General - Updated Linux kernel with better support for new SoCs (Celeron J1900 barely works), updated drivers, etc General - 64-bit x86 builds, it's 2014, going on 2015... no performance benefit to routing, but throw KVM users a bone KVM - USB passthrough, so guests can act as bridges for USB perip...
add option to ppp profile to call one script when client connects (post ip assignment) and another script when client disconnects, and pass all relevant information to script like username, service, caller id, assigned remote ipv4 address, assigned remote ipv6 address, uptime, total tx/rx bytes. int...
if mikrotik added these openvpn client features it would be able to connect to 99% of "standard" servers, no raw configuration needed: comp-lzo support some way to disable auth-user-pass (the servers i configure to have mikrotik clients must have a dummy auth script, what a joke!) tls-auth...
it is very easy to make mikrotik-compatible openvpn configurations on any operating system, so it is not a show-stopping issue there, just a little annoying. but the lack of udp openvpn support is a huge performance problem which cannot be worked around.
it took mikrotik support a month and two days to respond to my inquiry over another l2tp/ipsec issue (ticket #2011112966000166) so dont expect a quick response.
eastern european developers can be vengeful bunch... They may have no idea how angry future ex-consumers can cripple a business. well, we test software all the time that does not meet our specific needs (often for unintelligible reasons) and we move on since you cannot really make demands on anyone...
i can understand some routeros-specific openvpn oddities, like the use of auth-user-pass, since it allows openvpn to fit in with the rest of the system. but tcp-only mode for openvpn is a limitation that seems to be present for no reason at all. i think the mikrotik people became so angry with openv...
Between posting this thread and waiting for approval I did figure out how to redirect the DNS for a specific list of IPs 1 chain=dstnat action=dst-nat to-addresses=208.67.222.222 to-ports=53 protocol=udp src-address-list=child However now the objective is to default all clients to the "child&qu...
I would like to configure my device such that, by default, RouterOS forces/redirects all DNS connections directly to an external server (in this case, OpenDNS), but has a specifically defined list of MAC addresses exempt from this rule and are instead allowed access to the internal DNS relay or a DN...