Hi everyone.

Due to last OpenVPN problems I want to try Wireguard, you say it's so fast and simple. My ISP gives to me its own router with NAT. I can do DMZ for one desired local IP and put MikroTik just behind with proper input filter rules. Is the Wireguard gonna be working in my scenario ?

Well, I was using AES 256 CBC SHA1 for w long time with no issues on mikrotik routers, including this device. But, considering depreciated CBC cipher in OpenVPN Community and much much faster connection time using AES GCM, with ROS v7 I can use this cipher. As I already mentioned, I don't have probl...

Thank you for studying my firewall rules, appreciate for your changes. But.. the problem with VPN still remains, even without any rules it works the same way. I think it's some kind of bug regarding powerpc arch cpu or this particular model of routerboard. I also noticed, after connection I have DRH...

No problem, my NAT rules:

/ip firewall nat
add action=masquerade chain=srcnat comment=NAT ipsec-policy=out,none out-interface-list=WAN src-address=192.168.0.0/24

Why do you think my DNS rule is dangerous ?
It's not dst-port, but src-port, only incoming traffic is allowed.

Everything is the same, filter rules are also the same as in 6.49. actual input rules: add action=accept chain=input comment=ICMP in-interface-list=WAN protocol=icmp add action=accept chain=input comment=Winbox dst-port=8591 in-interface-list=WAN protocol=tcp src-address-list=Allowed_IPs add action=...

Can you add disable-dco To the client config? Added. Sat Jan 27 20:11:50 2024 OpenVPN 2.6.7 [git:v2.6.7/53c9033317b3b8fd] Windows [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Nov 8 2023 Sat Jan 27 20:11:50 2024 Windows version 10.0 (Windows 10 or greater), amd64 executable Sat Jan 27 ...

Hello! We use RB850Gx2, it's powerpc based cpu. While using ROS v6.4x we've had no problems with OpenVPN service. We were using AES-265-CBC with SHA1 auth. About 2 weeks ago I updated software to ROS 7.13.1. Now I use AES-256-GCM cipher, and get these errors in Windows OpenVPN Community: Sat Jan 27 ...

Hi! All v7 versions are affected. FTP passive mode not working. 6.49 is OK. hw: RB750Gr3 /ip firewall nat add action=dst-nat chain=dstnat dst-port=21 in-interface-list=WAN protocol=tcp src-address-list=FTP_IPs to-addresses=192.168.10.201 to-ports=21 works well on 6.49, does not on any v7 versions. /...

Hi!

I'd like to use User Manager to authenticate only PPPoE users in out local network. I'd like to be PPTP server users authenticated only via ppp secret section. Is it possible
to do in some way ? At the moment local and remote users are authenticated via RADIUS User Manager server. Please help ;-)

No, CRS is some kind of router, CSS is a real switch ;-) I think it should go better. I'll check cables for this dhcp issues. Thanx.

Hi! I have strange problem with this hardware, network traffic is really low, about 15 Mbps max, but CPU is sometimes 100% at 5Mbit/s. There is only simple configuration with one WAN connection and one lan bridge subnet and simple NAT. Fasttrack is on and not helping at all. The second question is a...

Finally up and running with RouterOS 7.0 beta3!

Hej guys, I have 750m PTP link to do and three small 230V wires by the road between these two points. Is it ok to use LHG60 kit ? I don't need 1Gbps throughput, 300Mbps will be ok. What about rain and snow, I want to sleep well

Hi, I want to make such configuration with CAPsMAN and have no clue why it is not working :-) There are 4 devices working as CAPs with no problem when I have master or master and slave configuration. Everything works fine. But, now I need to make device no. 2 and device no. 3 to go only for slave co...