Community discussions

MikroTik App

Search found 609 matches

by rickfrey
Wed Sep 14, 2016 7:14 pm
Forum: General
Topic: Launch your company forward with professional training!
Replies: 1
Views: 866

Launch your company forward with professional training!

http://rickfreyconsulting.com/product/company-training-5-day-option/ Launch your company forward with professional training! Learn how to build rock solid effective networks! Learn how to increase your ROI and decrease the amount of time spent working on your networks.Setup your personalized class t...
by rickfrey
Mon Aug 01, 2016 9:35 pm
Forum: Forwarding Protocols
Topic: OSPF
Replies: 3
Views: 1709

Re: OSPF

I did mean the CCRs and I have changed that. Thank you for pointing that out. You're right, MikroTik will not automatically select the Loopback IP address to be the Router-ID. It is best practice with MikroTik to create a Loopback and set the Router-ID manually.
by rickfrey
Mon Aug 01, 2016 8:38 pm
Forum: Forwarding Protocols
Topic: OSPF
Replies: 3
Views: 1709

OSPF

Hey guys, I just finished a new tutorial page on OSPF. I was going to make everything that is a "basic concept" part of the same tutorial, but as it started to get longer and longer, I thought it might be better to break it up into pieces. Anyway here is the first piece. I would love to h...
by rickfrey
Tue Jun 28, 2016 1:27 am
Forum: The User Manager
Topic: MTCUME Class in Dallas, Texas July 28-29
Replies: 0
Views: 1210

MTCUME Class in Dallas, Texas July 28-29

MikroTik Certified User Management Engineer in Dallas, Texas. Class size is being kept small, so reserve your seat today!

http://rickfreyconsulting.com/product/m ... 8-29-2016/
by rickfrey
Thu Apr 21, 2016 12:30 am
Forum: General
Topic: Recursive Next Hop Resolving Tutorial
Replies: 0
Views: 1634

Recursive Next Hop Resolving Tutorial

I created a short tutorial on recursive next hop resolving. It can be found on my website:
http://rickfreyconsulting.com/recursive ... resolving/
by rickfrey
Fri Apr 01, 2016 12:05 am
Forum: General
Topic: Explanation of MikroTik Firewall Filters
Replies: 0
Views: 931

Explanation of MikroTik Firewall Filters

I created a tutorial explaining the MikroTik firewall filter using Winbox. You can view it on my website at http://www.rickfreyconsulting.com.
by rickfrey
Wed Mar 02, 2016 7:46 pm
Forum: General
Topic: MTCRE, MTCTCE, MTCWE Certification Training
Replies: 0
Views: 763

MTCRE, MTCTCE, MTCWE Certification Training

What makes RFC Training Opportunities the best? ANSWERS...Bring your questions with you. Challenge us with your toughest questions and leave with answers.
http://rickfreyconsulting.com/product/m ... 1-15-2016/
austin_small.jpg
by rickfrey
Tue Dec 29, 2015 9:43 am
Forum: Beginner Basics
Topic: Mikrotik Online Training Is there one??
Replies: 8
Views: 14596

Re: Mikrotik Online Training Is there one??

I'm offering a class in Sacramento, CA on May 16-20. MTCNA and MTCRE will be offered then. I would love to see you there :-)
by rickfrey
Tue Dec 29, 2015 9:37 am
Forum: Beginner Basics
Topic: Mikrotik Online Training Is there one??
Replies: 8
Views: 14596

Re: Mikrotik Online Training Is there one??

Yes, thank you, I should have been more clear on that subject.
by rickfrey
Mon Dec 28, 2015 9:59 pm
Forum: Beginner Basics
Topic: Mikrotik Online Training Is there one??
Replies: 8
Views: 14596

Re: Mikrotik Online Training Is there one??

Yes, there is online training. You can visit my website to get more info. I teach all topics related to MikroTik.
www.rickfreyconsulting.com
by rickfrey
Thu Jun 04, 2015 10:14 pm
Forum: Scripting
Topic: Password change over ftp....
Replies: 2
Views: 1073

Re: Password change over ftp....

Yes, you can. Just set the System -> Scheduler to run script x when present everyday or every time period that you want. You will probably want to add some thing the end of the scripts you are uploading to delete themselves or to change their name or something so that the same script is not be run a...
by rickfrey
Tue Jun 02, 2015 1:33 am
Forum: General
Topic: MTCNA + MTCRE Class being offered in Kansas City
Replies: 0
Views: 776

MTCNA + MTCRE Class being offered in Kansas City

MTCNA for $775
MTCRE for $560
Both for $1175
Kansas City.jpg
by rickfrey
Thu Feb 05, 2015 9:53 pm
Forum: General
Topic: Outbound connection to other Wan interface in same Microtik
Replies: 3
Views: 1275

Re: Outbound connection to other Wan interface in same Microtik

Can you post an export from your router?
by rickfrey
Thu Feb 05, 2015 6:20 pm
Forum: Wireless Networking
Topic: Repeater non Mikrotik
Replies: 4
Views: 1308

Re: Repeater non Mikrotik

You will have to use two routers. One that is connected as a station and one that is acting as a bridge or you can use a product which has two wireless cards.
by rickfrey
Wed Feb 04, 2015 4:46 pm
Forum: General
Topic: ProBleM! RB dosn't accpt more than 200 hotspot active users?
Replies: 1
Views: 814

Re: ProBleM! RB dosn't accpt more than 200 hotspot active users?

Check the license level. Level 4 only allows 200 connections.

http://wiki.mikrotik.com/wiki/Manual:License
by rickfrey
Wed Feb 04, 2015 4:42 pm
Forum: Wireless Networking
Topic: Repeater non Mikrotik
Replies: 4
Views: 1308

Re: Repeater non Mikrotik

No, Mikrotik will now work as a "wireless repeater" with other vendor's products. It will do it if both devices are Mikrotik.
by rickfrey
Wed Feb 04, 2015 4:40 pm
Forum: General
Topic: Outbound connection to other Wan interface in same Microtik
Replies: 3
Views: 1275

Re: Outbound connection to other Wan interface in same Microtik

It sounds like you may need Hairpin NAT. Check out this wiki page:

http://wiki.mikrotik.com/wiki/Hairpin_NAT
by rickfrey
Tue Feb 03, 2015 7:46 pm
Forum: General
Topic: EoIP interface RX value
Replies: 4
Views: 1350

Re: EoIP interface RX value

Ok, great. I was looking in the wrong place. BR, do you still need help then?
by rickfrey
Tue Feb 03, 2015 5:10 pm
Forum: Beginner Basics
Topic: Can't xxxx.dynamic-dns.net
Replies: 2
Views: 1313

Re: Can't xxxx.dynamic-dns.net

Check IP->Services and make sure that winbox is enabled and that you are using the correct port.
by rickfrey
Tue Feb 03, 2015 5:05 pm
Forum: General
Topic: EoIP interface RX value
Replies: 4
Views: 1350

Re: EoIP interface RX value

I didn't see a way to get that value in ROS 6.25 from the command line. You may have to use the API. Unfortunately, the API is not something I am any good at, so someone else may have to chime in as to how to accomplish that. :)
by rickfrey
Thu Jan 15, 2015 8:14 pm
Forum: General
Topic: Routerboard 951 - poor usb power output
Replies: 15
Views: 8049

Re: Routerboard 951 - poor usb power output

Some of the RouterBoards have full USB power output, but not all of them. Check out this link. The info you are looking for is at the bottom.

http://wiki.mikrotik.com/wiki/Manual:USB_Features
by rickfrey
Mon Oct 13, 2014 7:27 pm
Forum: Beginner Basics
Topic: Filter Lists
Replies: 4
Views: 2025

Re: Filter Lists

Can you post your whole firewall?
by rickfrey
Mon Oct 13, 2014 7:25 pm
Forum: General
Topic: can I cahnge the login page on the telnet
Replies: 3
Views: 1260

Re: can I cahnge the login page on the telnet

Yes, you have to use the branding tool, which is only available to distributors, consultants, and trainers. Most people charge a small fee for this.
by rickfrey
Mon Oct 13, 2014 7:22 pm
Forum: Forwarding Protocols
Topic: Routing policy question
Replies: 5
Views: 2513

Re: Routing policy question

You could write a script and use the traffic monitor as the trigger, but no, there is not a simple way to do it.
by rickfrey
Mon Oct 13, 2014 7:20 pm
Forum: General
Topic: Need help with CPE -WISP
Replies: 1
Views: 1463

Re: Need help with CPE -WISP

You may have two problems there. I would start by troubleshooting the Ethernet problem first and get that fixed. If you have a bad routerboard, replacing it may solve both your problems (wired and wireless).
by rickfrey
Mon Oct 13, 2014 7:15 pm
Forum: Beginner Basics
Topic: RB1100AHx2 top rack router setup
Replies: 3
Views: 1585

Re: RB1100AHx2 top rack router setup

Check out the Downloads section of my website for a firewall. You will want to tailor to your own needs, of course, but its a pretty good firewall to start with. Let me know if you still have any other questions.

www.rickfreyconsutling.com
by rickfrey
Wed Oct 08, 2014 10:10 pm
Forum: Beginner Basics
Topic: OpenVPN routing problem
Replies: 10
Views: 6642

Re: OpenVPN routing problem

The far side will need a route for the 192.168.88.0/24 traffic.
by rickfrey
Wed Oct 08, 2014 1:32 am
Forum: Beginner Basics
Topic: OpenVPN routing problem
Replies: 10
Views: 6642

Re: OpenVPN routing problem

Post a compact exp of both routers, please.
by rickfrey
Tue Oct 07, 2014 10:04 pm
Forum: Beginner Basics
Topic: 750 as a switch
Replies: 7
Views: 1972

Re: 750 as a switch

Why don't you un-slave the ports and put them in a bridge.
by rickfrey
Tue Oct 07, 2014 7:50 pm
Forum: Beginner Basics
Topic: OpenVPN routing problem
Replies: 10
Views: 6642

Re: OpenVPN routing problem

In that case, you may need to use proxy-arp because arp broadcast will not flow over a routed link.
by rickfrey
Tue Oct 07, 2014 7:48 pm
Forum: Beginner Basics
Topic: 750 as a switch
Replies: 7
Views: 1972

Re: 750 as a switch

Did you try to reset it? It will take less than 10 minutes to reset it and configure it?
by rickfrey
Tue Oct 07, 2014 5:32 pm
Forum: Beginner Basics
Topic: OpenVPN routing problem
Replies: 10
Views: 6642

Re: OpenVPN routing problem

Do you have the OpenVPN setup in Bridging mode? That would be the easiest way to set that up. On the server side, put your LAN segment in a Bridge and add the bridge to the OVPN profile. The OVPN server should be set to Ethernet. The other side will be pretty much the same, although it may or may no...
by rickfrey
Tue Oct 07, 2014 5:27 pm
Forum: Beginner Basics
Topic: RB951 and 260GS
Replies: 1
Views: 1105

Re: RB951 and 260GS

Can you post a network drawing of what you are trying to do?
by rickfrey
Tue Oct 07, 2014 5:24 pm
Forum: Beginner Basics
Topic: Tracking PC in Mikrotik environment using IP address
Replies: 1
Views: 1157

Re: Tracking PC in Mikrotik environment using IP address

You may want to check out Traffic Flow (callen NetFlow by the rest of the world).
http://wiki.mikrotik.com/wiki/Manual:IP/Traffic_Flow
by rickfrey
Tue Oct 07, 2014 5:22 pm
Forum: Beginner Basics
Topic: 750 as a switch
Replies: 7
Views: 1972

Re: 750 as a switch

Step 1: Reset the router and remove the default config Step 2: MAC Telent into the router using Winbox and add a new Bridge Step 3: Add all 5 ports to the new bridge Step 4: Add the IP address 192.168.88.1/24 to the bridge interface At that point you are pretty much all done and it will work as you ...
by rickfrey
Tue Oct 07, 2014 5:15 pm
Forum: Wireless Networking
Topic: Automatic change to best frequency
Replies: 2
Views: 2992

Re: Automatic change to best frequency

(btw Ubnt has airselect feature that works well).
MikroTik also has that feature. You can set the AP to Freq=auto and/or use DFS mode.
by rickfrey
Tue Oct 07, 2014 5:11 pm
Forum: Beginner Basics
Topic: RB1100AHx2 top rack router setup
Replies: 3
Views: 1585

Re: RB1100AHx2 top rack router setup

That's a pretty open ended question, but here is a Wiki page on how to setup an initial configuration. http://wiki.mikrotik.com/wiki/Manual:Initial_Configuration The Wiki also has several examples of firewalls that you may want to read up on. Tiktube has several videos on it as well. You may also wa...
by rickfrey
Tue Oct 07, 2014 5:02 pm
Forum: General
Topic: Same subnet - firewall - block device access
Replies: 6
Views: 3308

Re: Same subnet - firewall - block device access

This should get you going in the right direction:
add action=drop chain=forward dst-address=10.0.0.245 src-address=10.0.0.163
Be sure to test it thoroughly from both directions and to any other LAN segments that you may want ensure that they have access to.
by rickfrey
Tue Sep 30, 2014 6:05 pm
Forum: RouterBOARD hardware
Topic: RB433AH freezes
Replies: 2
Views: 1559

Re: RB433AH freezes

I haven't had any problems with 6.19 on the 433 series yet, but it never hurts to downgrade and rule out the possibility of a software bug. Is downgrading an option for you?
by rickfrey
Tue Sep 30, 2014 5:57 pm
Forum: Wireless Networking
Topic: Wireless link trough high voltage power lines is possible ?
Replies: 1
Views: 1232

Re: Wireless link trough high voltage power lines is possibl

It could be. I have set up several links like you are describing and some have worked perfectly and others have been plagued with problems. Line noise from AC power can be a real problem with wireless links. One location I had problems with had so much line noise that you couldn't even get FM radio ...
by rickfrey
Tue Sep 30, 2014 5:48 pm
Forum: Beginner Basics
Topic: MT + DHCP + MAC white list
Replies: 3
Views: 1828

Re: MT + DHCP + MAC white list

There are a couple of solutions that might work in your case, but here is one that you might want to try first. The firewall can block access via the MAC address. In the Bridge settings, you will need to select "Use IP Firewall." Then you can go into the firewall and create rules in the fo...
by rickfrey
Wed Aug 27, 2014 7:15 am
Forum: General
Topic: incorrect ping
Replies: 4
Views: 1580

Re: incorrect ping

Can you post a copy of the MikroTik config?

/export compact file=xyz
by rickfrey
Tue Aug 26, 2014 11:48 pm
Forum: General
Topic: incorrect ping
Replies: 4
Views: 1580

Re: incorrect ping

Is it possible that you have duplicate IPs? Can you check the ARP entries on both sides to see what the MAC address is?
by rickfrey
Wed Aug 13, 2014 4:23 pm
Forum: General
Topic: https problem on hotspot
Replies: 97
Views: 121838

Re: https problem on hotspot

You can buy certs through most of the hosting sites like Go Daddy, Site Ground, Network Solutions, ect.
by rickfrey
Thu Jul 17, 2014 7:48 pm
Forum: General
Topic: PPPoE Server Best Practice
Replies: 18
Views: 8922

Re: PPPoE Server Best Practice

Personally, I prefer to keep the clients on their own subnets and anything else in the distribution or the core on separate subnets. That way if you need block access for security reasons or make routing changes in the future, its much easier to do. You also break up the broadcast domains that way.
by rickfrey
Thu Jul 17, 2014 5:04 pm
Forum: General
Topic: PPPoE Server Best Practice
Replies: 18
Views: 8922

Re: PPPoE Server Best Practice

Yes, it is better to have the PPPoE server as close to the clients as possible. That will eliminate a lot of troubleshooting for you down the road. It will also allow the customers to connect faster and stay connected longer.
by rickfrey
Thu Jul 17, 2014 5:01 pm
Forum: General
Topic: Routerboard 951 - poor usb power output
Replies: 15
Views: 8049

Re: Routerboard 951 - poor usb power output

Have you tried using a powered USB hub?
by rickfrey
Fri Jun 27, 2014 5:47 pm
Forum: General
Topic: Simple QoS - prioritizing traffic to/from NAS server
Replies: 1
Views: 1672

Re: Simple QoS - prioritizing traffic to/from NAS server

You'll want to create an HTB tree. First, you have to identify the priority traffic in mangle and mark it. Then, you will identify all of the rest of the traffic and mark it. In the queue tree, you will set limits based on those marks. Check out the wiki on how to setup queue trees.
by rickfrey
Fri Jun 27, 2014 5:41 pm
Forum: Wireless Networking
Topic: How to remove GSM network-mode from LTE?
Replies: 1
Views: 1255

Re: How to remove GSM network-mode from LTE?

You can set the mode through AT commands, so it could probably be scripted, although it would definitely take some fine tuning to get it right. That is one of the password protected commands, so it shouldn't be posted here. If you are not familiar with the commands, you can download the extended AT ...
by rickfrey
Fri Jun 27, 2014 5:33 pm
Forum: General
Topic: winbox trouble only over one ISP
Replies: 6
Views: 2610

Re: winbox trouble only over one ISP

Hi Alex,
Yes, the dynamic rules should be displayed, that is probably a bug. Can you run a packet capture of it while it is failing? That will probably the best clues as to what is going on. Will you also post your configs from both routers?
by rickfrey
Wed Jun 25, 2014 7:14 pm
Forum: General
Topic: winbox trouble only over one ISP
Replies: 6
Views: 2610

Re: winbox trouble only over one ISP

It means that the ISPs between you and the end point have not all accounted for the loss of MTU in the path. Try adding this code to you router and see if it resolves the problem. If not, we can look at some other causes. / ip firewall mangle add chain=forward protocol=tcp tcp-flags=syn action=chang...
by rickfrey
Wed Jun 25, 2014 5:37 pm
Forum: General
Topic: winbox trouble only over one ISP
Replies: 6
Views: 2610

Re: winbox trouble only over one ISP

Try pinging with 1500 bytes. That will tell you if you are having an MTU problem with that particular ISP.
by rickfrey
Wed Jun 25, 2014 5:29 pm
Forum: RouterBOARD hardware
Topic: Switching routers/configurations question
Replies: 1
Views: 1087

Re: Switching routers/configurations question

You'll want to make sure they are the same ROS version, or at least, as close as possible so that you do not have problems with the syntax. When I copy the export from one router to another, I look for any MAC addresses and remove them. Then I copy and paste it over in sections, to make it easier to...
by rickfrey
Tue Jun 24, 2014 11:00 pm
Forum: General
Topic: Log all connections in Rsyslog
Replies: 4
Views: 2504

Re: Log all connections in Rsyslog

Ntop can collect the Traffic Flow information?
I haven't used that one specifically. If you google "Net Flow" you will find several programs that will handle it. Some are free like the one from Solar Winds and some are pretty pricey, but there quite a few to choose from.
by rickfrey
Tue Jun 24, 2014 6:56 pm
Forum: General
Topic: Load balancer with PPPoE client
Replies: 3
Views: 1626

Re: Load balancer with PPPoE client

Its possible. You will want to look into PCC.

http://wiki.mikrotik.com/wiki/Manual:PCC
by rickfrey
Tue Jun 24, 2014 6:55 pm
Forum: General
Topic: Log all connections in Rsyslog
Replies: 4
Views: 2504

Re: Log all connections in Rsyslog

Have you looked into Traffic Flow? It is a built in feature that parses that info the to a Traffic Flow collector. There are several pieces of software on the market that you can use to collect the Traffic Flow information and it meets all of the regulations relating to this.
by rickfrey
Tue Jun 24, 2014 6:51 pm
Forum: General
Topic: Feature Request: Specify Source Address in DNS Server
Replies: 4
Views: 3101

Re: Feature Request: Specify Source Address in DNS Server

Being able to specify the source address would be extremely helpful! +1
by rickfrey
Fri Jun 06, 2014 5:49 pm
Forum: The User Manager
Topic: access to usermanager database on cli?
Replies: 2
Views: 1951

Re: access to usermanager database on cli?

Usermanager is under Tools in the CLI.
by rickfrey
Fri Jun 06, 2014 5:48 pm
Forum: General
Topic: PPPoE issues
Replies: 3
Views: 2177

Re: PPPoE issues

I'm just guessing at your setup here, but the PPPoE server is probably at the tower? If not, the tower would be the best place for it. The link to the end device had to be a 100% transparent bridge. With UBNT devices, you need to have the Multicast Data turn on so that it is passing all of that traf...
by rickfrey
Fri Jun 06, 2014 5:27 pm
Forum: General
Topic: Public ip assignment help
Replies: 1
Views: 1011

Re: Public ip assignment help

Do you plan to use BGP to advertise them out the world or are going to have your upstream provider do it for you? The next step, or concurrent step, to getting your IPs will be to make arrangements with you upstream provider to either do BGP Peering or to ask them to advertise the IPs and route them...
by rickfrey
Mon Jun 02, 2014 4:57 pm
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

Glad to hear it!
by rickfrey
Tue May 13, 2014 5:54 am
Forum: General
Topic: Traffic not working without Torch
Replies: 6
Views: 2475

Re: Traffic not working without Torch

If you are in winbox, goto IP-> Firewall and on the filter tab, select and disable to all of the rules.
by rickfrey
Mon May 12, 2014 9:46 pm
Forum: General
Topic: Traffic not working without Torch
Replies: 6
Views: 2475

Re: Traffic not working without Torch

In your bridge settings, set the mode to rstp, enable the Use IP firewall and Use IP Firewall for VLAN. If that does not resolve it, then try turning your firewall off and see if that is interrupting the communication.
by rickfrey
Mon May 12, 2014 7:55 pm
Forum: General
Topic: Traffic not working without Torch
Replies: 6
Views: 2475

Re: Traffic not working without Torch

Can you post a copy of your export? I'm willing to bet some of the settings are a little off.
by rickfrey
Fri Apr 25, 2014 6:03 pm
Forum: Beginner Basics
Topic: bridge lan and wlan interfaces to hotspot users
Replies: 9
Views: 8067

Re: bridge lan and wlan interfaces to hotspot users

That great news! No, the IP binding is not required. You can use the IP Binding to bypass the hotspot, which would make them reachable to you. They will be blocked like everything else behind the hotspot.
by rickfrey
Thu Apr 24, 2014 6:26 pm
Forum: Scripting
Topic: Help with script - change dinamics firewall rule
Replies: 4
Views: 1728

Re: Help with script - change dinamics firewall rule

You won't be able to change a dynamically created firewall rule. You will have to copy that rule and change the copied rules. What are you trying to accomplish overall?
by rickfrey
Thu Apr 24, 2014 6:22 pm
Forum: General
Topic: hardware for pppoe server
Replies: 12
Views: 3851

Re: hardware for pppoe server

I would use one of the Cloud Cores. Yes, the smaller ones should be able to handle that load. The 1100AH will probably handle it just fine, but for the price difference why not just use one of the CCRs that you know will handle it and will grow with you? If you have plans to upgrade your ISP, the CC...
by rickfrey
Thu Apr 24, 2014 6:15 pm
Forum: Wireless Networking
Topic: FULL WiFi Home
Replies: 15
Views: 6128

Re: FULL WiFi Home

How big is your house? It wood and drywall, concrete, or something else?
by rickfrey
Thu Apr 24, 2014 6:13 pm
Forum: General
Topic: Cannot reach certain hosts on the network
Replies: 3
Views: 1258

Re: Cannot reach certain hosts on the network

Can you post your config?
by rickfrey
Thu Apr 24, 2014 12:10 am
Forum: Beginner Basics
Topic: bridge lan and wlan interfaces to hotspot users
Replies: 9
Views: 8067

Re: bridge lan and wlan interfaces to hotspot users

Go to to Bridge -> Ports and add the interfaces there by clicking on the + sign. Then goto IP -> Hotspot -> Servers and double click on the instance. There you can change the interface to the bridge. You will also need to change the DHCP server to the bridge as well.
by rickfrey
Wed Apr 23, 2014 7:20 pm
Forum: General
Topic: Cannot reach certain hosts on the network
Replies: 3
Views: 1258

Re: Cannot reach certain hosts on the network

I also had a great deal of trouble using the hotspot with 6.12. So much so, that I had to downgrade it immediately.
by rickfrey
Wed Apr 23, 2014 7:15 pm
Forum: General
Topic: Create an OPENVPN Server in router os 6.11
Replies: 3
Views: 3635

Re: Create an OPENVPN Server in router os 6.11

If you click on the + sign in System -> Certificates, what you are creating is a Template. Fill out all of that info and then issue your request. Alternatively, you can use this method provided by Easy RSA
https://openvpn.net/index.php/open-sour ... o.html#pki
by rickfrey
Wed Apr 23, 2014 7:12 pm
Forum: RouterBOARD hardware
Topic: RouterBoard Models with User-Manager?
Replies: 2
Views: 1278

Re: RouterBoard Models with User-Manager?

User Manager is a separate package that you install. I believe all of the current routerboards will load User Manager all though the "AH" variety and the larger Router Boards are preferred from a performance stand point.
by rickfrey
Tue Apr 22, 2014 5:33 pm
Forum: General
Topic: Hotspot with walled garden with limit download
Replies: 2
Views: 1007

Re: Hotspot with walled garden with limit download

You could set a queue which has the same dst host...
by rickfrey
Tue Apr 22, 2014 5:30 pm
Forum: Beginner Basics
Topic: bridge lan and wlan interfaces to hotspot users
Replies: 9
Views: 8067

Re: bridge lan and wlan interfaces to hotspot users

Just create a bridge and then add the two Ethernet ports to the bridge. Turn off DHCP on the APs. Switch DHCP on the MikroTik over to the Bridge, move the hotspot to the bridge. Use the IP Binding section to bypass the APs themselves.
by rickfrey
Tue Apr 22, 2014 5:20 pm
Forum: General
Topic: Portforwarding UDP does not work....
Replies: 3
Views: 2336

Re: Portforwarding UDP does not work....

That may have been because their were connection states in the rules. Either way, I'm glad you were able to get it working :-)
by rickfrey
Tue Apr 22, 2014 5:16 pm
Forum: General
Topic: bonding --> vlan --> vrrp ?
Replies: 4
Views: 4297

Re: bonding --> vlan --> vrrp ?

Awesome! Glad you were able to get it working!
by rickfrey
Mon Apr 21, 2014 5:29 pm
Forum: Wireless Networking
Topic: Indoor AP's - Adjusting noise floor?
Replies: 1
Views: 1196

Re: Indoor AP's - Adjusting noise floor?

I'm not sure how you are going to change the noise floor, but I think you will run into problems there. Have you tried reducing the power all the way down? That will help a little. Useing the smallest, lowest gain antennas, will also help. I have seen people put foil over the antennas... the problem...
by rickfrey
Mon Apr 21, 2014 5:24 pm
Forum: General
Topic: WISP PCC, double nat, gamers strict nat any suggestions
Replies: 6
Views: 3143

Re: WISP PCC, double nat, gamers strict nat any suggestions

You might separate one or more of the WAN connections and try a scenario like the EOIP one listed here.
http://wiki.mikrotik.com/wiki/Training_Labs
That will allow you to use the uPNP and bypass some of the problems while leaving most of the bandwidth available for the rest of the customers.
by rickfrey
Mon Apr 21, 2014 5:20 pm
Forum: General
Topic: CCR for CMTS
Replies: 1
Views: 1054

Re: CCR for CMTS

If you would prefer to use a different TFTP server, it would be very easy to use a DHCP Option. You can also use the DHCP with RADIUS and have all of the accounting that way.
by rickfrey
Mon Apr 21, 2014 5:16 pm
Forum: Forwarding Protocols
Topic: multicasting between mikrotik and cisco over gre tunnel
Replies: 8
Views: 10141

Re: multicasting between mikrotik and cisco over gre tunnel

Will you also post your Cisco config?
by rickfrey
Thu Apr 17, 2014 6:01 pm
Forum: Beginner Basics
Topic: OpenVPN-Client MK connect to OpenVPN Server based only crts
Replies: 3
Views: 1220

Re: OpenVPN-Client MK connect to OpenVPN Server based only c

No, there is not. There are dozens of forums pages requesting that feature, but currently its not available. If you have a means of bulk updating your clients, its pretty easy to add the username and password to the OpenVPN config.
by rickfrey
Wed Apr 16, 2014 7:00 am
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

No problem. Hope you get it working :D
by rickfrey
Tue Apr 15, 2014 11:46 pm
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

Then there is something wrong with the email settings you are using or the email service is incompatible with what the MikroTik can do. Why don't you try to create a Gmail account and test it using the above script. You might also want to verify the settings that email clients should use for your se...
by rickfrey
Tue Apr 15, 2014 10:04 pm
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

If you take the above script and enter in your email info, what happens?
by rickfrey
Tue Apr 15, 2014 7:13 pm
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

/tool netwatch add down-script="/tool e-mail send to=youremail@gmail.com subject=\"Host is D\ own\" from=youremail@gmail.com port=587 start-tls=yes user=youremail@g\ mail.com password=`123456 body=\"Host Down\"" host=192.168.88.1 up-script="\ /tool e-mail send to=...
by rickfrey
Tue Apr 15, 2014 6:01 pm
Forum: General
Topic: Config example for L2 WAN (ethernet over copper)
Replies: 4
Views: 1524

Re: Config example for L2 WAN (ethernet over copper)

Its just an Ethernet hand-off. You will either be using a DHCP client or you will be assigned a Static IP and Gateway. All in all, it will almost identical to other setups.
by rickfrey
Tue Apr 15, 2014 5:59 pm
Forum: Scripting
Topic: netwatch email script
Replies: 14
Views: 37077

Re: netwatch email script

Simply configure the email tool and test to make sure it is working. Then use netwatch to monitor the host and send the email. How far have you been able to get?
by rickfrey
Tue Apr 15, 2014 5:43 pm
Forum: General
Topic: New GNS3 Labs
Replies: 2
Views: 1399

Re: New GNS3 Labs

Thanks for the kind words. I would have preferred to have moved it up one level, but that was as high on the wiki as my account would allow it to go. Since that was the page I was going to have to use, I wanted to follow the pattern that the page had. Anyway, I am very excited about building more of...
by rickfrey
Tue Apr 15, 2014 7:29 am
Forum: Beginner Basics
Topic: OpenVPN-Client MK connect to OpenVPN Server based only crts
Replies: 3
Views: 1220

Re: OpenVPN-Client MK connect to OpenVPN Server based only c

If you are trying to remove the username and password portion, RouterOS requires those.
by rickfrey
Tue Apr 15, 2014 7:11 am
Forum: General
Topic: serious problem with CCR1036-12G-4S
Replies: 1
Views: 958

Re: serious problem with CCR1036-12G-4S

At our company, this is something that we handle all the time. We have handled VPN connections in the hundreds of thousands. One of the limitations with the routers is that even though they have a lot of horse power, they don't handle large numbers of VPN connections the way you would expect. In tru...
by rickfrey
Tue Apr 15, 2014 6:31 am
Forum: Wireless Networking
Topic: Sierra Wireless MC8790 on RB912UAG-2hpnd
Replies: 22
Views: 9967

Re: Sierra Wireless MC8790 on RB912UAG-2hpnd

Gotcha. Does the RB912 read other SIM cards? Could the SIM card reader be damaged?
by rickfrey
Tue Apr 15, 2014 6:29 am
Forum: Wireless Networking
Topic: PTMP best solution
Replies: 3
Views: 1919

Re: PTMP best solution

Just to verify the scenario, are you saying that you have just on Access Point with 30 clients that are connecting?
by rickfrey
Tue Apr 15, 2014 6:26 am
Forum: General
Topic: New GNS3 Labs
Replies: 2
Views: 1399

New GNS3 Labs

For anyone who might be interested. We have added new GNS3 Labs to the wiki:

http://wiki.mikrotik.com/wiki/Training_Labs

Stay tuned for more updates. Please, let us know if you have any suggestions for labs that you would like to see.
by rickfrey
Fri Apr 11, 2014 5:51 pm
Forum: Wireless Networking
Topic: Sierra Wireless MC8790 on RB912UAG-2hpnd
Replies: 22
Views: 9967

Re: Sierra Wireless MC8790 on RB912UAG-2hpnd

Are you saying that the same physical card works in the RB411 but not in the RB912 or are you saying that they same models works in one and not in the other? The reason I am asking is that it seems strange it would be in aiplane mode in one and not in the other. Also, if it was in airplane mode it s...
by rickfrey
Thu Apr 10, 2014 4:59 pm
Forum: Beginner Basics
Topic: winbox pptp
Replies: 39
Views: 11272

Re: winbox pptp

Usually when I have this problem, its a result of the Internet connection. What does you Internet connection between you and the router look like?
by rickfrey
Thu Apr 10, 2014 4:57 pm
Forum: Wireless Networking
Topic: PTMP best solution
Replies: 3
Views: 1919

Re: PTMP best solution

Is there a reason you want to use WDS for 30 stations or are you flexible on that?
by rickfrey
Thu Apr 10, 2014 4:55 pm
Forum: General
Topic: Implementing VLans
Replies: 1
Views: 1020

Re: Implementing VLans

One of my favorite things about MikroTik is all the different ways you can accomplish something. Sometimes, the situation will not allow you to do it the way you always did before. I don't know which of these ways is the best. I have always done it the same way you described, however, I am going to ...
by rickfrey
Thu Apr 10, 2014 4:47 pm
Forum: General
Topic: Fetch tool over VPN
Replies: 8
Views: 2898

Re: Fetch tool over VPN

Specify the VPN address like this:

tool fetch address=(VPN Facing Address)
by rickfrey
Wed Apr 09, 2014 5:47 pm
Forum: Beginner Basics
Topic: help beginner
Replies: 2
Views: 1316

Re: help beginner

Can you post your firewall settings?
by rickfrey
Wed Apr 09, 2014 5:45 pm
Forum: General
Topic: ERROR: scan not running
Replies: 1
Views: 6503

Re: ERROR: scan not running

Try upgrading the ROS and see if you still have the same problem.
by rickfrey
Wed Apr 09, 2014 5:41 pm
Forum: General
Topic: Logging -> Remote not working
Replies: 2
Views: 1170

Re: Logging -> Remote not working

Can you post your config for the logging, proxy settings, and firewall settings?
by rickfrey
Tue Apr 08, 2014 5:18 pm
Forum: General
Topic: bonding --> vlan --> vrrp ?
Replies: 4
Views: 4297

Re: bonding --> vlan --> vrrp ?

We have had a lot of success with that type of setup. If you need any help, just say so.
by rickfrey
Mon Apr 07, 2014 7:04 pm
Forum: General
Topic: Misconfiguration
Replies: 1
Views: 933

Re: Misconfiguration

How are you setting it. Have tried to configure it in Winbox or the CLI?
by rickfrey
Mon Apr 07, 2014 6:54 pm
Forum: General
Topic: Sharp printer and Mikrotik dropped pages
Replies: 1
Views: 918

Re: Sharp printer and Mikrotik dropped pages

We had a similar problem with another printer vendor when we would try to use the VPN. Ultimately, most of those clients could use the VPN, but some had to moved outside of the VPN and port forwarded. We were not able to say with absolute certainty what the problem was, but we did notice that those ...
by rickfrey
Mon Apr 07, 2014 6:50 pm
Forum: Wireless Networking
Topic: 3 ap wds
Replies: 1
Views: 1061

Re: 3 ap wds

If WDS is configured properly, it should not loop. Yes, you can use RSTP with it.
by rickfrey
Mon Apr 07, 2014 6:48 pm
Forum: The Dude
Topic: The Dude 4.0b3 on x86
Replies: 1
Views: 2460

Re: The Dude 4.0b3 on x86

Can you post your snmp settings both versions?
by rickfrey
Mon Apr 07, 2014 6:46 pm
Forum: General
Topic: lte auto-numbering interface
Replies: 1
Views: 952

Re: lte auto-numbering interface

You could write a script and use the find command to rename the device...
by rickfrey
Mon Apr 07, 2014 6:42 pm
Forum: General
Topic: How to better logging ? Feature Request?
Replies: 1
Views: 1358

Re: How to better logging ? Feature Request?

If you are trying to log from the firewall, try creating new chains for the various segments in your rules. Then all you have to do is add a logging rule for that chain.
by rickfrey
Mon Apr 07, 2014 6:39 pm
Forum: General
Topic: Usermanager profile not working properly
Replies: 1
Views: 985

Re: Usermanager profile not working properly

Can you post your hotspot and userman exports?
by rickfrey
Mon Apr 07, 2014 6:37 pm
Forum: General
Topic: simple queues with parent
Replies: 1
Views: 1588

Re: simple queues with parent

You can use PCQ with the simple queues and that sounds like what you are looking for.
by rickfrey
Mon Apr 07, 2014 6:34 pm
Forum: General
Topic: how to connect profile speed to ip server
Replies: 1
Views: 997

Re: how to connect profile speed to ip server

Set up queuing for those IP Subnets
by rickfrey
Mon Apr 07, 2014 6:33 pm
Forum: Beginner Basics
Topic: PPTP Connection can't see entire network.
Replies: 3
Views: 3151

Re: PPTP Connection can't see entire network.

Can you post a copy of your export?
by rickfrey
Mon Apr 07, 2014 6:31 pm
Forum: The Dude
Topic: How to use Dude for monitoring 200+ remote sites?
Replies: 1
Views: 2342

Re: How to use Dude for monitoring 200+ remote sites?

http://wiki.mikrotik.com/wiki/Manual:The_Dude

Check out the section on adding devices and discovering devices.
by rickfrey
Mon Apr 07, 2014 6:25 pm
Forum: General
Topic: Port mirroring not working
Replies: 2
Views: 1317

Re: Port mirroring not working

As I understand it, the ports can not be in the same bridge group like that. Here is the Wiki page on the switch chip features:
http://wiki.mikrotik.com/wiki/Manual:Sw ... p_Features
by rickfrey
Mon Apr 07, 2014 6:19 pm
Forum: Beginner Basics
Topic: did i do a woopsie?
Replies: 1
Views: 978

Re: did i do a woopsie?

When you used netinstall did you get the progress meter saying it was installing?
by rickfrey
Mon Apr 07, 2014 6:17 pm
Forum: General
Topic: The emergence of STP
Replies: 1
Views: 901

Re: The emergence of STP

It is in the Bridge settings under the STP tab
by rickfrey
Mon Apr 07, 2014 6:15 pm
Forum: General
Topic: Supported USB dongles
Replies: 1
Views: 946

Re: Supported USB dongles

Thanks for posting :D
by rickfrey
Mon Apr 07, 2014 6:11 pm
Forum: General
Topic: openVPN problem
Replies: 1
Views: 1521

Re: openVPN problem

Try unchecking require client certificates and see if it works that way.
by rickfrey
Mon Apr 07, 2014 6:02 pm
Forum: General
Topic: Portforwarding UDP does not work....
Replies: 3
Views: 2336

Re: Portforwarding UDP does not work....

Which version of ROS are you using?
by rickfrey
Mon Apr 07, 2014 5:59 pm
Forum: Wireless Networking
Topic: MikroTik Hotspot with Vlans and UBNT
Replies: 2
Views: 1477

Re: MikroTik Hotspot with Vlans and UBNT

Can you post your export?
by rickfrey
Mon Apr 07, 2014 5:50 pm
Forum: RouterBOARD hardware
Topic: 3G mini pci e for RB/912UAG-2HPnD-OUT
Replies: 4
Views: 3296

Re: 3G mini pci e for RB/912UAG-2HPnD-OUT

Which carrier are you trying to use?
by rickfrey
Sun Apr 06, 2014 6:47 pm
Forum: General
Topic: RB2011 freezing
Replies: 15
Views: 4603

Re: RB2011 freezing

We use the RB2011 series a lot and, although we have found some bugs along the way, we have not had a problem with them freezing up. Are you moving the backup file back and forth between routers and restoring it that way? That will cause problems on all platforms. The correct way to copy and export ...
by rickfrey
Sun Apr 06, 2014 6:38 pm
Forum: General
Topic: Marking packets as dscp cs3 and cs4
Replies: 1
Views: 1811

Re: Marking packets as dscp cs3 and cs4

You will identify the traffic by whatever method makes the most sense (IP address, ect) and then you will choose action=change DSCP (TOS).
by rickfrey
Sun Apr 06, 2014 6:35 pm
Forum: Beginner Basics
Topic: Remote Winbox connection with two WANs
Replies: 3
Views: 3223

Re: Remote Winbox connection with two WANs

One of the things that you can try is to use Mangle to mark the Winbox connections. Then create two routes with different distances. Make sure that you set them to check by ping.
by rickfrey
Sun Apr 06, 2014 6:32 pm
Forum: General
Topic: Free hotspot with more mikrotik and 1 central remote server
Replies: 1
Views: 1517

Re: Free hotspot with more mikrotik and 1 central remote ser

It might make sense, in this case, to use of on the hotspot RADIUS services that are designed to deliver free Internet across multiple WAPs. You could also do something like creating EOIP tunnels back to a specific MikroTik router so that all of the trial users were on the same router.
by rickfrey
Sun Apr 06, 2014 6:28 pm
Forum: General
Topic: queue in pppoe client
Replies: 1
Views: 1015

Re: queue in pppoe client

Yes, there are a couple of things that you can do. In earlier versions of RouterOS, Simple queues had priority over HTB, but now that is not true. So you can create an HTB tree to compliment the simple queue. You can also use metarouter, which has been a long time work around, to handle that type of...
by rickfrey
Sun Apr 06, 2014 6:20 pm
Forum: Wireless Networking
Topic: Wireless antenna-gain on regulatory-domain?
Replies: 3
Views: 6109

Re: Wireless antenna-gain on regulatory-domain?

Its my understanding that you can only enter whole numbers into that field. That is true with 6.11 even if it has changed over time.
by rickfrey
Sun Apr 06, 2014 6:16 pm
Forum: General
Topic: Speed Test Monitor
Replies: 1
Views: 962

Re: Speed Test Monitor

If you have another MikroTik or a Windows machine running the BW Test tool, then you can script a BW test to take place periodically. It will affect the network performance while its running the test. Scheduling one to take place at 3am - 5am should produce the best results and have the least impact.
by rickfrey
Fri Apr 04, 2014 4:39 pm
Forum: General
Topic: Mikrotik Ping problem
Replies: 2
Views: 1793

Re: Mikrotik Ping problem

Normally, when I am having this problem its because of how the network adapter is configured. With GNS3 and Virtual Box this can be quite challenging and unfortunately its not always well documented. In all my all-MikroTik GNS3 labs, I create a host adapter for each link. Sometimes, this can be seve...
by rickfrey
Fri Apr 04, 2014 4:32 pm
Forum: General
Topic: share experience with CCR1016 concurrent users ever tried.
Replies: 1
Views: 952

Re: share experience with CCR1016 concurrent users ever trie

That really is an open ended question because of how the network may be configured an used, however we have seen 10s of thousands on the Cloud Cores for various applications. This has taken some tweaking...sometimes alot of tweaking, but it is possible.
by rickfrey
Fri Apr 04, 2014 4:29 pm
Forum: General
Topic: Mikrotik pppoe with bridge adsl modem dropouts
Replies: 2
Views: 1487

Re: Mikrotik pppoe with bridge adsl modem dropouts

As far as the MTU, I would verify with the ISP what it should be set to. Have you tried replacing the MikroTik with some other devices to test the Internet connection ans verify that it is being delivered without any problems?
by rickfrey
Fri Apr 04, 2014 7:43 am
Forum: RouterBOARD hardware
Topic: RB POE MOD 433/433ah
Replies: 1
Views: 1518

Re: RB POE MOD 433/433ah

Very cool, I'm anxious to try that!
by rickfrey
Fri Apr 04, 2014 7:37 am
Forum: General
Topic: sstp-out1: terminating... - conn timeout
Replies: 16
Views: 14066

Re: sstp-out1: terminating... - conn timeout

Awesome!
by rickfrey
Fri Apr 04, 2014 5:30 am
Forum: Beginner Basics
Topic: Mikrotik Openvpn client problem
Replies: 1
Views: 2634

Re: Mikrotik Openvpn client problem

You only need three certificates. You need the server.crt, server.key, and the CA.crt. These will load as two certificates on the Mikrotik router. Set OVPN to use the server.crt and server.key combo. The easiest way to create these certificates that I have found, is to use the Easy RSA tools that co...
by rickfrey
Fri Apr 04, 2014 5:19 am
Forum: The User Manager
Topic: redirect unpaid hotspot users
Replies: 1
Views: 1956

Re: redirect unpaid hotspot users

The easiest way to do it will be to create the NAT rule to redirect them to the web proxy and use an address list with it. That's pretty easy to accomplish. FYI, you may also want to create another rule(s), using the same address list, which drops other types of traffic or all traffic since the NAT ...
by rickfrey
Fri Apr 04, 2014 5:15 am
Forum: Beginner Basics
Topic: Add 5GHz to RB951G
Replies: 7
Views: 7640

Re: Add 5GHz to RB951G

Here are some that are known to work with the USB interface. The only challenge you may will be the power limits.

http://wiki.mikrotik.com/index.php?titl ... less_cards
by rickfrey
Fri Apr 04, 2014 3:45 am
Forum: Wireless Networking
Topic: How to deal with interference?
Replies: 35
Views: 12929

Re: How to deal with interference?

The answer to that is that its not always an issue. In a clean air environment, with the wireless cards spread out in frequency or even spread across multiple bands, the performance is very good.
by rickfrey
Thu Apr 03, 2014 11:25 pm
Forum: General
Topic: sstp-out1: terminating... - conn timeout
Replies: 16
Views: 14066

Re: sstp-out1: terminating... - conn timeout

downgraded to 6.7
It works! now sstp-clients work fine.
uptime=6m36s
Are all of your clients working now?
by rickfrey
Thu Apr 03, 2014 5:51 pm
Forum: Wireless Networking
Topic: How to deal with interference?
Replies: 35
Views: 12929

Re: How to deal with interference?

The dual polarity only come into to play with integrated antennas. For exanmple, you could use two horizontal antennas instead of a dual polarity antenna and it will work just fine.
by rickfrey
Thu Apr 03, 2014 5:45 pm
Forum: Beginner Basics
Topic: Port 80 always open
Replies: 12
Views: 5876

Re: Port 80 always open

No worries :D
by rickfrey
Wed Apr 02, 2014 6:27 pm
Forum: Wireless Networking
Topic: Sierra Wireless MC8790 on RB912UAG-2hpnd
Replies: 22
Views: 9967

Re: Sierra Wireless MC8790 on RB912UAG-2hpnd

Thanks for posting that bertj. I couldn't remember what the command was :D
by rickfrey
Wed Apr 02, 2014 5:44 pm
Forum: Wireless Networking
Topic: New RadioMobile Installer - 7 May 2014
Replies: 7
Views: 2927

Re: New RadioMobile Installer

Outstanding Job! :D
by rickfrey
Wed Apr 02, 2014 5:38 pm
Forum: Beginner Basics
Topic: Port 80 always open
Replies: 12
Views: 5876

Re: Port 80 always open

Are you scanning from the LAN side or the WAN side?
by rickfrey
Wed Apr 02, 2014 5:36 pm
Forum: Wireless Networking
Topic: how did install the ether driver to ROS?
Replies: 2
Views: 1306

Re: how did install the ether driver to ROS?

What type of Ethernet card is it? Are you sure it is enabled? Can you post a screen shot?
by rickfrey
Wed Apr 02, 2014 5:33 pm
Forum: Wireless Networking
Topic: New RadioMobile Installer - 7 May 2014
Replies: 7
Views: 2927

Re: New RadioMobile Installer

The file seems to have been removed. Can you post a new link, please.
by rickfrey
Wed Apr 02, 2014 5:27 pm
Forum: General
Topic: sstp-out1: terminating... - conn timeout
Replies: 16
Views: 14066

Re: sstp-out1: terminating... - conn timeout

Are you using different certificates with each client? Trying using the working certificate on one of the non-working clients and see if that resolves the problem. If it does, then at least, we now where to go from there.
by rickfrey
Wed Apr 02, 2014 5:41 am
Forum: Beginner Basics
Topic: "Conditional routing"
Replies: 3
Views: 1658

Re: "Conditional routing"

I tried to send you an email, but the email address seemed to be wrong. You can contact us at consulting@iparchitechs.com or at 1-888-MiroTik. You can use 1-303-590-9940 if the toll free number doesn't work for you. Some phone companies don't understand the extra number :D
by rickfrey
Wed Apr 02, 2014 5:31 am
Forum: Wireless Networking
Topic: How to deal with interference?
Replies: 35
Views: 12929

Re: How to deal with interference?

i already tried to beat my head against the wall, but it didn't solve the problem I've been there too :D Unfortunately, without clean air space everything becomes a trade off. You can decrease the channel size. That will help considerably, but the trade off is throughput. Have you ever used a wifi ...
by rickfrey
Wed Apr 02, 2014 12:44 am
Forum: Beginner Basics
Topic: create hotspot from VAP
Replies: 3
Views: 1359

Re: create hotspot from VAP

You'll need to post the reset of your settings so we can see what is going on there.
by rickfrey
Tue Apr 01, 2014 9:59 pm
Forum: General
Topic: Error with CCR 1016 -12G
Replies: 1
Views: 780

Re: Error with CCR 1016 -12G

Can you post your settings?
by rickfrey
Tue Apr 01, 2014 9:53 pm
Forum: Wireless Networking
Topic: How to deal with interference?
Replies: 35
Views: 12929

Re: How to deal with interference?

Fortunately, the FCC just authorized the expanded use of the UNII 1 band so you can change frequencies to that band if your clients will support it. Changing freqs is the only real solution. If the air space is saturated all you are going to do is beat your head against the wall.
by rickfrey
Tue Apr 01, 2014 9:49 pm
Forum: General
Topic: what is this???
Replies: 1
Views: 849

Re: what is this???

It could be several things. To be able to answer that though, we would need a little more info. If you have one client that is doing that over and over and none of the others are, then that client has some sort of problem. It could be settings or it could be hardware failing. That is the most common...
by rickfrey
Tue Apr 01, 2014 9:41 pm
Forum: General
Topic: sstp-out1: terminating... - conn timeout
Replies: 16
Views: 14066

Re: sstp-out1: terminating... - conn timeout

Can you post your config from each of the routers?
by rickfrey
Tue Apr 01, 2014 6:09 pm
Forum: Wireless Networking
Topic: Sierra Wireless MC8790 on RB912UAG-2hpnd
Replies: 22
Views: 9967

Re: Sierra Wireless MC8790 on RB912UAG-2hpnd

Have you done a factory reset of the RB912?
by rickfrey
Tue Apr 01, 2014 6:08 pm
Forum: Wireless Networking
Topic: Sierra Wireless MC8790 on RB912UAG-2hpnd
Replies: 22
Views: 9967

Re: Sierra Wireless MC8790 on RB912UAG-2hpnd

Do you have another RB912 that you can try it in and see if it is recognized? It maybe a hardware problem with that RouterBoard. If you are not seeing anything at all, that would be my first guess.
by rickfrey
Tue Apr 01, 2014 6:00 pm
Forum: Beginner Basics
Topic: "Conditional routing"
Replies: 3
Views: 1658

Re: "Conditional routing"

The routing would work. You could also use two MikroTiks and create a Layer 2 tunnel, which would allow you to leave the server configured as it was. EOIP would work very well for that. Would that be a solution?
by rickfrey
Tue Apr 01, 2014 5:51 pm
Forum: General
Topic: Help needed to setup L2TP with IPSEC
Replies: 12
Views: 3203

Re: Help needed to setup L2TP with IPSEC

Goto the terminal and type:
export compact
Then you can copy and paste your configuration onto the forum.
by rickfrey
Tue Apr 01, 2014 12:11 am
Forum: RouterBOARD hardware
Topic: not apear wlan in wireless table
Replies: 5
Views: 1511

Re: not apear wlan in wireless table

No Problem, Here are the links that show how to re-install/ upgrade the software:

http://wiki.mikrotik.com/wiki/Manual:Upgrade_RB
http://wiki.mikrotik.com/wiki/Manual:Netinstall
by rickfrey
Mon Mar 31, 2014 7:30 pm
Forum: Beginner Basics
Topic: how to prioritize a program ?
Replies: 5
Views: 1814

Re: how to prioritize a program ?

Before, I get to involved in this, what specifically is this for?
by rickfrey
Mon Mar 31, 2014 7:11 pm
Forum: General
Topic: IP Pool Next setup
Replies: 6
Views: 4359

Re: IP Pool Next setup

I didn't find anything that would prevent it from going to the second pool. You might try disabling the firewall and re-testing. Other than that, I'm not sure what it would be causing it.
by rickfrey
Mon Mar 31, 2014 6:27 pm
Forum: General
Topic: IP Pool Next setup
Replies: 6
Views: 4359

Re: IP Pool Next setup

Using the two pools would be the correct way to do it. I don't see anything wrong with your set of the DHCP. As long as you have an address of 192.168.1.1/24 on the bridge interface it should be working. If it continues to give you trouble, try backing up the configuration, re-setting the router, an...
by rickfrey
Mon Mar 31, 2014 6:18 pm
Forum: General
Topic: i have issue with force dns
Replies: 3
Views: 1419

Re: i have issue with force dns

Awesome, that's great news!
by rickfrey
Mon Mar 31, 2014 6:17 pm
Forum: Beginner Basics
Topic: bypass the cache!
Replies: 5
Views: 2490

Re: bypass the cache!

You will need to explain your current setup for us to be able to answer that question.
by rickfrey
Mon Mar 31, 2014 5:30 pm
Forum: Beginner Basics
Topic: Need Help, new to MikroTik
Replies: 1
Views: 935

Re: Need Help, new to MikroTik

Do you have a NAT Masquerade rule set?
add action=masquerade chain=srcnat out-interface=YOUR PPPOE CONNECTION
by rickfrey
Mon Mar 31, 2014 5:24 pm
Forum: Beginner Basics
Topic: RB2011UiAS-2HnD-IN / firewall rules / webfig wan
Replies: 1
Views: 2126

Re: RB2011UiAS-2HnD-IN / firewall rules / webfig wan

Yes, you want all of your exceptions listed before the Drop rule.
by rickfrey
Mon Mar 31, 2014 5:21 pm
Forum: General
Topic: IP Pool Next setup
Replies: 6
Views: 4359

Re: IP Pool Next setup

No, you should not loop the pools. What is the IP address on the router set to and what is the subnet mask on the DHCP server set to? If you go to DHCP-Server -> Networks the address field will have the subnet size for the DHCP server. It will need to encompass both subnets. The address on the route...
by rickfrey
Mon Mar 31, 2014 5:17 pm
Forum: Beginner Basics
Topic: bypass the cache!
Replies: 5
Views: 2490

Re: bypass the cache!

Create a rule for in the "Direct" section of the web proxy.
/ip proxy direct
add dst-host=www.example.com src-address=0.0.0.0/0
by rickfrey
Mon Mar 31, 2014 5:14 pm
Forum: RouterBOARD hardware
Topic: not apear wlan in wireless table
Replies: 5
Views: 1511

Re: not apear wlan in wireless table

Check System -> Packages and see if the wireless package is disabled.
by rickfrey
Mon Mar 31, 2014 5:11 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

Did that work for you?
by rickfrey
Mon Mar 31, 2014 5:08 pm
Forum: General
Topic: Auto Detect
Replies: 6
Views: 1433

Re: Auto Detect

No problem :D
by rickfrey
Mon Mar 31, 2014 5:07 pm
Forum: General
Topic: Help needed to setup L2TP with IPSEC
Replies: 12
Views: 3203

Re: Help needed to setup L2TP with IPSEC

Without seeing your config... my first guess would be that you need the routes and the polices set correctly. Each IPSEC tunnel will need the polices set for each subnet that is passing through it and each client will need a routing statement of where to find those subnets.
by rickfrey
Fri Mar 28, 2014 7:00 pm
Forum: Beginner Basics
Topic: I`m new at mikrotik. help needed.
Replies: 3
Views: 1548

Re: I`m new at mikrotik. help needed.

You can take the same firewall rule and instead of the SRC address change that to an SRC address list and then add the subnets that way. Sorry, don't know anything about Counterstrike.
by rickfrey
Fri Mar 28, 2014 6:31 pm
Forum: Wireless Networking
Topic: Load balancing and wireless interface
Replies: 4
Views: 2074

Re: Load balancing and wireless interface

If you routing is working for you what you are asking for is how to connect the wireless, then you will want to create a new bridge with the LAN and the wireless ports. Then everywhere in your config that you have something attached to the LAN port, change it to the bridge. For example, IP addresses...
by rickfrey
Fri Mar 28, 2014 5:10 pm
Forum: Wireless Networking
Topic: Load balancing and wireless interface
Replies: 4
Views: 2074

Re: Load balancing and wireless interface

That's not a problem. Can you post your settings? Without knowing what your setup is, my first question is, do you have the wireless interface and the LAN interface in a bridge together?
by rickfrey
Fri Mar 28, 2014 4:58 pm
Forum: Beginner Basics
Topic: how to prioritize a program ?
Replies: 5
Views: 1814

Re: how to prioritize a program ?

I would create an HTB queue tree and mark the traffic going into it. Use Mangle to mark the priority traffic (you can use an address list with that). Then mark everything else at a different priority. Check out the Wiki pages on HTB and Mangle. If you are still having trouble with it, let me know, a...
by rickfrey
Fri Mar 28, 2014 4:55 pm
Forum: General
Topic: Auto Detect
Replies: 6
Views: 1433

Re: Auto Detect

Not all network cards are supported. Check out the HCL:

http://wiki.mikrotik.com/wiki/Supported_Hardware
by rickfrey
Fri Mar 28, 2014 4:51 pm
Forum: General
Topic: It's not possible, somebody could help me with upload stuck?
Replies: 4
Views: 1948

Re: It's not possible, somebody could help me with upload st

It is possible. It just takes practice, proper installation, and a little patience. Why don't you post your exports and network diagram?
by rickfrey
Fri Mar 28, 2014 4:45 pm
Forum: Wireless Networking
Topic: WPA2 EAP and onboard Radius Server
Replies: 4
Views: 2439

Re: WPA2 EAP and onboard Radius Server

Here is the section that deals specifically with wireless authentication:

http://wiki.mikrotik.com/wiki/User_Mana ... ss_Example
by rickfrey
Fri Mar 28, 2014 4:38 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

This is out of ROS 6.9 and will work for a simple AP delivering a connection to 802.11 devices:
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n disabled=no distance=indoors \
    frequency=2437 l2mtu=2290 mode=ap-bridge ssid=Example wireless-protocol=\
    802.11
by rickfrey
Fri Mar 28, 2014 4:35 pm
Forum: The Dude
Topic: the Dude, static element
Replies: 3
Views: 2369

Re: the Dude, static element

If you go to settings, then the Map tab, you can edit the settings for the links. Try reversing the colors and and using the speed limit on the links. Everything will be backwards, but you should be able to make that work. If not then you could consider building a new function to use with the link s...
by rickfrey
Fri Mar 28, 2014 2:01 pm
Forum: General
Topic: i have issue with force dns
Replies: 3
Views: 1419

Re: i have issue with force dns

Did that work for you?
by rickfrey
Thu Mar 27, 2014 7:55 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

Ok, that makes things a little clearer. I'm still confused about your last question though. As I understand it, the dark orange spots have an Internet feed there and the lighter ones are essentially bridged back to the main one? Is that what you doing or am I still missing something?
by rickfrey
Thu Mar 27, 2014 6:27 pm
Forum: Wireless Networking
Topic: OmniTik both client and AP mode
Replies: 7
Views: 2317

Re: OmniTik both client and AP mode

WDS is the mode that you are looking for. It only works with a 100% MikroTik setup.
by rickfrey
Thu Mar 27, 2014 6:20 pm
Forum: General
Topic: Remove SPI firewall in router RB450G
Replies: 14
Views: 6145

Re: Remove SPI firewall in router RB450G

Goto IP -> Firewall and select the Filters tab. Then highlight all of the rules and remove them.
by rickfrey
Thu Mar 27, 2014 4:44 pm
Forum: Wireless Networking
Topic: Chromecast is unable to connect
Replies: 9
Views: 9710

Re: Chromecast is unable to connect

Can you post your wireless settings?
by rickfrey
Thu Mar 27, 2014 4:41 pm
Forum: General
Topic: i have issue with force dns
Replies: 3
Views: 1419

Re: i have issue with force dns

Do you have the DNS in the walled garden?
by rickfrey
Thu Mar 27, 2014 4:39 pm
Forum: The Dude
Topic: the Dude, static element
Replies: 3
Views: 2369

Re: the Dude, static element

Have you tried using the speed feature of the link?
by rickfrey
Thu Mar 27, 2014 4:35 pm
Forum: Wireless Networking
Topic: WPA2 EAP and onboard Radius Server
Replies: 4
Views: 2439

Re: WPA2 EAP and onboard Radius Server

Can you post you wireless and radius settings?
by rickfrey
Thu Mar 27, 2014 4:32 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

That definitely looks like quite the undertaking. Its way too involve to be properly validated on the forums, but there are some suggestions that can be made. First, I would strongly advise against the WDS solution. Second, consider using the 5GHz band to augment the 2.4GHz APs. That will improve yo...
by rickfrey
Thu Mar 27, 2014 4:16 pm
Forum: General
Topic: Adressing in PPTP server
Replies: 3
Views: 1385

Re: Adressing in PPTP server

No problem, glad I could help :D
by rickfrey
Wed Mar 26, 2014 5:27 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

That's true. Very few city wide hotspots would be considered successful.
by rickfrey
Wed Mar 26, 2014 5:13 pm
Forum: Beginner Basics
Topic: dual wan challenge
Replies: 25
Views: 7187

Re: dual wan challenge

If you create a VPN, through WAN2, then IP that is registered will be the end point of that VPN.
by rickfrey
Wed Mar 26, 2014 5:09 pm
Forum: Wireless Networking
Topic: For Wireless Experts
Replies: 13
Views: 4172

Re: For Wireless Experts

Hi Daniel, Most claims of extreme performance in NLOS conditions are... irresponsible to say the least. City wide hotspots are an extreme challenge anyway you look at it. Even in a small rural community, it will be an extreme challenge. In a situation like that, MikroTik would be my fist choice with...
by rickfrey
Wed Mar 26, 2014 4:57 pm
Forum: General
Topic: Adressing in PPTP server
Replies: 3
Views: 1385

Re: Adressing in PPTP server

No, its not bad to have only server address. I try to use just one as often as the situation permits. I prefer to have the server address in the profile and then use a pool, also from the profile, when possible. When you need the IP address to stay the same each time, I move the client address to th...
by rickfrey
Wed Mar 26, 2014 4:50 pm
Forum: General
Topic: Help needed to setup L2TP with IPSEC
Replies: 12
Views: 3203

Re: Help needed to setup L2TP with IPSEC

Were you ever able to resolve this problem?
by rickfrey
Mon Mar 24, 2014 4:24 pm
Forum: General
Topic: Proxy and Firewall Rules
Replies: 19
Views: 5094

Re: Proxy and Firewall Rules

That proxy rule simply says that any traffic from that IP address go directly to the Internet and by-passes the web proxy.
by rickfrey
Mon Mar 24, 2014 4:18 pm
Forum: Beginner Basics
Topic: Redierect hotspot expired users to an information page
Replies: 9
Views: 5576

Re: Redierect hotspot expired users to an information page

That's great news! Glad to hear it :D
by rickfrey
Mon Mar 24, 2014 4:18 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

No problem. I'm glad to hear that you were able to get it working :D
by rickfrey
Thu Mar 20, 2014 8:42 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

Try removing the static route that is set and turn the SIP helper back on. Other than that I don't see any problems. If you are still having problems after that, then reset the router and re-import the export, don't re-import the back-up file.
by rickfrey
Tue Mar 18, 2014 5:32 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

Not too long ago, we were troubleshooting a very strange problem and because the cabling was new and supposedly in good working order we didn't check it right off the bat. Of course, in the end it was the cabling. Have you checked that to see if that is the problem? Try to re-install it, but only on...
by rickfrey
Tue Mar 18, 2014 5:28 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

That should absolutely work. Have you tried resetting the router and the phones and starting from scratch?
by rickfrey
Tue Mar 18, 2014 5:23 pm
Forum: General
Topic: Help needed to setup L2TP with IPSEC
Replies: 12
Views: 3203

Re: Help needed to setup L2TP with IPSEC

I can't tell from the pdf if you are NAT'ing the VPN traffic to be able to reach the Internet, but I could see that you seem to be missing the src-nat rules for IPSEC. I also agree that it does not make sense to terminate your VPN at 192.168.1.40 when the router is already 192.168.1.1. Usually, I ma...
by rickfrey
Tue Mar 18, 2014 4:42 pm
Forum: Beginner Basics
Topic: multiple public IPs with local network
Replies: 4
Views: 1537

Re: multiple public IPs with local network

What you're asking for is a little confusing, but it should work for the most part. If you want the Public IPs to reside on the end hosts, then the interface that they are connected thorough will have to be bridged to the WAN port. Try that and see if works the way that you want it to.
by rickfrey
Tue Mar 18, 2014 4:33 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

Option 66 is a way of providing the the phones the directory to pull their config from via DHCP. So basically, the path to their config file is always present in the DHCP server and the phone itself does not have to be configured by hand other than to tell it what extension it should be. What versio...
by rickfrey
Mon Mar 17, 2014 9:29 pm
Forum: General
Topic: redirect URL
Replies: 1
Views: 1889

Re: redirect URL

You will want to the Web Proxy feature for that. Its pretty easy and there are several examples that you can use. I like using two different IP pools, one that is always re-directing the web proxy and one that is not.
by rickfrey
Mon Mar 17, 2014 9:23 pm
Forum: General
Topic: Problem please help
Replies: 1
Views: 841

Re: Problem please help

Verify that you are getting enough voltage to the routerboard and if that is not the problem then you are going to have to replace it. You can try doing a reset, but it will very likely have to be replaced.
by rickfrey
Mon Mar 17, 2014 9:20 pm
Forum: General
Topic: Setting up Aastra sip phones behind Mikrotik 450G
Replies: 14
Views: 3338

Re: Setting up Aastra sip phones behind Mikrotik 450G

Hi TheEnsona, We use the same sort of scenario, MikroTik and Astra, at several locations and we have not had that problem. We are using the exact same model of phone as you are but I was curious what sort of configuration you were using in the phone. Our config is very basic, we use option 66 as oft...
by rickfrey
Tue Mar 11, 2014 5:25 pm
Forum: Beginner Basics
Topic: forward and management VPN
Replies: 11
Views: 3535

Re: forward and management VPN

Hi Apostol, I'm not sure that there is enough information to hear say what is going on definitively. There are some educated guesses that we could make though. I noticed that you have proxy-arp enabled on your WAN interface, but not on your LAN interface. Generally speaking, when I use PPtP with Mik...
by rickfrey
Tue Mar 04, 2014 5:42 pm
Forum: Scripting
Topic: Console output by email
Replies: 3
Views: 1440

Re: Console output by email

No problem :D
by rickfrey
Fri Feb 28, 2014 9:49 pm
Forum: General
Topic: Recording Port access
Replies: 3
Views: 1280

Re: Recording Port access

No problem, glad I could help :D
by rickfrey
Fri Feb 28, 2014 4:36 pm
Forum: General
Topic: Recording Port access
Replies: 3
Views: 1280

Re: Recording Port access

You just create a filter rule that will match what ever criteria you are looking for and then the action will be "add src to address list". For example:
/ip firewall filter
add action=add-src-to-address-list address-list="Web Users" chain=forward dst-port=80 protocol=tcp
by rickfrey
Fri Feb 28, 2014 4:29 pm
Forum: Beginner Basics
Topic: forward and management VPN
Replies: 11
Views: 3535

Re: forward and management VPN

It would be helpful if you would post your export.
by rickfrey
Fri Feb 28, 2014 1:12 am
Forum: General
Topic: Remote Connection and more
Replies: 5
Views: 1999

Re: Remote Connection and more

With Windows 7, you may have to turn your UAC settings off. I have had a problem with that before.
by rickfrey
Fri Feb 28, 2014 1:07 am
Forum: General
Topic: Proxy and Firewall Rules
Replies: 19
Views: 5094

Re: Proxy and Firewall Rules

At the beginning of this thread, someone asked how to they could have someone bypass the proxy that was in place. In this situation, they knew the MAC address, but the IP address was always going to be changing. If they had had the IP address, they would only have needed to put the rule into the pro...
by rickfrey
Thu Feb 27, 2014 10:15 pm
Forum: General
Topic: Proxy and Firewall Rules
Replies: 19
Views: 5094

Re: Proxy and Firewall Rules

why??
Because you have the create the proxy rule first and then this rule will modify it.
by rickfrey
Mon Feb 24, 2014 9:18 pm
Forum: Beginner Basics
Topic: forward and management VPN
Replies: 11
Views: 3535

Re: forward and management VPN

No problem, glad I could help :D
by rickfrey
Fri Feb 21, 2014 5:53 pm
Forum: General
Topic: RB951G-2HnD: PPPoE Connection terminating, etc - DNS Changed
Replies: 6
Views: 4790

Re: RB951G-2HnD: PPPoE Connection terminating, etc - DNS Cha

From what you stated, it definitely looks like the problem is on there side, baring any phsical conncetion problems (that's a possibility too.) As far as the DNS is concerned, that is up to you. All that does, is tell the router what DNS servers to use. If you are using the MikroTik for a DNS proxy,...
by rickfrey
Fri Feb 21, 2014 5:34 pm
Forum: General
Topic: Poor mans config sync: vrrp
Replies: 7
Views: 5211

Re: Poor mans config sync: vrrp

No, its not crazy :D This is something I have experimented with as well. There are multiple ways to do this now, but yes it can be done. The biggest problem is making sure that you are not duplicating rules/ actions as you import the script. Here is an example, its for Layer 7 matchers, but it shows...
by rickfrey
Fri Feb 21, 2014 5:26 pm
Forum: General
Topic: what mean this ?
Replies: 1
Views: 1339

Re: what mean this ?

If you choose "first" then the dynamic queue that is created is processed before other queues and visa versa if you choose bottom. The best feature there is the parent queue and queue type. This allows you to take control of the dynamic queues that are created and really make them useful. ...
by rickfrey
Fri Feb 21, 2014 5:14 pm
Forum: General
Topic: RB951G-2HnD: PPPoE Connection terminating, etc - DNS Changed
Replies: 6
Views: 4790

Re: RB951G-2HnD: PPPoE Connection terminating, etc - DNS Cha

It definitely looks like there is a mismatch between your PPPoE client and their server. I can only guess what that might be. If it not doing this during the day, my first guess would be that it is on there end. Some ISPs have a very caviler attitude towards doing maintenance during the night...some...
by rickfrey
Fri Feb 21, 2014 5:20 am
Forum: General
Topic: Hotspot + DSLAM + modem
Replies: 4
Views: 2000

Re: Hotspot + DSLAM + modem

I'm personally not very adept with the DSLAM portion. We have other people in our company who are able to handle that portion of it. :D I have configured the router portion behind the DSLAM and I know that part of it is very easy. Serveral manufactuers were mentioned when I asked about it, but the b...
by rickfrey
Fri Feb 21, 2014 5:08 am
Forum: General
Topic: Ovpn certificate expiry
Replies: 3
Views: 1546

Re: Ovpn certificate expiry

[img]
cert.jpg
[/img]Is this the field you are looking for?
by rickfrey
Fri Feb 21, 2014 4:49 am
Forum: The Dude
Topic: Email notification throughout Gmail
Replies: 7
Views: 3457

Re: Email notification throughout Gmail

Thanks
by rickfrey
Thu Feb 20, 2014 5:16 pm
Forum: The Dude
Topic: Email notification throughout Gmail
Replies: 7
Views: 3457

Re: Email notification throughout Gmail

Great, would post a link to that discussion. I would like to what the fix was as well. Thank you :)
by rickfrey
Thu Feb 20, 2014 5:07 pm
Forum: RouterBOARD hardware
Topic: RB1100ahx2 redundant powering
Replies: 15
Views: 6268

Re: RB1100ahx2 redundant powering

Thank you for sharing that. I will have to try this :D
by rickfrey
Thu Feb 20, 2014 5:06 pm
Forum: General
Topic: Natting
Replies: 7
Views: 2177

Re: Natting

Yes, it is, but you might have to "mark" the Layer 7 first. For example, use the layer 7 matcher to set a packet mark in Mangle and then use the NAT rule to NAT everything with that packet mark.
by rickfrey
Thu Feb 20, 2014 5:02 pm
Forum: Wireless Networking
Topic: SXT choice for small wisp
Replies: 11
Views: 4154

Re: SXT choice for small wisp

No problem, glad I could be of assistance :D
by rickfrey
Thu Feb 20, 2014 5:01 pm
Forum: Scripting
Topic: Mikrotik SSH Backup - my solution
Replies: 15
Views: 8712

Re: Mikrotik SSH Backup - my solution

arxont, I am really very impressed with this program and with you improvements you have made with it. Thank you! Can you explain how do this: ADD: Add to context menu - "Connect over winbox" (connect if the ssh user has rights to connect and winbox.exe located in the same folder as the pro...
by rickfrey
Thu Feb 20, 2014 9:16 am
Forum: The Dude
Topic: Email notification throughout Gmail
Replies: 7
Views: 3457

Re: Email notification throughout Gmail

I've trouble with it in the past, but I have always been able to get it working. Initially, I thought the problem was going to be with the newer versions of blat and stunnel, but I found some of my older versions and it still wasn't working. I'm not an expert with blat or stunnel, so I'm going to ha...
by rickfrey
Thu Feb 20, 2014 6:50 am
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 75522

Re: CAPs Manager

I haven't been able to get ahold of it yet, but I am very anxious to see it! :D
by rickfrey
Thu Feb 20, 2014 6:46 am
Forum: Beginner Basics
Topic: Dual Port Lan Card Issue
Replies: 8
Views: 2531

Re: Dual Port Lan Card Issue

Awesome! Glad you were able to resolve it :D
by rickfrey
Thu Feb 20, 2014 6:43 am
Forum: Beginner Basics
Topic: 450G and tl-mr3220 connection problem
Replies: 7
Views: 2129

Re: 450G and tl-mr3220 connection problem

I didn't have any luck restoring the backup file that you posted. However, the answer to your problem is probably in your routing statements. My guess is that you have an active default route that points to WAN1. Even if you have a second default route, it won't be active unless you use some sort of...
by rickfrey
Thu Feb 20, 2014 6:21 am
Forum: The Dude
Topic: Open dude map via remote software
Replies: 5
Views: 3223

Re: Open dude map via remote software

I will bite. What type of creativity must be used to work with the database in 4b3?
lol :lol: That was my way of saying I not really sure how to do it on the newer version :shock:
by rickfrey
Thu Feb 20, 2014 6:18 am
Forum: The User Manager
Topic: Day/Night Bandwidth Configure in User Manager
Replies: 9
Views: 9343

Re: Day/Night Bandwidth Configure in User Manager

I like that Syed, thanks :D
by rickfrey
Thu Feb 20, 2014 6:16 am
Forum: General
Topic: How do I disable firewall on my MT router to use DHCP from m
Replies: 5
Views: 1560

Re: How do I disable firewall on my MT router to use DHCP fr

All you need for Internet access is a valid IP address, valid Gateway, and, in most cases, some sort of NAT. Everything just edifies those routing statements. How far can you ping from the host? Can you ping 8.8.8.8 (Google's public DNS serever)? How is the first device configured?
by rickfrey
Thu Feb 20, 2014 5:07 am
Forum: Scripting
Topic: Mikrotik SSH Backup - my solution
Replies: 15
Views: 8712

Re: Mikrotik SSH Backup - my solution

Maybe I'm slightly paranoic :)
Once you enter the world of routing & switching, you can't help but become paranoid :shock: :D
by rickfrey
Thu Feb 20, 2014 5:04 am
Forum: General
Topic: How do I disable firewall on my MT router to use DHCP from m
Replies: 5
Views: 1560

Re: How do I disable firewall on my MT router to use DHCP fr

If you want both routers and all hosts on the same network, you will need to: Goto Bridge and create/ modify the bridge. Add/ modify the bridge so that all ports are in the same bridge group. Change the DHCP Client so that it is on the interface of the bridge (DHCP- Server off). You will still remov...
by rickfrey
Thu Feb 20, 2014 4:48 am
Forum: General
Topic: Ovpn certificate expiry
Replies: 3
Views: 1546

Re: Ovpn certificate expiry

I believe if you change the clock in the MikroTik forward a year, you will see the answer to that :D
by rickfrey
Thu Feb 20, 2014 4:46 am
Forum: General
Topic: hotspot login page works, mostly.
Replies: 3
Views: 1382

Re: hotspot login page works, mostly.

The HTTP/ HTTPS problem is a trade off any way you look at it. The easiest resolution is to create instructions for the customer to go to some designated HTTP site. :D
by rickfrey
Thu Feb 20, 2014 4:43 am
Forum: General
Topic: PCC balancing issues
Replies: 6
Views: 1849

Re: PCC balancing issues

I much prefer some form of Policy Based Routing as well. Sending some customer or some traffic classes out one gateway is how I usually do it as well. That works every time and is very reliable :D