Community discussions

MikroTik App

Search found 360 matches

  • 1
  • 2
by sup5
Sun Oct 15, 2023 7:02 pm
Forum: General
Topic: Mikrotik Packet snfifer
Replies: 2
Views: 605

Re: Mikrotik Packet snfifer

It correctly matches your VLAN encapsulated PPPoE-Session....
by sup5
Thu Aug 31, 2023 10:00 am
Forum: RouterOS beta
Topic: VPLS MTU problem on V7 (7.9beta4)
Replies: 8
Views: 3709

Re: VPLS MTU problem on V7 (7.9beta4)

Has someone considered this bug?
viewtopic.php?t=191788
by sup5
Sat Aug 19, 2023 11:55 am
Forum: General
Topic: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.
Replies: 35
Views: 5597

Re: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.

That's not true.
With proper triple A in place every command put into the CLI is being checked against the central AAA appliance .
(Tacacs+)

Furthermore nearly every other vendor besides Mikeotik allows manual deletion of active user sessions.
by sup5
Fri Aug 18, 2023 9:05 am
Forum: General
Topic: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.
Replies: 35
Views: 5597

Re: ⚠️Security Issue: Changing rights / disable / delete the users has no effect on already logged in users.

You could also terminate a users session by killing his connection tracking entry or by setting up a firewall rule dropping his specific IP/TCP-Port tuple.

The user session should run into a session timeout.
by sup5
Tue Jan 10, 2023 11:54 pm
Forum: General
Topic: ISP connection for each CRS, but traffic is always sent through 1st CRS
Replies: 2
Views: 648

Re: ISP connection for each CRS, but traffic is always sent through 1st CRS

Why is e1 member of the bridge?

Looks like a Layer-2-Loop / Spanning-Tree problem to me.
by sup5
Fri Dec 09, 2022 4:33 pm
Forum: Forwarding Protocols
Topic: Same IP FAIL OVER/BONDING from multiple ISPS
Replies: 13
Views: 3641

Re: Same IP FAIL OVER/BONDING from multiple ISPS

You can handle this with Mikrotik alone, but it's quite convoluted. You'll run into plenty of issues. Most notable are MTU and MSS-Clamping issues. I did WAN-bonding before. You need a server or at least another internet connection to connect to. I was able to do Layer-4 hashing to distribute the lo...
by sup5
Thu Nov 24, 2022 12:31 pm
Forum: Beginner Basics
Topic: EoIP Tunnel Clamp TPC MSS
Replies: 16
Views: 7246

Re: EoIP Tunnel Clamp TPC MSS

The Clamp tcp mss option has NEVER worked in RouterOS - period!! :-x It works for me. I did several packet captures, which confirm, that it works. But it has constraints: TCP-MSS-clamping will only work with untagged native IPv4 traffic passing through the EoIP interface. As soon as it is encapsula...
by sup5
Wed May 04, 2022 12:28 am
Forum: General
Topic: Proxy-ARP replies to all ARP broadcasts for any IP address
Replies: 11
Views: 1011

Re: Proxy-ARP replies to all ARP broadcasts for any IP address

About ten years ago I converted several proxy-arp based networks to OSPF due to all kinds of weird issues and scaling problems.

Thus I really encourage you to move forward to a dynamically routed infrastructure.

The seemingly simplicity of Layer-2 will quickly become a true nightmare.
by sup5
Fri Apr 15, 2022 10:46 pm
Forum: General
Topic: Load Balancing across MLAG
Replies: 14
Views: 2088

Re: Load Balancing across MLAG

AFAIK, the ICCP makes the Peer-Link insanely expensive.

Thus no Load-Balancing will occur. Any Frame arriving at the Switch will directly leave it via the MLAG-Member.
It is extremely undesirable to re-route it through the Peer-Link.
by sup5
Sun Apr 10, 2022 10:42 pm
Forum: Announcements
Topic: NEWSLETTER 105
Replies: 56
Views: 44495

Re: NEWSLETTER 105

Will L3HW also be supported with the CRS504?
by sup5
Sun Feb 13, 2022 11:44 am
Forum: General
Topic: [EoIP over DSL] throughput expectations?
Replies: 2
Views: 733

Re: [EoIP over DSL] throughput expectations?

1) set the Layer-3 MTU of the EoIP source interfaces to the lowest ISP MTU (eg. 1492 for PPPoE) 2) set the Layer-3 MTU to something like 1432 in the EoIP interface. Leave the Layer-2 MTU isaneably high. 3) enable adjust TCP-MSS 4) only transport untagged traffic over the EoIP. Use one EoIP tunnel pe...
by sup5
Wed Jan 12, 2022 2:54 am
Forum: General
Topic: CGN NAT ( NAT444 ) help
Replies: 39
Views: 6100

Re: CGN NAT ( NAT444 ) help

you really have to have a look at the netmap. single translations will kill your router's cpu.

Netmap for CGNAT is some sort of Brainfuck, sure. But it's worth the effort.
by sup5
Tue Jan 11, 2022 10:19 pm
Forum: General
Topic: CGN NAT ( NAT444 ) help
Replies: 39
Views: 6100

Re: CGN NAT ( NAT444 ) help

Hi, I found an old configuration. It compresses a private /18 into a public /24. Thus compressing 6 bits means 64 customers have to share a single public ip address. Using the binary tree there will always only be six jumps to reach the approriate netmap command. /ip firewall nat add action=jump cha...
by sup5
Tue Jan 11, 2022 9:44 am
Forum: General
Topic: CGN NAT ( NAT444 ) help
Replies: 39
Views: 6100

Re: CGN NAT ( NAT444 ) help

The script die not work for me, as well. I ended up using the idea and manually built a binary-tree of cascaded jumps to reduce CPU-Load. (Excel helped here for string manipulation). At the end of each jump-cascade there will be the netmap/NAT to squeeze down the number of required ports. For reside...
by sup5
Wed Dec 22, 2021 7:01 pm
Forum: RouterOS beta
Topic: Delegating addresses with DHCPv6 server
Replies: 4
Views: 2210

Re: Delegating addresses with DHCPv6 server

Global unicast an /64 for point to point transfer networks between routers is not desirable, becasue neighbor exhaustion attacts might bring your network down. Either use fe80::/64 (Administratively set fe80::/64 and fe80::1/64 for each routers interface) Or use global unicast with a /127 subnetmask...
by sup5
Sun Oct 31, 2021 11:00 am
Forum: RouterBOARD hardware
Topic: New LR9 not booting [SOLVED]
Replies: 4
Views: 6315

Re: New LR9 [SOLVED]

What is an LR9?
by sup5
Sun Oct 10, 2021 4:54 pm
Forum: The Dude
Topic: Graphing dude max 3,5 Gbps
Replies: 3
Views: 6367

Re: Graphing dude max 3,5 Gbps

Dude currently only supports 32bit Octet Counters for easy graphs. 64bit Octet Counters are not supported (HC IfMib) The 32 Bit Octet Counter will simply roll over more than once within your desired polling interval. Calculation example: 2³² Counter * 8 Bits per Octet / 1000³ Gig /10 sec = 3.436 Gbp...
by sup5
Sun Nov 29, 2020 12:08 am
Forum: General
Topic: Redundant connection between Cisco VSS LACP and two routers
Replies: 3
Views: 1301

Re: Redundant connection between Cisco VSS LACP and two routers

What options do we have?
Getting other vendors hardware.

Eg. Cheapish Cisco Nexus 3064 Switches, which nearly support anything you might want to configure
by sup5
Wed Nov 25, 2020 10:17 pm
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 184
Views: 114689

Re: v6.48beta [testing] is released!

Well, the idle-timeout parameter did not work at all on those systems. The tunnels were disconnected even if there was active traffic sent over the tunnel.
I was pulling my hair out because of this!....
by sup5
Sun Oct 18, 2020 7:46 pm
Forum: Wireless Networking
Topic: LHG 60 does not connect at 2150m with los and perfect weather :(
Replies: 47
Views: 6931

Re: LHG 60 does not connect at 2150m with los and perfect weather :(

Also make sure to set the channel to the highest frequency. This channel will slightly escape the atmospheric attenuation.
by sup5
Sat Sep 26, 2020 1:14 pm
Forum: General
Topic: Mikrotik to replace our faulty Cisco core switch
Replies: 6
Views: 1422

Re: Mikrotik to replace our faulty Cisco core switch

I would suggest getting a refurbished Cisco Catalyst Switch.

Aturna or other refurbishers offer *very* competitive prices for used Cisco components.

Currently Mikrotik routers are lacking too much features and having performance issues for enterprise environments.
by sup5
Mon Sep 21, 2020 11:08 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 24
Views: 5818

Re: CCR2004 poor bridge performance

I made a similar observation.
CCR1009 doesn't carry more than 500 Mbps without dropping packets.

That's why I always hugely oversize Mikrotik Routers for a given task.
by sup5
Thu Sep 17, 2020 9:01 pm
Forum: RouterBOARD hardware
Topic: L3 Hardware Offloading for CRS318
Replies: 1
Views: 778

L3 Hardware Offloading for CRS318

Hi,

Does the CR318 aka Netpower16 support L3 Hardware Offloading?

For sure it supports L2 HW Offloading, but that's not enough for the setup in question. RSTP for redundancy is not desirable here. I like dynamic routing better.
by sup5
Tue Sep 08, 2020 1:28 pm
Forum: General
Topic: [Help needed] Slow throughput with routed /29 subnet [SOLVED]
Replies: 3
Views: 1292

Re: [Help needed] Slow throughput with routed /29 subnet [SOLVED]

Would you exactly name the adapters, please?
The working and the non-working.
by sup5
Fri Aug 28, 2020 9:58 pm
Forum: RouterOS beta
Topic: Not a fan of the new (/) slash notation.
Replies: 16
Views: 2842

Re: Not a fan of the new (/) slash notation.

/ is annoying.
I have to press 7+Shift
by sup5
Tue Aug 25, 2020 11:56 pm
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 115
Views: 30798

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

The C6500 platform was the most successful switch/platform product on this planet ever! (> 20 billion $ sales) A real giant back in the dark old days ;-) Getting an unsupported C6509 filled with 8x48 Gigports, one Supervisor, and redundant PSUs doesn't cost more than 2000 Euros. But energy costs wi...
by sup5
Tue Aug 25, 2020 10:05 pm
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 115
Views: 30798

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

The reason that Cisco is the standard is because their product support is OUTSTANDING ..... I can second that. Teir support helped me lot's of times even, when the mistake was on my side or a 3rd party device was misbehaving. Knocking down networking issues with paid support makes life so much easi...
by sup5
Tue Aug 25, 2020 9:58 pm
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 115
Views: 30798

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

[...] This is very annoying. No other vender forces you to learn three ways to do simple VLAN stuff. [...] MikroTik does not - it's not *wrong*, it's just not they way they do it. Once you realize this, you can design and use it accordingly. Okay, then I wasn't clear enough: no other vendor forces ...
by sup5
Tue Aug 25, 2020 7:18 pm
Forum: General
Topic: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]
Replies: 115
Views: 30798

Re: Mikrotik or NOT!!! Industry standarts say no!! Why? [SOLVED]

It simple depends on what to do. If you need wirespeed routing/switching with QoS (honoring 802.1p or DSCP) then Mikrotik is a real PITA. Also common things like Stacking, MCLAG, proper galvanic isolated PoE-at or VRRP-Grouping simply aren't possible/available. If you have an oversized Mikrotik for ...
by sup5
Mon Aug 17, 2020 5:49 pm
Forum: General
Topic: [Feature request] Dhcp relay and arp bind
Replies: 5
Views: 2067

Re: [Feature request] Dhcp relay and arp bind

I sent this question to support earlier. They declined to implement it.

But maybe they might alter their attitude, if many enough of you will ask the same question directly to the support.
by sup5
Wed Jul 22, 2020 1:26 pm
Forum: RouterOS beta
Topic: v7.1beta1 [development] is released!
Replies: 103
Views: 57480

Re: v7.1beta1 [development] is released!

How is HW-offloaded NAT configured?
Does it kick in automatically?
How do I notice that the 4096 connection limit is reached?
Is it shown, which connections aren't HW-offloaded anymore?
by sup5
Fri Jul 17, 2020 2:36 pm
Forum: RouterOS beta
Topic: new feature request MLAG!!!
Replies: 33
Views: 16963

Re: new feature request MLAG!!!

MC-LAG is still needed, it removes the "single control plane" point of failure.
It only eliminates the need to use STP and VRRP. Dual control plane issues like lack of synced connection tracking will remain.
by sup5
Fri Jul 17, 2020 12:00 pm
Forum: RouterOS beta
Topic: new feature request MLAG!!!
Replies: 33
Views: 16963

Re: new feature request MLAG!!!

I would much rather see stacking. MLAG is fine for Layer 2, but it's a nightmare for Layer 3. Stacking works well for both. Considering a lot of the CRS3XX chipsets have L3 HW offload that has yet to be taken advantage of, it would be nice to be able to form an LACP chanel across two or more switch...
by sup5
Fri Jul 10, 2020 5:23 pm
Forum: General
Topic: Cannot download at 10 gbps [SOLVED]
Replies: 23
Views: 7036

Re: Cannot download at 10 gbps [SOLVED]

I can second that. TILE is optimized for many connections. Single streams or connections will melt down a single core. With a CCR1009 is was not able to pass through more than 500 Mbps UDP without packet-loss. And this was without any firewall rules or NAT. So the results of benc1337 seem reasonable...
by sup5
Fri Jan 31, 2020 1:30 am
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 8446

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

Jitter in Networking usually has no impact in audio jitter as these clocks are totally separated. Audio is usually kept in a ring buffer which is being fed from the network . Only if there is no sufficient audio data to keep the buffer filled there might be an audible gap. But there won't be jitter ...
by sup5
Thu Jan 30, 2020 1:45 pm
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 8446

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquite Unifi Network Switch

Powering these devices by an external non-switching PSU is not worth the hassle IMO. Nearly every device has additional switching power regulators inside to step down the 9 to 28 volts input voltage to a usable 5 or 3.3 volts. Thus “Noise" is being generated anyways. I recommend to read http://...
by sup5
Fri Jan 17, 2020 3:02 pm
Forum: General
Topic: how to minimize CGNAT LOGGING
Replies: 4
Views: 3097

Re: how to minimize CGNAT LOGGING

Simply use fixed-NAT / alogrithmic-NAT / deterministic-NAT. This code compresses /18 adresses into one /24 Prefix. By statically assigning 1008 Ports to each internal User. Limitations: only UDP and TCP ist being NATed in a fixed way. ICMP is being NATed in the loose way. GRE and other protocols are...
by sup5
Sat Jun 22, 2019 2:26 pm
Forum: Forwarding Protocols
Topic: MPLS over GRE MTU question
Replies: 8
Views: 5302

Re: MPLS over GRE MTU question

How is MPLS over GRE supposed to work anyways? MPLS relies on injecting labels between MAC and IP. That's why it is called Layer-2,5 sometimes. GRE-payload is IP only, so I don't see a possibility to transport MPLS labels to establish an LSP. However it will work with proprietary EoIP, which is some...
by sup5
Thu May 09, 2019 3:20 pm
Forum: General
Topic: EOIP TCP problem
Replies: 17
Views: 4567

Re: EOIP TCP problem

As long as there is no packetloss TCP will scale up the bandwidth even on high latency links.

But every tiny bit of packetloss on high latency links will kill throughput.
by sup5
Sun Apr 21, 2019 11:52 am
Forum: General
Topic: DHCP + RADIUS Framed-Route behaviour
Replies: 11
Views: 6045

Re: DHCP + RADIUS Framed-Route behaviour

Try this on DHCP-Client:

special-classless - adds both classless route if received and default route (MS style)
by sup5
Fri Mar 22, 2019 9:16 am
Forum: Wireless Networking
Topic: Bridge port received packet with own address as source, probably loop
Replies: 54
Views: 124257

Re: Bridge port received packet with own address as source, probably loop

Mikrotik has confirmed that this is an issue with neighbor discovery.
But since they assume that this is just a cosmetical issue, a time/date for a fix of this issue will be in the far future.
by sup5
Tue Mar 05, 2019 9:51 am
Forum: General
Topic: RB2011 CPU 100%
Replies: 3
Views: 1499

Re: RB2011 CPU 100%

Hi All,

My RB2011 showing high CPU load 100% and when i check in tools - profile the DHCP process is consume CPU more than other process but the weird is no DHCP setup on my mikrotik, for reference i'm attaching the screenshot of my mikrotik dhcp cause cpu high.JPG
RouterOS Version 6.1? Really?
by sup5
Fri Mar 01, 2019 4:00 pm
Forum: Wireless Networking
Topic: Bridge port received packet with own address as source, probably loop
Replies: 54
Views: 124257

Re: Bridge port received packet with own address as source, probably loop

I've got the same problem. STP definitively BLOCKs the Loop in my infrastructure. The message "bridge port received packet with own address as source address" disappears as soon as I disable neighbor discovery. So I suspect that either Neighbor discovery is broken, or that STP-Blocked Port...
by sup5
Tue Jan 29, 2019 9:44 am
Forum: General
Topic: Don't buy Mikrotik hardware! NO SUPPORT
Replies: 23
Views: 4545

Re: Don't buy Mikrotik hardware! NO SUPPORT

I am sitting between the chairs with Mikrotik Hard- and Software: On the one hand I get an extremely flexible and cheap product. Also software updates are regulary and bugs are often resolvend in a manner of weeks (occurence of the bugfix in rc) On the other hand the quality of Hard- and Software se...
by sup5
Thu Jan 03, 2019 1:14 pm
Forum: RouterBOARD hardware
Topic: hardware idea for a multiport switch
Replies: 90
Views: 122492

Re: hardware idea for a multiport switch

Upwards facing ports always are collecting dust.
And don't tell me everyone is putting dust-caps on unused ports...
by sup5
Thu Dec 20, 2018 8:26 am
Forum: General
Topic: Omnitik 5 retired from Spain
Replies: 8
Views: 2897

Re: Omnitik 5 retired from Spain

How does the discussion about beta firmware relates to rf irradiation issues? The regulatory authority claimed (in my case) that some sort of bad/wrong rf besides the main signal is being radiated by the device. I think this kind of issue is not fixable with firmware. It seems to be an hardware rela...
by sup5
Wed Dec 19, 2018 1:49 pm
Forum: General
Topic: Omnitik 5 retired from Spain
Replies: 8
Views: 2897

Re: Omnitik 5 retired from Spain

I received a similar letter from the german regulatory authority (BNetzA), which says that the SXT-ac must not be sold, handed over or imported. The german letter referred to findings of the above mentioned spanish authority. I sent this german letter to MikroTik several weeks ago, but a statement o...
by sup5
Fri Oct 26, 2018 3:09 pm
Forum: General
Topic: EOIP inside PPTP only works with tunnel id 0
Replies: 5
Views: 1523

Re: EOIP inside PPTP only works with tunnel id 0

But still, it would be nice to investigate the issue the OP raised. Bugs always should be considered checking.
by sup5
Tue Oct 02, 2018 2:38 pm
Forum: General
Topic: New IP cloud is coming.
Replies: 84
Views: 46712

Re: New IP cloud is coming.

It would be nice to have the option NOT to restore or backup MAC-addresses on HW-interfaces (Ethernet and Wireless).
Restoring MAC-addresses of logical interfaces like bridges, EoIP, VPLS and the like is useful though.
by sup5
Tue Sep 18, 2018 8:39 am
Forum: Wireless Networking
Topic: Why is MikroTik's new product—S+RJ10 10GBASE-T module so cheap?
Replies: 10
Views: 7371

Re: Why is MikroTik's new product—S+RJ10 10GBASE-T module so cheap?

3.Is it possible to use CAT.5E cable to link with 10GBASE-T? A: No. The standard bandwidth of CAT.5E is 100MHz, and CAT.5E is designed to transmit signals below 90M. 10 Gigabit signal transmission requires a CAT.6A patch cable. 10GBase-T will work even with Cat5e as long as the distances are short....
by sup5
Fri Aug 17, 2018 10:45 pm
Forum: General
Topic: balance-tlb for Wireless Links
Replies: 6
Views: 1818

Re: balance-tlb for Wireless Links

Maybe pulling one VLAN trough the slower link and two VLANs through the faster link.
Then make a 3x bonding out of all three VLANs.
That would make up for a 2:1 load balancing, which roughly meets the 50/32 ratio.
by sup5
Sat Aug 04, 2018 12:51 pm
Forum: Beginner Basics
Topic: dhcp lease table
Replies: 5
Views: 1741

Re: dhcp lease table

When an ARP entry is present in the ARP-table, one can surely assume that a given IP address is being used.
by sup5
Sun Jul 22, 2018 8:38 pm
Forum: Wireless Networking
Topic: Wireless Wire MTU, stability
Replies: 5
Views: 3513

Re: Wireless Wire MTU, stability

You might create a temporary workaround by setting up an EoIP or VPLS tunnel over the wirless link.

Both tunnel types support fragmentation and reassembly
by sup5
Sat Jul 14, 2018 5:35 pm
Forum: Beginner Basics
Topic: Moving from /24 to /23 [SOLVED]
Replies: 3
Views: 2860

Re: Moving from /24 to /23

you should probably try to segment your networks in order to increase security and stability.

It is not best practice to host more than 200 clients per broadcast domain.
by sup5
Mon Jul 02, 2018 7:32 pm
Forum: General
Topic: IP address on backup VRRP is invalid [SOLVED]
Replies: 5
Views: 2611

Re: IP address on backup VRRP is invalid [SOLVED]

I think, you got your subnet masks wrong.
VRRP-Interfaces always should be configured with /32
by sup5
Fri Jun 29, 2018 11:06 am
Forum: Wireless Networking
Topic: Nv2 High latency
Replies: 29
Views: 10196

Re: Nv2 High latency

Please paste the wireless configuration as well as all used device types (AP and Stations) including their full product name.
by sup5
Wed May 23, 2018 8:59 am
Forum: Wireless Networking
Topic: Again on WAP-AC PoE requirement
Replies: 7
Views: 2301

Re: Again on WAP-AC PoE requirement

It seems they are missing galvanic isolation. Do you even electric? :) Galvanic isolation is broad term for anything what physically isolates two circuits while maintaining signal transmission between them. For example every gbit poe port must have galvanic isolation to separate power from signal w...
by sup5
Tue May 22, 2018 4:17 pm
Forum: Wireless Networking
Topic: Again on WAP-AC PoE requirement
Replies: 7
Views: 2301

Re: Again on WAP-AC PoE requirement

Mikrotik devices simply are NOT fully 802.11af/at compliant.

They might be compatible to some switches, yes.
But they lack the support of all requirements.

It seems they are missing galvanic isolation.
by sup5
Thu May 17, 2018 8:39 pm
Forum: General
Topic: SNMP OID for signal strength on PTP links
Replies: 2
Views: 3317

Re: SNMP OID for signal strength on PTP links

108.59.107.117.141.153 6C:3B:6B:75:8D:99 76.94.12.124.6.8 4C:5E:0C:7C:06:08 simply a DEC <-> HEX conversion. But I agree with you: There should be some kind of generic OID for PTP-links, because monitoring them is a PITA right now! Anyhow, you can try to change the MAC-Address of the WiFi-Interfaces...
by sup5
Thu May 17, 2018 8:13 pm
Forum: Wireless Networking
Topic: WAP60G 5GHz Support
Replies: 20
Views: 4618

Re: WAP60G 5GHz Support

Ignitnet 60 ghz solutions have the 5 GHz for backup I hope that MIkortik in near future develope a similar solution For that price, why not just put a second link with a couple of SXTsq Lite5? Because that means: 1) add another router (i.e. HexPoE) to each site to maintain the redundancy functional...
by sup5
Thu May 17, 2018 7:58 pm
Forum: General
Topic: LHG 60 project in Hawaii
Replies: 99
Views: 38008

Re: LHG 60 project in Hawaii

Antonsb I hope you are true ;-)

And I hope to see a version with integrated 5 Ghz backup
+1 Can't be to diffilcult
Seems to be already prepared in WAP60G and LHG60G. Just missing the Amplifiers and Internal Antennas.
by sup5
Thu May 17, 2018 12:50 am
Forum: Wireless Networking
Topic: WAP60G 5GHz Support
Replies: 20
Views: 4618

Re: WAP60G 5GHz Support

Today I opened the WAP60G. It seems that 802.11ac Wave2 2x2 MIMO already has been prepared on the PCB in terms of missing amplifiers and antennas/connectors (labeled CH0 and CH1) for the 5GHz band. Have a look at the pictures below. So it could be possible, that we would get a future RB-LHG60G5HPacD...
by sup5
Wed May 16, 2018 6:25 pm
Forum: General
Topic: LHG 60 project in Hawaii
Replies: 99
Views: 38008

Re: LHG 60 project in Hawaii

Is there any chance to overcome 3000 meters?
by sup5
Mon May 07, 2018 9:43 pm
Forum: Announcements
Topic: Newsletter #82 (May 2018)
Replies: 38
Views: 23319

Re: Newsletter #82 (May 2018)

I made quite good experiences using PLC stuff. If done right it works better than WiFi under certain circumstances. I once lived in a flat, where plain wifi was nearly impossible between rooms, due to overcrowded spectrum in 2.4 as well as 5 GHz bands. The only possiblity without putting in new netw...
by sup5
Sun May 06, 2018 1:11 am
Forum: Announcements
Topic: Newsletter #82 (May 2018)
Replies: 38
Views: 23319

Re: Newsletter #82 (May 2018)

PWR-Line devices don't work this way. They work more like WiFi using OFDM. -> Many small QAM carriers. HomeplugAV200 uses OFDM carriers between 2 and 32 MHz. Newer HomeplugAV standards extend to 85 MHz or more. Quality Brands will apply a PSD-mask to their devices to circumvent the 27 MHz ham band.
by sup5
Thu Apr 26, 2018 5:37 pm
Forum: Wireless Networking
Topic: wAP 60G experience
Replies: 313
Views: 93139

Re: wAP 60G experience

Hello, Question; With RouterOS 6.42 i saw w60g > status: MCS: 9/10/11. Now with RouterOS 6.42.1 i only see MCS: 8 or lower. Is this a bug of feature? jarod Seems to be a feature. http://rfmw.em.keysight.com/wireless/helpfiles/n7637/Content/Main/802.11ad%20Concepts.htm MCS8 is more than enough to ca...
by sup5
Sun Apr 22, 2018 8:46 pm
Forum: General
Topic: hap ac lite - ether ports max 100MBs
Replies: 4
Views: 1468

Re: hap ac lite - ether ports max 100MBs

That's the product specification.
Get another routerboard, if you need more speed than FastEthernet allows for.

I'd recommend the HAP ac.
by sup5
Sun Apr 22, 2018 7:46 pm
Forum: Wireless Networking
Topic: Ce Vs eC
Replies: 5
Views: 47641

Re: Ce Vs eC

Imagine, you're left with the non-DFS channels 36, 40, 44, and 48. But you want to setup a WiFi-System using 80MHz Channel Bonding. As simple as in the 20MHz-channels-setup you'll evenly distribute the four primary channels. But with 80MHz you have four options sharing the same Bonded-channel: Ceee,...
by sup5
Mon Apr 09, 2018 8:56 pm
Forum: General
Topic: How To Know EOIP Tunnel Status
Replies: 6
Views: 3582

Re: How To Know EOIP Tunnel Status

Just use the Keepalive-Feature.
A unreachable tunnel-endpoint results in a non-running Interface state.
by sup5
Wed Mar 28, 2018 11:03 pm
Forum: RouterBOARD hardware
Topic: LHG 60G
Replies: 63
Views: 21056

Re: LHG 60G

I'd like to see a bare distance vs. throughput/MCS table in order to be able to estimate possible use cases.
by sup5
Fri Mar 23, 2018 7:17 pm
Forum: Beginner Basics
Topic: Private PPPoE [SOLVED]
Replies: 9
Views: 2879

Re: Private PPPoE [SOLVED]

You need to use SRC-NAT to rewrite any connection initiated from the router to one of the Public adresses of the route Subnet.
In order to save addresses, I would abuse the very first address of the prefix, which is unusable within standard ethernet (Network address)
by sup5
Fri Mar 16, 2018 10:02 am
Forum: Wireless Networking
Topic: Wireless Wire RBwAPG-60ad plugged in and internet went down [SOLVED]
Replies: 18
Views: 5453

Re: Wireless Wire RBwAPG-60ad plugged in and internet went down [SOLVED]

So now you should find the cause within your network.
I suspect you've got multiple links to your internet gateway and forgot to configure a VLAN on one of the links

A simple STP-topology-change would never bring any services down, if the network was set up properly.
by sup5
Sat Mar 10, 2018 5:12 pm
Forum: General
Topic: Problem Duplicate MAC Andress in hotspot host list and ARP list
Replies: 6
Views: 2665

Re: Problem Duplicate MAC Andress in hotspot host list and ARP list

I guess, the 'station router' is a non Mikrotik-device?
Then you cannot achieve transparent bridging. Thus the MAC-adress of the clients will be MAC-NATed to the MAC-address of the 'station-router'
by sup5
Sat Mar 10, 2018 4:57 pm
Forum: Wireless Networking
Topic: Wireless Wire RBwAPG-60ad plugged in and internet went down [SOLVED]
Replies: 18
Views: 5453

Re: Wireless Wire RBwAPG-60ad plugged in and internet went down [SOLVED]

@webfixnow: It might be the case that the wap-60g alters your (R)STP Topology (you might have forgotten to configure a VLAN on a fromery blocked link). Set the STP Protocol-Mode on the bridge of both WAP-60G to "none" and try again. @Normis/Mikrotik: according to the default-configuration ...
by sup5
Sat Mar 10, 2018 1:26 pm
Forum: General
Topic: VRRP interface on bridge
Replies: 17
Views: 8440

Re: VRRP interface on bridge

As a general rule of thumb:

Always inform support about bugs. Do not rely on the forums.
Shrink the setup to the bare minimum in order to exhibit and reproduce the bug.
Add Diagrams and PCAPs etc.

Any bug I informed support about so far has been fixed.
by sup5
Sun Mar 04, 2018 12:58 pm
Forum: General
Topic: Need ISG Function on mikrotik?
Replies: 1
Views: 921

Re: Need ISG Function on mikrotik?

Briefly explain, what you are trying to accomplish.
by sup5
Fri Mar 02, 2018 10:42 am
Forum: General
Topic: VRRP interface on bridge
Replies: 17
Views: 8440

Re: VRRP interface on bridge

After a quick conversation with support, this issue was resolved within a few days in the latest release candidate:
What's new in 6.42rc35 (2018-Feb-26 10:46):
*) bridge - fixed MAC learning for VRRP interfaces on bridge;
by sup5
Sat Feb 24, 2018 8:16 am
Forum: General
Topic: Random disconnections in CMTS (HFC network)
Replies: 1
Views: 880

Re: Random disconnections in CMTS (HFC network)

Have a look here instead:
http://docsis.org/forum
by sup5
Wed Feb 21, 2018 12:08 pm
Forum: General
Topic: RB3011UiAS limited to 10 ports?
Replies: 2
Views: 886

Re: RB3011UiAS limited to 10 ports?

I cannot contribute to this issue, but still I am curious:
What's the point in adding twelve LTE-Modems to a router?
Better coverage by using multiple ISPs?
Load distribution?
by sup5
Sun Feb 11, 2018 12:23 pm
Forum: Announcements
Topic: v6.42rc [release candidate] is released!
Replies: 537
Views: 189421

Re: v6.42rc [release candidate] is released!

The Dude Client is broken after updating to 6.42rc24: Please wait while updating: "Bad http response from cloud" Where is the download for the windows-client? Edit: It seems like the Dude-Client tries to fetch this URL: https://upgrade.mikrotik.com/routeros/6.42rc24/dude-6.42rc24.tgz But i...
by sup5
Fri Feb 09, 2018 2:57 pm
Forum: General
Topic: IP Unnumberred: ARP not sourced by pref.source in route (Workarond found)
Replies: 7
Views: 1700

Re: IP Unnumberred: ARP not sourced by pref.source in route

you need to assign the ip-address of your loopback-bridge also to your ip-unnumbered interface: example loopback: address=1.2.3.4/32 network=1.2.3.4 ether1: address=1.2.3.4/32 network=5.6.7.8 this way arps asking for 5.6.7.8 will be sent out on ether1 if you want to route 2.3.4.5/24 to 5.6.7.8 add a...
by sup5
Thu Feb 08, 2018 7:38 pm
Forum: General
Topic: VRRP interface on bridge
Replies: 17
Views: 8440

Re: VRRP interface on bridge

Ran into this issue, too. Solved it by using a loop-cable on the router: ether1: ip-address of router vrrp1: slave of ether1 with virtual-ip address ether2: slave of the bridge containing all other needed ports exept of ether1 loop-cable between ether1 and ether2 Anyways. This is very undesirable! E...
by sup5
Wed Jan 31, 2018 10:53 pm
Forum: Wireless Networking
Topic: Terrible NV2 Ac Network P2MP
Replies: 13
Views: 3657

Re: Terrible NV2 Ac Network P2MP

HT MCS in .ac device is not adjustable :(
It is adjustable as soon as you downgrade the wireless band to 5GHz-A/N.
by sup5
Sat Jan 27, 2018 4:14 pm
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 381
Views: 199312

Re: Mikrotik VDSL / DSL Modem?

Will you also offer a Standalone CO-Module without the CPE-Module? Hallo Sub5, the the ALL4780 is a specific Bundle with Co and CPE inside the Box. Only Point-to-Point. Special Firmware who supporting max. 150MBPS. Only this CPE is working with the Slave CPE. THe ALL4781 is Standard VDSL for German...
by sup5
Fri Jan 26, 2018 1:18 am
Forum: RouterBOARD hardware
Topic: Mikrotik PowerRouter v3
Replies: 4
Views: 1806

Re: Mikrotik PowerRouter v3

These x86 Mikrotik Routers commonly are rebranded Axiomtek Network-Applicances eg.: http://www.axiomtek.com.tw/Download/Download/NA-820/NA-820.pdf http://www.axiomtek.com/Download/Spec/en-US/na550.pdf These arrive with their own quirks like occasional issues with Jumbo-Frames and MPLS-Fornwarding/De...
by sup5
Sat Dec 30, 2017 9:53 am
Forum: Wireless Networking
Topic: SXTsq 5 ac. WTF? It doesn't work.
Replies: 82
Views: 31019

Re: SXTsq 5 ac. WTF? It doesn't work.

normis, i show you it by pictiures. [...] Suppliers of the Mikrotik say that such situation not only at me one. There might another problem: Why does your registration show a TX-power of around -35 dBm, while it only receives at about -70dBm? This is a loss of over 35dB (factor 5000)! Something see...
by sup5
Tue Dec 26, 2017 7:08 pm
Forum: Announcements
Topic: v6.41 [current]
Replies: 304
Views: 139504

Re: v6.41 [current]

I think it will be needed to implement pseudo-interfaces in RouterOS. These pseudo-interfaces will be unremovable and greyed-out interfaces which connect the cpu with the switch-chip. [...] That is the bridge interface itself, isn't it? At least for bridges where there is only a single connected sw...
by sup5
Tue Dec 26, 2017 4:09 pm
Forum: Announcements
Topic: v6.41 [current]
Replies: 304
Views: 139504

Re: v6.41 [current]

I think it will be needed to implement pseudo-interfaces in RouterOS. These pseudo-interfaces will be unremovable and greyed-out interfaces which connect the cpu with the switch-chip. This way we could: - monitor the amount of traffic traversing the CPU-port (i.e. to monitor oversubscription of the ...
by sup5
Fri Dec 22, 2017 2:57 pm
Forum: General
Topic: Control and Forwarding PLanes of MikroTik
Replies: 3
Views: 1436

Re: Control and Forwarding PLanes of MikroTik

I guess this will painfully raise the price to the level of its competitors like Cisco, HP, Extreme etc.
by sup5
Fri Dec 22, 2017 12:31 pm
Forum: General
Topic: Control and Forwarding PLanes of MikroTik
Replies: 3
Views: 1436

Re: Control and Forwarding PLanes of MikroTik

Since Mikrotik devices do not have hardware based traffic forwarding (ASIC / FPGA and the like) everything needs to be done in software. Thus control and forwarding are both handled by the CPU. This makes these devices so cheap. The only exceptions with hardware-acceleration are Layer-2 forwarding u...
by sup5
Tue Dec 19, 2017 1:17 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 381
Views: 199312

Re: Mikrotik VDSL / DSL Modem?

Will you also offer a Standalone CO-Module without the CPE-Module?
by sup5
Sun Dec 17, 2017 10:59 pm
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 131
Views: 62026

Re: RB3011 port flopping - bad design

That's the worst explanation of egress buffer overflow and port flapping I ever read. So at least this should be mitigatable by employing flow-control. A switch must *never* drop the Layer-1 connectivity, when having issues handling large loads of traffic. So this simply is a sign of resignation ove...
by sup5
Sat Dec 16, 2017 5:05 am
Forum: Wireless Networking
Topic: Problem with haP AC
Replies: 9
Views: 2576

Re: Problem with haP AC

-73 respective -85 dBm receive levels are quite low. This explains the issues you got there.
by sup5
Fri Dec 15, 2017 11:01 pm
Forum: General
Topic: VPN directly to AVAYA 96xx phone
Replies: 5
Views: 3049

Re: VPN directly to AVAYA 96xx phone

Passing the data of the PC-port through the VPN of the phone is not supported by AVAYA, AFAIK.
by sup5
Mon Dec 11, 2017 9:07 am
Forum: Forwarding Protocols
Topic: Minimal mtu for VPLS
Replies: 5
Views: 3782

Re: Minimal mtu for VPLS

If you ensure a consistent MPLS-MTU throughout your whole network, then any MTU should do. Mikrotik is doing fragmentation and reassembly automatically if the frame size needed by VPLS is exceeded. Traffic within VPLS will not notice it has been fragmented and reassembled. Thus you can transport any...
by sup5
Fri Dec 08, 2017 9:16 am
Forum: Beginner Basics
Topic: Mikrotik and provider 1und1 (resolved)
Replies: 3
Views: 3878

Re: Mikrotik and provider 1und1 (resolved)

Has anybody got IPv6 dualstack with Prefix-delegation working with 1und1 and PPPoE?
by sup5
Fri Dec 08, 2017 9:14 am
Forum: Forwarding Protocols
Topic: MPLS hardware offload in CRS317...how to enable?
Replies: 4
Views: 3658

Re: MPLS hardware offload in CRS317...how to enable?

Maybe it is Penultimate hop popping, which is interfering with hardware offload.

Try to place the CRS317 in the middle of five routers to prevent any label pushing or popping operations.
by sup5
Sun Dec 03, 2017 1:08 am
Forum: General
Topic: ARP strangeness
Replies: 8
Views: 3562

Re: ARP strangeness

I don't understand what you mean. In my setup all customers share the same VLAN (Broadcast Domain, VPLS instance, whatever you might call it). Layer-2 isolation between all clients is strictly enforced throughout the whole network. The Standard Gateway is configured to arp:reply-only, the dhcp serve...
by sup5
Fri Dec 01, 2017 12:19 pm
Forum: General
Topic: Forum troubles
Replies: 39
Views: 6914

Re: Forum troubles

Why don't you want to log in? Because I am using plenty of devices to look into the forums. But I get logged off when using too much simultenous logins. Thus I almost ever hit the forum as anonymous. So anonymous user got less permissions now. Maybe we will turn on Active Topics, but this is not a ...
by sup5
Fri Dec 01, 2017 1:39 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 381
Views: 199312

Re: Mikrotik VDSL / DSL Modem?

I am willing to try it nonetheless.
My vdsl-line has plenty of SNR (> 18 dB each direction) according to my current modem.

Can you recommend a (german) retailer that has this SFP in stock?
by sup5
Fri Dec 01, 2017 1:30 am
Forum: General
Topic: ARP strangeness
Replies: 8
Views: 3562

Re: ARP strangeness

If you hand out /32 subnet mask with public IPv4, your customers can reach any other customer, just like handing out /24 subnet masks with local proxy arp. The only difference: local-proxy-arp is dangerous and ugly. /32 subnet masks are elegant and very handy :-) A lot of providers do this already. ...
by sup5
Thu Nov 30, 2017 7:03 pm
Forum: General
Topic: ARP strangeness
Replies: 8
Views: 3562

Re: ARP strangeness

You can skip that local-proxy-arp stuff (just use arp:reply-only) if you are willing to hand out 32-bit subnet-masks (255.255.255.255) to your clients via DHCP.
This way the only arp-request a client ever asks for is its default gateway.

Handing out 32-bit subnet-masks is quite common nowadays.
by sup5
Tue Nov 21, 2017 4:20 am
Forum: Announcements
Topic: v6.41rc [release candidate] is released! New bridge implementation!
Replies: 561
Views: 207610

Re: v6.41rc [release candidate] is released! New bridge implementation!

Another issue with a max. of 3 seconds radius timeout is this: When the NAS reboots or a bunch of users is handed over from one NAS to another (PPPoE failover scenarios), reauthentication of these users will take ages. So users will complain. The NAS kicks the users before the radius was able to rep...
by sup5
Wed Nov 15, 2017 10:18 pm
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 381
Views: 199312

Re: Mikrotik VDSL / DSL Modem?

Ok, you are too late! I received one...
Does it work with German T-Com VDSL?
by sup5
Mon Nov 06, 2017 11:29 am
Forum: Wireless Networking
Topic: What is the point of an 802.11ac router with 10/100 ethernet?
Replies: 10
Views: 3374

Re: What is the point of an 802.11ac router with 10/100 ethernet?

The point is not wasting airtime.

5x SXTAClite will most likely exceed the 100mbps at the AC-base station.
Thus only there a Gigabit port will be needed.

A CPE device doesn't need a Gigabit port.
by sup5
Sun Oct 01, 2017 6:05 pm
Forum: General
Topic: why mikrotik donot support nat 444
Replies: 16
Views: 4920

Re: why mikrotik donot support nat 444

Oh, Mikrotik supports it.
Quite many (W)ISPs use it.
by sup5
Sat Sep 30, 2017 10:27 am
Forum: General
Topic: Why I am not using WinBox!
Replies: 29
Views: 6940

Re: Why I am not using WinBox!

You don't seriously recommend using Windows 10 ?!? I do not recommend anything here. I just offered a possible solution to people already using Windows-10. This thread is not about discussing which OS might be good or bad. This works to some degree. It makes it more readable, but I would like large...
by sup5
Thu Sep 28, 2017 9:37 am
Forum: General
Topic: Why I am not using WinBox!
Replies: 29
Views: 6940

Re: Why I am not using WinBox!

Have a look at this:
viewtopic.php?f=2&t=122904

Winbox fonts actually can be scaled.
by sup5
Tue Aug 01, 2017 9:26 am
Forum: Wireless Networking
Topic: New hardware form factors desired
Replies: 4
Views: 1333

Re: New hardware form factors desired

wsAP ac lite

https://mum.mikrotik.com/presentations/EU17/2017-eu.pdf

So it seems you just have to wait a little bit...
by sup5
Fri Jun 23, 2017 5:05 pm
Forum: General
Topic: WinBox on high dpi screens
Replies: 1
Views: 2731

WinBox on high dpi screens

It looks that all the pain with WinBox and high-dpi-screens is gone with the latest Update of Windows-10. Microsoft introduced a new scaling technique that will make WinBox look good at other than 96dpi/100% display scaling settings. Have a look at the images below. 1) right click two times on the W...
by sup5
Thu Jun 08, 2017 9:11 pm
Forum: Announcements
Topic: v6.40rc [release candidate] is released!
Replies: 231
Views: 77432

Re: v6.40rc [release candidate] is released!

*) wireless - fixed registration table "signal-strength" reporting for chains when using nv2; The TX-Power value has been fixed. The RX-Power on Ch1 is still a copy of the value of Ch0 See the actual output of a wireless link. Red Colour: wrong Green Colour: corrrect Site A: [admin@LHG5] ...
by sup5
Sat Jun 03, 2017 2:57 am
Forum: Beginner Basics
Topic: DHCP on slave interface
Replies: 5
Views: 9128

Re: DHCP on slave interface

DHCP Client on a slave interface also was very useful to trigger a DHCP renew on interface up/down event. This is necessary in various ARP-Guard/Dhcp-snooping situations.

This no longer is possible with the DHCP Client on the bridge.
by sup5
Wed May 31, 2017 10:55 pm
Forum: Announcements
Topic: v6.40rc [release candidate] is released!
Replies: 231
Views: 77432

Re: v6.40rc [release candidate] is released!

IP addresses from the shared transition space are given out to end-users/customers in case the provider lacks public IPv4-addresses.
This is commonly referred as NAT444.
by sup5
Sat May 13, 2017 2:12 pm
Forum: General
Topic: bridging with mac-learning turned off
Replies: 10
Views: 6130

Re: bridging with mac-learning turned off

router cannot receive frames through it, not even BC or MC
Especially this feature is important.
When connecting customer sites via VPLS/EoIP our Routers are not affected anymore by a broadcast-storm caused by the customer, if we got such a 'pipe' feature.
by sup5
Sun May 07, 2017 4:16 pm
Forum: Wireless Networking
Topic: SXT 5 AC vs SA5 AC
Replies: 14
Views: 3212

Re: SXT 5 AC vs SA5 AC

It all depends on
- your country's regulations
- your RF neighborhood (eg. how much RF pollution already is present)
etc.

So your mileage may vary...
by sup5
Sun May 07, 2017 12:56 am
Forum: Wireless Networking
Topic: SXT 5 AC vs SA5 AC
Replies: 14
Views: 3212

Re: SXT 5 AC vs SA5 AC

@jarda: After reading the posts again: Yeah, for such a short distance my proposal isn't relly important. It seems more 'academic'. @mistry7: I fully agree. Nowadays I always recommend LHG5 for any cheapish link. No matter how short the link might be. I only use SXTs if appearance, available space, ...
by sup5
Sat May 06, 2017 6:50 pm
Forum: Wireless Networking
Topic: SXT 5 AC vs SA5 AC
Replies: 14
Views: 3212

Re: SXT 5 AC vs SA5 AC

Polarisation is not the same as a radiation pattern. Just open the device and have a look by yourself. You'll see, why... The Radiation pattern of the SXT-SA5 is more wide and less tall than the radiation pattern of the SXT-5. Thus the rotation by 90° will make the beamwidth more narrow in the horiz...
by sup5
Sat May 06, 2017 6:18 pm
Forum: Wireless Networking
Topic: SXT 5 AC vs SA5 AC
Replies: 14
Views: 3212

Re: SXT 5 AC vs SA5 AC

You might want to turn the SXT-SA 90 degrees.
This will turn the Beamwidth from horizontal 90° to vertical 90°. This makes you PtP-link more interference resistant, because it is unlikely to have neighboring WiFi below or upwards...
by sup5
Sat Mar 18, 2017 4:59 pm
Forum: Wireless Networking
Topic: 802.11n Throughput
Replies: 6
Views: 2202

Re: 802.11n Throughput

The whole 802.11n and 802.11ac table is available here http://mcsindex.com/ quite comfortably. Note that all 802.11 rates are gross data rates. For 802.11n you need to reduce the gross data rate by two thirds to estimate the net data rate. The net data rate is half-duplex. (i.e. it is shared between...
by sup5
Mon Mar 06, 2017 12:19 am
Forum: RouterBOARD hardware
Topic: RB2011 PoE
Replies: 5
Views: 3158

Re: RB2011 PoE

There might be an alternative explanation:
Lots of switches apply negative power (eg. -48VDC)
This means the voltage applied to the RB2011 is reversed. Thus it switches off.
by sup5
Sun Mar 05, 2017 4:16 pm
Forum: RouterBOARD hardware
Topic: RB2011 PoE
Replies: 5
Views: 3158

Re: RB2011 PoE

If you connect a RB2011 with eth1 to a PoE 802.3af/at enabled port, the RB2011 will go down. This is mostly because of overvoltage protection.
Tested on several Standard-PoE-Switches.
by sup5
Sat Mar 04, 2017 11:13 am
Forum: General
Topic: I have 20 Mbps Internet connection how can I divide it to costumers.
Replies: 3
Views: 1722

Re: I have 20 Mbps Internet connection how can I divide it to costumers.

The oversubscription ratio highly depends on the type of customer you're facing and the max. bandwidth you're going to sell. Do you intend to create a residential internet connection or a walk-by hotspot? What's the typical age of your customers? Private or business customer? In big ISP networks you...
by sup5
Sun Feb 12, 2017 5:07 pm
Forum: General
Topic: Hotspot dhcp offering leases by MAC Address Generator
Replies: 9
Views: 2187

Re: Hotspot dhcp offering leases by MAC Address Generator

There might be a solution:

1) create an insanely big DHCP IP-Pool for your Hotspot Service like : 10.0.0.2 - 10.255.255.254
2) Reduce the lease-times to something like an hour or so.
3) Run the DHCP-Service on a Router with powerful CPU.
4) Apply Rate-Limiting to DHCP-Requests per AP or Client.
by sup5
Wed Feb 01, 2017 9:15 pm
Forum: Forwarding Protocols
Topic: Forcing VPLS to fragment on egress
Replies: 3
Views: 1599

Re: Forcing VPLS to fragment on egress

You might pull an EoIP-Tunnel trough the leased-line.
Then Tunnel the MPLS/VPLS through this EoIP-Tunnel.

The EoIP-Tunnel will enlarge the MTU by fragmenting and reassmbling the MPLS/VPLS frames.
by sup5
Sun Jan 08, 2017 3:38 pm
Forum: Wireless Networking
Topic: The connection between the two SXT on the vehicle
Replies: 23
Views: 5309

Re: The connection between the two SXT on the vehicle

I am not familiar with the Upiquity products. I just know that there is support for zero-handoff roaming.

Mikrotik Hotspot works as long as you establish a Layer-2 Connection between End-User and Hotspot Gateway.
This might include ordinary bridging, tunneling with EoIP/L2TP or MPLS/VPLS
by sup5
Sun Jan 08, 2017 2:17 pm
Forum: Wireless Networking
Topic: The connection between the two SXT on the vehicle
Replies: 23
Views: 5309

Re: The connection between the two SXT on the vehicle

I'd say this won't work, because of roaming issues (ie. handover issues) and interference issues

You might be better using Ubiquity's Zero-Handoff APs
or Meru's (now Fortinet) Seamless Roaming approach.

With Microcell architecure and without extended Roaming support you're lost here.
by sup5
Sun Jan 08, 2017 2:46 am
Forum: Wireless Networking
Topic: hAP ac with terrible speeds
Replies: 8
Views: 2333

Re: hAP ac with terrible speeds

Don't use ROS 6.38.
It has a severe bug regarding MAC-address learing and thus floods all unicast traffic.
Simply get ROS 6.37.3 from the Firmware archive: http://download2.mikrotik.com/routeros/ ... 6.37.3.zip

Or alternatively install the latest 6.39rc
by sup5
Fri Jan 06, 2017 8:05 pm
Forum: Announcements
Topic: v6.38 [current] is released!
Replies: 168
Views: 63646

Re: v6.38 [current] is released!

Important note!!! To avoid STP/RSTP compatibility issues with older RouterOS versions upgrade RouterOS on all routers in Layer2 networks with VLAN and STP/RSTP configurations. Is there a detailed description how (PV)(R)STP was handled prior ROS 6.38 versus it is being handled with ROS 6.38? There s...
by sup5
Tue Jan 03, 2017 11:41 pm
Forum: Announcements
Topic: v6.38 [current] is released!
Replies: 168
Views: 63646

Re: v6.38 [current] is released!

Today I found a severe bug with 6.38:
It will not (or at least incompletely) learn MAC-Addresses on a bridge connected to the master-port of a switch.

This totally might explain these issues.
by sup5
Tue Dec 20, 2016 12:37 am
Forum: Forwarding Protocols
Topic: Default route and virtual link
Replies: 5
Views: 3509

Re: Default route and virtual link

You might try to setup an EoIP-Tunnel to mimic the virtual link.
by sup5
Fri Dec 16, 2016 11:28 pm
Forum: General
Topic: Huge bug: Mikrotik allows adding overlapping networks.
Replies: 15
Views: 3578

Re: Huge bug: Mikrotik allows adding overlapping networks.

Are you saying that assigning 10.7.19.89/29 (the same IP address) to two different interfaces and having different hosts on these two interfaces in the same network is a perfectly valid configuration? [...] You think it's normal to have such a configuration? Such a configuration may be suitable und...
by sup5
Fri Dec 16, 2016 9:05 pm
Forum: General
Topic: Huge bug: Mikrotik allows adding overlapping networks.
Replies: 15
Views: 3578

Re: Huge bug: Mikrotik allows adding overlapping networks.

I love using overlapping subnets.
It sometimes eases deployments and avoids weird NAT-scenarios.
Also overlapping subnets can solve IPv4 shortage.
It is possible to route between mikrotik routers only wasting one public IPv4 address per Router....
by sup5
Wed Dec 14, 2016 12:23 am
Forum: General
Topic: EoIP Weirdness
Replies: 6
Views: 1837

Re: EoIP Weirdness

show your config with and without EoIP added.
by sup5
Tue Dec 13, 2016 11:35 pm
Forum: General
Topic: EoIP Weirdness
Replies: 6
Views: 1837

Re: EoIP Weirdness

set an ADMIN-MAC to your Bridge.
by sup5
Tue Dec 13, 2016 12:05 am
Forum: Wireless Networking
Topic: hAP AC wireless connectors
Replies: 8
Views: 2756

Re: hAP AC wireless connectors

I just added two external antennas to my HAP AC. It just needs a careful removal of the hot glue above the U.FL connectors of 2GHz-ch2 and 5GHz-ch2. First I warmed it up a bit to remove the U.FL connector of the internal antenna. Then I carefully pulled it from the PCB to make room for the external ...
by sup5
Sun Dec 11, 2016 1:16 pm
Forum: Wireless Networking
Topic: wAP ac disconnects from CAPsMAN
Replies: 3
Views: 2022

Re: wAP ac disconnects from CAPsMAN

If you want help, you need at least post some more information like a network diagram, configurations and the like.
by sup5
Wed Dec 07, 2016 12:30 am
Forum: Wireless Networking
Topic: SXT SA5 ac rebooting with nv2 active
Replies: 4
Views: 1569

Re: SXT SA5 ac rebooting with nv2 active

check the voltage via system/health.

It might be the case that the supply voltage is dropping too much over long cable runs.

nv2 might be more energy intense than plain 802.11
by sup5
Sun Dec 04, 2016 2:14 pm
Forum: Wireless Networking
Topic: CAPSMAN responding with wrong IP-address
Replies: 0
Views: 782

CAPSMAN responding with wrong IP-address

I've got a CAPSMAN connected to the rest of the network with redundant links (eg.: ether1 192.168.1.1/30 & ether2 192.168.1.5/30). I want all CAPs to connect to the loopback IP-address of this CAPSMAN. (eg. bridge loopback 192.168.123.123/32) When I setup the CAP to connect to 192.168.123.123 it...
by sup5
Wed Nov 23, 2016 2:42 pm
Forum: The Dude
Topic: The Dude, v6.38rc test builds.
Replies: 189
Views: 60638

Re: The Dude, v6.38rc test builds.

Currently I solve this issue by putting a static-item inbetween a link.

This allows for
- links with angles
- setting both ends of a link with interface (and stats)
- drawing more than one link between two devices.
by sup5
Wed Nov 23, 2016 9:22 am
Forum: General
Topic: HotSpot DoS
Replies: 10
Views: 3448

Re: HotSpot DoS

Also set in dhcp-server "add arp for leases"
by sup5
Tue Nov 08, 2016 7:09 pm
Forum: Wireless Networking
Topic: HT-MCS tab hides when setting Band to 2GHz-G/N
Replies: 1
Views: 1090

HT-MCS tab hides when setting Band to 2GHz-G/N

there seems to be a bug with the winbox. I see this bug with version 6.37.1 and version 6.38rc24 When I set the wireless band to 2GHz-G/N (to avoid using 802.11b rates) immediatelly the HT-MCS tab is hidden in winbox. I attached two screenshots to exhibit this issue. Here everything is ok: HT-MCS-bg...
by sup5
Sun Nov 06, 2016 10:38 am
Forum: Forwarding Protocols
Topic: MikroTik Ethertype 0x0027 purpose (MPLS)?
Replies: 3
Views: 3480

Re: MikroTik Ethertype 0x0027 purpose (MPLS)?

You can try capturing these frames with the packet sniffer.
Then upload the file to this foum for investigation.
by sup5
Sat Oct 15, 2016 12:56 pm
Forum: General
Topic: Ling Aggregation LACP how make stable 2Gb/s
Replies: 4
Views: 21588

Re: Ling Aggregation LACP how make stable 2Gb/s

In general Link-Aggregation won't make a single connection faster than the native link speed of a single link. The only benefits of link-aggregation are redundancy and overall better throughput when serving multiple clients, because each client connection will be placed on one of the links. The only...
by sup5
Thu Oct 13, 2016 12:40 am
Forum: General
Topic: High packet loss switching UDP traffic
Replies: 3
Views: 6718

Re: High packet loss switching UDP traffic

dcdorsey777, 1) how did you interconnect the 1000M and the 100M port? a) via a bridge-ports b) via the switch-chip using the master-port setting 2) did you try to toy around with various interface queue types and buffer depths? You might change from "hardware-only-queue" to pfifo or someth...
by sup5
Wed Oct 12, 2016 9:26 pm
Forum: Virtualization
Topic: demo MetaROUTER image to crash RouterOS (with source code)
Replies: 4
Views: 3423

Re: demo MetaROUTER image to crash RouterOS (with source code)

Hi majbthrd, can you create a metarouter with two interfaces that simply forwards any traffic from interface one to interface two? That might be in form of a bridge, or even better like a kind of a virtual-wire: ie. transmitting each received frame from port 1 to port 2 and vice versa. This could he...
by sup5
Sat Oct 08, 2016 9:21 am
Forum: Virtualization
Topic: CHR feature requests
Replies: 81
Views: 36931

Re: CHR feature requests

I'd love DNS Request routing. This means that the DNS-Service of RouterOS shall redirect its DNS-Request upon a certain rule set (eg. DNS prefix or suffix) to another DNS Server Example with Sophos UTM https://community.sophos.com/kb/de-de/123099 This feature would allow hierachical DNS-Setups with ...
by sup5
Fri Oct 07, 2016 12:49 am
Forum: General
Topic: Two DHCP addresses for WAN possible?
Replies: 10
Views: 3557

Re: Two DHCP addresses for WAN possible?

as a last way one could setup a metarouter with a least three interfaces.
these three interfaces needs to be bridged within the metarouter.

then one can use the metarouter as virtual cable/switch. this will remove the need for an external switch.

I've tried this before. it works.
by sup5
Thu Oct 06, 2016 8:56 pm
Forum: General
Topic: Two DHCP addresses for WAN possible?
Replies: 10
Views: 3557

Re: Two DHCP addresses for WAN possible?

Actually this is possible.


example:
1) create a new bridge1
2) add ether1 (WAN) to bridge1
3) change the admin-mac of bridge1 to a different mac-address than ether1
4) add two ip-dhcp-clients, one each on ether1 and bridge1
that's it.
by sup5
Thu Oct 06, 2016 6:56 pm
Forum: General
Topic: 802.11ac spectral scan
Replies: 157
Views: 53760

Re: 802.11ac spectral scan

Although this doesn't help most people with this issue, the hAP AC (full, not lite) can do spectral scan w/AC. (Therefore it seems the lack of the function is something to do with the chip itself rather than whether it is AC or N) This only works with the 2.4 GHz WLAN interface. It doesn't work wit...
by sup5
Thu Oct 06, 2016 6:29 pm
Forum: General
Topic: Torch and Packet Sniffer not working with L2TP
Replies: 0
Views: 889

Torch and Packet Sniffer not working with L2TP

Whenever I try to torch or packet sniff on L2TP interfaces I get no output.
Any other interface type is working with torch or the packet sniffer.
Can anyone confirm this?
by sup5
Tue Sep 27, 2016 10:44 pm
Forum: Forwarding Protocols
Topic: MPLS/VPLS *over* EoIP - possible?
Replies: 3
Views: 2362

Re: MPLS/VPLS *over* EoIP - possible?

I've done this before. It works quite well.
You might also try to use L2TP...
by sup5
Thu Sep 01, 2016 1:23 am
Forum: General
Topic: Feature request: Virtual Interface
Replies: 36
Views: 10514

Re: Feature request: Virtual Interface

In the past I also got the need to bridge bridges: I wanted to push two independent Layer-2 datastreams through one mikrotik device. Thus utilizing both incoming and both outgoing links simultanenously without blocking one of them. Ie.: Eth1 and eth2 on bridge1 Eth3 and eth4 on bridge2 Now I wanted ...
by sup5
Tue Aug 02, 2016 3:27 pm
Forum: General
Topic: OmniTIK U-5HnD POEout not strong enough for Axis M3004-v IP camera?
Replies: 3
Views: 1359

Re: OmniTIK U-5HnD POEout not strong enough for Axis M3004-v IP camera?

Does the camera support passive PoE?
Most cameras only support active PoE 802.3af at.
by sup5
Tue Aug 02, 2016 9:19 am
Forum: RouterBOARD hardware
Topic: CRS as PPPoE Server - Low Performance
Replies: 19
Views: 5414

Re: CRS as PPPoE Server - Low Performance

I do not think that switching will give a noticeable performance gain over bridging in this scenario. Each PPPoE Packet needs to be handled be the CPU anyways. Also there is no client to client communication on layer 2. Thus all traffic is being forwarded from clients to CPU. This wont change with s...
by sup5
Mon Aug 01, 2016 9:30 am
Forum: RouterBOARD hardware
Topic: CRS as PPPoE Server - Low Performance
Replies: 19
Views: 5414

Re: CRS as PPPoE Server - Low Performance

1) You are using unusual MTU values.
Just leave them default.
Ethernet = 1500
PPPoE = 1492

2) NEVER EVER assign an IP-address to your PPPoE server interface

3) Always use split horizon bridging!

4) what's the EoIP Tunnel for?

5) why BGP on this poor device?
by sup5
Fri Jul 29, 2016 12:56 am
Forum: RouterBOARD hardware
Topic: CRS as PPPoE Server - Low Performance
Replies: 19
Views: 5414

Re: CRS as PPPoE Server - Low Performance

post your configuration.
I doubt that PPPoE will max out at 20 Mbps with the CRS. 
I ran PPPoE on boxes with lower performance successfully.
by sup5
Fri Jul 15, 2016 2:55 pm
Forum: Wireless Networking
Topic: seamless roaming not working properly
Replies: 12
Views: 4859

Re: seamless roaming not working properly

I am well aware of the fact that SCI presents a single AP to the client. I didn't want to make it too complicated. I am running several infrastructures with Meru and 802.11ac in SCI. It works damn well. Customers are very happy with it. A Meru representative never told about anything like dropping s...
by sup5
Fri Jul 15, 2016 2:11 pm
Forum: Wireless Networking
Topic: seamless roaming not working properly
Replies: 12
Views: 4859

Re: seamless roaming not working properly

Seamless roaming will only work prperly with these vendors Meru (now Fortinet) and Extricom. But use a single-channel infrastructure. Roaming is not anymore a decision of the client with these vendors. Also Ubiquity offers a seamless roaming mode, but this one is only recommended on low occupied noe...
by sup5
Sun Jul 10, 2016 4:06 pm
Forum: Beginner Basics
Topic: yet another "client isolation" problem
Replies: 13
Views: 2975

Re: yet another "client isolation" problem

These rules seem too complicated to me.

Just use horizon bridging instead. It will do what other vendors call Port Isolation or Private VLAN Edge.
by sup5
Sat Jul 09, 2016 10:49 pm
Forum: Forwarding Protocols
Topic: Shortest Path Bridging (SPB)
Replies: 10
Views: 7927

Re: Shortest Path Bridging (SPB)

You can use almost all features of SPB right now by simply implementing MPLS with VPLS and/or VRF.

So I doubt Mikrotik will ever introduce SPB, because a similar Layer 2/3 abstraction service already is available.

But introduction of IS-IS and MPLS-FRR would be very welcome.
by sup5
Thu May 26, 2016 11:00 am
Forum: RouterBOARD hardware
Topic: mAP Lite Ethernet susceptible to interference!
Replies: 49
Views: 16674

Re: mAP Lite Ethernet susceptible to interference!

One thing looks suspicious.
Since approx. two to three weeks no online shop I could find has MAPlite on stock.
But I remember they were available before this timeframe.

So I assume they all sent back their MAPs to Mikrotik for inspection.
by sup5
Mon May 02, 2016 8:48 pm
Forum: General
Topic: EoIP IPsec Secrect doesn't inherit Security settings from default IPSec Proposal
Replies: 1
Views: 1145

EoIP IPsec Secrect doesn't inherit Security settings from default IPSec Proposal

Hi everyone, I am trying to setup IPSec encrypted EoIP Tunnels between remote peers. I want to use another than the default IPSec encryption scheme, so I changed the default Proposal: ip -> ipsec -> proposals -> default But the change is not being reflected within the dynamic created ipsec-peer for ...
by sup5
Sun May 01, 2016 2:42 pm
Forum: General
Topic: How can drop netcut
Replies: 4
Views: 2911

Re: How can drop netcut

You cannot simply 'drop' it. Bussiness class ethernet switches support a feature called Dynamic ARP Inspection, but it only works with dynamically assigned IP addresses (DHCP). Mikrotik doesn't offer DAI. But if a direct communication between the clients isn't necessary and all adresses are assigned...
by sup5
Mon Feb 15, 2016 10:23 pm
Forum: General
Topic: 10G vs multiple 1G link aggregation
Replies: 2
Views: 1674

Re: 10G vs multiple 1G link aggregation

I can only speak for Link Aggregation in general, I've not configured it with Mikrotik devices yet. pros: - it adds redundancy - it adds Bandwidth - it adds culumulative Bandwidth in the case of per packet loadbalancing (hashing mode xor) ie.: 2x1 Gbps == real 2Gbps negs: - it adds complexity - it u...
by sup5
Thu Feb 04, 2016 1:06 am
Forum: Announcements
Topic: Winbox3.1 released!
Replies: 49
Views: 56694

Re: Winbox3.1 released!

There still is no fix for the high DPI setting.
I got trunked lines all over the place with Windows-7 DPI set to 150% and Classic Theme.
by sup5
Fri Jan 15, 2016 12:47 am
Forum: General
Topic: stacking a cloud core router and a RB1100AH-X2
Replies: 4
Views: 2756

Re: stacking a cloud core router and a RB1100AH-X2

Stacking of routing-switches (eg. layer-3 switches) is very common nowadays. All switches in a stack become a single logical device: You can span link-aggregation-groups (eg. bonding) across the units of a stack. Also routing does NOT require fancy techniques like VRRP; the stack only uses a single ...
by sup5
Sat Oct 24, 2015 6:11 pm
Forum: Beginner Basics
Topic: How to Hide Gateway from customer
Replies: 16
Views: 4835

Re: How to Hide Gateway from customer

User Isolation is the key here. (Horizon Bridging and Wireless isolation)

Just make sure there is no Layer-2 connectivity between the users.
by sup5
Mon Aug 17, 2015 12:32 pm
Forum: Wireless Networking
Topic: WI-FI ROAMING 802.11r QUESTION
Replies: 41
Views: 27954

Re: WI-FI ROAMING 802.11r QUESTION

If you really need seamless Wifi Roaming you need to choose another vendor: Meru Networks.
They use the "single channel architecture", which makes all access points appear as a single one to WiFi clients.
Roaming will happen in lesser than 50ms.
by sup5
Fri Jul 17, 2015 2:37 am
Forum: Beginner Basics
Topic: ARP entries not populated
Replies: 4
Views: 2103

Re: ARP entries not populated

A switch doesn't need to learn ARP.
by sup5
Wed Mar 04, 2015 2:01 am
Forum: RouterBOARD hardware
Topic: Using Mikrotik as Business Network
Replies: 7
Views: 5271

Re: Using Mikrotik as Business Network

Seriously, I wouldn't use Mikrotik Routers and Switches in the Access Layer of a Business LAN Architecture. THere simply laking the features for these purposes. These are for example: - tagged and untagged VLAN on the same port in a mixed environmend - DHCP-Snooping, ARP-Guard, and other Port Securi...
by sup5
Fri Feb 13, 2015 12:33 pm
Forum: General
Topic: Cannot update/overwrite file on tftp-server?
Replies: 5
Views: 2891

Re: Cannot update/overwrite file on tftp-server?

Are there any plans to implement overwriting files via TFTP?

I try to provision VoIP-phones with RouterOS' DHCP/NTP/TFTP and these phones need to update/overwrite certain files.
But routerOS simply rejects these attemts with error code: 6
by sup5
Fri Sep 12, 2014 9:01 am
Forum: RouterBOARD hardware
Topic: POE over 4 wires (2 pair)
Replies: 18
Views: 30596

Re: POE over 4 wires (2 pair)

just get two gigabit poe-injectors from mikrotik.

then build four adapters to map wires like this:

1->4
2->5
3->7
6->8

this way you can transport 100mbps + passive poe over pairs 4/5 and 7/8
by sup5
Thu Jul 24, 2014 8:28 pm
Forum: General
Topic: Time on log screen unreadable.
Replies: 24
Views: 5479

Re: Time on log screen unreadable.

Thanks.

But keep in mind that this issue is not only related to UHD screens.
It is - correctly speaking - solely related to high dpi scaling.

Just imagine a administrator that is visually impaired and needs big fonts on a normal screen.
by sup5
Wed Jul 23, 2014 8:47 pm
Forum: General
Topic: Time on log screen unreadable.
Replies: 24
Views: 5479

Re: Time on log screen unreadable.

All programs I use are quite happy with my choice of 150% dpi. For sure I will NOT revert to 1920x1200 and 100% dpi just to make winbox look good. (If I would do so, the 4k screen would make no sense, eh?) UltraHD-Displays are pushing into the market for a year or so. You can now buy them for starti...
by sup5
Wed Jul 23, 2014 7:29 pm
Forum: General
Topic: Time on log screen unreadable.
Replies: 24
Views: 5479

Re: Time on log screen unreadable.

what settings have you applied in Windows that causes this?
I set the dpi-scaling to 150%
This is necessary since i use a 22.5 inch monitor with 3840x2400 pixels.

Image

Just reverting the dpi-value back to 100% is NO option.
by sup5
Wed Jul 23, 2014 12:13 am
Forum: General
Topic: Time on log screen unreadable.
Replies: 24
Views: 5479

Re: Time on log screen unreadable.

the new winbox version still is b0rked with high dpi settings (Windows-7):

Image

Even the windows option to disable scaling with high dpi values didn't help.
by sup5
Mon Jan 13, 2014 10:38 pm
Forum: General
Topic: Improved PPP package for v6.x
Replies: 45
Views: 21448

Re: Improved PPP package for v6.x

looks like he is using radius accounting for local auth (ssh, telnet, winbox) and for pppoe. thus anyone with valid pppoe-credentials might be able to log into his router via ssh/telnet/winbox :-P. and if the radius only allows for one session at a time, the pppoe-session gets killed, when a ssh-log...
by sup5
Sat Aug 24, 2013 4:31 pm
Forum: General
Topic: 2 different IP on single Cellular operator link
Replies: 2
Views: 1155

Re: 2 different IP on single Cellular operator link

You're getting an IP-Address from the shared transition space 100.64.0.0/10, which is used of ISPs for CGN/LSN in order to avoid overlap with the RFC1918 address space. This means your connection to the internet is masqueraded (NATed). You simply cannot connect from the outside. You need to estabils...
by sup5
Wed Aug 07, 2013 1:26 pm
Forum: The Dude
Topic: My ISP complains about snmp queries
Replies: 3
Views: 1994

Re: My ISP complains about snmp queries

Why does this ISP left open SNMP in the public network anyways?
Seems like a b0rk3d network design...
by sup5
Fri Jul 05, 2013 2:37 pm
Forum: General
Topic: ROS stop L3 forwarding for 2-3 minutes
Replies: 15
Views: 3785

Re: ROS stop L3 forwarding for 2-3 minutes

if you're using bridges then you should configure admin-macs.
maybe it helps.
by sup5
Mon Jul 01, 2013 12:04 pm
Forum: General
Topic: Bridge to Bridge
Replies: 5
Views: 3545

Re: Bridge to Bridge

just imagine that routing is no option here. just stay on the topic. also IP-adressing is not of concern here, cause it's simply Layer-2. if you want to connect two bridges in routeros the most simple solution is to add one usnused ethernet-port to each bridge and connect these two ports using a sho...
by sup5
Mon Jul 01, 2013 1:42 am
Forum: General
Topic: Bridge to Bridge
Replies: 5
Views: 3545

Re: Bridge to Bridge

connecting two eoip-tunnel-interfaces within one router simply doesn't work. I already tried that. Currently Metarouter seems to be the only option to connect two bridges within one router. Some time ago I also needed to cennect two independent RSTP-bridges within one router for reasons of failover ...
by sup5
Thu Jun 27, 2013 6:32 pm
Forum: Wireless Networking
Topic: Nstream is not suitable for 2x2 ?
Replies: 40
Views: 16342

Re: Nstream is not suitable for 2x2 ?

normis, but what do you say about my findings?
by sup5
Thu Jun 27, 2013 12:29 am
Forum: Wireless Networking
Topic: Nstream is not suitable for 2x2 ?
Replies: 40
Views: 16342

Re: Nstream is not suitable for 2x2 ?

I found out RouterOS 5.14 works stable with NSTREME on two chains,
where RouterOS 5.25 or 6.1 wont't work stable in the same situation.
Tested on several real life production links of varying distance and rf-"crowdiness".
by sup5
Fri Jun 21, 2013 11:39 am
Forum: Wireless Networking
Topic: Omnitik nv2 setup
Replies: 7
Views: 3422

Re: Omnitik nv2 setup

Many of your signal levels are far too low. This results in low air rates for the affected clients, which will lower your total throughput for all clients in return. Aim for -65dB RX-level (CPE and Omni). Use mikrotik linkcalc to estimate needed TX-Power and Antenna-type. Try to never go below -70dB...
by sup5
Sun May 26, 2013 7:19 pm
Forum: General
Topic: prevent static IP for pppoe users
Replies: 5
Views: 1837

Re: prevent static IP for pppoe users

then make sure you isolate PPPoE and IP.


Put your PPPoE Service into a VLAN/VPLS/EoIP and NEVER assign ANY IP-Adress into this broadcast domain.
by sup5
Mon May 06, 2013 1:09 pm
Forum: Wireless Networking
Topic: PPPoE Sessions Problem
Replies: 2
Views: 1117

Re: PPPoE Sessions Problem

make the mac-address of your pppoe-bridge static by using 'admin-mac'
by sup5
Wed Apr 10, 2013 7:29 pm
Forum: General
Topic: How to block PPPOE Servers run from clients
Replies: 2
Views: 2494

Re: How to block PPPOE Servers run from clients

Just make sure to isolate all users. This way no firewalling is needed at all.
The process has several names:
- horizon bridging
- private vlan edge (PVE)
- port isolation
- disabled default forwarding (WLAN)
by sup5
Wed Feb 13, 2013 8:53 am
Forum: Forwarding Protocols
Topic: OSPF Areas and MPLS VPLS Tunnels
Replies: 18
Views: 7636

Re: OSPF Areas and MPLS VPLS Tunnels

In Order to make vpls Work with ospf areas you need to ensure that you DON'T summarize the Routers loopback/ldp/Transport address.
by sup5
Wed Feb 13, 2013 8:53 am
Forum: Forwarding Protocols
Topic: OSPF Areas and MPLS VPLS Tunnels
Replies: 18
Views: 7636

Re: OSPF Areas and MPLS VPLS Tunnels

In Order to make vpls Work with ospf areas you need to ensure that you DON'T summarize the Routers loopback/ldp/Transport address.
by sup5
Wed Feb 13, 2013 8:45 am
Forum: General
Topic: Hardware reset to User configuration? - Metal 5
Replies: 5
Views: 2926

Re: Hardware reset to User configuration? - Metal 5

@csohns: how can this alternative Base configuration be installed with netinstall? I unsuccessfully looked many times for all documentation.
by sup5
Thu Feb 07, 2013 9:19 pm
Forum: General
Topic: Support for pppoe-relay?
Replies: 8
Views: 3213

Re: Support for pppoe-relay?

There is absolutely no problem with bridging and VPLS to transport PPPoE. you just need to do it right :) i concentrate hundreds of VPLS in a central location on one single bridge. Even using VLANs there is no issue at all. To prevent bad things from happen I just enabled horizon-bridging all the wa...
by sup5
Thu Dec 20, 2012 2:40 pm
Forum: RouterBOARD hardware
Topic: RB2011L incompatible with SMC switches?
Replies: 8
Views: 4494

Re: RB2011L incompatible with SMC switches?

I've got a simililar problem with the RB2011 and a Zyxel IES-5005 DSLAM. I cannot connect the RB2011 to the DSLAM with fibre-optics. It won't even show a running interface. It didn't matter which RouterOS or which kind of SFP I used. (650nm, 1310nm, 1000M, 100M) The only solution to get a working li...
by sup5
Thu Nov 08, 2012 4:17 pm
Forum: General
Topic: v6 RC2 released
Replies: 98
Views: 40855

Re: v6 RC2 released

I cannot netinstall a remote system.
by sup5
Thu Nov 08, 2012 3:41 pm
Forum: General
Topic: v6 RC2 released
Replies: 98
Views: 40855

Re: v6 RC2 released

how can I downgrade my RB1200 from RouterOS 6.0rc2 to RouterOS 5.21?

When I load all needed packages of ROS 5.21 to files and do:
sys packages downgrade
the only thing that happenes is a reboot.

After the reboot I still see version 6.0rc2 running!

The firmware is 2.38.
by sup5
Mon Oct 29, 2012 4:11 pm
Forum: General
Topic: x86 PC vs. MT RB1100AHx2
Replies: 11
Views: 4098

Re: x86 PC vs. MT RB1100AHx2

why bothering setting up the hardware yourself?
try a ready to go network appliance:
http://www.axiomtek.com/products/ListPr ... ptype3=233
by sup5
Mon Oct 29, 2012 1:59 pm
Forum: General
Topic: x86 PC vs. MT RB1100AHx2
Replies: 11
Views: 4098

Re: x86 PC vs. MT RB1100AHx2

My experience is exactly the opposite: with a RB1100AH (no x2) I only was able to terminate approx 300PPPoE sessions. (Conntrack off and Fixed MTU mangle optimization already done!) More sessions would have maxed out the cpu. With a PC-based Router (Xeon Quad Core 3GHz) I am able to terminate approx...
by sup5
Fri Oct 26, 2012 8:32 pm
Forum: General
Topic: DHCP Server Help - Assigning /32's to customers
Replies: 2
Views: 2927

Re: DHCP Server Help - Assigning /32's to customers

just click through the DHCP-setup wizard.
after completion goto the dhcp-server settings and change the subnet-mask to 255.255.255.255
this way your clients effectively get a /32 address.
by sup5
Wed Oct 24, 2012 8:31 pm
Forum: Forwarding Protocols
Topic: Fast Path
Replies: 4
Views: 5842

Re: Fast Path

how will VPLS en/de-capsulation be treated by fastpath?

1) will all traffic passing through a router with VPLS tunnels configured be non-fastpath?
2) will only traffic through the VPLS-interface be non-fastpath?
3) will all traffic including the traffic of the VPLS-interface be fastpath?
by sup5
Tue Oct 23, 2012 1:43 pm
Forum: General
Topic: 112/133
Replies: 1
Views: 793

Re: 112/133

you need to upgrade routerboot before you upgrade routeros.
you find it here:
system -> routerboard -> upgrade

if you already bricked your rb112/133 you can revive it by downgrading it to 5.6 with netinstall.
afterwards upgrade the bootloader, then upgrade routeros.
by sup5
Sat Oct 20, 2012 10:51 am
Forum: Wireless Networking
Topic: LTE is killing my Groove A-2hn Hotspot
Replies: 11
Views: 3811

Re: LTE is killing my Groove A-2hn Hotspot

This is due to the nature of cheap wireless equipment such es nearly every wireless-LAN hardware. They simply use no band-filter before the signal reaches the antenna pre-amp. So the high level and out-of-band will make the antenna pre-amp tune down its gain in order not to over amplify the incoming...
by sup5
Fri Oct 12, 2012 10:56 am
Forum: General
Topic: VRRP on PPPOE Server
Replies: 4
Views: 3476

Re: VRRP on PPPOE Server

you need to establish IBGP ir OSPF to announce the IP-Adresses between BGP-Router and your PPPoE-Serverss
by sup5
Tue Oct 09, 2012 6:36 pm
Forum: General
Topic: [Feature Request]Import overwrite settings
Replies: 6
Views: 3754

Re: [Feature Request]Import overwrite settings

@mrz;
could import file="file.rsc" modified in a such way
that it shows line numbers which failed to import?
Because currently it is nearly impossible to find the line which makes import throw an error.
by sup5
Fri Oct 05, 2012 6:58 pm
Forum: General
Topic: Tha most stable and fast tunnel?
Replies: 10
Views: 5756

Re: Tha most stable and fast tunnel?

use MPLS/VPLS instead.
by sup5
Thu Oct 04, 2012 12:19 pm
Forum: General
Topic: Why is bridging slower then routing?
Replies: 4
Views: 1384

Re: Why is bridging slower then routing?

how does MPLS fit in here?
by sup5
Fri Sep 28, 2012 1:02 pm
Forum: Wireless Networking
Topic: SXT G-5HnD - Sector
Replies: 2
Views: 1219

Re: SXT G-5HnD - Sector

for small deployments this device is ideal.

for large deployments a huge amount of rf interference is to be expected.
by sup5
Thu Sep 06, 2012 6:13 pm
Forum: General
Topic: PPPOE Server with many connections lags
Replies: 10
Views: 4174

Re: PPPOE Server with many connections lags

1) Avoid EoIP whenever possible! It affects CPU and Bandwidth badly. Even if the CPU-usage is low, there are weird issues with throughput. 2) Replace EoIP by VLANs and/or MPLS-VPLS 3) If you are forced to use EoIP, try to concentrate EoIP one one machine, while terminating PPPoE one the other machin...
by sup5
Mon Sep 03, 2012 6:50 pm
Forum: Wireless Networking
Topic: problem with 100m tower.
Replies: 8
Views: 2368

Re: problem with 100m tower.

more than 100m is out of spec for ethernet anyways no matter how good the cable might be.
by sup5
Sun Sep 02, 2012 4:32 pm
Forum: General
Topic: SNMP doesn't work with asymmetric routes?
Replies: 32
Views: 13529

Re: SNMP doesn't work with asymmetric routes?

yeah, binding the snmp-service of routeros to a loopback-interface (or bridge) would be awesome.
by sup5
Sun Sep 02, 2012 1:04 pm
Forum: RouterBOARD hardware
Topic: MUM Dubai new products
Replies: 16
Views: 5071

Re: MUM Dubai new products

finally they made a long wish true:
an SXT with level4 license already included...
by sup5
Mon Aug 13, 2012 12:49 am
Forum: SwOS
Topic: 16/32/48 ports
Replies: 51
Views: 28375

Re: 16/32/48 ports

if you need a 26 Port GBE router you might consider this device for RouterOS
Axiomtek NA-550: http://axiomtek.com/products/ViewProduct.asp?view=928
by sup5
Thu Jul 26, 2012 5:29 pm
Forum: General
Topic: BFD with OSPF, packets RX / TX counters not updated
Replies: 1
Views: 1127

Re: BFD with OSPF, packets RX / TX counters not updated

for me, BFD doesn't work, too. It works once. But after changing BFD-timers BFD will stop transmitting packets, thus effectively knocking the reaction time down to the OSPF dead-interval. (Making BFD useless) Mikrotik please fix this. I was unable to reach shorter than 3 seconds downtime between two...
by sup5
Fri Jul 20, 2012 3:52 pm
Forum: Wireless Networking
Topic: RouterOS5.15 and above don't support VAP on Level3 anymore
Replies: 14
Views: 5673

Re: RouterOS5.15 and above don't support VAP on Level3 anymo

Sorry, but we do not offer SXT with L4 license. SXT is a device with a narrow beamwidth antenna, in practice, it is hard to connect multiple devices to one SXT. For an AP setup, I recomment OmniTIK instead. The beamwidth of the SXT is very well suited to supply several customers in a row. There are...
by sup5
Fri Jul 20, 2012 1:42 pm
Forum: Wireless Networking
Topic: RouterOS5.15 and above don't support VAP on Level3 anymore
Replies: 14
Views: 5673

Re: RouterOS5.15 and above don't support VAP on Level3 anymo

Yeah, I know this license table.

Anyhow:
Can I purchase SXTs with Level4 license already included?
(I don't want to purchase a level 4 license separately)
by sup5
Fri Jul 20, 2012 12:52 pm
Forum: Wireless Networking
Topic: RouterOS5.15 and above don't support VAP on Level3 anymore
Replies: 14
Views: 5673

Re: RouterOS5.15 and above don't support VAP on Level3 anymo

Yes. They changed a behaviour without ANY notice. Furthermore, from the table of the license levels, it is NOT clear, that VAP isn't allowed with license level 3! So I spent nearly two hours to find out, this 'issue' had been 'fixed'. So VAP is not possbile anymore with level 3. Can I purchase SXTs ...
by sup5
Thu Jul 19, 2012 7:46 pm
Forum: Forwarding Protocols
Topic: mpls latency question
Replies: 10
Views: 4289

Re: mpls latency question

We have not been able to reliably use UBNT gear for MPLS transports.
So I cannot use a UBNT Wireless transparent Bridge for MPLS labeld traffic?
(Like Nanobridge M5)
by sup5
Thu Jul 19, 2012 7:24 pm
Forum: Wireless Networking
Topic: RouterOS5.15 and above don't support VAP on Level3 anymore
Replies: 14
Views: 5673

Re: RouterOS5.15 and above don't support VAP on Level3 anymo

The license overview does NOT state, that VAPs are disallowed with License level 3. Please make that clear! Until today I thought, that the feature 'Wireless AP' was selectable by using 'ap-bridge' instead of 'bridge'. 'Virtual-AP' worked in any version until 5.15 for me. So this is very sad that I ...
by sup5
Thu Jul 19, 2012 10:54 am
Forum: Wireless Networking
Topic: RouterOS5.15 and above don't support VAP on Level3 anymore
Replies: 14
Views: 5673

RouterOS5.15 and above don't support VAP on Level3 anymore

I've got several SXTs which come with a Level 3 license. Now I want to connect two devices to the wireless interface by using virtual ap. This feature worked all the time for me, until RouterOS 5.15 appeared. [admin@SXT] /interface wireless> add name=wlan2 master-interface=wlan1 failure: license lev...
by sup5
Thu Jul 12, 2012 7:05 pm
Forum: Forwarding Protocols
Topic: Odd OSPF problems
Replies: 5
Views: 3835

Re: Odd OSPF problems

you are a victim of the port-flapping issue.

have you tried to upgrade the routerboot?
/sys routerboard upgrade

this fixed the port flapping for me in one case.
by sup5
Mon Jul 09, 2012 10:55 pm
Forum: Wireless Networking
Topic: Level 4 licence needed???
Replies: 9
Views: 8831

Re: Level 4 licence needed???

if you don't need both stations to be connected with the same SSID to the AP, then you might circumvent the Level3-restriction with a clever setup using VirtualAPs.
But please notice, that NV2 won't work with VirtualAP, so you'll be limited to 802.11 and NStreme wireless protocols.
by sup5
Sun Jul 08, 2012 7:57 pm
Forum: Forwarding Protocols
Topic: All PPPoE disconnecting after add or remove EoIP to Bridge
Replies: 2
Views: 2760

Re: All PPPoE disconnecting after add or remove EoIP to Brid

I think it is more simple:
the MAC-Adress of the Brdige is being altered to the MAC-Adresse of the EoIP-Interface.
This makes all PPPoE-Clients force to talk to another MAC-Adress, which causes them to drop the connection.

A simple precaution is to always set a Admin-MAC on bridges.
by sup5
Sun Jul 08, 2012 10:28 am
Forum: Wireless Networking
Topic: VLANs over wireless II.
Replies: 4
Views: 2841

Re: VLANs over wireless II.

you can even add VLAN-interfaces to a WDS-interface.
or add the VLAN-interfaces to the bridge where the WDS-Interface resides on.

however, vpls and eoip should not be used for just L2-bridging within one wireless link.
by sup5
Sat Jul 07, 2012 8:34 pm
Forum: Wireless Networking
Topic: VLANs over wireless II.
Replies: 4
Views: 2841

Re: VLANs over wireless II.

guys, why all that hassle? just apply vlan-interfaces to your wireless-interfaces like you would do it with your plain ethernet-interfaces. just make sure to use station-bridge on the client side. that's all. no virtual-ap, no wds, no eoip, no vpls! I use it on a regular basis and it makes no differ...
by sup5
Mon Jun 25, 2012 2:52 pm
Forum: Wireless Networking
Topic: Fast speed with MPLS bridge in 6km pptp link
Replies: 1
Views: 1267

Re: Fast speed with MPLS bridge in 6km pptp link

use station-bridge mode instead...
by sup5
Thu Jun 14, 2012 12:34 am
Forum: RouterBOARD hardware
Topic: Positive grounding request
Replies: 5
Views: 1936

Re: Positive grounding request

just use a dc-dc converter from -48vdc to 24vdc, which is fully isolated.
we always mix professional -48vdc equipment with mikrotik +24vdc equipment using such converters. never had any issue...
by sup5
Wed Jun 13, 2012 11:14 am
Forum: General
Topic: New Ethernet port flap issue enquiery, PLS JOIN!
Replies: 247
Views: 113803

Re: New Ethernet port flap issue enquiery, PLS JOIN!

We found out that the PoE-Injectors included with the SXT were responsible for ethernet port flapping, too. http://www.mikrotik-store.eu/media/images/popup/RBPOE.png When we used shielded PoE-Injectors like these, the port flapping went away. http://www.mikrotik-shop.de/images/product_images/popup_i...
by sup5
Sun Jun 10, 2012 11:51 pm
Forum: General
Topic: RB1200 switch & wirespeed routing between subnets
Replies: 7
Views: 2372

Re: RB1200 switch & wirespeed routing between subnets

zervan,
which version of ROuterOS and which routerboot (firmware) did you use during your test?
by sup5
Thu May 31, 2012 11:49 am
Forum: General
Topic: New Ethernet port flap issue enquiery, PLS JOIN!
Replies: 247
Views: 113803

Re: New Ethernet port flap issue enquiery, PLS JOIN!

Yesterday I found out, that a firmware upgrade (routerboot?) solved one of my port flapping issues. The ethernet link between a RB1200 and a RB-SXT always lost connectivity when I tried to push data through it. A firmware upgrade on both Rb1200 and RB-SXT solved this issue. But I don't know if it wi...
by sup5
Tue May 08, 2012 8:04 pm
Forum: Scripting
Topic: HotSpot Hacking Problems
Replies: 3
Views: 1920

Re: HotSpot Hacking Problems

- ensure proper Layer2-Isolation of your customers
- only hand out /32 addresses with DHCP-hotspot.
- use arp: reply-only in conjuction with dhcp.
by sup5
Fri May 04, 2012 11:55 am
Forum: Wireless Networking
Topic: Wireless cards and NV2 compatibility
Replies: 5
Views: 1640

Re: Wireless cards and NV2 compatibility

NV2 on RB113 and RB112 is possible with ROS 5.14. But you'll experience jitter and limited bandwidth (max. 10Mbps). Only install absolutely necessary packages and ensure to upgrade the firmware before you go to ROS 5.14. If you don't upgrade the Firmware before you upgrade to ROS 5.14 then you will ...
by sup5
Wed May 02, 2012 5:49 pm
Forum: Forwarding Protocols
Topic: VPLS Tunnel between different areas
Replies: 5
Views: 3175

Re: VPLS Tunnel between different areas

I try to setup a similar network using OSPF route summarization.
If a LSP has to be announced as /32 througout the whole network,
where is the sense in doing route summarization?

How can I just announce /32 loopback routes and still just summarize any /30 and /24 routes of a given area?
by sup5
Thu Apr 19, 2012 1:59 pm
Forum: Wireless Networking
Topic: WDS or VPLS for Mikrotik?
Replies: 6
Views: 2503

Re: WDS or VPLS for Mikrotik?

use 'ap-bridge' on your access-point
use 'station-bridge' on your clients

there is no need to mess around with WDS, EoIP or even VPLS.
They all add complicated configuration and in case of EoIP and VPLS unnecessary overhead.
by sup5
Wed Apr 18, 2012 1:50 pm
Forum: Wireless Networking
Topic: WDS or VPLS for Mikrotik?
Replies: 6
Views: 2503

Re: WDS or VPLS for Mikrotik?

use station-bridge instead.
much easier to setup.
by sup5
Tue Apr 10, 2012 9:20 am
Forum: General
Topic: WDS Disconnecting Hangs routerboard
Replies: 3
Views: 1431

Re: WDS Disconnecting Hangs routerboard

try to set an admin-mac on your bridge.
by sup5
Tue Mar 27, 2012 4:08 pm
Forum: General
Topic: Large scale EoIP
Replies: 6
Views: 2148

Re: Large scale EoIP

MPLS only adds little more confugration overhead. And has much less encapsulation-overhead, thus better performance.

You can use EoIP, for sure.
But be warned that high bandwidth might cause serious trouble.
by sup5
Tue Mar 27, 2012 9:22 am
Forum: General
Topic: Large scale EoIP
Replies: 6
Views: 2148

Re: Large scale EoIP

the overhead isn't the problem IMO. cpu-usage is. Routerboard products will silently drop or delay packets with EoIP under stress, even if CPU-Usage shows less than 20%! X86 products can handle EoIP better. I tried to handle one TCP-stream through a EoIP-tunnel between a x86-router and a RB1200. The...
by sup5
Mon Mar 26, 2012 6:49 pm
Forum: Wireless Networking
Topic: SSIDs -- same or different?
Replies: 11
Views: 4166

Re: SSIDs -- same or different?

I use same SSIDs on my network, too. Sometimes, when an AP is down, the CPE will connect to another AP it can reach with considerable low signal strength. But this is better than no internet at all. I wonder if one could write a script that does the following on the CPE-device: 1) If the registratio...
by sup5
Mon Mar 26, 2012 3:01 pm
Forum: General
Topic: Large scale EoIP
Replies: 6
Views: 2148

Re: Large scale EoIP

don't use EoIP for heavy traffic applications.
use MPLS/VPLS instead.

only use EoIP for qucik'n'dirty emergency fixing stuff.
by sup5
Wed Mar 21, 2012 3:27 pm
Forum: General
Topic: EoIP slow high latency
Replies: 14
Views: 10602

Re: EoIP slow high latency

we saw a similar problem with EoIP on RouterBoard hardware.
(However on decend x86 routers EoIP will run better)

Just go straight to MPLS/VPLS and/or VLANs.

This solved the issue for us.

EoIP IMO only is a quick-hack for emergency data-linking.
by sup5
Tue Mar 20, 2012 8:53 pm
Forum: Wireless Networking
Topic: How do you connect 2 SXT's as Station Bridges to a single SX
Replies: 4
Views: 1408

Re: How do you connect 2 SXT's as Station Bridges to a singl

You always can buy a Level4 license to enable the ap-bridge mode.
This way you can connect as many devices you want.

Or just cheat a little with Virtual-AP, but remember that NV2 won't work with Virtual-AP.
by sup5
Sun Mar 18, 2012 3:37 am
Forum: General
Topic: strange issue with CCME/cisco phones
Replies: 5
Views: 1615

Re: strange issue with CCME/cisco phones

maybe the cisco phones react strangely to MNDP.
So just try to disable neighbor discovery on the affected
interfaces (don't forget the bridges!) of your mikrotik device.
by sup5
Fri Mar 16, 2012 5:43 pm
Forum: Beginner Basics
Topic: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP carrier
Replies: 10
Views: 8634

Re: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP car

We run SIP through mikrotik, too.
But we didn't get it to work properly behind a Mikrotik router configured to do NAT.
by sup5
Fri Mar 16, 2012 10:22 am
Forum: Beginner Basics
Topic: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP carrier
Replies: 10
Views: 8634

Re: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP car

I tested a bunch of 20€ routers against mikrotik NAT.
and all of them worked well. only mikrotik didn't work properly.

In the end we set up a SIP-proxy for SIP-NAT and abandoned IP-NAT completely.
by sup5
Thu Mar 15, 2012 2:38 pm
Forum: Beginner Basics
Topic: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP carrier
Replies: 10
Views: 8634

Re: Mikrotik RB711U, ROS-5.14 NAT issues for SIP to VoIP car

I've experienced this issue as well!

Only Mikrotik-NAT destroys SIP. (Even with STUN!)
Any other router I tried for NAT worked without a hassle.
  • 1
  • 2