Community discussions

Search found 61 matches

by brandonrossl
Mon Dec 03, 2012 7:58 pm
Forum: RouterBOARD hardware
Topic: Wanted - New hardware from MikroTik
Replies: 46
Views: 10529

Re: Wanted - New hardware from MikroTik

Dobby Exactly. A real or mini pcie that can take anything is better than multiple PCI. One tiny board, big 'engine', plenty of ram, one expansion slot. Would be able to handle backbone work or gateway but maybe not both a the same time. A 433ah processor is like the currently but I really want 802....
by brandonrossl
Fri Nov 30, 2012 7:20 pm
Forum: RouterBOARD hardware
Topic: Wanted - New hardware from MikroTik
Replies: 46
Views: 10529

Re: Wanted - New hardware from MikroTik

I'm more commenting on the fact that a singular processor could handle 1 card easily, but may need to be upgradede to support two, increasing the price.
by brandonrossl
Wed Nov 28, 2012 3:28 pm
Forum: General
Topic: 5.22 released!
Replies: 104
Views: 48015

Re: 5.22 released!

Same bug in v5.22 and 5.21 (on v5.19 didn't met such problem): can't log in through web-interface (more often from Safari browser, iPhone), there is a following message: "Internal server error". As I read changelog, similar problem has already been solved in version 5.7, but now it seems to appear ...
by brandonrossl
Tue Nov 27, 2012 5:09 pm
Forum: RouterBOARD hardware
Topic: Wanted - New hardware from MikroTik
Replies: 46
Views: 10529

Re: Wanted - New hardware from MikroTik

The suggestion i was making is to make a powerful board with few expansion options for those that are heave users but don't need oodles of hardware features. If you need modem/gps/wifi etc you're going to be in the rb800 price range regardless. But I just want a rb493g with pci-e so I can put an 802...
by brandonrossl
Fri Nov 09, 2012 6:58 pm
Forum: RouterBOARD hardware
Topic: Wanted - New hardware from MikroTik
Replies: 46
Views: 10529

Re: Wanted - New hardware from MikroTik

You seem to be combining two use-cases into one while glossing over a some specifics. Making a gigabit routerboard with PCI-e would allow it to accept a wireless card that is tailored for the use. Need 802.11ac indoors? Pop that card in. Need a long link and don't need that much bandwidth? Pop that ...
by brandonrossl
Wed Nov 07, 2012 6:55 pm
Forum: General
Topic: NAT + Firewall
Replies: 7
Views: 2269

Re: NAT + Firewall

May be you don't understand me. For example, I want connect to my local machine with RDP port from Internet, then I create NAT rule, but I don't want remember add next two rules to FIREWALL for accept incoming and outgoing traffic for this port, for this computer. Can this rules for firewall add au...
by brandonrossl
Wed Nov 07, 2012 5:40 pm
Forum: General
Topic: Mikrotik DNS server issues with Amazon S3 - low TTL 60sec
Replies: 118
Views: 45237

Re: Mikrotik DNS server issues with Amazon S3 - low TTL 60se

Looks like I have no reason NOT to upgrade to 5.21 tonight! 8)
by brandonrossl
Wed Nov 07, 2012 5:38 pm
Forum: RouterBOARD hardware
Topic: Wanted - New hardware from MikroTik
Replies: 46
Views: 10529

Re: Wanted - New hardware from MikroTik

Many seem to be asking for a multiple ethernet device able to serve multiple clients as a CPE. This device could also have use as power user's home router (like myself). Stuff a fast processor in there (faster than 433AH) Plenty of ram for mangle rules, bittorrent friendlyness for NAT Gigabit ports ...
by brandonrossl
Thu Nov 01, 2012 3:51 pm
Forum: General
Topic: UPnP mark
Replies: 5
Views: 2082

Re: UPnP mark

Hi, not really, I wanted to add dynamic rules or marks to filter out the traffic that was NOT initiated from "internal" interface. My understanding is that for UPnP to work properly, there has to be a forward rule defined. I wanted Mikrotik box to filter out traffic that doesn't have coresponding U...
by brandonrossl
Wed Oct 17, 2012 9:28 pm
Forum: General
Topic: LLQ required
Replies: 66
Views: 17246

Re: LLQ required

So to be clear and since adding to an on-topic thread is better than making a new one, and we don't have PM: *assuming NAT=masquerade home router style, wan on eth1, bridging and using ip firewall* Users outgoing packets TO internet are marked in mangle and shaped in what? Packets from the internet ...
by brandonrossl
Wed Oct 17, 2012 6:12 pm
Forum: General
Topic: LLQ required
Replies: 66
Views: 17246

Re: LLQ required

I figured as much, it was useful for torrents, voip, gaming etc on a VERY asynchronous cable connection (6MB down, <1 up) This is THE SINGLE MOST USEFUL THING I've read yet on how to configure QoS. Control is Outbound Router Inbound traffic - traffic that is received by the router from any side. Any...
by brandonrossl
Wed Oct 17, 2012 5:11 pm
Forum: General
Topic: LLQ required
Replies: 66
Views: 17246

Re: LLQ required

My first experience with QoS was on a Dlink DGL-4300, it was upload only, but it had enough options to be dangerous. It also overheated when applying QoS, which I had to fix with a heat-pipe chipset cooler. It had one option that drastically improved performance of small-packet outgoing traffic, pac...
by brandonrossl
Wed Feb 29, 2012 10:07 pm
Forum: General
Topic: XBox Live - NAT Type Strict
Replies: 24
Views: 15492

Re: XBox Live - NAT Type Strict

I only had to set an external and it was good to go.
by brandonrossl
Tue Feb 28, 2012 3:27 pm
Forum: General
Topic: XBox Live - NAT Type Strict
Replies: 24
Views: 15492

Re: XBox Live - NAT Type Strict

And note those rules will only let 1 xbox work properly. To get more than 1 going at a time, you must enable upnp.
by brandonrossl
Tue Feb 14, 2012 6:45 pm
Forum: Wireless Networking
Topic: Correct hardware purchase
Replies: 4
Views: 652

Re: Correct hardware purchase

ROS license level 4 and up will do you fine, 3 does not function as an access point (that you require).
by brandonrossl
Tue Feb 14, 2012 3:04 pm
Forum: Wireless Networking
Topic: Correct hardware purchase
Replies: 4
Views: 652

Re: Correct hardware purchase

Rb433ah
2 wifi cards
2 antennas minimum

Sounds like a winning plan to me.
by brandonrossl
Thu Feb 09, 2012 3:08 pm
Forum: Wireless Networking
Topic: Only frequency above 2447 can be scanned from Mikrotik AP
Replies: 3
Views: 1045

Re: Only frequency above 2447 can be scanned from Mikrotik A

Have you done a site survey to look at neighboring networks?
by brandonrossl
Thu Feb 09, 2012 3:06 pm
Forum: General
Topic: Packet Loss across RB493G
Replies: 2
Views: 419

Re: Packet Loss across RB493G

firewall rules to start
by brandonrossl
Thu Feb 09, 2012 3:02 pm
Forum: General
Topic: Understanding switch performance
Replies: 13
Views: 3062

Re: Understanding switch performance

So the lesson to be learned for today is that if you really need a switch, buy a dedicated one. :lol:
by brandonrossl
Wed Feb 08, 2012 4:16 pm
Forum: General
Topic: Understanding switch performance
Replies: 13
Views: 3062

Re: Understanding switch performance

Worth a shot since the switch chip page in the wiki names ports 2 and 9 as the switch ports.
by brandonrossl
Wed Feb 08, 2012 3:41 pm
Forum: General
Topic: Understanding switch performance
Replies: 13
Views: 3062

Re: Understanding switch performance

Switch chip ports are 2 and 9 8)
by brandonrossl
Tue Feb 07, 2012 11:31 pm
Forum: General
Topic: Understanding switch performance
Replies: 13
Views: 3062

Re: Understanding switch performance

Even though the ports are switched, they still need to be added to the bridge.
by brandonrossl
Thu Feb 02, 2012 10:46 pm
Forum: Wireless Networking
Topic: 802.11n Slow
Replies: 126
Views: 48174

Re: 802.11n Slow

I thought WDS only uses a max of WEP encryption?
by brandonrossl
Thu Feb 02, 2012 10:32 pm
Forum: Wireless Networking
Topic: Wireless client roaming
Replies: 14
Views: 19929

Re: Wireless client roaming

The client's device does the access point choosing when the network and authentication are the same. You can only provide better coverage through picking the proper, alternating, non-overlapping channels so that access points don't fight for the same frequency.
by brandonrossl
Mon Jan 30, 2012 1:23 am
Forum: General
Topic: RB433 IRQ missing for ether2 & 3
Replies: 18
Views: 1366

Re: RB433 IRQ missing for ether2 & 3

Mine does not. But are your interfaces not showing up in winbox?
by brandonrossl
Fri Jan 27, 2012 9:27 pm
Forum: General
Topic: RB433 IRQ missing for ether2 & 3
Replies: 18
Views: 1366

Re: RB433 IRQ missing for ether2 & 3

Sounds like you've taken every software option out there, which leaves a hardware failure on the table... :shock:
by brandonrossl
Fri Jan 27, 2012 8:05 pm
Forum: General
Topic: RB433 IRQ missing for ether2 & 3
Replies: 18
Views: 1366

Re: RB433 IRQ missing for ether2 & 3

Tried other things like:
-reboot
-hard reboot (disconnect power)
-check interface list
-update firmware (2.39 is newest): http://routerboard.com/fwf/43/ar7100-2.39.fwf
-update to 5.12?

If you exhaust your options and brain for ideas then next step is to sent report to support.
by brandonrossl
Fri Jan 27, 2012 7:35 pm
Forum: General
Topic: RB433 IRQ missing for ether2 & 3
Replies: 18
Views: 1366

Re: RB433 IRQ missing for ether2 & 3

Looks like you have the switch chip enabled, do you have ports with 'master port' set?
by brandonrossl
Fri Jan 27, 2012 5:30 pm
Forum: General
Topic: Simple Queue time issue.
Replies: 3
Views: 745

Re: Simple Queue time issue.

I'm pretty sure they're triggered on start, so since you don't have a rule set for it to return to normal (whatever normal is) it doesn't have anything to trigger so it keeps on doing what it was doing.
by brandonrossl
Fri Jan 27, 2012 4:51 pm
Forum: General
Topic: Connection marking in mangle
Replies: 8
Views: 1279

Re: Connection marking in mangle

all the traffic is already marked with no-mark packet/connection mark, so you are just wasting a lot of resources on something you do not have to do at all. I never thought about this.... :shock: So if you have a 'base' priority you don't really need a rule, you just need a queue that grabs no_mark...
by brandonrossl
Fri Jan 27, 2012 3:45 pm
Forum: Beginner Basics
Topic: Mangle Marking for QoS
Replies: 4
Views: 4632

Re: Mangle Marking for QoS

It seems to be working now (mangle itself). I still get some random packets unmarked but most of the actual traffic is caught before the catch-all rule at the bottom. Basically I just want to prioritize traffic into type via mangle classification and have the router pick (PCQ) what happens first bas...
by brandonrossl
Fri Jan 27, 2012 4:51 am
Forum: Wireless Networking
Topic: Routerboard 751U-2HnD basic config help
Replies: 7
Views: 3344

Re: Routerboard 751U-2HnD basic config help

https://lh6.googleusercontent.com/-2GRV2fMG0gE/TyIOzPsfr3I/AAAAAAAAA6U/scpZJinz898/s0/MT%20Setup.JPG And here are my firewall rules" 0 ;;; Drop other chain=input action=drop connection-state=invalid 1 ;;; Drop invalid chain=forward action=drop connection-state=invalid 2 ;;; Internal all traffic from...
by brandonrossl
Thu Jan 26, 2012 9:09 pm
Forum: Beginner Basics
Topic: Basic connectivity issue
Replies: 11
Views: 1417

Re: Basic connectivity issue

I think you want both in bridge mode if you're just connecting 2 computers and are not making one act as an access point.
by brandonrossl
Thu Jan 26, 2012 7:35 pm
Forum: General
Topic: Simple Queues Will Not Apply to Interface
Replies: 16
Views: 13826

Re: Simple Queues Will Not Apply to Interface

Do you have ethernet ports set to a master port? (you shouldn't if you want to limit traffic)
by brandonrossl
Thu Jan 26, 2012 7:33 pm
Forum: Wireless Networking
Topic: Routerboard 751U-2HnD basic config help
Replies: 7
Views: 3344

Re: Routerboard 751U-2HnD basic config help

At work now but I can later.
by brandonrossl
Thu Jan 26, 2012 7:29 pm
Forum: Beginner Basics
Topic: Basic connectivity issue
Replies: 11
Views: 1417

Re: Basic connectivity issue

Of course we'll try, go ahead!
by brandonrossl
Thu Jan 26, 2012 6:46 pm
Forum: General
Topic: Simple Queues Will Not Apply to Interface
Replies: 16
Views: 13826

Re: Simple Queues Will Not Apply to Interface

Ok, I tried this (on a different device that I can test on) add name="test" interface=Office max-limit=3M/3M Flags: X - disabled, I - invalid, D - dynamic 0 name="test" dst-address=0.0.0.0/0 interface=Office parent=none direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-li...
by brandonrossl
Thu Jan 26, 2012 6:33 pm
Forum: Beginner Basics
Topic: My 2nd bricked RB751U-2HnD out of 4, lots of flashing lights
Replies: 28
Views: 8463

Re: My 2nd bricked RB751U-2HnD out of 4, lots of flashing li

I don't think you're alone, there's been a lot of grumbling about the 751...
by brandonrossl
Thu Jan 26, 2012 6:27 pm
Forum: Beginner Basics
Topic: Basic connectivity issue
Replies: 11
Views: 1417

Re: Basic connectivity issue

I haven't used a 411 but on my 433 I have to plug directly in, regular cable, power cycle the router, then leave winbox up and hop on via MAC when I lock myself out with a bad firewall rule. It doesn't like it if I don't power cycle for some reason. Also, see if NOT using PoE and use a regular DC po...
by brandonrossl
Thu Jan 26, 2012 6:19 pm
Forum: General
Topic: Mikrotik Certification test
Replies: 89
Views: 35028

Re: Mikrotik Certification test

I bought and read it yesterday, but I was looking for more info and help/detail on mangle/qos/pcq rules that I can't seem to find anywhere. (my thread here in case you're feeling helpful: http://forum.mikrotik.com/viewtopic.php?f=13&t=58703 ) Though it is a good book and the firewall walkthrough is ...
by brandonrossl
Thu Jan 26, 2012 5:45 pm
Forum: General
Topic: how to protect against UDP flood
Replies: 11
Views: 12634

Re: how to protect against UDP flood

So I'm assuming you have a similar setup to this guy: http://forum.mikrotik.com/viewtopic.php?f=6&t=10396 and sadly his solution was to install an additional mikrotik to just filter udp traffic to prevent exactly what you're experiencing. You're pretty much the victim of a DOS attack unless you can ...
by brandonrossl
Thu Jan 26, 2012 4:07 pm
Forum: General
Topic: how to protect against UDP flood
Replies: 11
Views: 12634

Re: how to protect against UDP flood

See if you can use torch for your local address and udp as protocol to see where they are coming from?

Since UDP is connectionless, the destination IP/port is probably what you have to use to see the traffic.
by brandonrossl
Thu Jan 26, 2012 4:01 pm
Forum: General
Topic: Connection marking in mangle
Replies: 8
Views: 1279

Re: Connection marking in mangle

Mark using the prerouting chain?
by brandonrossl
Thu Jan 26, 2012 3:13 pm
Forum: Wireless Networking
Topic: Routerboard 751U-2HnD basic config help
Replies: 7
Views: 3344

Re: Routerboard 751U-2HnD basic config help

I have wifi on a 433 and in the wireless config I just select the bridge that is connecting all my lan ports and the wifi interface is automatically added to it. /interface bridge port add bridge=bridge1 interface=ether2 add bridge=bridge1 interface=wlan1 my wan is on ether1, and it works! You'll ha...
by brandonrossl
Thu Jan 26, 2012 3:07 pm
Forum: General
Topic: I need urgent help please
Replies: 2
Views: 475

Re: I need urgent help please

You can't, they're designed to be secure. You must reload via netinstall if you're completely locked out.
by brandonrossl
Thu Jan 26, 2012 3:06 pm
Forum: Beginner Basics
Topic: Basic connectivity issue
Replies: 11
Views: 1417

Re: Basic connectivity issue

Did you use a crossover cable & set the IPs already?
by brandonrossl
Thu Jan 26, 2012 3:00 pm
Forum: General
Topic: how to protect against UDP flood
Replies: 11
Views: 12634

Re: how to protect against UDP flood

Have you tried a firewall chain that's packet rate limited?
by brandonrossl
Thu Jan 26, 2012 2:56 pm
Forum: Beginner Basics
Topic: Mangle Marking for QoS
Replies: 4
Views: 4632

Re: Mangle Marking for QoS

I think in figured some of it out:
eth1 is my wan so all rules have interface in as eth1
For incoming traffic I would say prerouting, dst port, tcp, ports 80/8080/81/443, new connection mark 'name'
then after connections are marked i just make rules to mark the packets


correcto?
by brandonrossl
Wed Jan 25, 2012 9:53 pm
Forum: Wireless Networking
Topic: Routerboard 751U-2HnD basic config help
Replies: 7
Views: 3344

Re: Routerboard 751U-2HnD basic config help

Did you remember to bridge the lan and wlan interfaces?
by brandonrossl
Wed Jan 25, 2012 7:23 pm
Forum: General
Topic: Simple Queue time issue.
Replies: 3
Views: 745

Re: Simple Queue time issue.

I think you might need a rule from 1:30-15:00 or else nothing will happen.
by brandonrossl
Wed Jan 25, 2012 6:53 pm
Forum: Wireless Networking
Topic: Wifi speed and broadcast distance
Replies: 2
Views: 758

Re: Wifi speed and broadcast distance

Metal is the enemy!

Also have you looked at your site and drawn out your antenna coverage maps? Maybe looking into directional antennas would help help fight interference and strengthen the signal?

Maybe hop on google maps and doodle over satellite view?
by brandonrossl
Wed Jan 25, 2012 6:45 pm
Forum: RouterBOARD hardware
Topic: RB450G throughput / performance issues
Replies: 4
Views: 4338

Re: RB450G throughput / performance issues

Master port means what port "controls" the slaves via the switch chip rules. So if you direct traffic to the master, the switch chip directs it based on the rules that are defined (if any). You can only change behavior on slave ports with switch chip rules (OR don't set a master and use the cpu). Ex...
by brandonrossl
Wed Jan 25, 2012 4:07 pm
Forum: Beginner Basics
Topic: DHCP server setup question
Replies: 14
Views: 2360

Re: DHCP server setup question

Bu he doesn't have multiple routes to get to any destination, so I don't see how it would help.
by brandonrossl
Wed Jan 25, 2012 1:51 am
Forum: Beginner Basics
Topic: Mangle Marking for QoS
Replies: 4
Views: 4632

Re: Mangle Basics

Here's my current config for reference: /interface bridge add l2mtu=1522 name=bridge1 /interface ethernet set 2 master-port=ether2 /interface wireless set 0 antenna-gain=7 band=2ghz-b/g/n bridge-mode=disabled country=\ "united states" disabled=no disconnect-timeout=5s distance=indoors \ frequency=24...
by brandonrossl
Tue Jan 24, 2012 6:34 pm
Forum: Beginner Basics
Topic: Mangle Marking for QoS
Replies: 4
Views: 4632

Mangle Marking for QoS

I'm having a hard time wrapping my head around the mangle terminology. So I'll start from the top. My setup: Fios(rj45) - rb433ah - a few dumb switches and wifi eth1 = dhcp client for fios IP, default route is added to NAT automatically (felt like a hero when I got this setup) eth2/eth3/wifi is prop...
by brandonrossl
Tue Jan 24, 2012 5:00 pm
Forum: General
Topic: v5.12 released
Replies: 144
Views: 25419

Re: v5.12 released

5.12 webfig
IP>Firewall
Dropdown box says all but it displays nothing. Selecting another option and going back fixes the issue.

WinXP (all updates), Chrome (newest)

Winbox works correctly.
by brandonrossl
Fri Jan 20, 2012 5:12 pm
Forum: RouterBOARD hardware
Topic: Gigabit PoE wiring (e.g RBGPOE)
Replies: 12
Views: 9109

Re: Gigabit PoE wiring (e.g RBGPOE)

So if I use a RBGPOE to eth1 on a RB450G it *will* or *will not* be gigabit?
by brandonrossl
Fri Jan 20, 2012 3:38 pm
Forum: General
Topic: DHCP "Busy" when using Airport routers??
Replies: 3
Views: 703

Re: DHCP "Busy" when using Airport routers??

A friend of mine has an Airport behind another router and it will force a popup on her apple with a warning that the router is double natted and the solution is bridge mode. She learned the hard way once not to listen to it. The airport must be detecting NAT from somewhere via some method and prompt...
by brandonrossl
Tue Jun 14, 2011 11:28 pm
Forum: Beginner Basics
Topic: Home router setup steps
Replies: 4
Views: 5257

Re: Home router setup steps

Thanks for that script! Playing with it now, wish me luck!

I'll post back for any other hangups or findings that may help others.
by brandonrossl
Wed Jun 08, 2011 10:34 pm
Forum: Beginner Basics
Topic: Home router setup steps
Replies: 4
Views: 5257

Home router setup steps

Hey all, I've been pouring through the documentation and can find steps to accomplish 1 thing but not a document that explains things well enough. I've reached the limit of many home routers (they lag and choke) and talked to a guy that does long wifi backhauls for our local baseball diamond (Go Fly...