Community discussions

Search found 211 matches

by shadowskippie
Tue Oct 10, 2017 10:07 am
Forum: General
Topic: TCP SYN Flood attack causing high cpu
Replies: 10
Views: 2158

Re: TCP SYN Flood attack causing high cpu

I use this, It's not perfect. add action=jump chain=Input comment="Syn Attack Protection" connection-state=new jump-target=Syn_Protection protocol=tcp src-address-list=\ High_Connections tcp-flags=syn add action=accept chain=Syn_Protection limit=1k,10 protocol=tcp add action=drop chain=Syn_Protectio...
by shadowskippie
Wed Mar 22, 2017 7:29 am
Forum: Wireless Networking
Topic: CAPsMAN, local forwarding problem
Replies: 4
Views: 1309

Re: CAPsMAN, local forwarding problem

Morning Glad to see you got it working. When i made the suggestion i didn't see ether1 in your bridge. good chance i missed it. I checked several times but it seems i can miss the obvious. I see you are attaching the Wlan interfaces. if you have the CAP setup correctly then you don't need to do that...
by shadowskippie
Tue Mar 14, 2017 7:55 am
Forum: Wireless Networking
Topic: Capsman 4-way handshake
Replies: 1
Views: 239

Capsman 4-way handshake

When an AP is connected to capsman. where is the WPA 4-way handshake done.
Is it now done by the capsman controller?
or is it done on the AP.
by shadowskippie
Tue Mar 14, 2017 7:49 am
Forum: Wireless Networking
Topic: CAPsMAN, local forwarding problem
Replies: 4
Views: 1309

Re: CAPsMAN, local forwarding problem

the local bridge on the AP. it needs to attach the the ether port so that the untagged and tagged frames can pass through onto your network. Edit: I will also added that if you do add the ether 1 port into the bridge, that vlan interface is going to give you problems. the system will start picking u...
by shadowskippie
Thu Dec 17, 2015 12:04 pm
Forum: RouterBOARD hardware
Topic: Antenna Patterns
Replies: 0
Views: 930

Antenna Patterns

Afternoon

I need a little help here.
When looking at the antenna brochures I see the antenna patterns on there but is there anywhere that i can get a detailed numbers of that.
I want to properly load those antennas into my simulation software
by shadowskippie
Thu Nov 05, 2015 9:03 am
Forum: General
Topic: Stop Autologin in Hotspot
Replies: 2
Views: 1560

Re: Stop Autologin in Hotspot

Image

What check boxes do you have tagged
by shadowskippie
Sat Sep 26, 2015 8:29 am
Forum: Forwarding Protocols
Topic: something peculiar about OSPF loopback
Replies: 2
Views: 655

Re: something peculiar about OSPF loopback

I have never come across this in any coarse material nor have I have had a question that poked a stick at this. I can't remember what it was but something prompted me to look into this, now I'm glad it did. There is a lot of material out there that says setup a loopback for the ospf to auto select (...
by shadowskippie
Fri Sep 25, 2015 9:49 am
Forum: Forwarding Protocols
Topic: something peculiar about OSPF loopback
Replies: 2
Views: 655

something peculiar about OSPF loopback

So, I can't remember what prompted me to test this but I came across an interesting issue. we are pretty much taught that when you setup an OSPF instance you should set the router ID to an ip that exist on a loopback interface (in Mtik, that means using a bridge). We are taught to do this because th...
by shadowskippie
Wed Sep 23, 2015 3:56 pm
Forum: Beginner Basics
Topic: MICROTIK ROUTBOARD 1100 SETUP
Replies: 6
Views: 632

Re: MICROTIK ROUTBOARD 1100 SETUP

there isn't simply a tutorial for mikrotik. its an indepth routing platform. The best option here is to give us an in depth explanation of what you need done and we'll tell you what to do. We're not going to ask you to go figure it out on your own as it sounds like the kind of thing you need done wi...
by shadowskippie
Fri Sep 18, 2015 9:25 am
Forum: Beginner Basics
Topic: MT CRS as router on the stick for ESXi host
Replies: 10
Views: 822

Re: MT CRS as router on the stick for ESXi host

sorry, i was looking for an actually print so that i could see what the router was looking like. ip address print, ip route print, interface print. if you can copy what it shows here. just want to make sure of some things. One other thing. lets take the esxi host out of the equation, makes sure the ...
by shadowskippie
Fri Sep 18, 2015 12:00 am
Forum: Beginner Basics
Topic: MT CRS as router on the stick for ESXi host
Replies: 10
Views: 822

Re: MT CRS as router on the stick for ESXi host

Okay. First, putting the IPs onto the bridge is the proper way of doing this. Moving beyond this lets checks some stuff. First, stupid question but did you set the machines gateway to their respective ips on the switch. Next, do you have any firewall filter rules. Can you send me a print of your ip ...
by shadowskippie
Tue Sep 15, 2015 1:07 pm
Forum: Beginner Basics
Topic: MT CRS as router on the stick for ESXi host
Replies: 10
Views: 822

Re: MT CRS as router on the stick for ESXi host

/ip address add address=192.168.11.133/27 interface=br-vlan-11 network=192.168.11.128 add address=192.168.33.1/24 interface=br-vlan-33 network=192.168.33.0 add address=192.168.44.1/24 interface=br-vlan-44 network=192.168.44.0 I hope you see what i did. I'm having lunch right now and hammered this ou...
by shadowskippie
Tue Sep 15, 2015 12:53 pm
Forum: Beginner Basics
Topic: MT CRS as router on the stick for ESXi host
Replies: 10
Views: 822

Re: MT CRS as router on the stick for ESXi host

not sure if this will do anything the IPs onto the bridge instead.
by shadowskippie
Tue Sep 15, 2015 12:41 pm
Forum: Beginner Basics
Topic: pls help
Replies: 1
Views: 231

Re: pls help

If you could post your filter rules here so that it can be seen that would help us better explain what is going on (removing comprising information of coarse first :wink: )
by shadowskippie
Mon Sep 14, 2015 9:54 am
Forum: General
Topic: Assign DHCP Address to Roadwarrior-Client
Replies: 6
Views: 1047

Re: Assign DHCP Address to Roadwarrior-Client

What you just described is the way this kind of connection is normally setup (well normal for me and everyone I've met so far). the problem though is that client wants to pool to exist on the windows DHCP server it think. To be honest I think the OP should go to the client and rather request a slice...
by shadowskippie
Mon Sep 14, 2015 9:38 am
Forum: General
Topic: Trunk port very CPU intensive
Replies: 9
Views: 898

Re: Trunk port very CPU intensive

The thing about Mtik (and I often tell this to clients who ask about the Hardware) is that "it's all about the CPU". Mtik is one of those special kinds of hardware platform which plays the jack of all trades. Just because it can do everything doesn't mean it should. If you find you are using too muc...
by shadowskippie
Thu Sep 10, 2015 12:38 pm
Forum: General
Topic: Problems with the Gns3 setup
Replies: 1
Views: 1482

Problems with the Gns3 setup

So, i followed the setups to the letter, multiple times. when using the cloud and configuring the Loopback interface i come across this problem when i try to connect the loopback to the Mtik. => Server error from 127.0.0.1:8000: Mikrotik-1: NIO of type nio_generic_ethernet is not supported if i inst...
by shadowskippie
Tue Sep 08, 2015 10:04 am
Forum: Announcements
Topic: Tik App, MikroTik android utility ALPHA test
Replies: 310
Views: 94918

Re: Tik App, MikroTik android utility ALPHA test

Good morning. Before i start, please point out if anything i'm about to ask is actually in the app and i'm just missing it. I'm really liking the app. this will allow me to check my routers from my tablet without having to use an ssh client, fantastic. :D Within 5 mins of test though i came across s...
by shadowskippie
Fri Jul 03, 2015 12:17 pm
Forum: General
Topic: Problem with subnetting from /27 to /29
Replies: 5
Views: 495

Re: Problem with subnetting from /27 to /29

Following downware's comment it would seem to fix that problem would be to bring the port going to the ISP into the bridge.

My question is what is your reason for not doing that.
(yes, i am waiting for someone to tell me why this wouldn't work, i'm curious)
by shadowskippie
Fri Jul 03, 2015 11:16 am
Forum: Forwarding Protocols
Topic: OSPF, Two backbone areas
Replies: 4
Views: 1009

Change OSPF IP/ID without affecting traffic

the static routes pose a problem as the network is much of a spiders web. after lots of testing i found a solution to the whole thing its quite the mission but it keeps the network going so first thing, this network was not setup all that well. ospf networks are set to 0.0.0.0/0 the first thing i ne...
by shadowskippie
Wed Jun 17, 2015 4:50 pm
Forum: Forwarding Protocols
Topic: OSPF, Two backbone areas
Replies: 4
Views: 1009

Re: OSPF, Two backbone areas

Thanks

That a good idea. I'll try test it first
by shadowskippie
Wed Jun 17, 2015 9:53 am
Forum: Forwarding Protocols
Topic: OSPF, Two backbone areas
Replies: 4
Views: 1009

OSPF, Two backbone areas

I need some help with understanding this. There is a network that i'm busy doing ip modifercations on. the modifercations are being done in preperations for something else down the line. One of the things i have to do is change the ip the the OSPF is using. this is a small problem as changing the IP...
by shadowskippie
Tue Apr 14, 2015 10:35 am
Forum: Scripting
Topic: simple queue script based off connection mark
Replies: 0
Views: 395

simple queue script based off connection mark

I'm looking for a little help. I need to turn on and off a simple queue based on whether a connection mark is active. I've been trying but with my limited knowledge scripting is not helping This is what I've tried: :if ([ip firewall connection find connection-mark]="Glvl1") do={ /queue simple enable...
by shadowskippie
Sat Mar 07, 2015 8:35 am
Forum: Beginner Basics
Topic: RB2011L - which port is used
Replies: 11
Views: 1410

Re: RB2011L - which port is used

I can't find that default name, just took a look

Where do you find it
by shadowskippie
Fri Mar 06, 2015 9:09 am
Forum: Beginner Basics
Topic: Transfer Config from RB2011UiAS-IN to CRS125-24G-1S-IN?
Replies: 1
Views: 377

Re: Transfer Config from RB2011UiAS-IN to CRS125-24G-1S-IN?

you have to do a config export in the terminal run the export command this will get you close, sometimes all the way. what it does its export the configs and readable terminal commands. when you import into the other router, if there is an issue it'll tell you at which line the problem exist so you ...
by shadowskippie
Fri Mar 06, 2015 8:39 am
Forum: Beginner Basics
Topic: Gre Over IPsec Miktotik to MIKROTIK
Replies: 9
Views: 3463

Re: Gre Over IPsec Miktotik to MIKROTIK

Why are you specifically using GRE

why don't you just use L2TP with IPSEC over that.
by shadowskippie
Fri Mar 06, 2015 8:26 am
Forum: Beginner Basics
Topic: RB2011L - which port is used
Replies: 11
Views: 1410

Re: RB2011L - which port is used

when you rename the interface make sure to try and retain the ether number for admin purposes

eg "ThisPortIsStupid(ether1)"

now, take a closer look at the Mac address of the interface, you'll notice an incline on the last hex. that should help
by shadowskippie
Fri Mar 06, 2015 7:41 am
Forum: Beginner Basics
Topic: Access lan devices from private wan addr of RB750
Replies: 5
Views: 927

Re: Access lan devices from private wan addr of RB750

unless i'm not understanding what you are saying you'll need to port forward on the Mtik to that the 192.168.1.x subnet can talk past the nat to the 192.168.88.x subnet
by shadowskippie
Wed Mar 04, 2015 5:21 am
Forum: Beginner Basics
Topic: Working QoS configuration
Replies: 44
Views: 66464

Re: Working QoS configuration

Check your private mails. I'm going to move this conversation there as I'm not sure if its a qos convo or not
by shadowskippie
Tue Mar 03, 2015 9:21 pm
Forum: Beginner Basics
Topic: Working QoS configuration
Replies: 44
Views: 66464

Re: Working QoS configuration

The problem may not be your qos. When you run the speed check your cpu. Lets start by making sure you're not maxing it out
by shadowskippie
Tue Feb 24, 2015 12:13 pm
Forum: Beginner Basics
Topic: how can i print my running config?
Replies: 1
Views: 1550

Re: how can i print my running config?

first thing you need to know is Mikrotik doesn't check its configs in the same way as cisco. There is no running config that is separate from the from a startup config, there is just the config. When you change something on an Mtik you change it for good, there is no oops i screwed up let me restart...
by shadowskippie
Tue Feb 24, 2015 12:06 pm
Forum: Beginner Basics
Topic: what's the command to print your current running configuration?
Replies: 2
Views: 2060

Re: what's the command to print your current running configuration?

Just remember that it exports from where you are sitting.

If you export from the root you'll get everything
if you export from say IP> Firewall you only get the firewall
by shadowskippie
Thu Feb 12, 2015 9:38 am
Forum: General
Topic: Mikrotik and Rsyslog
Replies: 1
Views: 2492

Re: Mikrotik and Rsyslog

Fuck This always happens, i struggle for a while, ask for help and the very next thing i do is figure it out. Okay, i'm going to explain what i did for others asking this question who stumble onto this. In the action remote you should see a tag "BSD Syslog" tag that. Then all i did was choose syslog...
by shadowskippie
Thu Feb 12, 2015 9:29 am
Forum: General
Topic: Mikrotik and Rsyslog
Replies: 1
Views: 2492

Mikrotik and Rsyslog

I need some help So i got a little bored and built an linux machine running Rsyslog and Log analyzer. Now when i send the remote logs to this device it comes threw like this: Feb 11 23:14:47 router pptp,ppp,info KnySkippieVpn: authenticated Take note of that "router" bit there. now when i then look ...
by shadowskippie
Fri Feb 06, 2015 6:52 am
Forum: General
Topic: Multi PPPoE Servers
Replies: 0
Views: 266

Multi PPPoE Servers

If i setup two PPPoE servers on the same interface, how do i know which one will be the default server.

I'm asking this because i'm experimenting with using the "Service" field in the client interface.
by shadowskippie
Wed Sep 03, 2014 8:45 am
Forum: General
Topic: IpSec Policy Priority issue
Replies: 2
Views: 548

Re: IpSec Policy Priority issue

0.o

Wow, that simple
Sorry for being a noob then :lol:
by shadowskippie
Tue Sep 02, 2014 2:01 pm
Forum: General
Topic: IpSec Policy Priority issue
Replies: 2
Views: 548

IpSec Policy Priority issue

I'm having problems with my v6 routers

the priority in the policies defaults as -1 which it doesn't like, infact it does like anything i put in there.
by shadowskippie
Mon Aug 25, 2014 7:40 am
Forum: General
Topic: meshing Ethernet
Replies: 0
Views: 292

meshing Ethernet

Is it possible to setup a mesh environment via ethernet connections.

I ask this because I have an interesting build that i need to do and before getting the actual wireless devices i want to test the design using virtual machines.
by shadowskippie
Wed Aug 13, 2014 12:50 pm
Forum: General
Topic: Gaming QOS
Replies: 6
Views: 1836

Re: Gaming QOS

Okay, i may need some help with this from someone who is more proficient at scripting than I.

I have tried that script and despite not seeing any syntax errors it will not work and i don't know why.
by shadowskippie
Tue Aug 12, 2014 2:35 pm
Forum: General
Topic: How to config with multiple wan IP addresses?
Replies: 2
Views: 1072

Re: How to config with multiple wan IP addresses?

okay, a bit of testing later and i hit the wall i thought i would. I was trying to see if i could get round it but no luck. The way i see it, if you want to do what you're asking you're going to need two routers, each one handling each network. either you could get the two routers or just visualise ...
by shadowskippie
Tue Aug 12, 2014 11:17 am
Forum: General
Topic: Gaming QOS
Replies: 6
Views: 1836

Re: Gaming QOS

*Update*

I haven't fully read into this but this could be the solution.
http://wiki.mikrotik.com/wiki/Using_Fet ... ress_Lists
by shadowskippie
Tue Aug 12, 2014 10:43 am
Forum: General
Topic: Gaming QOS
Replies: 6
Views: 1836

Re: Gaming QOS

hmmm, that seems like the best way and i've thought a long those lines. Some servers of game have their port hard coded, those games i can isolate via the port used. Other games allow you to specify your server port so i can't use the same method an will either have to keep tracking down a servers p...
by shadowskippie
Tue Aug 12, 2014 7:32 am
Forum: General
Topic: Gaming QOS
Replies: 6
Views: 1836

Re: Gaming QOS

it is a gaming cafe so mostly gaming traffic.
I'm hoping to hit it with a fine tooth comb, pt things like COD and other FPS games a head of things like minecraft.
by shadowskippie
Mon Aug 11, 2014 3:20 pm
Forum: General
Topic: Winbox 3 beta
Replies: 243
Views: 106102

Re: Winbox 3

found a bug with similar graphics issues to the one above.

If i modify the name of winbox i get that graphical issue. fix the name and i fix the graphics
by shadowskippie
Mon Aug 11, 2014 2:46 pm
Forum: General
Topic: How to config with multiple wan IP addresses?
Replies: 2
Views: 1072

Re: How to config with multiple wan IP addresses?

Okay, i'm not sure i'll be able to help you here but first lets clarify the question. so you have a /29 network that has been given to you by your ISP with a gateway of 10.10.10.1 Can i assume that gateway is a router provided from the ISP? Now you say you've added all five IPs to the wan port, port...
by shadowskippie
Mon Aug 11, 2014 11:30 am
Forum: General
Topic: Gaming QOS
Replies: 6
Views: 1836

Gaming QOS

I'm wanting to start a discussing here. I have a client who wants me to setup QOS for his gaming cafe which means applying QOS for the individual games. I have seen many methods on how to do this but I'm now looking for the best method to go about this, so i come to you guys. All suggestions are app...
by shadowskippie
Sun Mar 16, 2014 3:36 pm
Forum: Scripting
Topic: auto modify the 0 route
Replies: 7
Views: 1206

Re: auto modify the 0 route

Because this time I went straight to the point. Normally I try to explain what I'm doing and still confuse ppl so I tried something different.

Eitherway I open my mouth and ppl get confused
by shadowskippie
Sun Mar 16, 2014 7:35 am
Forum: Scripting
Topic: auto modify the 0 route
Replies: 7
Views: 1206

Re: auto modify the 0 route

This is what I'm trying to do. My ucapped adsl gets throttled if abused too much but that throttle is based on a 10 day rolling window. So I have 2 of these account and roll them every 10 days. Basically I was going to have both the accounts dialed and have the script change the 0 routes dst every 1...
by shadowskippie
Sat Mar 15, 2014 8:34 pm
Forum: Scripting
Topic: auto modify the 0 route
Replies: 7
Views: 1206

Re: auto modify the 0 route

actually scratch my last request, it may be too complicated. i'm thinking of a far simpler idea but its going o require a less variable volatile system.
Is there a way to get a script to read and write a variable to a txt file
by shadowskippie
Sat Mar 15, 2014 12:13 pm
Forum: Scripting
Topic: auto modify the 0 route
Replies: 7
Views: 1206

auto modify the 0 route

I need help with something

I need a script that will identify the 0.0.0.0/0 route that all the default traffic is going out on, read the route and see what interface it is using and then be able to change that to a different interface depending on what it finds