Community discussions

Search found 1832 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 7
by cbrown
Mon Oct 14, 2019 6:22 pm
Forum: General
Topic: Severe port flapping on CRS328-24P-4S+ and CRS317-1G-16S+
Replies: 145
Views: 19431

Re: Severe port flapping on CRS328-24P-4S+ and CRS317-1G-16S+

I can confirm this as well. Hi, we can confirm that CRS328-24P-4S+ in combination with CRS312-4C+8XG show the exact same problematic port flapping behavior (RouterOS & FW v6.45.6) as the CRS317-1G-16S+. The exact testing scenario is: - 2x CRS312-4C+8XG (both new) - 2x CRS328-24P-4S+ (1 new, 1 used b...
by cbrown
Tue Mar 26, 2019 3:27 pm
Forum: General
Topic: Mikrotik Model Question [SOLVED]
Replies: 3
Views: 299

Re: Mikrotik Model Question [SOLVED]

It should be in the top title bar of the winbox session, additionally from a new terminal you can do or just go to system > routerboard in winbox.

/system routerboard print
by cbrown
Wed Feb 13, 2019 2:09 pm
Forum: General
Topic: $100,000 bounty for Mikrotik 0-days
Replies: 1
Views: 622

Re: $100,000 bounty for Mikrotik 0-days

Here is another link a friend sent me yesterday.

https://medium.com/tenable-techblog/mak ... 0705459bc6
by cbrown
Wed Nov 28, 2018 3:53 pm
Forum: General
Topic: What ISP software are people using?
Replies: 6
Views: 1357

Re: What ISP software are people using?

I have been deploying Sonar for quite a few consulting customers lately including our own WISP.

https://sonar.software
by cbrown
Wed Sep 30, 2015 7:43 pm
Forum: Beginner Basics
Topic: Load Balancing
Replies: 7
Views: 1083

Re: Load Balancing

Could be tricky depending what you are doing but it is absolutely possible one way or another.
by cbrown
Tue Sep 29, 2015 6:01 pm
Forum: General
Topic: pcc weird behavior
Replies: 1
Views: 498

Re: pcc weird behavior

Sounds like your traffic is being sent through your PCC and out your WAN interfaces. Try adding an accept rule to accept traffic dst to your local networks. Be sure to place this rule at the top. To test if this is the case you can run a traceroute from your computer and see where your traffic is be...
by cbrown
Tue Sep 29, 2015 5:56 pm
Forum: Beginner Basics
Topic: Load Balancing
Replies: 7
Views: 1083

Re: Load Balancing

We typically use PCC as the others can sometimes have issues depending on what you are doing. You can certainly send certain traffic out a certain connection with policy routing.
by cbrown
Tue Sep 29, 2015 5:53 pm
Forum: General
Topic: Can't open ports on 951G-2HnD
Replies: 6
Views: 939

Re: Can't open ports on 951G-2HnD

You will need to put your firewall rule in the forward chain not the input.

http://wiki.mikrotik.com/wiki/Manual:IP ... ter#Chains
by cbrown
Tue Sep 29, 2015 5:52 pm
Forum: General
Topic: PoE Issue
Replies: 4
Views: 681

Re: PoE Issue

I believe those phones use 802.3af and MikroTik only supports passive poe output.
by cbrown
Thu May 28, 2015 5:46 pm
Forum: Beginner Basics
Topic: Console port on CCR
Replies: 2
Views: 889

Re: Console port on CCR

Make sure your using a null modem cable and not a straight through.
by cbrown
Sat May 02, 2015 2:11 pm
Forum: General
Topic: Subnet Mask Problem
Replies: 1
Views: 448

Subnet Mask Problem

It will be a /30.

Hopefully this will help in the future.
http://www.aelius.com/njh/subnet_sheet.html
by cbrown
Mon Mar 30, 2015 10:01 pm
Forum: General
Topic: Feature Request: Add non-static DHCP clients to address-list
Replies: 3
Views: 1380

Re: Feature Request: Add non-static DHCP clients to address-list

Agreed it would be nice but here is how I do it in lease-script. :if ($leaseBound = "1" ) do={ /ip firewall address-list add address=$leaseActIP list=DHCP :log info "Lease $leaseActIP added to AList" } else={ /ip firewall address-list remove numbers=[find where address=$leaseActIP] :log info "Removi...
by cbrown
Fri Feb 27, 2015 7:12 pm
Forum: Wireless Networking
Topic: Best way to mount a AP on a cieling
Replies: 2
Views: 797

Re: Best way to mount a AP on a cieling

Something that sticky may do more damage than two small screw holes. I had some velcro stuck to a wall once and when I removed it I ended up painting.
by cbrown
Tue Jan 06, 2015 10:43 pm
Forum: Beginner Basics
Topic: Deny outside DNS on port 53 / Permit Inside DNS?
Replies: 17
Views: 20086

Re: Deny outside DNS on port 53 / Permit Inside DNS?

My assertion is 100% correct if these rules are added to a firewall with no other rules. Which would look like this. /ip firewall filter add action=drop chain=forward in-interface=ether1 port=53 protocol=udp add action=drop chain=forward in-interface=ether1 port=53 protocol=tcp Add rules to drop TCP...
by cbrown
Tue Jan 06, 2015 8:53 pm
Forum: General
Topic: Not able to reach remote network via vpn between mikrotiks
Replies: 4
Views: 2158

Re: Not able to reach remote network via vpn between mikroti

For MikroTik to MikroTik there are much better VPNs than OpenVPN. I would recommend L2TP and you can add IPSec if you need the extra security or SSTP. Post /export from each of your devices so we can better see the problem. It may not be in your routes, it could be in your firewall or something else.
by cbrown
Tue Jan 06, 2015 8:48 pm
Forum: Beginner Basics
Topic: Limit Access to particular IP
Replies: 2
Views: 575

Re: Limit Access to particular IP

What kind of access are you trying to limit? Give some more detail of what you are trying to accomplish.
by cbrown
Tue Jan 06, 2015 8:42 pm
Forum: Beginner Basics
Topic: Deny outside DNS on port 53 / Permit Inside DNS?
Replies: 17
Views: 20086

Re: Deny outside DNS on port 53 / Permit Inside DNS?

It should be like this assuming your WAN connection is on either1. This drops new connections coming in ether1. This will still allow DNS requests to go out from the router and then back in without allowing NEW connections from unwanted outsiders. /ip firewall filter add action=drop chain=input conn...
by cbrown
Tue Jan 06, 2015 8:36 pm
Forum: RouterBOARD hardware
Topic: CCR1016-12G istable hardware ?
Replies: 1
Views: 795

Re: CCR1016-12G istable hardware ?

We have installed a ton of CCRs and don't have a problem with any of them. In the early stages of ROS 6 we had some problems with the software but everything is working great now.
by cbrown
Sat Dec 27, 2014 6:44 am
Forum: General
Topic: Forum Question
Replies: 14
Views: 2452

Re: Forum Question

Yea it tells me every time as well.
by cbrown
Thu Dec 04, 2014 9:24 pm
Forum: General
Topic: system health voltage via ssh
Replies: 2
Views: 718

Re: system health voltage via ssh

/system health print
by cbrown
Fri Oct 31, 2014 10:01 pm
Forum: Wireless Networking
Topic: PC - Router as basestation
Replies: 11
Views: 1703

Re: PC - Router as basestation

Wrong, it's more a limitation of wireless in general.
by cbrown
Wed Oct 29, 2014 5:18 pm
Forum: RouterBOARD hardware
Topic: Need faster Rb951G!
Replies: 2
Views: 936

Re: Need faster Rb951G!

850Gx2 would certainly do better, it just doesn't have wireless.
by cbrown
Wed Oct 29, 2014 1:18 pm
Forum: General
Topic: yosemite
Replies: 4
Views: 2069

Re: yosemite

Working great with wine.
by cbrown
Wed Aug 13, 2014 4:23 pm
Forum: Beginner Basics
Topic: i have two internet connections
Replies: 2
Views: 578

Re: i have two internet connections

i have two internet connections, i want to use on mikrotik router rb 12000
Be a little more specific of what you are wanting to do? Do you want to load balanace, failover, policy routing, etc?
by cbrown
Wed Jul 23, 2014 2:55 pm
Forum: Beginner Basics
Topic: v6.17 vs v6.7
Replies: 12
Views: 1978

Re: v6.17 vs v6.7

MacOS 10.9 and now 10.10. What to do now, everybody must be confused!
Haha, love it. :lol:
by cbrown
Mon Jul 21, 2014 12:05 am
Forum: RouterBOARD hardware
Topic: NetMETAL 5 (ac with SFP) - without DC in ?
Replies: 35
Views: 10239

Re: NetMETAL 5 (ac with SFP) - without DC in ?

Is common - also by high end licenced Wireless Products, to Power by Ethernet - even if traffic goes by fiber. Why dont you want to Power by a Ethernet cable? Why struggle With another cable With dc plug? - its so much easier - and better, to just make an Ethernet cable - than tro struggle With a l...
by cbrown
Mon Jul 14, 2014 4:53 pm
Forum: Beginner Basics
Topic: Very Basic
Replies: 4
Views: 861

Re: Very Basic

Remove the DHCP server you created and use the "DHCP Setup" button on the DHCP Server window. It will create the pool and everything for you.
by cbrown
Mon Jul 14, 2014 3:02 pm
Forum: Beginner Basics
Topic: Very Basic
Replies: 4
Views: 861

Re: Very Basic

If using the default config, just take the wireless interface out of the bridge and assign a new subnet to it and create a DHCP server on the wlan interface.
by cbrown
Sun Jul 06, 2014 4:02 pm
Forum: General
Topic: How to raise "upgradeable to"?
Replies: 22
Views: 3542

Re: How to raise "upgradeable to"?

MikroTik, as far as I know, has never enforced the charging for an upgrade license. Not saying that it will always be like that, but currently it is. Whenever you install the OS on the board, it just increments to another version that you can upgrade to. +1. I don't think you guys have anything to ...
by cbrown
Wed Jul 02, 2014 3:53 pm
Forum: Beginner Basics
Topic: Question About Firewall Configuration
Replies: 2
Views: 932

Re: Question About Firewall Configuration

What exactly are you trying to do? Give us some more detail. It could be that you are using the wrong chain.

http://wiki.mikrotik.com/wiki/Manual:IP ... ter#Chains
by cbrown
Wed Jul 02, 2014 3:49 pm
Forum: Beginner Basics
Topic: Another LAN 2 WAN problem and a question about redundancy
Replies: 2
Views: 862

Re: Another LAN 2 WAN problem and a question about redundanc

You need to change your masquerade rule to go out the VLAN which is where your internet is coming in instead of ether1.

As for the redundant internet connection with the VLANs you will need to provide or get more information from your provider.
by cbrown
Tue Jul 01, 2014 2:41 pm
Forum: General
Topic: DNS resolution on port 5353
Replies: 7
Views: 3007

Re: DNS resolution on port 5353

You could create a tunnel to an outside server and send your DNS requests out that tunnel.
by cbrown
Tue Jul 01, 2014 2:38 pm
Forum: General
Topic: Freezing WINBOX
Replies: 3
Views: 1049

Re: Freezing WINBOX

What version of RouterOS do you have installed? We were also having this problem on some previous 6.X versions. It appears to be okay on 6.15
by cbrown
Mon Jun 30, 2014 8:56 pm
Forum: General
Topic: licence key
Replies: 2
Views: 872

Re: licence key

Just login to your mikrotik account on mikrotik.com and purchase them there.
by cbrown
Mon Jun 30, 2014 8:54 pm
Forum: RouterBOARD hardware
Topic: New hardware - mAP
Replies: 154
Views: 51313

Re: New hardware - mAP

First MikroTik with support for 802.3af?
Nope, the RB800 does.

http://routerboard.com/RB800
by cbrown
Wed Jun 25, 2014 3:10 pm
Forum: General
Topic: Upgrading from Level 4 to Level 6 on ROS x86
Replies: 2
Views: 636

Re: Upgrading from Level 4 to Level 6 on ROS x86

You will be fine.
by cbrown
Tue Jun 24, 2014 4:03 pm
Forum: General
Topic: ROS on x86
Replies: 4
Views: 873

Re: ROS on x86

by cbrown
Tue Jun 24, 2014 4:01 pm
Forum: General
Topic: Strange log messages
Replies: 4
Views: 823

Re: Strange log messages

Looks like you have a firewall log rule. Post /ip firewall export
by cbrown
Fri Jun 13, 2014 3:26 pm
Forum: RouterBOARD hardware
Topic: CCR1009-8G-1S-1S just bailed in a really weird way
Replies: 14
Views: 3476

CCR1009-8G-1S-1S just bailed in a really weird way

I had the same exact thing happen with the same router yesterday.

I will email with access shortly but I will replace the router tonight because I have to leave for a week.
by cbrown
Mon May 05, 2014 2:07 pm
Forum: Virtualization
Topic: ccr1036
Replies: 5
Views: 2980

Re: ccr1036

No, not yet.
by cbrown
Wed Apr 30, 2014 1:58 am
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

Because you have 1:30 which is AM. You need 13:30 for 1:30 pm.
by cbrown
Tue Apr 29, 2014 10:29 pm
Forum: RouterBOARD hardware
Topic: RB2011UiAS-RM Password reset?
Replies: 1
Views: 1275

Re: RB2011UiAS-RM Password reset?

Nope
by cbrown
Tue Apr 29, 2014 6:33 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

You don't need to set interval. Yes, they will run daily.
by cbrown
Tue Apr 29, 2014 6:17 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

It should be like this. Don't forget to set your NTP Client on your router. /system scheduler add name="Disable Wireless" on-event=\ "/interface wireless set numbers=0 disabled=yes" policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \ start-date=apr/29/2014 start-time=15:...
by cbrown
Tue Apr 29, 2014 6:10 pm
Forum: Beginner Basics
Topic: Can't connect with Winbox
Replies: 6
Views: 9783

Re: Can't connect with Winbox

There may be a firewall restricting access.

What is in /ip firewall filter?
by cbrown
Tue Apr 29, 2014 6:05 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

Check all of the policy boxes, save, and try again.
by cbrown
Tue Apr 29, 2014 6:01 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

Just leave it default and leave them all selected.
by cbrown
Tue Apr 29, 2014 5:13 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

In /system script you can have a script to disable
/interface wireless set numbers=0 disabled=yes
To enable
/interface wireless set numbers=0 disabled=no
by cbrown
Tue Apr 29, 2014 4:51 pm
Forum: Beginner Basics
Topic: Questions about the Wireless
Replies: 23
Views: 2732

Re: Questions about the Wireless

Under the advanced options on the wireless settings you will see TX Power. This is where you will change the tx power of the device.

You could create a script to disable and enable the wireless interface and then use scheduler to run the enable and disable scripts as desired.
by cbrown
Tue Apr 29, 2014 1:38 pm
Forum: Beginner Basics
Topic: Xbox Live Issues
Replies: 12
Views: 3589

Re: Xbox Live Issues

192.168.8.107 is my Xbox.
by cbrown
Mon Apr 28, 2014 3:02 pm
Forum: General
Topic: US MUM ?
Replies: 4
Views: 749

Re: US MUM ?

I would just like to see one on the east coast.
by cbrown
Thu Apr 10, 2014 2:52 am
Forum: General
Topic: [WINBOX] MultiTab
Replies: 19
Views: 3633

Re: [WINBOX] MultiTab

I actually would hate to see that. I like the way it is.

It would be okay as an option.
by cbrown
Sat Apr 05, 2014 4:31 pm
Forum: General
Topic: Opening Multiple WinBox Windows (Instances) In Mac OS X
Replies: 13
Views: 4220

Re: Opening Multiple WinBox Windows (Instances) In Mac OS X

That's what I did for about a week and hated it. I am now using Parallels with Windows XP running in coherence and it works great.
by cbrown
Wed Mar 26, 2014 12:34 pm
Forum: General
Topic: v6.11 released
Replies: 260
Views: 80004

Re: v6.11 released

Normis other tech companies I have dealt with professionally have bug tracking systems that are open to anyone (Cisco to name one). The bugs are not submitted by end users but by the development teams or other authorized individuals at the company. They are then referenced by tech support when look...
by cbrown
Sun Mar 23, 2014 5:41 pm
Forum: General
Topic: is the OS upgrade a demo or what?
Replies: 4
Views: 866

Re: is the OS upgrade a demo or what?

6.11 hasn't been out two weeks. Sounds like you have an old release candidate.
by cbrown
Thu Mar 20, 2014 1:20 pm
Forum: RouterBOARD hardware
Topic: 450G vs 2011UiAS-IN/RM
Replies: 12
Views: 5704

Re: 450G vs 2011UiAS-IN/RM

It's smaller. That's all I can think of.
by cbrown
Thu Mar 06, 2014 6:42 am
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56565

Re: CAPs Manager

try in terminal /caps-manager

Not there.
by cbrown
Thu Mar 06, 2014 3:20 am
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56565

Re: CAPs Manager

Will do. I only looked in winbox.
by cbrown
Wed Mar 05, 2014 5:52 pm
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56565

Re: CAPs Manager

Just installed it to check and it's not there.
by cbrown
Wed Mar 05, 2014 1:41 pm
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56565

Re: CAPs Manager

Where can we get a beta version of this?
That's what we all want to know but it apparently hasn't been released yet.
by cbrown
Tue Mar 04, 2014 8:14 pm
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56565

Re: CAPs Manager

Anyone got the beta yet?

I thought someone said that they announced it would be available in a few days with a full release in a few weeks?
by cbrown
Mon Mar 03, 2014 6:22 pm
Forum: General
Topic: IPSec Tunnel - add new network at remote end
Replies: 5
Views: 1023

Re: IPSec Tunnel - add new network at remote end

I am familiar with Watchguard as well and think they are a real pain in the ass. Why not switch it out for a MikroTik?

Anyway, post /export compact of the MikroTik and we can make sure that side is correct.
by cbrown
Mon Mar 03, 2014 5:41 pm
Forum: General
Topic: IPSec Tunnel - add new network at remote end
Replies: 5
Views: 1023

Re: IPSec Tunnel - add new network at remote end

Did you add the new policy to both ends of the tunnel?
by cbrown
Thu Feb 27, 2014 6:01 pm
Forum: The User Manager
Topic: FREEZING ROUTERBOARD AP
Replies: 2
Views: 871

Re: FREEZING ROUTERBOARD AP

What version of RouterOS are you running? It may be a good idea to upgrade to the most recent version. Also, don't forget to upgrade the routerboot firmware.
by cbrown
Wed Feb 26, 2014 4:30 am
Forum: General
Topic: Configuring Routerboard as L2TP client
Replies: 3
Views: 1002

Re: Configuring Routerboard as L2TP client

When I try to connect with MikroTik L2TP client, it just sits and does nothing. I have tried PPTP and that works.
I just experienced this same thing with 6.10 on a ccr1016. Haven't had time to look further into it yet and submit a supout to support.
by cbrown
Thu Feb 20, 2014 3:47 pm
Forum: General
Topic: MUM Europe 2014 - Italy, Venice, February 20-21
Replies: 146
Views: 59179

Re: MUM Europe 2014 - Italy, Venice, February 20-21

Anyone know if the 850 will have aes hardware acceleration?
by cbrown
Thu Feb 20, 2014 1:37 pm
Forum: Wireless Networking
Topic: Mikrotik Wireless Controller
Replies: 54
Views: 17171

Re: Mikrotik Wireless Controller

I bet we won't see it until V7. And I bet we will see it tomorrow. With v7 or without it. :) Yep just announced, Beta in the next few days with full release planned in the coming weeks. Unfortunately no 802.11ac AP's were announced to go along with it :( Maybe next time! That is great. Any more det...
by cbrown
Wed Feb 19, 2014 7:07 pm
Forum: Wireless Networking
Topic: Mikrotik Wireless Controller
Replies: 54
Views: 17171

Re: Mikrotik Wireless Controller

I bet we won't see it until V7.
by cbrown
Mon Feb 17, 2014 3:24 pm
Forum: General
Topic: Set Reset defaults for CPE senario?
Replies: 2
Views: 694

Set Reset defaults for CPE senario?

Yes, you can change the default configuration script with netinstall.

http://wiki.mikrotik.com/wiki/Manual:Netinstall
by cbrown
Sun Feb 16, 2014 7:43 pm
Forum: Wireless Networking
Topic: Guest AP - firewall config to separate networks
Replies: 10
Views: 3372

Re: Guest AP - firewall config to separate networks

Yep, that should work. You could also do it based off in and out interfaces. But that will work fine.
by cbrown
Sun Feb 16, 2014 4:08 pm
Forum: Wireless Networking
Topic: Guest AP - firewall config to separate networks
Replies: 10
Views: 3372

Re: Guest AP - firewall config to separate networks

Actually that's wrong. The input rule will only reach the router. If it were in the forward chain you would be correct.
by cbrown
Sun Feb 16, 2014 2:37 pm
Forum: Wireless Networking
Topic: Guest AP - firewall config to separate networks
Replies: 10
Views: 3372

Re: Guest AP - firewall config to separate networks

Post /export compact
by cbrown
Thu Feb 13, 2014 2:44 am
Forum: Beginner Basics
Topic: Lost key after Virtual machine deleted
Replies: 3
Views: 721

Re: Lost key after Virtual machine deleted

I have no idea. That will be completely up to them.
by cbrown
Thu Feb 13, 2014 2:38 am
Forum: Beginner Basics
Topic: Lost key after Virtual machine deleted
Replies: 3
Views: 721

Re: Lost key after Virtual machine deleted

Unfortunately, you will just have to wait for support.
by cbrown
Tue Feb 11, 2014 10:23 pm
Forum: General
Topic: Preshared key l2tp disappears
Replies: 6
Views: 1951

Re: Preshared key l2tp disappears

Confirmed, it is fixed in today's build.
by cbrown
Tue Feb 11, 2014 5:38 pm
Forum: General
Topic: Preshared key l2tp disappears
Replies: 6
Views: 1951

Re: Preshared key l2tp disappears

I was told they were aware of the problem and it would be fixed in a future release. I am using the 6.10 build from yesterday with the class I am teaching this week and it is still not fixed.
by cbrown
Fri Feb 07, 2014 12:49 am
Forum: General
Topic: Preshared key l2tp disappears
Replies: 6
Views: 1951

Re: Preshared key l2tp disappears

I will also confirm this. I was working with this today and did not notice the problem because I was doing everything from the CLI. You can add and change peers from the CLI.

This is also confirmed for the unreleased 6.10 build feb/06/2014 12:44:25.

I submitted a ticket to support.
by cbrown
Thu Feb 06, 2014 3:34 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

ha, i know what arp is :D
My bad :lol:
by cbrown
Thu Feb 06, 2014 2:45 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

by cbrown
Thu Feb 06, 2014 2:36 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

Good.

Which part fixed it?
by cbrown
Thu Feb 06, 2014 2:25 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

Correct and you also had a manual entry in /ip arp. Unless you have specific reason for having that there I would also remove that.
by cbrown
Thu Feb 06, 2014 2:16 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

Why do you have a static ARP entry? Also, you normally set proxy-arp on your LAN interface for VPNs and not on your WAN interface.
by cbrown
Thu Feb 06, 2014 2:12 pm
Forum: General
Topic: Not being redirected to webfig
Replies: 4
Views: 663

Re: Not being redirected to webfig

Did the first page originally look like this?

Image

If not it sounds like they may have had a branding package on the board and it could be messed up.
by cbrown
Thu Feb 06, 2014 2:03 pm
Forum: General
Topic: Same LAN Subnet over L2TP
Replies: 2
Views: 882

Re: Same LAN Subnet over L2TP

You will need to use something like a EoIP or GRE tunnel.

Why do you want it setup this way? Why not route between all the locations?
by cbrown
Thu Feb 06, 2014 1:53 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

I don't see anything but it could be easy to miss in that messy export.

Upgrade to the most recent 6 release and post /export
by cbrown
Wed Feb 05, 2014 3:55 pm
Forum: Beginner Basics
Topic: cannot ping router
Replies: 17
Views: 3137

Re: cannot ping router

Post /export
by cbrown
Wed Feb 05, 2014 3:10 pm
Forum: Beginner Basics
Topic: Remote Access RB751
Replies: 10
Views: 1796

Re: Remote Access RB751

What exactly are you trying to do? You won't have a URL unless you have setup DNS for you IP address.
by cbrown
Wed Feb 05, 2014 3:02 pm
Forum: Beginner Basics
Topic: I'm in WAAAAAY over my head
Replies: 6
Views: 1629

Re: I'm in WAAAAAY over my head

Post an export. Open up and terminal and type /export
by cbrown
Tue Feb 04, 2014 8:48 pm
Forum: RouterBOARD hardware
Topic: 48V POE
Replies: 10
Views: 4994

Re: 48V POE

Why would you want to do that? :-?

My guess it that it has over voltage protection and nothing will happen, it just won't come on.
by cbrown
Tue Jan 28, 2014 3:20 pm
Forum: Beginner Basics
Topic: Xbox Live Issues
Replies: 12
Views: 3589

Re: Xbox Live Issues

CHARL13 -- you're bumming me out man, I'm experiencing the same problems, and cbrown's NAT settings have never worked for me.

Can you please post your working settings with export?

Post your config with /export compact
by cbrown
Sat Jan 25, 2014 5:02 am
Forum: General
Topic: MikroTik News January 2014 (Issue #54)
Replies: 12
Views: 9517

Re: MikroTik News January 2014 (Issue #54)

What kind of antenna are you talking about?
by cbrown
Wed Jan 22, 2014 1:48 am
Forum: Beginner Basics
Topic: Disconnect always while i work remotely tomikrotik 1100ah
Replies: 5
Views: 1250

Re: Disconnect always while i work remotely tomikrotik 1100a

Is your bandwidth being used up? I have run into this when a sites bandwidth was being maxed out. If that's the problem a quick QoS will fix your problem.
by cbrown
Wed Jan 22, 2014 1:45 am
Forum: Beginner Basics
Topic: I'm in WAAAAAY over my head
Replies: 6
Views: 1629

Re: I'm in WAAAAAY over my head

With a basic networking knowledge QuickSet will be your friend. Have you tried it?
by cbrown
Wed Jan 22, 2014 1:42 am
Forum: RouterBOARD hardware
Topic: CRS Documentation
Replies: 45
Views: 14294

Re: CRS Documentation

+1

This is absolutely needed.
by cbrown
Tue Jan 21, 2014 2:58 pm
Forum: Beginner Basics
Topic: Ensuring good quality VOIP Calls
Replies: 1
Views: 461

Re: Ensuring good quality VOIP Calls

Here is some good reading on QoS.
http://wiki.mikrotik.com/wiki/NetworkPr ... of_Service

I would just prioritize the traffic. It is easier to build off of that later if you decide you need to expand your QoS.
by cbrown
Tue Jan 21, 2014 2:51 pm
Forum: Beginner Basics
Topic: New to RouterOS - some first time use support needed
Replies: 4
Views: 802

Re: New to RouterOS - some first time use support needed

:D I don't think many of us are into free.

Those links are a good start and will get you going in the right direction. That is one of the best ways to learn RouterOS and even networking to an extent is trial and error.
by cbrown
Tue Jan 21, 2014 2:21 pm
Forum: General
Topic: Two Separate Network within RB450G
Replies: 1
Views: 552

Re: Two Separate Network within RB450G

You should not put your WAN interface in a bridge.

You just need to create your two separate LANs then just masquerade (NAT) out your WAN interface. Then you can set your firewall up as you would like.
by cbrown
Tue Jan 21, 2014 2:15 pm
Forum: General
Topic: Bandwidth Test
Replies: 1
Views: 485

Re: Bandwidth Test

Depends how your queues are setup. Post your config with /export compact
by cbrown
Tue Jan 21, 2014 2:13 pm
Forum: Beginner Basics
Topic: New to RouterOS - some first time use support needed
Replies: 4
Views: 802

Re: New to RouterOS - some first time use support needed

I have handled thousands of these routers and never seen a power plug falling out. Are you sure you have the correct plug? If so, I would look at getting it replaced. That is a lot of configuration to ask for in a forum post. Have you tried contacting any consultants? I am sure they will be more tha...
by cbrown
Tue Jan 21, 2014 2:07 pm
Forum: General
Topic: Where is service ssh
Replies: 2
Views: 553

Re: Where is service ssh

Do you have the security package installed and enabled?
by cbrown
Wed Jan 15, 2014 10:09 pm
Forum: General
Topic: Users Support..
Replies: 4
Views: 763

Re: Users Support..

How much bandwidth is each of your connections?

For a setup like that I wouldn't consider using the 750. At a minimum I would use a 2011.
by cbrown
Wed Jan 15, 2014 10:04 pm
Forum: General
Topic: Deleted the Internet ... Now port forward only works for DNS
Replies: 11
Views: 1693

Re: Deleted the Internet ... Now port forward only works for

That is interesting because you didn't erase that router did you?
by cbrown
Tue Jan 14, 2014 4:14 pm
Forum: General
Topic: Deleted the Internet ... Now port forward only works for DNS
Replies: 11
Views: 1693

Re: Deleted the Internet ... Now port forward only works for

Sure, /ip route print detail

If you would like you can email me and I will give you our rates. We can setup OSPF for you if you would like.
by cbrown
Tue Jan 14, 2014 3:16 pm
Forum: General
Topic: Deleted the Internet ... Now port forward only works for DNS
Replies: 11
Views: 1693

Re: Deleted the Internet ... Now port forward only works for

I am not seeing anything that would be causing you problems.

Do you have a full route table on both routers? Why are you using RIP instead of OSPF? Trying torching the traffic on your router to see where the traffic is actually making it to and stopping.
by cbrown
Tue Jan 14, 2014 2:12 pm
Forum: General
Topic: Deleted the Internet ... Now port forward only works for DNS
Replies: 11
Views: 1693

Re: Deleted the Internet ... Now port forward only works for

Everything looks okay.

Can you ping 192.168.100.X from the router?
by cbrown
Mon Jan 13, 2014 4:22 pm
Forum: Beginner Basics
Topic: Passing internet through Mikrotik 250GS
Replies: 1
Views: 488

Re: Passing internet through Mikrotik 250GS

What exactly is the gateway router? It could have had ARP entries for the existing router and when you put the switch in place it will not work because it is looking for the mac address of the router.

What are you trying to achieve with the switch?
by cbrown
Mon Jan 13, 2014 4:15 pm
Forum: General
Topic: Deleted the Internet ... Now port forward only works for DNS
Replies: 11
Views: 1693

Re: Deleted the Internet ... Now port forward only works for

Prints are difficult to read and don't display all necessary information.

Please post /export or /export compact if using 5.26 or earlier.
by cbrown
Mon Jan 13, 2014 4:07 pm
Forum: General
Topic: Users Support..
Replies: 4
Views: 763

Re: Users Support..

That is a loaded question. What exactly are you doing? Any QoS, VPNs, etc?
by cbrown
Mon Jan 13, 2014 4:05 pm
Forum: Beginner Basics
Topic: RB951G-2HnD relatively low speeds on lan/wlan
Replies: 5
Views: 2496

Re: RB951G-2HnD relatively low speeds on lan/wlan

Post /export so we can see what your router is doing.
by cbrown
Mon Jan 13, 2014 3:58 pm
Forum: General
Topic: installing routerOS 5.25 on SATA HDD
Replies: 2
Views: 1393

Re: installing routerOS 5.25 on SATA HDD

Sure you can but I would install 5.26 or 6.7.

http://www.mikrotik.com/download


Here is how to install.
http://wiki.mikrotik.com/wiki/Manual:CD_Install
by cbrown
Thu Jan 09, 2014 2:12 pm
Forum: General
Topic: Hairpin NAT Internal Webserver Problems
Replies: 15
Views: 5095

Re: Hairpin NAT Internal Webserver Problems

The hairpin nat rule.
by cbrown
Wed Jan 08, 2014 5:35 pm
Forum: General
Topic: Hairpin NAT Internal Webserver Problems
Replies: 15
Views: 5095

Re: Hairpin NAT Internal Webserver Problems

Rule order is important when making your masquerade rule. Try moving it to the top.

Next time when posting your config just post /export so we can see everything the way exactly the way the router is seeing it.
by cbrown
Wed Jan 08, 2014 3:33 am
Forum: General
Topic: Traffic priority question....I think
Replies: 7
Views: 1341

Re: Traffic priority question....I think

You can do that. You just need a max limit on your parent queue then order your children appropriately. When the queue fills up it will give priority based on the priority of the children.

Best thing to do is just try it in a lab. It will make sense once you start doing it.
by cbrown
Wed Jan 08, 2014 3:24 am
Forum: General
Topic: What's new in 6.8rc1
Replies: 106
Views: 23003

Re: What's new in 6.8rc1

+1
by cbrown
Tue Jan 07, 2014 11:21 pm
Forum: General
Topic: Traffic priority question....I think
Replies: 7
Views: 1341

Re: Traffic priority question....I think

No, it will actually limit traffic as well.
by cbrown
Tue Jan 07, 2014 5:59 pm
Forum: Wireless Networking
Topic: Just want any input regarding Point to point
Replies: 15
Views: 2400

Re: Just want any input regarding Point to point

NV2 will give you higher throughput than 802.11
Can you let see a printscreen from configuration of this?
huh?
by cbrown
Tue Jan 07, 2014 5:27 pm
Forum: Wireless Networking
Topic: Just want any input regarding Point to point
Replies: 15
Views: 2400

Re: Just want any input regarding Point to point

That guide has you using 802.11. I would recommend using NV2 and also learning the real wireless menus as quickset does not give you all of the options. If you want easy and limited with no options you should go with ubnt.
by cbrown
Tue Jan 07, 2014 3:19 pm
Forum: Wireless Networking
Topic: Create Wireless Bridge with RB951-2n
Replies: 2
Views: 6736

Re: Create Wireless Bridge with RB951-2n

First I would reset the router with no default config. Then it sounds like you did everything right besides the wireless mode. Try using station-bridge instead of bridge.

http://wiki.mikrotik.com/wiki/Manual:Wi ... tion_Modes
by cbrown
Tue Jan 07, 2014 2:58 pm
Forum: RouterBOARD hardware
Topic: which serial console cable?
Replies: 4
Views: 2795

Re: which serial console cable?

Yea that is it. Do you have a console port on your computer? If not, you will need a USB to serial cable.

Something like this.
http://www.amazon.com/IOGEAR-Serial-Con ... pd_sim_e_7
by cbrown
Tue Jan 07, 2014 2:52 pm
Forum: Wireless Networking
Topic: Just want any input regarding Point to point
Replies: 15
Views: 2400

Re: Just want any input regarding Point to point

does the Sextant G 5 able to support the bandwidth of site1 to site2?
You should be fine as long as you have a good clear LOS.
by cbrown
Tue Jan 07, 2014 2:41 pm
Forum: RouterBOARD hardware
Topic: Serial console for CCR
Replies: 4
Views: 2592

Re: Serial console for CCR

The default baud rate is 115200 unless you have changed it in /system routerboard settings.

Are you sure you cable is okay? Do you have another to try?
by cbrown
Tue Jan 07, 2014 2:32 pm
Forum: General
Topic: Multiple Port MIrrors
Replies: 4
Views: 1434

Re: Multiple Port MIrrors

You will not be able to mirror either the bridge or the wlan interface.

What are you trying to do exactly? Maybe there is another way to achieve your goal.
by cbrown
Tue Jan 07, 2014 2:17 am
Forum: Beginner Basics
Topic: Xbox Live Issues
Replies: 12
Views: 3589

Re: Xbox Live Issues

Post your whole config with export
by cbrown
Mon Jan 06, 2014 4:52 pm
Forum: Beginner Basics
Topic: Xbox Live Issues
Replies: 12
Views: 3589

Re: Xbox Live Issues

With your current firewall you will not need to do anything as nothing is blocking anything in the forward chain. Lets see if this works then we can get you setup with an appropriate firewall.
by cbrown
Mon Jan 06, 2014 4:22 pm
Forum: Wireless Networking
Topic: Suggest Me for Point to Multipoint setup
Replies: 3
Views: 2054

Re: Suggest Me for Point to Multipoint setup

This will work fine. I am not a fan of bridged networks though. I would have done each site as a different subnet and routed between them.
by cbrown
Mon Jan 06, 2014 4:08 pm
Forum: General
Topic: Multiple Port MIrrors
Replies: 4
Views: 1434

Re: Multiple Port MIrrors

You will have to create a bridge interface and then put the wlan1 and ether2 in the bridge.
by cbrown
Mon Jan 06, 2014 3:59 pm
Forum: General
Topic: Traffic priority question....I think
Replies: 7
Views: 1341

Re: Traffic priority question....I think

I would do this with mangle and queue tree. Instead of marking mac addresses I would just mark based on the network (public and admin) and for select devices on admin to have priority you could set them with a static DHCP lease so they pull the same IP every time and then give that IP priority over ...
by cbrown
Mon Jan 06, 2014 3:50 pm
Forum: Beginner Basics
Topic: Xbox Live Issues
Replies: 12
Views: 3589

Re: Xbox Live Issues

Prints are not good for diagnostics. Use /export if v6 and /export compact if v5. Here is how I do my nat for my xbox. /ip firewall nat add action=dst-nat chain=dstnat dst-address-type="" dst-port=\ 3074,88,500,3544,4500 in-interface=ether1 protocol=udp to-addresses=\ 192.168.8.107 For you firewall,...
by cbrown
Mon Jan 06, 2014 3:34 pm
Forum: General
Topic: Not able to ping to other site on IPSec Tunnel
Replies: 2
Views: 681

Re: Not able to ping to other site on IPSec Tunnel

Could be many different things. It would be best if you would post your configs with /export compact
by cbrown
Thu Dec 26, 2013 10:00 am
Forum: Beginner Basics
Topic: How to configure WiFi on a RB951G-2HnD with SW v6.5?
Replies: 3
Views: 1799

Re: How to configure WiFi on a RB951G-2HnD with SW v6.5?

This is because you will need to run your DHCP server on the bridge interface and not directly on the ethernet interface.
by cbrown
Sun Dec 22, 2013 6:02 pm
Forum: RouterBOARD hardware
Topic: www.routerboard.com
Replies: 11
Views: 3170

Re: www.routerboard.com

I agree I like it as well. Now it is time to give mikrotik.com a facelift.
by cbrown
Wed Dec 11, 2013 6:18 pm
Forum: Beginner Basics
Topic: Help needed from senior members of this forum
Replies: 2
Views: 706

Re: Help needed from senior members of this forum

How many wired ports do you need? I would go with either a 951G or 2011UAS-2HnD.
by cbrown
Mon Oct 21, 2013 1:52 pm
Forum: Beginner Basics
Topic: Noob question
Replies: 1
Views: 576

Re: Noob question

by cbrown
Mon Oct 21, 2013 1:45 pm
Forum: Beginner Basics
Topic: Firewall common configuration rules
Replies: 4
Views: 2734

Re: Firewall common configuration rules

You nat rule is wrong. You are masquerading out ether1 put are using a pppoe client for your internet. Masquerade out your pppoe-client interface.
by cbrown
Sun Oct 20, 2013 8:13 pm
Forum: Wireless Networking
Topic: Metal 2Shpn burned out????
Replies: 2
Views: 1032

Re: Metal 2Shpn burned out????

Sounds like you should RMA it.
by cbrown
Sat Oct 19, 2013 3:19 pm
Forum: Beginner Basics
Topic: SXT and health
Replies: 1
Views: 501

Re: SXT and health

Your fine. :lol:
by cbrown
Sat Oct 19, 2013 3:17 pm
Forum: The Dude
Topic: Invisible Dude clogging HDD
Replies: 2
Views: 1338

Re: Invisible Dude clogging HDD

To free up the space on the board you will need to netinstall.
http://wiki.mikrotik.com/wiki/Manual:Netinstall

Are you trying to login to the router or the dude?
by cbrown
Sat Oct 19, 2013 3:11 pm
Forum: RouterBOARD hardware
Topic: Best WiFi for 800-1000m connection
Replies: 1
Views: 629

Re: Best WiFi for 800-1000m connection

If I had to pick between those two I would go with the Sextant. It is gigabit and has higher gain.
by cbrown
Sat Oct 19, 2013 3:09 pm
Forum: Beginner Basics
Topic: Static address
Replies: 3
Views: 774

Re: Static address

Static ARP or static IP? What exactly are you trying to do?

DHCP leases is what controls the DHCP static leases.
by cbrown
Sat Oct 19, 2013 3:06 pm
Forum: General
Topic: miss spelling in safe mode
Replies: 1
Views: 600

Re: miss spelling in safe mode

It is misspelled but the great part is that it now warns you about still being in safe mode when you close winbox.
by cbrown
Sat Oct 19, 2013 3:02 pm
Forum: General
Topic: Gigabit ethernet
Replies: 2
Views: 584

Re: Gigabit ethernet

I would double check your cable and the injector. I have seen those injectors be bad quite a few times.
by cbrown
Sat Oct 19, 2013 3:00 pm
Forum: RouterBOARD hardware
Topic: Netinstall Via usb?
Replies: 1
Views: 1305

Re: Netinstall Via usb?

No you don't netinstall via USB.

Here is how to netinstall.
http://wiki.mikrotik.com/wiki/Manual:Netinstall
by cbrown
Sat Oct 19, 2013 2:43 pm
Forum: Wireless Networking
Topic: 2011UAS-2HnD - no Wireless interfaces!?
Replies: 1
Views: 476

Re: 2011UAS-2HnD - no Wireless interfaces!?

Is the wireless package installed and enabled? Check in /system packages
by cbrown
Sat Oct 19, 2013 2:42 pm
Forum: General
Topic: Winbox for Mac OSx & Windows & Linux
Replies: 48
Views: 40478

Re: Winbox for Mac OSx & Windows & Linux

I don't go through any of that. I just make sure my virtual adapter is set to bridged mode in Parallels and run Netinstall as administrator.

Thats it for me. No special adapters or anything.
by cbrown
Fri Oct 18, 2013 3:09 am
Forum: General
Topic: Why firmware + software upgrade not combined?
Replies: 1
Views: 579

Re: Why firmware + software upgrade not combined?

I would like to see an option for this as well.
by cbrown
Thu Oct 17, 2013 4:35 pm
Forum: RouterBOARD hardware
Topic: CRS Switch - How's it coming?
Replies: 21
Views: 8154

Re: CRS Switch - How's it coming?

I just preordered 6 of them. They said probably 10-14 days.
by cbrown
Thu Oct 17, 2013 2:43 pm
Forum: General
Topic: Winbox for Mac OSx & Windows & Linux
Replies: 48
Views: 40478

Re: Winbox for Mac OSx & Windows & Linux

What I need now is to find a way to run Netinstall over Parallels over ethernet (not serial, very few RBs I use even have serial). Right now I have to reboot into native Windows, then hardcode IP addresses in the interface in Windows and reboot multiple times before Netinstall will work, then rever...
by cbrown
Thu Oct 17, 2013 2:34 pm
Forum: RouterBOARD hardware
Topic: RB2011UAS-2HnD-IN Questions Topic
Replies: 215
Views: 92445

Re: RB2011UAS-2HnD-IN Questions Topic

I just went and pulled one out of stock and that tab blocking the power hole could very easily be removed with a cutoff wheel or even bent back with pliers.

But this does need to be fixed in future models of the mount. I would also like to see it adjusted to fit booted cables.
by cbrown
Thu Oct 17, 2013 2:23 pm
Forum: RouterBOARD hardware
Topic: RB2011UAS-2HnD-IN Questions Topic
Replies: 215
Views: 92445

Re: RB2011UAS-2HnD-IN Questions Topic

Hello, i've recently bought a RB2011UAS-2HnD-IN with the wall mount. Unfortunately the wall mounts screw holes (that hold the router on its both sides) is a bit off and the mount blocks the power connector (the router has a regular power connector, not the inside the case version) and it can not pl...
by cbrown
Thu Oct 17, 2013 3:36 am
Forum: Wireless Networking
Topic: Metal2SHPn on the tower problem
Replies: 6
Views: 1165

Re: Metal2SHPn on the tower problem

That is also too far for passive PoE. 100ft (approx 30m) is about the max for passive.
by cbrown
Fri Oct 11, 2013 2:21 pm
Forum: Wireless Networking
Topic: hotspot question using RB751U-2HnD
Replies: 4
Views: 1252

Re: hotspot question using RB751U-2HnD

If you had a large house you could run a cable from the 751 to the linksys to expand the signal. Otherwise it would make a great paper weight.
by cbrown
Thu Oct 10, 2013 3:58 pm
Forum: General
Topic: 2011-uas LCD missing commands
Replies: 5
Views: 1055

Re: 2011-uas LCD missing commands

6 is not beta, it is stable and I have installed it on thousands of routers. Read through the changelogs, those are the differences. No table exists.
by cbrown
Thu Oct 10, 2013 3:18 pm
Forum: General
Topic: RB450G / Comcast Modem
Replies: 1
Views: 635

Re: RB450G / Comcast Modem

Call Comcast and tell them to put there modem in bridge mode. This will allow you to let the 450G to do all of the work and likely remove the majority of your problems.
by cbrown
Thu Oct 10, 2013 3:13 pm
Forum: General
Topic: 2011-uas LCD missing commands
Replies: 5
Views: 1055

Re: 2011-uas LCD missing commands

Try upgrading to 6.4.
by cbrown
Thu Oct 10, 2013 3:09 pm
Forum: General
Topic: Scheduler Question
Replies: 2
Views: 532

Re: Scheduler Question

You could set 6 different schedules to run every 7 days.
by cbrown
Thu Oct 10, 2013 2:47 pm
Forum: Wireless Networking
Topic: hotspot question using RB751U-2HnD
Replies: 4
Views: 1252

Re: hotspot question using RB751U-2HnD

Sure, just use a virtual AP.
by cbrown
Thu Oct 10, 2013 2:40 pm
Forum: RouterBOARD hardware
Topic: connect Serial device to RB 433L
Replies: 1
Views: 580

Re: connect Serial device to RB 433L

I would guess that it will not work. Anyway it would just be easier to buy the board already with the serial.

http://routerboard.com/RB433
by cbrown
Thu Oct 10, 2013 2:30 pm
Forum: Wireless Networking
Topic: Mikrotik RB1100 AH as WLAN Controller
Replies: 2
Views: 1207

Re: Mikrotik RB1100 AH as WLAN Controller

Nope, currently mikrotik does not have a wireless controller.
by cbrown
Tue Oct 08, 2013 11:41 pm
Forum: General
Topic: Firewall problem....
Replies: 15
Views: 2352

Re: Firewall problem....

I would guess the attachment is downloaded from a different server than what you have allowed.
by cbrown
Sun Oct 06, 2013 12:54 am
Forum: Beginner Basics
Topic: Upgrading MT & missing licence
Replies: 7
Views: 1514

Re: Upgrading MT & missing licence

If the trial has expired you will know but there are no other limits I am aware of. What exactly is happening?
by cbrown
Thu Oct 03, 2013 2:51 pm
Forum: General
Topic: Enterprise Network
Replies: 3
Views: 995

Re: Enterprise Network

They can't use EIGRP. Cisco has recently opened the EIGRP protocol so maybe soon.
by cbrown
Thu Oct 03, 2013 2:40 pm
Forum: Wireless Networking
Topic: RB912UAG and extra-channels
Replies: 3
Views: 2142

Re: RB912UAG and extra-channels

Atheros AR93XX

You can usually find them in the brochures.
http://i.mt.lv/routerboard/files/RB912_1373007568.pdf
by cbrown
Thu Oct 03, 2013 2:35 pm
Forum: RouterBOARD hardware
Topic: RB433 firewall setting
Replies: 3
Views: 950

Re: RB433 firewall setting

Did you try going to https facebook which your rule would not have worked for. Also, what is the config of your router. If you have ethernet interfaces bridged with your wlan then you will more than likely need to turn on "Use IP Firewall" in your bridge settings. /interface bridge settings set use-...
by cbrown
Thu Oct 03, 2013 2:27 pm
Forum: General
Topic: sip problem with nat masquerade
Replies: 4
Views: 3594

Re: sip problem with nat masquerade

It would help if we could see that NAT rule. Post /export compact
by cbrown
Thu Oct 03, 2013 2:16 pm
Forum: General
Topic: Can't access winbox on LAN? Hairpin NAT issue ???
Replies: 1
Views: 1078

Re: Can't access winbox on LAN? Hairpin NAT issue ???

Post /export compact and we can double check your configuration on the SXT.
by cbrown
Tue Sep 24, 2013 5:35 pm
Forum: General
Topic: Location Suggestion: 2014 USA MUM :)
Replies: 2
Views: 628

Re: Location Suggestion: 2014 USA MUM :)

The only way I am going to enjoy coming the Omaha is if the College World Series is going on and then I highly doubt you guys will see me around the MUM. :D
by cbrown
Tue Sep 17, 2013 6:21 pm
Forum: General
Topic: Mikrotik 6 and ZPH queue
Replies: 4
Views: 897

Re: Mikrotik 6 and ZPH queue

ZPH queue tree? Please provide more details and it would also be helpful to post your configuration with /export
by cbrown
Tue Sep 17, 2013 6:09 pm
Forum: General
Topic: public ip "server taking too long to respond" error
Replies: 1
Views: 1056

Re: public ip "server taking too long to respond" error

Post your config with /export compact
by cbrown
Mon Sep 09, 2013 3:09 pm
Forum: General
Topic: Mikrotik Queues
Replies: 2
Views: 562

Re: Mikrotik Queues

I would guess that your queues were using global-in and global-out which is no more in RouterOS v6.

Post an export of your rules to confirm.
by cbrown
Wed Sep 04, 2013 8:41 pm
Forum: General
Topic: 6.3 Released
Replies: 95
Views: 20276

Re: 6.3 Released

Broken multiple Paste comands in v6.3 CCR (in v6.2 all works fine) I copy commands below(for example) /interface vlan add arp=reply-only interface=ether3 name=TEST vlan-id=3000 /ip address add address=10.250.255.1/24 interface=TEST /ip pool add name=pool_TEST ranges=10.250.255.2-10.250.255.254 /ip ...
by cbrown
Sat Aug 31, 2013 8:54 pm
Forum: General
Topic: DNS name for MT router
Replies: 10
Views: 3040

Re: DNS name for MT router

The router is not answering the request, a DNS Server is. I have never used opendns for dns only bind so I am no help there.
by cbrown
Sat Aug 31, 2013 8:49 pm
Forum: General
Topic: Transfer license?
Replies: 1
Views: 526

Re: Transfer license?

You can't transfer a license.
by cbrown
Fri Aug 30, 2013 10:58 pm
Forum: General
Topic: DNS name for MT router
Replies: 10
Views: 3040

Re: DNS name for MT router

I would guess that it is just doing a reverse dns lookup. This can be setup in bind fairly easy.
by cbrown
Wed Aug 28, 2013 12:58 am
Forum: General
Topic: Mikrotik Wireless Controller
Replies: 1
Views: 811

Re: Mikrotik Wireless Controller

It's not available yet. So far there has been no eta given.
by cbrown
Mon Aug 26, 2013 2:44 am
Forum: General
Topic: 2013 USA MUM in St Louis
Replies: 3
Views: 820

Re: 2013 USA MUM in St Louis

+1
by cbrown
Wed Aug 21, 2013 3:59 am
Forum: Beginner Basics
Topic: Enlarging LAN with 751U's
Replies: 2
Views: 603

Re: Enlarging LAN with 751U's

You have to use ap-bridge to do repeaters but I would not recommend adding more than one this way, it will kill your throughput. If it is at all possible it is better to run cable between them or use other wireless point-to-points for backhauls.
by cbrown
Wed Aug 21, 2013 3:47 am
Forum: General
Topic: Need a transparent firewall on two bridged interfaces
Replies: 1
Views: 648

Re: Need a transparent firewall on two bridged interfaces

Try setting use-ip-firewall=yes in bridge settings.

/interface bridge settings set use-ip-firewall=yes
by cbrown
Tue Aug 20, 2013 2:55 pm
Forum: General
Topic: RB2011UAS-2HnD-IN wifi bridge firewall
Replies: 2
Views: 680

Re: RB2011UAS-2HnD-IN wifi bridge firewall

Post /export so everyone can see what you currently have.
by cbrown
Tue Aug 20, 2013 2:33 pm
Forum: Beginner Basics
Topic: limit download and upload speed
Replies: 3
Views: 1137

Re: limit download and upload speed

Try setting it will a limit other than "unlimited". Try 100M for example.
by cbrown
Wed Aug 14, 2013 4:53 pm
Forum: General
Topic: What is best option for Point-2-Point connection?
Replies: 5
Views: 878

Re: What is best option for Point-2-Point connection?

At 300m either one will work just fine for you.
by cbrown
Wed Aug 14, 2013 2:28 pm
Forum: General
Topic: What is best option for Point-2-Point connection?
Replies: 5
Views: 878

Re: What is best option for Point-2-Point connection?

As cluttered as the 2ghz band is I would use the SEXTANT G 5HPnD
by cbrown
Wed Aug 14, 2013 2:00 pm
Forum: Beginner Basics
Topic: to block facebook
Replies: 2
Views: 705

Re: to block facebook

This should work /ip firewall filter add action=drop chain=forward comment="Block Facebook" dst-address=\ 74.119.76.0/22 add action=drop chain=forward comment="Block Facebook" dst-address=\ 69.63.176.0/20 add action=drop chain=forward comment="Block Facebook" dst-address=\ 31.13.24.0/21 add action=d...
by cbrown
Tue Aug 13, 2013 3:25 am
Forum: RouterBOARD hardware
Topic: Is the radio in an RB911 identical to that inside a RBSXTG?
Replies: 5
Views: 1721

Re: Is the radio in an RB911 identical to that inside a RBSX

I ask because I'd like to make my own SXTG-like gear using bare RB91x and antenna enclosures from a third party
This is what we do for the majority of our links. We previously used the 711s but now use the 911s. Everything works great.
by cbrown
Sat Aug 10, 2013 3:40 pm
Forum: RouterBOARD hardware
Topic: RB dual band together..
Replies: 6
Views: 1375

Re: RB dual band together..

Right now I would use a 433 with two R52Hn.
by cbrown
Sat Aug 10, 2013 2:08 pm
Forum: RouterBOARD hardware
Topic: RB dual band together..
Replies: 6
Views: 1375

Re: RB dual band together..

No. Only "custom build" solutions at this time.
by cbrown
Fri Aug 09, 2013 1:28 am
Forum: Beginner Basics
Topic: WDS on Level 3?
Replies: 1
Views: 599

Re: WDS on Level 3?

Yes, it should work fine.
by cbrown
Thu Aug 08, 2013 5:31 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

No problem. What was the final fix?
by cbrown
Thu Aug 08, 2013 4:07 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

Torch your WAN interface and see if you see the traffic coming in.

As was stated earlier. If you are trying to connect to the to the server via the public IP and setting on the same LAN as the server you will need to setup a hairpin nat rule.
by cbrown
Thu Aug 08, 2013 4:04 pm
Forum: General
Topic: v6.2 released
Replies: 247
Views: 89867

Re: v6.2 released

I have a few test links that I play with regularly and have had about every v6 release candidate, 6.0, 6.1, a bunch of pre-release 6.2 builds, and the current 6.2 build.

The current 6.2 build does seem to be slightly better, but still not quite where it use to be.
by cbrown
Thu Aug 08, 2013 3:43 pm
Forum: General
Topic: PtP link - what to use?
Replies: 1
Views: 527

Re: PtP link - what to use?

So far it looks like the SEXTANT G 5HPnD may fit- Anyone an idea what throughput I can get under good circumstances?
If I was feeling lazy and didn't want to put anything together this is what I would use. If properly configured you should see throughput anywhere between 150-200.
by cbrown
Thu Aug 08, 2013 3:32 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

That is because your WAN interface is not named ether1. Change out ether1 with the interface name of your WAN interface.
by cbrown
Thu Aug 08, 2013 3:25 pm
Forum: General
Topic: v6.2 released
Replies: 247
Views: 89867

Re: v6.2 released

Also throughput seems to have declined. Back on 5.XX I used to have 300/300 rates all day. Now their struggling by 270/243, sometimes even 240/240. With 300/300 I could push ~180-200mb speedtest UDP. Now I'm hitting 150-160 with 6.1
I have also experienced this.
by cbrown
Thu Aug 08, 2013 3:17 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

Yes, unless you are wanting to send port 8083 coming in on your WAN to a different port on the Rasberry (let's use 80 for example) then you would add "to-ports=80". It also doesn't hurt to specify the WAN interface with "in-interface". The resulting rule then would like. add action=dst-nat chain=dst...
by cbrown
Thu Aug 08, 2013 3:10 pm
Forum: Wireless Networking
Topic: Wireless Controller
Replies: 15
Views: 4015

Re: Wireless Controller

I think v7 beta and the new features will be announced at US MUM. :D

I hope they do give us a surprise. Maybe even a demo :D
by cbrown
Thu Aug 08, 2013 3:08 pm
Forum: General
Topic: Exclusion from PCC load balancing
Replies: 4
Views: 1981

Re: Exclusion from PCC load balancing

Try setting your per-conneciton-classifier=both-addresses instead of both-addresses-and-ports. Also, having 5 pcc rules it should be :5/0 :5/1 :5/2 :5/3 and :5/4
by cbrown
Thu Aug 08, 2013 2:52 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

Your dst-nat rule does not look correct. Did you cut it off trying to paste it or is it just wrong?

It should be.
/ip firewall nat
add action=dst-nat chain=dstnat dst-port=8083 protocol=tcp to-addresses=192.168.88.223
by cbrown
Thu Aug 08, 2013 2:20 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

Open a new terminal and type /export compact if using v5 or if using v6 just /export will be fine.
by cbrown
Thu Aug 08, 2013 1:30 pm
Forum: General
Topic: Port forwarding
Replies: 22
Views: 3433

Re: Port forwarding

Which port and protocol are you trying to use?
by cbrown
Wed Aug 07, 2013 1:48 am
Forum: Wireless Networking
Topic: Wireless Controller
Replies: 15
Views: 4015

Re: Wireless Controller

I have no clue but I would speculate that it comes in v7.

I hope I'm wrong though.
by cbrown
Tue Aug 06, 2013 3:39 am
Forum: General
Topic: Exclusion from PCC load balancing
Replies: 4
Views: 1981

Exclusion from PCC load balancing

It sounds like you might have something messed up in your rules. Post /export compact
by cbrown
Tue Aug 06, 2013 3:35 am
Forum: Beginner Basics
Topic: Failover newbie question
Replies: 12
Views: 2376

Failover newbie question

Do what exactly? There were a few methods talked about here.
by cbrown
Fri Aug 02, 2013 3:16 pm
Forum: Wireless Networking
Topic: RouterOS Wireless on MikroTik routers without antennas....
Replies: 4
Views: 1051

RouterOS Wireless on MikroTik routers without antennas....

So I guess what your saying is that there's no way to retrofit my current routers to support the native wireless options?
Correct. There is the 2011UAS-2HnD that has wireless built in. You could switch out the rack mount version or just add an external AP like a Groove, Metal, or even 951.
by cbrown
Fri Aug 02, 2013 3:55 am
Forum: General
Topic: Mikrotik RouterOs 6.1 VPN to Watchguard Fireware
Replies: 5
Views: 1550

Mikrotik RouterOs 6.1 VPN to Watchguard Fireware

Go ahead and post the configs. It is possible. I just did it for a client less than 2 weeks ago.
by cbrown
Fri Aug 02, 2013 1:27 am
Forum: Beginner Basics
Topic: PPTP client configuration
Replies: 4
Views: 1223

PPTP client configuration

What traffic? Do you have a route on both ends or are you trying to use the same subnet on your LAN and VPN?

Post /export compact for both of your routers.
by cbrown
Fri Aug 02, 2013 1:25 am
Forum: Wireless Networking
Topic: RouterOS Wireless on MikroTik routers without antennas....
Replies: 4
Views: 1051

RouterOS Wireless on MikroTik routers without antennas....

You will need a mikrotik with wireless to use wireless via RouterOS. Look at routerboard.com. There are plenty of integrated and "custom build" solutions.
by cbrown
Mon Jul 29, 2013 5:10 am
Forum: Beginner Basics
Topic: 2011 with iphone 5
Replies: 13
Views: 3087

2011 with iphone 5

You set wireless-protocol=802.11. If using winbox you will need to click "advanced" on the right side of the wireless interface box.

Is that your whole config? Did you leave anything out?
by cbrown
Sat Jul 27, 2013 10:07 pm
Forum: Beginner Basics
Topic: 2011 with iphone 5
Replies: 13
Views: 3087

2011 with iphone 5

Instead of everyone guessing and throwing out random things. It would be better to see your config.

Post /export compact and then we can give suggestions based off of that.
by cbrown
Sat Jul 27, 2013 10:03 pm
Forum: General
Topic: PPTP Mikrotik and MacOS X 10.8.4
Replies: 9
Views: 3877

PPTP Mikrotik and MacOS X 10.8.4

Post /export compact

It's hard to tell without seeing your entire config but I would guess you need to set your LAN interface to proxy-arp.
by cbrown
Fri Jul 26, 2013 11:55 pm
Forum: Wireless Networking
Topic: Simple AP not working, please help
Replies: 3
Views: 1222

Simple AP not working, please help

On the "backbone" you will either need to use WDS or you could use station-bridge if it is connecting to another MikroTik.
by cbrown
Mon Jul 22, 2013 11:46 pm
Forum: Beginner Basics
Topic: RouterBoard RB751U-2HnD
Replies: 1
Views: 628

Re: RouterBoard RB751U-2HnD

RouterOS does not have a configurable web server. One thing you could do is setup an external web server and force all HTTP traffic to that server.
by cbrown
Mon Jul 22, 2013 11:42 pm
Forum: RouterBOARD hardware
Topic: CRS Switch - How's it coming?
Replies: 21
Views: 8154

Re: CRS Switch - How's it coming?

+1.
by cbrown
Mon Jul 22, 2013 12:20 am
Forum: General
Topic: Mikrotik help needed
Replies: 3
Views: 670

Mikrotik help needed

You will need to netinstall. Then install the 6.2 release (it can be found in this forum along with the changelog, it's not officially released yet). It will more than likely fix your problem with the CCR.

We had problems with 6.1 and a CCR. 6.2 solved that clients issues.
by cbrown
Tue Jul 16, 2013 10:05 pm
Forum: Forwarding Protocols
Topic: forward rule...
Replies: 4
Views: 2565

Re: forward rule...

What rules do you currently have? Post /export compact
by cbrown
Tue Jul 16, 2013 9:38 pm
Forum: General
Topic: RB911G-5HPnD NIC Issues
Replies: 14
Views: 2974

Re: RB911G-5HPnD NIC Issues

I am using the 911 boards on multiple links right now and they are working great. No problems at all.

Are you using a gigabit injector? We have even had a few gigabit injectors from MikroTik be bad.
by cbrown
Mon Jul 15, 2013 8:05 pm
Forum: Wireless Networking
Topic: Problem with Apple devices
Replies: 10
Views: 3371

Re: Problem with Apple devices

Try setting your wireless protocol to 802.11.
by cbrown
Sun Jul 14, 2013 12:53 am
Forum: RouterBOARD hardware
Topic: RB912G little Tin Cans?
Replies: 4
Views: 1213

RB912G little Tin Cans?

Tin cans? What are you talking about?
by cbrown
Thu Jul 11, 2013 2:23 pm
Forum: General
Topic: Transparent bridge pptp
Replies: 4
Views: 851

Re: Transparent bridge pptp

What routerboard are you using?
by cbrown
Wed Jul 10, 2013 10:53 pm
Forum: General
Topic: Transparent bridge pptp
Replies: 4
Views: 851

Re: Transparent bridge pptp

What version of RouterOS are you using? What are your instability issues, what is it doing?
by cbrown
Wed Jul 10, 2013 2:12 am
Forum: Beginner Basics
Topic: RB2011LS-IN as 8 port layer 2 switch
Replies: 1
Views: 615

RB2011LS-IN as 8 port layer 2 switch

Yep. You can bridge the two master interfaces.
by cbrown
Sat Jul 06, 2013 2:24 pm
Forum: Beginner Basics
Topic: 2 Wireless LANs and 2 DHCP Server
Replies: 4
Views: 3877

2 Wireless LANs and 2 DHCP Server

You need to remove wlan3 from the bridge. It looks like your already have and IP on wlan3 and the DHCP server setup for wlan3.
by cbrown
Sat Jul 06, 2013 3:59 am
Forum: Beginner Basics
Topic: 2 Wireless LANs and 2 DHCP Server
Replies: 4
Views: 3877

2 Wireless LANs and 2 DHCP Server

Post /export compact so we can see what exactly you have.
by cbrown
Thu Jul 04, 2013 2:36 pm
Forum: Wireless Networking
Topic: PtP wifi + EOIP Tunnel
Replies: 5
Views: 2344

PtP wifi + EOIP Tunnel

Does the TPLink support 802.11q? Post a drawing of your network.
by cbrown
Thu Jul 04, 2013 2:34 pm
Forum: General
Topic: Is it possible to config failover with only one int(WAN)?
Replies: 5
Views: 1076

Is it possible to config failover with only one int(WAN)?

Agreed. That is how I would do it as well.
by cbrown
Thu Jul 04, 2013 2:27 pm
Forum: Beginner Basics
Topic: Wan interface forward
Replies: 14
Views: 2768

Wan interface forward

You will need to make sure your dhcp-client is now running on the bridge and not ether1. If you have a static from your provider make sure it is on the bridge and not ether1. Also check your masquerade rule in /ip firewall nat. Make sure it is using the bride interface.
by cbrown
Thu Jul 04, 2013 2:40 am
Forum: Beginner Basics
Topic: Help with MKT Groove A-2Hn
Replies: 2
Views: 712

Re: Help with MKT Groove A-2Hn

Do you already have hotspot setup on the other side of the nano bridge or are you wanting to create a new hotspot on the wireless interface of the groove?
by cbrown
Thu Jul 04, 2013 2:35 am
Forum: General
Topic: Is it possible to config failover with only one int(WAN)?
Replies: 5
Views: 1076

Re: Is it possible to config failover with only one int(WAN)

Is it possible to configure single WAN interface with two ips(Radio+Fiber) to do the failover.
Sure
by cbrown
Thu Jul 04, 2013 2:33 am
Forum: RouterBOARD hardware
Topic: Performance issue limation RB2011UAS-2HnD-IN
Replies: 2
Views: 951

Re: Performance issue limation RB2011UAS-2HnD-IN

I answered your other post. No need to double post.
by cbrown
Thu Jul 04, 2013 2:25 am
Forum: Wireless Networking
Topic: PtP wifi + EOIP Tunnel
Replies: 5
Views: 2344

Re: PtP wifi + EOIP Tunnel

What you could do is just put your wireless modes to bridge and station-bridge. Then bridge the wireless and ethernet interfaces on the SXTs. Now you have a layer 2 connection between your buildings, no need for vlans or eoip tunnels. As for the protocol, NV2 will give you more throughput but higher...
by cbrown
Thu Jul 04, 2013 2:14 am
Forum: General
Topic: All traffic via IPSEC tunnel
Replies: 2
Views: 2616

Re: All traffic via IPSEC tunnel

What I do is create a L2TP or GRE tunnel then encrypt the tunnel with IPSec. Once I have that I create a /30 network on the tunnel and create a default route with a routing mark to the "data center". Then create a mangle rule to send desired traffic to the new routing table. Instead of using /ip man...
by cbrown
Thu Jul 04, 2013 2:00 am
Forum: General
Topic: burst only happens in the beginnin if limit value is given?
Replies: 1
Views: 421

Re: burst only happens in the beginnin if limit value is giv

Make sure you understand the difference between limit-at, max-limit, burt-time, burst-limit, and burst-threshold. It sounds like you may have them confused.

You can read here.
http://wiki.mikrotik.com/wiki/Manual:Qu ... Properties
by cbrown
Thu Jul 04, 2013 1:54 am
Forum: Wireless Networking
Topic: How to utilize 411ah
Replies: 5
Views: 1191

Re: How to utilize 411ah

Looking at your config would be better than looking at screen shots. Post /export compact
by cbrown
Thu Jul 04, 2013 1:52 am
Forum: RouterBOARD hardware
Topic: help RB2011 UAS-2HnD-in
Replies: 1
Views: 593

Re: help RB2011 UAS-2HnD-in

You just need to netinstall the board. Make sure you are using ether1 when you netinstall.
by cbrown
Tue Jul 02, 2013 5:07 pm
Forum: Beginner Basics
Topic: nat help
Replies: 2
Views: 584

Re: nat help

You will create a src nat rule to have anything coming from a particular network (src-address) to use a certain public IP (action=src-nat.

http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT
by cbrown
Tue Jul 02, 2013 4:41 pm
Forum: General
Topic: RB911G-5HPnD NIC Issues
Replies: 14
Views: 2974

Re: RB911G-5HPnD NIC Issues

How long is that cable? Have you tested it?
by cbrown
Tue Jul 02, 2013 3:20 am
Forum: General
Topic: Add VLAN to Bridge Ports Crashes
Replies: 11
Views: 2304

Add VLAN to Bridge Ports Crashes

Your not suppose to put vlans on an interface in a bridge. Instead put them on the bridge interface.
by cbrown
Mon Jul 01, 2013 6:14 pm
Forum: Beginner Basics
Topic: Router board burned
Replies: 1
Views: 456

Re: Router board burned

It is normally cheaper and faster to buy a new board than have them repaired.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 7