Its pretty obvious that your perfect conditions test case doesn't reflect real world performance.In my test setup between two CCRs, gre over ipsec had no problems fowarding 500Mbps with 1450 byte packets.
please provide us (firstname.lastname@example.org) with support output file from your router.
All of you, Go and vote your support here : http://forum.mikrotik.com/viewtopic.php?f=1&t=86461
Thread jacking.you need to get on-board the Dynamic VLAN Assignment bandwagon.. Vote here for it : http://forum.mikrotik.com/viewtopic.php?f=1&t=86461
Ive messed with OpenWRT to get virtualization and packetfence support. All thats needed to run it directly is to enable Dynamic VLAN Assignment.. Go Vote here for it : http://forum.mikrotik.com/viewtopic.php?f=1&t=86461
vlan-mode and vlan-id can be only specified from the MAC RADIUS response. From the EAP RADIUS response it isn't specified.
Ongoing.bug in sstp??
Vlan is broken too. Or there is any special setting to vlan in rc8? After upgrade to rc8 all vlan stopped working. Downgrade to rc7 and all works again.
thank you very much for the report.
The problem for /ip ipsec policy is fixed, the problem was for IPv4 addresses policies, the latest version fixes that.
5.0rc8 will contain ipv6 support for IPSec by the way.
If you arent doing IPv6 IPSEC until V6, and v5 has been testing for 9 months, with a few months to go until stable.so and where did you get that number?12-18 months before ROS really supports IPv6 completely.
Is it possible for you to add a remove button to remove all the "Mikrotik HttpProxy" headers while you guys are at it?
What is your configuration? Is it on bridge interface? What does radv logs say?
Trezona, MAC-Ping issue is confirmed, we will fix it in the next RouterOS version.