Community discussions

Search found 566 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 12
by otgooneo
Mon Mar 25, 2019 4:40 am
Forum: Beginner Basics
Topic: hEX - IPsec Tunnel slow
Replies: 30
Views: 4572

Re: hEX - IPsec Tunnel slow

I just had a chance to configure two RB750Gr3 with ipsec. No firewall at all on both routers, uplinks allow 100mbps between routers. IPSec uses AES128 for encryption algorithm and SHA1 for authentication algorithm. ~10Mbps ipsec traffic, CPU gets ~38%. One of the CPU reaches to 60% among 4 CPUs. Est...
by otgooneo
Mon Feb 04, 2019 5:46 am
Forum: Announcements
Topic: February Newsletter #87
Replies: 65
Views: 12840

Re: January Newsletter #87

This InterCell is not really for WISP. It is for companies who want to operate LTE cell towers, either for public or private reasons. Yes, you probably need a license from the regulator. These InterCell devices only support data (no voice calls, except whatsapp/skype etc over data connection). The ...
by otgooneo
Fri Feb 01, 2019 5:50 pm
Forum: Announcements
Topic: February Newsletter #87
Replies: 65
Views: 12840

Re: January Newsletter #87

This InterCell is not really for WISP. It is for companies who want to operate LTE cell towers, either for public or private reasons. Yes, you probably need a license from the regulator. These InterCell devices only support data (no voice calls, except whatsapp/skype etc over data connection). The ...
by otgooneo
Mon Feb 05, 2018 10:57 am
Forum: Wireless Networking
Topic: How to limit unknown unicast traffic (in pps or mbps)
Replies: 4
Views: 1805

Re: How to limit unknown unicast traffic (in pps or mbps)

Hi there, Did you find way to limit it?
by otgooneo
Mon Oct 16, 2017 1:48 pm
Forum: Scripting
Topic: Possible bug with global variables
Replies: 26
Views: 5538

Re: Possible bug with global variables

Hi strods. This is not an option when we have many separate scripts that need to call one scrip another. This is useful when scripts has different time stamps need to run. So only the way is to make Global variable as real Global, which is possible to use between separate scripts. Please consider re...
by otgooneo
Fri Aug 25, 2017 9:08 am
Forum: General
Topic: CCR1036 PPPoE server bad performances
Replies: 10
Views: 1946

Re: CCR1036 PPPoE server bad performances

Hi did you watch this video ?
https://youtu.be/3LmQYIQ5RoA?t=843
Unfortunately this video recommendation not really related with PPPoE server performance, but optimization of dynamic routing in case thousands of PPPoE routes.
by otgooneo
Thu Aug 24, 2017 5:38 am
Forum: General
Topic: Looking for RouterOS hosting in Hong Kong
Replies: 1
Views: 355

Looking for RouterOS hosting in Hong Kong

I`m looking for RouterOS hosting on HongKong. Datacenter should be connected to Equinix exchange network and traffic load will be 100mbps/100mbps max. Something cheaper than MS Azure hosting. I tried CHR with Azure but monthly payment become too high for me. Thanks.
by otgooneo
Wed Aug 23, 2017 10:08 am
Forum: General
Topic: CCR1036 PPPoE server bad performances
Replies: 10
Views: 1946

Re: CCR1036 PPPoE server bad performances

Now only about 1500 per router, we bought more and powerfull routers. But I still have this problem in all router: CCR1072 and CCR1036. Rumors say this is a problem of CCR, with x86 no issues. I'm waiting response from mikrotik support. Does anybody use PPPoE with CCR without problems? Did you solv...
by otgooneo
Tue Aug 15, 2017 10:43 am
Forum: General
Topic: Log all console commands [SOLVED]
Replies: 25
Views: 6070

Re: Log all console commands [SOLVED]

Feature request is different from "is there a way to do this now?"
No there isn't. Feature request noted.
Thank you Normis.
by otgooneo
Tue Aug 15, 2017 8:04 am
Forum: General
Topic: Log all console commands [SOLVED]
Replies: 25
Views: 6070

Re: Log all console commands [SOLVED]

+1. This is something really needed especially in case of routeros as a firewall/gateway of financial services.
by otgooneo
Tue Aug 15, 2017 7:19 am
Forum: Scripting
Topic: using /tool fetch to create a connection check script
Replies: 5
Views: 2860

Re: using /tool fetch to create a connection check script

I just tested http post. please see below. I sent 100 post request with one shot using script /tool fetch http-method=post port=80 keep-result=no url="http://posttestserver.com/post.php?dir=otgoo_2" http-data=otg1 But all 100 requests take 2 minutes to complete. I included log command at the start a...
by otgooneo
Tue Aug 15, 2017 5:58 am
Forum: Scripting
Topic: using /tool fetch to create a connection check script
Replies: 5
Views: 2860

Re: using /tool fetch to create a connection check script

I`m wondering possibility of routeros if I use HTTP POST to interact with 3rd party system instead of API, because routeros can`t call 3rd party API. In other word, 3rd party web server will hear http post to get information from routeros. Routeros will POST queue stats over http to this web server....
by otgooneo
Tue Aug 15, 2017 5:07 am
Forum: General
Topic: Suricata IDS/IPS integration with Mikrotik (now with OSSEC)
Replies: 183
Views: 68680

Re: Suricata IDS/IPS integration with Mikrotik (now with OSSEC)

Sorry for being lazy. But does any one have pre-configured image, which supports to install it and change minor configurations like IP address, username and password?
by otgooneo
Tue Aug 15, 2017 4:21 am
Forum: General
Topic: Bridge strange behaviour
Replies: 0
Views: 319

Bridge strange behaviour

https://lh6.googleusercontent.com/gjQtEzR2rwNZ5nxyOxGYGneAA0LOrOUgathcG4-KFSvN4EIbOQNx9t8ZUnXJwGG8A-cWN6ainQQfAxY=w1304-h629 As my attached drawing, I have bridge interface including ether2 and wireless interface, an other side L2TP (over ether1) tunnel is a WAN. Host 192.168.88.223 transfers file ...
by otgooneo
Mon Aug 14, 2017 10:41 am
Forum: General
Topic: DHCP Option 82 and Hotspot
Replies: 2
Views: 979

Re: DHCP Option 82 and Hotspot

I`m afraid it`s not possible today. It would be nice if we can use Option 82 parameters as a hotspot authentication without captive portal. In this case we can use DHCP authentication (option 82) to identify customer and Radius accounting like volume usage (byte limited service)
by otgooneo
Thu Jul 06, 2017 7:00 am
Forum: RouterBOARD hardware
Topic: RB951G-2HnD / RB450G / RB750Gr3
Replies: 3
Views: 2566

Re: RB951G-2HnD / RB450G / RB750Gr3

I`m wondering since RB750Gr3 can do everything that RB450G does, why still manufacturing RB450G.
by otgooneo
Thu Jun 29, 2017 10:35 am
Forum: General
Topic: Winbox stores all your saved passwords UN ENCRYPTED locally
Replies: 7
Views: 3668

Re: Winbox stores all your saved passwords UN ENCRYPTED locally

I just today realized that it won`t encrypt user/pass. Just now set master password and secured my winbox db. Well done. Good job Mikrotik. :-)
by otgooneo
Mon Jun 19, 2017 8:57 pm
Forum: The User Manager
Topic: User Manager general problems
Replies: 3
Views: 825

Re: User Manager general problems

I want to know this kind of experience too. I`m thinking to swap freeradius by userman. But seems like not really for production use (still).
by otgooneo
Mon Jun 19, 2017 8:54 pm
Forum: The User Manager
Topic: Userman performance and capacity
Replies: 1
Views: 590

Userman performance and capacity

Hi everybody. Please share your experience with userman with below criteria. 1. How many users (subscribers) did you created on userman? 2. What is the simultaneous Radius authentication request during the peak hours. (request per seconds)? 3. What is your HW to installed userman package? 4. If requ...
by otgooneo
Mon Jun 19, 2017 5:56 pm
Forum: Scripting
Topic: Possible bug with global variables
Replies: 26
Views: 5538

Re: Possible bug with global variables

Have you tried to run all the scripts with the same user and with the corresponding rights?
Yes. Tried with several options using full admin user on both scripting, scheduler. All same. No success. Instead of global variable, I use DNS record. Somehow works :-)
by otgooneo
Wed Jun 07, 2017 7:52 am
Forum: Scripting
Topic: Possible bug with global variables
Replies: 26
Views: 5538

Re: Possible bug with global variables

This problem still exist in v6.38.5 :-(
by otgooneo
Wed May 31, 2017 9:42 am
Forum: Announcements
Topic: Winbox 3.11 released!
Replies: 94
Views: 276219

Re: Winbox 3.11 released!

@null31 Appreciated your help.
by otgooneo
Wed May 31, 2017 7:24 am
Forum: Announcements
Topic: Winbox 3.11 released!
Replies: 94
Views: 276219

Re: Winbox 3.11 released!

v3.11 doesn`t have code signing certificate.
Image
by otgooneo
Fri Mar 24, 2017 9:21 am
Forum: Beginner Basics
Topic: Mikrotik DNS consumes 100% of CPU
Replies: 21
Views: 17572

Re: Mikrotik DNS consumes 100% of CPU

In case of DNS attack, it something very easy to stop/block. In case of my hotspot routers, lot of clients ask DNS from the router and CCR1072 become slow on DNS query. But actually CCR1072 can handle thousands of hotspot clients except DNS server role. I implemented separate DNS server to handle it...
by otgooneo
Fri Mar 24, 2017 9:04 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Feature Request - LCD Display Access
Replies: 5
Views: 2942

Re: Feature Request - LCD Display Access

No feedback till today :-(
by otgooneo
Thu Mar 09, 2017 6:53 am
Forum: Beginner Basics
Topic: Mikrotik DNS consumes 100% of CPU
Replies: 21
Views: 17572

Re: Mikrotik DNS consumes 100% of CPU

The main issue of DNS is that it does not support multi-thread. It can load only one CPU and it`s easy to reach 100%. In this case even powerful CCR1072 is nothing against DNS request. If DNS service supports multi-thread, would be very nice.
by otgooneo
Sat Jan 14, 2017 8:53 pm
Forum: Announcements
Topic: The Dude, v6.39rc test builds.
Replies: 121
Views: 26859

Re: The Dude, v6.39rc test builds.

CLI and API are really needed.
by otgooneo
Tue Dec 13, 2016 5:52 am
Forum: General
Topic: Conflict with Static IP ...
Replies: 10
Views: 2071

Re: Conflict with Static IP ...

My post was in 2011. But still there is no good IP conflict detection in RouterOS. Your ARP method is something workaround solution. Thanks. But in real network better to learn ARP dynamically. Also Static ARP entries will help only router to know correct host when IP conflicted, but how about the o...
by otgooneo
Fri Nov 04, 2016 6:30 am
Forum: General
Topic: Looking for professional service
Replies: 0
Views: 324

Looking for professional service

We are looking for professional service for RouterOS+FreeRADIUS (or any other Radius). Basically need to implement volume limited service (data package service) with PPPoE. There are also few more requirement. If your company is interested in it, please contact me through skype. My ID is available o...
by otgooneo
Fri Nov 04, 2016 5:48 am
Forum: General
Topic: new priority from dscp high 3 bits
Replies: 27
Views: 3008

Re: new priority from dscp high 3 bits

Really don`t understand how to use WMM with RouterOS
by otgooneo
Wed Oct 05, 2016 10:47 pm
Forum: The Dude
Topic: The Dude, v6.38rc test builds.
Replies: 189
Views: 37796

Re: The Dude, v6.38rc test builds.

This is release still doesn`t have possibility to add device with mandatory basic values.
by otgooneo
Wed Oct 05, 2016 10:06 pm
Forum: General
Topic: IP route on L2 bridge
Replies: 0
Views: 578

IP route on L2 bridge

Hi Guys, Does any one tried before to route L2 bridge packet? Sounds strange but I`m far from my office and need to know possibility before test it on my office few weeks later. This is something like in below. 1. Make routerOS as transparent bridge /interface bridge add name=bridge1; /interface bri...
by otgooneo
Wed Oct 05, 2016 9:39 pm
Forum: General
Topic: new priority from dscp high 3 bits
Replies: 27
Views: 3008

Re: new priority from dscp high 3 bits

Very interesting discussion here. Few days ago I started to learn WMM and DSCP to set internal priority. If we have packets with known resource like ethernet, we can easily configure priority using queue. But on wireless interface performance, which depends on client distance, interference so on... ...
by otgooneo
Wed Oct 05, 2016 8:59 pm
Forum: The Dude
Topic: The Dude, v6.38rc test builds.
Replies: 189
Views: 37796

Re: The Dude, v6.38rc test builds.

Is it possible to upgrade only dude package to 6.38rc on the CCR side?
by otgooneo
Fri Sep 30, 2016 12:38 pm
Forum: RouterBOARD hardware
Topic: GEPON OLT with new mikrotik RB2011LS-IN - is it possible?
Replies: 84
Views: 51567

Re: GEPON OLT with new mikrotik RB2011LS-IN - is it possible?

I almost went Calix - however in the end we with some Adtran TA-5000 units instead. Borh are good in my opinion.

North Idaho Tom Jones
Calix colleague confirmed Mikrotik works ok with their E series OLTs.
by otgooneo
Fri Sep 30, 2016 12:31 pm
Forum: The Dude
Topic: The Dude, v6.37 [current] release.
Replies: 47
Views: 14217

Re: The Dude, v6.37 [current] release.

Waiting workable CLI command to manage devices. :-)
by otgooneo
Wed Sep 14, 2016 8:35 pm
Forum: The Dude
Topic: The Dude, v6.36 [current] release.
Replies: 48
Views: 11294

Re: The Dude, v6.36 [current] release.

I just quickly updated one of my service backup router and installed dude 3.37rc :-). Impressive. CLI command lines are there. Very near to have basic CLI to add device. I can add device name but can`t add it`s IP or DOMAIN, Username, password, ros=yes etc... If next release supports at least basic ...
by otgooneo
Wed Sep 14, 2016 2:01 pm
Forum: The Dude
Topic: The Dude, v6.36 [current] release.
Replies: 48
Views: 11294

Re: The Dude, v6.36 [current] release.

Coool... Thanks krisjanis. Did you have time to put guide into the wiki page? The CLI will be under /dude ? Unfortunately I don`t have Dude compatible hardware, which can test ros release candidate version. All my CCR are in live service, which I can`t feel real Dude CLI feature.
by otgooneo
Wed Sep 14, 2016 9:28 am
Forum: General
Topic: Webfig skins (tutorial)
Replies: 100
Views: 91421

Re: Webfig skins (tutorial)

Please make webfig as security feature. Then it will be veeery useful to offer our customers.
by otgooneo
Wed Sep 14, 2016 4:17 am
Forum: The Dude
Topic: The Dude, v6.36 [current] release.
Replies: 48
Views: 11294

Re: The Dude, v6.36 [current] release.

Great. I see lot of improvement on Dude. But is it possible to add device into dude through API or directly to DB? We have big network which is not compatible with auto discovery. Need to add/modify/delete devices from 3rd party software time to time.
by otgooneo
Wed Sep 07, 2016 1:26 pm
Forum: RouterBOARD hardware
Topic: hAP lite for commercial broadband use
Replies: 5
Views: 1011

Re: hAP lite for commercial broadband use

Thanks Guys. I appreciate sharing your experience and really good points.
Any other suggestions?
by otgooneo
Mon Sep 05, 2016 7:14 am
Forum: Scripting
Topic: Reading/Writing Encrypted Scripts
Replies: 19
Views: 6297

Re: Reading/Writing Encrypted Scripts

I really need to encrypt rsc file. I think ROS already has decryption method which has today on load router encrypted backup. Or at least make webfig as security feature that customer can`t see hidden configuration pages even try to access to link manually.
by otgooneo
Mon Aug 29, 2016 10:47 am
Forum: General
Topic: Volume Based Service
Replies: 8
Views: 1343

Re: Volume Based Service

Is there someone implemented volume based service with PPPoE server maybe with FreeRadius? If so can you exclude some packets between specific servers from this volume counting?
by otgooneo
Mon Aug 29, 2016 9:49 am
Forum: RouterBOARD hardware
Topic: GEPON OLT with new mikrotik RB2011LS-IN - is it possible?
Replies: 84
Views: 51567

Re: GEPON OLT with new mikrotik RB2011LS-IN - is it possible?

I request my vendor Calix to check compatibility with their E7 and now calix is checking. Seems like not works directly, said they have 1 issue and give me feedback later when they completely troubleshoot this issue. So far no update yet.
by otgooneo
Mon Aug 29, 2016 5:24 am
Forum: RouterBOARD hardware
Topic: hAP lite for commercial broadband use
Replies: 5
Views: 1011

hAP lite for commercial broadband use

Hi Guys, please share your experience and news about ISP which offers hAP lite for their broadband subscribers? What default configuration they have such as simple masq NAT, routing, few firewall rules and VLAN&IGMP for multicast IPTV etc... I have plan to offer this model to our broadband subs, sin...
by otgooneo
Wed Jul 27, 2016 4:56 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Feature Request TR-069 CPE
Replies: 72
Views: 22697

Re: Feature Request TR-069 CPE

Hi Normis, I would like to configure at least below configurations by TR069 1. IP address configuration 2. Router DNS client configuration (including additional DHCP option set) 3. VLAN conifguration 4. PPPoE client configuration 5. DHCP client configuration 6. Add/remove/set Firewall filter rule 7....
by otgooneo
Sat May 21, 2016 6:18 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: IGMP Snooping
Replies: 137
Views: 58270

Re: IGMP Snooping

+1 for IGMP snooping
by otgooneo
Fri Mar 11, 2016 7:17 pm
Forum: Announcements
Topic: Winbox3.2 released!
Replies: 59
Views: 10738

Re: Winbox3.2 released!

Please add possibility to change default data folder "D:\Winbox" instead of "C:\Users\....\AppData\Roaming\Mikrotik\Winbox". It`s useful for real-time syncing
  • 1
  • 2
  • 3
  • 4
  • 5
  • 12