Community discussions

MikroTik App

Search found 78 matches

by heleopless
Mon May 14, 2012 12:42 am
Forum: General
Topic: a matter in bypassing
Replies: 4
Views: 1078

Re: a matter in bypassing

is there an answer please?
it is important for me
by heleopless
Mon May 07, 2012 3:37 am
Forum: General
Topic: a matter in bypassing
Replies: 4
Views: 1078

Re: a matter in bypassing

any idea please?????????
by heleopless
Fri May 04, 2012 8:06 pm
Forum: General
Topic: a matter in bypassing
Replies: 4
Views: 1078

a matter in bypassing

hello guys
i want to know how to make any mac beginning with a specific syllable to be bypassed
like that
any mac begin with 00:13:8f be automatically by passed in the ip binding
by heleopless
Mon Apr 09, 2012 10:17 pm
Forum: General
Topic: conquer (online game)
Replies: 1
Views: 967

conquer (online game)

hiii guys
i want to give the biggest priority for this game , conquer (online game)
so all the packets from it will reach in a perfect time

i want the ping in it to be excellent even if there were spme making download

and thanks in advance
by heleopless
Sat Mar 24, 2012 11:06 pm
Forum: General
Topic: help ..... video straming,live video chating,watching online
Replies: 1
Views: 924

help ..... video straming,live video chating,watching online

hello, i use a mangle to mark all connections by its size as a way to make the download not affecting browsing on the network , and a big speed for all and it has been successful but there is a problem ....... i want to mark video streaming and watching online and live video chat to have the first p...
by heleopless
Sat Oct 08, 2011 2:36 pm
Forum: General
Topic: limit all torrent downloads
Replies: 5
Views: 5861

limit all torrent downloads

hi
i want to detect all torrent downloads and limit data rate for them
how could i do that ?

thanks in advance
by heleopless
Sat Oct 01, 2011 5:26 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

is there any way ?

can it be applied depending on the layer 7 protocol depending on the extensions of files
as when i depend on content it is work to some extent
but i want to use the layer 7 as it is more accurate
thanks in advance
and sorry for disturbing you
by heleopless
Wed Sep 28, 2011 8:17 am
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

thaks alot , is there a way to limit the connection of download programs iam suffering from alot of connection for only one file please i want to understand some rules that drop the connection depending on the type of the files you can add more types like pdf,wav .....etc /ip firewall filter add ac...
by heleopless
Wed Sep 28, 2011 2:31 am
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

thaks alot ,
is there a way to limit the connection of download programs
iam suffering from alot of connection for only one file
please i want to understand
by heleopless
Sun Sep 25, 2011 6:28 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

guys , , , is it possible??
by heleopless
Sat Sep 24, 2011 9:52 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

I am starting to sound like an old record, because I keep recommending the following link to every one who wants to do some QOS: http://wiki.mikrotik.com/wiki/Connection_Rate but I feel very comfortable with that. Any way, I would like to see also the rule which marks the packets as "download&...
by heleopless
Sat Sep 24, 2011 5:35 am
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

i want when i open ip ---- firewall ---- connections not see more than 5 connections for every client and all other connection dropped by the firewall The rule in question would not do that. It would drop only the tcp connections in syn state. In firewall connection you would see all connections fr...
by heleopless
Fri Sep 23, 2011 10:20 am
Forum: General
Topic: tcp connection limit.
Replies: 62
Views: 47177

Re: tcp connection limit.

I DONT KNOW WHY
i tried all of these rules and there is no result

please i need an obvious rule
thanks in advance
by heleopless
Fri Sep 23, 2011 5:49 am
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

is there any solution
i think it will be the end of my troubles in my network
please help in this subject
by heleopless
Thu Sep 22, 2011 8:10 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

why do u use net mask 32 ?? i imagine that we should use net mask 30 Because the network with netmask 32 has only one IP Device, while the network with netmask 30 does have 2 of them. So the rule would be applied to one device when you specify the netmask 32 instead of two when you specify netmask ...
by heleopless
Thu Sep 22, 2011 1:53 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

Yes, it is possible, To only allow not more than 5 simultaneous connections from each of the clients, do the following: /ip firewall filter add chain=forward protocol=tcp tcp-flags=syn connection-limit=6,32 action=drop In my opinion limiting connections is not effective way to stop download manager...
by heleopless
Thu Sep 22, 2011 1:31 pm
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

Re: limit number of connection

Yes, it is possible, To only allow not more than 5 simultaneous connections from each of the clients, do the following: /ip firewall filter add chain=forward protocol=tcp tcp-flags=syn connection-limit=6,32 action=drop In my opinion limiting connections is not effective way to stop download manager...
by heleopless
Thu Sep 22, 2011 6:33 am
Forum: General
Topic: limit number of connection
Replies: 19
Views: 17009

limit number of connection

hello in my network for example a user make a big number of downloads in the same time i want to limit his connections with the router for example i want to limit for him 4 conections on the tcp protocol and all other connections will be dropped so i could force him to limit his connections in the i...
by heleopless
Mon Sep 12, 2011 10:10 pm
Forum: General
Topic: how can i do this ?
Replies: 3
Views: 821

Re: how can i do this ?

ok i see
another question please
by using layer 7 how could i catch all online videos , streaming , etc
all packets that need flash player to work



the second
how to limit the data rate of video chat of yahoo


thanks alot
by heleopless
Mon Sep 12, 2011 9:57 pm
Forum: General
Topic: Download limit for websites like youtube, rapidshare etc.
Replies: 3
Views: 4262

Re: Download limit for websites like youtube, rapidshare etc

try this this ill help you limit youtube download /ip firewall layer7-protocol add comment="" name="YouTube Download" regexp=videoplayback add action=mark-connection chain=prerouting comment="youtube DOWNS" disabled=no layer7-protocol="YouTube Download" new-co...
by heleopless
Mon Sep 12, 2011 9:50 pm
Forum: General
Topic: some youser only access to open only site
Replies: 2
Views: 840

Re: some youser only access to open only site

i think you can use walled garden in ip hotspot
and allow some users to access a web site without login
by heleopless
Mon Sep 12, 2011 9:28 pm
Forum: General
Topic: how can i do this ?
Replies: 3
Views: 821

how can i do this ?

most users users uses internet download manager to download
is there a way to limit the data rate that this program can use for the all users?


or


is there a way to limit the number of connections that the program use for every user ?
thanks in advance
by heleopless
Mon Sep 12, 2011 9:07 pm
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

OpenDNS only filters by domain names, that is all it is able to do. You are expecting it to be able to do more than it can if you expect it to prevent people from directly going to IP addresses. When someone tries to access a website directly by an IP address they are able to bypass using DNS since...
by heleopless
Mon Sep 12, 2011 8:49 pm
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

enable RouterOS proxy, then /ip firewall filter add chain=forward action=reject place-before=0 after that, clients must have your proxy configured. any other proxy as well as direct access will not work SIR that is very good it is able to block the proxy but unfortunatly it blocks the yahoo messeng...
by heleopless
Mon Sep 12, 2011 6:05 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

now i use open dns which is 208.67.222.123 208.67.220.123 i want to block proxy so when some body put any manual proxy in the browser it will not work they use proxy like 155.98.35.7 port 3128 and it works very well i dont want any manual proxy work i want to stop them all with out get harm to chatt...
by heleopless
Sun Sep 11, 2011 4:39 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

THE PROBLEM IS STILL THERE AND SOME CLIENTS BY USING SOME PROXIES BYPASS MY DNS
by heleopless
Sat Sep 10, 2011 5:38 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

that is fantastic
thank you very much
by heleopless
Fri Sep 09, 2011 6:11 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

i want only to block porno sites by using open dns filter which is 208.67.222.123 208.67.220.123 and i do not want any one to bypass this so i want to block access to proxy and block hot spot shield now hotspot shield was done with the help of the above post so i wannt to block the proxy or using th...
by heleopless
Thu Sep 08, 2011 4:08 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

that is fantastic thank u
but the problem here is that wen i block these ports some chat programs stop working
any way to force them to use my specify protocol and not use any other proxy
by heleopless
Wed Sep 07, 2011 6:53 pm
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

Re: disaster need help please

that is wondeful the way has succeeded but there is still a problem when an employee uses a manual proxy , the hotspot shield program easily worked and when they use these proxies they bypass the whole rules too so i want a way to prevent any manual proxies and use only mikrotik proxy thanks in adva...
by heleopless
Wed Sep 07, 2011 6:56 am
Forum: General
Topic: disaster need help please
Replies: 15
Views: 2850

disaster need help please

in the company
i use open DNS to filter some kinds of sites
but lately some employees uses a disastrous program called #hotspot shield#
which make big problems in the routine
please help me
i want an active way to protect from this program
my mikrotik is version 3.3
thanks in advance
by heleopless
Sat Jun 18, 2011 10:15 pm
Forum: General
Topic: i need help
Replies: 2
Views: 851

Re: i need help

i couldnt understand
my question is about that some virus in network computers affect the performance of the internet and make alot of "request timed out"
are there some codes in mikrotik that would prevent this effection on the internet ??
by heleopless
Thu Jun 16, 2011 3:30 pm
Forum: General
Topic: i need help
Replies: 2
Views: 851

i need help

i want the best rule to prevent network virus
my mikrotik version is 3.3
and thanks in advance
by heleopless
Mon Jan 24, 2011 9:36 am
Forum: General
Topic: problem : how to control connections for one download?
Replies: 11
Views: 4422

Re: problem : how to control connections for one download?

i want to tell mikrotik
if this program (idm) download ,make connection limit = 2 subnet = 30

any idea please help me iam in a problem
thanks in advance
by heleopless
Mon Jan 24, 2011 9:20 am
Forum: General
Topic: problem : how to control connections for one download?
Replies: 11
Views: 4422

Re: problem : how to control connections for one download?

ok any idea about
the port that internet download manager program use?????
by heleopless
Sun Jan 23, 2011 10:39 pm
Forum: General
Topic: problem : how to control connections for one download?
Replies: 11
Views: 4422

Re: problem : how to control connections for one download?

/ip firewall filter add action=drop chain=forward comment="2 connection exe" connection-limit=2,30 \ content=.exe disabled=no protocol=tcp like this mr fewi that works well but i want this connection limit be for all downloads not for a specific extension is there an idea like if the size ...
by heleopless
Sun Jan 23, 2011 10:22 pm
Forum: General
Topic: problem : how to control connections for one download?
Replies: 11
Views: 4422

Re: problem : how to control connections for one download?

i want to limit the number of download connections

i want the download programs cant make more than one download or two (as i limit) at the same time
i dont want to limit the rate
by heleopless
Sun Jan 23, 2011 3:50 pm
Forum: Scripting
Topic: control user connections
Replies: 1
Views: 713

control user connections

some programs like internet download manager make connections with the download server like media fire till 16 connections that equal 16 clients make download that is affecting badly on the network i want here : how to control these connections i want the internet download manager cant make more tha...
by heleopless
Sun Jan 23, 2011 3:28 pm
Forum: General
Topic: problem : how to control connections for one download?
Replies: 11
Views: 4422

problem : how to control connections for one download?

some programs like internet download manager make connections with the download server like media fire till 16 connections that equal 16 clients make download that is affecting badly on the network i want here : how to control these connections i want the internet download manager cant make more tha...
by heleopless
Sun Jan 23, 2011 2:16 pm
Forum: General
Topic: pccloadbalancing on one device and another control bandwidth
Replies: 6
Views: 1160

Re: pccloadbalancing on one device and another control bandw

the idea here

can i make the first mikrotik to be the gateway of the second mikrotik
in the first one i will make pcc load balancing
and in the second i will take the loadbalancing traffic coming from the first
then i will make my hotspot and give the traffic for the users
by heleopless
Sun Jan 23, 2011 2:05 pm
Forum: General
Topic: pccloadbalancing on one device and another control bandwidth
Replies: 6
Views: 1160

Re: pccloadbalancing on one device and another control bandw

i want the traffic from two gateways pass throw one gate way
then the traffic will reach the second device in this second device we will put only ip route and only two interfaces wan and lan not two wans an d one lan
by heleopless
Sun Jan 23, 2011 1:54 pm
Forum: General
Topic: pccloadbalancing on one device and another control bandwidth
Replies: 6
Views: 1160

pccloadbalancing on one device and another control bandwidth

i want to carry oyt pcc load balancing to collect traffic from two lines make the whole traffic coming from two gateways pass throw only one gate way in another mikrotik device so i can deal with two lines as if it is one line and one gateway in this way 2 mega from one line + 2 mega frome the secon...
by heleopless
Thu Jan 06, 2011 1:14 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

thanks
by heleopless
Thu Jan 06, 2011 12:07 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re:

thanks very much

i can see now that we cant prevent mac spoofing in the router but we can stop it or be limited in the layer 2
thanks very much :)
by heleopless
Wed Jan 05, 2011 9:00 pm
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

Re: about pcc combining way & distinguishing browsing & down

i meant that
i want (the rules of load balancing and the rules i attached before concerning isolate download and browsing) work together


because in my case if i make load balancing , the rules of download isolation arent applied

and thanks for paying attention
by heleopless
Wed Jan 05, 2011 8:45 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

that is good


thanks alot
by heleopless
Wed Jan 05, 2011 7:00 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

any ideas....??
by heleopless
Wed Jan 05, 2011 7:00 pm
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

Re: about pcc combining way & distinguishing browsing & down

no matter for the cpu
my pc specifications are high

any idea about load balancing and distinguishing between download and upload to work in the same time>

any attempts for the answer
by heleopless
Wed Jan 05, 2011 3:44 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

ok that is wonderful
i have to buy these switches it will be very very useful thanks alot
it will limit mac spoofing for some extent

does wireless access points can do the same?
by using wep or other coding methods?

does that help?
by heleopless
Wed Jan 05, 2011 12:38 pm
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

Re: about pcc combining way & distinguishing browsing & down

thanks for paying attention
but no matter of cpu as my server specifications are high

i want the loadbalancing work with my rule of distinguishing?
by heleopless
Wed Jan 05, 2011 12:25 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

when network is wired, smart switch could control per port MAC-address access.
realy i may have reached it
are realy there wire switchs that control and specify mac address per port
what are the names of these switches(types)?
by heleopless
Wed Jan 05, 2011 12:05 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

ok i see what the physical is


now i dont under stand smart switching and how can i carry out it in mikrotik please give some details

thanks
by heleopless
Wed Jan 05, 2011 3:11 am
Forum: Scripting
Topic: Need Help In Layer7 || isolation between Browsing , download
Replies: 41
Views: 26406

Re: Need Help In Layer7 || isolation between Browsing , down

very very very well
thanks my master
by heleopless
Wed Jan 05, 2011 3:07 am
Forum: General
Topic: please help
Replies: 14
Views: 1996

Re: please help

1) Control physical access to your network; 2) Use smart switch to protect your local network; 3) Use PPPoE, when higher security is necessary. ok thanks for paying attention how can i control physical access to my network (please give some details) v3.3 mikrotik how can i use smart switch to prote...
by heleopless
Wed Jan 05, 2011 1:50 am
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

Re: about pcc combining way & distinguishing browsing & down

in the file attached before the queue used is queue tree the limit of download is 1 mega if the line band width 2 mega then 1 mega for download 2 mega for browsing if download traffic isnt consumed 1 mega for browsing if download traffic is consumed so that there will be always free space for browsi...
by heleopless
Wed Jan 05, 2011 1:33 am
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

Re: about pcc combining way & distinguishing browsing & down

dear feklar . thanks alot i reached your point of view but ...... concerning (distinguishing browsing and download) we can ... i use this way " by the member (hazem amer)" and it works very very well this way depends on layer7protocols in identifying the content of the page it depends on t...
by heleopless
Tue Jan 04, 2011 11:12 pm
Forum: General
Topic: about pcc combining way & distinguishing browsing & download
Replies: 18
Views: 4360

about pcc combining way & distinguishing browsing & download

how can i combine between two lines in the way of pcc
and in the same time distinguish between browsing and download?

thanks in advance,
by heleopless
Tue Jan 04, 2011 4:09 pm
Forum: General
Topic: tracking users
Replies: 5
Views: 981

Re: tracking users

no, it's better to analyze webproxy logs.


how we analyze it????
by heleopless
Mon Jan 03, 2011 11:45 pm
Forum: General
Topic: hiiiii experts >> please answer this inquiry
Replies: 2
Views: 859

thanks
by heleopless
Mon Jan 03, 2011 9:45 pm
Forum: General
Topic: hiiiii experts >> please answer this inquiry
Replies: 2
Views: 859

hiiiii experts >> please answer this inquiry

what is the way to encrypt information about mac and ips
so mac scan or ip scan see wrong ips or no ips
and mac is seen like this (ff:ff:ff:ff:ff) or not seen



i know that pppoe system do that

is there any way in hotspot?

please help

thanks for the experts in advance
by heleopless
Mon Jan 03, 2011 9:18 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

i hobe i didnt disturb u
really thanks alot
by heleopless
Mon Jan 03, 2011 9:17 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

ok sir i reached your point and have been convinced
thanks alot

but please tell me if there is a way or rule in hotspot
to mask or prevent ips and macs in the scanning programs from appearing or appear like that
not real (ff:ff:ff:ff:ff:ff)

like pppoe system
by heleopless
Mon Jan 03, 2011 8:33 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

any way help that the first one who has the real mac not logging of when the spoofer log in
by heleopless
Mon Jan 03, 2011 8:32 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

ok if i MAKE SHARED USERS "1"
now one computer can login by the mac
by heleopless
Mon Jan 03, 2011 7:59 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

is that help protecting??????

thanks
by heleopless
Mon Jan 03, 2011 7:53 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

no no no the dhcp doesnt give the spoofer mac the same ip as it is bounded before the spoofer must provide it for his connection manually here we must make a virtual gateway to the dhcp server the spoofer will not be able to know it moreover you can change this virtual gateway every day it is easy t...
by heleopless
Mon Jan 03, 2011 7:42 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

ok that is a good point we reach

the router will not give the spoofing mac the same ip automatically

the spoofer must insert his ip and gateway manually

you agree with that????

tell me
by heleopless
Mon Jan 03, 2011 7:32 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

i will specify the property of one address per mac
this address will be bound by the real mac
and the spoofer cant bound the same address when the true client is active

i found it logical doesnt it??
by heleopless
Mon Jan 03, 2011 7:23 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

ok your reply prove that my idea is probably true now to solve this problem we will bind a specific ip with the mac and specify a big lease time such 60d and be careful that the client bound the ip before the spoofer we will disable the broadcast and not mak address pool we will make it static only ...
by heleopless
Mon Jan 03, 2011 7:08 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

the mikrotik router can control which internet protocols will have the traffic


the true mac will bound the ip specified
the spoofing mac will not as a mac bound it before
we will specify the property of one address per mac
by heleopless
Mon Jan 03, 2011 7:01 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

the subject here doesnt tell that
we prevent some one from spoof a mac
i know that it is impossible

the idea is to let him join but not take the dhcp server ip
as the real client with the true mac will gain or bound the ip before the spoofer
by heleopless
Mon Jan 03, 2011 6:12 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

Re: to fight mac spoofing is that right or wrong please

why do you say that ? every problem has a solution this is real i tested this and have some success when the spoofing mac join and the real client is active the spoofing mac cant take an the same ip of the client from dhcp server so the hacker must make manual ip for his internet connection we can s...
by heleopless
Mon Jan 03, 2011 4:46 pm
Forum: General
Topic: to fight mac spoofing is that right or wrong please help
Replies: 24
Views: 4564

to fight mac spoofing is that right or wrong please help

1-i will make one address per mac 2-i will specify an address for the client 3- i will make shared users more than "1"or "none" 4 i will disable broadcast 5- i will make a virtual gateway for dhcp when the hacker who use mac spoofing try to join by the spoofing mac he cant take t...
by heleopless
Mon Jan 03, 2011 3:12 pm
Forum: General
Topic: please help
Replies: 14
Views: 1996

please help

there is a fact in mikrotik system tell that "If the user has IP address specified, only one simultaneous login is allowed. If the same credentials are used again when the user is still active, the active one will be automatically logged off." how can i change that i mean that when the cli...