Community discussions

MikroTik App

Search found 367 matches

  • 1
  • 2
by biomesh
Fri Sep 17, 2021 9:04 pm
Forum: Wireless Networking
Topic: I have enabled CAPs on 2.1GHz and can't enable it on 5GHz
Replies: 5
Views: 133

Re: I have enabled CAPs on 2.1GHz and can't enable it on 5GHz

You can specify multiple capsman servers on a cap but it will only use one at a time.
by biomesh
Fri Sep 17, 2021 8:32 pm
Forum: Wireless Networking
Topic: I have enabled CAPs on 2.1GHz and can't enable it on 5GHz
Replies: 5
Views: 133

Re: I have enabled CAPs on 2.1GHz and can't enable it on 5GHz

Click the down arrow next to that field to get another value to select wlan2.
by biomesh
Fri Sep 17, 2021 2:10 pm
Forum: RouterOS v7 BETA
Topic: PLEASE MikroTik made NetInstall version for Docker....
Replies: 40
Views: 1859

Re: PLEASE MikroTik made NetInstall version for Docker....

The linux netinstall docs are here:

https://help.mikrotik.com/docs/display/ ... nsforLinux

I saw the segfaults, but I think it was before I exposed the ports in the container or I had something else misconfigured.
by biomesh
Fri Sep 17, 2021 4:33 am
Forum: General
Topic: Inconsistent static DHCP with SFP+/DAC
Replies: 1
Views: 99

Re: Inconsistent static DHCP with SFP+/DAC

Is the client Id the same in the lease? This is really the unique identifier and if you don't have one on the lease, it falls back to the Mac address.

I would just check to see if the device connected is trying to send a different client Id or let's say one with all zeros.
by biomesh
Thu Sep 16, 2021 10:38 pm
Forum: Wireless Networking
Topic: DIfferent access list for each Cap
Replies: 4
Views: 160

Re: DIfferent access list for each Cap

It has nothing to do with roaming. It just has to do with the creation of the capsman interfaces. If you are going to use access rules for specific AP interfaces, then you will want "create enabled" vs "create dynamic enabled". I had capsman set with dynamic interfaces until I ne...
by biomesh
Thu Sep 16, 2021 2:24 pm
Forum: Wireless Networking
Topic: DIfferent access list for each Cap
Replies: 4
Views: 160

Re: DIfferent access list for each Cap

Yes, just create access rules using the interface option. The first rule would be for the external AP(accept). If you have two radios then you would have two rules. Then underneath those you would have the rules for the internal aps, but for every accept rule, also add the signal range you are looki...
by biomesh
Thu Sep 16, 2021 3:20 am
Forum: General
Topic: CRS112 sw bridge to hw bridge
Replies: 3
Views: 217

Re: CRS112 sw bridge to hw bridge

The best examples are in the wiki:

https://wiki.mikrotik.com/wiki/Manual:C ... s_examples

(tdw beat me by a few minutes)
by biomesh
Wed Sep 15, 2021 1:22 pm
Forum: RouterOS v7 BETA
Topic: PLEASE MikroTik made NetInstall version for Docker....
Replies: 40
Views: 1859

Re: PLEASE MikroTik made NetInstall version for Docker....

I don't have a Mac os device, but normally with netinstall, the client address (-a) is on the same network as the server. When running on routeros docker, netinstall will fail to run if this is not correct.

So in your case it could be "-a 192.168.65.100"
by biomesh
Wed Sep 15, 2021 1:21 am
Forum: RouterOS v7 BETA
Topic: v7.1rc3 adds Docker (TM) compatible container support
Replies: 152
Views: 15350

Re: v7.1rc3 adds Docker (TM) compatible container support

about time someone tried to use nextdns. is it working well? sending client device names etc?
It works just like the nextdns client that I run on some raspberrypis - no problems at all.
by biomesh
Tue Sep 14, 2021 6:20 pm
Forum: General
Topic: CRS317 Switch VLAN
Replies: 20
Views: 955

Re: CRS317 Switch VLAN

@Zacharias: 1) If you change the PVID, on switch2, you are effectively changing the vlan it is on and so it cannot communicate with it anymore, especially with vlan-filtering and ingress-filtering enabled 2) The traffic coming from the bridge (internal) what is affected by this setting - if you are ...
by biomesh
Tue Sep 14, 2021 3:45 pm
Forum: RouterOS v7 BETA
Topic: PLEASE MikroTik made NetInstall version for Docker....
Replies: 40
Views: 1859

Re: PLEASE MikroTik made NetInstall version for Docker....

Well, unfortunately it does not work that way. I assumed that and spent a LOT of time on it. I could only get a bridged mode of 172.17.0.0/16 to work and not a bridged mode to my local network. Perhaps there is a way, but there is almost no docs on the feature as it is new. From what I have seen, on...
by biomesh
Tue Sep 14, 2021 2:55 pm
Forum: RouterOS v7 BETA
Topic: PLEASE MikroTik made NetInstall version for Docker....
Replies: 40
Views: 1859

Re: PLEASE MikroTik made NetInstall version for Docker....

Getting netinstall to work in a container is not difficult when using host networking. When using bridge mode - which is the only mode I have seen on the examples for ROS it won't work. The container will reside in a 172.17.0.0/16 network and when you run netinstall you have to provide an ip address...
by biomesh
Mon Sep 13, 2021 11:15 pm
Forum: RouterOS v7 BETA
Topic: v7.1rc3 adds Docker (TM) compatible container support
Replies: 152
Views: 15350

Re: v7.1rc3 adds Docker (TM) compatible container support

Here is my config for the nextdns client for use on CHR. The nextdns client does have builds for ARM, so for those interested it would probably work there as well. Dockerfile: FROM debian:bullseye-slim RUN apt-get update && apt-get install -y apt-transport-https curl && \ curl -o /us...
by biomesh
Mon Sep 13, 2021 1:27 am
Forum: General
Topic: CRS317 Switch VLAN
Replies: 20
Views: 955

Re: CRS317 Switch VLAN

For management, you can either set the pvid or create a vlan interface and assign it to the bridge. The DHCP client or IP address would be set on the bridge when using pvid but would be handled via the vlan interface otherwise.
by biomesh
Sat Sep 11, 2021 2:46 pm
Forum: General
Topic: CRS317 Switch VLAN
Replies: 20
Views: 955

Re: CRS317 Switch VLAN

You only have vlan 201 defined on one port. It will not get switched to any other port. You would have to tag another port or set the pvid on another port to 201. If you are trying to route between vlans, this is best done on your router, not the switch. To route with this switch you would need ros7...
by biomesh
Thu Sep 09, 2021 5:12 pm
Forum: RouterOS v7 BETA
Topic: v7.1rc3 [development] is released!
Replies: 145
Views: 16565

Re: v7.1rc3 [development] is released!

I was trying to add a bridge to my CHR (running on vmware) and once I set auto-mac=no (with a unique MAC address) then ARP would stop working. Setting auto-mac=yes instantly reverted back to normal operation. A reboot did not resolve the issue. I have a hap ac2 running the same version with auto-mac...
by biomesh
Thu Sep 09, 2021 1:17 pm
Forum: RouterBOARD hardware
Topic: The big CCR2004 reboot thread (was 2004 hardware issues?)
Replies: 267
Views: 33539

Re: The big CCR2004 reboot thread (was 2004 hardware issues?)

The 2004-16G-2S+ uses different hardware (the same switch chip in the 5009) which is not in the original 2004. Until more people buy the 16G-2S+ version it will be hard to say what the real issue is with these devices.
by biomesh
Thu Sep 09, 2021 1:06 am
Forum: RouterBOARD hardware
Topic: CRS112 switch low throughput [SOLVED]
Replies: 6
Views: 573

Re: CRS112 switch low throughput [SOLVED]

1) Don't run a speedtest / bandwidth test directly on the devices themselves. These are very slow CPU - 400Mhz. Instead run iperf tests on two devices connected to the switches/routers. 2) If you just connect via winbox, and don't have any interface window open, CPU utilization is under 10%. if you ...
by biomesh
Wed Sep 08, 2021 6:24 am
Forum: RouterBOARD hardware
Topic: Netpower 16P max PoE out contradictory
Replies: 6
Views: 1282

Re: Netpower 16P max PoE out contradictory

From what I see on mine, it draws power from the highest voltage source, not the one with the least load.
by biomesh
Tue Sep 07, 2021 2:06 pm
Forum: General
Topic: mynetname.net is suspended
Replies: 79
Views: 20489

Re: mynetname.net is suspended

Is there a way for these names that are reported as having malware, etc to be disabled via a blacklist? This way if the person running one of these devices emails support they can have their devices validated before it is re enabled. This would prevent the whole domain from being blocked. (Note: I u...
by biomesh
Sun Aug 29, 2021 5:00 pm
Forum: Beginner Basics
Topic: Can't get a simple bridge vlan to work
Replies: 9
Views: 667

Re: Can't get a simple bridge vlan to work

Compare your IP address commands. Your vlan60 is missing the subnet mask.
by biomesh
Sat Aug 28, 2021 3:16 pm
Forum: Beginner Basics
Topic: Need help with IP firewall filter schedule
Replies: 3
Views: 432

Re: Need help with IP firewall filter schedule

The rule is flagged as inactive and invalid since the time range is not in the current time. It will become active during that specific time range. If you see this during the actual time you want it to be active, you might want to change your time range. I would start by just changing 0s to 1s to se...
by biomesh
Sat Aug 28, 2021 12:05 am
Forum: General
Topic: CRS317 running hot [SOLVED]
Replies: 7
Views: 618

Re: CRS317 running hot [SOLVED]

My CRS317 with ambient temp at 25C and running 6.48.4 (with updated firmware) has a cpu temp of 47C and overall temp of 51C. This includes one 10GbaseT copper adapter and 9 SFP+ DACs. The CPU is between 2-3% utilization. My fans never run (except on reboot of course) I have a feeling that something ...
by biomesh
Tue Aug 24, 2021 11:41 pm
Forum: Wireless Networking
Topic: Wifi sucks in an outside garage
Replies: 16
Views: 1426

Re: Wifi sucks in an outside garage

You might be able, depending on coverage area and distance to the garage, use a wireless wire kit to connect the house and garage and use whatever AP you want in the garage for 2.4/5 g access.
by biomesh
Tue Aug 24, 2021 11:38 pm
Forum: Wireless Networking
Topic: Wifi sucks in an outside garage
Replies: 16
Views: 1426

Re: Wifi sucks in an outside garage

msatter's comment was related to your topic for this post
by biomesh
Tue Aug 24, 2021 4:40 pm
Forum: Wireless Networking
Topic: Wifi sucks in an outside garage
Replies: 16
Views: 1426

Re: Wifi sucks in an outside garage

You need a level 4 license for the device to act as an AP.

https://wiki.mikrotik.com/wiki/Manual:L ... nse_Levels
by biomesh
Tue Aug 24, 2021 1:27 pm
Forum: Announcements
Topic: v6.48.4 [stable] is released!
Replies: 70
Views: 14215

Re: v6.48.4 [stable] is released!

I have the Ccr1009-8g-1s-1s+PC and those shipped with 24V power bricks. With .4, the voltage is showing ~40V instead of ~24V.
by biomesh
Mon Aug 23, 2021 10:33 pm
Forum: Announcements
Topic: v6.48.4 [stable] is released!
Replies: 70
Views: 14215

Re: v6.48.4 [stable] is released!

I have a CCR1009 with the incorrect voltage reported, like post #5. Seems to only affect tile based devices. All of my arm or mipsbe devices with voltage monitoring are correct.
by biomesh
Mon Aug 23, 2021 5:15 am
Forum: RouterOS v7 BETA
Topic: Roku Ultra disables switch chip on RB4011
Replies: 1
Views: 566

Re: Roku Ultra disables switch chip on RB4011

On the bridge port for that device, set edge=yes (under stp) if using winbox.

I had issues with another switch and the Roku with (r)stp.

This was only with newer rokus btw.
by biomesh
Sun Aug 22, 2021 9:46 pm
Forum: Beginner Basics
Topic: IPv6 DNS
Replies: 9
Views: 693

Re: IPv6 DNS

Yes, only the ipv6 address will be sent via rdnss.
by biomesh
Sun Aug 22, 2021 4:29 am
Forum: Beginner Basics
Topic: IPv6 DNS
Replies: 9
Views: 693

Re: IPv6 DNS

Ok, you can skip that step then. Just run through the steps in the first sentence. You should see the rdnss value in radvdump.
by biomesh
Sun Aug 22, 2021 2:28 am
Forum: Beginner Basics
Topic: IPv6 DNS
Replies: 9
Views: 693

Re: IPv6 DNS

Select the advertise DNS option on your nd interface entry and add your local ipv6 address to your Dns server config. If you don't want to use your Dns server from your ISP, set "use peer DNS" to no on your ipv6 DHCP client entry.
by biomesh
Sat Aug 21, 2021 2:45 pm
Forum: Beginner Basics
Topic: IPv6 DNS
Replies: 9
Views: 693

Re: IPv6 DNS

You can definitely set the nd rdnss values in Ros 6.x with the DNS server option(not using DHCP options). I don't run v7 and I verified my config. Perhaps v7 adds additional functionality for dhcpv6.
by biomesh
Sat Aug 21, 2021 5:26 am
Forum: Beginner Basics
Topic: IPv6 DNS
Replies: 9
Views: 693

Re: IPv6 DNS

You need to make sure you have an ipv6 address assigned to an interface and have the DNS server set to allow remote requests. If you want rdnss values to be sent in the neighbor advertisments, you need to add the ipv6 address to the DNS server list of DNS servers (settings) and set the ipv6 nd inter...
by biomesh
Thu Aug 19, 2021 2:39 pm
Forum: Beginner Basics
Topic: Help configuring admin vlan on cAP ac [SOLVED]
Replies: 13
Views: 1079

Re: Help configuring admin vlan on cAP ac [SOLVED]

If you want two DHCP clients on the same device, make sure both are not set to add the default route. Also, if you are tagging traffic outbound for management interface, this is normally done with vlan interfaces assigned to the bridge that includes ether1 (your uplink). The DHCP clients would then ...
by biomesh
Wed Aug 18, 2021 3:28 pm
Forum: Wireless Networking
Topic: wifi network interruptions since last update round
Replies: 4
Views: 560

Re: wifi network interruptions since last update round

I have not had any of those issues with any specific version listed. If you have rstp/stp enabled on a bridge where your wireless interface is, that could be the issue due to the connection changes.
by biomesh
Wed Aug 18, 2021 2:37 pm
Forum: Wireless Networking
Topic: wifi network interruptions since last update round
Replies: 4
Views: 560

Re: wifi network interruptions since last update round

I would not go with beta software unless there is an actual feature or fix you are looking for. As for the actual problem, it sounds like rstp/stp is enabled on bridges on some(or all) of your devices. If disabling that doesn't work, then post the exports from your devices, so we can look for issues...
by biomesh
Wed Aug 18, 2021 2:24 pm
Forum: Beginner Basics
Topic: Router disappears after running script for system reset-configuration
Replies: 10
Views: 739

Re: Router disappears after running script for system reset-configuration

The process works, you just have at least one issue in your script. I see you have your lan IP address assigned to ether1, not the bridge interface. It looks like all interfaces are assigned to the bridge, which won't work if you actually want this to work correctly (as a router). If you were just c...
by biomesh
Sat Aug 14, 2021 3:25 pm
Forum: General
Topic: Pass ISP DHCP to PFsense 2 Mikrotik switches away ?
Replies: 3
Views: 1153

Re: Pass ISP DHCP to PFsense 2 Mikrotik switches away ?

Set the pvid of the port connected to the internet device(modem) to the vlan Id you want to send to your router. Ideally you want to have this port be untagged traffic only on the modem connected port(you don't want other vlans being sent out this port). This vlan tagged traffic should then be set o...
by biomesh
Tue Aug 10, 2021 9:13 pm
Forum: General
Topic: Management access w/out VLAN filtering
Replies: 2
Views: 350

Re: Management access w/out VLAN filtering

This will work. The bridge is only needed if multiple ports need access to the vlan. On this config, only ether5 is part of vlan 99.
by biomesh
Tue Aug 10, 2021 8:40 pm
Forum: Beginner Basics
Topic: Routing Between Two ports CRS112-8G-4S-IN
Replies: 3
Views: 566

Re: Routing Between Two ports CRS112-8G-4S-IN

This is really a switch and won't route very well due to the very weak CPU (400MHz mips). I would suggest following the wiki examples for VLANs and sending those two vlans to your router and let it handle the routing for you. https://wiki.mikrotik.com/wiki/Manual:CRS1xx/2xx_series_switches_examples ...
by biomesh
Mon Aug 09, 2021 10:01 pm
Forum: General
Topic: any trick to make cap client keep settings while capsman is down?
Replies: 21
Views: 1123

Re: any trick to make cap client keep settings while capsman is down?

I don't think this is how capsman was designed to operate. You can have a cloud controller, but if you don't want to lose your APs, then just add a local capsman server that is enabled/disabled with netwatch. If it can't ping the cloud capsman server, it would enable the local capsman server and if ...
by biomesh
Sat Aug 07, 2021 3:07 pm
Forum: General
Topic: Looking for recommendation [SOLVED]
Replies: 9
Views: 715

Re: Looking for recommendation [SOLVED]

Hex Poe does not have wifi. A good choice would be a hap ac2.
by biomesh
Sat Aug 07, 2021 2:34 pm
Forum: General
Topic: How can I deep debug a 100% CPU load [SOLVED]
Replies: 4
Views: 531

Re: How can I deep debug a 100% CPU load [SOLVED]

/tool profile
Will be your best help with this.

By chance do you have capsman forwarding enabled? This is a low end CPU and it would be no surprise to see such an issue there.
by biomesh
Wed Aug 04, 2021 9:25 pm
Forum: Wireless Networking
Topic: Devices unable to connect - client facing [SOLVED]
Replies: 21
Views: 1693

Re: Devices unable to connect - client facing [SOLVED]

You don't even need to have a rates entry - it will use the defaults if none are defined. /caps-man channel add band=2ghz-onlyn control-channel-width=20mhz extension-channel=disabled \ frequency=2412 name=2ch1 tx-power=10 add band=2ghz-onlyn control-channel-width=20mhz extension-channel=disabled \ f...
by biomesh
Wed Aug 04, 2021 4:06 am
Forum: Wireless Networking
Topic: Devices unable to connect - client facing [SOLVED]
Replies: 21
Views: 1693

Re: Devices unable to connect - client facing [SOLVED]

I use 40mhz channels for 5Ghz and 20mhz channels for 2.4Ghz. I have cap ac devices. Power is 10 for 2.4 and 22 for 5. I don't have 2.4 enabled on all aps. Hardware supported modes for 2.4 is gn and for 5 ac. If you want an export I can get this tomorrow. I have never customized the rates untill I di...
by biomesh
Tue Aug 03, 2021 10:58 pm
Forum: Wireless Networking
Topic: Devices unable to connect - client facing [SOLVED]
Replies: 21
Views: 1693

Re: Devices unable to connect - client facing [SOLVED]

Just FYI, I used your most current rate settings and I had a few devices that would not connect (via capsman)- in my case these were amazon echo devices(different models). Going back to the built in rate settings allowed the devices to connect.

Just providing some feedback.
by biomesh
Tue Aug 03, 2021 1:29 pm
Forum: General
Topic: DHCP Offering Lease Without Success
Replies: 13
Views: 828

Re: DHCP Offering Lease Without Success

I was referring to the unifi config wrt mesh
by biomesh
Tue Aug 03, 2021 5:06 am
Forum: Wireless Networking
Topic: Devices unable to connect - client facing [SOLVED]
Replies: 21
Views: 1693

Re: Devices unable to connect - client facing [SOLVED]

Could it be your basic rates? Perhaps they can't connect at the basic rates for association. Do you have logs perhaps?

If you don't set rates at all (and use the built in rates) does that make a difference?
by biomesh
Mon Aug 02, 2021 9:46 pm
Forum: General
Topic: Bridge vlan solution without adding interface vlan
Replies: 30
Views: 1491

Re: Bridge vlan solution without adding interface vlan

No, that would "only" create a huge broadcast domain, not a collision domain.
I think I was having a flashback to the days of coax, BNC and terminators. :D
by biomesh
Mon Aug 02, 2021 8:58 pm
Forum: General
Topic: Bridge vlan solution without adding interface vlan
Replies: 30
Views: 1491

Re: Bridge vlan solution without adding interface vlan

I was referring from the OP where he wanted to create a 10.0.0.0/16 network with these vlans- onto one bridge - thus creating a huge collision domain.
by biomesh
Mon Aug 02, 2021 7:48 pm
Forum: General
Topic: Bridge vlan solution without adding interface vlan
Replies: 30
Views: 1491

Re: Bridge vlan solution without adding interface vlan

Do you think simply bridging your network would work anyway? 1500 networks into one collision domain?
by biomesh
Mon Aug 02, 2021 7:02 pm
Forum: General
Topic: Bridge vlan solution without adding interface vlan
Replies: 30
Views: 1491

Re: Bridge vlan solution without adding interface vlan

What Mikrotik hardware are you using in that 48 VLANs is putting extra load on the device?

The reasoning behind not using VLANs and routing seems odd.
by biomesh
Mon Aug 02, 2021 2:48 pm
Forum: General
Topic: DHCP Offering Lease Without Success
Replies: 13
Views: 828

Re: DHCP Offering Lease Without Success

Do you by chance have mesh enabled with unifi? It has been a while since I replaced my unifi aps but they would always randomly have arp issues. Back then(probably a year and a half ago) no progress was made on the issue. I swapped them out (in this case with cap ac devices - but most any other woul...
by biomesh
Mon Aug 02, 2021 2:32 pm
Forum: Wireless Networking
Topic: CAPsMAN reconnections
Replies: 15
Views: 2046

Re: CAPsMAN reconnections

Looking at this log, the device is choosing to move between different access points. These are not errors, but just log entries showing the client roam. Roaming decisions are make by the client. If the client was being dropped for a poor signal, the disconnect message would be different. At least fo...
by biomesh
Sun Aug 01, 2021 5:10 pm
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

A dst-nat to the same port is not really of any use. For dst-nat rules these are for non natted networks to natted networks - like your wan interface. Generally you would not want to use the from/to ports but use to/from address. This would mean that if you want asterisk and 3cx available from your ...
by biomesh
Sun Aug 01, 2021 3:34 pm
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

If this is going to replace asterisk, then you should set in-interface or out-interface on your nat rules so that the router does not nat the traffic between subnets and only going out of your wan interface.
by biomesh
Sun Aug 01, 2021 3:24 pm
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

Is 3cx always going to asterisk for the primary connection? If so there is no need for any firewall rule for this server. The router will just route packets normally between subnets.
by biomesh
Sun Aug 01, 2021 2:35 am
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

My guess is that 3cx has a similar setting.
by biomesh
Sat Jul 31, 2021 8:20 pm
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

Yes
by biomesh
Sat Jul 31, 2021 7:46 pm
Forum: General
Topic: SIP ALG issue not resolving. [SOLVED]
Replies: 18
Views: 675

Re: SIP ALG issue not resolving. [SOLVED]

With asterisk/Freepbx you need to define "local" networks that do not need nat. If this is not set then it will try to nat the traffic and you will get one way audio.
by biomesh
Sat Jul 31, 2021 6:40 am
Forum: Wireless Networking
Topic: Slow speed with Cap AC
Replies: 35
Views: 4259

Re: Slow speed with Cap AC

5700MHz is the max freq in many regions (and even 5700 is already special)! If your tablet is set to such a region/country it will not scan for other channels than allowed for the region. I'm sure it's a chipset or firmware issue. I have a few Samsung devices, an older 'higher end' tablet, a curren...
by biomesh
Thu Jul 29, 2021 3:09 pm
Forum: RouterBOARD hardware
Topic: cAP ac (RBcAPGi-5acD2nD) POE in question
Replies: 4
Views: 1065

Re: cAP ac (RBcAPGi-5acD2nD) POE in question

My cap ac devices draw under 5W most of the time. I have used different(brands and types of) passive and at/af switches and injectors with no issues.

I suggest trying a different switch(maybe even a different brand).
by biomesh
Tue Jul 27, 2021 6:50 pm
Forum: Beginner Basics
Topic: IPv6 for home
Replies: 15
Views: 1313

Re: IPv6 for home

mkx did say "proper DHCPv6 server"... The mikrotik DHCPv6 server is not fully featured, so I would not consider it proper either.
by biomesh
Tue Jul 27, 2021 4:31 pm
Forum: Wireless Networking
Topic: CAPsMAN Help
Replies: 14
Views: 1594

Re: CAPsMAN Help

If your cap config has not changed from before that is why the filtering is not working on port 8. The management traffic is set to vlan 0 by default. You can either change the cap config to use a VLAN interface or configure port 8 to have a /interface ethernet switch ingress-vlan-translation entry ...
by biomesh
Tue Jul 27, 2021 4:10 pm
Forum: Beginner Basics
Topic: IPv6 for home
Replies: 15
Views: 1313

Re: IPv6 for home

Here is a simple ipv6 config(very simplified from my config). This works for comcast, and requests a /60 prefix (the max for residential comcast service). If there are /60 prefixes available, it should work (I have seen times where there are none available). The following uses WAN as your external i...
by biomesh
Tue Jul 27, 2021 2:57 pm
Forum: Wireless Networking
Topic: Slow speed with Cap AC
Replies: 35
Views: 4259

Re: Slow speed with Cap AC

I have a Samsung tablet that refuses to operate normally on any configuration with channel 165/5825. No other brand of device has the issue.

When in doubt check other devices and alter the config accordingly.
by biomesh
Tue Jul 27, 2021 4:09 am
Forum: Beginner Basics
Topic: VLANS & Management VLAN
Replies: 27
Views: 2272

Re: VLANS & Management VLAN

On my ccr1009 I found zero difference performance wise when (using it as a router on a stick) between assigning vlans to the interface vs a bridge.

In my case everything is coming in on one interface, so vlan filtering really isn't a concept here as the router would handle it all anyway.
by biomesh
Sun Jul 25, 2021 3:55 am
Forum: General
Topic: IPv4 only network DNS issues with mobile devices [SOLVED]
Replies: 11
Views: 698

Re: IPv4 only network DNS issues with mobile devices [SOLVED]

Your rules only cover udp, so don't forget the tcp rules for DNS (not as common as udp). I don't know if any failover scenario other than using bgp and creating an anycast address to be used by DNS. You would use bird on the pihole devices for bgp. In the dst-nat rule you would use the anycast addre...
by biomesh
Sun Jul 25, 2021 1:09 am
Forum: General
Topic: IPv4 only network DNS issues with mobile devices [SOLVED]
Replies: 11
Views: 698

Re: IPv4 only network DNS issues with mobile devices [SOLVED]

I don't know why the phones would do this(have not seen this on phones at least). You are best off using a dst nat rule that redirects port 53 traffic to your pi hole servers. I use a rule like this to point to my local resolvers that then use doh.
by biomesh
Sat Jul 24, 2021 9:24 pm
Forum: General
Topic: IPv4 only network DNS issues with mobile devices [SOLVED]
Replies: 11
Views: 698

Re: IPv4 only network DNS issues with mobile devices [SOLVED]

Devices don't have to use DHCP assigned DNS - Chromecast devices for instance only use 8.8.8.8. You mentioned slaac assigned by the mobile connection. I was following your assumption and trying to verify the the source. If you want better answers with out a lot of guessing, post your export (with hi...
by biomesh
Sat Jul 24, 2021 8:46 pm
Forum: General
Topic: IPv4 only network DNS issues with mobile devices [SOLVED]
Replies: 11
Views: 698

Re: IPv4 only network DNS issues with mobile devices [SOLVED]

To prove your theory, disable mobile data on the phone to see what happens.

You should really post your export so everyone can see the whole config.
by biomesh
Thu Jul 22, 2021 3:25 pm
Forum: Beginner Basics
Topic: Can't get over 1G on CRS309 10G ports
Replies: 5
Views: 522

Re: Can't get over 1G on CRS309 10G ports

It can switch at wire speed, not route. You don't want anything hitting the CPU if you can avoid it.

How are you running your tests? Iperf with multiple threads? Have you changed the window size to match between all devices?
by biomesh
Wed Jul 21, 2021 3:00 pm
Forum: Wireless Networking
Topic: CAPsMAN reconnections
Replies: 15
Views: 2046

Re: CAPsMAN reconnections

This could be due to the reject rule at the top of the list. These are processed top down and generally you would want an overall disconnect rule at the bottom. If you create allow access rules with the appropriate signal range (-75..120) and with an allow out of range time of 15-20 seconds, this sh...
by biomesh
Fri Jul 16, 2021 4:31 pm
Forum: General
Topic: Many dhcp via one port on
Replies: 5
Views: 697

Re: Many dhcp via one port on

Take a look at https://forum.mikrotik.com/viewtopic.php?t=143620 for vlan configurations. In particular look at the router.rsc for an example configuration. It contains everything you are looking for. The one port connected to the ccr1016 would be a trunk port for all vlans. You will create a vlan i...
by biomesh
Fri Jul 16, 2021 1:00 am
Forum: Beginner Basics
Topic: need to assign vlan to a bridge
Replies: 2
Views: 442

Re: need to assign vlan to a bridge

You should migrate from a dual bridge config to a single bridge config and configure the correct VLANs on the correct ports along with PVID, taggged and untagged status per port. Once done, you can enable vlan filtering on the bridge. The link from the switch would just be for tagged packets and wou...
by biomesh
Wed Jul 14, 2021 2:32 am
Forum: Wireless Networking
Topic: CAPsMAN Help
Replies: 14
Views: 1594

Re: CAPsMAN Help

1) The ingress vlan translation is really for those ports that have untagged traffic. If your ap has tagged traffic for the capsman user traffic and for management, then it would not be required for that port. You would only need to say the egress vlan tags and the vlans on the switch. For most use ...
by biomesh
Mon Jul 12, 2021 12:21 am
Forum: General
Topic: CCR2004-1G-12S+2XS SFP+ Upload issues
Replies: 16
Views: 1481

Re: CCR2004-1G-12S+2XS SFP+ Upload issues

You might want to try rate limiting on your modem port (probably egress) to close of what your internet speed is. When you have a 10 gigabit link but the actual connection is much slower you will get tons of retransmits and the speed will be much slower. By rate limiting, you can normally get the sp...
by biomesh
Mon Jul 12, 2021 12:13 am
Forum: Wireless Networking
Topic: CAPsMAN Help
Replies: 14
Views: 1594

Re: CAPsMAN Help

You are using bridge vlan configuration instead of switch vlan configuration. Take a look at the link - you should really start your vlan config over from scratch at it is totally wrong for this device.
by biomesh
Sun Jul 11, 2021 3:21 am
Forum: Wireless Networking
Topic: CAPsMAN Help
Replies: 14
Views: 1594

Re: CAPsMAN Help

Your switch config is wrong for your type of device. This looks like a crs3xx config.

Take a look at the following for your switch and get it configured correctly:

https://wiki.mikrotik.com/wiki/Manual:C ... s_examples
by biomesh
Fri Jul 09, 2021 2:18 pm
Forum: General
Topic: Using one MT box to sign TLS certs for another
Replies: 11
Views: 754

Re: Using one MT box to sign TLS certs for another

Certs when exported without a password are almost always just the pubic key - this is true for pretty much any application available. While you can export clear keys, it is not recommended. Choose pkcs12 as the export format and set a password/passphrase when exporting. From what I see, if you choos...
by biomesh
Tue Jul 06, 2021 2:00 pm
Forum: SwOS
Topic: Mikrotik SwOS for CRS112-8P-4S-IN
Replies: 12
Views: 2738

Re: Mikrotik SwOS for CRS112-8P-4S-IN

The page for crs112-8g is correct. Looks like the page for the crs112-8p needs to be fixed.
by biomesh
Mon Jul 05, 2021 3:08 am
Forum: Wireless Networking
Topic: CAPsMAN Help
Replies: 14
Views: 1594

Re: CAPsMAN Help

If you want a cap to find the capsman server it needs to be on the same l2 network (i.e subnet/vlan). You can configure a cap with the IP address of the capsman server to bypass this requirement. If setting the IP address on the cap doesn't work, then it could be many things. Like mkx said, post con...
by biomesh
Fri Jul 02, 2021 5:21 am
Forum: General
Topic: Need help with CRS112 Switch configuring IP addresses on VLANs
Replies: 3
Views: 406

Re: Need help with CRS112 Switch configuring IP addresses on VLANs

Add switch1-cpu to the /interface ethernet switch egress-vlan-tag command for vlan10.

These examples are in the page you originally posted about, but are at the top of the page.

When originally setting up my switch, I forgot the above option.
by biomesh
Thu Jul 01, 2021 3:51 am
Forum: General
Topic: Need help with CRS112 Switch configuring IP addresses on VLANs
Replies: 3
Views: 406

Re: Need help with CRS112 Switch configuring IP addresses on VLANs

Use vlan interfaces assigned to the bridge. Assign the IP address to the vlan interfaces and set your routes.

You also need to add switch1-cpu as a port on the vlans for mgmt access under

/interface ethernet switch vlan
by biomesh
Wed Jun 30, 2021 4:05 pm
Forum: Beginner Basics
Topic: How to configure LAN IP Pool
Replies: 5
Views: 567

Re: How to configure LAN IP Pool

My guess is that there is a block of static IPs. I would guess that you would need to use dst-nat after adding the IP address to your router.

https://help.mikrotik.com/docs/display/ ... inationNAT
by biomesh
Sat Jun 26, 2021 2:17 am
Forum: General
Topic: PoE switch oddities
Replies: 9
Views: 604

Re: PoE switch oddities

The specs only list max amps out per port. Perhaps that same limit is for Poe in port?

The cap has different hardware and might be able to sense the correct amps on the Poe out vs the rb260.
by biomesh
Fri Jun 25, 2021 2:46 pm
Forum: General
Topic: crs309 hardware offload
Replies: 1
Views: 323

Re: crs309 hardware offload

Yes, only one bridge is hardware offloaded per the docs

https://help.mikrotik.com/docs/display/ ... s+switches

This is a switch and you should really be using vlans, not extra bridges.
by biomesh
Fri Jun 25, 2021 1:56 am
Forum: RouterBOARD hardware
Topic: No Link with Copper SFP (CRS112-8P-4S)
Replies: 9
Views: 1610

Re: No Link with Copper SFP (CRS112-8P-4S)

I have some 10GBase-T SFP+ and SFP+ DACs from FLYPROFIBER and they work great. I don't have a CRS112 and have not tried the SFP(1G) module. I have used them on CRS317, CRS326, CCR1009, and CRS309 devices.
by biomesh
Sun Jun 20, 2021 4:48 pm
Forum: Wireless Networking
Topic: CAPsMAN, 5-GHz, laptop gets disconnected
Replies: 2
Views: 631

Re: CAPsMAN, 5-GHz, laptop gets disconnected

You are probably pegging the CPU on the hap ac since you are using capsman forwarding. Try local forwarding instead or get a faster device to be the capsman server.
by biomesh
Sat Jun 19, 2021 11:50 pm
Forum: Wireless Networking
Topic: Added SSID in CAPsMAN - doesn't show up
Replies: 2
Views: 641

Re: Added SSID in CAPsMAN - doesn't show up

If you are adding it to existing caps, you will need to set it (the new SSID config) as a slave config on the provisioning rule. You might also want to manually provision the cap/radio again as well.
by biomesh
Thu Jun 17, 2021 11:53 pm
Forum: Wireless Networking
Topic: CAPsMAN on layer2 + vlans
Replies: 15
Views: 1236

Re: CAPsMAN on layer2 + vlans

by biomesh
Thu Jun 17, 2021 11:08 pm
Forum: Wireless Networking
Topic: CAPsMAN on layer2 + vlans
Replies: 15
Views: 1236

Re: CAPsMAN on layer2 + vlans

Set the capsman discovery interface (on both the cap and capsman config) to the VLAN interface where you want the caps to capsman communication to happen.

If this was not on the same device, then the cap config might need to be configured differently, depending on your config (cap and switch)
by biomesh
Sun Jun 13, 2021 2:49 pm
Forum: General
Topic: Issue with DST-NAT (RouterOS 6.47.10)
Replies: 16
Views: 896

Re: Issue with DST-NAT (RouterOS 6.47.10)

DNS filtering is probably your best bet. Pihole or nextdns (cloud based) will allow you to block certain websites. There are ways around it though if you have someone set a doh provider manually on their device. If you don't have doh on any client then you can use dst-nat to redirect any non approve...
by biomesh
Sat Jun 12, 2021 3:52 am
Forum: Wireless Networking
Topic: CAPSman Controller device
Replies: 7
Views: 1209

Re: CAPSman Controller device

Thank you for this tip! So the list works in order of operations.. This would help with timeout and any possible CAP disconnects. Could primary CAPsMan be Router, and secondary be another on-prem device or even cloud based CHR over EoIP. If they are not on the same layer 2 network/vlan then you als...
by biomesh
Fri Jun 11, 2021 2:24 am
Forum: Wireless Networking
Topic: CAPSman Controller device
Replies: 7
Views: 1209

Re: CAPSman Controller device

You can have multiple capsman configured throughout your environment. Just set the caps-man-names option on each cap. It is an ordered list of what capsman server(s) to connect to.
by biomesh
Thu Jun 03, 2021 9:35 pm
Forum: SwOS
Topic: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.
Replies: 10
Views: 1821

Re: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.

The tested ambient temp is where the router resides(room), not the temp it reports. While it may seem high, the mikrotik staff don't seem concerned at all.
by biomesh
Thu Jun 03, 2021 2:36 pm
Forum: SwOS
Topic: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.
Replies: 10
Views: 1821

Re: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.

The temp will be the same(or close to it)on both swos or ros. I have a couple of these devices.
by biomesh
Thu Jun 03, 2021 2:31 pm
Forum: SwOS
Topic: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.
Replies: 10
Views: 1821

Re: CRS326-24G-2S+RM > SWOS reporting above 60 C temp.

This is the normal operating temp. If you search for "crs326 temperature" on the forums you will see some older threads about this. If it concerns you enough, add a fan.(also in the threads)
by biomesh
Wed Jun 02, 2021 2:02 pm
Forum: General
Topic: Bridge not getting IP address.
Replies: 7
Views: 549

Re: Bridge not getting IP address.

Please post your full config from the device.
by biomesh
Sun May 30, 2021 3:08 pm
Forum: Announcements
Topic: v6.48.3 [stable] is released!
Replies: 120
Views: 32901

Re: v6.48.3 [stable] is released!

Not so much a stability issue per se, but I have had issues with CAPsMAN and hAPac2's maintaining stable connections with drop outs happening every ~10 to 15mins, this has been a problem for the last few releases. Anyone else seen similar issues? I have not - I would suggest creating a new thread a...
by biomesh
Sat May 29, 2021 8:30 pm
Forum: RouterBOARD hardware
Topic: Has Mikrotik finally solved port flapping issue in the newer hardware?
Replies: 19
Views: 6864

Re: Has Mikrotik finally solved port flapping issue in the newer hardware?

Try disabling rstp/stp on those ports/bridge(or set it to an edge port). Some devices just don't work well with rstp/stp and then switches cannot identify the port properly as edge/forwarding/disabled. I recently got a new Roku and plugged it in the exact same switch port (TP-Link managed) and it wo...
by biomesh
Thu May 27, 2021 3:07 pm
Forum: General
Topic: CSS106-1G-4P-1S LAG Support [SOLVED]
Replies: 2
Views: 392

Re: CSS106-1G-4P-1S LAG Support [SOLVED]

Nope
by biomesh
Thu May 27, 2021 3:00 pm
Forum: Announcements
Topic: v6.48.3 [stable] is released!
Replies: 120
Views: 32901

Re: v6.48.3 [stable] is released!

My 6 cap ac devices updated without issue. Most are capsman managed. There is a mix of Poe injectors and Poe powered by rb260gsp.
by biomesh
Tue May 25, 2021 3:18 am
Forum: Beginner Basics
Topic: RB960PGS + S+RJ10 + Comcast DHCP
Replies: 2
Views: 399

Re: RB960PGS + S+RJ10 + Comcast DHCP

That device has an sfp port, not sfp+, so you will never get more than 1Gbps on that device. You should really look into at least a 4011 for the Comcast gigabit service.

As for not getting an address, is the DHCP client assigned to the sfp port?
by biomesh
Thu Apr 29, 2021 2:40 pm
Forum: Announcements
Topic: SwOS version 2.13 released!
Replies: 48
Views: 25837

Re: SwOS version 2.13 released!

My upgrade on a css106 from 2.11 went fine. It fixed my issues with rstp on 2.12.

I upgraded over 12 hours ago and have seen no issues.
by biomesh
Sun Apr 25, 2021 3:10 pm
Forum: Beginner Basics
Topic: Difference between CAPsMAN and Mesh [SOLVED]
Replies: 1
Views: 812

Re: Difference between CAPsMAN and Mesh [SOLVED]

Capsman is for centralized ap management. Each ap still needs a wired connection to the network. Mesh is a term which generally means that the APs connect to one another and the network via one of the wireless channels instead of a wired Ethernet cable. The mesh term is often confused when you use m...
by biomesh
Sun Apr 25, 2021 3:02 pm
Forum: Wireless Networking
Topic: Connection loss AP to all CPE every 10-30 min
Replies: 8
Views: 1441

Re: Connection loss AP to all CPE every 10-30 min

Hard to tell without more info. Logs from devices involved, config exports, and a descriptive layout with device hardware models would be a good start.
by biomesh
Mon Apr 19, 2021 1:23 pm
Forum: Virtualization
Topic: Very Slow Speeds with CHR trial in AWS
Replies: 1
Views: 1183

Re: Very Slow Speeds with CHR trial in AWS

The free license is. Make sure you are using a 60 day trial license:

https://help.mikrotik.com/docs/pages/vi ... d=18350234
by biomesh
Sat Apr 17, 2021 7:47 pm
Forum: Wireless Networking
Topic: wireless, problem, android
Replies: 16
Views: 1616

Re: wireless, problem, android

You have g only enabled on 2ghz and also allow-sharedkey=yes.

I would look at modifying those first.
by biomesh
Sat Apr 17, 2021 4:27 pm
Forum: General
Topic: CRS317-1G-16S+ High CPU lead to drop packet
Replies: 28
Views: 2365

Re: CRS317-1G-16S+ High CPU lead to drop packet

I would think that just a good rstp switch config and implementing capsman failover built into the product would be sufficient enough. I think you are treating this device like a router and not a switch.
by biomesh
Tue Apr 13, 2021 1:49 pm
Forum: RouterBOARD hardware
Topic: CRS309
Replies: 6
Views: 1395

Re: CRS309

Disable flow control and test again
by biomesh
Thu Mar 18, 2021 1:07 am
Forum: Beginner Basics
Topic: DHCP-server lease-time
Replies: 3
Views: 610

Re: DHCP-server lease-time

/ip dhcp-server add address-pool=dhcp_pool0 disabled=no interface=bridge1 name=dhcp1 lease-time=0s

It's in the docs but the option isn't on many of the examples. When in doubt use tab completion. I'm not sure if it's available in webfig since I don't use it.
by biomesh
Wed Mar 17, 2021 2:22 am
Forum: Beginner Basics
Topic: DHCP-server lease-time
Replies: 3
Views: 610

Re: DHCP-server lease-time

You have to specify the dhcp server instance/config.
by biomesh
Tue Mar 02, 2021 6:05 pm
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1310

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

Great addition, biomesh. I alreay wondered why there was a /caps-man interface section in the export. Why the advice not to use DFS channels? Is this to prevent false radar detections? I avoid DFS as many devices can't or won't use it. Also the radar detections can cause outages while using non DFS...
by biomesh
Tue Mar 02, 2021 5:04 pm
Forum: Wireless Networking
Topic: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]
Replies: 14
Views: 1310

Re: cAP ac only has 1 tx chain, but 2 rx chains [SOLVED]

Generally you don't need to set any TX or RX chains in capsman. The default device values will use both chains for TX and RX. I see that it looks like you have modified the cap interfaces (changing the RX and TX chains). The 5G one is missing the RX chain config. I would not even mess with this thou...
by biomesh
Sun Feb 07, 2021 1:04 am
Forum: Beginner Basics
Topic: CRS312-4C+8XG-RM Slow Speed / can’t change to SWOs
Replies: 17
Views: 1726

Re: CRS312-4C+8XG-RM Slow Speed / can’t change to SWOs

A serial console cable is probably your best bet at this time. You should be able to get to the boot loader and choose routeros.
by biomesh
Sat Jan 30, 2021 2:59 pm
Forum: RouterBOARD hardware
Topic: RB4011iGS+ TX Pauses.
Replies: 10
Views: 2244

Re: RB4011iGS+ TX Pauses.

The correlation between the small frame sizes and counts is probably correct as pause frames are generally small.

Cha0s mentored this is how flow control works. The numbers are not that high, but if you don't like it, just disable it on your devices (routers and switches).
by biomesh
Mon Jan 04, 2021 3:41 pm
Forum: General
Topic: LAN speed issue
Replies: 15
Views: 1193

Re: LAN speed issue

You might want to post your config on the crs210 devices. If you are hitting the cpu, then that would explain the ~300Mbps cap.
by biomesh
Sun Jan 03, 2021 5:15 pm
Forum: General
Topic: Upgrading from TP-Link T2600G-28TS
Replies: 1
Views: 293

Re: Upgrading from TP-Link T2600G-28TS

I replaced this switch with a crs326-24g-2s+IN. I am using ros not swos. They definitely boot faster than the 5+ minutes it takes for the tp-link switch.
by biomesh
Fri Jan 01, 2021 9:12 pm
Forum: Wireless Networking
Topic: cAP ac power consumption
Replies: 7
Views: 1380

Re: cAP ac power consumption

My cap acs run between 3.5-4 watts during normal operation.
by biomesh
Sun Dec 27, 2020 2:52 pm
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 324
Views: 79432

Re: v6.48 [stable] is released!

Are these gigaset devices having issues with the lldp med options added?

My asterisk, grandstream, and obihai (polycom) devices all work fine.
by biomesh
Thu Dec 24, 2020 2:48 pm
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 324
Views: 79432

Re: v6.48 [stable] is released!

I upgraded the following without any issues:

Crs326-24g-2s+ (with lacp bond), crs317, ccr1009, cap ac, wap ac, hap ac2, hap mini, chr, rb921gs.
by biomesh
Sat Dec 19, 2020 3:15 am
Forum: Beginner Basics
Topic: Mikro + Asterix + One Way Audio
Replies: 4
Views: 618

Re: Mikro + Asterix + One Way Audio

In my experience, you don't need to forward any port if you have a sip trunk in asterisk that is registered. If your Nat settings are off in asterisk, then that is your real issue. An asterisk sip trace or a packet trace of the sip and rtp network traffic will help you identify what is being sent. C...
by biomesh
Mon Dec 14, 2020 1:55 pm
Forum: Beginner Basics
Topic: How to set 12:00 midnight time in Kid Control?
Replies: 5
Views: 786

Re: How to set 12:00 midnight time in Kid Control?

While not the best solution, could you not set a scheduler script to pause kid control then re-enable it a minute(or two) later.
by biomesh
Sun Dec 13, 2020 3:01 pm
Forum: RouterBOARD hardware
Topic: crs317 routeros/switchos wrong fan readings? [SOLVED]
Replies: 6
Views: 1153

Re: crs317 routeros/switchos wrong fan readings? [SOLVED]

Sometimes there is a hardware revision shown (if there is one). The documentation - from what I found - only showed the cpu temp sensor.

At this point you should contact mikrotik support to see what they say.
by biomesh
Sun Dec 13, 2020 4:13 am
Forum: RouterBOARD hardware
Topic: crs317 routeros/switchos wrong fan readings? [SOLVED]
Replies: 6
Views: 1153

Re: crs317 routeros/switchos wrong fan readings? [SOLVED]

Sounds like there could be a new hardware revision for the crs317. The current specs pdf does show operating temperature changes from September.

It would be best to confirm with mikrotik support.

What does /system/routerboard/print show?
by biomesh
Sat Dec 12, 2020 2:23 pm
Forum: RouterBOARD hardware
Topic: crs317 routeros/switchos wrong fan readings? [SOLVED]
Replies: 6
Views: 1153

Re: crs317 routeros/switchos wrong fan readings? [SOLVED]

Some devices will have multiple sensors or sensor output. Both my ccr1009 and crs317 have cpu temp and device temp while my other crs devices have only cpu temp. My crs317 shows: Device temp Cpu temp Fan speed for each fan(if they are running) Psu status for each power supply If you do not see all o...
by biomesh
Fri Dec 11, 2020 8:20 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

I don't think it is a capsman issue, but I just wanted to mention that option in case it helped. I have client-to-client forwarding enabled. Per the wiki: client-to-client-forwarding -- controls if client-to-client forwarding between wireless clients connected to interface should be allowed, in loca...
by biomesh
Fri Dec 11, 2020 6:43 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

If you have client to client forwarding enabled in capsman then I am sure this is a tplink issue. I tried to duplicate everything you had but mine worked with no pings from the device at all. The firmware doesn't seem to be common between their products so it could be a defect on their side.
by biomesh
Fri Dec 11, 2020 2:37 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

You mentioned capsman - are you using local forwarding or capsman forwarding?

I am also guessing that you updated the firmware on the plugs as well. (it normally does this when you first set them up)
by biomesh
Fri Dec 11, 2020 12:11 am
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

You might want to use the tplink tools here to see if the plug is reporting anything odd:

https://github.com/softScheck/tplink-smartplug
by biomesh
Thu Dec 10, 2020 5:15 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

- Packet 2: I see a 10 minute lease time in the trace. Most devices will not operate well with such a low lease time. I suggest to make it at least a few hours or a day. - Packets 43 & 48: The device cannot ping 8.8.8.8. This could be due to your firewall settings or it could be your ISP. I can ...
by biomesh
Wed Dec 09, 2020 9:47 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

I am running the latest stable on all of my devices (routers/swicthes/APs) 6.47.8. I have been using these devices for a long time, so I doubt it is a firmware issue on the routeros side. If you can get a lan trace of one of the kasa devices of about 10-15 minutes it should give you a good idea. You...
by biomesh
Wed Dec 09, 2020 8:10 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

Also look at this post - the kasa devices don't like certain subnets:

viewtopic.php?f=2&t=165458#p813598

Stick with 192.168.x.x subnets.
by biomesh
Wed Dec 09, 2020 8:07 pm
Forum: General
Topic: DNS problem - with Kasa smart plugs
Replies: 29
Views: 2394

Re: DNS problem - with Kasa smart plugs

Do you have any firewall rules that restrict traffic for these devices and DNS traffic?

I have over 20 tp-link kasa devices(103/105) that work fine - but I don't restrict the devices. If my DNS servers are down, then the plugs will be in "local" only mode.
by biomesh
Mon Dec 07, 2020 2:59 pm
Forum: General
Topic: 951-2n: router reports about only advertising 10Mbps support
Replies: 1
Views: 319

Re: 951-2n: router reports about only advertising 10Mbps support

This is going to be due to an issue with your cables between the devices. It could just be the rj45 connector or something else. If you can use a different cable and/or plug into another device (switch) - it can help narrow down the issue. There is a slim chance it is an issue with the physical port...
by biomesh
Wed Dec 02, 2020 2:57 am
Forum: Wireless Networking
Topic: wpa_supplicant
Replies: 3
Views: 733

Re: wpa_supplicant

Can you try without the key_mgmt option?
by biomesh
Mon Nov 23, 2020 10:37 pm
Forum: Beginner Basics
Topic: CRS 317-1G-16M+RM WITH CISCO DAC SFP-H10GB-CU3M
Replies: 4
Views: 541

Re: CRS 317-1G-16M+RM WITH CISCO DAC SFP-H10GB-CU3M

I use the MCX311A-XCAT with 10Gtek SFP+ DACs on the CRS317 and CRS309 with no issues.
by biomesh
Mon Nov 23, 2020 10:35 pm
Forum: Wireless Networking
Topic: CAPSMAN issue (cAP ac & CRS326-24G-2S+) - wlan interfaces not coming up
Replies: 11
Views: 945

Re: CAPSMAN issue (cAP ac & CRS326-24G-2S+) - wlan interfaces not coming up

The vlans should not be created on the caps(the only exception would be to create a management vlan interface). The capsman provisioning will tag packets on those SSIDs with the vlan tag based on your datapath config. You don't need to set the tx/rx chains - if you leave it at defaults both chains a...
by biomesh
Mon Nov 23, 2020 7:04 pm
Forum: Wireless Networking
Topic: Capsman - Security Question
Replies: 3
Views: 487

Re: Capsman - Security Question

You can also require a peer certificate. This way only authorized devices can be provisioned.
by biomesh
Mon Nov 23, 2020 7:00 pm
Forum: Wireless Networking
Topic: CAPSMAN issue (cAP ac & CRS326-24G-2S+) - wlan interfaces not coming up
Replies: 11
Views: 945

Re: CAPSMAN issue (cAP ac & CRS326-24G-2S+) - wlan interfaces not coming up

First off, I would get rid of the rates config. This is going to complicate things before you get the basics working. I would set the channels to only be band 5ghz-n/ac. You will rarely see any 5ghz a devices. You are also not using local forwarding on the datapaths, which means that the capsman dev...
by biomesh
Wed Nov 18, 2020 1:01 am
Forum: General
Topic: Having issues with WAP AC AP [SOLVED]
Replies: 13
Views: 1020

Re: Having issues with WAP AC AP [SOLVED]

I think if you boot into caps mode with the reset button you have to login and confirm the default config for that mode. If you reboot, it goes back to the default AP mode. As for a default config, here is what I use: /interface bridge add admin-mac=C4:AD:34:EE:BB:AA auto-mac=no name=bridge1 priorit...
by biomesh
Tue Nov 17, 2020 5:32 am
Forum: General
Topic: Having issues with WAP AC AP [SOLVED]
Replies: 13
Views: 1020

Re: Having issues with WAP AC AP [SOLVED]

You hold the reset button for 10 seconds (led will turn solid) to put the device into cap mode. Personally I would get a working generic config and copy that config to each of the caps - reset without default config and have it run your custom default config. The config would include your bridge, ca...
by biomesh
Mon Nov 16, 2020 8:45 pm
Forum: General
Topic: MikroTik HAP AC2 fails to link 1Gbps
Replies: 17
Views: 1340

Re: MikroTik HAP AC2 fails to link 1Gbps

I would just use another cable and plug it into another device close to your hap ac2 to see if it connects correctly. If it does, it is most likely a cable/rj45 issue.
by biomesh
Mon Nov 16, 2020 8:34 pm
Forum: General
Topic: Where does the Traffic Flow? Cap AC via local forwarding
Replies: 2
Views: 378

Re: Where does the Traffic Flow? Cap AC via local forwarding

At least on my devices, you won't see the traffic go over the bridge other than management traffic. Especially with local forwarding, most of your traffic will be on ether1 and your wlan interfaces.
by biomesh
Mon Nov 16, 2020 7:16 pm
Forum: General
Topic: Multiple VLANs on a single Router Port.
Replies: 15
Views: 3510

Re: Multiple VLANs on a single Router Port.

a. bridge has vlans only and does not function DHCP itself, I dont see a conflict/ b. bridge has vlans AND IS ALSO giving dhcp itself............. What happens when I connect a computer to etherport 5?? Does it get DHCP from the 192.168.10.x subnet or the bridge subnet?? A request that is not tagge...
by biomesh
Mon Nov 09, 2020 12:08 am
Forum: Beginner Basics
Topic: mikrotik router os limit
Replies: 2
Views: 412

Re: mikrotik router os limit

My guess is low memory or disk space.
by biomesh
Mon Oct 26, 2020 1:34 pm
Forum: SwOS
Topic: Noob POE Question
Replies: 1
Views: 709

Re: Noob POE Question

It just means it can be powered by a switch or injector with sufficient power. If you do get passive poe out devices, injectors are generally less safe as they don't do as many checks (or none at all) on the connected devices, unlike switches. Switches normally default to checking the line before su...
by biomesh
Fri Oct 16, 2020 6:16 am
Forum: Wireless Networking
Topic: CAPsMAN Access list
Replies: 5
Views: 679

Re: CAPsMAN Access list

There is a ssid regex option that you can use to apply certain rules in the access list to certain networks. You don't have to specify a Mac address either. You could have an accept rule for all devices in your guest ssid and limit your main network with accept rules for that ssid with only defined ...
by biomesh
Wed Oct 14, 2020 3:06 pm
Forum: Beginner Basics
Topic: 10GB Issues...
Replies: 6
Views: 956

Re: 10GB Issues...

10Gtek dacs work great between my crs326, crs317, and ccr1009.

They are not expensive at all.
by biomesh
Tue Oct 13, 2020 1:51 pm
Forum: General
Topic: single ipv6 /64 range
Replies: 21
Views: 1254

Re: single ipv6 /64 range

Comcast rolled out ipv6 to end users many years ago. They provide an address for the wan interface and a prefix. The default prefix size is a /64 since most users don't have multiple subnets or complicated networks. Comcast also offers a /60 for those who need it by use of a prefix hint. This is a g...
by biomesh
Wed Oct 07, 2020 5:25 pm
Forum: SwOS
Topic: CSS610-8G-2S+IN - SWOS 2.12rc2 Upgrade missing
Replies: 15
Views: 4277

Re: CSS610-8G-2S+IN - SWOS 2.12rc2 Upgrade missing

SWOS in my experience, is different on every hardware platform. The crs3xx/css3xx series are the closest to "normal" switch config options/interface. I prefer routeros on the switches since many times swos has limitations and the releases are far and few between. I know that this specific ...
by biomesh
Mon Oct 05, 2020 4:31 am
Forum: Wireless Networking
Topic: ACCESS LIST vs CONNECT LIST
Replies: 11
Views: 4346

Re: ACCESS LIST vs CONNECT LIST

I normally leave it to 10 seconds unless you want to give a client more time on that ap if they seem to drift in and out of range, or if they stay at the signal limit often.
by biomesh
Sun Oct 04, 2020 3:36 pm
Forum: Wireless Networking
Topic: ACCESS LIST vs CONNECT LIST
Replies: 11
Views: 4346

Re: ACCESS LIST vs CONNECT LIST

Capsman access lists are a bit different. The rules are always checked sequentially. I would not use overlapping ranges unless there is other criteria used. So for your example, the following should work. For capsman, it is easier to just add the allow rules first and reject rules at the bottom. You...
by biomesh
Sun Oct 04, 2020 4:27 am
Forum: Wireless Networking
Topic: ACCESS LIST vs CONNECT LIST
Replies: 11
Views: 4346

Re: ACCESS LIST vs CONNECT LIST

The phone could disconnect and reconnect immediately if it meets the requirements in the access list. If it does not meet the requirements but had bad logic it could keep trying to connect and fail until the signal is within the access list range again. I have some 'smart' plugs that are anything bu...
by biomesh
Sat Oct 03, 2020 8:05 pm
Forum: Announcements
Topic: v6.47.4 [stable] is released!
Replies: 68
Views: 20020

Re: v6.47.4 [stable] is released!

It worked for me a week or so ago when I deployed a new cap ac. You need to make sure the config is stored in the /flash directory to make sure it is available after the reset. I used 6.47.4. I confirm this no longer works. run-after-reset is now broken. Also flashfig is now broken and will not exec...
by biomesh
Thu Oct 01, 2020 3:08 pm
Forum: General
Topic: Is there a problem with IP Cloud? [SOLVED]
Replies: 52
Views: 9264

Re: Is there a problem with IP Cloud? [SOLVED]

Do the devices all share the same ISP?

All of my tests have been on Comcast, from various locations on their network.
by biomesh
Wed Sep 30, 2020 10:27 pm
Forum: General
Topic: Is there a problem with IP Cloud? [SOLVED]
Replies: 52
Views: 9264

Re: Is there a problem with IP Cloud? [SOLVED]

I just connected to a RB751G (8 years old) that had never had ip cloud enabled - running 6.47.3 and it updated fine.
by biomesh
Wed Sep 30, 2020 10:20 pm
Forum: General
Topic: Is there a problem with IP Cloud? [SOLVED]
Replies: 52
Views: 9264

Re: Is there a problem with IP Cloud? [SOLVED]

I have a CCR1009 which is almost 5 years old and it has been updating fine - I keep it current, so at one point was on 6.33 or earlier.
by biomesh
Wed Sep 30, 2020 10:07 pm
Forum: General
Topic: Is there a problem with IP Cloud? [SOLVED]
Replies: 52
Views: 9264

Re: Is there a problem with IP Cloud? [SOLVED]

I used the packet sniffer and when you enable ip cloud on a new device it sends one udp packet to one of the addresses resolved by cloud2.mikrotik.com on port 15252. In my case it is sending data to 159.148.172.251 and 159.148.172.201. I tried on two different cap ac devices. Once the request is mad...
by biomesh
Wed Sep 30, 2020 9:33 pm
Forum: General
Topic: Is there a problem with IP Cloud? [SOLVED]
Replies: 52
Views: 9264

Re: Is there a problem with IP Cloud? [SOLVED]

I have a new cap ac that was shipped with 6.44 and updated it to 6.47.4 before resetting the config into caps mode. I just ran the following and it worked fine.
/ip cloud set ddns-enabled=yes 
by biomesh
Wed Sep 30, 2020 8:07 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

Devices without a console port can be tough - that is why if I can get one with a console port, I will get that - even if it costs more.
by biomesh
Wed Sep 30, 2020 7:11 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

Here are the key points of the config from the ref............. Base vlan = management vlan # Purple Trunk. L2 switching only, Bridge not needed as tagged member (except BASE_VLAN) set bridge=BR1 tagged=ether1 [find vlan-ids=10] set bridge=BR1 tagged=ether1 [find vlan-ids=20] set bridge=BR1 tagged=...
by biomesh
Wed Sep 30, 2020 4:39 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

I see where at one point I had a vlan interface - I must have been testing something on that cap - my other caps don't have that interface. Here is a better example. I set the pvid of ether1 to 70 to match the bridge where I actually have vlan 70 tagged on ether1 to avoid a ghost vlan1 since I allow...
by biomesh
Wed Sep 30, 2020 4:21 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

I also just tested enabling ingress-filtering=yes on all of my "static" interfaces: bridge, ether1 and ether2 and did not have any issues. I am the only one who configures my network, so I make sure the vlan config matches between the switch and the cap. The ingress-filtering would only im...
by biomesh
Wed Sep 30, 2020 3:49 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

Vlan 70 is my wifi management vlan. I don't use vlan interfaces as my bridge address uses dhcp and I set the bridge pvid ( to 70). My dynamic vlan from capsman is added to the config once provisioned. I don't use vlan 1 in my network at all. This is indeed for cap ac as this config is running on fiv...
by biomesh
Wed Sep 30, 2020 1:21 pm
Forum: Beginner Basics
Topic: capAC being Ornery!
Replies: 13
Views: 881

Re: capAC being Ornery!

Is there something different with the switch port the new ap is connected to? Nothing obvious stands out to me, so I would personally check the switch next. I have a basic config I push to all of my cap acs - but it is meant for use by capsman. It uses a dhcp client on the bridge(which is untagged) ...
by biomesh
Tue Sep 29, 2020 12:01 am
Forum: RouterBOARD hardware
Topic: hAP ac2 vs. cAP ac, CAP only usage
Replies: 10
Views: 1249

Re: hAP ac2 vs. cAP ac, CAP only usage

Cap AC is really designed to be mounted on a wall or ceiling, and is only powered via POE - it also has POE out on ether2. It comes with extra mounting hardware and an extra cover along with the POE injector. The Hap ac2 has more ethernet ports and a usb port. It can be mounted on the wall, but is p...
by biomesh
Mon Sep 28, 2020 9:43 pm
Forum: SwOS
Topic: RTSP usage
Replies: 2
Views: 886

Re: RTSP usage

It is beneficial if you need redundant links between switches or to detect loops on the network. If neither of those apply to you - you can disable it.
by biomesh
Sat Sep 26, 2020 5:53 am
Forum: SwOS
Topic: Disconnects
Replies: 3
Views: 1412

Re: Disconnects

There is a known issue with swos 2.12 with flow control. Your ports can go into a paused state. The easiest fix is to just disable rx and tx flow control on all ports.

If the actual sfp is disappearing, this could be a different issue.
by biomesh
Sun Sep 20, 2020 6:08 pm
Forum: General
Topic: CCR2004 poor bridge performance
Replies: 23
Views: 2491

Re: CCR2004 poor bridge performance

What is the mtu on the client side?
by biomesh
Sat Sep 19, 2020 5:27 pm
Forum: General
Topic: Issues with multiple bonded links in a bridge
Replies: 1
Views: 328

Re: Issues with multiple bonded links in a bridge

Are the bond interfaces in the bridge or are the slave ports? Only the bond interfaces and your one server port (6) should be in the bridge.
by biomesh
Tue Sep 15, 2020 1:28 pm
Forum: General
Topic: CRS326/CRS317 provision failing [SOLVED]
Replies: 8
Views: 891

Re: CRS326/CRS317 provision failing [SOLVED]

Along with the previous suggestion, I would recommend a console cable (if the device supports it - which a crs326 does) or copy over the rsc file and do a resset-configuration and set it to no default config, no backup, and have it run the rsc after reset. It basically means you copy a file and run ...
by biomesh
Tue Sep 15, 2020 12:44 am
Forum: SwOS
Topic: SwOS Update Broke SFP+ Compatibility on CRS305-1G-4S+
Replies: 3
Views: 1031

Re: SwOS Update Broke SFP+ Compatibility on CRS305-1G-4S+

Can you see if disabling all flow control on the interfaces helps? 2.12 has an issue where flow control is not working correctly and can cause some links to remain "stuck" with pause frames.
by biomesh
Mon Sep 14, 2020 9:48 pm
Forum: General
Topic: CRS CRS354-48G-4S+2Q+RM does not boot [SOLVED]
Replies: 4
Views: 644

Re: CRS CRS354-48G-4S+2Q+RM does not boot [SOLVED]

Those ports are only useful if the device boots. If it is stuck at the RouterBoot menu, you would really need a console cable.
by biomesh
Mon Sep 14, 2020 9:19 pm
Forum: General
Topic: CRS CRS354-48G-4S+2Q+RM does not boot [SOLVED]
Replies: 4
Views: 644

Re: CRS CRS354-48G-4S+2Q+RM does not boot [SOLVED]

If you have a console cable, you should be able to see the Routerboot menu and use the backup bootloader or choose other boot options.

https://wiki.mikrotik.com/wiki/Manual:RouterBOOT
by biomesh
Sat Sep 12, 2020 5:45 pm
Forum: SwOS
Topic: CSS106-1G-4P-1S (RB260GSP) link speed changing [SOLVED]
Replies: 4
Views: 1006

Re: CSS106-1G-4P-1S (RB260GSP) link speed changing [SOLVED]

If the port was flapping, it could be due to an issue with some rstp configs in swos 2.12 - you can try 2.11 to see if that helps.
by biomesh
Sat Sep 12, 2020 5:10 pm
Forum: Wireless Networking
Topic: mantbox 19s VS mant19s
Replies: 1
Views: 352

Re: mantbox 19s VS mant19s

The mantbox includes an integrated router board and is all you would need for connectivity. The mant is only the antenna.
by biomesh
Sat Sep 12, 2020 4:09 pm
Forum: RouterOS v7 BETA
Topic: TLS handshake failed when relaying via smtp.gmail.com [SOLVED]
Replies: 22
Views: 2569

Re: TLS handshake failed when relaying via smtp.gmail.com [SOLVED]

I still use smtp.gmail.com with tls(port 587) a user with an app password and never have imported certs to get this to work. I have a scheduled script that emails me exports once a week and it works fine. I have a feeling this is due to 2fa or an incomplete user name. I have a service account that I...
by biomesh
Sat Sep 12, 2020 3:37 pm
Forum: SwOS
Topic: CSS106-1G-4P-1S (RB260GSP) link speed changing [SOLVED]
Replies: 4
Views: 1006

Re: CSS106-1G-4P-1S (RB260GSP) link speed changing [SOLVED]

Most likely bad cabling or connections somewhere. I have this issue with one of my ports in my house, but it isn't limited to Mikrotik products.

In my case it is an rj45 connector that needs to be replaced. I can jiggle it and get it to stay at 1G, so not a priority to fix.
by biomesh
Wed Sep 09, 2020 11:07 pm
Forum: General
Topic: Packet Sniffer and Wireshark
Replies: 5
Views: 1247

Re: Packet Sniffer and Wireshark

I use this method all of the time - I am using the current versions of both. If your tzsp port matches between ROS and Wireshark it should decode everything normally. If you want to just get your traffic that is streamed, make sure you use a capture filter and not a display filter( i.e. "udp po...
by biomesh
Sat Sep 05, 2020 6:12 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

The default (from the default config from an rb931) is none. I don't think this is enabled default. If you use quickset or set it manually it is enabled.
by biomesh
Sat Sep 05, 2020 5:16 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

/interface detect-internet detect-interface-list=none
by biomesh
Sat Sep 05, 2020 5:13 pm
Forum: Beginner Basics
Topic: hAP ac^2 - higher upload speed than download
Replies: 14
Views: 1396

Re: hAP ac^2 - higher upload speed than download

It looks like you have some channels set to tx-power of 11. That isn't extremely high, but if you might want to try it a bit lower just to check performance and range.
by biomesh
Sat Sep 05, 2020 3:20 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

For those with the odd behavior of not being able to connect after some time you might want to set all detect-internet interfaces to none.
by biomesh
Sat Sep 05, 2020 3:02 pm
Forum: Beginner Basics
Topic: hAP ac^2 - higher upload speed than download
Replies: 14
Views: 1396

Re: hAP ac^2 - higher upload speed than download

First off the tx power should not be negative. Normally in capsman you would configure tx power on the channel config and that would be it. You have it set on the cap configuration as well which would override the channel config. So the value 25 is the one being used. It is pretty high though. You m...
by biomesh
Fri Sep 04, 2020 11:47 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

Bridge mode means that the router should get a dynamic address. If you have a static allocation your gateway would have to be in router/gateway mode. DHCP should work if the gateway device is actually handing out a DHCP address. Run the packet sniffer to see if dhcp requests are being sent and how t...
by biomesh
Fri Sep 04, 2020 3:09 pm
Forum: Beginner Basics
Topic: How should I set up for access points?
Replies: 4
Views: 521

Re: How should I set up for access points?

The disc lite5 ac is a ptp cpe device, not deigned as an ap. If looking for dial band with gigabit interfaces stick with the wap ac, cap ac or hap ac2.
by biomesh
Fri Sep 04, 2020 4:24 am
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

If you do run into any issues, I would focus on your firewall rules. Disable the vlan restricting ones then enable one by one until you find the culprit.
by biomesh
Fri Sep 04, 2020 3:25 am
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

Are you connecting to the router ip for that subnet, or a different vlan? You have firewall rules blocking inter vlan traffic.
by biomesh
Wed Sep 02, 2020 2:12 pm
Forum: Wireless Networking
Topic: [Help] Mikrotik CAPsMAN Wireless download speed max 200Mb, but PC's /Mobile's link speed is 866Mbps
Replies: 50
Views: 4762

Re: [Help] Mikrotik CAPsMAN Wireless download speed max 200Mb, but PC's /Mobile's link speed is 866Mbps

I don't really see anything wrong with the config, but I would definitely see if capsman forwarding is your issue. Check the cpu on your ap and router while doing iperf speed tests. You might want to see if you have overlapping channels too close to one another since you are using 80MHz channels. Ma...
by biomesh
Wed Sep 02, 2020 1:14 pm
Forum: Wireless Networking
Topic: [Help] Mikrotik CAPsMAN Wireless download speed max 200Mb, but PC's /Mobile's link speed is 866Mbps
Replies: 50
Views: 4762

Re: [Help] Mikrotik CAPsMAN Wireless download speed max 200Mb, but PC's /Mobile's link speed is 866Mbps

In real life (no matter what hardware you use) you will generally get up to 1/2 the transfer speeds with regards to your link speeds.

As for your config, can you post an export from your capsman manager device? This provides more details to be able to help.
by biomesh
Mon Aug 31, 2020 11:24 pm
Forum: RouterBOARD hardware
Topic: 16 port short depth PoE switch
Replies: 9
Views: 1242

Re: 16 port short depth PoE switch

If they do make a IN version, they should have the case large enough for 40mm fans instead of the 30mm space for the crs326-24g-2s+IN. Raspberry pi fans are pretty much the only common offering in that size.
by biomesh
Mon Aug 31, 2020 5:02 pm
Forum: RouterBOARD hardware
Topic: 16 port short depth PoE switch
Replies: 9
Views: 1242

Re: 16 port short depth PoE switch

A crs318-16P-2S+ would be great. I would like it in an "IN" desktop form factor, although I am sure a RM version would be popular too.
by biomesh
Sun Aug 30, 2020 5:35 am
Forum: RouterBOARD hardware
Topic: USB Data Lines hAP mini (RB931-2nD)
Replies: 3
Views: 514

Re: USB Data Lines hAP mini (RB931-2nD)

According to the quick guide they are power only:

https://i.mt.lv/cdn/product_files/hAP-m ... 190504.pdf
by biomesh
Fri Aug 28, 2020 9:45 pm
Forum: General
Topic: Can't add a DHCP server pool error 6.47.2
Replies: 4
Views: 655

Re: Can't add a DHCP server pool error 6.47.2

Are you out of disk space? I see extra packages installed in the first screenshot and your export references user-manager (with errors) and it doesn't show the pool you created.
by biomesh
Fri Aug 28, 2020 6:34 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

If there is a dhcp server on the modem / combo box it should provide an address. You might want to also update to a current version as 6.42.11 is very old - it looks to be a dev build anyway. There have been dhcp client related fixes since then, so you could be hitting an old bug. Also be aware that...
by biomesh
Fri Aug 28, 2020 3:54 pm
Forum: General
Topic: DHCP issue with Win 10 clients
Replies: 4
Views: 509

Re: DHCP issue with Win 10 clients

Update your dhcp server from /ip dhcp-server add add-arp=yes address-pool=pool1 delay-threshold=5m disabled=no interface=\ br_lan lease-script="" lease-time=10m name=server1 use-radius=no to /ip dhcp-server add add-arp=yes address-pool=pool1 authoritative=yes disabled=no interface=\ br_lan...
by biomesh
Fri Aug 28, 2020 2:15 pm
Forum: Beginner Basics
Topic: How to set IP address to switch while using VLANs?
Replies: 15
Views: 1206

Re: How to set IP address to switch while using VLANs?

For the switches if you use static addresses you need to make sure you use vlan interfaces assigned to the bridge and set those interfaces and the bridge as being tagged for the respective vlan. Add an ip to the vlan interface and set the route. I prefer to use dhcp on a management vlan that is rest...
by biomesh
Fri Aug 28, 2020 2:02 pm
Forum: General
Topic: DHCP issue with Win 10 clients
Replies: 4
Views: 509

Re: DHCP issue with Win 10 clients

Sounds like a config issue as it works partially. Please post your config so we can see how it is configured.
by biomesh
Fri Aug 28, 2020 1:56 pm
Forum: Wireless Networking
Topic: Make CAPSMAN-Setup VLAN-aware (mac-adress based) [SOLVED]
Replies: 8
Views: 1028

Re: Make CAPSMAN-Setup VLAN-aware (mac-adress based) [SOLVED]

The problem with the station pseudobridge mode is that they don't work well with dhcp clients due to the Mac translation. Station pseudobridge clone mode will help if you only have one dhcp client on that device. It is best to statically assign ip addresses to client devices (the printers in your ca...
by biomesh
Fri Aug 28, 2020 1:36 pm
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

It's probably not really in bridge mode then. On the dslreports forums in the past people have reported many issues with those devices (normally smc devices). You are better off buying/trying a standard modem on the business class supported modem list and get the modem activated on the account. This...
by biomesh
Fri Aug 28, 2020 6:06 am
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

Is the Comcast device a modem only or is it a business class modem/router combo device? If it is a combo device then you need to call Comcast support and put it in bridged mode. I looked at the config quickly and didn't see any reason to not get a valid address, so it looks like you might be dealing...
by biomesh
Fri Aug 28, 2020 3:54 am
Forum: Beginner Basics
Topic: Mikrotik router behind Comcast business modem with dynamic IPv6
Replies: 59
Views: 4201

Re: Mikrotik router behind Comcast business modem with dynamic IPv6

Post your config. I have been using both ipv4 and ipv6 since Comcast began supporting ipv6(quite a number of years ago). The dynamic ip should be an ipv4 though and you should also get a ipv6 address and a prefix (/64 or /60). If you are switching between routers, be sure to reboot the modem as they...
by biomesh
Wed Aug 26, 2020 10:48 pm
Forum: General
Topic: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]
Replies: 9
Views: 1816

Re: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]

Your lease time is 10 minutes, so the plug is going to try and renew the least at the 50% time left mark - 5 minutes. Unless you have a lot of unique devices coming and going on that vlan/subnet you can dramatically increase the lease time for DHCP addresses. Perhaps there is a code issue with the p...
by biomesh
Wed Aug 26, 2020 10:10 pm
Forum: General
Topic: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]
Replies: 9
Views: 1816

Re: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]

I just ran a sniffer trace on the plug right next to me and I don't see the same results. You will need to look at the packet details/decodes in wireshark to see what request/response was made to help determine what the issue is. If you want to upload/post your packet capture then myself and perhaps...
by biomesh
Wed Aug 26, 2020 7:34 pm
Forum: General
Topic: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]
Replies: 9
Views: 1816

Re: TP Link Smart Plug Minis Not Keeping Connection to TP Link Cloud [SOLVED]

The only issues I have had with the TP-Link smart plugs have been due to the DNS server(s) being down. I don't have them on their own IOT vlan though. They only connect to 2.4G wireless so 5G wireless should have no bearing. I would configure the packet sniffer to forward traffic to wireshark on you...
by biomesh
Wed Aug 26, 2020 2:02 pm
Forum: General
Topic: CRS326-24S+2Q 200 MBit/s Maxout
Replies: 6
Views: 873

Re: CRS326-24S+2Q 200 MBit/s Maxout

Looking at your config you are only switching 2 ports - the qsfp+ ports. Everything else is going through the cpu. The bond interfaces need to be added to the bridge as well. Any bonded slave interface will not be in the bridge but only the bond interface itself. Any other standard interface should ...
by biomesh
Tue Aug 25, 2020 2:47 am
Forum: General
Topic: CRS326-24S+2Q 200 MBit/s Maxout
Replies: 6
Views: 873

Re: CRS326-24S+2Q 200 MBit/s Maxout

Your config is way off. The config really needs to be mainly done via the bridge.

https://wiki.mikrotik.com/wiki/Manual:C ... s_switches

Here is the link for vlans with bonds on the crs3xx series.

https://wiki.mikrotik.com/wiki/Manual:C ... with_Bonds
by biomesh
Wed Aug 19, 2020 7:54 pm
Forum: Wireless Networking
Topic: CAPs-MAN issues
Replies: 3
Views: 869

Re: CAPs-MAN issues

Make sure extension-channel=disabled. By default they are enabled.
by biomesh
Wed Aug 19, 2020 4:25 pm
Forum: Wireless Networking
Topic: CAP interface MAC
Replies: 10
Views: 1214

Re: CAP interface MAC

I have the same results as mkx. I have provisioning rules for all caps though. I set the identity on each cap to let capsman set the correct channel and config for each radio/cap instead of any manual creation or configuration on each cap.
by biomesh
Tue Aug 18, 2020 5:47 am
Forum: General
Topic: Wireless unable to connect to Internet...
Replies: 9
Views: 1489

Re: Wireless unable to connect to Internet...

I would disable wpa2-eap, change the group and unicast ciphers to aes-ccm, and set the channel width to 20 mhz only. You might also want to specify a channel instead of auto.
by biomesh
Sat Aug 08, 2020 10:46 pm
Forum: Announcements
Topic: SwOS version 2.12 released!
Replies: 99
Views: 63124

Re: SwOS version 2.12 released!

Hi all, unfortunately have to confirm major problems with 2.12. Updating 2 CS106-5G-1S nearly wrecked my network. Took me a day to figure out I had to turn off RSTP on all Ports to make it work again. I can confirm that rstp does not work with 2.12 on the cs106-1g-4p-1s as well. It works fine on th...
by biomesh
Mon Aug 03, 2020 12:38 am
Forum: Wireless Networking
Topic: CAPsMAN different boards at 2.4 and 5Ghz one SSID
Replies: 7
Views: 1930

Re: CAPsMAN different boards at 2.4 and 5Ghz one SSID

You will generally have two provisioning rules at a minimum for a dual band radio. One for 2.4 and one for 5 GHz radiios. Just specify the correct settings for each radio and keep the ssid the same if that is what you want.
by biomesh
Thu Jul 30, 2020 2:24 pm
Forum: General
Topic: cAP Ac wall mounting question [SOLVED]
Replies: 3
Views: 1146

Re: cAP Ac wall mounting question [SOLVED]

To have the cable run out the side of the cap ac, there are two molded u shaped sections next to the Ethernet connections that can be removed (gently with needle nosed pliers).

I don't know if that counts to you as being modded, but that is what they are for.
by biomesh
Fri Jul 24, 2020 1:40 pm
Forum: Wireless Networking
Topic: How to get more than 54Mbps speed with 2.4Ghz band in hAP Ac? [SOLVED]
Replies: 7
Views: 2034

Re: How to get more than 54Mbps speed with 2.4Ghz band in hAP Ac? [SOLVED]

Enable wmm support, that should help. The link rate is locked to a max of 54Mbps if it is disabled.
by biomesh
Thu Jul 23, 2020 11:36 pm
Forum: Wireless Networking
Topic: Multiple SSIDs in Capsman whit manual added interfaces [SOLVED]
Replies: 10
Views: 2619

Re: Multiple SSIDs in Capsman whit manual added interfaces [SOLVED]

Can you explain why provisioning rules won't work in your config to provision the virtual APs? For each radio that is managed by capsman, you really need to manage it via capsman, otherwise you are defeating the purpose of using capsman.
by biomesh
Wed Jul 22, 2020 1:03 am
Forum: Announcements
Topic: SwOS version 2.12 released!
Replies: 99
Views: 63124

Re: SwOS version 2.12 released!

@k6ccc - You are right, just tested with my css326. In the past with other switches I have had to set it to active. I set mine to active or passive, either way it worked for my lacp based lag.
by biomesh
Tue Jul 21, 2020 3:13 pm
Forum: Announcements
Topic: SwOS version 2.12 released!
Replies: 99
Views: 63124

Re: SwOS version 2.12 released!

For lag config you would set both sides to active to have them participate in the group. One of the changes in this version was to allow lag to work with only one member active. While there could be an issue with how much membership traffic is sent, this is really a config issue on your end.
by biomesh
Sat Jul 18, 2020 6:15 pm
Forum: Announcements
Topic: SwOS version 2.12 released!
Replies: 99
Views: 63124

Re: SwOS version 2.12 released!

Have you tried to disable flow control Rx and tx on all routers/switches on the sfp+ interfaces?
by biomesh
Fri Jul 17, 2020 2:59 pm
Forum: Beginner Basics
Topic: hAP ac2 – slow transfer speed between vlans
Replies: 15
Views: 4655

Re: hAP ac2 – slow transfer speed between vlans

@mkx - My point was just going to have the hap ac2 as just a router (1 wan, 1 Lan) and have it only do the routing between vlans (and wan). This was to see if the performance was better than with the switch/bridge config.
by biomesh
Fri Jul 17, 2020 1:55 pm
Forum: Beginner Basics
Topic: hAP ac2 – slow transfer speed between vlans
Replies: 15
Views: 4655

Re: hAP ac2 – slow transfer speed between vlans

@mkx I agree with you 100%. The question is if the extra load from the bridging is causing the extra load. If he were to handle vlan tagging on the switch and just do a 'router on a stick' config would that get the performance where it needs to be?
by biomesh
Fri Jul 17, 2020 12:01 am
Forum: Beginner Basics
Topic: hAP ac2 – slow transfer speed between vlans
Replies: 15
Views: 4655

Re: hAP ac2 – slow transfer speed between vlans

You have vlan filtering enabled on your bridge which disables hardware offloading on the hap ac2. https://wiki.mikrotik.com/wiki/Manual:Interface/Bridge#Bridge_Hardware_Offloading You should really be doing the vlan tagging/filtering on your css326. It is swos, so there is no bridge config, just vla...
by biomesh
Sun Jul 12, 2020 2:50 am
Forum: General
Topic: Monthly Reboot
Replies: 3
Views: 1179

Re: Monthly Reboot

How about 30d 00:00:00
by biomesh
Sun Jun 28, 2020 3:13 pm
Forum: Announcements
Topic: v6.47 [stable] is released!
Replies: 349
Views: 121902

Re: v6.47 [stable] is released!

For those having issues flushing the dns cache, from my experience, this is due to a winbox bug IMO. If I have a large cache (a few mb) then through winbox the cache will never clear. If I run a /ip dns cache flush, it works. I also tested with disabling remote requests, flush cache, and enabling re...
by biomesh
Fri Mar 17, 2017 1:48 pm
Forum: Beginner Basics
Topic: RB450G Performance Issues
Replies: 5
Views: 1070

Re: RB450G Performance Issues

Since you don't have any firewall rules enabled, I would disable remote access to dns.
/ip dns
set allow-remote-requests=no servers=172.16.10.10
by biomesh
Wed Jun 22, 2016 2:35 pm
Forum: Wireless Networking
Topic: CAPsMAN APs conflict
Replies: 2
Views: 819

Re: CAPsMAN APs conflict

You might want to drop the power levels on the APs so the clients don't try to roam as much.
by biomesh
Thu Jun 16, 2016 4:10 pm
Forum: General
Topic: IPv6 link-local address
Replies: 2
Views: 1496

Re: IPv6 link-local address

I would suggest using unique local addresses vs link-local addresses at this point if you need to add a static address.  It would be the fd00::/8 range.
by biomesh
Mon May 23, 2016 11:43 pm
Forum: General
Topic: CCR1009 Memory Leak
Replies: 6
Views: 1578

Re: CCR1009 Memory Leak

If you are getting supout.rif's, you should email that to mikrotik support (support[at]mikrotik.com:) - since this is a user based support forum, it does not help us. You can post your device's config export (/export) so we can see what could be the issue. I would start by emailing support directly ...
by biomesh
Mon May 23, 2016 6:30 pm
Forum: General
Topic: CCR1009 Memory Leak
Replies: 6
Views: 1578

Re: CCR1009 Memory Leak

You will have to provide more details - ROS version, post your config, etc. Myself and plenty others use a CCR1009 with no memory leak issues, so this must be a version/config issue.
by biomesh
Fri Mar 18, 2016 2:50 pm
Forum: General
Topic: Quickset & CCR1009-8G-1S-1S+
Replies: 8
Views: 1316

Re: Quickset & CCR1009-8G-1S-1S+

I have seen this, but it has never been an issue for me since I do not use quickset for this device.

If you have an urgent issue or would like something addressed by MikroTik, you should email support.
by biomesh
Thu Mar 03, 2016 5:31 pm
Forum: General
Topic: CCR1009-8G-1S Replacement
Replies: 12
Views: 1860

Re: CCR1009-8G-1S Replacement

The RB3011 series uses an ARM processor, which is still a work in progress. You are better off just using another CCR1009 model or better.
by biomesh
Thu Mar 03, 2016 6:14 am
Forum: General
Topic: CCR1009-8G-1S Replacement
Replies: 12
Views: 1860

Re: CCR1009-8G-1S Replacement

Why not just use one of the other ccr1009 models?

They do have a passive cooling model which is probably the closest upgrade. The other two models (passive or active cooling) cost more and have extra features.
by biomesh
Wed Mar 02, 2016 7:26 pm
Forum: RouterBOARD hardware
Topic: CCR1009-8G-1S-1S+PC system healt voltage problem, current and power usage is missing
Replies: 3
Views: 1220

Re: CCR1009-8G-1S-1S+PC system healt voltage problem, current and power usage is missing

Mine looks accurate - make sure you have updated firmware (/system routerboard upgrade). I am on firmware 3.27. /system health print cpu-overtemp-check: yes cpu-overtemp-threshold: 100C cpu-overtemp-startup-delay: 1m voltage: 23.7V current: 611mA temperature: 38C cpu-temperature: 45C power-consumpti...
by biomesh
Fri Feb 26, 2016 5:07 pm
Forum: General
Topic: Poor performance of Cloud Core Router - CCR1009-8G-1S-1S+
Replies: 2
Views: 1338

Re: Poor performance of Cloud Core Router - CCR1009-8G-1S-1S+

I may not be an expert, in what you are trying to do, but it sounds like you expect the router to be a voip SBC. These are specialized devices for voip which can handle the load you are giving them which also include some firewalling capabilities. The SIP ALG in most routers are very basic and shoul...
by biomesh
Wed Feb 24, 2016 5:32 pm
Forum: Beginner Basics
Topic: Comcast and IPv6 Basic Config
Replies: 7
Views: 4125

Re: Comcast and IPv6 Basic Config

Most of these configs that have been posted are for a standard docsis 3 modem, not one of the business gateways. The gateways have their own quirks and most of the time lots of bugs. Unless you need static IPs, I would ditch the gateway and buy your own modem.
by biomesh
Tue Feb 23, 2016 11:23 pm
Forum: Beginner Basics
Topic: Comcast and IPv6 Basic Config
Replies: 7
Views: 4125

Re: Comcast and IPv6 Basic Config

Here is my config. I changed the interface names to match yours. This also includes my firewall settings. /ipv6 address add address=::1 from-pool=comcast_ipv6 interface=bridge /ipv6 dhcp-client add add-default-route=yes interface= pool-name=comcast_ipv6 prefix-hint=::/60 request=address,prefix use-p...
by biomesh
Wed Jan 27, 2016 3:11 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 233926

Re: Cloud Hosted Router

Juanvi, you can use the vmware provided tool vmware-vdiskmanager for the pre deployment resizing.
by biomesh
Wed Dec 09, 2015 8:23 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 233926

Re: Cloud Hosted Router

Looks good - Now I am just waiting for the licensing to be enabled for purchase. Will there be any way to convert prepaid standard keys (level 4/5/6) to a CHR equivalent license?
by biomesh
Wed Nov 04, 2015 5:00 pm
Forum: Beginner Basics
Topic: RB2011 Comcast & Surfboard SB6141 WAN Speed
Replies: 5
Views: 1063

Re: RB2011 Comcast & Surfboard SB6141 WAN Speed

The 2011 should be able to handle up to ~200 Mbps depending on the config. The 6141 should really have not bearing on this, with the exception of what type of service you have with comcast. If you have residential, you will only get 1 IPv4 address, but you can get multiple IPv6 prefixes (limited by ...
by biomesh
Wed Jul 15, 2015 7:18 pm
Forum: Beginner Basics
Topic: Getting a /128 on Comcast
Replies: 2
Views: 1102

Re: Getting a /128 on Comcast

You don't need the /128 address to work with comcast. You will need to make sure you assign an address to your internal interface and you should set up ND too. Here is my IPv6 config that I have been using with comcast for probably a year. /ipv6 address add address=::1 from-pool=comcast_ipv6 interfa...
by biomesh
Sat Sep 27, 2014 12:31 am
Forum: General
Topic: RB2011UiAS-2HnD-IN CPU bottleneck
Replies: 14
Views: 4532

Re: RB2011UiAS-2HnD-IN CPU bottleneck

You hit the cpu limit for nat/conntrack for this device. A ccr or RB1100AHx2 would be the device you would need to get gigabit speeds.

You might just want to let the at&t router do the nat unless you want to spend $350-$425 on a new MT router.
by biomesh
Mon Jun 09, 2014 9:17 pm
Forum: General
Topic: v6.14 released
Replies: 115
Views: 31664

Re: v6.14 released

Some good changes here, including the new "ip cloud" menu
What exactly is the point of "ip cloud" when you cannot remember your dns name?
If you have your own domain, just create cname records that point to your serial number dynamic dns records hosted by mikrotik.
by biomesh
Thu Jun 05, 2014 11:39 pm
Forum: Forwarding Protocols
Topic: Cant bridge IPX traffic (novell)
Replies: 8
Views: 2607

Re: Cant bridge IPX traffic (novell)

As for IPX, NCP (which is the only common protocol that was used with IPX/SPX) had TCP/IP support added almost 20 years ago.
by biomesh
Thu May 22, 2014 9:13 pm
Forum: General
Topic: Crashplan Cloud Backup eating all bandwidth - QoS help
Replies: 4
Views: 2531

Re: Crashplan Cloud Backup eating all bandwidth - QoS help

Here are my queues. They give voip traffic the highest priority, any regular traffic the next highest priority and crashplan traffic the lowest priority. You would need to adjust to your environment (limit, max-limit, parent, etc) /queue type set 0 pfifo-limit=500 add kind=pcq name=pcq-crashplan-upl...
by biomesh
Tue May 20, 2014 10:15 pm
Forum: General
Topic: Crashplan Cloud Backup eating all bandwidth - QoS help
Replies: 4
Views: 2531

Re: Crashplan Cloud Backup eating all bandwidth - QoS help

You would have to add a mangle rule to mark the packets like /ip firewall mangle add action=mark-packet chain=postrouting comment=crashplan dscp=2 new-packet-mark=crashplan passthrough=no You would then just need to set up queues to make the traffic low priority. The issue with QOS on windows is tha...
by biomesh
Tue Apr 15, 2014 7:11 pm
Forum: RouterBOARD hardware
Topic: RB951-2n memory size reported incorrectly by routerOS?
Replies: 5
Views: 1874

Re: RB951-2n memory size reported incorrectly by routerOS?

Looks like you got a CPU bump as well. By default it have 300 mhz but you can overclock to 400 mhz. I have a few of the original ones, and you can only set them to 360 MHz (default) or 240 MHz. For a while, they had 400/300 and I think 240 options, but due to some stability issues with the original...
  • 1
  • 2