Community discussions

Search found 78 matches

by markmcn
Wed Sep 04, 2019 6:25 pm
Forum: General
Topic: Feature Request
Replies: 1
Views: 313

Re: Feature Request

In winbox if you look under IP -> Neighbours you will find a list of all the router os devices which can be seen at layer2. (This is assuming you haven't altered the discovery settings) I think it might also you you ci$co neighbours, I'm not so sure about generic lldp devices I hope this helps Cheer...
by markmcn
Sat Aug 17, 2019 6:39 pm
Forum: General
Topic: Address list dynamic entries [SOLVED]
Replies: 2
Views: 455

Re: Address list dynamic entries [SOLVED]

Hi Sindy,
Thanks for the answer. Basing it on the TTL of the record is a nice solution.
Cheers
Mark
by markmcn
Sat Aug 17, 2019 1:58 am
Forum: General
Topic: Address list dynamic entries [SOLVED]
Replies: 2
Views: 455

Address list dynamic entries [SOLVED]

Hi All,
I've added a dynamic dns entry to an address list.
Can anyone tell me how often the address list will check the dns entry for an updated ip address?
Cheers
Mark
by markmcn
Tue Feb 12, 2019 7:18 pm
Forum: General
Topic: Ring hardware and Mikrotik [SOLVED]
Replies: 6
Views: 905

Re: Ring hardware and Mikrotik [SOLVED]

On the wireless security profile, Try increasing the group-key-update time from 5min(Default) to 1Hr.
Alot of domestic routers / hardware use 1Hr as their default value for this parameter.
I had issues with other IOT devices and found this a big help
by markmcn
Mon Feb 04, 2019 4:35 pm
Forum: General
Topic: Question for an expert - Layer 2 / 3 Bridging
Replies: 4
Views: 607

Re: Question for an expert - Layer 2 / 3 Bridging

You could try a packet capture on the wire to see what else is going on. Once suggestion is to make sure that Mikrotik neighbour discovery is disabled on the interfaces also. You might want to look at the port speed & duplex settings also maybe limit the switch to only try and negotiate the speed yo...
by markmcn
Tue Aug 21, 2018 12:03 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 31033

Re: v6.42.7 [current] is released!

I upgraded a RB1100 AH4 last night, It mostly went ok, The only issue was on reboot none of the ipsec tunnel came back, when I checked IPSec packets weren't even leaving as claimed to be trying to establish!! A second reboot and all the tunnels came up. The take away being if you depend on IPSec to ...
by markmcn
Mon Aug 20, 2018 12:32 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 31033

Re: v6.42.7 [current] is released!

Hi Emils, Thanks for the responce, Am I correct in saying the corrected behaviour is that if the sa-src-address=0.0.0.0 is used, It will now take the ip address of the outbound interface(Interface with the route to the ipsec peer/sa-dst-address) Thanks Mark When adding (or importing) a new IPsec pol...
by markmcn
Mon Aug 20, 2018 11:15 am
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 31033

Re: v6.42.7 [current] is released!

*) ipsec - fixed "sa-src-address" deduction from "src-address" in tunnel mode; Can you please share what was the issue and what is the fixed behaviour? I am using alot of IPSec in 6.42.6 and having no issues, I'm just wondering what has changed before I alter a working environment Thanks for the gr...
by markmcn
Wed Mar 28, 2018 7:59 pm
Forum: General
Topic: Incomplete ARP entries [SOLVED]
Replies: 2
Views: 338

Re: Incomplete ARP entries [SOLVED]

Thanks Solar77
I was just concerned I might have misconfigured something. Once this is confirmed as the expected operation of the device I'm happy.
by markmcn
Tue Mar 27, 2018 11:53 pm
Forum: General
Topic: Incomplete ARP entries [SOLVED]
Replies: 2
Views: 338

Incomplete ARP entries [SOLVED]

I'm running ROS6.41.3 and I'm seeing alot of incomplete arp entries 19 D 172.17.2.165 brNetwork-Wlan 20 D 172.17.2.192 brNetwork-Wlan 21 D 172.17.2.148 brNetwork-Wlan 22 D 172.17.2.187 brNetwork-Wlan 23 D 172.17.2.176 brNetwork-Wlan 24 D 172.17.2.196 brNetwork-Wlan 25 D 172.17.2.185 brNetwork-Wlan 2...
by markmcn
Fri Mar 23, 2018 6:27 pm
Forum: Forwarding Protocols
Topic: Advertisment BGP with same AS number
Replies: 2
Views: 460

Re: Advertisment BGP with same AS number

Hi juergenm Without a diagram show the network lays and the issue it's hard to be sure. But it sounds like you have and iBGP peering between the cisco and mikrotik, and an iBGP peering between the Mikrotik and some other router. (iBGP meaning they have the same AS number) If this is the case it soun...
by markmcn
Mon Mar 19, 2018 1:28 am
Forum: General
Topic: tcp window size...
Replies: 16
Views: 4927

Re: tcp window size...

He Pe1chl I'm aware of CIFS chattyness being a pain over high latency/long links, And O if I could have just told them to use something like ftp or SFTP I really would have. As for RDP/Citrix well that's part of the problem, The person was generating huge data set's on a remote machine but needed to...
by markmcn
Sat Mar 17, 2018 10:09 pm
Forum: General
Topic: tcp window size...
Replies: 16
Views: 4927

Re: tcp window size...

Hi pe1chl, All valid points, I was just saying there are cases where actually increasing the window size is helpful, Yes you put other connections on the link at risk, As I pointed out such a feature would have to be used on very carefully assessed basis. Unfortunately the case I was stuck with was ...
by markmcn
Sat Mar 17, 2018 4:14 pm
Forum: General
Topic: tcp window size...
Replies: 16
Views: 4927

Re: tcp window size...

@mkx & pe1chl Changing the TCP window size up/ increasing isn't always a bad thing, My first point is to agree that the end point hosts should be setting the window to help fill the pipe regardless of latency however I've recently been working on resolving an issue where bandwidth delay product was ...
by markmcn
Sat Mar 17, 2018 10:10 am
Forum: Forwarding Protocols
Topic: BGP multihoming - strange routing issue
Replies: 7
Views: 992

Re: BGP multihoming - strange routing issue

Easiest way to think about Administrative distance is it's used to determine best path between routing protocol EG You learn 8.8.8.8/32 from RIP (AD120) OSPF (AD110) and BGP(20) The challenge is which one do I believe is best? The answer is the one with the lowest AD. So if you look at it this way t...
by markmcn
Sat Mar 17, 2018 2:32 am
Forum: General
Topic: tcp window size...
Replies: 16
Views: 4927

Re: tcp window size...

@CZFan I agree this would be great for helping with long fat links, It was mentioned that the feature would be great to have in the magle table which would be used to modify traffic transiting the router. This can be a really great tweak for traffic over links where the bandwidth delay product becom...
by markmcn
Tue Mar 06, 2018 1:12 am
Forum: General
Topic: Issues viewing particular websites
Replies: 4
Views: 452

Re: Issues viewing particular websites

you might need to add a magle rule to adjust the MSS of new tcp connections /ip firewall mangle add action=change-mss chain=postrouting comment="CorrectMSS Size" new-mss=1452 out-interface=all-ppp passthrough=no protocol=tcp tcp-flags=syn This is assuming your outbound(internet interface) is a PPPoE...
by markmcn
Tue Mar 06, 2018 1:07 am
Forum: General
Topic: MTU on VLAN with VRRP Help!
Replies: 3
Views: 591

Re: MTU on VLAN with VRRP Help!

Hi Tommo If I have read your first post the design you have outlined doesn't make sense -> Eth1, Eth2, Eth3 Bonded --> VRRP established and working on bond ----> VLAN configured on VRRP interface ------> IP address configured on VLAN interface ------> Second IP address configured on second VLAN inte...
by markmcn
Tue Dec 12, 2017 8:23 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

to answer your question any unit with an RX in the -50's then you need to turn down the tx power of the one it's talking to,
Chance are you will need to turn down the tx power on them all
by markmcn
Tue Dec 05, 2017 11:17 am
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

Well with a receive level in the -50's you need to turn back the tx a little, They are screaming at eachother .
by markmcn
Fri Dec 01, 2017 2:30 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

Quick thoughts, I'd say you could turn down the TX power level's a bit to bring RX into the -60's. Have you checked to ensure there is enough physical separation between the dynadishs? Have you checked they are not on the same or very close channels (I.e Overlapping). The poor CCQ is the problem. If...
by markmcn
Thu Nov 30, 2017 10:43 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

Have you tried leaving the rb3011's and bond interfaces in place and only tried it with a single link in the bond? This will tell you if it's an issue with the Dynadishes or the devices doing the bonding? If things improve with one dynadish then we can look at that. If they don't then we need to loo...
by markmcn
Wed Nov 29, 2017 4:02 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

You have to remember that Bonding interfaces is also CPU bound
by markmcn
Sat Nov 25, 2017 11:08 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 1152

Re: Bonding two Dynadish 5 WiFi links

As you have only posted 2 of the 4 config's from the DynaDishes I can't check this but have you confirmed you're not using the same frequency on both? Also how close are the Dishes on both site, You might need to look at putting some space between them so you don't have an I.F interference between t...
by markmcn
Fri Nov 10, 2017 5:59 pm
Forum: General
Topic: Hex v3 ( RB750Gr3 ) EoIP/IPsec
Replies: 5
Views: 1022

Re: Hex v3 ( RB750Gr3 ) EoIP/IPsec

I believe it should use the hardware offloading for the IPSec,
However I'm thinking the EOIP will be CPU bound, It can be fast path however will still depend on cpu for encapsulation. If some knows otherwise please share
by markmcn
Mon Nov 06, 2017 10:51 pm
Forum: General
Topic: RB1100AH4 Switching
Replies: 0
Views: 354

RB1100AH4 Switching

Hi, Can someone please show an example how to do trunk and access ports in the switch chip on a RB1100AH4, Ideally in both the old and new bridge system. The problem I'm seeing is that the VLAN table feature lists as unsupported but all hardware off loading for vlan work i've seen requires some conf...
by markmcn
Tue Sep 20, 2016 9:36 am
Forum: General
Topic: RB2011 Port Bouncing
Replies: 12
Views: 1396

Re: RB2011 Port Bouncing

Agreed I'll open up to get balun part numbers and compare some evening
by markmcn
Mon Sep 19, 2016 9:06 pm
Forum: General
Topic: RB2011 Port Bouncing
Replies: 12
Views: 1396

Re: RB2011 Port Bouncing

I've relocated the NAS to connect to the 951G,
Interesting thing is that I've tried it with a few switches and the 2011 is the only device giving this issue.
One interesting point is that both the 951G & 2011 use the same switch chip for the gig ports (Atheros 8327)
Kind Regards
Mark
by markmcn
Sat Sep 17, 2016 10:22 pm
Forum: General
Topic: RB2011 Port Bouncing
Replies: 12
Views: 1396

Re: RB2011 Port Bouncing

Hi All,
Thanks for the info, Atleast I know I'm not the only one who has seen this issue.
For the record and so anyone else who is reading can reference the NAS i'm seeing this with is a Synology DS215j
Thanks
Mark
by markmcn
Thu Sep 15, 2016 10:10 pm
Forum: General
Topic: RB2011 Port Bouncing
Replies: 12
Views: 1396

RB2011 Port Bouncing

Hi All, I've just encountered a really strange issue with a Synology NAS and 3 RB2011 boards. On the Gig ports when I connect the NAS the port either keeps bouncing or is unusable due to FCS errors. I've changed the patch cable and same thing. If I change RB to only advertise 100Mbps Full Duplex the...
by markmcn
Sun Jul 24, 2016 10:44 pm
Forum: Announcements
Topic: v6.36 [current] is released!
Replies: 183
Views: 42145

Re: v6.36 [current] is released!

Any one seeing issues with Winbox disconnecting after a few minutes? I've been running Winbox 3.4 under Wine on linux without issue. I upgraded one router to 6.36 and now it just randomly disconnects after a few minutes. I've tried from a workstation and laptop both of which have no issues with winb...
by markmcn
Wed May 18, 2016 7:08 am
Forum: Forwarding Protocols
Topic: Routing Table Memory Usage
Replies: 2
Views: 1267

Routing Table Memory Usage

Hi, Can anyone provide an estimate of how much ram is used per perfix in a routing table on ROS. I'm not looking to be told "For the global routing table you need more than X" I am wondering about calculating it so if I know a client will see 10K prefixes I can estimate how much ram they need Thanks...
by markmcn
Wed Mar 02, 2016 6:22 pm
Forum: Forwarding Protocols
Topic: PPPoE & VRF
Replies: 4
Views: 2054

PPPoE & VRF

I'm planning on running multiple PPPoE connections from a RB to the same provider.
I wondering does router os support putting PPPoE client interfaces into a VRF?

Thanks in advance
Mark
by markmcn
Mon Jan 04, 2016 11:55 am
Forum: General
Topic: Did we loose IP cloud?
Replies: 155
Views: 26263

Re: Did we loose IP cloud?

Look the service is back after a weekend of radio silence from MT, simple answer is someone turned off the PC sitting under their desk that was running the service.normis has been kind enough to power it on first thing before he even had his coffee.
by markmcn
Tue Dec 22, 2015 11:05 am
Forum: General
Topic: DNS Settings DNS server behaviour
Replies: 4
Views: 633

Re: DNS Settings DNS server behaviour

http://forum.mikrotik.com/viewtopic.php?f=2&t=102511&p=509000&hilit=Dns+round+robin#p509059 And regarding how servers for queries are chosen that is correct - router will use 1 cache server and only if it starts to not respond will go to next entry and change only if current one is not responding. ...
by markmcn
Tue Dec 22, 2015 10:34 am
Forum: General
Topic: DNS Settings DNS server behaviour
Replies: 4
Views: 633

Re: DNS Settings DNS server behaviour

:( This is unfortunate behaviour. Thank you very much for sharing your findings. I just used the packet sniffer to capture traffic and pinged a few random hosts. So It sent all the requests to the first server on the list. So this is interesting that we are seeing different behaviour. I've emailed M...
by markmcn
Tue Dec 22, 2015 6:46 am
Forum: General
Topic: DNS Settings DNS server behaviour
Replies: 4
Views: 633

DNS Settings DNS server behaviour

Hi All, I'm wondering about the behaviour of Router OS when multiple DNS servers are listed under DNS settings. Are the servers always queried in the order listed? Or do they round robin? I want to point our MT's at a DNS server internally which has some internal domains, Currently there isn't a sec...
by markmcn
Wed Nov 04, 2015 1:31 am
Forum: General
Topic: IPSec Certs
Replies: 0
Views: 255

IPSec Certs

Hi All,
I'm just wondering if there is any special requirements when using openssl to requests and generate certs for ipsec.
Or is using something like
openssl x509 -req -days 365 -in server.csr -CA ca.crt -CAkey ca.key -set_serial n -out server.crt
ok ?

Thanks
Mark
by markmcn
Tue Oct 13, 2015 12:03 am
Forum: General
Topic: Certificate Issues
Replies: 1
Views: 439

Certificate Issues

Hi, I'm using ROS 6.32.2 and I'm having an issue with certificates on the RB. When I import the root cert of the CA it no longer shows shows as A for authority. But continues to show as T for trusted. When I test importing the same cert into Version 6.29 it seems to register as a root cert from a CA...
by markmcn
Fri Oct 09, 2015 1:07 am
Forum: General
Topic: SCEP
Replies: 1
Views: 628

SCEP

Hi Team,
Just wondering is there any progress on getting documentation for the SCEP feature? The wiki is very empty on the topic.

Also how can I get it to check a port other then 80 as I don't listen on 80 for SCEP requests!!

Thanks
Mark
by markmcn
Fri Oct 31, 2014 12:12 am
Forum: General
Topic: Feature request 802.1p
Replies: 1
Views: 943

Re: Feature request 802.1p

Hi
You can set the COS bit using mangle rules
Please take a look at http://wiki.mikrotik.com/wiki/Vlans_on_ ... nvironment
Bottom of the page gives an example
by markmcn
Sat Aug 30, 2014 12:15 am
Forum: General
Topic: Rb1100AHx2 - Metarouter
Replies: 2
Views: 778

Re: Rb1100AHx2 - Metarouter

Hi Janisk
Thanks for the reply have you any ETA on this feature?
Thanks
Mark
by markmcn
Fri Aug 22, 2014 3:46 am
Forum: General
Topic: Rb1100AHx2 - Metarouter
Replies: 2
Views: 778

Rb1100AHx2 - Metarouter

I know it has been discussed before but do MT even plan to bring Metarouter support to the X2 without having to go messing round changing it to a unicore kernel. If not it might be a nice Idea to release a unicore kernel upgrade package to allow users to simply upgrade and not have to go messing rou...
by markmcn
Sat Oct 26, 2013 2:30 pm
Forum: Wireless Networking
Topic: Antenna Polarity
Replies: 4
Views: 1141

Re: Antenna Polarity

ch0 is H
Hi InoX sorry for the delay
Thank you very much for taking the time to reply
and for pointing out it's not just a case of matching config sometimes it's not always mikrotik :)
by markmcn
Sun Oct 20, 2013 1:20 am
Forum: Wireless Networking
Topic: Antenna Polarity
Replies: 4
Views: 1141

Antenna Polarity

Hi All
Can someone please help
For the SXT & Sextant can someone please confirm which chain is which Polarity
I never know which chain is vert and which is horiz
Thanks
by markmcn
Sat Oct 05, 2013 3:53 am
Forum: General
Topic: WebProxy
Replies: 2
Views: 669

Re: WebProxy

Thanks for the reply sorry for the delay
by markmcn
Sat Oct 05, 2013 3:51 am
Forum: General
Topic: IPv6 NAT-PT
Replies: 4
Views: 2039

IPv6 NAT-PT

Hi Guys
Does anyone know if NAT-PT is supported for IPv6 as I'm mainly running a global subnet internal on my network and I would like to turn off internal v4
I can't find any mention of it but thought some of the guru's might know
Thanks
Mark
by markmcn
Sat Oct 05, 2013 3:35 am
Forum: General
Topic: IPSEC & Xauth & juniper
Replies: 1
Views: 1393

IPSEC & Xauth & juniper

Hi All I'm hoping you can help I'm trying to establish a vpn between a juniper and a MT I have a vpn account on the Juniper and it works with Shrew VPN client when I try to establish the following is logged by by ipsec debugging rules No SIG was passed, hybrid auth is enabled, but peer is no Xauth c...
by markmcn
Sun Sep 01, 2013 2:00 am
Forum: General
Topic: WebProxy
Replies: 2
Views: 669

WebProxy

Hi All I'm looking for input on the web proxy feature I'm looking to setup the web proxy feature however I don't want to limit it by IP address I'm wondering can you perform auth based on username & password either on a local user on the RB or even better still by using radius I'm not seeing any opt...
by markmcn
Sun Sep 01, 2013 12:28 am
Forum: General
Topic: Port Bonding
Replies: 0
Views: 613

Port Bonding

Hi Guys I'm not sure if this is the right are but here I go I'm looking at performing some bonding over EOIP tunnels The link needs to be a low bandwidth <3Mbps but solid link I was looking at using EOIP bonded in broadcast mode so even if one link fails there is no loss. However I'm wondering how d...
by markmcn
Sat Aug 31, 2013 1:57 pm
Forum: General
Topic: ROS6.2
Replies: 2
Views: 783

Re: ROS6.2

It's sad but i'm currently presenting a proposal to change out over 70 tik devices to a client, Proposing the edge max We were looking at upgrading all the tik's and staying tik however I can't see this happening at this stage. We have a few more clients who are looking for the same thing and it loo...
by markmcn
Thu Aug 29, 2013 5:32 am
Forum: General
Topic: ROS6.2
Replies: 2
Views: 783

ROS6.2

Hi All
I'm wondering if with the move to ROS 6 has there been any progress made with openvpn? I'm looking for UDP support like so many users of the MT routers. I've looked at it on the edgemax routers and have to say it's good.
Thanks All
by markmcn
Mon Jun 03, 2013 12:58 am
Forum: General
Topic: v6.0 released
Replies: 321
Views: 68308

Re: v6.0 released

Noticed the ping check on static routes didn't detect with the gateway went away I've sent this into support with the needed files anyone else seen this? I had a /30 on a point to point over a Cat5 and a static route pointing to the ip on the far end with ping set as the gateway check, However even ...
by markmcn
Sat Mar 30, 2013 12:59 am
Forum: Beginner Basics
Topic: NAT loopback for port mappings with in-interface=wan
Replies: 1
Views: 1931

Re: NAT loopback for port mappings with in-interface=wan

Hi
This should help you out with the Hairpin Nat
http://wiki.mikrotik.com/wiki/Hairpin_NAT
by markmcn
Fri Feb 01, 2013 10:52 pm
Forum: Wireless Networking
Topic: 5 Ghz P2P Link expected bandwith?
Replies: 21
Views: 3653

Re: 5 Ghz P2P Link expected bandwith?

We saw issues on a very short hop with a pair of RBSXT's if I recall correctly the way it was we got 80~90 Mbps UDP traffic however when it came to TCP traffic it topped out at 25 ~ 30 Mbps spent a while looking at this If I recall correctly it was down to queue size/type on the interface. If you ne...
by markmcn
Wed Jan 23, 2013 7:57 pm
Forum: General
Topic: IP IP Tunnel TX Errors
Replies: 0
Views: 506

IP IP Tunnel TX Errors

Hi Guys I have a number of sites joined over DSL with ipsec in transport mode and ipip tunnels over that and encrypted using ipsec policy and over this I run bgp and all is well however every now and then I see peer's drop and come back less then a minute later I am seeing TX Errors on the ipip tunn...
by markmcn
Sat Jan 19, 2013 4:12 am
Forum: General
Topic: v6 rc6 released
Replies: 215
Views: 62353

Re: v6 rc6 released

Just a small feature release that would be small but great to see in Version 6 and that is an addition to the fetch command. This would be to redirect the downloaded content to /dev/null rather then having to save it to flash. It would mean that like likes of dynamic update scripts wouldn't be flatt...
by markmcn
Sun Jan 13, 2013 2:40 am
Forum: RouterBOARD hardware
Topic: CLOUD CORE ROUTER
Replies: 1374
Views: 1015827

Re: CLOUD CORE ROUTER

I've been reading over the review of the CCR and i'm looking at the 16Core and wondering how stable are they on RC7? We have a need for a router to do alot of nat/conntracking and traffic shaping/Vpn's and it's a CCR or a 1100AH2. While the 1100 is a good device compared to the CCR specs are very di...
by markmcn
Sat Jan 12, 2013 1:14 am
Forum: Forwarding Protocols
Topic: BGP with 300k routes demo
Replies: 4
Views: 1349

Re: BGP with 300k routes demo

While essentially a lab setup i'm wondering what were system resources like with this?
by markmcn
Sun Dec 30, 2012 2:01 am
Forum: General
Topic: Traffic Shaping Multiple EOIP tunnels
Replies: 1
Views: 630

Traffic Shaping Multiple EOIP tunnels

Hi All I'm looking for some input here we have multiple eoip tunnels terminating on a RB and we currently have to have a different queue for each tunnel. I'm wondering is there a way to set a queue that has a template which run's a separate instance for each tunnel? IE set a queue with a 5MB limit a...
by markmcn
Mon Dec 17, 2012 1:49 am
Forum: Forwarding Protocols
Topic: why not add udp mode in openvpn?
Replies: 1
Views: 907

Re: why not add udp mode in openvpn?

This has been asked and sadly the dev team don't want to listen to the many many requests from end users for UDP support. I believe MNorris made a comment along the lines of the deve team didn't like the state of the code base ( I can't find the post but it's here on the fourm) I am a fan of MT and ...
by markmcn
Sun Dec 16, 2012 3:08 am
Forum: Forwarding Protocols
Topic: Filter Matching For RFC1918
Replies: 1
Views: 1174

Re: Filter Matching For RFC1918

Never mind asked and answered Sorry I finally found this reading the request for BGP features Here is the complete chin to only accept RF1918 addresses hope this helps someone else /routing filter add action=discard chain=RFC1918 comment="Discard Any Default Route" disabled=no invert-match=no prefix...
by markmcn
Sun Dec 16, 2012 2:52 am
Forum: Forwarding Protocols
Topic: Filter Matching For RFC1918
Replies: 1
Views: 1174

Filter Matching For RFC1918

Hi All I'm trying to write a filter chain while will act as an inbound policy for BGP peers to only accept routes in RFC 1918 space. I tried the following /routing filter add action=accept chain=RFC1918 comment="10.0.0.0 - 10.255.255.255" disabled=no invert-match=no prefix=\ 10.0.0.0/8 set-bgp-prepe...
by markmcn
Wed Jan 18, 2012 12:18 pm
Forum: General
Topic: mikrotik + managed switch 24p = 24p mikrotik ? :)
Replies: 4
Views: 1078

Re: mikrotik + managed switch 24p = 24p mikrotik ? :)

hi brosky you could do this, Add 23 Vlan's to the Tik and on the switch make port 2 an access port for vlan 2, port 3 an access port for vlan3 etc etc then trunk all the vlans to the tik. then add all the vlans to a bridge device/interface on the tik however this comes with a price being the CPU as ...
by markmcn
Wed Jan 18, 2012 12:10 pm
Forum: General
Topic: RBSXT PtP
Replies: 2
Views: 570

Re: RBSXT PtP

Hi rjscomms
Thanks for the reply I should've re-read the wiki sorry for asking a question which is documented.
i'm usually using the MT stuff just on wired stuff like the RB750
Many thanks for the help
by markmcn
Wed Jan 18, 2012 11:02 am
Forum: General
Topic: RBSXT PtP
Replies: 2
Views: 570

RBSXT PtP

Hi Guys, Can anyone tell me something i'm a bit stuck on, On the MT website the RBSXT is listed as "For Point-to-point with two SXT devices, or as a CPE device for point-to-multipoint." How do I do PtP when the device only comes with a Level3 license?? surely i need to be able to put one of the ends...
by markmcn
Tue Nov 15, 2011 1:09 pm
Forum: Beginner Basics
Topic: Site - Site
Replies: 10
Views: 1631

Re: Site - Site

Hi jtroybailey It's not that I find it confusing I just find it a pain in that it doesn't present a tunnel interface and as a result the traffic just seems to appear and disappear down this tunnel without any way of tracking it. Both end points have static IP addresses so i'm wondering are you sugge...
by markmcn
Tue Nov 15, 2011 12:15 pm
Forum: Beginner Basics
Topic: Site - Site
Replies: 10
Views: 1631

Re: Site - Site

Hi Fewi Thanks for the reply, RC4 is out based on what your telling me as this info needs to be secure. IPsec is whats currently there but I'd like to use Open VPN I've asked on a different thread why MT don't/won't support udp openvpn. Anyway looks like i'm stuck with IPSec the option of using othe...
by markmcn
Tue Nov 15, 2011 1:40 am
Forum: Beginner Basics
Topic: Site - Site
Replies: 10
Views: 1631

Site - Site

I'm looking at doing single site to multiple sites vpn for a client and I'm going using all MT stuff However I want to try and avoid IPSec as it's just a pain I find, It would be a alot easier work with if it presented as an interface the same as the other tunnels. Anyway I'm looking at all the opti...
by markmcn
Tue Nov 15, 2011 1:09 am
Forum: General
Topic: OpenVPN - TCP
Replies: 8
Views: 1916

OpenVPN - TCP

Hi All I'm kinda wondering does anyone know why MT only support OpenVPN in TCP mode? The reason I ask is this just results in double sliding window flow control and that is not ideal for some of my applications(Really lumpy connections resulting) and I'm having to use IPSec which is a pain for me. T...
by markmcn
Tue Jul 27, 2010 11:50 pm
Forum: General
Topic: Mikrotik Netcat
Replies: 5
Views: 2251

Re: Mikrotik Netcat

Thanks for the tip.
It really is a crying shame the mikrotik haven't put in a SixXS update client in RouterOS.
Looks like a lost cause.
Thank you for your help
by markmcn
Tue Jul 27, 2010 10:02 pm
Forum: General
Topic: Mikrotik Netcat
Replies: 5
Views: 2251

Re: Mikrotik Netcat

Hi Fewi, It's to do dynamic updates on a system that doesn't have a restful api. There is a linux script which i've been looking at and what they do is generate the correct string and use netcat to send the update. The netcat is performed as follows echo -n $string|cut -d ' ' -f 1`"|netcat -c -w 1 -...
by markmcn
Tue Jul 27, 2010 1:39 am
Forum: Scripting
Topic: Flash Friendly Fetch
Replies: 2
Views: 529

Re: Flash Friendly Fetch

Fewi thank you very much for the quick reply
by markmcn
Tue Jul 27, 2010 1:38 am
Forum: General
Topic: Mikrotik Netcat
Replies: 5
Views: 2251

Mikrotik Netcat

Hey
I'm wondering is there something similiar to netcat in router OS i'm trying to write an update script for a service.
Cheers
by markmcn
Tue Jul 27, 2010 12:34 am
Forum: Scripting
Topic: Flash Friendly Fetch
Replies: 2
Views: 529

Flash Friendly Fetch

Hi Guys N Gals I'm writing a script which will be running every few min on the Tik and i'm using the fetch command to get some info however i'm just wondering can I store the result to a variable rather then to the flash as I don't want to kill the flash contastantly rewriting. The result being kick...
by markmcn
Mon Jul 26, 2010 6:46 pm
Forum: Scripting
Topic: Functions in CMD Scripts
Replies: 21
Views: 28056

Re: Functions in CMD Scripts

dssmiktik i'm just wondering how much are you selling copies of that md5 calc script for?
by markmcn
Thu Jul 22, 2010 11:04 pm
Forum: General
Topic: MD5 in scripts
Replies: 3
Views: 537

Re: MD5 in scripts

fewi thanks for the reply however all the link you provided me with told me was that someone had written their own script for it! Hats off thats some work and that it ain't built it. However it doesn't help with getting the router to do md5 hashing or let us know if they plan on bringing this featur...
by markmcn
Thu Jul 22, 2010 2:24 am
Forum: General
Topic: MD5 in scripts
Replies: 3
Views: 537

MD5 in scripts

Hi Guys
I'm looking to calculate the MD5 of some variables in a script.
I can't seem to find any md5 command for routeros!!!
I'm running Version 4.10 on a RB750G
if this feature isn't in the os ver is there any plans to include in soon?
Thanks for your help
Mark