MikroTik

NetVicious

More than one year later and the bug it's there yet.

I'm tryting to get the result of the /export command and it seems it's affected by the same limitation of the API.

NetVicious

Currently the application doesn't has any measure you wrote. I will add for sure the option to use non-standard ports. The port knocking seems to be easy to add, but I should need a testing setup to test it. I know what's a DSA key pair, but I don't know now how it applies to one RouterOS API port c...

NetVicious

Hi dakota! Here I think it will be better if we write in English. If you want to talk with me in spanish I don't have any problem to do it on private. My application will work perfectly if you have TCP/IP connection with the RouterOS devices. They can be on an internal network, connected within VPNs...

NetVicious

Old, good RB450G. Just upgraded to 6.45.1 from something like 6.40 and now can't connect through any port. 4 ports switched and one with DHCP client. Winbox says nothing (even after updating it and clearing cache). The only solution seems to be a rs232 (not tried yet). Any thoughts on that? Try con...

NetVicious

Yes, because of script. I did not run the script on first day, it was yesterday, and till then nobody complained the issue. Yesterday evening when i got to know the issue from several clients one by one etc then I took the notice. because other than hAP lite router, no one else complained till now ...

NetVicious

As I posted before I had (as others) problems with GRE with this new version of RouterOS. In my case I'm using pptp VPN tunnels. I have a master router acting as pptp Server and some other devices acting as pptp client. 2 of that clients had problems trying to connect to the pptp server after the 6....

NetVicious

@andriys. Sorry but I don't saw the official strods post answering a lot of posts of this threads with the info about GRE. I said temporary fix because I have some RB450G with 6.45.1 running perfectly against a RB850Gx2 with 6.45.1 without any new firewall rule about GRE . That's why I though it's a...

NetVicious

As I read before on this thread It seems 6.45.1 has some problem with GRE. When you do make the effort of reading the topic first and seeing others with the same problem, why don't you go that tiny step further and read the replies that they got (also from MikroTik) about the cause of this "problem...

NetVicious

Hi! As I read before on this thread It seems 6.45.1 has some problem with GRE. I have some Mikrotik RB450G (call they A, B, C, .....) connected to one RB850Gxx2 (call him as master). "Master" has one PPTP Server binding for each other (A, B, C). After upgrading all the devices to 6.45.1, A and C can...

NetVicious

My little tool it's near the public release.
I added threads to do the actions in less time.
Check the video on the first post to see what it can do.

NetVicious

I see. I'm trying to create a converter of the "export commands" to the "API commands". I don't like to leave so much ports opened on my devices.
Thanks for the info. If I cannot translate all the commands to the API style I will use the ssh mode.

NetVicious

Hi!
It's there a way to run commands exported directly from a Mikrotik without modifying the way we need to send the parameters within the API?

I want to add one option to my application to send raw commands as we paste they on the Terminal.

Regards,

NetVicious

Read the previous message of your post

NetVicious

Hi! The application it's ready for the first betatesters. Please send me one email to "my nick + gmail" I will send you one link to the application. At this moment the application can check each device added, getting info about: serial number model RouterOs version Firmware version If the date+time ...

NetVicious

Hi! First of all I need to send thanks to Chupaka for it's Delphi API library. Here I'm introducing my MtkManager, a tool which will help us to upgrade RouterOS and firmware in several RouterOS devices with a few clicks. I don't know if there it's published a similar tool. I know there it's the Dude...

NetVicious

Connection error: No SSL/TLS support compiled
Probably you need libeay32.dll and ssleay32.dll

Perfect. That worked for the API Test application.

I will try another time to use openssl on my code, thanks.

NetVicious

Did you try API Test program? It works for me with SSL. If you're refering to the APITest-1.3.exe executable, when I run it and I check the TLS checkbox I got this error when trying to connect: --------------------------- RouterOS API Demo --------------------------- Connection error: No SSL/TLS su...

NetVicious

Hi! The Chupaka library works perfectly on non-SSL protocol, but I want to use it using the API-SSL port. I tried several synapse library versions, criptlib or openssl and I got one " Received TLS alert message: Handshake failure " error when trying to use ssl_cryptlib and a " Network Subsystem it's...

NetVicious

It was a typo sorry. Half = have

I changed it.

NetVicious

mmm, I'm thinking we need some power to fully tight they so they should have self-locking ring too.

NetVicious

The kit doesn't includes auto lock nuts, that was my question for getting it more secured.
You can see it on the point 3 of the mounting guide PDF
https://i.mt.lv/routerboard/files/Ilust ... 095554.pdf

The nuts are directly fitted on the mouting kit.

NetVicious

I understand your answer perfectly, but what about the nuts which link the dish and the mounting kit?

NetVicious

Hi!
I bought a pair of Wireless Wire Dish (aka LHGG-60ad) and I want to ask why they don't include auto lock nuts instead of the usual nuts.
Any problem to use this kind of nuts on exteriors?
Regards,

NetVicious

I know Dude has one option to mass upgrade RouterOS version, but this upgrade it's done uploading the npk files from the Dude Box to each RouterOS device. Why not add one option to use remotely the auto-upgrade option RouterOS has? This it's done in System/Packages/Check for Updates or in the Quick ...

NetVicious

Nice info! You tested it with lots of traffic in both network cards?

NetVicious

I was looking a solution with two wireless cards too, and when I saw the price of the RBM33G I thought something was wrong. Obviously this it's the limitation the routerboard has, and that's why it's more cheaper than the other RB43X models

NetVicious

Thanks uldis, I searched on the quickstart guide for external antenna without reading the full document.

I discovered it myself and I was preparing this image

wap_lte_opened.jpg

Thx for the info. Regards,

NetVicious

Hi! I bought two units and all works flawlessly as usual, but I don't see where are the external antenna connectors of the LTE modem. I think I should open the case (not the screw protected bottom part) and change the internal wires to the internal antennas to my external antennas within a little pi...

NetVicious

Hi!

I read RB4xx don't supports FastTrack. But why Winbox it showing this option on the Firewall action ?

IMHO, Winbox should detect this and the fastrack option should not appear.

Regards,

NetVicious

Hi! IMHO the RouterOS should have a bruteforce protection system for it's services. If you want to protect a service which Mikrotik forwards+NAT you should use Mikrotirk filters or another solution on the destination box. That should include the Mikrotik services SSH, Winbox, VPNs (L2TP, PPTP, IPSec...

NetVicious

I see.

But only related to hotspot. VPN connections are not counted in our RB/450

Please tell me if external Radius server logins count as user manager database. And external logins within Facebook, Linkedin, Twitter APIs?

NetVicious

Looking these wikis [1] and [2] and this post I have the same question yet! [1] https://wiki.mikrotik.com/wiki/User_Manager/Active_users [2] https://wiki.mikrotik.com/wiki/User_Manager/Active_sessions What needs a session or what counts as active user? I understand if someone connects to winbox or t...

NetVicious

Thanks for the info.

Link for other people looking for the same: http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf

NetVicious

I read on the forum using PPP VPN connection it's not possible to push routes to the client.

What about IPSec VPN or OpenVPN ? It's not possible either?

NetVicious

I know this topic it's largely posted on this forum from a lot of time (>6 years) :? It seems the position of Mikrotik it's to not develop nothing outside the RFCs (aka standards) I was solving this problem using scripts on local computers, or modifying the configuration of the OpenVPN client. One s...

NetVicious

Winbox 3.1 doesn't fix the Neighbors problem on the detection of RouterOs in the same network.

I'm connecting with a RB450G using the mac address but the neighbors tab doesn't shows nothing.

NetVicious

English translation of DmitryAVET link

http://www.microsofttranslator.com/bv.a ... k-RB850Gx2

NetVicious

Neighbors works fine. It does exactly the same as the three dots button. What do you have there? Are you using Winbox 3.0 (not beta)? Here it's not working. I don't know If I disabled something but running the old winbox 2 on a computer with a Routerboard as router of the network nothing it's shown...

NetVicious

Hi! Where's the option to detect the near Mirkotik devices using broadcast ? On the Winbox 2.0 there was a button with 3 dots at the left of the "connect" button. I thought this function was moved to the Neightbors tab on Winbox 3. When it was a beta I thought it won't work due to work in progress, ...

NetVicious

Hi! I'm looking for one antenna for the 2.1Ghz band of GRPS. I need one angled antenna with magnetic base like the image below but I need to put it angled because it will be used on the lateral of one big van. http://thumbs3.ebaystatic.com/d/l225/m/mQAza6WG-VFniWDbNNUdOhA.jpg I don't found any magne...

NetVicious

"1" in the end will indicate that it has a wireless slot or card. + each change in product code results in new government certification for us, to import that product, so i'm against changing any names, especially in cases when there are no physical differences between boards. That's a good reason,...

NetVicious

IMHO the new RB850Gx2 with hardware encryption should have been called RB851Gx2

Now If we want to buy the improved version of RB850Gx2 we need to ask our provider to know it's serial number

NetVicious

Ok, thanks for the info. I checked that and RouterOs tried to renew phase 2 SAs when the SAs had 24 minutes remaining of lifetime. 30 minutes remaining it's 75% so it seems to be ok. The problem it's the other router (Mcaffe firewall) has the soft rekeying at its 85% of SA timeout, so my rekey at ar...

NetVicious

Thanks mrz. And you could tell me which should be the standard behaviour or these SAs .... If the phase 2 SAs get its configured timeout the RouterOS should re-negotiate another new phase 2 SAs ? Or it don't needs to do that because it will negotiate new phase 2 sas with the phase 1 SA when the tunn...

NetVicious

Hi! Someone could tell me which type of SAs we see on IP / IPSec / Installed SAs ? As I know there are two different SAs on IPSec (IKE SAs for phase 1, and IPSec SA for phase 2). Looking to the timeouts, it seems the Installed SAs tag shows IP Sec Sas related to phase 2. And in the Remote Peers tabs...

NetVicious

Hi! I set one IPSec VPN tunnel within a RB450G and a Juniper. All seems to be configured correctly because when we start the tunnel all goes ok, we can connect to the server in the other part ... But when the phase 2 gets timeout-ed the tunnel seems to be broken. After that moment on the MK there it...

NetVicious

Hi! I got here looking for one configuration for RouterOS to set an external zone to the Routerboard DNS server. I read here something about dnsmasq or creating a new zone. This it's possible using RouterOS? I want to say to the RouterOs DNS if it gets a query asking for domain.com it should ask for...

NetVicious

Proposal it's the phase 2 of IPSec and it's lifetime means when it should renew the SAs used. Peer it's the phase 1 of IPSec and it's lifetime means when it should close the current connection and create a new one. On the IP / IpSec / Peers you could see the phase 1, and if you double-click one you ...

NetVicious

Hi! Time ago I post a little tutorial [1] for setting a IPSec VPN connection with RouterOS when the Mikrotik it's after a firewall. That tutorial uses the main exchange mode and needs to set in the ID field the external wan IP address of that office. The option to change the ID on main mode was remo...

NetVicious

I took the routerboard to an electronical technician which changed the electronical capacitor which was a bit blowed up (or inflated) Take an eye on these capacitors: http://www.pcstats.com/articleimages/200302/capblown_3.jpg If your RouterBoard has one in a similar status that should be the problem...

Search found 97 matches