MikroTik

SimonThomasen

If the list is like >3000 entries, i found that removing the entire list in 1 command will make cpu go very high for a few seconds. So, can delete them in 255 steps with a 100 ms delay in between. Will push it up to 25 seconds, but CPU will be a lot lower. This SHOULD work. Remember to change the li...

SimonThomasen

haha, i was very very impressed with the RB3011's 0% cpu....until i looked at the firewall counters :P Kinda funny. Config is very very long, and works on other routers. Including other routers with 2 switch chips. But no config can make /ip fi nat ignore rules when you just flap the addresses off a...

SimonThomasen

Got 2 RB3011's today, which I upgraded to 6.46.8 Then my MASQ rule would not work! And i could not make it work. Then i started disabling+enabling rules and IP addresse and Routes - THEN it suddenly startet working after 2 minutes. after this, i saw my filter address lists was ignored. Counter was s...

SimonThomasen

32 volts....... :o :o) :o)
Unless you are sitting in a tent somewhere and have a truck batteri plus a car battery hooked up to it........

SimonThomasen

The NAS just uses your default gateway on the network.

Does your gateway knows what IP's to route through VPN?

SimonThomasen

You can increase power (unless already running default power), but that will only increase the router-to-device range - not the device-to-router range - the devices will not be able to transmit back. What you do get with higher power though, is also, that the devices will think that its close - when...

SimonThomasen

Untested, but i have tested the pinging, that works. Sending and receiving a port knock based on 2 ICMP packets. Stage 2 must follow within 10 seconds of stage 1: Sending 2 ICMP packets of specific sizes: ping 11.11.11.11 count=1 interval=1 size=2101 :delay 1 ping 11.11.11.11 count=1 interval=1 size...

SimonThomasen

If you wanna ping a Windows from a Windows, use ping -4 to get the normal IPv4 address, They discover eachother, with no need for the DNS server If you want to be able to ping other devices using the DNS Server, then there is the problem - the DNS server in the Mikrotik is not updates automatically ...

SimonThomasen

Hm yeah where is it getting 34v :O
I use 24V when using PoE over more than a few metres, 12V normally'

or what is it really getting? Is it really getting 32V or is that the abnormal reading?

SimonThomasen

Ping it from windows and see what the TTL is. If it's for example, 30: On that route, set scope to 64 and target scope also 64. Or try higher. Until it says "reachable recursive". Windows has automatic scope. Mikrotik does not. So funny. So we have to work extra and do it manually. But it ...

SimonThomasen

I use the comment field to uniquely identify one rule in scripts,
i.e.

/ip firewall filter
enable [ find where comment = "rule to block muppets"]

SimonThomasen

"Allow out of range" suggests thatn it's not the ban-time, but the time before kick, when out of range?

Have been unable to find this in the wiki - another undocumented feat.

SimonThomasen

Sounds like we are doing the same thing. I already wrote there is no MASQ on the interface/IP I am using. I can force it to work by using the routing-mark in the ping command, to use another interface+ip. But that is the ONLY thing that will make it work on my end. I will test later with different o...

SimonThomasen

[flash=][/flash]Trying to either push or pull a file from a server on/off a Mikrotik; Getting ERROR: CODE 5 (and it loops) Why are there errors not documentet?? Been unable to google it. WASTED an hour testing with max-block-size=mtu-32 on the MIkrotik (1468), also tried 1024, Its not file not found...

SimonThomasen

There's no freeze button, not to freeze the list, but to stop it from jumping around like crazy.
Kinda hard to follow a connection for more than 2 seconds when the list keeps scrolling all the time.

SimonThomasen

Yeah thats why i tested, i created a seperate VLAN interface on both routers with other adddresses (my MASQ rule only applies to ETHER1 not the vlan)
Routing/gateway takes priority over src-address in ping command.

SimonThomasen

This bug has been reported in 2009. i need this to WORK. Ping command ignores src-address. Tested as of today, in year 2020, ROS 6.476.7.. Without any preferred source in my routes..... https://forum.mikrotik.com/viewtopic.php?t=33051 It works if you use routing-table = and set up a seperate routing...

SimonThomasen

read+Write 1 line of text, append to text file, to not have to read/write the whole file

SimonThomasen

Of course You can do anything with a network of Mikrotik routers if you put a big computer next to them and use PHP/PERL/Delphi/Putty/Whatever to control them using API/Telnet/FTP; But thats not the power of Mikrotik. It's the only router that I know of (apart from a LInux box) that can be scripted?...

SimonThomasen

Why? To download the RSC from another router and have it automatically imported there :)

But since it is put in a string, the limit here is 4 kilobytes - am I right? because a complete write with "file set" is used -

What other ways are there to write to a file, to append to it??

SimonThomasen

EDIT: Disabled arp-ping parameter (arp table is not updated) and increased ARP timeout You're absolutely right :) I have already done that. Dura minus 1 sec. However, IP-scan seems inherently unstable. It doesn't find all hosts in the first run. I'm doing something else now - that isn't an interacti...

SimonThomasen

You can pipe output from interactive commands in scripts using EXECUTE It WORKS - but since it is interactive, and it is terminal-formatted output and not pure text output, you get several copies in the file. Something to be worked on. { # Remove output file from last run if any /file remove [find w...

SimonThomasen

2019 and MikroTik LTAP still only connects less than half the times it's rebooted or the LTE interface is disabled/enabled. Or after a full minute of waiting.
My 10 year old Nokia phone connects to 2G/3G after 1-2 seconds. Every single time.

SimonThomasen

Wow, last post 2017. This is 2019 and the LTAP still only connects 1 in 3 times after a reboot. Or after a Disable/Enable of the LTE interface. Tested with latest ROS - which does not seem to have a fix for the problem. Buying a MikroTik LTE antenna did boost my speed to 70-80 MBIt, but the initial ...

SimonThomasen

In my case it was caused by MAC conflicts caused by Virtual WLAN interfaces, that are created sequentially. So if you have 2-3 routers that have been purchased together, their MAC address are very close, so creating 4-5 Virtual adapters on each will cause them to overlap. Check them out. My solution...

SimonThomasen

1xRB1100ahX2, 1 x 751G, 2x951G All with wifi, radius-client, pptp-client, ipsec-client excep the 1100. No probs so far. Wireless statistics also good. Also upgraded over 60 RB912UAG's - no dead ones, no Wireless configs destroyed, no high-cpu on Graphs etc. So far very very good compared to prev rel...

SimonThomasen

In my experience - if Unicast is the _only_ error You are getting = password / auth-setting error
If You are also getting a mix of Group key disconnect, Data Loss disconnect etc = too bad signal / noise / whatever Communications problem

SimonThomasen

Check the CPU usage. I've found that having the LCD display enabled on some models of the 2011 consumes a lot (50+%) of CPU. This would limit all kind of traffic. - Try disabling both LCD and Touch. Band: 2GHz-OnlyN ( /int wi set 0 band=2ghz-onlyn ) HT: All chains enabled ( /int wi set tx-chains=0,1...

SimonThomasen

Hiya!  People, and myself, have seen 2 Mikrotik’s close to eachother choose the same frequency when on “Auto” – even when I force a re-scan on both with a 10 second time delay between them (so they don’t do it at the same time). I found out why; Am I correct in assuming that the Auto-freq feature i...

SimonThomasen

I've had trouble in the past with HW Protection mode = cts/rts with iPhones not being able to connect.
Haven't had any trouble with "CTS to self" mode - I would recommend using that, if there are many clients on the AP and too much traffic becomes a problem

SimonThomasen

Hello everyone, I have 25 RB951G's on a school serving roughly 15 rooms with 20-25 student per room. Average number of connected devices per room is 30-35. For obvious reasons I have added a number of RB411 running 5GHz to pull the load away from the 2GHZ band, but the 2GHz band is still overloaded....

SimonThomasen

In many cases a Routerboard rebooting over and over can be caused by a loop - either external (cabled loop) or internal (like f.eks. VLAn's bridged wrong together causing a traffic loop).

Search found 32 matches

Re: delete address-list the best way

Re: RB3011 acting strange. Firewall filter/NAT not working

RB3011 acting strange. Firewall filter/NAT not working

Re: RB912 health is abnormal !!

Re: Forcing IP to VPN interface

Re: RB951G-2HND - improve wifi range.

Re: Portknocking by script.

Re: ping by hostname

Re: RB912 health is abnormal !!

Re: Reachable gateway marked as unreachable

Re: enable/disable a Firewall rule in terminal or script

Re: Basic WiFi roaming in SoHo

Re: Old bug, PING SRC-ADDRESS does not work

TFTP ERROR: CODE 5 from Microsoft TFTP

Freezing ip/firewall/connection screen scrolling?

Re: Old bug, PING SRC-ADDRESS does not work

Old bug, PING SRC-ADDRESS does not work

Re: Built in function library

Mikrotik Scripting needs to be useful! Requests!

Re: IP address list export script

Re: Parse ip scan output

Re: Parse ip scan output

Re: v6.42.11 [long-term] is released!

Re: wAP LTE kit connecting problem

Re: Bridge port received packet with own address as source, probably loop

Re: v6.37.4 [bugfix] is released!

Re: unicast key exchange timeout

Re: Mikrotik RB2011UAS-2HnD-IN wifi performance issues

Auto Frequency problem

Re: Not all devices would connect to my AP

Indoor AP's - Adjusting noise floor?

Re: RB951g restart again every 5 s