Community discussions

Search found 126 matches

by edmidor
Thu Mar 01, 2012 10:42 pm
Forum: Beginner Basics
Topic: HTB download queues in VoIP QoS examples
Replies: 1
Views: 717

HTB download queues in VoIP QoS examples

I've been looking through all the VoIP and non VoIP QoS examples here, and noticed interesting thing: For VoIP people tend to mangle in prerouting, and create both upload and download queue structure. Non-VoIP examples mangle in postrouting, and don't create download queues saying QoS on download is...
by edmidor
Thu Mar 01, 2012 7:04 pm
Forum: Beginner Basics
Topic: Working QoS configuration
Replies: 44
Views: 66860

Re: Working QoS configuration

How this config should be modified to give priority to packet order critical UDP connections, i.e. VoIP?
by edmidor
Sun Feb 26, 2012 11:31 pm
Forum: General
Topic: Migrating to Router on a stick
Replies: 2
Views: 731

Re: Migrating to Router on a stick

Already done that, thanks anyways. Managed to lock myself out of the router during first attempt - good I took a config backup :) As for why - to isolate VoIP adapters from broad- and multicast flying around; keep IP cameras on a separate firewalled subnet (they're exposed to outside when I port kno...
by edmidor
Thu Feb 23, 2012 6:26 am
Forum: General
Topic: Migrating to Router on a stick
Replies: 2
Views: 731

Migrating to Router on a stick

I used to have a simple "no VLAN" network: Router ==> Switch ==> all the rest I would like to migrate the entire thing to a router on a stick model. Since it's a live network, I fugured I'll migrate everything as is to a single VLAN, and once everything is stable I'll start adding VLANs and moving d...
by edmidor
Wed Feb 22, 2012 5:03 pm
Forum: Beginner Basics
Topic: Adding limited access AP - best way?
Replies: 2
Views: 495

Re: Adding limited access AP - best way?

Huh? NAT within LAN? Why?

If I plug it in as is I will be on the same ip range.

My question was whether I should set it up as a separate subnet or VLAN to ease its access control?

Send from Android phone
by edmidor
Wed Feb 22, 2012 6:45 am
Forum: Beginner Basics
Topic: Adding limited access AP - best way?
Replies: 2
Views: 495

Adding limited access AP - best way?

I currently have everything connected to a switch, linked to Mikrotik 450G - everything sees everything, no access limitations within LAN Now I need to add a new AP with limited access to a certain IPs, so I'm thinking to plug it into next free interface on the router to be able to apply Filter rule...
by edmidor
Sat Jun 04, 2011 4:52 am
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Re: Browser based port knocker

Thanks! Now when I'm connecting from outside everything is good. But when PC is connected via local WiFi, the applications setup to work via forwarded ports obviously can't connect, so I have to change settings to local URLs and ports. Is there any way to setup internal port forwarding from behind N...
by edmidor
Fri Jun 03, 2011 4:10 am
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Re: Browser based port knocker

Continuing on a paranoid note...

Is it possible to catch a scanning attempt - after X unsuccessful attempts block that IP for some time?
by edmidor
Sun Apr 17, 2011 4:05 am
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Re: Browser based port knocker

Yep, you're right - my misunderstanding

Thanks!!
by edmidor
Sun Apr 17, 2011 3:23 am
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Re: Browser based port knocker

Yep, that's what I thought :)

I was hesitating to permanently NAT this - it's kinda error prone - you open a permanent hole in firewall and put a temporary plug
by edmidor
Sun Apr 17, 2011 3:03 am
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Re: Browser based port knocker

Great, thanks! But how do I do conditional port forwarding? The presentation above and wiki page describe getting access to the router itself, not something behind it - so the decision happens in input chain. Port forwarding is a part of NAT settings, which happens before Filter where I can accept/r...
by edmidor
Sat Apr 16, 2011 11:00 pm
Forum: General
Topic: how to increase priority for VoIP packets
Replies: 4
Views: 2018

Re: how to increase priority for VoIP packets

PAP2T already marks its traffic with DSCP 26 and 46, no need in L7
by edmidor
Sat Apr 16, 2011 10:26 pm
Forum: Beginner Basics
Topic: Browser based port knocker
Replies: 11
Views: 1808

Browser based port knocker

I would like to setup a sort of port knocking to get temporary access to a particular box on my LAN (webcams streaming video and audio) from outside. The basic assumption is that I won't have any telnet/ssh or portknocker.exe client out there - only browser. I imagine a flow to be like that: - open ...
by edmidor
Tue Mar 08, 2011 2:54 pm
Forum: RouterBOARD hardware
Topic: Building office AP - antennas question
Replies: 5
Views: 604

Re: Building office AP - antennas question

Right, I guess my question is - do I really have to use 4 antennas for 2 cards?
Those off the shelf dual radio N routers usually have 2 or 3 rubber duckies...
by edmidor
Sat Mar 05, 2011 9:25 pm
Forum: RouterBOARD hardware
Topic: Building office AP - antennas question
Replies: 5
Views: 604

Building office AP - antennas question

My apologies for noob question, please help me to understand this first time I'm going to put together an access point for my little office - a routerboard with one G and one N card. Well, I looked at 411 series cases, they have holes for two antennas. But I have two cards - how can I squeeze all th...
by edmidor
Tue Nov 09, 2010 4:04 pm
Forum: Beginner Basics
Topic: How Queues are processed?
Replies: 48
Views: 4714

Re: How Queues are processed?

I have to confirm - it works when you do it as above. Since I moved to 450G I forgot about voip problems. On the other hand throttling presumes you know your max. The problem is that it always fluctuates, and if you set it to 450 (thinking you've got all 500), when it drops to 400 temporarily you go...
by edmidor
Thu Jun 24, 2010 3:42 am
Forum: General
Topic: API to control Filter/Mangle
Replies: 3
Views: 498

Re: API to control Filter/Mangle

Well, I suppose I could identify the filter record by # if it's at all possible.
All I need at this stage is enable/disable, but I can't find any example doing anything similar to that
by edmidor
Tue Jun 22, 2010 4:01 am
Forum: General
Topic: API to control Filter/Mangle
Replies: 3
Views: 498

API to control Filter/Mangle

Somehow I can't find how to enable/disable specific Filter/Mangle rules using API.
Is it possible?
by edmidor
Wed May 12, 2010 12:33 am
Forum: Beginner Basics
Topic: Outdoor wireless AP connection
Replies: 6
Views: 1934

Re: Outdoor wireless AP connection

Sergej, what is the right way to configure it with external AP connected to one of the Ether ports - i.e. not with a card in the router? Still WLAN interface, or just bridge with the ether port used by AP?

Also, if AP is to have its own subnet, should I put second DHCP server on that interface?
by edmidor
Tue May 11, 2010 11:48 pm
Forum: Beginner Basics
Topic: Ordering parts for access point - help needed
Replies: 12
Views: 1210

Re: Ordering parts for access point - help needed

Either one are not "just" GigE, they would be an overkill for what I need.

My concern is to buy and setup box with 10/100 ports just to find new GigE 411/433 in next month or two...
by edmidor
Tue May 11, 2010 11:42 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Sip Proxy With 2 fxo ports
Replies: 4
Views: 2792

Re: Sip Proxy With 2 fxo ports

I also believe such a box with FXO/FXS ports could be a huge hit for small business clientele.
I was looking for a convenient platform for my own project, but there's not much out there.
The only option I found is IP04
http://www.rowetel.com/ucasterisk/ip04.html
by edmidor
Tue May 11, 2010 4:58 pm
Forum: Beginner Basics
Topic: Ordering parts for access point - help needed
Replies: 12
Views: 1210

Re: Ordering parts for access point - help needed

Normis, can you hint if it's worth waiting for GigE 411/433?
I know you have nothing to announce yet :) but I'm asking for a hint, not an announcement
by edmidor
Tue May 11, 2010 2:25 pm
Forum: Beginner Basics
Topic: Ordering parts for access point - help needed
Replies: 12
Views: 1210

Re: Ordering parts for access point - help needed

the H model has a slightly better power output, however the MMCX connector is sturdier and holds better. If you don't intend to move it a lot, you can just take the R52Hn card, it's probably the best of the three. I saw one can't use it in 411 indoor case (overheating I guess). Is it correct? Can i...
by edmidor
Tue May 11, 2010 4:04 am
Forum: Beginner Basics
Topic: Outdoor wireless AP connection
Replies: 6
Views: 1934

Re: Outdoor wireless AP connection

I was going to do the same thing... but what's the point to create WLAN interface for external AP that router can't configure anyways? From router's perspective it's just another Ethernet device
by edmidor
Mon May 10, 2010 4:43 pm
Forum: Beginner Basics
Topic: Ordering parts for access point - help needed
Replies: 12
Views: 1210

Re: Ordering parts for access point - help needed

ok, great!

Now the radios, r52n vs r52Hn vs r52n-M - what's the difference, besides connectors? Which one is better choice for indoor AP?
by edmidor
Sat May 08, 2010 8:10 pm
Forum: RouterBOARD hardware
Topic: Ethernet port on rb411/rb433
Replies: 4
Views: 753

Re: Ethernet port on rb411/rb433

Citing from description of R52Hn:
High Performance (up to 300Mbps physical data rates and 200Mbps of actual user throughput)
I see people still reporting under 100mbps throughput regardless of the board - where's the bottleneck?
by edmidor
Sat May 08, 2010 5:00 pm
Forum: Beginner Basics
Topic: Ordering parts for access point - help needed
Replies: 12
Views: 1210

Ordering parts for access point - help needed

I'm building a shopping list for 411 or 433 based AP. Few silly questions... please help first time buyer :) 1. How many radios required for what they call "simultaneous dual-band AP"? One card can handle only one SSID, right? 2. How many antennas are required for those abgn R52... cards to operate ...
by edmidor
Fri May 07, 2010 5:54 pm
Forum: Wireless Networking
Topic: RB411 + R52n + 2 small omni antennas: no more than 81Mbps
Replies: 5
Views: 1100

Re: RB411 + R52n + 2 small omni antennas: no more than 81Mbp

What are the best real world numbers one can get on this hardware: for both connection and actual throughput?

P.S.
Found actual N throughput tests of mass-market routers... looks rather sad even for the better ones
http://www.smallnetbuilder.com/index.ph ... =&chart=71
by edmidor
Fri May 07, 2010 5:34 pm
Forum: RouterBOARD hardware
Topic: Ethernet port on rb411/rb433
Replies: 4
Views: 753

Re: Ethernet port on rb411/rb433

Could you elaborate?
If 411 used as AP, i.e. no NAT/firewall/QoS why can't it handle normal N rate in close range?
by edmidor
Fri May 07, 2010 4:40 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

Sounds interesting - how reliable is it? I'm just wondering what are advantage of rb433ah vs. RouterStation Pro that costs almost half of that? No RouterOS, but it's a mere AP, not a router... What I don't get is WTH MT doesn't put at least one GigE port on 411/433, it's 21st century unless I'm miss...
by edmidor
Fri May 07, 2010 6:42 am
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

if you want 1 radio: rb411AH + r52n
If you want two radio: rb433+ 2x r52n
They both have 10/100 port. I do realize that on long links it's totally adequate, but for in-house wifi I hoped to actually use N speeds. Is rb800 the only option that has miniPCI and can go beyond 100mbps?
by edmidor
Thu May 06, 2010 9:38 pm
Forum: RouterBOARD hardware
Topic: Ethernet port on rb411/rb433
Replies: 4
Views: 753

Ethernet port on rb411/rb433

Why most smaller miniPCI equipped routerboards have 10/100 Ethernet port?
Doesn't it limit their throughput when used with N cards?
by edmidor
Thu May 06, 2010 7:18 am
Forum: Wireless Networking
Topic: New setup: pigtails for RB411 + R52Hn etc
Replies: 1
Views: 914

New setup: pigtails for RB411 + R52Hn etc

It's my first time dealing with MT wireless, so please excuse my silly question. I'm ordering RB411 with R52Hn for office AP - antennas are to be mounted on the rb411 case. What antennas/pigtales/connectors should I order for best results? Pigtales with MMCX tend to be very long (~30cm), are they su...
by edmidor
Wed May 05, 2010 7:16 pm
Forum: Beginner Basics
Topic: MUM in Canada?
Replies: 2
Views: 472

Re: MUM in Canada?

May be building another large city? :)
by edmidor
Wed May 05, 2010 6:17 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

What about overheating issues on R52 cards?
by edmidor
Mon May 03, 2010 6:37 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

Sigh... This is yet another example of one user saying "it works just fine"; Normis saying "it should work"; and another user saying: Has anybody tested this with for example notebook clients? Because I have, and the results are poor. I am not debating about the power, but rather the wireless side. ...
by edmidor
Mon May 03, 2010 7:29 am
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

Is there any trick to make it running stable, or SR71 just do better job then R52 for "local" N connectivity?
by edmidor
Sat May 01, 2010 3:35 am
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

I use 802.11n all day, every day..
I use an atom based AP. (Blackbird) (shameless plug)
I run high output SR71-E cards..
What? Blackbird SR71? It makes one cool access point, isn't it?
http://en.wikipedia.org/wiki/SR-71_Blackbird
by edmidor
Wed Apr 28, 2010 6:45 pm
Forum: General
Topic: v3.27 bug: ssh port forwarding is not working
Replies: 76
Views: 12040

Re: v3.27 bug: ssh port forwarding is not working

v4.8 - and it's still not there, sigh...
by edmidor
Wed Apr 21, 2010 6:19 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

I was referring to the ongoing controversy in replies: unstable, slow, problematic vs. "no problems at all".
Is there any common patters of usage or config between those who said MT is unusable as office access point due to instability and other issues?
by edmidor
Wed Apr 21, 2010 5:52 am
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

Any of the RBs will work, if you're pushing GByte sized files then you may be better off using the H model boards they have faster CPU's.
Oh, that's confusing... So do we have N problems on routerboards, or any of RB will work?
by edmidor
Mon Apr 19, 2010 9:12 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

Hmm... So what do you guys use if MT doesn't work well?
I hardly believe everybody switched to DLink now...
by edmidor
Sun Apr 18, 2010 6:07 am
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Re: Best hardware options for office AP

It's office AP, does it need 2 radios?

Also, what are the issues with N in AP context?
by edmidor
Sat Apr 17, 2010 7:33 am
Forum: General
Topic: Global and interface queues - please help to understand
Replies: 8
Views: 1181

Re: Global and interface queues - please help to understand

But that implies I cannot restrict access from one machine to another within the same subnet, i.e. isolate 192.168.1.122 from the rest of 192.168.1.0/24; make sure it sees WAN but no other PCs. I thought it's possible - and if it is, the traffic must go through the router?
by edmidor
Sat Apr 17, 2010 6:23 am
Forum: General
Topic: Global and interface queues - please help to understand
Replies: 8
Views: 1181

Re: Global and interface queues - please help to understand

- Usual suggestion for simple QoS is upload queue on WAN interface, and download queue on LAN interface. But LAN interface handles both from-WAN AND local, within-LAN, traffic. Setting limit-at and max-limit parameters on LAN interface queue I intend to manage only from-WAN traffic - the actual dow...
by edmidor
Fri Apr 16, 2010 11:15 pm
Forum: RouterBOARD hardware
Topic: How RB800 compares against Cisco ASA5500?
Replies: 5
Views: 861

Re: How RB800 compares against Cisco ASA5500?

I meant advantages/disadvantages of having one or the other
by edmidor
Fri Apr 16, 2010 10:24 pm
Forum: RouterBOARD hardware
Topic: How RB800 compares against Cisco ASA5500?
Replies: 5
Views: 861

Re: How RB800 compares against Cisco ASA5500?

Not for me, but anyways - office router/firewall.
by edmidor
Fri Apr 16, 2010 6:53 pm
Forum: Wireless Networking
Topic: Best hardware options for office AP
Replies: 28
Views: 3133

Best hardware options for office AP

What is the current most recommended combination of routerboard and N wireless card(s) for office N access point?

No wireless links this time, rather a bunch of laptops with n cards; need as much throughput as possible, as we tend to copy large (GB) files quite often.
by edmidor
Fri Apr 16, 2010 4:56 pm
Forum: RouterBOARD hardware
Topic: RB750AR anytime soon ?
Replies: 28
Views: 5430

Re: RB750AR anytime soon ?

when?
by edmidor
Fri Apr 16, 2010 4:46 pm
Forum: RouterBOARD hardware
Topic: How RB800 compares against Cisco ASA5500?
Replies: 5
Views: 861

How RB800 compares against Cisco ASA5500?

How RB800 compares against Cisco ASA5500 10-user license?