Community discussions

MikroTik App

Search found 731 matches

by BrianHiggins
Mon Feb 19, 2024 6:08 pm
Forum: Virtualization
Topic: SR-IOV with CHR - What hypervisors are you using ?
Replies: 22
Views: 2072

Re: SR-IOV with CHR - What hypervisors are you using ?

Hyper-V Server 2019 is totally free and will continue to be supported under its lifecycle policy until January 2029, and fully supports SRV-IO.

Just one option. may not be the best one for you, but it does meet the stated requirements.
by BrianHiggins
Mon Feb 19, 2024 6:00 pm
Forum: Virtualization
Topic: CHR Hosted in Azure?
Replies: 9
Views: 731

Re: CHR Hosted in Azure?

No problems running V7 on Azure. I recommend using Bicep to streamline your CHR installations for easier deployment on Azure. Thanks, though I only need to spin up 1 CHR instance for this situation so automating deployment isn't a benefit here. Any help with a tested & reliable way to deploy v7...
by BrianHiggins
Sat Feb 17, 2024 4:51 pm
Forum: Virtualization
Topic: CHR Hosted in Azure?
Replies: 9
Views: 731

CHR Hosted in Azure?

Has anyone ever successfully gotten a CHR instance running reliably in MS Azure?

I've got a use case where it would be helpful to have, but a quick cursory search didn't show anything helpful.
by BrianHiggins
Fri Nov 17, 2023 7:12 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 87046

Re: v7.13beta [testing] is released!

I've read through everything (but have not installed 7.13 anywhere to test yet, probably will wait for 7.14 instead of trying something so fundamentally changed), but I'm very unclear on 2 things. 1) if I have a hAP AC2 or hAP AC3 router, and load the 7.13npk package on the router, the new wifi menu...
by BrianHiggins
Tue Nov 14, 2023 12:48 am
Forum: RouterBOARD hardware
Topic: RouterOS v7.6 in CCR1072
Replies: 19
Views: 5941

Re: RouterOS v7.6 in CCR1072

troubleshooting a performance problem with a customer's 1072 that only occurs when traffic is above ~450 Mbps, I came across this thread, and thought to check the RAM, and yup 11.8 GiB of reported ram... already working with support on the issue with an active ticket, and going to add this info to t...
by BrianHiggins
Mon Nov 13, 2023 8:14 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 87046

Re: v7.13beta [testing] is released!

Unfortunately, it is not possible. If you need both - use wireless.npk. If you are satisfied with using just 5 GHz, then wifi-qcom-ac will work for you. Functionality in wifi (old wifiwave2) that has been changed is described in the changelog. Still, wifi package does not include drivers for RB4011...
by BrianHiggins
Fri Nov 10, 2023 11:38 pm
Forum: General
Topic: What is going on with Mikrotik?
Replies: 10
Views: 1962

Re: What is going on with Mikrotik?

All devices are in stock at MikroTik. If "your country" has no stock, you should ask (not just refresh the webpage) your local distributor and they will order what you need been waiting a while for hAP AC3 routers which have been out of stock for a while here in the US, but it seems they ...
by BrianHiggins
Fri Nov 10, 2023 7:35 pm
Forum: General
Topic: CCR2004-16G-2S+ cold weather performance
Replies: 4
Views: 762

Re: CCR2004-16G-2S+ cold weather performance

No experience with running in those temps, but my biggest concern would be condensation. Electronics rarely hate being cold, but condensation can destroy them.
by BrianHiggins
Wed Oct 18, 2023 12:23 am
Forum: General
Topic: PPPoE upload speed problem
Replies: 19
Views: 5555

Re: PPPoE upload speed problem

I've seen issue with speedtest results and SFQ queues, basically the way the SFQ buffers it causes the speedtest to slowly ramp up over several seconds and falsely reports a really low number, yet if you were able to run a sustained transfer it would far exceed the reported speedtest number. FQCodel...
by BrianHiggins
Wed Oct 18, 2023 12:02 am
Forum: General
Topic: Zero touch provision
Replies: 7
Views: 1398

Re: Zero touch provision

It requires a lot of prep and additional components.... without divulging our proprietary process details, you need to have something running to monitor when new devices are connected to the network, and then programmatically log into that device and load a configuration onto it using your preferred...
by BrianHiggins
Wed Sep 20, 2023 12:59 am
Forum: General
Topic: How visualize TCP/UDP traffic from IP/port range ?
Replies: 2
Views: 387

Re: How visualize TCP/UDP traffic from IP/port range ?

you can log the traffic from the NAT rule and see in the log what it is doing.
by BrianHiggins
Fri Sep 15, 2023 9:16 pm
Forum: General
Topic: RoMON through Dell Switch
Replies: 5
Views: 746

Re: RoMON through Dell Switch

Odd. I have similar problem, also Dell. EOIP tunnel across the switch solved it for me. But that same switch ( out of my control) doesn't allow VLAN. And for that part I'm still stuck. Maybe I'll start a new topic for it so I don't hijack this one :lol: If managed, VLANs must be defined to allow th...
by BrianHiggins
Fri Sep 15, 2023 8:38 pm
Forum: General
Topic: RoMON through Dell Switch
Replies: 5
Views: 746

Re: RoMON through Dell Switch

yeah, I saw a similar issue on UBNT gear, and I've tried messing with the ACL to ensure 0x88bf is allowed but I haven't had any success yet. Was hoping someone had already solved the issue before since I'm stumped.
by BrianHiggins
Fri Sep 15, 2023 7:30 pm
Forum: General
Topic: RoMON through Dell Switch
Replies: 5
Views: 746

RoMON through Dell Switch

I've got a scenario with multiple MT devices on a network, RoMON is setup and working, but fails to discover any devices that are connected through a stack of managed Dell N1548 switches. The devices are reachable via mac-telnet and other devices show up as discoverable via RoMON that are connected ...
by BrianHiggins
Fri Sep 15, 2023 7:03 pm
Forum: General
Topic: Branding WebFig ROS7 [SOLVED]
Replies: 4
Views: 957

Re: Branding WebFig ROS7

hadn't noticed that myself, but have the exact same CSS code in my index2.html files. perhaps the % needs to be escaped? I don't have the right equipment hooked up at the moment to do any testing on it, but I'm curious to see what you find. Might need to update our login page in the future in the ne...
by BrianHiggins
Thu Sep 14, 2023 1:46 am
Forum: Announcements
Topic: Newsletter #114 | September 2023
Replies: 72
Views: 13194

Re: Newsletter #114 | September 2023

However, ubiquiti may have offered up an alternative solution already that I would love to see a mikrotik version of. The Instant AF outdoor adapter. takes standard PoE and coverts it down to 24V for their radios. I would love to see a mikrotik outdoor af/at/be adapter to 26-27v and then a full con...
by BrianHiggins
Thu Sep 14, 2023 1:39 am
Forum: Announcements
Topic: Newsletter #114 | September 2023
Replies: 72
Views: 13194

Re: Newsletter #114 | September 2023

biggest wish, get rid of 24v PoE on consumer devices, replace it with standard 48v PoE That's not a mikrotik feature and I do not want mikrotik trying to push that because radios are the determining factor, switches should follow the market not try to fix the market. That's absolute BS. The "m...
by BrianHiggins
Tue Sep 12, 2023 8:28 pm
Forum: Announcements
Topic: Newsletter #114 | September 2023
Replies: 72
Views: 13194

Re: Newsletter #114 | September 2023

biggest wish, get rid of 24v PoE on consumer devices, replace it with standard 48v PoE
by BrianHiggins
Tue Sep 05, 2023 9:59 pm
Forum: Announcements
Topic: MikroTik Devices Controller
Replies: 332
Views: 233035

Re: MikroTik Devices Controller

Maybe not a solution for all situations, but the solution that I'd most like to see implemented is a method of central configuration of CAPs Provisioning, specifically one that does NOT rely on a RouterOS device to control the provisioning rules, where we can essentially deploy a CAPsMAN server the ...
by BrianHiggins
Wed Aug 23, 2023 4:46 pm
Forum: General
Topic: Windows clients (10/11) authentication with Mikrotik Radius
Replies: 2
Views: 1127

Re: Windows clients (10/11) authentication with Mikrotic Radius

Was about to write and say it's not possible for windows to do that, but I was curious if there was any such way to do that and so I did some searching, and found this: http://pgina.org/ In no way is that an endorsement or even a suggestion to use it, I actually think it's a recipe for disaster and ...
by BrianHiggins
Wed Aug 23, 2023 4:26 pm
Forum: General
Topic: New RouterOS theme
Replies: 21
Views: 3985

Re: New RouterOS theme

as a service provider that restricts / hides most of the webfig functionality via skins to present the users only the functionality they are needed / authorized to access, the new UI is a nice upgrade. I'm looking forward to hearing the feedback when we move our CPEs from v6 to v7, the devices that ...
by BrianHiggins
Tue Aug 22, 2023 11:50 pm
Forum: General
Topic: RouterOS 7.11 - kid control not working? [SOLVED]
Replies: 8
Views: 4534

Re: RouterOS 7.1.1 - kid control not working? [SOLVED]

which is it, 7.1.1 is NOT 7.11 there's almost 2 years worth of difference between the two...
by BrianHiggins
Tue Aug 22, 2023 10:34 pm
Forum: General
Topic: MikroTik Pro (for Android)
Replies: 13
Views: 2585

Re: MikroTik Pro (for Android) v1.3.28

In the past I've seen cases where detect internet pulls it's own DHCP lease, which can cause all sorts of momentary problems, it's been disabled on all devices we support for several years so not sure if the behavior is any different today.
by BrianHiggins
Tue Aug 22, 2023 7:23 pm
Forum: General
Topic: RFC8910 Captive Portal
Replies: 20
Views: 6134

Re: RFC8910 Captive Portal

I think @normis thinks it works... because /ip/hotspot does in fact work correctly in V7. I would be more surprised if it didn't work than hearing it does work. It's a pretty simple function to implement there really isn't much to it code wise, I wrote the whole functionality to support it for our ...
by BrianHiggins
Tue Aug 22, 2023 7:05 pm
Forum: General
Topic: RouterOS 7.11 - kid control not working? [SOLVED]
Replies: 8
Views: 4534

Re: RouterOS 7.1.1 - kid control not working? [SOLVED]

Here's the list of what's been fixed since 7.1.1 was released on 2021-Dec-21. Perhaps try reading through the list to see if it's mentioned, or just skip the reading and go straight to updating to a newer version... What's new in 7.11 (2023-Aug-15 09:33): *) api - disallow executing commands without...
by BrianHiggins
Tue Aug 22, 2023 6:14 pm
Forum: General
Topic: RFC8910 Captive Portal
Replies: 20
Views: 6134

Re: RFC8910 Captive Portal

The webserver response content type must be set to Content-Type: application/captive+json in order for clients to accept & act on the values. But to be clear, content type is actually set when using /ip/hotspot AFAIK. To @normis point, I tested /ip/hotspot docs a few a months ago actually, and ...
by BrianHiggins
Tue Aug 22, 2023 6:09 pm
Forum: General
Topic: MT Home app permission problem
Replies: 0
Views: 1059

MT Home app permission problem

It's been requested before and Normis even agreed that it was an oversight / mistake that needed to be fixed, but I'd like to bring it up again since it appears nothing has been fixed yet and it's been a year or more since I last saw any discussion on it. The MikroTik Home app requires winbox permis...
by BrianHiggins
Tue Aug 22, 2023 5:51 pm
Forum: General
Topic: RFC8910 Captive Portal
Replies: 20
Views: 6134

Re: RFC8910 Captive Portal

I'm not sure Windows respects the DHCP Option 114 / RFC-7110 / RFC-8910 scheme in the first place – Mikrotik can't change that ;) confirmed it does not. Also, for anyone trying to replicate this by uploading a text file to a webserver with the appropriate JSON string, that will not work. The webser...
by BrianHiggins
Tue Aug 22, 2023 12:58 am
Forum: Scripting
Topic: Layer 2 connection via Script or API
Replies: 8
Views: 2294

Re: Layer 2 connection via Script or API

Yeah /tool/romon/ssh has NO password= – apparently that has to be provided interactively – annoying... So it doesn't work via script either & if not attribute on CLI, would not be in API. yup, when I saw the news about :put [:typeof (>[])] I was hoping that might somehow be used to get around t...
by BrianHiggins
Mon Aug 21, 2023 11:30 pm
Forum: Scripting
Topic: Layer 2 connection via Script or API
Replies: 8
Views: 2294

Re: Layer 2 connection via Script or API

AH... What I didn't know is there is actually a "/tool/romon/ssh" today. Learn something new. RoMON is kinda last resort, so I've always done it "manually" – didn't know it even be scriptable. Now I get it. You're saying that isn't in the API, but in CLI. Well, that sounds like ...
by BrianHiggins
Mon Aug 21, 2023 10:41 pm
Forum: Scripting
Topic: Layer 2 connection via Script or API
Replies: 8
Views: 2294

Re: Layer 2 connection via Script or API

sorry, you misunderstand or maybe I didn't explain clearly. I'm connected via the API to one device that's on the same layer2 network as the 2nd device. I need to execute a command from there on the 2nd device that's reachable via layer2 only. In this example it's just setting the system identity (a...
by BrianHiggins
Mon Aug 21, 2023 10:06 pm
Forum: General
Topic: Resetting a "branded" board
Replies: 15
Views: 3770

Re: Resetting a "branded" board

officially there is only netinstall, but in the event downgrading to 6.45.8 is possible, I've found that almost always does the trick. When testing various upgrade paths and upgrade scripts it's often required for us to remove a "test" branding config and revert back to an older version, I...
by BrianHiggins
Mon Aug 21, 2023 6:15 pm
Forum: Scripting
Topic: Layer 2 connection via Script or API
Replies: 8
Views: 2294

Re: Layer 2 connection via Script or API

Couldn't use the API to temporarily adjust the firewall to allow winbox temporarily via WAN (e.g. /firewall/filter/add port=8291 insert-before=0...), so you can use RoMON via the first router's IP? RoMON's first hop can be IP, and that router will proxy via RoMON via layer-2. But the 2nd hop/L2-onl...
by BrianHiggins
Mon Aug 21, 2023 6:09 pm
Forum: General
Topic: A very simple redirect (to an http page) after join WiFi
Replies: 38
Views: 5908

Re: A very simple redirect (to an http page) after join WiFi

So for an ISP, they likely have a billing system, which likely has a secure web server to use to serve the JSON needed to "warn" as user – assuming preexisting config that use Option 114 in CPEs to check a URL in a billing system's web server. While not 100%, likely be useful to direct a ...
by BrianHiggins
Sat Aug 19, 2023 4:33 am
Forum: General
Topic: A very simple redirect (to an http page) after join WiFi
Replies: 38
Views: 5908

Re: A very simple redirect (to an http page) after join WiFi

This would be nice as an ISP to be able to push this DHCP option to managed routers, having them redirect to a server on the network that reminds them they are overdue on payment Just did exactly that, tested and deployed the entire solution in 1 day and released live to update the config on every ...
by BrianHiggins
Thu Aug 17, 2023 8:33 pm
Forum: General
Topic: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.
Replies: 35
Views: 5488

Re: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.

Most of my devices use RADIUS to authenticate users, so they never exist in /users, so..... Not sure. BUT...I'd bet the RADIUS users still show up in /user/active & if you disable them in RADIUS while winbox is still open, they'd have access until winbox was closed. they certainly do show up in...
by BrianHiggins
Thu Aug 17, 2023 7:13 pm
Forum: General
Topic: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.
Replies: 35
Views: 5488

Re: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.

I wrote a small script that detect logged in users that do not exist in /users:
Most of my devices use RADIUS to authenticate users, so they never exist in /users, so.....
by BrianHiggins
Thu Aug 17, 2023 7:02 pm
Forum: General
Topic: Option to duplicate rule....
Replies: 16
Views: 7910

Re: Option to duplicate rule....

and then possibly winbox can be dropped.
you couldn't pry winbox from my cold dead hands, don't even try, I've killed people for less.

/s (sorta)
by BrianHiggins
Thu Aug 17, 2023 6:57 pm
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

Re: VLAN Trunking

We also had a farm in South Woodbury Vermont. Maybe we are related LOL.
I grew up in in midwest, moved here in 2008 so I'd say chances of that are pretty small, but I do love Vermont what a beautiful place to visit!
by BrianHiggins
Thu Aug 17, 2023 6:20 pm
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

Re: VLAN Trunking

Good points, if one is simply flowing data from an existing vlan into the device and out one of the ports, the bridge is not tagged just the interfaces involved tagged coming in and either tagged or untagged on the way out depending. The only vlan that needs to be identifed in /interface vlan and t...
by BrianHiggins
Thu Aug 17, 2023 6:01 pm
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

Re: VLAN Trunking

Yes, In this case the router is not supposed to interact with VLAN100, just simply pass the tagged VLAN packets between the ports. If that the case, you're right, your bridge called "LAN" shouldn't be tagged=... I'd presume there is NOT a /interface/vlan with vlan-id=100 — as that wouldn'...
by BrianHiggins
Wed Aug 16, 2023 2:07 am
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

Re: VLAN Trunking

!/2 the equation, you need to show the /ip interface bridge add bridge=LAN ingress-filtering=yes frame-types=admit-only-vlan-tagged interface=ethernet3 add bridge=LAN ingress-filtering=yes frame-types=admit-only-vlan-tagged interface=ethernet5 Not trying add multiple bridges.... By the way using wo...
by BrianHiggins
Wed Aug 16, 2023 1:58 am
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

Re: VLAN Trunking

This was the config I found /interface bridge vlan add bridge=LAN tagged=LAN,ether3,ether5 vlan-ids=100 Inclusion of bridge port to the list of ports members of certain VLAN allows device (router) to interact with said VLAN. As bridge port is configured as tagged member of VLAN 100, a vlan interfac...
by BrianHiggins
Tue Aug 15, 2023 10:03 pm
Forum: Scripting
Topic: Layer 2 connection via Script or API
Replies: 8
Views: 2294

Layer 2 connection via Script or API

Hoping that someone here has an idea how to accomplish something, because so far I have not. I need to connect to a MT device that sits behind another MT router, and my options are limited only to layer 2 protocols, aka RoMon or Mac-Telnet, connections via IP are not possible. The challenge is that ...
by BrianHiggins
Tue Aug 15, 2023 9:21 pm
Forum: General
Topic: VLAN Trunking
Replies: 10
Views: 1219

VLAN Trunking

Update - I was able to run some test configs yesterday and verified the addition of the bridge name in the tagged list didn't seemingly do anything, and best I could tell had no effect on any traffic whatsoever, so it's being removed from the production config during the next maintenance window. I ...
by BrianHiggins
Wed Aug 09, 2023 1:06 am
Forum: Scripting
Topic: Using [find] with the API [SOLVED]
Replies: 10
Views: 2870

Re: Using [find] with the API [SOLVED]

/interface/ethernet/print does not give speed for me. It looks like it did back in ROS6 but not in ROS7. On a slightly related note, I'm assuming you're using proplist because it helps performance in some way? I've just been getting all the results back and then getting the information I need. The ...
by BrianHiggins
Tue Aug 08, 2023 6:13 pm
Forum: Scripting
Topic: Using [find] with the API [SOLVED]
Replies: 10
Views: 2870

Re: Using [find] with the API [SOLVED]

If you mean get the current utilization speed you need to use the following: /interface/monitor-traffic =once= =interface=ether1 =.proplist=rx-bits-per-second,tx-bits-per-second,name I'm unaware of any other method that works via the API to get current utilization rate, and it only retrieves one int...
by BrianHiggins
Fri Aug 04, 2023 11:25 pm
Forum: Scripting
Topic: Unexplained Fetch Error
Replies: 5
Views: 2125

Re: Unexplained Fetch Error

And you can't use ramdisk (or perhaps /task) either in V7 to apply @rextended's file approach without adding writes.... (Now I've never run into flash issues but...I don't provoke them either & imagine specific hardware may be better/worse with flash durability ) I'm still suspicious of DNS - e...
by BrianHiggins
Fri Aug 04, 2023 7:02 pm
Forum: Scripting
Topic: Unexplained Fetch Error
Replies: 5
Views: 2125

Re: Unexplained Fetch Error

Yeah, you lose the HTTP return code in on-error={} – makes it tough... My initial thought was if URL was interpolated from other variables, perhaps something needs some additional escaping (like a device name etc), or some part of URL resulted in a nothing/nil. Lot can go wrong when building a stri...
by BrianHiggins
Fri Aug 04, 2023 3:19 am
Forum: Scripting
Topic: Unexplained Fetch Error
Replies: 5
Views: 2125

Unexplained Fetch Error

I've got a strange script issue I can't figure out. I have got a few thousand devices running an identical script, 99% of them are running normal, but about 20 of them are erroring out and not completing the script. These 20 devices are showing "Unable to connect to service" in the log, an...
by BrianHiggins
Mon Jul 31, 2023 6:55 pm
Forum: Scripting
Topic: Persistent Environment Variables [SOLVED]
Replies: 50
Views: 36429

Re: Persistent Environment Variables [SOLVED]

I found another lost data type: :put [:typeof (>[])] Return: op this data type behaves like code Anyway to use this data type to write a script that uses mac-telnet to log into another device by MAC address and execute a command? :?: Something I've been struggling with since there seems to be no wa...
by BrianHiggins
Mon May 15, 2023 6:54 pm
Forum: General
Topic: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date] or other date(s)
Replies: 63
Views: 12792

Re: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date] or other date(s)

[…] but more the vast number of copy/paste programmers that have tinkered a script that works and suddenly it breaks when upgrading. […] You always manage to give me that point of view that I miss, Thank you. it's also easy to update one or two devices, when you've got scripts baked into default se...
by BrianHiggins
Mon May 15, 2023 6:40 pm
Forum: Wireless Networking
Topic: USB WiFi adapter?
Replies: 11
Views: 2466

Re: USB WiFi adapter?

Got to test this over the weekend and it was a success. However it only worked after setting disable-running-check=yes on the master and I had to run the AP on the master and the station on the virtual. Just to see how things worked I also tried configuring it with master=station and virtual=ap, but...
by BrianHiggins
Fri May 12, 2023 9:24 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

Hope someone is sending out the "40mbit intolerant bit", with all those 40MHz wide channels (Ce) . 28dBm is indeed possible for FCC (US), not for ETSI (EU). All together in channel 1 and 6 (40 mbit wide) , no one in channel 11 ? How does one count/deal the weak (<-86dBm) signal? The noise...
by BrianHiggins
Fri May 12, 2023 7:54 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

I see maybe 3 other APs in my apartment. It does depend on the country, on where you are (private homes will see even less interference, compared to small apartments in densely packed buildings). (We had DSL in previous generation of population :D I remember DSL 20 years ago, but younger people hav...
by BrianHiggins
Fri May 12, 2023 5:44 am
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

@normis didn't claim it was trying to compete with the "consumer" line. I am sure the case on the L009 is much more expensive to make than the hap cases. My take is these are aimed at lab situations, and for that use case, they may make sense. In an open desktop rack, the wifi could even ...
by BrianHiggins
Thu May 11, 2023 11:59 pm
Forum: General
Topic: RouterOS 7.1.5. "long-term": dead end?
Replies: 74
Views: 10032

Re: RouterOS 7.1.5. "long-term": dead end?

As you yourself wrote, v7 isn't stable yet (because it lacks functionality) so it can't be made LTS. And you yourself wrote there's hardware that requires v7. Combine that with some of ROS paramounts (same feature set on all devices, same ROS version for all devices) and it's clear that what you're...
by BrianHiggins
Thu May 11, 2023 11:07 pm
Forum: Wireless Networking
Topic: USB WiFi adapter?
Replies: 11
Views: 2466

Re: USB WiFi adapter?

excellent, It'll be a week or so before I'm back there to try this, but this looks promising, all these years I've thought the virtual interfaces had to be mode=ap, and also the master interface as well....

Thanks!
by BrianHiggins
Thu May 11, 2023 5:50 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

at first expected to see it as a worthy representative of 2011-3011-4011-5009 Latvian Muscle legendary Router Family when it is far from it We already have the rb4011 and rb5009 Yes, like you say, we already have RB4011 and RB5009. This is at the other end of the line up (the LOW COST model in simi...
by BrianHiggins
Thu May 11, 2023 12:42 am
Forum: Wireless Networking
Topic: USB WiFi adapter?
Replies: 11
Views: 2466

Re: USB WiFi adapter?

Virtual wlan on itf 1 ? Done it enough with map lite. Uplink in station mode and personal wifi via virtual as slave ap on same wifi itf. Caveat: virtual wil only work when uplink has connection. Also, don't expect to set any speed records :lol: But it works. Wait, you can run a virtual AP in mode=A...
by BrianHiggins
Thu May 11, 2023 12:31 am
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 53733

Re: v7.9 [stable] is released!

Many of the bugs fixed in version 7.9 have been introduced in the 7.8 beta. And many errors seem to occur randomly. This is a sign of bad programming: before 'fixing' old bugs, you should review your development team. which is why us old timers used to love the long term release tree, but now that ...
by BrianHiggins
Thu May 11, 2023 12:14 am
Forum: General
Topic: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date] or other date(s)
Replies: 63
Views: 12792

Re: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date] or other date(s)

NO, it's better to "fix" the scripts (very easy) than revert to the previous shitty format Breaking script compatibility in the middle of a major revision is not a trivial task and should be taken very seriously. It may not be a significant concern for a garage-based company full of hacke...
by BrianHiggins
Wed May 10, 2023 6:41 pm
Forum: General
Topic: Woobm-USB
Replies: 1
Views: 337

Woobm-USB

Is anyone still using these? I've got one that I pull out now and then when I'm having trouble getting connected to a router, except for the last several years it has not once successfully launched the terminal window on any computer I've tried to connect to it such that I can actually send commands...
by BrianHiggins
Wed May 10, 2023 6:34 pm
Forum: Wireless Networking
Topic: USB WiFi adapter?
Replies: 11
Views: 2466

USB WiFi adapter?

I have very unique installation situation where I have a single hAP AC Lite (RB952Ui-5ac2nD-TC-US) that's configured with wlan1 as an uplink (mode=station) and wlan2 as the AP. Everything works great, except I also need to be able to connect a single 2.4GHz only client device to the network but my u...
by BrianHiggins
Wed May 10, 2023 5:54 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

This is not a "new top of the line wireless AP". For that we have hAP and Chateau and other series of devices. Chateau AFAIK is only available with LTE (unnecessary cost for our use case), and has 5 ethernet ports. All models in the hAP line only have 4 or 5 ethernet ports. Once you plug ...
by BrianHiggins
Wed May 10, 2023 5:34 pm
Forum: General
Topic: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date] or other date(s)
Replies: 63
Views: 12792

Re: ⚠️WARNING: RouterOS v7.10+ will break all scripts based on [/system clock get date]

/system clock set format=<VALUE> format can be yyyy-MM-dd or mmm/dd/yyyy, the default is yyyy-MM-dd absolutely fully and wholeheartedly agree 100% with this idea. this is the only way it should be done, and then ALL date/time fields in ROS, terminal winbox and webfig, should be displayed using this...
by BrianHiggins
Wed May 10, 2023 5:27 pm
Forum: Beginner Basics
Topic: Quick setup “Home AP Dual” question
Replies: 7
Views: 659

Re: Quick setup “Home AP Dual” question

One thing I did not write correctly, Guest mode right now denies communication between connected Wireless users. So there is at least that level of security. I believe what he was saying is that Guest mode should include a rule that denies all traffic !out-interface=wan, and also in-interface=lan &...
by BrianHiggins
Tue May 09, 2023 7:42 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 41914

Re: Newsletter #113 | May 2023

Any plans for a future dual band version of the L009? 2.4 only makes this of limited value, with 5 GHz it would be a quite attractive offering.
by BrianHiggins
Mon May 08, 2023 11:05 pm
Forum: General
Topic: Radius client not sending any packets to server
Replies: 1
Views: 423

Re: Radius client not sending any packets to server

I'm not sure if it is still a thing, but years ago when you first setup a RADIUS client for VPN or PPP you then had to reboot the MT router before it would begin to send the requests. Have not tested that particular requirement in several years, but I believe at least as recently as 6.45 it was stil...
by BrianHiggins
Mon May 08, 2023 10:57 pm
Forum: SwOS
Topic: feature request - https for webui
Replies: 31
Views: 13438

Re: feature request - https for webui

FYI, I very recently participated in a PCI compliance audit for someone, and in order for their business to continue to process customer credit cards, all web managed network devices on their LAN, like switches, are required to restrict web management to HTTPS only (and any use of telnet to manage a...
by BrianHiggins
Mon May 08, 2023 10:46 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 53733

Re: v7.9 [stable] is released!

Last week I had a site with a CCR1036-12G-4S, running nearly identical config to well over a dozen other sites with that same model router, all running v7.7. It recently started to experience kernel failures and spontaneous reboots with uptime rarely lasting 24 hours. We first tried swapping out for...
by BrianHiggins
Mon May 08, 2023 10:34 pm
Forum: General
Topic: WinBox - configuration option for download folder on the PC [SOLVED]
Replies: 4
Views: 626

Re: WinBox - configuration option for download folder on the PC [SOLVED]

Hello, is there a possibility to configure where the WinBox would download the files from the router for example when downloading via Windows / File list / File? Currently it just brings a window with Desktop, <Windows username>, This PC, Libraries and Network... and I always have to click through ...
by BrianHiggins
Mon May 08, 2023 10:17 pm
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 11549

Re: Newsletter #112 | April 2023

Using the MAC address as password is a bad idea. 1) One can find out the maker of the router, just looking at the MAC Address (they are tight controlled, and every business receives a block of them to use). 2) Knowing this, it would be easy to create a worm/virus/exploit to infect the user's comput...
by BrianHiggins
Fri May 05, 2023 7:47 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 53733

Re: v7.9 [stable] is released!

In my setup I have /system logging action add name=System target=memory /system logging add action=System topics=interface /system logging add action=System topics=system,!account /system logging add action=System topics=health After upgrading a device from 7.7 to 7.9 last night these settings were ...
by BrianHiggins
Wed May 03, 2023 5:38 pm
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

confirming that this bug requiring sensitive is still present in winbox 3.38 and v7.9 stable, and skins files created in webfig that works perfectly in webfig can still cause winbox to crash. ticket SUP-115140 Ya they wanted to close my ticket pretty quickly after saying they release this winbox js...
by BrianHiggins
Wed May 03, 2023 4:30 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 53733

Re: v7.9 [stable] is released!

Why? Genuinely curious as to why anyone would use WebFig over Winbox if they have the option to use Winbox. Winbox needs to be installed, WebFig is available using pre-installed browser. So why even bother with Winbox ? There's no installer, it's just a stand alone executable you can run from anywh...
by BrianHiggins
Wed May 03, 2023 1:25 am
Forum: RouterBOARD hardware
Topic: New Hardware SPOILER!!! [RB L009UiGS-2HaxD] [SOLVED]
Replies: 48
Views: 13016

Re: New Hardware SPOILER!!! [RB L009UiGS-2HaxD] [SOLVED]

Love the form factor and price, but need dual band 2 & 5Ghz and, probably more CPU if it's only 4x faster than the 2011. 2011 and the similarly CPU powered hAP AC Lite would reliably max out around 75Mbps using PPPoE for the WAN. One of these priced around $130 US that had dual band WiFi, and ha...
by BrianHiggins
Wed May 03, 2023 12:58 am
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

confirming that this bug requiring sensitive is still present in winbox 3.38 and v7.9 stable, and skins files created in webfig that works perfectly in webfig can still cause winbox to crash. ticket SUP-115140
by BrianHiggins
Wed May 03, 2023 12:14 am
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 11549

Re: Newsletter #112 | April 2023

- new regulations on default passwords An idea :-) Why not using the MAC for the default password together with a simple brute force protection? The MAC is printed on all devices, easy to implement and much more secure than the default password (not secure at all, but much better). I believe I sugg...
by BrianHiggins
Wed May 03, 2023 12:07 am
Forum: Announcements
Topic: WinBox v3.38 released!
Replies: 50
Views: 46808

Re: WinBox v3.38 released!

SKINS ARE NOT FOR SECURITY It is to hide confusing items from beginner users. maybe your novice technician needs to disable users and doesn't want to see confusing menus. Set him up with correct winbox and tell him what button to push. You can also use it for translation, or simplification of menu ...
by BrianHiggins
Tue May 02, 2023 11:49 pm
Forum: Announcements
Topic: v7.9 [stable] is released!
Replies: 242
Views: 53733

Re: v7.9 [stable] is released!

several bugs found with regards to WebFig & Skins and Branding maker. Created ticket SUP-115140 In summary: -Branding maker upload of skins file does not appear on device, uploading of the same file via the custom files does work correctly. -Winbox still fails to load skins without sensitive per...
by BrianHiggins
Tue May 02, 2023 8:28 pm
Forum: General
Topic: RouterOS 7.1.5. "long-term": dead end?
Replies: 74
Views: 10032

Re: RouterOS 7.1.5. "long-term": dead end?

It seems to me that you're advocating for a "politically determined" declaration of some version to be long-term. Just because you have to (management of your company is asking you?) install a new LTS version of OS to whatever infrastructure you've got and MT didn't deliver one for quite ...
by BrianHiggins
Tue May 02, 2023 8:01 pm
Forum: Announcements
Topic: WinBox v3.38 released!
Replies: 50
Views: 46808

Re: WinBox v3.38 released!

*) fixed skin file reading; Can you add a minimum winbox version option for the next release of ROS? We're interested in releasing winbox access for customers (currently we only allow a heavily skinned webfig) but need to ensure that skins are honored by all connections, and so need to ensure that ...
by BrianHiggins
Mon May 01, 2023 8:30 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75033

Re: v7.9rc is released!

What's new in 7.9rc5 (2023-Apr-28 11:52): *) console - fixed password prompt (introduced in v7.9beta4); *) lte - improved system stability when changing LTE interface configuration during network scan with MBIM modems (introduced in v7.8 ); *) wifiwave2 - fixed a compatibility issue when using OWE ...
by BrianHiggins
Mon May 01, 2023 8:13 pm
Forum: General
Topic: RouterOS 7.1.5. "long-term": dead end?
Replies: 74
Views: 10032

Re: RouterOS 7.1.5. "long-term": dead end?

To reply to a long post with short: there is no long-term version which contains wifiwave2. And according to previous post, there shouldn't be one before wifiwave2 gets very stable. there's currently no long term version at all for v7, and the last v6 long term build was released in December of 202...
by BrianHiggins
Sun Apr 30, 2023 10:20 pm
Forum: General
Topic: RouterOS 7.1.5. "long-term": dead end?
Replies: 74
Views: 10032

Re: RouterOS 7.1.5. "long-term": dead end?

We do need wave2 in v7 long-term ... because a few device models require it to run their wireless interfaces. It doesn't matter that it's in separate package. And similarly your post contains other BS. my point is that no features should be in long term until they have survived multiple stable rele...
by BrianHiggins
Sun Apr 30, 2023 9:33 pm
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

A barcode - unlike OCR or QR - is simple, clean, accurate, effective and cheap. They also generally continue to work much better when the label is partially worn or damaged. There's a reason that the barcode is still universal standard at retail and grocery stores for all UPC codes, the scanners to...
by BrianHiggins
Sun Apr 30, 2023 12:25 am
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

[...]The whole process for 120 routers took me just over 2.5 hours in total (100 hAP AC2, 40 hAP AC Lite). Overall the reboxing and labeling took as long as the configuration did. [...] You slap your Aditum label over MikroTik that fast? amazing. Anyway, other countries are fighting to get rid of s...
by BrianHiggins
Sat Apr 29, 2023 5:04 am
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

[ And I wouldn't be surprised if you find something I wrote in the autoconfiguration code you use... :lol: ] considering that the initial version of the CPE autoconfig scripts was written in 2015, and based largely on an earlier autoconfig script I'd written in 2014, most certainly not. However one...
by BrianHiggins
Sat Apr 29, 2023 1:02 am
Forum: General
Topic: RouterOS 7.1.5. "long-term": dead end?
Replies: 74
Views: 10032

Re: RouterOS 7.1.5. "long-term": dead end?

Yes, at some point MikroTik should stop adding features to a selected version, and then there should be some stabilized point releases after. At least this is how it was before. We might change something in future. Edit: yes, you seem to have noticed that v7 is a bit different, versions come out mu...
by BrianHiggins
Wed Apr 26, 2023 8:55 pm
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

you don't seem to understand that THIS REQUIRES LOGGING INTO THE ROUTER FIRST. you can't take a brand new hAP AC2 router out of the box and simply netinstall it, you have to log into the router first to change the boot settings. *** ALL ABSOLUTELY WRONG *** It seems to me that it's you who don't kn...
by BrianHiggins
Wed Apr 26, 2023 8:29 pm
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

Like it or not, I think all roads go through netinstall for the mass deployment scenarios. No amount of discussion is likely going to change that home device will have a default password. No doubt this is PITA, but needed and totally manageable IMO. I think there are some under-appreciated advantag...
by BrianHiggins
Wed Apr 26, 2023 7:33 pm
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

In my tests, I just set the default "read" group to use the skins above. And the single-quoted one worked fine, at least in v7.9rc1. BUT the default includes "sensitive"... If I remove the "sensitive" policy... @rextended is right, skins does NOT work in winbox ... wit...
by BrianHiggins
Wed Apr 26, 2023 7:01 pm
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

Do you have any idea of the extra workload, on this way, then there is for anyone? Do you work with RouterBOARD? Just netinstall-it-all. you don't seem to understand that THIS REQUIRES LOGGING INTO THE ROUTER FIRST. you can't take a brand new hAP AC2 router out of the box and simply netinstall it, ...
by BrianHiggins
Tue Apr 25, 2023 10:50 pm
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

1. Distribitors got all needed information some time ago, please ask Your distributor to check their email and their account, where relevant info is shown in a giant popup. 2. Here is a real sample of the file the Distributor is able to give you: "item_code","item","master_...
by BrianHiggins
Tue Apr 25, 2023 12:18 am
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

I'm not currently using branding on this. Its just broken, going to delete the skin and try again.
I've seen on v7 loading a skin doesn't always make it available to select until after you reboot the router, worth a shot if you haven't tried a simple reboot yet, can't hurt.
by BrianHiggins
Tue Apr 25, 2023 12:04 am
Forum: General
Topic: Something NEEDS to be done about the default passwords
Replies: 169
Views: 13196

Re: Something NEEDS to be done about the default passwords

Passwords are available in CSV format from the distributor accounts. You guys are good with scripts, come up with a script that takes these passwords from CSV as variables and uses them in your SSH mass config scripts :) Or ... just Flashfig routers en-masse with some big switch. Few problems with ...
by BrianHiggins
Fri Apr 21, 2023 9:58 pm
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 11549

Re: Newsletter #112 | April 2023

The idea of using the new RB5009 as a PPPoE termination is interresting. So t clarify, you use it as a termination and for example plug it to a 10G switch like the CRS13 ? I would presume they are referring to the same type of deployments we started doing ~15 years ago with APs up on the tower runn...
by BrianHiggins
Fri Apr 21, 2023 2:38 am
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6064

Re: Routers Coming with Default Passwords

Chiming in here, I added this to the newsletter post but I felt it needed included here. Like several others here, we do automated deployment of devices, the process is we plug in 20 routers at a time into our bench PoE switch on ether1, then we load up our in-house deployment tool, and plug in a 2n...
by BrianHiggins
Thu Apr 20, 2023 2:34 pm
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 11549

Re: Newsletter #112 | April 2023

The netinstall procedure would be fine if it was possible to initiate it without having to press any buttons on the device itself. Only then it could be automated. Think of something like having user "netinstall" with fixed password "Run_it_now!" that can only login once after r...
by BrianHiggins
Thu Apr 20, 2023 12:14 am
Forum: Announcements
Topic: Newsletter #112 | April 2023
Replies: 66
Views: 11549

Re: Newsletter #112 | April 2023

Also UK has something similar, and basically everywhere the governments are working on ways to improve security: https://techcrunch.com/2018/10/05/california-passes-law-that-bans-default-passwords-in-connected-devices/?guccounter=1 https://www.bbc.com/news/technology-59400762 https://www.lexology.c...
by BrianHiggins
Wed Apr 19, 2023 9:03 pm
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

FYI, I forgot that if you're loading the skin via branding maker, there's a bug where it writes the skin as a hidden file and can't be seen/accessed, so from my testing you need to also load it as a custom file in branding maker, which allows it to work for webfib, but not winbox. Winbox requires th...
by BrianHiggins
Wed Apr 19, 2023 8:27 pm
Forum: General
Topic: Recover Device
Replies: 4
Views: 609

Re: Recover Device

Full formatting in this case can last 5-10 minutes. It seems that the device was rebooted without waiting for the formatting to complete. Try resetting, booting from the main bootloader, booting from the backup bootloader again. https://wiki.mikrotik.com/wiki/Manual:RouterBOARD_settings#Protected_b...
by BrianHiggins
Tue Apr 18, 2023 10:21 pm
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

it does work in v7, though I haven't tested enough to actually allow anyone to actually access winbox with a skin as the function/security limiting function (though I do with webfig). It's on my product roadmap to test for later this year. You haven't tested it, but I have on 7.8, it doesn't work. ...
by BrianHiggins
Tue Apr 18, 2023 9:30 pm
Forum: General
Topic: Feature Request: SAFE MODE time based
Replies: 43
Views: 11536

Re: Feature Request: SAFE MODE time based

While a reconnect timer for safemode would absolutely be useful at times when you are working remotely and are about to make one or more changes that will knowingly reset the connection, Another (and possible very easy to implement) also needed option is to have a setting in winbox (and enabled by d...
by BrianHiggins
Tue Apr 18, 2023 9:22 pm
Forum: General
Topic: Allow TikApp?
Replies: 8
Views: 1339

Re: Allow TikApp?

We have such app, it's called MikroTik Home. The problem is, that there is no policy that rectricts users to ONLY this app. Sounds like I don't even need to submit a feature request, you already know what needs to be done! The pro app signs in using winbox permissions, the home app signs in using t...
by BrianHiggins
Tue Apr 18, 2023 9:18 pm
Forum: General
Topic: Skins for winbox too?!?
Replies: 68
Views: 6719

Re: Skins for winbox too?!?

it does work in v7, though I haven't tested enough to actually allow anyone to actually access winbox with a skin as the function/security limiting function (though I do with webfig). It's on my product roadmap to test for later this year.
by BrianHiggins
Tue Apr 18, 2023 9:10 pm
Forum: General
Topic: Recover Device
Replies: 4
Views: 609

Recover Device

While testing some configs in our lab someone managed to lock themselves out of a CRS125-25G-1S with a config that was somehow causing the device to lock up and freeze at boot, and would not accept any external connections and couldn't login thorough the console either. The usual procedure would be ...
by BrianHiggins
Fri Mar 03, 2023 1:54 am
Forum: Announcements
Topic: v7.8 [stable] is released!
Replies: 425
Views: 137474

Re: v7.8 [stable] is released!

I too am dying waiting for a LT release of v7. I had been waiting for bug fixes for webfig and branding maker for well over 2 years that had stopped me from updating because they never made it into a long term release, that's still stick at v6.48.6. I was recently forced to adopt a mix of v6.49.7 an...
by BrianHiggins
Fri Dec 09, 2022 6:55 am
Forum: Scripting
Topic: execute command from API
Replies: 1
Views: 768

execute command from API

I'm trying to use the API to launch a command, specifically one launched using execute so that it runs async and the API returns success/finished/!done etc while the long running command stays running. I've tried every variation of API syntax I can think of, and while the sample below runs, it doesn...
by BrianHiggins
Mon Nov 14, 2022 4:15 pm
Forum: Scripting
Topic: Send SMS from different router
Replies: 90
Views: 8793

Re: Send SMS from different router

I haven't played with the json web api yet, But presumably that can somehow trigger a script to run on the lte device, fetch from the fiber device can easily post a json string to the lte device to push a status, presuming there's a useful endpoint for launching scripts available...
by BrianHiggins
Sun Nov 13, 2022 3:50 pm
Forum: Scripting
Topic: API differences v6 & v7
Replies: 3
Views: 1143

Re: API differences v6 & v7

Before you bought it, it was clear that it didn't support v6, before you bought it it was clear that v7 could have different APIs, before you bought it, you have omitted tests on a CHR and have not tried to install v7 on another test device All before you bought it. And now they certainly can't put...
by BrianHiggins
Sun Nov 13, 2022 6:19 am
Forum: General
Topic: Branding package maker
Replies: 18
Views: 2118

Re: Branding package maker

issue fixed ... again :) fortunately, I got all my testing done and finalized the new config package I had to build late last night while this was still working, but the branding maker outages this week put me 3 days behind schedule on projects, Normis can you comment on what the root issue is and ...
by BrianHiggins
Fri Nov 11, 2022 7:43 am
Forum: Scripting
Topic: API differences v6 & v7
Replies: 3
Views: 1143

Re: API differences v6 & v7

yup found at least 1 so far under system health. It completely breaks anything that calls that menu because it completely changes the data format on the reply from how v6 responded in an entirely incompatible format. I have an open ticket (SUP-96931) about API changes that brake 3rd party software, ...
by BrianHiggins
Fri Nov 11, 2022 7:31 am
Forum: Scripting
Topic: Using fetch to get an array 😣
Replies: 5
Views: 1334

Re: Using fetch to get an array 😣

Didn't you read what I wrote?
yup, and already posted about it just above your post... don't think you read the reply :wink:
by BrianHiggins
Thu Nov 10, 2022 3:04 pm
Forum: General
Topic: Firmware mirror and automatic updates
Replies: 25
Views: 6336

Re: Firmware mirror and automatic updates

For cpes I have a check in script that runs hourly, and a web server that, among many other tasks that client / server relationship does, decides when to release a update to them, when it does it sends the download url to the cpe and the script downloads and reboots. For core routers I wrote somethi...
by BrianHiggins
Thu Nov 10, 2022 3:42 am
Forum: Announcements
Topic: Newsletter 108
Replies: 84
Views: 46229

Re: Newsletter 108

Normis, any eta on hAP AX routers that support PoE input? (and I mean real 802.3af or later 48v PoE, that works with switches that are aren't either MT or UBNT).

I will buy a lot of them!
by BrianHiggins
Wed Nov 09, 2022 6:15 pm
Forum: General
Topic: Branding package maker
Replies: 18
Views: 2118

Re: Branding package maker

Problem has returned, it was working yesterday but now broken again.
by BrianHiggins
Wed Nov 09, 2022 4:39 pm
Forum: General
Topic: Allow TikApp?
Replies: 8
Views: 1339

Re: Allow TikApp?

It is time for MikroTik to make a very trivial app where the customer changes the SSID and the password on his own, so that he can see the number of devices connected to the wifi and how much traffic passes, without assulting anything else. So the end users are interested only in this without any o...
by BrianHiggins
Wed Nov 09, 2022 1:36 am
Forum: General
Topic: Allow TikApp?
Replies: 8
Views: 1339

Allow TikApp?

I'm considering allowing end users to access their CPEs through the MikroTik Home app to configure their wifi and see connection stats, since it appeared to have its own permissions and limited access (and therefore an inability for them to break things)... However, in testing it seems that even tho...
by BrianHiggins
Sat Nov 05, 2022 4:41 pm
Forum: Scripting
Topic: Using fetch to get an array 😣
Replies: 5
Views: 1334

Re: Using fetch to get an array 😣

ok, I don't know why it worked this time, but I swear I pasted the original code and it didn't work (and why I assumed that $strData needed escaped, because it stopped throwing an error on that line when I did) but now it works! This line is the key to making it work. :local arrData [[:parse ":...
by BrianHiggins
Sat Nov 05, 2022 4:29 pm
Forum: Scripting
Topic: Using fetch to get an array 😣
Replies: 5
Views: 1334

Re: Using fetch to get an array 😣

Readed from file, or declared as string, for this example is equal: { # :local strData ([/tool fetch url="https://myserver.com/getvalues" output=user as-value ]->"data") :local strData "{ssid=\"network\";username=\"test@domain\";pass=\"mypass123\&qu...
by BrianHiggins
Sat Nov 05, 2022 1:27 am
Forum: Scripting
Topic: Issue with data stored in a file
Replies: 8
Views: 1426

Re: Issue with data stored in a file

Hello, I have a specific issue. i am downloading some data with /tool fetch command Thecontent of that file is in correct Mikrotik array format, but when i load it into a variable, it is not recognised as an array, but as an ordinary string instead. :toarray transforms this string into an array wit...
by BrianHiggins
Sat Nov 05, 2022 12:51 am
Forum: Scripting
Topic: Using fetch to get an array 😣
Replies: 5
Views: 1334

Using fetch to get an array 😣

I've been banging my head against the wall for the past ~5 hours and have gotten absolutely no-where on this. Can anyone show a method that works? testing on 6.49.7... I am trying to use fetch to pull down the contents of an array, and then retrieve elements of it for later use. It looks like it sho...
by BrianHiggins
Mon Aug 15, 2022 4:42 pm
Forum: Announcements
Topic: Newsletter 107
Replies: 50
Views: 26164

Re: Newsletter 107

When will we get AX devices that support 802.3af PoE? I have a huge demand for these with standard PoE input (aka not 24v passive)...
by BrianHiggins
Tue Nov 23, 2021 11:43 pm
Forum: Forwarding Protocols
Topic: (re)distribute IPSec route via OSPF
Replies: 10
Views: 5361

Re: (re)distribute IPSec route via OSPF

bump, any ideas on this? still stuck...
by BrianHiggins
Wed Nov 17, 2021 12:15 am
Forum: Forwarding Protocols
Topic: (re)distribute IPSec route via OSPF
Replies: 10
Views: 5361

(re)distribute IPSec route via OSPF

Should hopefully be a simple answer... I have a particular environment I'm working with that has a IPSec tunnel from a main router to a 3rd party operated network (tunnel is working fine), and I also have 5 other OSPF connected routers that also connect to that same main router. All connectivity is ...
by BrianHiggins
Tue Nov 02, 2021 5:16 pm
Forum: Wireless Networking
Topic: IoT / LORA Clients
Replies: 1
Views: 2018

IoT / LORA Clients

I'm new to and trying to get up to speeds with LORA & IoT protocols. I'm trying to understand how LORA would be deployed & configured as a service provider, where I might want to deploy some KNOT LR9's (US based), but I want to ensure only devices I've authorized are able to connect. It seem...
by BrianHiggins
Thu Jun 24, 2021 8:43 pm
Forum: Announcements
Topic: Newsletter June 2021 (#100)
Replies: 54
Views: 34575

Re: Newsletter June 2021 (#100)

Home app - goes thorugh nothing to do with WAN setup. What if its PPPoE? Does this just purely rely on a DHCP WAN? For any kind of funky setups, surely you need the normal MikroTik app, where a lot more options are available. This is for home users with no configuration needs. PPPoE is a "funk...
by BrianHiggins
Sat Mar 13, 2021 12:15 am
Forum: General
Topic: Queuing for Speeds Greater than 300 Mbps
Replies: 4
Views: 1855

Re: Queuing for Speeds Greater than 300 Mbps

I think you should have a look at this presentation, they talk exactly about your issue and explain how to resolve it. MikroTik bandwidth manager https://www.youtube.com/watch?v=loaVBWq6cWA been using the same config outlined in that video for a long time. The problem isn't pushing 300+mbps total t...
by BrianHiggins
Fri Feb 26, 2021 8:50 pm
Forum: General
Topic: Queue Bucket Size, through RADIUS
Replies: 0
Views: 590

Queue Bucket Size, through RADIUS

Does anyone know how to specify the Bucket Size through the Mikrotik-Rate-Limit attribute, or via some other RADIUS attribute? I tried appending it to the usual string format of "rx-rate/tx-rate rx-burst-rate/tx-burst-rate rx-burst-threshold/tx-burst-threshold rx-burst-time/tx-burst-time priori...
by BrianHiggins
Fri Feb 26, 2021 3:35 am
Forum: General
Topic: Queuing for Speeds Greater than 300 Mbps
Replies: 4
Views: 1855

Re: Queuing for Speeds Greater than 300 Mbps

bump - did you find a solution on this? I'm experiencing an issue that may be similar.
by BrianHiggins
Wed Dec 09, 2020 6:47 pm
Forum: Scripting
Topic: Persistent Environment Variables [SOLVED]
Replies: 50
Views: 36429

Persistent Environment Variables [SOLVED]

other than to load them with a script every reboot, is there any way to get an environment variable to persist between multiple reboots?
by BrianHiggins
Fri Jan 24, 2020 5:18 pm
Forum: Scripting
Topic: Get current TX / RX speed via script
Replies: 5
Views: 10025

Re: Get current TX / RX speed via script

there is no DUDE installation here, and unless there's a way to pull the OID via the MT script that won't work. the actual goal here is to set a traffic monitor script to perform a web call when traffic throughput exceeds a certain threshold, and if possible include the current mbps ul/dl in the dat...
by BrianHiggins
Fri Jan 24, 2020 12:18 am
Forum: Scripting
Topic: Get current TX / RX speed via script
Replies: 5
Views: 10025

Get current TX / RX speed via script

this is a really simplified script of what I'm trying to do, but the first two lines don't work, and I can't figure out how to do a get on this figure... I don't care if I need to use a few extra lines to pull the tx/rx speeds, I simply can't figure out how to get just the rx/tx values into variable...
by BrianHiggins
Tue May 14, 2019 9:55 pm
Forum: General
Topic: VLAN Switching
Replies: 1
Views: 725

VLAN Switching

Scenario, RouterBOARD 962 setup as wifi router. ether1 is WAN, ether2-ether5 is bridged for LAN. Device connected downstream to one of the LAN ports on the RB962 needs to be able to communicate over VLAN 500 to the providers upstream router that ether1 is connected to. the RB962 only needs to functi...
by BrianHiggins
Fri Mar 29, 2019 4:50 pm
Forum: General
Topic: Feature Request: container host (e. g. Docker host) instead of MetaROUTER
Replies: 3
Views: 4159

Re: Feature Request: container host (e. g. Docker host) instead of MetaROUTER

I too have a possible large project which can benefit from docker support. either or both running RouterOS inside docker, and docker inside RouterOS.
by BrianHiggins
Mon Mar 25, 2019 7:22 pm
Forum: Announcements
Topic: v6.43.13 [long-term] is released!
Replies: 44
Views: 30848

Re: v6.43.13 [long-term] is released!

You can't change username anymore, if you need different username create new, and delete old one. This is feature, not a bug. I disagree, it's a bug. Proof: where is this in any changelog? (because I looked before posting, twice) v6.43 changelog *) user - all passwords are now hashed and encrypted,...
by BrianHiggins
Thu Mar 21, 2019 7:40 pm
Forum: Announcements
Topic: v6.43.13 [long-term] is released!
Replies: 44
Views: 30848

Re: v6.43.13 [long-term] is released!

You can't change username anymore, if you need different username create new, and delete old one.
This is feature, not a bug.
I disagree, it's a bug. Proof: where is this in any changelog? (because I looked before posting, twice)
by BrianHiggins
Thu Mar 21, 2019 6:05 pm
Forum: Announcements
Topic: v6.43.13 [long-term] is released!
Replies: 44
Views: 30848

Re: v6.43.13 [long-term] is released!

Unable to change default username for admin account (or any account), command line gives error "failure: user name can't be changed" and winbox options are disabled. /user set admin name=somethingelse password=mypass comment="changed default account" failure: user name can't be c...
by BrianHiggins
Mon Aug 06, 2018 10:11 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 56
Views: 15796

Re: Mikrotik in the news..bad news

Yes, last bugfix 6.40.8 is fine (+ change your passwords after upgrading, restore your configuration and inspect it for unknown settings, implement a good firewall) What's new in 6.40.8 (2018-Apr-23 11:34): !) winbox - fixed vulnerability that allowed to gain access to an unsecured router tell that...
by BrianHiggins
Mon Aug 06, 2018 9:56 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 176139

Re: Winbox vulnerability: please upgrade

Is there anymore detailed information than the old blog post? I've seen numerous routers running 6.40.8 bugfix get compromised in the last few days. Winbox was externally accessible. On Friday I updated a couple older routers that had not yet been compromised that weren't on 6.40.8 to 6.40.8, only t...
by BrianHiggins
Tue Apr 03, 2018 11:36 pm
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36806

Re: Wi-Fi speed issues on hAP AC Lite

I have a 600+ unit (res) complex coming up for wifi and want to stick to all MT throughout as ive done on others, but am very worried as users want wifi speed on their consuemr devices. I *KNOW* i can deliver that wifi speed with UBNT APs and MT routing, but want so badly to go all MT (only issue i...
by BrianHiggins
Wed Sep 13, 2017 12:14 am
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 1006
Views: 1114307

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Just to be clear, my implementation is done only upon one of our admins clicking the test bandwidth button inside the web admin console they use to manage their hardware, and it's hard coded to run only a single 10 second test up, followed by a single 10 second test down, it then disables the test b...
by BrianHiggins
Tue Sep 12, 2017 9:21 pm
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 1006
Views: 1114307

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Months ago I embedded a 10 second duration upload and download test into our web provisioning platform to assist with determining bandwidth performance when doing new installations (this generates at most less than 5 or 10 minutes of collective tests spread over the course of a month, so definitely ...
by BrianHiggins
Mon Mar 06, 2017 6:18 pm
Forum: Wireless Networking
Topic: Remove SSID from master interface when VirtualAP are used
Replies: 2
Views: 1894

Re: Remove SSID from master interface when VirtualAP are used

more pointedly, why do you need 3 VAPs at all? why not use the master interface as one of the APs, and then use only two VAPs. You can still perform all the same config and routing / bridging / vlaning options, and that actually will provide better wireless performance since you are wasting less air...
by BrianHiggins
Mon Mar 06, 2017 6:09 pm
Forum: Wireless Networking
Topic: hotspot + CAPsMAN
Replies: 6
Views: 5272

Re: hotspot + CAPsMAN

I haven't yet tested this myself, though I will probably be doing so in the near future for a similar project. I think it's helpful if you realize that hotspot and capsman are not connected or related functions, and actually have nothing to do with each other. I believe the correct solution would be...
by BrianHiggins
Sun Mar 05, 2017 7:26 pm
Forum: Wireless Networking
Topic: Why does wireless networking use CSMA/CA instead of CSMA/CD?
Replies: 1
Views: 1894

Re: Why does wireless networking use CSMA/CA instead of CSMA/CD?

That is why there is a disable CSMA/CA option for NStream.... ;)
by BrianHiggins
Sun Mar 05, 2017 7:11 pm
Forum: Wireless Networking
Topic: CAPsMan + WPS button (feature request?)
Replies: 3
Views: 6634

CAPsMan + WPS button (feature request?)

Is it possible for CAPsMan APs to still provide support for using the WPS button? If not, enabling WPS on a caps configuration would be really useful for a project I'm working on. Master configuration only would be fine, though the ability to specify it to work on a slave configuration could be usef...
by BrianHiggins
Mon Feb 27, 2017 9:38 pm
Forum: Scripting
Topic: Script stopped working...
Replies: 0
Views: 781

Script stopped working...

Just noticed a script I've been using for ages that went through and dynamically updated address list entries via DNS to current IPs stopped working. It fails on the line /ip firewall address-list set $i address=$newip It appears that $i is being parsed as *N where N is the item number of the addres...
by BrianHiggins
Mon Feb 27, 2017 9:14 pm
Forum: General
Topic: Feature request: DHCP accounting through Radius
Replies: 24
Views: 9592

Re: Feature request: DHCP accounting through Radius

[*] also add support for MT-Rate-Limit attribute when using DHCP+RADIUS as already promised (Ticket#2016110222000039) This already exists! Use the Mikrotik-Rate-Limit VSA sorry, it's in the ticket I referenced, and wasn't entirely clear in this post. what I meant was full support, which means also ...
by BrianHiggins
Mon Feb 27, 2017 8:02 pm
Forum: General
Topic: official IPS/IDS in metarouter?
Replies: 3
Views: 2420

official IPS/IDS in metarouter?

Is there any community support for pushing to see an official metarouter image that would enable some IDS / IPS features? I would be interested in seeing something that can be integrated via the web proxy, and run 100% inside the router. I would like to see a supported metarouter image that contains...
by BrianHiggins
Tue Feb 21, 2017 12:16 am
Forum: General
Topic: Feature request: DHCP accounting through Radius
Replies: 24
Views: 9592

Re: Feature request: DHCP accounting through Radius

also add support for MT-Rate-Limit attribute when using DHCP+RADIUS as already promised (Ticket#2016110222000039)
by BrianHiggins
Mon Feb 20, 2017 11:59 pm
Forum: Scripting
Topic: Need Help w/Mass Flashfig script
Replies: 2
Views: 1551

Re: Need Help w/Mass Flashfig script

This is actually exactly what our company does...

We have a complete process for this, including automated provisioning and tenant account management, bandwidth controls, IP provisioning, etc.

brian at aditumims dot com for details.
by BrianHiggins
Mon Feb 20, 2017 7:07 pm
Forum: Wireless Networking
Topic: hAP lite ac Country, Frequency and Frequency mode
Replies: 13
Views: 7637

Re: hAP lite ac Country, Frequency and Frequency mode

I tried to apply the lock pack to a hAP lite AC tower, because I actually wanted to further lock it down by disabling protocols other than 802.11, it does not appear to be accepting the lockpack config as NStream is still an option. Is there any special procedure like a netinstall needed before appl...
by BrianHiggins
Fri Sep 09, 2016 7:18 pm
Forum: Scripting
Topic: Find last pysical ethernet port
Replies: 1
Views: 1234

Find last pysical ethernet port

In a script, Without knowing how many Ethernet ports are on a router, how do I identify the last port?

aka RB\2011 has 10 ports, I need to ID ether10, CCR1009 has 8 ports, I need to ID ether8

any ideas?

Edit, this also needs to exclude any sfp ports
by BrianHiggins
Fri Sep 09, 2016 7:04 pm
Forum: General
Topic: no ip source-route
Replies: 1
Views: 1491

no ip source-route

on Cisco "no ip source-route" instructs the router to ignore any ip options headers that contain routing information and to perform only policy routing. While policy routing is the standard way we all route on MikroTik, I've never seen anything about if source routing via ip options header...
by BrianHiggins
Wed Apr 20, 2016 11:42 pm
Forum: General
Topic: Log Suppression
Replies: 1
Views: 992

Log Suppression

I would like to be able to suppress user login / logout events from the memory log, but only when logged in / out via the API I have played around a little trying to figure out the best way to do this and I don't easily see how. I would like to suppress / ignore the first two lines here, but make su...
by BrianHiggins
Fri Dec 11, 2015 11:10 pm
Forum: Scripting
Topic: API For Each?
Replies: 1
Views: 1279

API For Each?

goal, single API command that matches and set parameters on multiple items A couple of example commands that I want to work, but don't... /radius/set =src-address=1.2.3.4 ?service=PPP /queue/tree/set =limit-at=1000 =max-limit=10000 ?parent=ParentQueue Any idea how to do this without first doing some...
by BrianHiggins
Wed Nov 26, 2014 2:31 am
Forum: Scripting
Topic: API SSL
Replies: 4
Views: 2535

API SSL

I've successfully implemented the API outlined here connecting over the regular API port of 8728

http://wiki.mikrotik.com/wiki/API_in_VB_dot_NET

Can anyone shed any light on what is required to modify the code to enable me to connect over the api-ssl service on port 8729?
by BrianHiggins
Mon Oct 13, 2014 6:04 pm
Forum: Wireless Networking
Topic: CAPSMAN Interface Naming
Replies: 4
Views: 1745

Re: CAPSMAN Interface Naming

an option to auto add a comment to the interface with the remote Identity name would be a nice way of handling it.
by BrianHiggins
Mon Oct 13, 2014 6:01 pm
Forum: Wireless Networking
Topic: CAPsMAN and Virtual APs
Replies: 3
Views: 2544

Re: CAPsMAN and Virtual APs

Thanks, Was looking in the wrong place for this, worked like a charm, though I think I found a few bugs in the AP provisioning process (will email support later this week)...
by BrianHiggins
Tue Oct 07, 2014 4:59 pm
Forum: Wireless Networking
Topic: CAPsMAN and Virtual APs
Replies: 3
Views: 2544

CAPsMAN and Virtual APs

Anyway to get a virtual AP up and running under CAPsMAN (under a different profile/config), or even just add a Virtual AP to a router that the primary AP is controlled by CAPsMAN?
by BrianHiggins
Wed Apr 23, 2014 6:15 pm
Forum: General
Topic: CAPSMan Local Wireless Interfaces
Replies: 1
Views: 1679

CAPSMan Local Wireless Interfaces

6.12, how do I get the local wireless interfaces to get managed from within capsman? I have successfully gotten a remote AP provisioned and working, but the local wlan1 interface on the router running the manager won't show up under radios, I've tried everything I can think of.
by BrianHiggins
Fri Oct 25, 2013 4:45 pm
Forum: Virtualization
Topic: ROS 5.X not supported on Hyper-V
Replies: 19
Views: 12511

Re: ROS 5.X not supported on Hyper-V

so virtualized hardware will not be supported.

and so licenses for virtual instances or ROS will not be purchased... fix the drivers to support hyper-v (hint: they already exist, you just need to include them), and you'll sell more licenses.
by BrianHiggins
Sun Nov 04, 2012 3:17 pm
Forum: General
Topic: Resetting Counters in the Interface List
Replies: 14
Views: 25376

Re: Resetting Counters in the Interface List

will you add that to VLAN driver? ppp interfaces?..

Any update on resetting PPP interfaces? Clearly that isn't drive dependant...
by BrianHiggins
Sat Nov 03, 2012 6:46 pm
Forum: Virtualization
Topic: Hyper-V integration components
Replies: 127
Views: 76699

Re: Hyper-V integration components

I'm deploying a new Hyper-V server, and due to requirements I am forced to implement a virtual MikroTik router, and because of these limitations, going to be running v4.17... I would happily purchase a new license, even a L6, and upgrade to something new, but it simply isn't an option here until sup...
by BrianHiggins
Wed Jul 13, 2011 12:42 am
Forum: General
Topic: Building a 3000+ CPE network, looking for advice
Replies: 18
Views: 6256

Re: Building a 3000+ CPE network, looking for advice

Whomever posted a comment to me on my personal website back in December asking for help regarding this (I don't know your screen name), I apoligize, the comment was flagged as spam and I just noticed it a few minutes ago. I email'd you, but wanted to post this as well to ensure you get me email.
by BrianHiggins
Mon Feb 07, 2011 7:30 pm
Forum: General
Topic: non-authorized pppoe redirect
Replies: 2
Views: 1071

Re: non-authorized pppoe redirect

setup a DHCP server, assign IPs from a private IP block, and the setup a webproxy that redirects all traffic from that IP block to whatever website you want, and drop all other traffic. you're not actually redirecting the PPPoE session, but instead redirecting anyone who doesn't have a valid / activ...
by BrianHiggins
Mon Feb 07, 2011 7:15 pm
Forum: General
Topic: serial port packets
Replies: 2
Views: 1010

Re: serial port packets

did you install/enable the UPS package?
by BrianHiggins
Fri Jun 04, 2010 4:44 pm
Forum: Wireless Networking
Topic: VPN TRAFFIC
Replies: 4
Views: 1539

Re: VPN TRAFFIC

1st question, why not use the MikroTik as yout VPN server?

2nd question, what IP on the interface plugged into the switch do you have assigned to the mikrotik, and to the VPN server? (hint, they must be unique)
by BrianHiggins
Thu Jun 03, 2010 6:53 pm
Forum: General
Topic: RB433 for hotel in-room hotspot
Replies: 15
Views: 3984

Re: RB433 for hotel in-room hotspot

regular outdoor PtMP I 100% agree that you should avoid circ pol antennas, but for an indoor implementation the signals will be bouncing around everywhere and you have no idea what polarization they will actuallly strike the antenna in.
by BrianHiggins
Thu Jun 03, 2010 6:49 pm
Forum: General
Topic: Building a 3000+ CPE network, looking for advice
Replies: 18
Views: 6256

Re: Building a 3000+ CPE network, looking for advice

But why the WDS/station-psudobridge? Because you want to have the client deal with the PPPoE authentication themselves? I see no advantage in that? Some clients hardly know how to switch their PC on (really! :shock: ), let alone how to setup a PPPoE interface and a login. So we still end up with th...
by BrianHiggins
Thu Jun 03, 2010 6:26 pm
Forum: Beginner Basics
Topic: station pseudobridge vs station wds
Replies: 7
Views: 11941

Re: station pseudobridge vs station wds

You are better off doing your bandwith shaping via PPP (ex pppoe) than by interface or mac. It requires MUCH less managment / config on your part, and gives just as much control.
by BrianHiggins
Thu May 27, 2010 5:23 pm
Forum: Beginner Basics
Topic: station pseudobridge vs station wds
Replies: 7
Views: 11941

Re: station pseudobridge vs station wds

under what circumstance would you recommend wds? sorry for the delayed response... I'd reccomend WDS only in the following circumstance: You have an AP, and a small group (usually under 10) of potential customers in a small area, but only one customer can actually get a signal. put up a CPE, config...
by BrianHiggins
Thu May 27, 2010 5:15 pm
Forum: Beginner Basics
Topic: Polling vs contention protocol scheduling
Replies: 3
Views: 3073

Re: Polling vs contention protocol scheduling

sorry, been a while since I checked back here. correct on all accounts, the default of 3200 may or not be right for you, test if out and give it a try. just don't use any policy other than best fit. I found the others don't seem to work as well (specifically the exact size option) One thing you may ...
by BrianHiggins
Thu May 27, 2010 5:06 pm
Forum: General
Topic: Building a 3000+ CPE network, looking for advice
Replies: 18
Views: 6256

Re: Building a 3000+ CPE network, looking for advice

since this thread was resurrected... after v3 came out and was stable, we eliminated nearly all WDS links from the network, and changed all CPEs to station-psudobridge mode. This improved performance, reduced latency, and allowed more customers per AP with better performance than with WDS. We still ...
by BrianHiggins
Thu May 27, 2010 4:42 pm
Forum: General
Topic: Need to know why Citrix will drop connection with 3.30
Replies: 6
Views: 2581

Re: Need to know why Citrix will drop connection with 3.30

citrix uses lots of small packets, do you have any limit rules enabled??
by BrianHiggins
Thu May 27, 2010 4:40 pm
Forum: General
Topic: Suddently, MT is blocking some IP's
Replies: 6
Views: 1492

Re: Suddently, MT is blocking some IP's

This version had been working fine for the last 5 years 3.7 is at most 3 years old :) I agree, you should upgrade it. but check for any filter rules with anything set in the "extra" tab, specifically things like the PSD or the Nth section before you do, those rules could cause issues like...
by BrianHiggins
Thu May 27, 2010 4:31 pm
Forum: General
Topic: RB433 for hotel in-room hotspot
Replies: 15
Views: 3984

Re: RB433 for hotel in-room hotspot

I've used mikrotik R52 radios coupled to this antenna http://www.streakwave.com/Itemdesc.asp?ic=IN800%2F5900%2D5&eq=&Tp= many times with good results. It also has a very clean professional look that blends in well with most office buildings, and is easy to install. However if you will be ins...
by BrianHiggins
Thu May 27, 2010 4:11 pm
Forum: General
Topic: Two different queuing
Replies: 9
Views: 1715

Re: Two different queuing

Why (udp and tcp 53 port) i think http and https (tcp 80, tcp 443) UDP / TCP 53 are the ports used by DNS, the OP wants to allow unlimited bandwidth to his DNS servers, so creating a packet mark on this traffic, then assigning a unlimited queue to that mark and putting it at the top is exactly corr...
by BrianHiggins
Thu May 27, 2010 4:02 pm
Forum: General
Topic: moving from layer 2 to layer 3
Replies: 1
Views: 1225

Re: moving from layer 2 to layer 3

have you considered implementing PPPoE, and OSPF?

it's a bit of initial setup work, but your life will be far far easier in the end.
by BrianHiggins
Thu May 27, 2010 3:57 pm
Forum: General
Topic: Wireless Authentication With Radius Server
Replies: 6
Views: 4201

Re: Wireless Authentication With Radius Server

you'll want to setup connection policies. it's best to put the users you want to connect into a particular group in AD, then set the policy to allow memebers of that group to connect when connecting from the hotspot. if you want to get more detailed and only allow users access to connect to a partic...
by BrianHiggins
Thu May 27, 2010 3:52 pm
Forum: General
Topic: IPSec VPN tunnels unstable in RouterOS 3.31?
Replies: 2
Views: 1852

Re: IPSec VPN tunnels unstable in RouterOS 3.31?

I setup a 3.30 MT with a IPSec tunnel to a sonicwall on the other end of the tunnel for someone back in December, haven't had a single problem with it.

verify your lifetime settings are set exactly the same on both sides, they need to match on both the phase 1 and the phase 2 part of the connection.
by BrianHiggins
Fri Apr 23, 2010 10:15 pm
Forum: Beginner Basics
Topic: Firewall Testing Recommendations
Replies: 3
Views: 2116

Re: Firewall Testing Recommendations

disable unneeded packages, restrict or disable services [/ip services] to your LAN or managment subnet additionally if you use the firewall wizard in webbox (logon to the web interface) and check the protect customer (and router if you prefer) box, it will create a nice set of firewall rules to star...
by BrianHiggins
Fri Apr 23, 2010 10:12 pm
Forum: Wireless Networking
Topic: long range mobile link
Replies: 1
Views: 1160

Re: long range mobile link

sounds like you're trying to connect something like a ferry boat going back and forth across a harbor... I know a guy who built a mikrotik based system for just that, but it ended up being a little more complicated than just 2 radios. it ended up requireing an array of 7 CPEs with directional antenn...
by BrianHiggins
Fri Apr 23, 2010 10:06 pm
Forum: Forwarding Protocols
Topic: Modifing out-filter field is not really applied
Replies: 6
Views: 2246

Re: Modifing out-filter field is not really applied

try running without the leading / in the script

aka:
ip routing bgp peer set [/ip bgp peer find name="ISP1"] out-filter=""
ip routing bgp peer set [/ip bgp peer find name="ISP2"] out-filter="OUT_OFF"
by BrianHiggins
Fri Apr 23, 2010 9:59 pm
Forum: General
Topic: Site VPN with MAC Address control / home office
Replies: 1
Views: 2451

Re: Site VPN with MAC Address control / home office

add action=jump chain=forward comment="" disabled=no jump-target=ToVPN \ out-interface=pptp-out1 add action=accept chain=ToVPN comment="" disabled=no src-mac-address=\ 02:01:01:01:01:01 add action=accept chain=ToVPN comment="" disabled=no src-mac-address=\ 02:02:02:02:...
by BrianHiggins
Fri Apr 23, 2010 9:34 pm
Forum: General
Topic: YouTube High ping problem
Replies: 1
Views: 1477

Re: YouTube High ping problem

check their simple queue, they are probably maxing out the available bandwidth, which is causing the high ping times.

if so a properly setup queue tree will help, check the wiki, there should be plenty of examples there
by BrianHiggins
Fri Apr 23, 2010 9:31 pm
Forum: Beginner Basics
Topic: Polling vs contention protocol scheduling
Replies: 3
Views: 3073

Re: Polling vs contention protocol scheduling

Settings under N-streme: enable nstreme - turns on the MikroTik propiratity feature that boosts wireless transmit speeds and throughput, must be enabled for ALL devices connected to the AP framing policy - increases OTA throughput by grouping more than one ethernet frame into a single wireless frame...
by BrianHiggins
Fri Apr 23, 2010 9:15 pm
Forum: Beginner Basics
Topic: station pseudobridge vs station wds
Replies: 7
Views: 11941

Re: station pseudobridge vs station wds

psudo only allows one active mac address to be behind the client. so if you have a CPE with a customers router or single PC behind it, it works great. If the customer plugs in a switch and tries to hook up two computers that try to get online, it won't work as expected for them, and only one device ...
by BrianHiggins
Fri Apr 23, 2010 9:01 pm
Forum: Virtualization
Topic: RouterOS on Microsoft Hyper-V
Replies: 1
Views: 3085

Re: RouterOS on Microsoft Hyper-V

old question, but in case anyone comes looking in the future, yes it works quite well. Just make sure your NICs are legacy and not integrated (I don't think you get the option for integrated unless you are using SCCVM to manage the VM)
by BrianHiggins
Mon Jun 08, 2009 9:58 pm
Forum: Virtualization
Topic: Missing disk (space)!
Replies: 6
Views: 7954

Re: Missing disk (space)!

uninstalled dude package and it's fine now... very odd.
by BrianHiggins
Mon Jun 08, 2009 9:33 pm
Forum: Virtualization
Topic: Missing disk (space)!
Replies: 6
Views: 7954

Re: Missing disk (space)!

We haven't received any reports from you to support@mikrotik.com about MetaRouter and files. Ticket# 2009052166000482, it was sent from a different email account than you're used to seeing from me. Dude 3.3 is installed but the package is disabled, it was only used for some breif testing, and was n...
by BrianHiggins
Mon Jun 08, 2009 9:28 pm
Forum: Wireless Networking
Topic: wireless-test.pkg | Multiple AP Interference
Replies: 3
Views: 1427

Re: wireless-test.pkg | Multiple AP Interference

I've seen the same exact problem, so far the only solution was to keep using the old package. I wonder about v4 since it includes the test package. I don't feel comfortable testing v4 in production enviroments, but I imagine this will have to be addressed and fixed before it can be released.
by BrianHiggins
Mon Jun 08, 2009 9:20 pm
Forum: Wireless Networking
Topic: AP 2ghz-5mhz on 3 differnet channels when scanned
Replies: 1
Views: 1346

Re: AP 2ghz-5mhz on 3 differnet channels when scanned

I've seen this before on some 900mhz stuff, but I think that was only on older v3 builds. never caused a problem though, seemed to just be a display error.
by BrianHiggins
Mon Jun 08, 2009 6:51 pm
Forum: Wireless Networking
Topic: PPPoE over wireless link
Replies: 5
Views: 4159

Re: PPPoE over wireless link

PPPoE ist Layer 2. A WDS oder AP-Cleint is Layer3. Also False... WDS is a Layer 2 transport protocol (essentially ethernet over wireless, where the RF link is layer 1), and PPPoE is a layer 3 protocol to encapsulate layer 4 transport protocols such as TCP and UDP read up on your OSI models.... http...
by BrianHiggins
Mon Jun 08, 2009 6:44 pm
Forum: Wireless Networking
Topic: PPPoE over wireless link
Replies: 5
Views: 4159

Re: PPPoE over wireless link

I believe you need to have wds enabled on your wireless link for this to work. FALSE (I have deployed 1000's of clients in this configuration without WDS with flawless results) change your config to the following: RB450 (PPPoE Server)-----RB400 (wireless link/ bridge or AP Bridge mode)-------RB400 ...
by BrianHiggins
Thu Jun 04, 2009 7:30 pm
Forum: RouterBOARD hardware
Topic: The THING!
Replies: 5
Views: 1758

Re: The THING!

change the speed to Only G and 24mbps. Why do you use B only? Never worked for me. and disable all of the B rates on the radio. otherwise B devices nearby will still screw with your AP (tested on numerous indoor applications where the MT AP was installed nearby an older B only AP that was going to ...
by BrianHiggins
Thu Jun 04, 2009 7:16 pm
Forum: Virtualization
Topic: Missing disk (space)!
Replies: 6
Views: 7954

Missing disk (space)!

RB/433AH running v3.22, loaded a couple Metarouters just to see how it worked, then deleted them. now I have no free space left on the disk, and I can't load a new package. Tried rebooting, doesn't change anything. Email'd support, never heard back. [admin@Brian-CT] /system resource> pr uptime: 2w50...
by BrianHiggins
Thu Jun 04, 2009 7:08 pm
Forum: Forwarding Protocols
Topic: Connection tracking with BGP?
Replies: 4
Views: 1970

Re: Connection tracking with BGP?

that's what I was thought, thanks for confirming.
by BrianHiggins
Thu Jun 04, 2009 5:27 am
Forum: Forwarding Protocols
Topic: Connection tracking with BGP?
Replies: 4
Views: 1970

Connection tracking with BGP?

I have two BGP routers, with one upstream BGP peer each. Since it is possible for connections to go out one router, and the return packets come in the other router, should I be disableing connection tracking on the routers?
by BrianHiggins
Thu Jun 04, 2009 5:18 am
Forum: Forwarding Protocols
Topic: Allocating /31 on distributed PPPoE infrastructure
Replies: 17
Views: 6848

Re: Allocating /31 on distributed PPPoE infrastructure

So for example;

If I enable PPPoE server on Wlan1,
than in the profile I give the local address 10.1.1.1 (eth1 address)
than in the remote ip pool I give real IPs of 212.1xx.x.x

Will it work ? Real IPs will be routed through local addresses ?
yes, that will work.
by BrianHiggins
Thu May 21, 2009 6:19 pm
Forum: General
Topic: Metarouter disabled?
Replies: 1
Views: 1020

Re: Metarouter disabled?

just noticed the same thing, logged onto another router running 3.22 that I had loaded a metarouter isntance on previously, and it shows that I am almost out of disk space, but the only file I have is a 385k backup file from a few weeks ago
by BrianHiggins
Wed May 13, 2009 7:16 pm
Forum: General
Topic: Service Tag...
Replies: 10
Views: 53940

Re: Service Tag...

google TPID and VLAN stacking / VLAN nesting, there's alot of documentation out there to explain it, it's a little complex.
by BrianHiggins
Tue Apr 28, 2009 9:13 pm
Forum: Forwarding Protocols
Topic: Allocating /31 on distributed PPPoE infrastructure
Replies: 17
Views: 6848

Re: Allocating /31 on distributed PPPoE infrastructure

Ahh very nice. We are rather limited space wise at the high sites. I may just run the small repeaters (30 users) in bridge mode and then terminate the PPPoE on the distribution nodes as there is no point on the smaller ones if they only have one uplink. I am looking forward to all the equipment arr...
by BrianHiggins
Tue Apr 28, 2009 9:07 pm
Forum: General
Topic: Epic fail - attempting install on Poweredge 1950
Replies: 11
Views: 5527

Re: Epic fail - attempting install on Poweredge 1950

Followup:

I was finally able to install by booting off the ISO image burned to a CD-Rom drive, couldn't install to the USB directly or boot from netinstall, both locked up at boot time.
by BrianHiggins
Mon Apr 27, 2009 3:53 pm
Forum: General
Topic: Epic fail - attempting install on Poweredge 1950
Replies: 11
Views: 5527

Re: Epic fail - attempting install on Poweredge 1950

nope, tried everything I could think of... I did format them with FAT and FAT32, even just tried a different 2gb drive I just picked up from the store, this one PNY... I've got one 512mb sandisk that works fine, and can't get anything else to work (trying to get 4 routers running at the moment) I su...
by BrianHiggins
Fri Apr 24, 2009 10:18 pm
Forum: General
Topic: Epic fail - attempting install on Poweredge 1950
Replies: 11
Views: 5527

Re: Epic fail - attempting install on Poweredge 1950

I'm getting the exact same error trying to boot from USB on a Dell PE 860, the crazy thing is that I have a old 512mb pen drive that it will boot from just fine, but the brand new Kingston 2gb (model DT100/2GB) pen drive (that I just took the time to mount inside the case with a 12" USB extensi...
by BrianHiggins
Wed Apr 22, 2009 6:42 am
Forum: General
Topic: Feature request - BGP 32bit AS numbers
Replies: 19
Views: 8732

Re: Feature request - BGP 32bit AS numbers

When configuring BGP you can use all three formats.
is this for current builds, or only for routing-test?
by BrianHiggins
Wed Apr 22, 2009 6:40 am
Forum: General
Topic: MetaRouter on RB1000
Replies: 9
Views: 3598

Re: MetaRouter on RB1000

yeah, tha'ts the plan.
when's the plan supposed to take effect?? :)
by BrianHiggins
Wed Apr 22, 2009 6:37 am
Forum: Forwarding Protocols
Topic: Allocating /31 on distributed PPPoE infrastructure
Replies: 17
Views: 6848

Re: Allocating /31 on distributed PPPoE infrastructure

Brian, a quick question You mention your use of a VLAN per AP. This confused me a little, are you terminating the PPPoE on the AP closest to the client, or are you bridging the wireless interface they are connected to onto a VLAN that is terminated at a central concentrator ? Also, are you using MP...
by BrianHiggins
Fri Apr 17, 2009 1:17 am
Forum: Forwarding Protocols
Topic: Allocating /31 on distributed PPPoE infrastructure
Replies: 17
Views: 6848

Re: Allocating /31 on distributed PPPoE infrastructure

we have the same type of config, however we allocate a /32 to the customer, all customers point to the same gateway since PPP does not require the gateway to be on the same subnet. we assign the local address in the ppp profile (becomes the clients gateway when they connect), and the remote address ...
by BrianHiggins
Fri Apr 17, 2009 12:44 am
Forum: General
Topic: Feature request - BGP 32bit AS numbers
Replies: 19
Views: 8732

Re: Feature request - BGP 32bit AS numbers

you can still request a 2 byte ASN, they ask you which you want when submitting your ASN Request.

I just had a 2-byte ASN issued earlier this week.
by BrianHiggins
Fri Apr 17, 2009 12:32 am
Forum: General
Topic: MetaRouter on RB1000
Replies: 9
Views: 3598

Re: MetaRouter on RB1000

You are right, right now Xen only works on X86, and Metarouter works only on RB4xx, but we are working on a PPC (RB1000) port too, just wait a while. any update on the ETA for this on the 1000's? what about MetaRouter support on x86? I would LOVE to have that for some edge router / BGP functions so...
by BrianHiggins
Fri Apr 17, 2009 12:18 am
Forum: General
Topic: Feature request: Global commands like ping and traceroute
Replies: 11
Views: 5055

Re: Feature request: Global commands like ping and traceroute

maybe default installed aliases.
I think this would be the best way, and would give some nice flexability for people who frequently have to run different commands or scripts

/system aliases add alias=/updateip cmd=/system script run ChangeIP

/updateip
by BrianHiggins
Fri Apr 17, 2009 12:05 am
Forum: General
Topic: SNMP OID for Script Results
Replies: 17
Views: 12033

Re: SNMP OID for Script Results

This is directed at Mikrotik - I know tons of users would benefit. Can you please extend SNMP to allow results of scripts to be returned, ie: /system script print oid 0.1.2.3.4.5.6.7.8.9.0.1 script1 0.1.2.3.4.5.6.7.8.9.0.2 script2 then you could perform snmp get against the OID to run the script an...
by BrianHiggins
Tue Apr 07, 2009 3:59 am
Forum: Scripting
Topic: queue tree not working
Replies: 0
Views: 1040

queue tree not working

I am trying to build a DSCP based QoS implementation (based largely on http://wiki.mikrotik.com/wiki/DSCP_based_QoS_with_HTB) I have created the following components as outlined in the script below /ip firewall mangle add action=change-dscp chain=prerouting comment=HTTP disabled=no new-dscp=20 proto...
by BrianHiggins
Tue Dec 02, 2008 6:13 pm
Forum: Wireless Networking
Topic: OSPF, aggregation and multiple links
Replies: 5
Views: 5007

Re: OSPF, aggregation and multiple links

We are willing to use RB433; ethernet switches are there only to connect ethernet interface of RB433, PCs, video encoders, etc. My doubts are: - do i have to mark packets ? - OSPF has to be redistributed over wlan1, wlan2 and ethernet on all RB433 ? - do i need Layer3 switches instead of layer2 swi...
by BrianHiggins
Tue Dec 02, 2008 5:14 pm
Forum: Wireless Networking
Topic: R5H firt impression - what a improvement!
Replies: 27
Views: 8133

Re: R5H firt impression - what a improvement!

Don't forget the specs states a +/-2db, the power also varies across the band. nearly all radio's have +/-2db and varry across the band, that's pretty standard. What's NOT standard is that MT actually posts the variences across the band and not just the peak power level of the radio like most vendo...
by BrianHiggins
Tue Dec 02, 2008 5:00 pm
Forum: General
Topic: worrying about the future of wifi
Replies: 22
Views: 6057

Re: worrying about the future of wifi

ForePoint, For the record, I have never had or operated or had any involvement with a WISP anywhere remotely close to your location - you have me mixed up with someone else. We have 1,000+/- customers and 30+ towers on the east coast, never even gave thought to the mid-west. then someone here is cl...
by BrianHiggins
Tue Dec 02, 2008 4:59 pm
Forum: Wireless Networking
Topic: XR3-3.7/XR2 Cards Power Saving problem RouterOS problem 3.x
Replies: 33
Views: 6695

Re: XR3-3.7/XR2 Cards Power Saving problem RouterOS problem 3.x

Did you try setting update-stats-interval?
that option only updates the display in winbox (basically what you see in the registration table), and has no affect on the connection.


It may make troubleshooting easier, but won't change the connection any.
by BrianHiggins
Tue Dec 02, 2008 4:56 pm
Forum: General
Topic: Core Router Hardware
Replies: 62
Views: 19054

Re: Core Router Hardware

are you using the same Dell PE840 chassis as in the picture?

what model NIC did you install?
by BrianHiggins
Wed Nov 26, 2008 5:00 pm
Forum: General
Topic: 3.10 - MLPPP
Replies: 27
Views: 9537

Re: 3.10 - MLPPP

I was just doing some expermenting, and noticed that there is a lack of information in the logs about MLPPP errors. enableing multiple interfaces, if one interface connects, yet the other interface is unable, it does not log anything, it simply sits there with only one active session. by enableing f...
by BrianHiggins
Wed Nov 26, 2008 4:31 pm
Forum: General
Topic: Core Router Hardware
Replies: 62
Views: 19054

Re: Core Router Hardware

I'm curious to hear how this is working for you now, your last post showed significant growth patterns, by now I'm sure you've had to make some changes to accomidate that growth...
by BrianHiggins
Wed Nov 26, 2008 4:06 pm
Forum: Wireless Networking
Topic: R5H firt impression - what a improvement!
Replies: 27
Views: 8133

Re: R5H firt impression - what a improvement!


Thanks Normis... the PDF has been updated since I last looked at it, none of that info was in there before :)

I like the fact there is almost no power loss @36Mbps...
by BrianHiggins
Wed Nov 26, 2008 3:56 pm
Forum: General
Topic: LAG port support
Replies: 2
Views: 9540

Re: LAG port support

so if I understood that correctly, using per packet RR bonding, and on the switch Enabling Ether-channel Unconditionally works.

If ether-channel (Cisco equivlant to a Dell LAG) is set to unconditional, will that prevent failover if one link goes down?
by BrianHiggins
Wed Nov 26, 2008 8:03 am
Forum: General
Topic: worrying about the future of wifi
Replies: 22
Views: 6057

Re: worrying about the future of wifi

Maybe it is just luck? heh, I wish you all the luck in the world... that many hits only 6 ft away, one of these times you're going to see a secondary, or worse primary hit on your equipment... it's considered common knowledge that lightning never strikes the same place twice, in reality it will oft...
by BrianHiggins
Wed Nov 26, 2008 7:50 am
Forum: General
Topic: Is (( PRIORITY )) Really working ???
Replies: 188
Views: 51711

Re: Is (( PRIORITY )) Really working ???

2. RouterOS's QoS works just fine, I've mentioned I use it for game/voip traffic all the time. I use many different methods to 'measure' the effectiveness of my QoS, but for those that want an easy way try this website: http://www.testyourvoip.com/ , when I turn my rules off my rating goes to 2.3/5...
by BrianHiggins
Wed Nov 26, 2008 6:11 am
Forum: General
Topic: LAG port support
Replies: 2
Views: 9540

LAG port support

Does anyone know if you can connect MikroTik to a LAG (Link Aggregation Group) configured set of switch ports? example, I have a RB/1000 and want to connect 2 interfaces to a switch configured to bond 2 ports in one LAG for physical redundancy / additional capacity, and acheive a interface with 2Gbp...
by BrianHiggins
Wed Nov 26, 2008 6:03 am
Forum: General
Topic: BGP Peer Status via SNMP
Replies: 5
Views: 3882

Re: BGP Peer Status via SNMP

no SSH support in Whats Up... it supports anything via SNMP and if it can be scripted in VBS or WMI it can easily be added, but nothing like what you're talking about via SSH... I can do a simple TCP connect then challenge / response probe as well, but I don't see any way to use that.
by BrianHiggins
Wed Nov 26, 2008 5:53 am
Forum: General
Topic: worrying about the future of wifi
Replies: 22
Views: 6057

Re: worrying about the future of wifi

How resilient is your setup to lightning? if a tower gets struck, you have to expect at least some equipment will fail (it is over a million volts and hundreds of thousands of amps of electricial discharge), and anyone directly connected to the damaged equipment will be offline, however a partial, ...
by BrianHiggins
Tue Nov 25, 2008 12:11 am
Forum: Wireless Networking
Topic: R5H firt impression - what a improvement!
Replies: 27
Views: 8133

Re: R5H firt impression - what a improvement!

Has anyone seen a power output chart for these yet? They are listed simply as:
Output Power Up to 25dB (320mW)
I'm assuming that 25dB is only for 24 Mbps and lower data rates like most other cards, what is the power output @36Mbps, @48Mbps and @54Mbps?
by BrianHiggins
Tue Nov 25, 2008 12:02 am
Forum: General
Topic: PPTP client disconnects from cisco PPTP server every minute
Replies: 11
Views: 6298

Re: PPTP client disconnects from cisco PPTP server every minute

Check your encryption and compression settings to make sure they match on both sides of the link, and look in the logs of the MikroTik to see if it gives you any more details as to what the reason for the disconnection is. did you check any of these items? Also, what about logs on the Cisco when th...
by BrianHiggins
Mon Nov 24, 2008 11:57 pm
Forum: Wireless Networking
Topic: Help with Bridging two NICs to be as one ???
Replies: 4
Views: 1610

Re: Help with Bridging two NICs to be as one ???

I can't see the laptop connecting in wds mode. what laptop? his diagram indicates wired connections to a switch, and then a CPE type device wired to the switch and connected wirelessly to the AP... Besides, if a laptop is connecting wirelessly, it won't need WDS, the WDS is only for allowing the sw...
by BrianHiggins
Mon Nov 24, 2008 11:51 pm
Forum: General
Topic: BGP Peer Status via SNMP
Replies: 5
Views: 3882

Re: BGP Peer Status via SNMP

Interresting idea, hadn't thought of that before... After some testing, it works in theory, but not in practice.... I've got full tables on all of my BGP routers, and some have more then one upstream provider tied to them, which means ~260,000 to ~520,000 routes... doing some testing on one of my st...
by BrianHiggins
Sat Nov 22, 2008 3:12 am
Forum: General
Topic: TOS / DSCP, Queues and Voip
Replies: 1
Views: 2423

Re: TOS / DSCP, Queues and Voip

This is a basic form for what I use in our routers, if you want it to catch all SIP traffic to or from anywhere, remove one of the jump rules and change the remaining one to not match on the VoIP Servers address list, just the SIP connection type Change your simple Queue settings to match the ammoun...
by BrianHiggins
Sat Nov 22, 2008 2:52 am
Forum: General
Topic: BGP Peer Status via SNMP
Replies: 5
Views: 3882

Re: BGP Peer Status via SNMP

Bueller...
.
.
.
.
.
Bueller...
.
.
.
.
.
Bueller...
.
.
.
.
anyone?
by BrianHiggins
Sat Nov 22, 2008 2:48 am
Forum: Wireless Networking
Topic: Help with Bridging two NICs to be as one ???
Replies: 4
Views: 1610

Re: Help with Bridging two NICs to be as one ???

The only problem is, all clients that want to use the bridge MUST connect with WDS mode, so your design won't work! everything is exactly correct except for this. the wireless device attached to the switch might support MAC layer NATing for multiple devices (Tranzeo devices support 254 devices on t...
by BrianHiggins
Sat Nov 22, 2008 2:36 am
Forum: Wireless Networking
Topic: XR3-3.7/XR2 Cards Power Saving problem RouterOS problem 3.x
Replies: 33
Views: 6695

Re: XR3-3.7/XR2 Cards Power Saving problem RouterOS problem 3.x

We need /system routerboard setting set power-mode=regular to work. Its not there. Dallas; As it has already been stated numerous times, that setting applies to the CPU setting in the bios on a routerboard only. You can see the same options by booting into the bios on one of the routerboards. The /...
by BrianHiggins
Fri Nov 21, 2008 6:38 pm
Forum: General
Topic: PPTP client disconnects from cisco PPTP server every minute
Replies: 11
Views: 6298

Re: PPTP client disconnects from cisco PPTP server every minute

I too have used MikroTik extensivly in a number of PPTP implementations both as server and a client, and have never seen what you are reporting. I agree it sounds like it is a config problem with the Cisco PPTP Server. Check your encryption and compression settings to make sure they match on both si...
by BrianHiggins
Fri Nov 21, 2008 6:31 pm
Forum: General
Topic: GPS integration problem
Replies: 2
Views: 1067

Re: GPS integration problem

disable any key access to the bios, that should fix it I beleive
/system routerboard settings set enter-setup-on=delete-key
by BrianHiggins
Thu Nov 20, 2008 11:29 pm
Forum: General
Topic: BGP Peer Status via SNMP
Replies: 5
Views: 3882

BGP Peer Status via SNMP

Has anyone figured out a way to monitor BGP Peer status via SNMP?

I want to program our monitoring system (IPSwitch Whats Up Gold) to watch the Peer status, not just ping the other side of the connection, to make sure the session is active.
by BrianHiggins
Sat Nov 15, 2008 12:32 am
Forum: Wireless Networking
Topic: Mikrotik WISPs: Where?
Replies: 94
Views: 155827

Re: Mikrotik WISPs: Where?

We currently cover just over 2000 sq miles with 28 towers in the Mid-West (Indiana), nearly 100% MikroTik network for most backhauls, and all APs/CPEs, as well as routers (incl BGP)

http://www.forepointnetworks.com/network.shtml
by BrianHiggins
Fri Nov 14, 2008 7:21 pm
Forum: Wireless Networking
Topic: R5H released.. Any feedback ?
Replies: 6
Views: 1740

Re: R5H released.. Any feedback ?

54mbps 5mhz channel Receive Sensitivity could be a little better... :D When will these be available, and at what price? with that low of a receive sensitivy, I can actually see using smaller channel widths at higher modulations for backhauls now if the output power doesn't plumet too horribly past 2...
by BrianHiggins
Fri Nov 14, 2008 7:09 pm
Forum: Wireless Networking
Topic: 3 AP´s one Net
Replies: 8
Views: 2104

Re: 3 AP´s one Net

more then likley you are either not bridging wlan1 and ether1 on one or more of the APs, thus each AP is it's own seperate network, or you may have default forward disabled (I only skimmed your post) make sure all wlan's are bridged to their respective ethernet interfaces (and don't run more then 1 ...
by BrianHiggins
Wed Nov 12, 2008 1:24 am
Forum: General
Topic: Challenge for Mikrotik techs. Virtual WLAN Cells.
Replies: 20
Views: 5160

Re: Challenge for Mikrotik techs. Virtual WLAN Cells.

I honestly don't see any breakthrough in using something like this. for regular 802.11 deployments, I agree, but if you had a central controller for a tower, then it could cooridinate the APs and have the polling span across multiple APs on overlaping, or the same channel, as well as allow for the ...
by BrianHiggins
Fri Nov 07, 2008 5:19 pm
Forum: Wireless Networking
Topic: Max Station Count, NStream, and better uptimes
Replies: 14
Views: 12838

Re: Max Station Count, NStream, and better uptimes

I do have "inside knowledge on the inner workings" and my comments are based exactly on that, unluckily I do not think "exactly how it works" is going to be disclosed. Why would this not be disclosed? It is to everyone's benifit to better understand the systems we work with ever...
by BrianHiggins
Fri Nov 07, 2008 12:07 am
Forum: General
Topic: Challenge for Mikrotik techs. Virtual WLAN Cells.
Replies: 20
Views: 5160

Re: Challenge for Mikrotik techs. Virtual WLAN Cells.

I am guessing with the new Atheros drivers this would be easier than ever. Just pipe the raw device into a tun device accross to the "controller" where it does the reverse and creates a virtual wlan adaptor. Very ambitious project should MT decide to implement, This would be a very very i...