Community discussions

Search found 22 matches

by ezanolin
Fri Oct 28, 2016 3:40 pm
Forum: General
Topic: Linux Client unable to connect via OpenVPN since 6.36
Replies: 4
Views: 2018

Re: Linux Client unable to connect via OpenVPN since 6.36

Just posed a response on something similar

see this post http://forum.mikrotik.com/viewtopic.php?f=1&t=113921

Maybe it helps, maybe it doesn't.
by ezanolin
Fri Oct 28, 2016 3:37 pm
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 135
Views: 16964

Re: Suggestion: Completely virtual router based on two physical routers

Just my 2 cents.. Clustering would indeed be very useful, Mikrotik essentially has no HA mode which makes it difficult to push into the enterprise environment. We have VRRP but its not hitless for anything statefull that you may be doing (firewall or tunnelling). Clustering like Junos does on the J ...
by ezanolin
Fri Oct 28, 2016 2:59 pm
Forum: General
Topic: Suggestion: Ability to bind services to multiple VRF's not just default
Replies: 0
Views: 445

Suggestion: Ability to bind services to multiple VRF's not just default

All the hosted services (winbox,ssh,telnet,ftp etc) are only available from the default VRF. Providing the ability to bind to other VRF's would be RoS more in line with other high end operating systems (junos,ios) and would be a great value add.
by ezanolin
Fri Oct 28, 2016 2:54 pm
Forum: General
Topic: Problem to connect to Mikrotik after upgrade OpenVPN to 2.3.12
Replies: 2
Views: 1798

Re: Problem to connect to Mikrotik after upgrade OpenVPN to 2.3.12

Some defaults in openvpn have changed, try add this to your client config file
tls-cipher DEFAULT
It seems the default is not default and you have to tell it to be default, yes I know, weird right.

Hope it helps.
by ezanolin
Thu Sep 15, 2011 11:26 am
Forum: Forwarding Protocols
Topic: IPSec VRF support
Replies: 1
Views: 1128

IPSec VRF support

Is it possible to have IPSec policies/instances apply to packets being processed in a particular VRF? As far as I can tell IPSec policies override any VRF set up, processing all packets from all VRF domains (main included).

Regards,
Enrico.
by ezanolin
Wed Jan 13, 2010 12:58 pm
Forum: Wireless Networking
Topic: 11n channel width support.
Replies: 6
Views: 1358

Re: 11n channel width support.

Your reply is not helpfull and has a very dismissive and rude tone. Please do not give bad advice if you do not understand the question. I see no technical reason why smaller channels would not be available in 11n (MIMO). Basically less bandwidth but with MIMO and the new MCS'es. Another thing to no...
by ezanolin
Wed Jan 13, 2010 1:50 am
Forum: Wireless Networking
Topic: 11n channel width support.
Replies: 6
Views: 1358

11n channel width support.

Is there support for 5 and 10 MHz channels with 11n? If not when can it be expected if ever?
Will 11n and/or 5/10MHz be supported with extra channels (4.9 and 2.5 Ghz)

Thank you.
by ezanolin
Mon Mar 17, 2008 12:07 pm
Forum: RouterBOARD hardware
Topic: Radius and OpenVPN
Replies: 0
Views: 959

Radius and OpenVPN

What radius attribute is used to specify the bridge that the ppp (openvpn) user belongs to? Is there a new radius dictionary for V3?

Regards.
by ezanolin
Wed Mar 12, 2008 12:02 pm
Forum: RouterBOARD hardware
Topic: V3 and OpenVPN
Replies: 2
Views: 1033

V3 and OpenVPN

Can you clarify how many openvpn connections are allowed on which license level, your license feature list on the mikrotik website seems to be out of date.

What radius attribute is used to specify the bridge that the ppp (openvpn) user belongs to? Is there a new radius dictionary for V3?

Regards.
by ezanolin
Sun Nov 04, 2007 12:21 am
Forum: General
Topic: Beta 3.0 RC9 x86 - L7 matching and queue trees cause reboot
Replies: 1
Views: 963

Beta 3.0 RC9 x86 - L7 matching and queue trees cause reboot

I am using the new L7 features to mark my connections and then mark my packets for shaping based on the connection mark. After running for a few hours the server becomes unresponsive and then reboots itself. Here is a supout after the server has rebooted. I am running queues on VLAN interfaces that ...
by ezanolin
Sat Nov 03, 2007 11:47 pm
Forum: General
Topic: Beta 3.0 RC9 x86 - OpenVPN server licence bug
Replies: 2
Views: 1149

Beta 3.0 RC9 x86 - OpenVPN server licence bug

After 2 days of operation I get an error message that says I have exceeded the number of connections allowed by my licence (200). I have only got 16 connections at any one time.. It looks like routeros is not properly freeing the VPN sessions that timeout. I have noticed some strange behaviour with ...
by ezanolin
Mon Jan 22, 2007 3:14 pm
Forum: General
Topic: P2P Classifaction with asych VLAN Traffic
Replies: 0
Views: 425

P2P Classifaction with asych VLAN Traffic

I have a core router where I land all my traffic. On that router I have serveral VLAN ports that I use to acquire and provision bandwidth with. I am setting TOS bits for p2p traffic and then shaping them at a later stage on another router. My question is this, will MT classify p2p traffic properly i...
by ezanolin
Fri Nov 17, 2006 11:14 am
Forum: General
Topic: Upgrading a level 4 licence board to 3.x
Replies: 15
Views: 4061

Well instead of moaning and groaning you could have just asked about the licence as I did instead of assuming and buying a level 5.

So the official word is .. Probably keep OSPF with level4 V3.x but dont bet the farm on it as we may at a whim change our minds?
by ezanolin
Wed Nov 15, 2006 5:11 pm
Forum: General
Topic: Upgrading a level 4 licence board to 3.x
Replies: 15
Views: 4061

Upgrading a level 4 licence board to 3.x

In your licencing matrix you say level 4 licences have routing support but then you have a note there that says (V3 = no) Does that mean that If I upgrade to v3.x I will loose all routing support on the installation? There is no mention about what the note means anywhere, so this is what I assume. T...
by ezanolin
Tue Sep 05, 2006 1:41 pm
Forum: General
Topic: OSPF Route Distribution of routes not in the main table.
Replies: 0
Views: 726

OSPF Route Distribution of routes not in the main table.

I am trying to do some source routing on my box v2.9.29. I create a default route to my secondary router and specify mark "secondary" in the route entry. As soon as I enable the route the rest of my network sees the box as the default route while it sees the rest of the network as the default route ...
by ezanolin
Wed Apr 26, 2006 2:40 am
Forum: General
Topic: How to block traceroute and allow ping?
Replies: 6
Views: 10514

Type 30 is the ICMP type that gets transmitted from the traceroute client.
Type 11 is what the router responds to the client with.
by ezanolin
Sun Apr 23, 2006 4:20 pm
Forum: General
Topic: How to block traceroute and allow ping?
Replies: 6
Views: 10514

No matter if you use TCP UDP or ICMP the method of doing a traceroute is the same. a packet is sent out winth an increasing IP TTL(Time To Live) vlaue. every time the packet passes a router the router decreases the ttl. If the TTL reaches zero the router should respond to the source of the packet wi...
by ezanolin
Sun Apr 23, 2006 12:51 pm
Forum: General
Topic: Firewall Quirkyness.
Replies: 1
Views: 564

Firewall Quirkyness.

I am trying to get the router to report a specific IP for its responses to ICMP ttl expires. I mark the packets with mangle in the OUTPUT queue, type icmp message 11 which I can see are matching correctly. I then SRC-NAT all the packets with that packet mark. The SRC-NAT rules never find a match. An...
by ezanolin
Sun Apr 23, 2006 12:45 pm
Forum: General
Topic: Origins of PCQ
Replies: 0
Views: 526

Origins of PCQ

I have looked all over for the origins of the PCQ qdisc but have found no reference to it anywhere on the web. Who developed it?
by ezanolin
Thu Apr 13, 2006 1:22 am
Forum: The Dude
Topic: UPS Probe
Replies: 5
Views: 3220

I have an APC smart 5000 and and am also using SNMP to monitor it. you can monitor battery level and ups load. APC OID's status 1.3.6.1.4.1.318.1.1.1.4.1.1.0 the status codes listed above seem the same. temperature 1.3.6.1.4.1.318.1.1.1.2.2.2.0 integer gauge degrees celcius load 1.3.6.1.4.1.318.1.1....
by ezanolin
Sat Feb 25, 2006 2:30 pm
Forum: The Dude
Topic: Report back on issues and suggestion
Replies: 1
Views: 1232

One more thing.. there are some graphing issues around out of bound data.. ie if you are disconnected from a device that you are getting throughput information from with SNMP, when you reconnect the graph has a huge spike for the next sample and nothing for the interim period. The data collected at ...
by ezanolin
Sat Feb 25, 2006 2:25 pm
Forum: The Dude
Topic: Report back on issues and suggestion
Replies: 1
Views: 1232

Report back on issues and suggestion

If you create a whole bunch of empty panels in which to display data like so 1 2 3 4 5 5 5 6 7 7 8 8 If you select a display item for panel 8 it gets placed in the first available "null" panel.. ie 1. Its also imposibel to create panel 9 as in 1 2 3 4 5 5 5 6 7 7 8 8 9 9 9 9 Without strating all ove...