Community discussions

Search found 388 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 8
by jspool
Wed Aug 07, 2019 6:43 pm
Forum: RouterBOARD hardware
Topic: RB4011 Meltdown
Replies: 4
Views: 1024

Re: RB4011 Meltdown

Looks like lightning damage to Port4.
In this case only port 1 and port 6 were used.
WAN=1
LAN=6

Mikrotik has instructed me to RMA so they can inspect it further. Replacement 4011 plugged in the exact same way and configured the same has been working flawlessly.
by jspool
Fri Aug 02, 2019 4:48 am
Forum: RouterBOARD hardware
Topic: RB4011 Meltdown
Replies: 4
Views: 1024

RB4011 Meltdown

I installed a brand new RB4011 at a customer location. Later that same day I started getting alerts that the location was offline. I returned to the site today and the RB4011 was insanely hot and would not boot. It had a power led but no link lights on any port. It was plugged into a surge protected...
by jspool
Tue Jun 04, 2019 6:09 am
Forum: Scripting
Topic: Portknocking by script.
Replies: 9
Views: 2519

Re: Portknocking by script.

Allow trusted DDNS on VPN server. Script the mAP to update a DDNS record on boot up and then establish the VPN connection. No need to knock on your own door unless you like secret handshakes. You can also make a script in the mAP that updates the DDNS to a non public IP when your done using it in ca...
by jspool
Fri Mar 01, 2019 8:17 am
Forum: General
Topic: inconsistent speeds across mulitple hops [SOLVED]
Replies: 3
Views: 349

Re: inconsistent speeds across mulitple hops [SOLVED]

Unless you're running AirFiber the wireless links are running half duplex. "were talking wireless not the Ethernet link" multi-hop half duplex wireless backhauls annihilate TCP throughout as it was never designed for latency. Speed test from each end of your network with UDP and then try with TCP an...
by jspool
Wed Dec 19, 2018 7:48 pm
Forum: Wireless Networking
Topic: RBLHGG-60ad
Replies: 1
Views: 312

RBLHGG-60ad

I am inquiring as to any of you that have deployed the PTP RBLHGG-60ad at a distance of 200 Meters. My goal is for the link to survive rain fade. Will these have any chance of staying connected with a small layer of ice or snow at 200 Meters? Trying to see if I need to have a 5GHz PTP as a failover....
by jspool
Fri Nov 30, 2018 5:51 am
Forum: General
Topic: Wrong "Last Link Down Time" in Winbox
Replies: 17
Views: 2439

Re: Wrong "Last Link Down Time" in Winbox

I also notice this on some of my VPN clients. Many show "Last Link Up Time" over a month in the future.
by jspool
Fri Nov 30, 2018 2:48 am
Forum: Scripting
Topic: Traccar GPS http post advice
Replies: 11
Views: 1605

Re: Traccar GPS http post advice

v6.44beta37 will have:

*) gps - added "coordinate-format" parameter (CLI only);

ddmm will be an option.
Thanks Normis!
by jspool
Mon Nov 26, 2018 6:32 pm
Forum: Scripting
Topic: Traccar GPS http post advice
Replies: 11
Views: 1605

Re: Traccar GPS http post advice

https://forum.mikrotik.com/viewtopic.php?f=9&t=137114&p=697697&hilit=gps+api#p697348 When Mikrotik updates the GPS package and enables it to output the location data to a friendly format it should work fine without requiring a middleman server to translate the data. Currently I use Particle Electron...
by jspool
Thu Nov 15, 2018 5:58 pm
Forum: Scripting
Topic: GPS http send to GpsGateServer script
Replies: 15
Views: 2561

Re: GPS http send to GpsGateServer script

External antenna for LtAP GPS works great. I haven't used external antennas for the LTE yet as it seems to work great with the built in antennas for the current application.
by jspool
Mon Nov 12, 2018 6:25 pm
Forum: Scripting
Topic: GPS http send to GpsGateServer script
Replies: 15
Views: 2561

Re: GPS http send to GpsGateServer script

You are right. We already have this in our ToDo, and will try to make it, now that LtAP mini exists.
Excellent news Normis! Supports response via email a while back was not that positive at all. Glad to hear its in the ToDo list.
by jspool
Mon Nov 12, 2018 1:22 am
Forum: Scripting
Topic: GPS http send to GpsGateServer script
Replies: 15
Views: 2561

Re: GPS http send to GpsGateServer script

Especially after releasing hardware with built in GPS like the LTAP it should be apparent that the GPS package needs some attention. Mikrotik needs to devote a couple hours to the GPS package and output the data in a usable format that does not require a middleman server to convert the Mikrotik data...
by jspool
Fri Nov 02, 2018 11:01 pm
Forum: General
Topic: MTU Question
Replies: 2
Views: 321

Re: MTU Question

When using L2TP + ipsec you can't be sure, that the packet is not fragmented, even if you specifically restrict fragmentation of the original packet. The original packet first packed into l2tp (that can, by the way, also perform fragmentation and defragmentation, but only if asked to), then it is p...
by jspool
Fri Nov 02, 2018 9:21 pm
Forum: General
Topic: MTU Question
Replies: 2
Views: 321

MTU Question

When pinging across a L2TP tunnel w/ ipsec enabled I can send packet size of 1450 with no fragmentation.
When I try to do a UDP Mikrotik bandwidth test I have to set Tx size to 1400 to get the max speed of 111Mbps Otherwise with Tx size at 1450 it only gets 19Mbps,

Whats the reason for this?
by jspool
Tue Oct 23, 2018 6:46 pm
Forum: Wireless Networking
Topic: Wireless Wire 60Ghz PTP link: weather problems?
Replies: 7
Views: 1622

Re: Wireless Wire 60Ghz PTP link: weather problems?

Hi we using wapg for last 3 months on 120m and LHG60g on 900m for last month we based in ireland so u can imagine we have lots of fog and rain and after days os alignment they finally working perfect all was down to latest stable version of router os we had rc versions and routers crashed couple of...
by jspool
Sat Oct 20, 2018 8:55 am
Forum: RouterBOARD hardware
Topic: LTAP
Replies: 0
Views: 409

LTAP

I am curious as to why the LTAP would not have a voltage monitor? It seems like a perfect candidate for use in vehicles and it would be really handy to monitor battery voltage. And the GPS package could really use some love. Output format is not very friendly. Would be nice to upload GPS data direct...
by jspool
Mon Oct 08, 2018 5:46 am
Forum: General
Topic: Router is infection by virus coinhive
Replies: 4
Views: 6339

Re: Router is infection by virus coinhive

If its ever been hacked or suspected of being hacked then you need to Netinstall the current RouterOS version. Use a packet capture tool and you should be able to narrow down the source if its not the Mikrotik.
by jspool
Mon Jul 16, 2018 12:46 am
Forum: RouterBOARD hardware
Topic: CRS354-48P-4S+2Q+ Dimensions
Replies: 5
Views: 1709

CRS354-48P-4S+2Q+ Dimensions

Does anyone have the depth of the new CRS354-48P-4S+2Q+?

I am curious if it will fit into some customer wall mount racks.
by jspool
Sat Jun 09, 2018 11:08 pm
Forum: RouterOS v7
Topic: RouterOS v7.0 beta1 - when?
Replies: 573
Views: 139377

Re: RouterOS v7.0 beta1 - when?

I'm more excited that they are hiring Android & iOS programmers as well as mobile application WEB application programmers. Some native management apps would be very nice. https://darbs.mikrotik.com/darbs/ When they are ready they will release the newer RouterOS. Their new building is more conducive ...
by jspool
Sat Jun 09, 2018 10:52 pm
Forum: General
Topic: Suggestion of RouterOS upgrade by X86 system
Replies: 5
Views: 581

Re: Suggestion of RouterOS upgrade by X86 system

It sounds like more of a configuration problem vs a hardware problem. If you cant determine the cause of latency now then changing hardware wont be accomplishing anything. tool profile allows you to see the routers resource usage to determine if its being overloaded in some way. Too many firewall ru...
by jspool
Sat Jun 09, 2018 10:45 pm
Forum: RouterBOARD hardware
Topic: 10Gb SFP+ hardware
Replies: 3
Views: 2157

Re: 10Gb SFP+ hardware

Why bother with DAC? Transceivers are not much these days.

I use Intel X520 SR1 (comes with Intel transceiver)connected to CRS317-1G-16S (MW-SX+MM-US transceiver) using an actual fiber patch cable as it was intended.
by jspool
Sat Jun 09, 2018 10:36 pm
Forum: General
Topic: progaram get any mikrotik system usernam and passowrd in 3 second
Replies: 35
Views: 5388

Re: progaram get any mikrotik system usernam and passowrd in 3 second

Funny how people are so quick to post an issue without bothering to check to see if its already been discussed. Anyone exposing management ports to the public facing Internet deserves whatever comes their way. Attacks from LAN to router and from WAN to router are easily prevented by only allowing tr...
by jspool
Thu Jun 07, 2018 10:34 am
Forum: Beginner Basics
Topic: Mikrotik bridge infected by conficker? [SOLVED]
Replies: 9
Views: 1356

Re: Mikrotik bridge infected by conficker? [SOLVED]

Can't tell why I have been running the old version. Wasn't aware that there have been issues with the old version, and the units have just worked well..... If you have management services enabled on public facing devices its not even a question as to if one should stay up to date. If you aggressive...
by jspool
Thu Jun 07, 2018 10:20 am
Forum: RouterOS v6 RC and v7 BETA
Topic: HELP ME PLEASE!
Replies: 8
Views: 1011

Re: HELP ME PLEASE!

Was it running a vulnerable RouterOS version? If so you probably got locked out by the attacker. viewtopic.php?f=21&t=134776
by jspool
Fri Jun 01, 2018 11:24 pm
Forum: Wireless Networking
Topic: How to install airodump-ng on mikroitk device
Replies: 3
Views: 1089

Re: How to install airodump-ng on mikroitk device

You have used the scan feature right? it shows nearby wireless devices. But I think you may be after something else :shock:

For everything else you can use Kali Linux or utilize a https://www.wifipineapple.com/pages/tetra
by jspool
Fri Jun 01, 2018 11:16 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: The security flaw for Hajime is closed by the firewall
Replies: 37
Views: 16286

Re: The security flaw for Hajime is closed by the firewall

If you have anything Internet facing you must be vigilant. Definition of vigilant : alertly watchful especially to avoid danger It is truly surprising that so many are: 1. Not up on the current threat landscape. 2. Fail to implement basic firewall restrictions on management services. 3. Show surpris...
by jspool
Thu May 31, 2018 7:57 pm
Forum: RouterBOARD hardware
Topic: LtAP mini - does built-in GPS have 1PPS support?
Replies: 1
Views: 636

Re: LtAP mini - does built-in GPS have 1PPS support?

That would be interesting to know if they plan on adding PPS.

According to the Wiki:
Note: The time is not stratum 1 as RouterBOARD devices do not have PPS implemented
by jspool
Thu May 31, 2018 9:00 am
Forum: General
Topic: Do haplite only work with 5v power cable
Replies: 3
Views: 387

Re: Do haplite only work with 5v power cable

the original power cable suddenly broke after few power outage Well the cable wont physically break due to a power outage. So maybe you had a power surge that fried your power supply. In that case try powering with another power supply of the same voltage and amperage and see if it will work. If it...
by jspool
Thu May 31, 2018 8:56 am
Forum: General
Topic: PCI Compliance
Replies: 1
Views: 351

Re: PCI Compliance

PCI scans are such a joke. Just setup port scan detection and block them as they attempt to scan. They love to find any open port and consider it a fail and charge the customer more for being out of "compliance".
by jspool
Thu May 31, 2018 8:52 am
Forum: General
Topic: RB493G just started repeatedly crashing (~10 minutes)
Replies: 5
Views: 538

Re: RB493G just started repeatedly crashing (~10 minutes)

Are the capacitors shot? Are they raised or leaking from the tops? Have you tried powering with a different method? It should support POE as well as the DC plug.
by jspool
Mon May 21, 2018 9:07 pm
Forum: General
Topic: WAP LTE KIT [SOLVED]
Replies: 2
Views: 584

Re: WAP LTE KIT [SOLVED]

Have you tried the latest release candidate RouterOS? *) lte - use "/32" address for the Passthrough feature when R11e-LTE module is used;
by jspool
Mon May 21, 2018 7:51 pm
Forum: General
Topic: multi microtik management tool
Replies: 13
Views: 6070

Re: Re:

We are working on a system management tool that would have this feature.

John
Will this management system be released along with RouterOS v.7 software?
https://www.youtube.com/watch?v=izQB2-Kmiic
by jspool
Mon May 21, 2018 5:49 pm
Forum: General
Topic: multi microtik management tool
Replies: 13
Views: 6070

Re: multi microtik management tool

Ubiquiti has such a tool and it would be awesome to have for Mikrotik hardware.

HA feature without having to use scripting would be very nice as well.
by jspool
Mon May 21, 2018 5:24 pm
Forum: Beginner Basics
Topic: Mikrotik cloud remote access
Replies: 24
Views: 4944

Re: Mikrotik cloud remote access

Most LTE connections give you an IP in the 100.64.0.0/10 range. This is actually a non public IP that is used with CGNAT. As already stated the only way this typically works is if your device is setup with a VPN client that connects to a VPN server that has a publicly accessible IP address.
by jspool
Fri May 18, 2018 11:39 pm
Forum: Wireless Networking
Topic: BaseBox2 LTE problems
Replies: 2
Views: 500

Re: BaseBox2 LTE problems

SIM cards don't plug into the MiniPCI-e slot. They go into the Sim card slot. Assuming you are using a supported Modem plugged into the MiniPCI-e slot you should see the device in interface LTE.
by jspool
Fri May 18, 2018 9:15 pm
Forum: Wireless Networking
Topic: RB433 and Ubiquity XR9
Replies: 2
Views: 453

Re: RB433 and Ubiquity XR9

Assuming you mean "Ubiquiti" Also the RB433 has MiniPCI slots. If you would take the time to familiarize yourself with the XR9 and maybe even use the search feature you would get your answer in less time then it took to write your post. https://forum.mikrotik.com/viewtopic.php?t=30828 http://www.roc...
by jspool
Fri May 18, 2018 6:48 pm
Forum: RouterBOARD hardware
Topic: CRS317-1G-16S+ Bridge not showing tx [SOLVED]
Replies: 0
Views: 360

CRS317-1G-16S+ Bridge not showing tx [SOLVED]

On both current and release candidate the bridge does not show any tx traffic and it appears that ether1 is displaying the bridge tx traffic. I emailed support and provided a supout. Not sure if anyone else is seeing this as well. a8668bcbab49e364aa923e3fdebb01df.png Updated: Support says: "This is ...
by jspool
Thu May 10, 2018 10:01 pm
Forum: RouterBOARD hardware
Topic: R11e-LTE-US Issues
Replies: 1
Views: 654

Re: R11e-LTE-US Issues

For the first time I can use my RBM11G w/ R11e-LTE-US with Verizon! The latest release candidate (6.43rc11 ) resolved the issue preventing it from being able to route out via the LTE connection.
by jspool
Fri May 04, 2018 3:00 am
Forum: Forwarding Protocols
Topic: What does /ip route vrf really do?
Replies: 22
Views: 8797

Re: What does /ip route vrf really do?

@pe1chl So do the firewall filter rules apply to all routing tables by default?
by jspool
Thu May 03, 2018 10:58 pm
Forum: General
Topic: Exhaustive Trouble Shooting of no DNS via L2TP/IPSEC, NEW IDEAS welcomes [SOLVED]
Replies: 9
Views: 624

Re: Exhaustive Trouble Shooting of no DNS via L2TP/IPSEC, NEW IDEAS welcomes [SOLVED]

Are both sides using the same RouterOS version? I recently had a problem with l2tp between 6.40.8 and 6.42.1. Once I updated both to 6.42.1 it worked. Not sure if it has any bearing in your case.
by jspool
Wed May 02, 2018 2:30 am
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 43617

Re: v6.42.1 [current]

I saw that now I can download automatically the new RB firmware with "Auto upgrade", there's also a way to auto reboot?
Also there was talk of perhaps suppressing the firmware reboot message if not needed.
There was also talk of v7
by jspool
Wed May 02, 2018 2:19 am
Forum: General
Topic: Upgrade Issue
Replies: 6
Views: 567

Re: Upgrade Issue

Yes that would be a safe procedure to update it in-place. Now that it already has been "destroyed" you can netinstall it immediately to 6.42.1 and indeed upgrade routerboot as well. The above procedure should be followed when you have other devices with such old software you want to update. are you...
by jspool
Tue May 01, 2018 11:21 pm
Forum: Forwarding Protocols
Topic: What does /ip route vrf really do?
Replies: 22
Views: 8797

Re: What does /ip route vrf really do?

Mikrotik is Linux based and Linux has support for multiple routing tables and routing rules. A VRF attaches the connected interface route to an alternative routing table so that you can have overlapping routes. Yes, this is what I know and that is why I think it works like you describe! The part ab...
by jspool
Mon Apr 30, 2018 1:31 am
Forum: General
Topic: Help: Lost access to many Mikrotiks
Replies: 2
Views: 376

Re: Help: Lost access to many Mikrotiks

Once a system is compromised you must Netinstall to ensure you have a uninfected system. Netinstall, secure it properly and commit it to a learning experience.
by jspool
Mon Apr 30, 2018 1:10 am
Forum: General
Topic: Firewall Blacklist VOIP issue
Replies: 1
Views: 291

Re: Firewall Blacklist VOIP issue

That's why Its important to whitelist trusted traffic before the blacklist drop rule.
by jspool
Sun Apr 29, 2018 1:47 am
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 6850

Re: Windows Port Knock Application

Even if the DDNS was compromised the attacker would have no clue what equipment you have that watches that record. I agree that compromising the DDNS itself could reveal something useful only if the VPN "server" would query the DDNS server directly. But if you update the DDNS from the hotel just be...
by jspool
Sat Apr 28, 2018 11:21 pm
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 43617

Re: v6.42.1 [current]

Downgrading a RB1100AHx2 from 6.42.1 to 6.40.8 bricked it. Will have to make a trip to the mountain to fix that one. At least I had a backup router in place!
by jspool
Sat Apr 28, 2018 11:12 pm
Forum: General
Topic: Windows Port Knock Application
Replies: 24
Views: 6850

Re: Windows Port Knock Application

Port knocking seems like a decent approach to add an additional level of security. I used it when I first started using Mikrotik products but have since migrated to other methods. 1. DDNS (My management gear has DDNS client that updates the dynamic DNS record with the IP of the management equipment....
by jspool
Sat Apr 28, 2018 3:53 am
Forum: RouterOS v6 RC and v7 BETA
Topic: 6.43rc5 bricked RB1100AHx4
Replies: 16
Views: 2255

Re: 6.43rc5 bricked RB1100AHx4

After about 6 hours, I finally got the Routerboot menu. I'm not sure why I was never prompted (press any-key...) before. I ended up getting a stopwatch and power strip. I was powering the router and timing how long to press the reset. It ended up needed to be pressed for no less than 15 minutes. (w...
by jspool
Fri Apr 27, 2018 7:06 am
Forum: RouterOS v6 RC and v7 BETA
Topic: 6.43rc5 bricked RB1100AHx4
Replies: 16
Views: 2255

Re: 6.43rc5 bricked RB1100AHx4

Tried that.. They said it's past their coverage and to contact Mikrotik.
Mikrotik products are great when they work and if they stop working your soon in a pin ball machine being bounced around aimlessly. Perhaps things will improve with v7 :lol:
by jspool
Fri Apr 27, 2018 7:01 am
Forum: RouterOS v6 RC and v7 BETA
Topic: 6.43rc5 bricked RB1100AHx4
Replies: 16
Views: 2255

Re: 6.43rc5 bricked RB1100AHx4

You will have to Netinstall your router. If you are not being able to do that, then provide serial console output which would be made during Netinstall process.
I think if you read the whole thread you will see his console output and the fact that netinstall is not working.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 8