Community discussions

Search found 57 matches

by vklimovs
Thu Dec 10, 2009 4:32 pm
Forum: Forwarding Protocols
Topic: maximum number of equal cost OSPF routes
Replies: 5
Views: 1319

Re: maximum number of equal cost OSPF routes

:o
What is the limit in 3.30? Is there limit in OSPF on number of routes to the same destination with equal cost?
More specifically, in version 3.30, will ECMP work with 4 gateways, if routes are learned via OSPF?
by vklimovs
Thu Dec 10, 2009 3:59 pm
Forum: Forwarding Protocols
Topic: maximum number of equal cost OSPF routes
Replies: 5
Views: 1319

Re: maximum number of equal cost OSPF routes

No, I mean routes to the same destination but with different gateways. And equal distance.
by vklimovs
Wed Dec 09, 2009 10:45 pm
Forum: Forwarding Protocols
Topic: maximum number of equal cost OSPF routes
Replies: 5
Views: 1319

maximum number of equal cost OSPF routes

How many equal cost routes to the same destination acquired via OSPF a router can have?
by vklimovs
Fri Nov 06, 2009 12:19 am
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

So, to rephrase you, we could get more out of 3.6 Ghz P4 (if I'am not mistaken 3.6 Ghz is the fastest one can get)?
by vklimovs
Thu Nov 05, 2009 7:32 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

We user Intel server motherboards (SH3200), Quad core 3ghz CPU's, Intel PCI-E NIC's. What could possibly be wrong here hardware wise?
by vklimovs
Thu Nov 05, 2009 2:38 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

far less than the specified 400000 pps I think, it's more bandwidth limitation, not pps. on one of our core router we have ~800Mbps, 100kpps. but when with ~400 Mbps load I run bandwidth test with small udp packets to this router, I can easily get ~200kpps. just haven't tested more =) What are the ...
by vklimovs
Thu Nov 05, 2009 2:13 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

Can somebody confirm or deny my findings?
by vklimovs
Thu Nov 05, 2009 12:39 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

We got RB1000 for a test today. Put it in place of one of the border routers, disabled conntrack, empty firewall, queues, etc. The device was only able to pull around 55000 pps or 350 mbps, less than our Quad-Core machines and far less than the specified 400000 pps. Screenshot is attached. I am not ...
by vklimovs
Thu Nov 05, 2009 12:29 am
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

quad core? I think, 30% means that one core is used fully (25%), and that process is limiting the bandwidth. MikroTik plans to add multicore optimizations in v5 or v6 of ROS I started to look into that suggestion and amazingly it seems that this is true. Router caps exactly when CPU reaches 25%. Ho...
by vklimovs
Thu Nov 05, 2009 12:09 am
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

Thank you for the input. This is however only half of what is needed - as we need full gigabit both ways on two cards, not just one.
by vklimovs
Wed Nov 04, 2009 11:39 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

Thank you for the reply. There is no QOS on these routers and firewalling is very rudimental. But here http://www.mikrotikrouter.com/speedtests.asp they claim to do almost 6 Gbps (okay, that is in one direction on one card, for us it would be 1.5 Gbps both directions on two cards - still far more th...
by vklimovs
Wed Nov 04, 2009 11:10 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Re: Maximum bandwidth with Quad Core and PCI-E

OK, not a single person is using that setup? If you are using any other setup for high-bandwidth routing which is it?
by vklimovs
Wed Nov 04, 2009 4:51 pm
Forum: General
Topic: Maximum bandwidth with Quad Core and PCI-E
Replies: 34
Views: 7095

Maximum bandwidth with Quad Core and PCI-E

We are using two 3 Ghz Quad Core machines with 2 Gb of RAM as our border routers. Each machine has two interfaces, which are PCI-E Intel Gigabit cards. CPU Load never exceeds 30%. However we are unable to get more than about 650 Mbit/s full duplex on the links. We are unsure if this is our issue or ...
by vklimovs
Mon Sep 28, 2009 5:37 pm
Forum: Beginner Basics
Topic: forum login name
Replies: 1
Views: 434

forum login name

Is it possible to change forum login name? Thanks in advance.
by vklimovs
Tue Oct 28, 2008 3:35 pm
Forum: General
Topic: problem with PCQ queues
Replies: 3
Views: 1079

problem with PCQ queues

We are having a problem of PCQ queues blocking randomly. When queue blocks no traffic passes through it, which for us means thousands of clients loose connectivity. Mikrotik admitted that it is a bug. I have configuration verified by independent specialist, so configuration is not a problem. I don't...
by vklimovs
Sat Jun 28, 2008 4:00 pm
Forum: General
Topic: mangle/queue problem
Replies: 0
Views: 500

mangle/queue problem

Recently, after I severely reconfigured mangle, queue types and queue tree, a strange glitch appeared. As you can see from the configuration attached, router has different "tariffs". Each of them in turn has three different flows, Latvian traffic, oversea traffic, and local traffic. Local traffic is...
by vklimovs
Fri Jun 06, 2008 3:28 pm
Forum: General
Topic: Problems with 3.10 on MT133c
Replies: 5
Views: 1101

Re: Problems with 3.10 on MT133c

It is WDS bridge. Insignificant amount of traffic, < 100 kbps. Conntrack is disabled. [dude@crataeis] /system package> pr Flags: X - disabled # NAME VERSION SCHEDULED 0 system 3.10 1 routerboard 3.10 2 advanced-tools 3.10 3 wireless 3.10 4 routeros-mipsle 3.10 5 security 3.10 snmp is enabled and rou...
by vklimovs
Thu Jun 05, 2008 9:14 pm
Forum: General
Topic: Problems with 3.10 on MT133c
Replies: 5
Views: 1101

Re: Problems with 3.10 on MT133c

I've managed to login to one of the rb133c, here is relevant part of the log:

02:00:20 system,error,critical System rebooted because of kernel failure
02:00:20 system,error,critical router rebooted without proper shutdown, probably power outage
by vklimovs
Thu Jun 05, 2008 9:03 pm
Forum: General
Topic: Problems with 3.10 on MT133c
Replies: 5
Views: 1101

Re: Problems with 3.10 on MT133c

I am having the same problems.
CPU goes 100% on RB 133c after upgrade to 3.x, downgrade is only possible using netinstall.
by vklimovs
Thu Mar 20, 2008 11:16 am
Forum: General
Topic: Failed 3.4 to 3.5 upgrade x86
Replies: 20
Views: 3527

Re: Failed 3.4 to 3.5 upgrade

Does that problem is dependent on some certain hardware? If so we can take flash out, put in a device with no such hardware, boot it, and downgrade/upgrade to 3.6 when it is available.
by vklimovs
Wed Mar 19, 2008 5:21 pm
Forum: General
Topic: Failed 3.4 to 3.5 upgrade x86
Replies: 20
Views: 3527

Re: Failed 3.4 to 3.5 upgrade

Yeah, same here.
I think this is the problem described in
http://forum.mikrotik.com/viewtopic.php?f=2&t=22468
by vklimovs
Wed Mar 19, 2008 4:57 pm
Forum: General
Topic: upgrade to 3.4 failed
Replies: 14
Views: 2947

Re: upgrade to 3.4 failed

Just upgraded to 3.5 and got the same problem.
by vklimovs
Wed Jan 16, 2008 9:56 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13128

Re: RouterOS 3.0

Consider the alternatives for what you are doing :) Yes, this is exactly what is going to happen. :) But wouldn't it be just better if SMP was working and I could stick to RouterOS there forever? (I already imagine 4 processor x 4 core machine doing 10 GE with full routing table...) And, besides No...
by vklimovs
Wed Jan 16, 2008 8:07 pm
Forum: General
Topic: RouterOS 3.0
Replies: 70
Views: 13128

Re: RouterOS 3.0

This is a very interesting discussion. I do think that hardware limits are easily exploitable with RouterOS 2.9(.50). We have Pentium 4 3400 Mhz CPU (basically maximum single-core CPU one can get) on our border router. Is has Intel PCI-E NIC's. This router has around 1100 routes in its routing table...
by vklimovs
Sun Oct 14, 2007 4:46 pm
Forum: General
Topic: Serious MSN and Skype problems
Replies: 4
Views: 885

Re: Serious MSN and Skype problems

Do you use NAT? If so, enable connection tracking.
/ip firewall connection tracking set enabled=yes
by vklimovs
Tue Oct 09, 2007 2:38 pm
Forum: General
Topic: a bit strange
Replies: 5
Views: 916

Re: a bit strange

..which is whole purpose of having connection mark rule :)
by vklimovs
Tue Oct 09, 2007 2:35 pm
Forum: General
Topic: Radius + telnet and ssh logins of local users
Replies: 0
Views: 486

Radius + telnet and ssh logins of local users

When authenticating local users with Radius connecting using WinBox, RouterOS uses CHAP authentication method. But when authenticating local user who are using telnet or SSH, RouterOS uses PAP authentication method. Is there any specific reason for that? I upgraded freeradius to latest version, and ...
by vklimovs
Tue Oct 09, 2007 2:11 pm
Forum: General
Topic: antispam
Replies: 13
Views: 3031

Re: antispam

Wiki says: A router is a device that extracts the destination of a packet it receives, selects the best path to that destination, and forwards data packets to the next device along this path. They connect networks together; a LAN to a WAN for example, to access the Internet... There is no sign of wo...
by vklimovs
Mon Oct 08, 2007 6:15 pm
Forum: Beginner Basics
Topic: optimal Framer Limit setting
Replies: 1
Views: 1650

optimal Framer Limit setting

What is optimal maximum frame size (setting is called framer-limit)?
by vklimovs
Tue Jun 19, 2007 4:51 pm
Forum: General
Topic: installation packages
Replies: 1
Views: 473

installation packages

If a PC or routerboard is installed using combined package (routeros-x86-2.9.43.npk, routeros-rb500-2.9.43.npk) can I convert them so they will be using separate packages? If yes, than how to do that?
by vklimovs
Wed May 16, 2007 10:57 pm
Forum: General
Topic: Vists PPTP
Replies: 2
Views: 571

The MS-CHAP version 1 authentication protocol has been deprecated in Windows Vista.
http://support.microsoft.com/kb/926170
Usage of better authentication protocol will solve the problem.
by vklimovs
Fri Nov 03, 2006 4:45 pm
Forum: The Dude
Topic: feauture requests
Replies: 0
Views: 1046

feauture requests

1) It would be nice to be able to authenticate Dude admins through RADIUS server, as it is possible for RouteOS. This enables unified login system for whole network. 2) It would be nice to allow users of Dude to login to Mikrotik devices on the network map using their credentials for Dude. This enab...
by vklimovs
Thu Sep 28, 2006 11:48 am
Forum: General
Topic: router local users radius authentication
Replies: 1
Views: 881

router local users radius authentication

I have just set up router users authentication using freeradius server. Everything works, but how do I define a group to which user should belong? My config: / user aaa set use-radius=yes accounting=yes interim-update=0s default-group=full / radius add service=login called-id="" domain="" address=1....
by vklimovs
Tue Jun 06, 2006 8:10 pm
Forum: The Dude
Topic: does dude + wine needs X server?
Replies: 1
Views: 1370

does dude + wine needs X server?

I'm trying to run Dude on Linux server using wine, but i don't have any X server on this machine. Do I need to have to?
by vklimovs
Mon May 29, 2006 9:13 pm
Forum: General
Topic: SSH output truncated
Replies: 10
Views: 3221

Same problem here. Router cuts ssh output if it exceeds certain size. :(
by vklimovs
Wed Apr 26, 2006 2:42 pm
Forum: General
Topic: 2.9.22 released ...
Replies: 13
Views: 2811

Same problem with traffic graphs on Intel Pro 1000 as Alex described.
by vklimovs
Fri Apr 21, 2006 4:02 pm
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

Ok, I see. Now I understand it clearly, we will make some tests now. Thank you!
by vklimovs
Thu Apr 20, 2006 7:19 pm
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

Let's assume that ether1 is interface connected to "internal" network, and ether2 is connected to "external" one, it means traffic going from ether1 to ether2 should start belonging to vlan, and traffic going from ether2 to ether1 should be stripped (vlan ids removed). To what interface should I add...
by vklimovs
Thu Apr 20, 2006 5:56 pm
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

It is still not exactly that. :) Please, consider following situation. We have 2 layer network which is connected to MT switch. In that network traffic is flawing without any VLAN tags because it is built not on "smart" switches. To go to another network segment, traffic needs to pass MT switch, whi...
by vklimovs
Thu Apr 20, 2006 2:57 pm
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

May you explain in a more detailed way? :)
by vklimovs
Thu Apr 20, 2006 11:23 am
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

I propably asked question incorrectly. Let's assume that I have a Mikrotik box with two interfaces configured as bridge. I want the traffic which is passing trough it to belong to certain VLAN. On a hardware switch it would be setting one port to VLAN ID 32 (for example) and other to trunk port. It ...
by vklimovs
Sat Apr 08, 2006 10:04 am
Forum: General
Topic: marking VLANs
Replies: 11
Views: 1907

marking VLANs

It may sound stupid, but how do I mark VLANs that pass through Mikrotik box configured as bridge?
by vklimovs
Tue Mar 28, 2006 3:42 pm
Forum: Wireless Networking
Topic: Nstreme dual
Replies: 2
Views: 1099

Nstreme dual

Hello, We just build our first Nstreme dual link, and have a question about that. When doing bandwidth tests, we can get up to 55 Mbps if doing tests in one direction, but only 20 Mbps if doing test in other direction. That seems strange because signal quality is the same (-65 dBm). Where should we ...
by vklimovs
Tue Mar 14, 2006 5:41 pm
Forum: General
Topic: netwatch is not working on 2.9.17
Replies: 12
Views: 1918

Yes, same problem here. Could easily ping from linux box desired host, but netwatch shows it as down. I though is was a router pretty high load issue, but after your posts it seems that it is not. I wrote a little script as a workaround for that. :local time :local mailsent :set time [/system clock ...
by vklimovs
Fri Mar 10, 2006 7:32 pm
Forum: General
Topic: unable to download 2.9.16
Replies: 12
Views: 1972

There is a changelog now. But very short one :)
What's new in 2.9.17:

*) fixed TCP SYN connection tracking timeouts;
by vklimovs
Fri Mar 10, 2006 12:05 pm
Forum: General
Topic: unable to download 2.9.16
Replies: 12
Views: 1972

unable to download 2.9.16

When I try to download 2.9.16 from MT site, I get following:
ERROR - File not found

We have logged this error and will correct the problem if it is a broken link.

Please go to our Main Page.
The same for 2.9.15. Only 2.9.14 seems to download fine. I'm the only one with tris problem? :)
by vklimovs
Fri Mar 10, 2006 9:36 am
Forum: General
Topic: Strange problems with new hardware
Replies: 7
Views: 1309

Freezer is not usual network testing equipment. :D maybe huge fan near case will be enough? Is MT interested in supout files and screenshots of this accident?
by vklimovs
Fri Mar 10, 2006 9:34 am
Forum: General
Topic: AIM not connecting when line balancing
Replies: 2
Views: 915

If this is a MTU problem, you can determine maximum MTU by issuing this command:
/ping <<your GW ip>> do-not-fragment size=1500
And reducing size variable by one each time. Notice the MTU when ping will run, it will be your maximum MTU. :)
by vklimovs
Fri Mar 10, 2006 9:28 am
Forum: General
Topic: Total registration + MRTG
Replies: 10
Views: 1979

Cacti is just the same as MRTG, i just uses its own polling system and stores all data in RRDTOOL databases (RRDTOOL was made by creator of MRTG). IMO, Cacti is a lot better then MRTG, because it is more easy to configure, you do not have to run over dozens of text files and searching some stupid ty...
by vklimovs
Thu Mar 09, 2006 10:45 pm
Forum: General
Topic: Security Issue
Replies: 9
Views: 2327

It is a virus, which tries to connect to port 22 of random IPs and uses some predefined login/password combinations to login. Even if it does, it expects Linux to be there, it knows nothing about MT and MT console commands. But if you are disturbed by this, you may change ssh port on your box: /ip s...
by vklimovs
Thu Mar 09, 2006 10:37 pm
Forum: General
Topic: Total registration + MRTG
Replies: 10
Views: 1979

Remember, that you can browse SNMP tree in a router by issuing a command:
print oid
where applicable.
I just did it. It seems there is no way if monitoring AP registration count via SNPM. But still you may use some weird solutions, like sending an e-mail with desired data every minute, etc. :)
by vklimovs
Thu Mar 09, 2006 10:32 pm
Forum: General
Topic: Strange problems with new hardware
Replies: 7
Views: 1309

Got Intel gig cards today, installed them in a place of RTL. And everything worked great! System even pushed up to the 890 Mbit. So, in a conclusion, I should say: people, first, strongly believe manual! in this case it states clearly: RealTek RTL8169 Gigabit Ethernet (not recommended: may lock up t...
by vklimovs
Sun Mar 05, 2006 6:25 pm
Forum: General
Topic: Protect router against attack
Replies: 6
Views: 1572

/ip firewall filter add chain=input connection-state=invalid action=drop comment="drop invalid \ connections" disabled=no add chain=input protocol=tcp psd=10,3s,3,1 action=drop comment="drop possible \ port scans" disabled=no add chain=input protocol=udp dst-port=137-139 action=drop comment="deny \...
by vklimovs
Wed Mar 01, 2006 10:33 pm
Forum: General
Topic: Strange problems with new hardware
Replies: 7
Views: 1309

Strange problems with new hardware

I was doing some lab test, namely, testing realtek 8169 chips on brand new celerons on brand new motherboards, reached 500 Mbps bandwidth, but suddenly on a console I saw this: http://www.aldems.lv/IMG_0022.jpg (sorry for quality - it is a screen photo) :( Have anybody ever encountered something lik...
by vklimovs
Mon Feb 27, 2006 9:02 pm
Forum: General
Topic: nstreme dual
Replies: 0
Views: 421

nstreme dual

What speeds do you reach using Nstreme dual protocol?
by vklimovs
Wed Jan 11, 2006 11:13 pm
Forum: General
Topic: Does anybody has any problems with 2.9.11?
Replies: 2
Views: 672

Does anybody has any problems with 2.9.11?

Does anybody has any problems with 2.9.11?
by vklimovs
Fri Dec 16, 2005 5:54 pm
Forum: General
Topic: strange bug on router with bridged interface
Replies: 0
Views: 440

strange bug on router with bridged interface

We discovered a stange router behaviour here... We have network with public IPs in it, router is connected to it using bridged interface. After we upgraded to version 2.9.9 we encountered a problem. When we start using new IP in that network we get good speed on local connections but extremely slow ...