.

On the other hand, MikroTik is a router, not a NAS device. Don't use it like that.
by Cha0s
Sun Jan 20, 2019 2:53 pm
Forum: Virtualization
Topic: Mikrotik CHR speed performance problem
Replies: 28
Views: 13963

Re: Mikrotik CHR speed performance problem

That (voip) explains the high packet rate but low bandwidth I saw on your screenshots. Unless you use NAT, you don't need the SIP direct media helper (and I think it doesn't even get involved in forwarded traffic when there is no NAT). Also, connection tracking in general, with lots of connections a...
by Cha0s
Fri Jan 18, 2019 4:35 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 112250

Re: v6.44beta [testing] is released!

Same with the web interface.
by Cha0s
Fri Jan 18, 2019 4:24 pm
Forum: General
Topic: [Feature Request] :resolve DNS Client Improvements
Replies: 8
Views: 2974

Re: [Feature Request] :resolve DNS Client Improvements

+1 by me as well.
by Cha0s
Fri Jan 18, 2019 1:56 pm
Forum: Virtualization
Topic: CHR, LACP, and VMware
Replies: 2
Views: 2651

Re: CHR, LACP, and VMware

You cannot bond at the CHR level. Right now you are bonding two virtual NICs that connect to a Virtual Switch. Not Nexus. You should do the bonding at the ESXi level. But from there I don't know how you could get more that 10Gbps on the CHR. I've read some posts that the VMXNET3 driver doesn't reall...
by Cha0s
Thu Jan 17, 2019 12:40 pm
Forum: Announcements
Topic: SwOS version 2.9 released!
Replies: 72
Views: 37785

Re: SwOS version 2.9 released!

Upgrading from 2.8 to 2.9 on a CSS106-5G-1S causes severe traffic drop between 1G ports and 100Mbit ports. It's random from 0 to 40Mbps. Reverting back to 2.8 traffic increased back to steady 100Mbps. Are there any errors in interface stats when using v2.8 or v2.9? No errors at all on any port.
by Cha0s
Thu Jan 17, 2019 2:47 am
Forum: Announcements
Topic: SwOS version 2.9 released!
Replies: 72
Views: 37785

Re: SwOS version 2.9 released!

Upgrading from 2.8 to 2.9 on a CSS106-5G-1S causes severe traffic drop between 1G ports and 100Mbit ports. It's random from 0 to 40Mbps.
Reverting back to 2.8 traffic increased back to steady 100Mbps.
by Cha0s
Wed Jan 16, 2019 8:19 pm
Forum: Announcements
Topic: SwOS version 2.9 released!
Replies: 72
Views: 37785

Re: SwOS version 2.9 released!

Same here
by Cha0s
Thu Jan 03, 2019 2:11 pm
Forum: Beginner Basics
Topic: RB4011iGS+5HacQ2HnD-IN-US first time troubles
Replies: 14
Views: 2696

Re: RB4011iGS+5HacQ2HnD-IN-US first time troubles

I did as much reading as I could both with the sparse supplied docs and what was online before and during my efforts!! I have winbox v3.18, I fail to see a safe mode. FWIW, been doing router stuff etc. since 1989 but I am not an "IT Professional" Everything about RouterOS is documented here: https:...
by Cha0s
Thu Jan 03, 2019 11:39 am
Forum: Wireless Networking
Topic: Redirect traffic from specific device to another local ip
Replies: 7
Views: 960

Re: Redirect traffic from specific device to another local ip

Maybe something link this (to accommodate for the time requirements). /ip firewall nat add chain=dstnat src-address=192.168.1.116 time=22h-7h,sun,mon,tue,wed,thu,fri,sat action=dst-nat to-addresses=192.168.1.20 Also, this thread needs to be moved to some other category. It has nothing to do with wir...
by Cha0s
Wed Jan 02, 2019 6:00 pm
Forum: Forwarding Protocols
Topic: BGP aggregation example
Replies: 1
Views: 1524

Re: BGP aggregation example

You can add all the prefixes (/22, /23, /24) in Routing > BGP > Networks. And then use separate filters on each peer to filter out which of those prefixes will be announced to each BGP peer. I suggest you first create the filters, apply them to the BGP peers and then add the more specific prefixes t...
by Cha0s
Wed Jan 02, 2019 8:33 am
Forum: RouterBOARD hardware
Topic: CCR-1036 Touchscreen frame break and noisy fan [SOLVED]
Replies: 2
Views: 1214

Re: CCR-1036 Touchscreen frame break and noisy fan [SOLVED]

3. Cannot find my router in Netinstall. Ethernet cable to Ether1 slot from my laptop, no other network connection and strictly follow instruction.
Try connecting to port 12 instead of port1.
viewtopic.php?p=399474#p399474
by Cha0s
Mon Dec 31, 2018 9:25 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 48463

Re: v6.43.8 [stable] is released!

Thanks! That resolved the issue!
by Cha0s
Sun Dec 30, 2018 12:23 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 48463

Re: v6.43.8 [stable] is released!

Just to clarify (if anyone else wants/can reproduce this), the config regarding the virtual wlan interfaces was, 1 virtual wlan interface per physical wlan (one for 2.4GHz and one for 5GHz) both added to a bridge.
by Cha0s
Sun Dec 30, 2018 12:21 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 48463

Re: v6.43.8 [stable] is released!

Symbol: ` in WLAN SSID brake all wlan interfaces. Or even not a symbol, but a virtual WLAN. When I create a virtual WLAN and reboot hap ac^2, I don't see all interfaces and export doesn't work in the console. DimaFIX - Please send supout.rif file from your router to support@mikrotik.com. If I add s...
by Cha0s
Thu Dec 27, 2018 12:24 pm
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 48463

Re: v6.43.8 [stable] is released!

Symbol: ` in WLAN SSID brake all wlan interfaces. Or even not a symbol, but a virtual WLAN. When I create a virtual WLAN and reboot hap ac^2, I don't see all interfaces and export doesn't work in the console. DimaFIX - Please send supout.rif file from your router to support@mikrotik.com. If I add s...
by Cha0s
Fri Dec 14, 2018 4:40 pm
Forum: Announcements
Topic: Product comparison matrix
Replies: 30
Views: 12951

Re: Product comparison matrix

The column sorting is done in the browser with Javascript, not in the database. I am just saying that sorting, the way it works now, it's pretty much useless on fields that do not contain plain numbers. If I want to sort by memory or cpu frequency the results are all over the place. Also if that's n...
by Cha0s
Fri Dec 14, 2018 3:19 pm
Forum: Announcements
Topic: Product comparison matrix
Replies: 30
Views: 12951

Re: Product comparison matrix

Very nice!

Column sorting is a bit of a mess (nothing is sorted properly, except for columns with plain numbers), but we can live with it :P
by Cha0s
Thu Dec 06, 2018 9:23 am
Forum: Beginner Basics
Topic: internal server error message and shutdown times
Replies: 1
Views: 636

Re: internal server error message and shutdown times

How long does RouterOS take to shut down typically? I cannot find any indication of the progress once shutdown has been initiated? How vital it is to always shut down a unit properly (referring to SXT-LTE)
It takes just a few seconds. You don't really need to shut it down before removing power.
by Cha0s
Mon Dec 03, 2018 12:31 pm
Forum: General
Topic: IP > Cloud stuck on 'updating'
Replies: 19
Views: 7172

Re: IP > Cloud stuck on 'updating'

The problem occurred on both updated devices with the new cloud service and old devices with the old cloud service.

It just started to work the next day. But only after it caused havoc on vpns and other stuff that were based on ddns.
by Cha0s
Fri Nov 30, 2018 1:14 am
Forum: General
Topic: IP > Cloud stuck on 'updating'
Replies: 19
Views: 7172

Re: IP > Cloud stuck on 'updating'

Yes, I just checked from other locations/ISPs too and it won't update.
by Cha0s
Fri Nov 30, 2018 12:48 am
Forum: General
Topic: IP > Cloud stuck on 'updating'
Replies: 19
Views: 7172

IP > Cloud stuck on 'updating'

After a long lasting power failure at the power company, when the router came back up it will not update its ddns via IP>Cloud. It is stuck on 'updating...' for well over two hours and does not actually ever update its ddns. Screenshot_8.png The router is an hAP ac^2 running v6.43.4 The router can r...
by Cha0s
Mon Nov 26, 2018 12:22 pm
Forum: Beginner Basics
Topic: Advertising with Mikrotik
Replies: 4
Views: 913

Re: Advertising with Mikrotik

For SSL/TLS enabled websites, you definitely cannot inject advertisements (or anything else for that matter).
Regardless of which hotspot vendor you use (thankfully it's a protocol security measure, not a vendor limitation).
by Cha0s
Mon Nov 26, 2018 12:17 pm
Forum: RouterBOARD hardware
Topic: LoRaWAN support
Replies: 57
Views: 19032

Re: LoRaWAN support

those use routeros, https://lorrier.com/ The LoRaWAN part is implemented with BeagleBones using the SPI bus. They use ROS only for the networking part, behind the BeagleBones. The gateway is based on iC880a LoRaWAN™ concentrator by IMST which uses Semtech SX1301 base band processor designed for use...
by Cha0s
Fri Nov 09, 2018 1:41 pm
Forum: General
Topic: SSTP Mikrotik Client / probably bug 6.41.3
Replies: 4
Views: 1688

Re: SSTP Mikrotik Client / probably bug 6.41.3

It just happened to me on one of my SSTP VPNs with version 6.34.4.

I get the same error in the logs. 'nonce not matching'
by Cha0s
Mon Oct 22, 2018 5:27 pm
Forum: RouterBOARD hardware
Topic: Wierdly Bricked RB912UAG-2HPnD
Replies: 2
Views: 1018

Re: Wierdly Bricked RB912UAG-2HPnD

Try reinstalling the OS by doing a Netinstall.
https://wiki.mikrotik.com/wiki/Manual:Netinstall
by Cha0s
Thu Oct 18, 2018 12:52 pm
Forum: Announcements
Topic: v6.43.4 [stable] is released!
Replies: 78
Views: 30977

Re: v6.43.4 [stable] is released!

*) ipsec - allow multiple peers to the same address with different local-address (introduced in v6.43);
Thanks for including this fix.
It works ok now :)
by Cha0s
Sun Oct 07, 2018 9:54 pm
Forum: General
Topic: Unable to get full gigabit speed on RB750Gr3
Replies: 33
Views: 10519

Re: Unable to get full gigabit speed on RB750Gr3

So now my problem would be whether I need a better model.
No, you don't need a better model. You need to configure FastTrack and you will able to reach 1Gbps.
by Cha0s
Sun Oct 07, 2018 3:10 pm
Forum: General
Topic: Unable to get full gigabit speed on RB750Gr3
Replies: 33
Views: 10519

Re: Unable to get full gigabit speed on RB750Gr3

Hello, Based on your setup, you may get less than gig. If you look at the gr3 specs, you'll see that with filters and bridges, throughput goes down depending on packet size. Regards Sent from Tapatalk Is there anything I can do to get the full speed on RB750Gr3? I am keeping the minimum setting as ...
by Cha0s
Sat Oct 06, 2018 7:22 pm
Forum: General
Topic: FastNetMon Integration with MikroTik (DDoS detection software)
Replies: 43
Views: 20117

Re: FastNetMon Integration with MikroTik (DDoS detection software)

Hi, Which is the best current configuration to the Mikrotik integration with FastNetMon? I'm using those: * Cache entries = 128k * Active Flow Timeout = 00:01:00 * Inactive Flow Timeout = 00:01:00 Netflow version = 9 Template refresh = 30 Template timeout = 30 FastNetMon is receiving data correctly...
by Cha0s
Sat Oct 06, 2018 1:56 pm
Forum: Announcements
Topic: v6.43.1 [stable] and v6.43.2 [stable] are released!
Replies: 186
Views: 52114

Re: v6.43.1 [stable] and v6.43.2 [stable] are released!

After upgrading to 6.43.2 from 6.42.7 you can no longer have multiple IPsec peers to the same destination IP but with different source addresses. This regression is said to be fixed in 6.44beta14. Please check the change log in the post here . And I'd expect this kind fix to be merged to 6.42.x lat...
by Cha0s
Fri Oct 05, 2018 10:53 pm
Forum: Announcements
Topic: v6.43.1 [stable] and v6.43.2 [stable] are released!
Replies: 186
Views: 52114

Re: v6.43.1 [stable] and v6.43.2 [stable] are released!

After upgrading to 6.43.2 from 6.42.7 you can no longer have multiple IPsec peers to the same destination IP but with different source addresses. Screenshot_17.png This worked fine on 6.42.7. What's the reasoning behind this restriction? I need multiple peers to the same destination but using differ...
by Cha0s
Sat Sep 29, 2018 8:59 pm
Forum: General
Topic: Feature requests
Replies: 1279
Views: 289651

Re: Feature requests

Sure, So next time you login to your web-banking do not check for TLS. Just go blindly with http. Don't even check if you typed the correct domain or weather you got hijacked and redirected to another domain. What's the point anyway? Too many parties involved! :facepalm: People, it's 2018. Not 1996....
by Cha0s
Sat Sep 29, 2018 6:09 pm
Forum: General
Topic: Feature requests
Replies: 1279
Views: 289651

Re: Feature requests

Why shame? Because there is no excuse anymore for any service to run without TLS. Certificates are free (if not dirt cheap for those that don't - for whatever reason - like Let's Encrypt). Why should any entity between the router and the update server even need to know what is being downloaded? TLS...
by Cha0s
Sat Sep 29, 2018 1:47 pm
Forum: General
Topic: Feature requests
Replies: 1279
Views: 289651

Re: Feature requests

Well, as I can see, you just create static DNS entry on the router "upgrade.mikrotik.com" with the IP of your server, then run HTTP server on that IP, serving one-line files "/routeros/LATEST.(6|6fix|6rc|7)" containing "$VERSION $TIMESTAMP" (for example, "1.0 1"). Then create "/routeros/$VERSION" d...
by Cha0s
Tue Sep 25, 2018 2:18 pm
Forum: Beginner Basics
Topic: Block HTTPS [SOLVED]
Replies: 3
Views: 1051

Re: Block HTTPS [SOLVED]

There is no way to present your message saying that the page is blocked. Besides encryption, the point of https is authenticity. If you could modify what the user could see then anyone could modify any https page leading to terrible security issues. So, no. Unless you create your own CA and install ...
by Cha0s
Tue Sep 25, 2018 10:52 am
Forum: General
Topic: Feature Request: IPv6 NAT support
Replies: 18
Views: 5160

Re: Feature Request: IPv6 NAT support

And another interesting thread on the subject viewtopic.php?t=110925
by Cha0s
Tue Sep 25, 2018 10:47 am
Forum: General
Topic: Feature Request: IPv6 NAT support
Replies: 18
Views: 5160

Re: Feature Request: IPv6 NAT support

+1
I've requested this back in 2014.
viewtopic.php?f=19&t=90564
by Cha0s
Thu Sep 20, 2018 3:23 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 117283

Re: Winbox vulnerability: please upgrade

So, us, professional users of ROS, that use it every day, should have to get stupid warnings, because of dummy users that mess up their firewall and never even bother to login to their routers ever again. Who exactly will this message be for then? Please. Stop trying to convert RouterOS to a 'DummyO...
by Cha0s
Thu Sep 20, 2018 2:46 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 117283

Re: Winbox vulnerability: please upgrade

Everything outside default protection rules. It should be only warning, nothing else.
So, everyone else that does not use the default firewall will get annoying warnings about a supposedly insecure firewall configuration?
by Cha0s
Thu Sep 20, 2018 12:40 am
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 112250

Re: v6.44beta [testing] is released!

Thanks! :)
by Cha0s
Wed Sep 19, 2018 10:30 am
Forum: General
Topic: NTFS support
Replies: 34
Views: 8743

Re: NTFS support

Stop the use of the bundle package
+1

I don't see any benefit with the bundle package. It only confuses people.
by Cha0s
Wed Sep 19, 2018 10:29 am
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 365
Views: 112250

Re: v6.44beta [testing] is released!

I have set up automated exports and the output is saved in version control system, so I know what exactly changed and when.
Can you give more info on your setup/workflow?
I am interested in implementing something similar.

Thanks.
by Cha0s
Wed Sep 19, 2018 10:27 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 117283

Re: Winbox vulnerability: please upgrade

I think its unfair to call Mikrotik bone-heads in this case, as they are also saying no to the automatic upgrades. :lol: I don't think he meant Mikrotik but the likes of Microsoft and their stupid forced updates. Another example is Dropbox. It upgrades whenever it feels like it. No notification, no...
by Cha0s
Tue Sep 18, 2018 5:38 pm
Forum: General
Topic: NTFS support
Replies: 34
Views: 8743

Re: NTFS support

I vote NO NTFS, and I also vote to remove SMB, or at least make it a package that I can remove. Better yet, move all of the "home user" features into a separate package so that us enterprise customers don't have to have that type of stuff in our routers. I vote +1 for making all SOHO features a sep...
by Cha0s
Mon Sep 17, 2018 4:37 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 117283

Re: Winbox vulnerability: please upgrade

Tesla Car should go to a safe place/shop in auto mode, stop, do the critical updade, notify the client and contact tesla support to check with the client has we are talking about a 160.000€ car .... what do you think ? I think that I wouldn't want my 160.000€ car to stop whenever it feels like it s...
by Cha0s
Thu Sep 13, 2018 10:43 am
Forum: General
Topic: [Feature Request] sFlow
Replies: 11
Views: 3721

Re: [Feature Request] sFlow

Not true.

There is a software implementation that works on Linux.
https://sflow.net/about.php
by Cha0s
Wed Sep 05, 2018 10:44 pm
Forum: General
Topic: IPv6 intermittent timeouts to random IPs
Replies: 10
Views: 2289

Re: IPv6 intermittent timeouts to random IPs

Also, after the netinstall, I configured everything manually, I didn't restore the configuration from a backup just to make sure that the 'problem' was not restored with it. But it didn't make any difference.
by Cha0s
Wed Sep 05, 2018 10:33 pm
Forum: General
Topic: IPv6 intermittent timeouts to random IPs
Replies: 10
Views: 2289

Re: IPv6 intermittent timeouts to random IPs

I still haven't found any solution. I did a netinstall and the problem persists. As a temporary workaround I've set up a VM with MikroTik which acts as the router for IPv6. So I have a static route from the CCRs to that VM via a physical interface instead of the VLAN interfaces, and then I have the ...
by Cha0s
Fri Aug 31, 2018 12:46 pm
Forum: Scripting
Topic: How to ***really*** block invalid TCP and UDP packet
Replies: 44
Views: 42426

Re: How to ***really*** block invalid TCP and UDP packet

Well,

You are the expert. Why don't you explain it to us then?
by Cha0s
Wed Aug 29, 2018 2:23 am
Forum: RouterBOARD hardware
Topic: Combating Rogue DHCP Servers
Replies: 3
Views: 2256

Re: Combating Rogue DHCP Servers

There's also an "Alerts" section in DHCP Server which can monitor for rogue DHCP servers and alert you. https://wiki.mikrotik.com/wiki/Manual:IP/DHCP_Server#Alerts It also allows for "On Alert" scripting which could be used to disable the offending ports or apply firewall rules. There's a relevant p...
by Cha0s
Wed Aug 29, 2018 2:08 am
Forum: General
Topic: Suggestion: simple speed limiter
Replies: 8
Views: 1847

Re: Suggestion: simple speed limiter

Have you tried TP-Link or D-Link?

I am sure they are much easier with all their wizards whistles and bells.

If you find RouterOS hard, then it's probably not for you.
by Cha0s
Sat Aug 25, 2018 2:11 pm
Forum: General
Topic: Forgot My Mikrotik Winbox Password and Need to Recover it without Backup Configuration File
Replies: 7
Views: 26232

Re: Forgot My Mikrotik Winbox Password and Need to Recover it without Backup Configuration File

If your RouterOS version is between 6.29 and 6.42 you might be able to get a list of all users/passwords using this exploit: https://github.com/BigNerd95/WinboxExploit
by Cha0s
Sat Aug 25, 2018 2:07 pm
Forum: General
Topic: Suggestion for improved ROS update/upgrade process
Replies: 4
Views: 1374

Re: Suggestion for improved ROS update/upgrade process

This has been asked many times since the new routerboot firmware versioning but it has been ignored.
by Cha0s
Sat Aug 25, 2018 1:59 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 39983

Re: v6.42.7 [current] is released!

I noticed that interface "last link up/down times" are in the future.
interface up-down wrong time.png
by Cha0s
Thu Aug 23, 2018 12:16 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 39983

Re: v6.42.7 [current] is released!

Sigh.... I give up.
by Cha0s
Thu Aug 23, 2018 12:11 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 39983

Re: v6.42.7 [current] is released!

August 20?

So 6.42.7 does NOT contain a fix? Because the build time is Aug/17/2018 09:48:44.
by Cha0s
Thu Aug 23, 2018 12:07 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 39983

Re: v6.42.7 [current] is released!

I can confirm that the security fixes were added to the notes after the 6.42.7 thread was already posted! Why was this? https://i.imgur.com/dN9k4D4.png This is bad. I check for updates every day on this forum. The day this release was posted, I read the full changelog and there was nothing of conce...
by Cha0s
Wed Aug 15, 2018 4:47 pm
Forum: Beginner Basics
Topic: Understanding Default config: bridge
Replies: 4
Views: 5085

Re: Understanding Default config: bridge

The bridge does what it says. It bridges multiple ports/interfaces together. It's pretty much a "software switch". https://en.wikipedia.org/wiki/Bridging_(networking) In this instance it will take all interfaces (except the first one) and make them act as a switch so all of them can communicate with...
by Cha0s
Wed Aug 15, 2018 4:39 pm
Forum: Beginner Basics
Topic: Cannot block specific website
Replies: 5
Views: 943

Re: Cannot block specific website

Another way would be to create an address list, add there the domains you want to block and then create a drop filter rule using that address list as the destination. I believe this is the less resource hungry solution. No need to open any packet to check anything (TLS or otherwise), and you are act...
by Cha0s
Wed Aug 15, 2018 4:36 pm
Forum: Beginner Basics
Topic: One IP Public Multiple Webserver
Replies: 4
Views: 2824

Re: One IP Public Multiple Webserver

Hi, You just need to write Destination-nat for those servers with different port number and specify the DNS records in your ip/dns/static for those two servers then you can open it from outside with one public ip address. (You just need to know about destination nat and PAT-port address translation...
by Cha0s
Wed Aug 15, 2018 4:27 pm
Forum: Beginner Basics
Topic: Updating old versions of RouterOS [SOLVED]
Replies: 3
Views: 1222

Re: Updating old versions of RouterOS [SOLVED]

In my experience, if you upgrade from (much) older versions using System > Packages > 'Check for updates' menu (ie: not manually uploading the packages to the router), it will first upgrade to an intermediate version and then you have to perform another upgrade to get to the latest version. I haven'...
by Cha0s
Wed Aug 15, 2018 4:07 pm
Forum: General
Topic: [Bug] "Interface doesn't exist " error box, but it does.
Replies: 1
Views: 553

Re: [Bug] "Interface doesn't exist " error box, but it does.

Yeap, I've seen this too.

But I think it is solved by 6.42.5. I haven't seen it for a while now.
by Cha0s
Wed Aug 15, 2018 3:55 pm
Forum: General
Topic: New IP cloud is coming.
Replies: 84
Views: 34059

Re: New IP cloud is coming.

Currently is easy to make a brute force search for mikrotik devices using the cloud service as the names follow an simple pattern and is just an DNS query. The serial number consists of 12 hexadecimal characters. I wouldn't call making 184884258895036416 (12^16) dns lookups 'easy'. It's easier to j...
by Cha0s
Tue Aug 14, 2018 5:00 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 120
Views: 49447

Re: Security announcement blog

To go to a HTTPS page you most of the time need a initiate that on http. Those days are almost gone. HSTS Plus, all major browsers have their own predefined list of major websites that support https and will connect only to https even if you only type the domain in the address bar. https://hstsprel...
by Cha0s
Thu Aug 02, 2018 6:49 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 120
Views: 49447

Re: Security announcement blog

Yes we have to start somewhere. How about users start to read how networks work and don't make stupid mistakes like disabling a firewall? Where to start.... You talk about doing MITM essentially to modify forwarded traffic. That's preposterous! And what about TLS? Everything moves to TLS. Doing it o...
by Cha0s
Thu Aug 02, 2018 5:38 pm
Forum: General
Topic: Remove all packages and reinstall [SOLVED]
Replies: 5
Views: 1992

Re: Remove all packages and reinstall [SOLVED]

Try downgrading to an older version by manually uploading only the packages you want. After uploading you hit the 'downgrade' button on the Systems > Packages window It should downgrade and remove all other packages. After that, you can then use System > Packages > Check for updates to upgrade to th...
by Cha0s
Thu Aug 02, 2018 3:03 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 120
Views: 49447

Re: Security announcement blog

RouterOS calls home each day or week to check if there is something wrong. If so every http session gets a page displayed that an update is needed because the router is below the minimal required version. If ignored then after two weeks the router only functions when you are initiating an update. A...