Community discussions

Search found 175 matches

by faisali
Mon Jul 29, 2019 11:08 pm
Forum: General
Topic: weird bgp-filter bug
Replies: 3
Views: 712

Re: weird bgp-filter bug

Check out this article..
https://wiki.mikrotik.com/wiki/Manual:B ... n_RouterOS

hint.... issue peer refresh command after changing filters !


:)
by faisali
Sun Oct 07, 2018 2:25 am
Forum: Forwarding Protocols
Topic: BGP IPv6 route reflection
Replies: 27
Views: 4459

Re: BGP IPv6 route reflection

I will be more than happy to compare notes.. since I just had to do this and have it working on our MT Routers.. Two Edges, doing RR to each other.... Had to use Ipv6 prefix between the connections (no link state). Additionally on a 3rd router, I had to put static route to 2nd Edge router to get aro...
by faisali
Sat Jul 01, 2017 9:14 pm
Forum: Virtualization
Topic: CHR - purchased license not applying on router
Replies: 12
Views: 1570

Re: CHR - purchased license not applying on router

Happy to report...... the issue is not there on the newer image...
Had to dump the older image and install the new one.

:)
by faisali
Thu Jun 29, 2017 9:45 pm
Forum: Virtualization
Topic: CHR - purchased license not applying on router
Replies: 12
Views: 1570

Re: CHR - purchased license not applying on router

Here is what I got back from support ! :( --------------------------------------------------------- Hello, Please use newest version (6.36rc version is the old one). Install 6.39.2, then your CHR will be licensed properly. Best regards, Sergejs -- MikroTik.com ---------------------------------------...
by faisali
Thu Jun 29, 2017 1:38 am
Forum: Virtualization
Topic: CHR - purchased license not applying on router
Replies: 12
Views: 1570

Re: CHR - purchased license not applying on router

I am having the same exact issue....
I have sent a support ticket request....

Let's see what they come back with..
CHR_License_Issue_LI (2).jpg
by faisali
Wed May 17, 2017 6:24 pm
Forum: Forwarding Protocols
Topic: full table route bgp
Replies: 2
Views: 481

Re: full table route bgp

Follow the instructions in the Mikrotik WIKI...
Chances are you have not done the two settings for route reflection.
by faisali
Wed May 17, 2017 6:22 pm
Forum: Forwarding Protocols
Topic: BGP Converge time
Replies: 7
Views: 1287

Re: BGP Converge time

BGP Convergence time, is an issue on the CCR but not on the X-86 or CHR platforms.
by faisali
Wed May 17, 2017 4:15 pm
Forum: Forwarding Protocols
Topic: BGP - Set Community
Replies: 3
Views: 713

Re: BGP - Set Community

FYI.. the BGP Community is a Label.. you can define it as you like... it is considered best practices to use one's ASN as the first part of the tag, this way it is always unique.. but there is no rule which says it has to be this way.... e.g. you can use 12345:111 and that would be valid too.
by faisali
Wed May 17, 2017 4:09 pm
Forum: Forwarding Protocols
Topic: Best Practice: How to Correct CCR1072 10G capacity 1.8G
Replies: 6
Views: 2092

Re: Best Practice: How Correct CCR1072 10G capacity 1.8G

Can u test it without the Bridge on the CCR ? i.e. just use a single port and n bridge feature... (just for testing).
by faisali
Wed May 17, 2017 4:07 pm
Forum: Forwarding Protocols
Topic: Multiple BGP sessions to one provider
Replies: 10
Views: 2643

Re: Multiple BGP sessions to one provider

It could be something to do with CCR & 1 CPU Core for BGP .... I can tell you that is not an issue on the X86 or CHR platform...
We have multiple X86 based routers doing all kinds of BGP sessions v4 & v6 (multiple full tables etc etc) without any issues... different versions of ROS 6.32 to 6.37.4
by faisali
Tue May 16, 2017 6:52 pm
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

Re: BGP Issue / Duplicate remote RouterID:

Thank you all for your suggestions and comments... I feel incredibly stupid...... after staring at it and doing the packet capture.... I realized that I was using my-own IP address (as assigned by the Peering Exchange) for the other peers remote address.

:(
by faisali
Tue May 16, 2017 2:30 am
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

Re: BGP Issue / Duplicate remote RouterID:

Any chance the remote router ID is in use in any other BGP session?
Not with that peer.... I have also shutdown all of my bgp session on this Edge Router, and then just turn up this particular peer, and I still get the same duplicate router-id message.
by faisali
Tue May 16, 2017 2:03 am
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

Re: BGP Issue / Duplicate remote RouterID:

We use a public IP for the Router Loopback interface, and we use that same IP address as the Router-ID (in the bgp instance). Yes, I did change the Router-ID in the bgp instance (default instance), and verified.. This particular peer, when I enable it, gives me the same error message, duplicate rout...
by faisali
Tue May 16, 2017 12:36 am
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

Re: BGP Issue / Duplicate remote RouterID:

Tried to use a different IP for the Router-ID, the session is still complaining but now with the new Router-ID (duplicate-id).

:(
by faisali
Tue May 16, 2017 12:22 am
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

Re: BGP Issue / Duplicate remote RouterID:

Is it possible you've used a RFC1918 IP as your loopback IP and just out of sheer luck and coincidence this peer used the same one? A troubleshooting step would be just to change your router-id in the BGP instance. Sadly this will (should) reset the BGP sessions you have causing routes to flap once...
by faisali
Mon May 15, 2017 6:51 pm
Forum: Forwarding Protocols
Topic: BGP Issue / Duplicate remote RouterID:
Replies: 11
Views: 1495

BGP Issue / Duplicate remote RouterID:

Hello, We are experiencing a very strange issue... If any one can shed some light, it would be great. Background: We have more than a hand full of X-86 RouterOS Routers working as Edge Routers in different parts of our network, some of them with as many as 80-90 BGP Peering sessions (connecting to d...
by faisali
Tue Apr 11, 2017 1:51 am
Forum: Forwarding Protocols
Topic: Route filters
Replies: 9
Views: 3255

Re: Route filters

ok... let's play devil's advocate for a moment... You said, you don't want to update filters on all of your upstream routers when a client announces/adds a new prefix.. .. In reality doing so would be considered a best practices, because it will force you to keep your filters updated and clean.. bes...
by faisali
Mon Apr 10, 2017 5:10 pm
Forum: Forwarding Protocols
Topic: Route filters
Replies: 9
Views: 3255

Re: Route filters

If it works for you, great.... we do this in a simpler way.. we build our filters chains for all of our down-stream BGP customers with the prefix-length option.. e.g. chain=XYZASN prefix=xx.yy.zz.0/21 prefix-length=21-24 invert-match=no action=accept etc.. all of our bgp sessions have in filters and...
by faisali
Sun Apr 09, 2017 9:00 pm
Forum: Forwarding Protocols
Topic: Route filters
Replies: 9
Views: 3255

Re: Route filters

Hrmmm... Filtering out routes on the IX towards our customers unfortunately wouldn't stop us learning a more specific route to the customer via a path we don't want to limit capacity on. I suppose I could jump to a chain which I could build via a script, which would filter out prefixes if they resi...
by faisali
Sun Apr 09, 2017 8:57 pm
Forum: Forwarding Protocols
Topic: Route filters
Replies: 9
Views: 3255

Re: Route filters

If I am understanding you correctly, then I think you are building filters which are prefix specific.... We build our filters in such a manner e.g. chain=XYG:12345 prefix=xx.yy.zz.0/21 prefix-length=21-24 invert-match=no action=accept the prefix-length option selects all prefix lengths from /21 to /...
by faisali
Sun Apr 09, 2017 3:31 am
Forum: Forwarding Protocols
Topic: RPSL - Routing Policy Specification Language
Replies: 1
Views: 1066

Re: RPSL - Routing Policy Specification Language

Here is a nice resource to do that.

https://www.dan.me.uk/filtergen
by faisali
Sun Apr 09, 2017 3:26 am
Forum: Forwarding Protocols
Topic: Route filters
Replies: 9
Views: 3255

Re: Route filters

Well, now you know the reason why IP Transit providers do not 'peer' with their customers over the peering exchanges... Having said that, keep in mind that this is a bit of a business position vs technical position balance on how to manage the traffic. Chances are that the IP Transit being provided ...
by faisali
Fri Jan 20, 2017 1:20 am
Forum: Forwarding Protocols
Topic: NSSA
Replies: 2
Views: 538

Re: NSSA

in regards to the routing filters.. When you define them with a prefix such as in section # 1... then you will only have an exact match .. e.g. add chain=ospf-out prefix=10.0.0.0/8 action=accept ............will only accept 10.0.0.0/8 prefix nothing more nothing less add action=accept chain=ospf-in ...
by faisali
Sun Jan 08, 2017 6:50 am
Forum: Forwarding Protocols
Topic: Load sharing between two ISP's
Replies: 1
Views: 672

Re: Load sharing between two ISP's

Review this for what you need to accomplish..

http://mum.mikrotik.com/presentations/US12/tomas.pdf
by faisali
Sun Dec 25, 2016 9:11 pm
Forum: Forwarding Protocols
Topic: iBGP & 2x eBGP
Replies: 6
Views: 1709

Re: iBGP & 2x eBGP

Review this to see if it helps you in your design.

http://mum.mikrotik.com/presentations/H ... ktech1.pdf
by faisali
Sun Dec 11, 2016 1:30 am
Forum: Forwarding Protocols
Topic: Redistribute static routes to OSPF
Replies: 5
Views: 3160

Re: Redistribute static routes to OSPF

How about the following:-

in the default ospf instance, do not redistribute static routes
and put the prefix you want to re-distribute in the network sections of ospf
by faisali
Tue Dec 06, 2016 5:28 am
Forum: Forwarding Protocols
Topic: BGP and routing filter improvement suggestions
Replies: 58
Views: 16756

Re: BGP and routing filter improvement suggestions

Request to fix the logic/selection of prefixes when using BGP Communities only in the selection criteria in the chain/filter list. ------ Background:- When you have prefixes with multiple BGP communities tags, ACL filters will not properly select prefixes if the BGP community tag is not the first co...
by faisali
Wed Aug 10, 2016 6:47 am
Forum: Forwarding Protocols
Topic: BGP Multihome - Geographic
Replies: 3
Views: 735

Re: BGP Multihome - Geographic

Not quite sure what your question is...

But having said that, you will also need to create an ibgp session between all of your routers (mesh) unless you are doing a RR (route reflector) config.
by faisali
Wed Aug 10, 2016 6:44 am
Forum: Forwarding Protocols
Topic: Filter both with prefix and as-path
Replies: 8
Views: 2175

Re: Filter both with prefix and as-path

Unfortunatelly ROS does not have "delete-community-by-regex", so my internal communities will go to internet :) since communities consist of two # (ASN:XXXX) having your internal communities being sent to your upstream has no affect. Additionally, if you want you can override them in our out-bound ...
by faisali
Wed Apr 06, 2016 4:16 pm
Forum: Forwarding Protocols
Topic: OSFP setup
Replies: 4
Views: 916

Re: OSFP setup

I believe you are pretty confused and overthinking this...
I would suggest that you do this very simply, use static routing, or dhcp to hand out the ip's to the daryteks.
by faisali
Sat Mar 05, 2016 7:55 pm
Forum: Forwarding Protocols
Topic: BGP bug - subtle but problematic issue with communities
Replies: 24
Views: 3171

Re: BGP bug - subtle but problematic issue with communities

interesting post, with great painstaking detail. I can also say that I have seen such a problem with our mix of x86 MT Routers (variety of 6.x versions, doing bgp, ibgp etc.). Sorry for being vague... Couple of weeks back, I had to chase down a problem where we are seeing a 'ghost route' on our edge...
by faisali
Wed Oct 14, 2015 5:45 am
Forum: Forwarding Protocols
Topic: bgp doesn't reconnect?
Replies: 5
Views: 1235

Re: bgp doesn't reconnect?

There is a small possibility that this is due to particular type of setup your upstream may have on their BGP.. We have seen this type of behavior with e.g. Hibernia networks. When a bgp session goes down under certain conditions, they will not allow a re-establish, until, unless the session is rese...
by faisali
Wed Oct 14, 2015 5:41 am
Forum: Forwarding Protocols
Topic: BGP peer refusing connection
Replies: 1
Views: 997

Re: BGP peer refusing connection

Sounds like you are not using any out-bound filters, and quite possibly advertising the routes you are receiving from one ISP to the other. You need to setup filters for inbound and outbound on each of the connections to receive that you should be receiving and sending only what you should be sending.
by faisali
Wed Oct 14, 2015 5:34 am
Forum: Forwarding Protocols
Topic: How to test if BGP configuration is correct on my router ?
Replies: 2
Views: 867

Re: How to test if BGP configuration is correct on my router ?

Post your config....
you can see the status of the BGP peer via winbox under the Routing, BGP, Peers tab.
you can see how many prefixes you are sending and what you are receiving.
Additionally system logging can also give you some clues as to what could be wrong.
by faisali
Wed Oct 14, 2015 5:31 am
Forum: Forwarding Protocols
Topic: Outgoing traffic load balance between two ISP
Replies: 1
Views: 1082

Re: Outgoing traffic load balance between two ISP

This is a bit of a complex topic... Balancing traffic to two provider via BGP is more of an art than science... because of how Traffic Engineering is done in the BGP world. Having said that.. if you want to select some routes to go out via ISP1 and others go out via ISP2, you can use the Local Pref ...
by faisali
Mon Sep 28, 2015 3:34 pm
Forum: Forwarding Protocols
Topic: BGP longer-prefixes
Replies: 3
Views: 748

Re: BGP longer-prefixes

Doing ip route lookup with full tables or multiple tables can take a very long time.... Exact matches are much faster.. or doing route look up of smaller prefix with a listing of all routes with larger prefix within it are faster via winbox. But in general anything other than exact route look up can...
by faisali
Mon Aug 24, 2015 4:25 pm
Forum: Forwarding Protocols
Topic: Wrong source address when interface with multiple address since 6.30/6.31
Replies: 10
Views: 2639

Re: Wrong source address when interface with multiple address since 6.30/6.31

For static routes, you have the option pref-source option that you can set For OSPF routes, you have ospf-in filters where you can set the pref-source option. I had to deal with a specific situation with BGP (Peering) where I had to set the pref-source for incoming routes ... I have not played much ...
by faisali
Sun Aug 16, 2015 3:01 am
Forum: Forwarding Protocols
Topic: Port Forwarding Issue
Replies: 2
Views: 737

Re: Port Forwarding Issue

Why two out interfaces ?

also, the dst-nat rules should be infront (before) of the src-nat rules.
by faisali
Sun Aug 16, 2015 2:58 am
Forum: Forwarding Protocols
Topic: dstnat and srcnat Port Forwarding
Replies: 2
Views: 1972

Re: dstnat and srcnat Port Forwarding

possible port conflict with the mikrotik web interface (80) ?
move the mikrotik web interface to a different port ...
by faisali
Sun Aug 16, 2015 2:55 am
Forum: Forwarding Protocols
Topic: Src-Nat problem
Replies: 2
Views: 649

Re: Src-Nat problem

post your config... you most likely have an error ....
by faisali
Sun Aug 16, 2015 2:52 am
Forum: Forwarding Protocols
Topic: PPPoE disconnect clients when I make a mikrotik badwith test.
Replies: 1
Views: 512

Re: PPPoE disconnect clients when I make a mikrotik badwith test.

Most likely you are maxing out the CPU to 100% when you are running the btest, as a result of this the PPPoE Connections are getting dropped...
by faisali
Sun Aug 16, 2015 2:50 am
Forum: Forwarding Protocols
Topic: Wrong source address when interface with multiple address since 6.30/6.31
Replies: 10
Views: 2639

Re: Wrong source address when interface with multiple address since 6.30/6.31

I was not offering you an explanation on why it happens ..... I was offering you the way to solve it.. I often have to remind myself and others, in our business, when standards are not followed (or proper configuration not done) the net result is not something broken but more realistically something...
by faisali
Sat Aug 15, 2015 6:31 pm
Forum: Forwarding Protocols
Topic: BGP Multipath Load Balancing
Replies: 14
Views: 2851

Re: BGP Multipath Load Balancing

BGP is not designed to offer ---> load balance on per connection basis between two WAN links.
by faisali
Sat Aug 15, 2015 6:26 pm
Forum: Forwarding Protocols
Topic: BGP - Advertise a prefix to only one upstream
Replies: 2
Views: 698

Re: BGP - Advertise a prefix to only one upstream

Your out filters are correct..... if the only problem is that you are still advertising all of your prefixes to both providers, then I suggest you bounce one of the BGP sessions to confirm the filters taking affect (this is the brute force way of doing it).
by faisali
Sat Aug 15, 2015 6:16 pm
Forum: Forwarding Protocols
Topic: Wrong source address when interface with multiple address since 6.30/6.31
Replies: 10
Views: 2639

Re: Wrong source address when interface with multiple address since 6.30/6.31

This is not something that is broken... it is just something that needs to be managed via setting the pref-src attribute, when you have a interface with multiple IP's. http://wiki.mikrotik.com/wiki/Manual:IP/Route ----------------- pref-src (IP; Default: "") Which of the local IP addresses to use fo...
by faisali
Sun Jul 12, 2015 9:14 pm
Forum: Forwarding Protocols
Topic: BGP over GRE
Replies: 6
Views: 2959

Re: BGP over GRE

The Config i have: Mikrotik Main 172.16.1.1/30 172.16.1.0 ether2 1.x.x.x./28 109.166.155.32 ether1 - WAN 192.168.88.1/24 192.168.88.0 ether5 172.16.10.2/30 172.16.10.0 MTMain-Client - this is the tunnel interface 172.16.255.3/32 172.16.255.1 loopback 192.168.88.1/24 192.168.88.0 VRRP1 Simple BGP: /...
by faisali
Fri Jul 10, 2015 9:41 pm
Forum: Beginner Basics
Topic: Create an address list from a text file
Replies: 4
Views: 2341

Re: Create an address list from a text file

While I realize that this is an old thread, I just wanted to let folks know that I recently came across this..

http://joshaven.com/resources/tricks/mi ... ress-list/

:)
by faisali
Fri Jul 03, 2015 12:23 pm
Forum: Forwarding Protocols
Topic: Ring network and OSPF
Replies: 5
Views: 1479

Re: OSPF failover link

Remember, cost of ospf link needs to be set in each direction.....
by faisali
Sun May 31, 2015 3:25 am
Forum: Forwarding Protocols
Topic: BGP ... brain explosion
Replies: 6
Views: 1311

Re: BGP ... brain explosion

Take a look at this ..... will sort you out..

http://robert.penz.name/779/howto-setup ... k-routers/
by faisali
Tue May 19, 2015 6:52 am
Forum: Forwarding Protocols
Topic: Possibly a simple eBGP question for BGP gurus
Replies: 7
Views: 1208

Re: Possibly a simple eBGP question for BGP gurus

The answer to your question is, you can set it up do what you like... e.g if you wanted to load balance across the two interfaces, http://wiki.mikrotik.com/wiki/Manual:BGP_Load_Balancing_with_two_interfaces or if you wanted to do load sharing... http://wiki.mikrotik.com/wiki/Manual:Simple_BGP_Multih...
by faisali
Thu May 14, 2015 6:47 am
Forum: Forwarding Protocols
Topic: BGP Community Priority
Replies: 12
Views: 1527

Re: BGP Community Priority

Let's see if we can give you a big picture explanation......Ask you provider to send you the full list of communities. If they are one of the major providers, you can do a google search to see if their full communities list is available. Most IP Transit providers these days do traffic innerspring, w...
by faisali
Thu May 07, 2015 3:59 pm
Forum: Forwarding Protocols
Topic: Force routing IPs through backbone
Replies: 13
Views: 2119

Re: Force routing IPs through backbone

Question / Suggestion:- Are you not able to run BGP with ISP3 ? that would allow for a much more consistent network setup .... setup eBGP with one peer on each of the routerboards. run iBGP between the three routers (a mesh) run ospf between the three, and your internal network. This way you can con...
by faisali
Thu May 07, 2015 7:00 am
Forum: Forwarding Protocols
Topic: SNMP + BGP
Replies: 4
Views: 1361

Re: SNMP + BGP

Never knew about that recommendation.....
we have multiple x86 routers doing multiple full feeds, and we use SNMP to monitor them.

(too bad that BGP snmp mib is not there.. but monitoring interface and bandwidth has not been an issue)
by faisali
Mon May 04, 2015 2:32 am
Forum: Announcements
Topic: hAP lite
Replies: 389
Views: 163317

Re: hAP lite

هل يعمل كا اكسس بوينت عادي
Yes it does work as an 'normal' wifi access point .. indoor use.
by faisali
Mon May 04, 2015 2:22 am
Forum: Forwarding Protocols
Topic: BGP as Transit/IP Provider
Replies: 4
Views: 3327

Re: BGP as Transit/IP Provider

There are multiple ways to 'skin this cat'..... a) If you are the only connection for the customer to the internet, then it does not matter if you 'originate' the routes via your router to your upstream, and do static IP to the customer or run bgp with your customer, if there is a problem on the cus...
by faisali
Fri Feb 06, 2015 10:39 pm
Forum: Forwarding Protocols
Topic: OSPFv3->BGP aggregate->eBGP host working logic
Replies: 9
Views: 1747

Re: OSPFv3->BGP aggregate->eBGP host working logic

You would do it, one step at a time... You will have to use filters in your bgp advertisements .... and define your prefix appropriately...(as long as the prefix is in your active routing table) bgp process will advertise it to the peer. You can use the network aggregation section of bgp to aggregat...
by faisali
Mon Feb 02, 2015 3:08 am
Forum: Forwarding Protocols
Topic: BGP Community output filter
Replies: 4
Views: 1104

Re: BGP Community output filter

Thanks Faisal, I have tried your proposa, but I have the same problem, this filter send the full table and not only the route tagged with the community 1234:1. The output communities filter seem to be not working fine. L. Post your config, you may have a typo some where. You can always troubleshoot...
by faisali
Mon Jan 26, 2015 5:18 am
Forum: Forwarding Protocols
Topic: BGP Community output filter
Replies: 4
Views: 1104

Re: BGP Community output filter

This should do what you want..

----------------
add chain=output-1234 action=accept invert-match=yes bgp-communities=1234:1
add chain=output-1234 action=discard invert-match=no
---------------

Faisal
by faisali
Sat Jan 10, 2015 11:32 pm
Forum: Forwarding Protocols
Topic: OSPFv3->BGP aggregate->eBGP host working logic
Replies: 9
Views: 1747

Re: OSPFv3->BGP aggregate->eBGP host working logic

is it possible that you are getting confused between how OSPF works vs BGP ? or something is getting lost in the translation... OSPF maintains a separate routing table database, from which only certain routes are added to the main routing table. however with BGP, all in-coming routes are put thru th...
by faisali
Wed Jan 07, 2015 5:29 am
Forum: Forwarding Protocols
Topic: redistribute OSPF Routes via BGP
Replies: 1
Views: 659

Re: redistribute OSPF Routes via BGP

Try your filter without the "protocol=bgp"

as long as the route is active / valid in the routing table it should get advertised out via bgp..
by faisali
Wed Jan 07, 2015 5:25 am
Forum: Forwarding Protocols
Topic: PPTP and OSPF issue
Replies: 7
Views: 2264

Re: PPTP and OSPF issue

I though OSPF would summarize the routes that passes over HQ, so it woud not need to learn all routes.
If you want to do route summarization, then take a closer look at this example how to ...
http://wiki.mikrotik.com/wiki/OSPF/Summ ... ex_example
by faisali
Wed Jan 07, 2015 5:20 am
Forum: Forwarding Protocols
Topic: BGP route filter order
Replies: 4
Views: 1324

Re: BGP route filter order

You are asking a fair question.... we can wait to see if Normis or someone else from MT can shed more light...
But my experience is that these filters are not 'stackable'..... i.e. each (set) gets evaluated and applied individually
by faisali
Wed Jan 07, 2015 5:09 am
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

Fair ..... looks like you are playing / exploring the system and how bgp works... Your results with the two BGP instances, is as expected, I cannot think of any circumstances in which one would need to do the config (two instances of the same ASN), however I can see the circumstances where it is nee...
by faisali
Wed Jan 07, 2015 2:23 am
Forum: Forwarding Protocols
Topic: BGP IPv6
Replies: 2
Views: 1061

Re: BGP IPv6

Best practices suggest that the Router ID to be a valid (single /32) IPv4 Address which is also setup a a Loopback IP on the router.
by faisali
Wed Jan 07, 2015 2:21 am
Forum: Forwarding Protocols
Topic: BGP route filter order
Replies: 4
Views: 1324

Re: BGP route filter order

In testing BGP route filters I have noticed the following behavior and wonder if it is correct. It seems that for an out filter the order of operations is as follows: 1) BGP instance out filter 2) BGP VRF out filter 3) BGP peer out filter The trouble is it seems that accept rules in the VRF filter ...
by faisali
Wed Jan 07, 2015 2:16 am
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

it is my understanding that on the MT you can have multiple instances of BGP running on the single router, with each instance being a different ASN... in such case, the redistribute-other-bgp will exchange routes between the two instances.
by faisali
Wed Jan 07, 2015 2:13 am
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

OK I get it now. redistribute-other-bgp=no has no effect because both peers are in the same BGP instance. if they were in different BGP instances then this setting could stop them from sharing routes. am I right ? I have never used that feature / configuration, but yes, that is what my understandin...
by faisali
Wed Jan 07, 2015 1:22 am
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

Yes I know about filters. but you say it is normal for mikrotik router to simply announce all my routing table if I have not filtered it ? so why is there route-reflection settings ? why is there redistribution settings ? why is there Networks settings ? because mikrotik is going to announce everyt...
by faisali
Wed Jan 07, 2015 12:35 am
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

http://wiki.mikrotik.com/wiki/Manual:Routing/BGP You are looking at the /routing bgp instance ..... this is for the instance of bgp running on the MT. the settings for each peer is under /routing bpg peer You will see from the manual (link above) that there is another property for Filter in both sec...
by faisali
Tue Jan 06, 2015 11:55 pm
Forum: Forwarding Protocols
Topic: OSPFv3->BGP aggregate->eBGP host working logic
Replies: 9
Views: 1747

Re: OSPFv3->BGP aggregate->eBGP host working logic

I will post this as a IPv4, feel free to translate to IPv6... (First Item) How to Build Filters in MT / ROS ... /routing filter add chain=NAMEOFCHAIN prefix=68.122.0.0/19 prefix-length=19-24 invert-match=no action=accept set-bgp-prepend-path="" The above is equivalent to :- ---------------- ipv6 pre...
by faisali
Tue Jan 06, 2015 11:40 pm
Forum: Forwarding Protocols
Topic: BGP reflects routes while client-to-client-reflection=no
Replies: 11
Views: 3852

Re: BGP reflects routes while client-to-client-reflection=no

What is advertised to the Peer is controlled by the Filter in/on the peer configuration.

What do you have defined on the BGP Peer Filter ?

The default behavior is to advertise all active routes....
by faisali
Tue Dec 23, 2014 6:07 pm
Forum: Forwarding Protocols
Topic: Moving from Quagga to Mikrotik
Replies: 3
Views: 1314

Re: Moving from Quagga to Mikrotik

Tell you what.... Take the first crack at it, and post your config, it will be easier to suggest corrections to it, than building you a full config from scratch. Quagga Configuration is similar to Cisco's... so you can use this a starting point: http://wiki.mikrotik.com/wiki/BGP_CiscoToMT Also look ...
by faisali
Tue Dec 23, 2014 6:03 pm
Forum: Forwarding Protocols
Topic: Extended routing
Replies: 3
Views: 734

Re: Extended routing

The sites doesn't communicate between them. They only can reach the HQ. It does not really matter ... Once the tunnels are established, it is simply a routing issue.... if the sites can communicate to HQ, and you have a tunnel to HQ. You should be able to reach the sites, and the sites reach you, a...
by faisali
Tue Dec 23, 2014 5:57 pm
Forum: Forwarding Protocols
Topic: BGP troubles
Replies: 4
Views: 1466

Re: BGP troubles

Just a wild guess.... possibly Missing default route on the Raspberry Pi ?
by faisali
Mon Dec 22, 2014 7:34 pm
Forum: Forwarding Protocols
Topic: Multi-homed BGP - incoming using wrong path
Replies: 9
Views: 2201

Re: Multi-homed BGP - incoming using wrong path

I'm talking about inbound to me. I make the necessary changes with AS Prepend and I can see those changes through the HE Looking Glass but it doesn't make a difference to inbound traffic. I'm assume our provider is ignoring this? If I've got R1 and R2 both advertising my /24 could I block any IPs f...
by faisali
Mon Dec 22, 2014 7:26 pm
Forum: Forwarding Protocols
Topic: Redistribute routes tagged with a special BGP community
Replies: 13
Views: 2678

Re: Redistribute routes tagged with a special BGP community

Needless to say it a bit 'wonky'.... I had to play with it.... (Took a bit of patience :) ) 1. if you are going to use Route Comment, then just use Route Comment, and not communities, in your filter. 2. Make sure that the route is active on your router, that you are advertising from. I had a couple ...
by faisali
Mon Dec 22, 2014 7:14 pm
Forum: Forwarding Protocols
Topic: OSPF per-packet Load balancing
Replies: 5
Views: 1694

Re: OSPF per-packet Load balancing

I can't belive that noone had such problem.
Everyone is using static routes, or not using load balancing at all?

Gona do TE next week gues, hope that will work.
Load balancing over per-connection basis is preferred, it does not break Secure Traffic. :)
by faisali
Mon Dec 22, 2014 7:12 pm
Forum: Forwarding Protocols
Topic: Moving from Quagga to Mikrotik
Replies: 3
Views: 1314

Re: Moving from Quagga to Mikrotik

How familar are you with MT ROS ?
How Familiar are you with BGP ?
Are you looking to hire someone to do this ?
or Are you stuck and looking for some hints ?
by faisali
Mon Dec 22, 2014 7:10 pm
Forum: Forwarding Protocols
Topic: Extended routing
Replies: 3
Views: 734

Re: Extended routing

if the customer sites can talk to each other (i.e. routing if working between all of their sites) then all you would need to do is add the routes between your office and their sites, no need for additional tunnels..
by faisali
Mon Dec 22, 2014 7:08 pm
Forum: Forwarding Protocols
Topic: IBGP not forwarding connected Routes
Replies: 5
Views: 1184

Re: IBGP not forwarding connected Routes

@faisali This might be a good hint to make it work, but looks more like a workaround than a correct solution. It is true that ospf routes will be prefered, but there are no BGP routes announced, that's why OSPF is prefered. Please see this.. http://wiki.mikrotik.com/index.php?title=Manual:Route_Sel...
by faisali
Mon Dec 22, 2014 6:56 pm
Forum: Forwarding Protocols
Topic: OSPF how does it actually work....
Replies: 5
Views: 1271

Re: OSPF how does it actually work....

Your questions are appropriate but there is no simple answer to them.
I would suggest that you google for OSPF best practices, and or ISP/NSP Best Practices to get familiar with the why to do and why not to do arguments.
by faisali
Sun Dec 21, 2014 7:54 pm
Forum: Forwarding Protocols
Topic: Question: How to mark packet using Tomas bandwidth based lb
Replies: 1
Views: 694

Re: Question: How to mark packet using Tomas bandwidth base

Go over Tomas's presentation carefully, you have missed something....

:)
by faisali
Sun Dec 21, 2014 7:52 pm
Forum: Forwarding Protocols
Topic: redistribute OSPF Routes via BGP
Replies: 1
Views: 1003

Re: redistribute OSPF Routes via BGP

.. What is you bgp-out filter looks like ? best practices, suggest that you don't do redistribute-ospf, redistribute-other-bgp <--- this is not what you think it is... If you are going to do 'redistribute-static, make sure you have a static route for the /24 (even if you set it up with a very high d...
by faisali
Sun Dec 21, 2014 7:41 pm
Forum: Forwarding Protocols
Topic: Dual wireless link failover
Replies: 5
Views: 2388

Re: Dual wireless link failover

There are a number of ways to do this.... Depending on the preference of solution choice... You could do this via OSPF.... http://wiki.mikrotik.com/wiki/Dual_Setup_with_OSPF (you will need to modify the setup to suit your needs) You could do this via BGP.. (massive overkill) You could do this via li...
by faisali
Sun Dec 21, 2014 7:30 pm
Forum: Forwarding Protocols
Topic: OSPF how does it actually work....
Replies: 5
Views: 1271

Re: OSPF how does it actually work....

How can I prevent ospf replicating our routes to network attached based on interface level instead of some strange mask+prefix that does not work anyway ? For example) I have local networks attached to an ospf router: eth1=192.168.1.0/24, eth2=172.16.1.0/24 and eth3=192.168.16.0/24. But I want ospf...
by faisali
Sun Dec 21, 2014 6:36 pm
Forum: Forwarding Protocols
Topic: IBGP not forwarding connected Routes
Replies: 5
Views: 1184

Re: IBGP not forwarding connected Routes

A couple of quick pointers:- iBGP requires every participating router to talk to each other, i.e. a mesh..... so you also need to rung iBGP between R1 & R3 Additionally, I would include R2 into the OSFP network as well. so your connected interfaces route via ospf....(since ospf is going to be prefer...
by faisali
Thu Dec 11, 2014 6:06 pm
Forum: Forwarding Protocols
Topic: Failover with two Mikrotik Routers
Replies: 2
Views: 892

Re: Failover with two Mikrotik Routers

Here is a mum presentation on how to do exactly what you are wanting to do.

http://mum.mikrotik.com/presentations/H ... ktech1.pdf
by faisali
Thu Dec 11, 2014 5:55 pm
Forum: Forwarding Protocols
Topic: Redistribute routes tagged with a special BGP community
Replies: 13
Views: 2678

Re: Redistribute routes tagged with a special BGP community

We do something similar, tag communities (append) on inbound routes, and use this info in filters to outbound routes . one thing I have noticed is that when you append communities, e.g. a route has multiple communities on it, the MT filters don't work.... However, this is not a problem if you are no...
by faisali
Thu Dec 11, 2014 5:05 pm
Forum: Forwarding Protocols
Topic: Multi-homed BGP - incoming using wrong path
Replies: 9
Views: 2201

Re: Multi-homed BGP - incoming using wrong path

Just touching base again on this one. Is there any way to block a particular subnet from accessing the network through a particular connection? I realise this does away with multi-homing but I'm OK with that for the time being. Is there any way I could redirect a connection? This question need more...
by faisali
Thu Dec 11, 2014 5:01 pm
Forum: Forwarding Protocols
Topic: BGP with several ISP's
Replies: 7
Views: 1313

Re: BGP with several ISP's

Post your config... sounds like you may have something mis-configured.
by faisali
Thu Dec 04, 2014 4:19 pm
Forum: Forwarding Protocols
Topic: How to advertise BGP routes when smaller than /24
Replies: 6
Views: 5818

Re: How to advertise BGP routes when smaller than /24

First time BGP setup. I have the basic BGP working fine on 1 of my 2 connections with cogent using full routes. Right now I am advertising a /24 out of one of my /21s and internet is working great. However Cogent will not allow me to advertise smaller than a /24. Is there a way around this? Here's ...
by faisali
Thu Dec 04, 2014 4:12 pm
Forum: Forwarding Protocols
Topic: BGP with several ISP's
Replies: 7
Views: 1313

Re: BGP with several ISP's

if you have your WAN / Serial side IP's configured correctly on both sides (your router & ISP # 2), then you should be able to ping the other side ... (this would be a connected route, and thus not going via the routing table)..... If you are not able to do that, then you have a physical layer conne...
by faisali
Tue Nov 25, 2014 3:55 pm
Forum: Forwarding Protocols
Topic: OSPF area range doesn't seem to do anything.
Replies: 1
Views: 1131

Re: OSPF area range doesn't seem to do anything.

Take a look at this old thread discussion....

http://forum.mikrotik.com/viewtopic.php ... 24&p=60288

-----------
Make note of the ... ' pppoe server needs to be in it's own ABR and not backbone ' for route summary to work.
by faisali
Tue Nov 25, 2014 3:42 pm
Forum: Forwarding Protocols
Topic: block, traffic using bgp
Replies: 1
Views: 705

Re: block, traffic using bgp

You can use null route to do so as well.


Here is a nice discussion and with how to info ..

http://forum.mikrotik.com/viewtopic.php?f=6&t=2413
by faisali
Wed Nov 19, 2014 2:14 am
Forum: Forwarding Protocols
Topic: Routes learned from eBGP peer are not propagated to iBGP
Replies: 8
Views: 2219

Re: Routes learned from eBGP peer are not propagated to iBGP

To setup iBGP on Mikrotik, there are two settings you have to turn on.. one is "Client to Client Reflection" .. .located under the default bgp instance setting the 2nd one is under the BGP peer setting "Route Reflect" Your input is appreciated! Do those need to be turned on both peers? Like both pe...
by faisali
Wed Nov 19, 2014 12:37 am
Forum: Forwarding Protocols
Topic: packed marked with bridge output are not queued
Replies: 3
Views: 1406

Re: packed marked with bridge output are not queued

Take a look at this presentation http://mum.mikrotik.com/presentations/RU13/megis.pdf

According to slide # 22...... output chain on bridge does not go thru HTB Queue Tree.
by faisali
Wed Nov 19, 2014 12:17 am
Forum: Forwarding Protocols
Topic: Routes learned from eBGP peer are not propagated to iBGP
Replies: 8
Views: 2219

Re: Routes learned from eBGP peer are not propagated to iBGP

Your question has been asked, discussed and answered before ..... Do a bit of searching on the Forums. e.g. here is one such thread. http://forum.mikrotik.com/viewtopic.php?f=14&t=82738 Btw that link is more about iBGP to eBGP peer. My question is the exact opposite. Routes learned via eBGP is not ...
by faisali
Wed Nov 19, 2014 12:15 am
Forum: Forwarding Protocols
Topic: Routes learned from eBGP peer are not propagated to iBGP
Replies: 8
Views: 2219

Re: Routes learned from eBGP peer are not propagated to iBGP

I already did searching in forums, that link you posted is among the open tabs in my web browser. However those are all workarounds for the simples functionality in all other vendors. Also I did not quite understand your workaround. Are you adding and stripping some arbitrary communities to the rou...
by faisali
Tue Nov 18, 2014 5:25 am
Forum: Forwarding Protocols
Topic: Routes learned from eBGP peer are not propagated to iBGP
Replies: 8
Views: 2219

Re: Routes learned from eBGP peer are not propagated to iBGP

Your question has been asked, discussed and answered before ..... Do a bit of searching on the Forums.

e.g. here is one such thread. http://forum.mikrotik.com/viewtopic.php?f=14&t=82738
by faisali
Thu Nov 13, 2014 6:10 am
Forum: General
Topic: Anyone using a PowerRouter v3?
Replies: 8
Views: 1557

Re: Anyone using a PowerRouter v3?

Also if anyone has used the MW-RM1300-i7 - Routermaxx 8 Port Gigabit Core i7 Router I would like to hear about it as well. What would you like to know ? We have been using core2duo based units (powerrouter or routermaxx), some of them we have recently replaced with the i7 Versions (needed to to 10g...
by faisali
Thu Nov 13, 2014 6:00 am
Forum: Beginner Basics
Topic: Load balancing(1calbe+wifi) and failover
Replies: 10
Views: 2070

Re: Load balancing(1calbe+wifi) and failover

Take a look at this.. it not only shows how to do this, but also explains step by step.

http://mum.mikrotik.com/presentations/US12/tomas.pdf
by faisali
Thu Nov 13, 2014 5:57 am
Forum: Forwarding Protocols
Topic: stable release for BGP
Replies: 2
Views: 1241

Re: stable release for BGP

Hard to comment on your claims .... Could it be what you are experiencing is due to some missing configuration ?

You can post a config, and use that to start a discussion...

:)
by faisali
Wed Nov 12, 2014 2:13 am
Forum: Forwarding Protocols
Topic: BGP huge problem with second Mikrotik network announcement !
Replies: 10
Views: 3292

Re: BGP huge problem with second Mikrotik network announceme

1) Make sure you have loopback interface setup with IP address. For eBGP or iBGP peers? Do you use public or private IPs for loopback? the only one with different settings is the ibgp peer (it has route reflector setup) you have route reflector enabled on both routers for iBGP? BGP Best Practices r...
by faisali
Mon Nov 10, 2014 3:35 am
Forum: Forwarding Protocols
Topic: VPLS question
Replies: 2
Views: 1042

Re: VPLS question

So I moved from EOIP to VPLS, and I encountered some problems *here* is the network layout example. Everything is bridged via local bridge, but on router 10.0.0.1 I created separated bridge called "switch" and assigned eth4 port to it, I also created two VPLS interfaces with different VPLS ID and a...
by faisali
Mon Nov 10, 2014 3:26 am
Forum: Forwarding Protocols
Topic: Help required to setup BGP load sharing 2 ISP's
Replies: 9
Views: 6053

Re: Help required to setup BGP load sharing 2 ISP's

Thanks for the link, strated implementing the process . Just want to know is it passable to use policy based PCC load balancing in BGP environment with 2 BGP peers as in the earlier network diagram. in BGP world different methods are used for traffic engineering, as-prepend to influence inbound tra...
by faisali
Mon Nov 10, 2014 3:20 am
Forum: Forwarding Protocols
Topic: EoiP or MPLS for layer 2 Trasport over network
Replies: 4
Views: 2321

Re: EoiP or MPLS for layer 2 Trasport over network

Thanks for the reply, I've been doing more reading on this topic and I think I will move to an mpls backbone in the future, though for now I will use the EoIP tunnel. As far as migrating to an MPLS Backbone, is there a way to do it smoothly with minimal or no down time? Take a look at this MUM pres...
by faisali
Mon Nov 10, 2014 3:15 am
Forum: Forwarding Protocols
Topic: Redundancy Failover question
Replies: 10
Views: 3230

Re: Redundancy Failover question

It gets even more interesting.... :) There are many ways to do so, but each has it's own set of challenges.... I suggest you break them down to make things manageable... The how to details in Tomas's presentation are excellent since they explain what each setup does. Depending on your level of exper...
by faisali
Sun Nov 09, 2014 10:08 pm
Forum: Forwarding Protocols
Topic: Redundancy Failover question
Replies: 10
Views: 3230

Re: Redundancy Failover question

While doing this configuration via VRRP is one possibility, it will give you hardware redundancy as well.. but you can see that the complexity of setting this up to work properly is greatly increased... Having said that, if you wanted to have a 'simpler' way of having your fail-over redundancy..... ...
by faisali
Sun Nov 09, 2014 4:59 pm
Forum: Forwarding Protocols
Topic: BGP huge problem with second Mikrotik network announcement !
Replies: 10
Views: 3292

Re: BGP huge problem with second Mikrotik network announceme

we are peering with a couple of dozen networks, the basic setup is the same, and then each has it's own specific setup. i.e. external peers are same as listed in the config, only difference is filters. the only one with different settings is the ibgp peer (it has route reflector setup) (Peer detail ...
by faisali
Sat Nov 08, 2014 3:53 pm
Forum: Forwarding Protocols
Topic: BGP huge problem with second Mikrotik network announcement !
Replies: 10
Views: 3292

Re: BGP huge problem with second Mikrotik network announceme

ok, looks like you are transitioning from a cisco system.. no worries, you will get the hang of it real quick. You are doing something goofy with the filters.... May I suggest that you set them up modular, See my message on this thread.... http://forum.mikrotik.com/viewtopic.php?f=14&t=82738 The dis...
by faisali
Sat Nov 08, 2014 2:53 am
Forum: Forwarding Protocols
Topic: BGP huge problem with second Mikrotik network announcement !
Replies: 10
Views: 3292

Re: BGP huge problem with second Mikrotik network announceme

post your config...

we are using a similar setup, we have two routers doing bgp to multiple peers each, and we are running ibgp & OSPF between the two. (OSPF is running on other routers as well)
by faisali
Sat Oct 25, 2014 6:10 pm
Forum: Forwarding Protocols
Topic: Help required to setup BGP load sharing 2 ISP's
Replies: 9
Views: 6053

Re: Help required to setup BGP load sharing 2 ISP's

Take a look at my post on this thread.

http://forum.mikrotik.com/viewtopic.php?f=14&t=82738

It should give you the basics to get started.
by faisali
Wed Oct 22, 2014 7:37 pm
Forum: Forwarding Protocols
Topic: Help required to setup BGP load sharing 2 ISP's
Replies: 9
Views: 6053

Re: Help required to setup BGP load sharing 2 ISP's

Yes, is it possible to announce the /24's to both BGP peers. This is exactly what BGP is designed for. How to do 'Load Sharing'..... that is the million dollar question... FYI, Influencing traffic on BGP Peering is more of an Art than a Science... There a number of methods available to influence inb...
by faisali
Wed Oct 22, 2014 6:45 am
Forum: Forwarding Protocols
Topic: BGP prepending issue with three link
Replies: 1
Views: 988

Re: BGP prepending issue with three link

Configuration looks right...

What is making you say that prepend is not working ? How are you determining the prepend status ?
by faisali
Mon Oct 20, 2014 4:36 pm
Forum: General
Topic: Open port to voip
Replies: 1
Views: 495

Re: Open port to voip

hello guys i thing some one can hep me about my problem i already tired to solve this problem i using RB1200 and i already open port fron 1065 -650000 but still got one way audio i hope any one can help me thank guys. you need to provide more details, bigger picture on the setup for any meaningful ...
by faisali
Mon Oct 20, 2014 4:32 pm
Forum: Forwarding Protocols
Topic: BGP next hop choice-force self problem
Replies: 2
Views: 3051

Re: BGP next hop choice-force self problem

Hello all, i have two IBGP routers and established peering with its loopback address. Also i configured both router the next hop choice -force self option. So, now the receveied routes will set the loopback address as next hop. but i don't want to use loopback ip address as next hop. i want the nex...
by faisali
Mon Oct 20, 2014 4:31 pm
Forum: Forwarding Protocols
Topic: CCR1016 - no pulls all BGP sessions
Replies: 2
Views: 996

Re: CCR1016 - no pulls all BGP sessions

Hello i have simple network infrastructure one CCR1016 (alpha) with 3 x eBGP sessions and another (beta) with 1 x eBGP session and both combined to iBGP with public ASN alpha and beta load full prefixes from eBGP peers beta get all prefixes from alpha when alpha getting some prefixes sometimes 30-5...
by faisali
Mon Oct 20, 2014 4:27 pm
Forum: Forwarding Protocols
Topic: BGP routes not propagated between iBGP and eBGP
Replies: 14
Views: 12691

Re: BGP routes not propagated between iBGP and eBGP

We do this today in our network. We have two Edge routers, doing eBGP to different External Peers, and iBGP and OSPF running between the two Edge routers. A Couple of hints / tips etc. In our case we want to have a full table on both iBGP peers, as such we have route-reflection setting turned on. Th...
by faisali
Sun Oct 05, 2014 5:47 pm
Forum: Forwarding Protocols
Topic: Comparison tables BGP
Replies: 1
Views: 800

Re: Comparison tables BGP

Hi I have two peers with full tables, ISP A broadcasts 508k ISP B broadcasts 504K I want to check which routes are missing in the table BGP from ISP B, how to do it? Wanting to do that / needing to do that is a bit extreme and meaningless, (it is quiet normal to have a variation of the total number...
by faisali
Fri Sep 26, 2014 5:55 am
Forum: Forwarding Protocols
Topic: Suggestions on how to implement redundant backbones
Replies: 4
Views: 1393

Re: Suggestions on how to implement redundant backbones

Thanks for the replies. Our secondary provider is not willing to facilitate bgp, hence the dilemma. So we have settled for NATing in cases of emergency. However, here is another question that we have been contemplating as well; Our routers are is 100% mikrotik, with OSPF in one area. I would like t...
by faisali
Mon Sep 22, 2014 3:09 am
Forum: Forwarding Protocols
Topic: BGP and Equal-cost multi-path routing (ECMP)
Replies: 2
Views: 1389

Re: BGP and Equal-cost multi-path routing (ECMP)

Hi All. I have been fighting a setup in my lab for a good few hours now trying to get Equal-cost multi-path routing (ECMP) working with BGP. Is this an option on RouterOS at this time? Thanks. Take a look at this ... http://wiki.mikrotik.com/wiki/Manual:BGP_Load_Balancing_with_two_interfaces (check...
by faisali
Mon Sep 22, 2014 3:06 am
Forum: Forwarding Protocols
Topic: ospf setup help
Replies: 7
Views: 1436

Re: ospf setup help

Thanks Faisali for the help, i am just wondering is the hub and spoke right method for ospf ? using a switch ? or shall i put each link in its own port and make a point to point ? as on hub to spoke i dont have much control on cost of the link. Many thanks. Well, if you are going to do hub and spok...
by faisali
Wed Sep 17, 2014 4:41 pm
Forum: Forwarding Protocols
Topic: Filter route by type?
Replies: 3
Views: 1219

Re: Filter route by type?

How about a filter ? e.g. /routing filter add action=accept chain=junk disabled=no invert-match=no prefix=0.0.0.0/0 prefix-length=0 set-bgp-prepend-path="" add action=accept chain=junk disabled=no invert-match=no prefix=10.0.0.0/8 prefix-length=8-32 set-bgp-prepend-path="" add action=accept chain=j...
by faisali
Wed Sep 17, 2014 8:52 am
Forum: Forwarding Protocols
Topic: Filter route by type?
Replies: 3
Views: 1219

Re: Filter route by type?

How about a filter ? e.g. /routing filter add action=accept chain=junk disabled=no invert-match=no prefix=0.0.0.0/0 prefix-length=0 set-bgp-prepend-path="" add action=accept chain=junk disabled=no invert-match=no prefix=10.0.0.0/8 prefix-length=8-32 set-bgp-prepend-path="" add action=accept chain=ju...
by faisali
Wed Sep 17, 2014 8:50 am
Forum: Forwarding Protocols
Topic: ospf setup help
Replies: 7
Views: 1436

Re: ospf setup help

Let me see if I understand this correctly... R3 & R4 have TWO links to the Switch, one fiber and the other Fixed wireless... So you have two things going on here.. one is a 'link bonding' at Layer2 and the other is Dynamic Routing (OSFP).... You can go about fixing your problem in two ways. one is t...
by faisali
Fri Sep 12, 2014 11:17 pm
Forum: Forwarding Protocols
Topic: Suggestions on how to implement redundant backbones
Replies: 4
Views: 1393

Re: Suggestions on how to implement redundant backbones

There are a few things you need to sort out....before you come up with a solution.. 1. Having IP address provided by upstream does not mean BGP is not possible. BGP, is simply a way of exchanging routing tables (a dynamic protocol), it has nothing to do with Who is the Owner of the IP Address Space....
by faisali
Fri Sep 12, 2014 8:08 pm
Forum: General
Topic: VLAN TCP PERFORMANCE
Replies: 2
Views: 762

Re: VLAN TCP PERFORMANCE

Can you also post what vlan is in what bridge ?

and why are you modifying the l2mtu on the bridge ?
by faisali
Fri Aug 29, 2014 3:22 am
Forum: General
Topic: Port Forwarding done right?
Replies: 17
Views: 9800

Re: Port Forwarding done right?

Why do you say it is not working ?

When I point my browser to your IP and port, I get 401 Unauthorized .... (you might want to delete the gui screenshots.... IP and port # are on the Window Bar...
by faisali
Fri Aug 29, 2014 12:47 am
Forum: General
Topic: Port Forwarding done right?
Replies: 17
Views: 9800

Re: Port Forwarding done right?

on another box, where I had blown away the default config, and built the config from scratch... I had to add the WAN Ip address to the dst-nat statement... e.g. add action=dst-nat chain=dstnat disabled=no dst-address=204.xxx.xxx.xx \ dst-port=3283 protocol=udp to-addresses=192.168.10.10 to-ports=328...
by faisali
Fri Aug 29, 2014 12:43 am
Forum: General
Topic: Port Forwarding done right?
Replies: 17
Views: 9800

Re: Port Forwarding done right?

for a quick and dirty test.. just go to the IP Firewall Filter Rules, and disable all of them....

(I believe this is what I did to make one of these work, where I had started out with the default configuration out of the box).
by faisali
Thu Aug 28, 2014 7:52 am
Forum: General
Topic: Port Forwarding done right?
Replies: 17
Views: 9800

Re: Port Forwarding done right?

Why such a complicated config ? ( I am getting throw off by the mark routing mark ?? what are you trying to do with that ? ) Personally speaking, is it a bit hard to follow what your config is doing... My suggestion to be to strip down your config, and apply it in layers to figure out what is causin...
by faisali
Wed Aug 27, 2014 8:00 am
Forum: Forwarding Protocols
Topic: BGP Advertisements in address list
Replies: 13
Views: 2970

Re: BGP Advertisements in address list

Okay here is another way to approach it. I have an internet exchange where I have 30 peers. Each of those peers needs to receive around 60 advertisements EACH. They are all basically the same prefixes except their own. So I have 30 peers with 60 advertisements each. If I could reference one address...
by faisali
Tue Aug 26, 2014 5:39 pm
Forum: Forwarding Protocols
Topic: BGP Advertisements in address list
Replies: 13
Views: 2970

Re: BGP Advertisements in address list

We are beginning to get more and more BGP peers in an Internet exchange. It would be really handy if I could have an address list and be able to reference that address list in a route filter. Is there a particular reason why this can't be done? Not quite sure what you mean.... we commonly build fil...
by faisali
Sat Aug 02, 2014 2:24 am
Forum: Forwarding Protocols
Topic: Migrate Vyatta BGP to RouterOS BGP
Replies: 14
Views: 3747

Re: Migrate Vyatta BGP to RouterOS BGP

How to setup the 3 x AS number in one BGP router? Any advice? A few comments :- 1. You can have multiple PEERS on one single ROUTER using BGP, as long as your hardware can support it. We have 20 to 30 peers (peering fabric connection) all on one MT Router. 2. Bringing up additional BGP Peers after ...
by faisali
Sat May 03, 2014 5:55 pm
Forum: Forwarding Protocols
Topic: BGP high CPU load
Replies: 10
Views: 2442

Re: BGP high CPU load

However, as a general rule, we tend to put as much horsepower as possible on designs that involve MikroTik routers and full BGP global tables. CCRs are a great choice for this. You might want to reconsider the above statement about CCR being a great choice for an Edge Router specifically for multip...
by faisali
Fri Apr 11, 2014 4:32 am
Forum: Forwarding Protocols
Topic: BGP Filter to announce all routes
Replies: 2
Views: 1089

Re: BGP Filter to announce all routes

Hi, Any suggestions on the best method to announce all routes to a specific peer within the same bgp instance? Currently I am filtering (dropping) everything except our prefixes. I want to provide "transit" to a specific peer. MT If you are asking on how to build a filter for sending all routes... ...
by faisali
Sun Feb 23, 2014 12:06 am
Forum: Forwarding Protocols
Topic: Using bgp communities in a filter ?
Replies: 2
Views: 1567

Re: Using bgp communities in a filter ?

Is it because the certain prefix carry the community internet (0:0) ? as the 0:0 will match any filter. All my incoming prefix had been modified the community from what so ever to 65530:XXXX for router internal routing purpose, so that all community internet will be erased. Thank you for replying o...
by faisali
Fri Feb 07, 2014 1:45 am
Forum: Forwarding Protocols
Topic: BGP advantages in 2 autonomous systems
Replies: 5
Views: 1376

Re: BGP advantages in 2 autonomous systems

Ok. You're right. I didn't make myself clear. I would know what are advantages bgp could bring if implemented into a general network. In my scenario, I got 2 dsl connections (two border gateways) that provides internet access to some clients. So I would like to understand if BGP could help. e.g. in...
by faisali
Thu Feb 06, 2014 7:14 am
Forum: Forwarding Protocols
Topic: BGP and OSPF network configuration
Replies: 1
Views: 4378

Re: BGP and OSPF network configuration

Take a look at this... http://mum.mikrotik.com/presentations/HU11/linktech1.pdf It goes thru a very decent explanation of BGP as well as OSPF, and shows an example of what you are trying to achieve. While it may not give you the MT config, it give you all the info that is needed (as long as you have...
by faisali
Thu Feb 06, 2014 6:47 am
Forum: Forwarding Protocols
Topic: BGP advantages in 2 autonomous systems
Replies: 5
Views: 1376

Re: BGP advantages in 2 autonomous systems

Maybe I did not explain it clearly? BGP is simply a way of exchanging routes, Autonomous System or AS determine if BGP is External BGP (between two different ASN) or Internal BGP (Between Same ASN) Your question is a confusing, it is not clear what is it that you are wanting to achieve ? My Questio...
by faisali
Thu Feb 06, 2014 6:29 am
Forum: Forwarding Protocols
Topic: Using bgp communities in a filter ?
Replies: 2
Views: 1567

Using bgp communities in a filter ?

Hello, We are seeing something strange.. We tag certain prefixes announced to us with bgp communities, eg. 11280:115 etc. (ROS ver 5.21 as well as 5.26) We use these communities in our bgp filters for prefix announcements. e.g. chain=out-filter match-chain=XYZ invert-match=no action=accept set-bgp-p...
by faisali
Thu Feb 06, 2014 6:15 am
Forum: Forwarding Protocols
Topic: BGP networks limit to 200
Replies: 3
Views: 1327

Re: BGP networks limit to 200

Hi All! I have RB2011LS: - RouterOS v6.7 - current-firmware: 3.10 I run a BGP session and want to pass about 800 networks from RB2011 to ASR1002 with /32 mask. Then i try do it, the routerboard annonce only 200 networks and generates error - "failure: number of BGP networks is limited to 200". Plea...
by faisali
Fri Jan 24, 2014 5:34 am
Forum: Forwarding Protocols
Topic: Routing filters problem
Replies: 3
Views: 1555

Re: Routing filters problem

I don't understand, what would I match in the rule? Should I put packet marks on OSPF traffic? I thought the routing filters could tell which chain to use based on which instance the route advertisements were received or sent on. What is the point in setting an "in filter" or "out filter" on an OSP...
by faisali
Thu Jan 23, 2014 12:26 am
Forum: Forwarding Protocols
Topic: RouterOS BGP Feature question
Replies: 4
Views: 1130

Re: RouterOS BGP Feature question

Hi all. Cisco as some bgp feature that extends the functionality of the BGP Local-AS. Does routerOS support a feature similar to replace-as? Cisco conf: # neighbor 10.3.3.33 local-as 300 no-prepend replace-as thank you. I am not an expert, but I have not seen this feature in ROS .... I am going to ...
by faisali
Tue Oct 29, 2013 9:21 pm
Forum: Forwarding Protocols
Topic: Regular expressions in BGP_AS_Path filter option
Replies: 4
Views: 3741

Re: Regular expressions in BGP_AS_Path filter option

I also had some initial struggles with them....but, here are a few more tips. Take a look at this site... some more specific info http://networklessons.com/bgp/bgp-regular-expressions-examples/ for example using bgp-as-path= ^10784_174_[0-9]*$ should match all routes having AS10784_AS174_* in the pa...
by faisali
Tue Oct 29, 2013 12:06 am
Forum: Forwarding Protocols
Topic: BGP - Need some help setting up downstream peer
Replies: 3
Views: 2247

Re: BGP - Need some help setting up downstream peer

You are over thinking it.... Upstream Providers or DownStream Customers ..... the BGP is configured in pretty much the same manner, with the exception of filters... (You should be using some method of filtering the sent & received routes ) For an upstream peer, you are advertising Your IP Blocks, an...
by faisali
Tue Jul 16, 2013 9:43 pm
Forum: Forwarding Protocols
Topic: Dual WAN routing policy + mangle rules [not working]
Replies: 10
Views: 33732

Re: Dual WAN routing policy + mangle rules [not working]

------- add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=2.2.2.2 routing-mark=to_ISP2 scope=30 target-scope=10 add check-gateway=ping disabled=no distance=10 dst-address=0.0.0.0/0 gateway=1.1.1.2 routing-mark=to_ISP2 scope=30 target-scope=10 ---------- Possible Typo ? Shou...
by faisali
Sat Jul 13, 2013 6:49 pm
Forum: Forwarding Protocols
Topic: Download and upload two separate links??
Replies: 14
Views: 4473

Re: Download and upload two separate links??

Here is a tutorial on what you want to accomplish.

http://blog.butchevans.com/2008/10/usin ... less-links
by faisali
Tue May 28, 2013 5:18 pm
Forum: Forwarding Protocols
Topic: limit ip address advertised by vpls link
Replies: 1
Views: 639

Re: limit ip address advertised by vpls link

Consider using a Filter ?
by faisali
Tue May 28, 2013 5:13 pm
Forum: Forwarding Protocols
Topic: BGP and policy-based routing
Replies: 4
Views: 2174

Re: BGP and policy-based routing

Fair,

Not sure what hardware (MT router) you are using... you may also have another option that you might want to consider.

Create a MetaRouter, which can provide you with a full virtual router for handling branch office traffic...

Regards
Faisal
by faisali
Mon May 27, 2013 6:40 pm
Forum: Forwarding Protocols
Topic: BGP and policy-based routing
Replies: 4
Views: 2174

Re: BGP and policy-based routing

First of all... why do you have Two BGP sessions, and another 2 'Internet Connectivity" ?

However having said that....
You are on the right track...
However I would not mark the bgp traffic, but do the policy routing for the other two internet connections.

Faisal
by faisali
Sat May 25, 2013 6:46 pm
Forum: General
Topic: السلام عليكم ورحمة لله وبركاته
Replies: 6
Views: 2820

Re: السلام عليكم ورحمة لله وبركاته

Salamat. Most likely you have to review your setup. Keep in mind that Port 5900 is an example port. (Tcp 5900 is used by VNC, if that is what you are testing or trying to make it work, first make sure you have VNC configured and running on your local machine, and you can access your local machine vi...
by faisali
Sun Jan 27, 2013 10:39 pm
Forum: Forwarding Protocols
Topic: bgp error
Replies: 6
Views: 1314

Re: bgp error

Anybody explane this error 20:39:50 route,bgp,error Terminating connection, too much routes received 20:39:50 route,bgp,error RemoteAddress=10.xx.xx.xxx 20:39:50 route,bgp,error RoutesReceived=1 With BGP, one can filter routes/prefixes by a few different methods. On of these methods is by limiting ...
by faisali
Sun Jan 27, 2013 7:21 pm
Forum: General
Topic: Bonding (Multilink) question
Replies: 6
Views: 2019

Re: Bonding (Multilink) question

I am confused... You want to bond two Ethernet links (ETHERNET) ... you can do that via LACP Group Since Ethernet is Full Duplex, why should one care for which way traffic flows ? Now if you want to bond two Ethernet Links which are actually Two Fixed Wireless Links, then one may care how the traffi...
by faisali
Sun Jan 20, 2013 8:28 pm
Forum: Forwarding Protocols
Topic: Vlan & Priority 802.1p Cos ?
Replies: 1
Views: 3393

Re: Vlan & Priority 802.1p Cos ?

Is this the correct way to accomplish the above ? The following commands on each of the Mikrotik's ----------------------------------------- /interface bridge filter add action=set-priority chain=forward disabled=no in-bridge=BrVoice_Vlan101 \ new-priority=5 passthrough=yes add action=set-priority c...
by faisali
Sun Jan 20, 2013 12:02 am
Forum: Forwarding Protocols
Topic: OSPF and IPSec tunnels
Replies: 3
Views: 2884

Re: OSPF and IPSec tunnels

Speaking in general.. What do you want to accomplish by running OSPF to the Fortinet via IPSec Tunnel ? When running dynamic protocols in a tunnel, one has to pay attention to a few key items. 1. You have to setup the External Routing as static, so that when you activate the dynamic routing protocol...
by faisali
Sat Jan 19, 2013 11:23 pm
Forum: Forwarding Protocols
Topic: Vlan & Priority 802.1p Cos ?
Replies: 1
Views: 3393

Vlan & Priority 802.1p Cos ?

Hello All, I can use some some help in trying to determine what is the right command to accomplish this (below). Mikrotik A(Eth 5 Trunk Port) ----------(Fixed Wireless Bridge PTP/WDS) --------------- (Eth 5 Trunk port)Mikrotik B BR_Vlan 101 ->Eth 1-------------------------Vlan 101---------- Br_vlan1...
by faisali
Sun Nov 18, 2012 1:00 am
Forum: General
Topic: RB2011UAS-2HnD SFP Port Question
Replies: 2
Views: 952

Re: RB2011UAS-2HnD SFP Port Question

1. Is there an easy way to determine whether the SFP port is functional? Loopback cable with a transceiver installed? 2. I'm just trying to setup a fiber to media converter box (Gig Fiber<-->GigE) to experiment with the SFP port. Does anyone have a good media-converter box/transceiver/cable combina...
by faisali
Sun Nov 18, 2012 12:32 am
Forum: General
Topic: RB-750UP w/5.21 and POE Firmware 2.0 Weird issue
Replies: 7
Views: 2316

RB-750UP w/5.21 and POE Firmware 2.0 Weird issue

Background: We recently upgraded a production RB750UP to 5.21 and also updated the POE Firmware to 2.0 Prior to upgrade, the 750UP was powering two Ubiquity Radios one on port 5 and the other on port 2. Working without any issues. :) After the upgrade, the POE Firmware upgrade, the router keeps powe...
by faisali
Sat Dec 03, 2011 5:58 pm
Forum: Forwarding Protocols
Topic: BGP Stable for production?
Replies: 6
Views: 1672

Re: BGP Stable for production?

Running 6 BGP Peers, 4 of them with full tables... on a Routermaxx 1200 with 2GIG Ram, memory used is about 700meg .... ROS ver 5.5

All is good.

:)
by faisali
Fri Jul 29, 2011 5:40 pm
Forum: Forwarding Protocols
Topic: BGP w/ Cogent
Replies: 12
Views: 4226

Re: BGP w/ Cogent

Here is what we did to get the peering going:- Recipe for Cogent Peering (A & B) IPV4 on a Mikrotik Router. First:- add a loopback bridge you can name it what you like, we did 'cogent-loopback' assign it the /32 IP address as provided by Cogent add another loopback for your own router ID, and assign...
by faisali
Wed Jul 27, 2011 5:38 pm
Forum: Forwarding Protocols
Topic: RB 1100 Full BGP throughput.
Replies: 10
Views: 5078

Re: RB 1100 Full BGP throughput.

FYI... with ver 5.x if you have winbox open to the router, while doing BGP updates, the cpu utiliation shoots up high, and accepting routes takes a lot longer...
(BUG with WINBOX ?)

Close Winbox, use SSH or even the Webfig interface..

We see this behavior on x86 boxes as well.
by faisali
Tue Jul 26, 2011 5:24 pm
Forum: Forwarding Protocols
Topic: BGP w/ Cogent
Replies: 12
Views: 4226

Re: BGP w/ Cogent

No issue in particular, have seen some comments and posts about folks setting 'set-in-nexthop' on the bgp in filter and others commenting on using/ modifying target and scope to route received.

Was really looking for feedback as to what is the best practice setup with Cogent.

Thanks.
by faisali
Tue Jul 26, 2011 12:21 am
Forum: Forwarding Protocols
Topic: BGP w/ Cogent
Replies: 12
Views: 4226

BGP w/ Cogent

Hello, For those who have 'perfected' the BGP Peering setup with Cogent.... is there anything special (settings wise, target scope next hop etc) that you have found to be best ? Other than the basic setup of Peer A, advertising routes, as well as the /32 loopback, and accepting the single /32 loopba...
by faisali
Mon Jul 04, 2011 3:21 am
Forum: Forwarding Protocols
Topic: Adding / Appeding bgp community to static or connected route
Replies: 5
Views: 1388

Re: Adding / Appeding bgp community to static or connected r

awesome... Thanks this helps me a great amount to understand how the filters work as well.

is there a good resource that you would recommend reading so as to be able to get a better understanding on all the different CLI options possible when writing the filters ?


Many Thanks :)
by faisali
Mon Jul 04, 2011 3:18 am
Forum: Forwarding Protocols
Topic: Another Question about Routing Filters...
Replies: 2
Views: 522

Re: Another Question about Routing Filters...

Cool. Thanks..

:)
by faisali
Sun Jul 03, 2011 8:27 pm
Forum: Forwarding Protocols
Topic: Another Question about Routing Filters...
Replies: 2
Views: 522

Another Question about Routing Filters...

When multiple conditions are defined on the match side of a single line in the filters, are these conditions (AND) or are the (OR) e.g /routing filter add chain=tnn-out bgp-communities=11280:661 invert-match=no action=accept set-bgp-prepend=1 /routing filter add chain=tnn-out bgp-communities=11280:6...
by faisali
Sun Jul 03, 2011 7:50 am
Forum: Forwarding Protocols
Topic: help with IP Route Print command ?
Replies: 3
Views: 1306

Re: help with IP Route Print command ?

The ~ operator takes regular expressions. Here a quick example from my home router - can't show communities here, so instead a filter to print all routes that have a gateway that starts with a capital A: [felix@rb750g] > ip route print Flags: X - disabled, A - active, D - dynamic, C - connect, S - ...
by faisali
Sat Jul 02, 2011 10:21 pm
Forum: Forwarding Protocols
Topic: help with IP Route Print command ?
Replies: 3
Views: 1306

help with IP Route Print command ?

hello

what would be the command line equivalent to showing routes that have BGP Communities 'contains' XXXX:XX ?

i.e. in /ip route print where bgp-communities 'contain' XXXX:XX

what is the symbol for 'contains' ?

Thanks.
by faisali
Sat Jul 02, 2011 10:15 pm
Forum: Forwarding Protocols
Topic: Adding / Appeding bgp community to static or connected route
Replies: 5
Views: 1388

Re: Adding / Appeding bgp community to static or connected r

You could set a comment on the static route. Connected routes are dynamic and can't have any of their properties edited. Well the idea behind the cisco config is that with the Static Routes also able to to have the bgp community attribute tagged to them, then one can do a simple one step filter for...
by faisali
Sat Jul 02, 2011 9:52 pm
Forum: Forwarding Protocols
Topic: Adding / Appeding bgp community to static or connected route
Replies: 5
Views: 1388

Adding / Appeding bgp community to static or connected route

Hello, Any suggestions on how to accomplish this if it is possible ? (translating from Cisco world). ip prefix-list our-cidr permit 68.142.0.0/19 le 24 route-map static-bgp permit 10 match ip address prefix-list our-cidr set origin igp set community 11280:115 I know I can use the instance filter to ...
by faisali
Thu Jun 30, 2011 10:40 pm
Forum: Forwarding Protocols
Topic: BGP Routing Filters Trouble !
Replies: 4
Views: 5956

Re: BGP Routing Filters Trouble !

Thanks for the pointers and correction.... so far am able to make this work. :) ps. also found out a couple of things (bugs ?)... 1) If I modify the filter via Winbox, it insists on inserting ' prefix = 0.0.0.0' , the only way to remove it is to remove the rule and re-enter it via CLI.. 2) I cannot ...
by faisali
Thu Jun 30, 2011 4:04 am
Forum: Forwarding Protocols
Topic: BGP Routing Filters Trouble !
Replies: 4
Views: 5956

BGP Routing Filters Trouble !

Hello All, I am a newbie in trying to figure out Mikrotik BGP Routing Filters. (am trying to change a config from Cisco :D ) Short summary of what I am trying to achieve:- At the moment, am trying to accomplish two things: 1. Trying to Advertise routes (our-cdir) to the BGP Peer, and send Communitie...