MikroTik

gotsprings

Normis Look at a default router. hex hap whatever. /ip dhcp-server network Whats right there in the dns entry? As for comment about get someone to respond to my support tickets... they refer to 2.4 Radios suddenly deciding to go into a "stuck beacon" like mode. I have send support files a few times ...

gotsprings

For a cap...
/system package update install
/system routerboard upgrade
y
/system reboot
y
/system reset-configuration skip-backup=yes caps-mode=yes

Thats all that you should need to do on a cap.

gotsprings

Normis. How about you get someone to actually look into my support tickets. As for not using quickset. If you use quickset you will notice that /IP DHCP-server doesn't include DNS entries in the client info. Yesterday someone else used quickset to change the IP scope. When I logged in the ether-1 of...

gotsprings

Use quickset and set the IP scope. First thing you notice... No DNS entry in the DHCP-server.

gotsprings

Never ever use quickset!

gotsprings

No solution and no interest in replying from support.

gotsprings

NEVER EVER USE QUICKSET!

gotsprings

Routing is not enabled by default on a CAP AC. The default out of the box set up is as a WAP. So connect it to your router... and used it as a wireless access point.

gotsprings

Sumitted another ticket. They merged it with the last one then proceeded to ignore me again.

gotsprings

The support for wireless is non existent.

I have submitted multiple tickets and rarely get any response from Mikrotik.

I include logs and support files and still nothing.

Mikrotik can route... But I don't know what is up with the wireless.

gotsprings

Saw another with the same sort of issue. Replaced it rather than waste time.

When the 1st unit comes back to me... I will take a closer look. Field tech is going to swap for one I have at the office.

gotsprings

CRS125. 6.38
Router was hard reset from the button.
Router was defaulted with no config.
Firmware was placed in the files folder.
Wouldn't install it.

Replaced with another CRS125 RouterOS updated just fine.

Getting a 750GL with a similar problem dropped off at the office so i can check it out.

gotsprings

Downloaded the latest firmware and placed it in the files menu.
Reboot.
Nothing... doesn't install.

Anyone else seeing this?

gotsprings

Not sure what the mistake here was.... There are 4 Access Points being controlled by caps-man. /caps-man actual-interface-configuration disable [find configuration.ssid~"Guest"] Running that turned off the Virtual APs that provided the guest network However... it also turned off the WAN interface. T...

gotsprings

Been through the same thing... I finally have the hAP AC2 getting around 300Megs of throughput. When it first came out, it struggled with 30. LOTS OF FIRMWARE AND ROUTEROS VERSIONS IN BETWEEN. The hAP AC and wAP AC seem to be CPU limited to about 180Megs. The cAP AC at my office seems to sit right a...

gotsprings

I have 2 rules at the top of the filter chain to dump ALL TRAFFIC from IPs that hit any port I deem "interesting" in mangle prerouting.
The mangle rule adds them to an address list for 24 hours.
Then the drop rule drops that address list at the top of the firewall chain.

gotsprings

02:13:27 caps,info 00:1F:B8:20:3B:06@Kitchen2.4 reassociating 02:13:27 caps,info 00:1F:B8:20:3B:06@Kitchen2.4 connected, signal strength -82 02:16:24 caps,info 00:1F:B8:20:56:FE@Kitchen2.4 disconnected, received disassoc: sending station leaving (8) 02:28:42 caps,info 00:1F:B8:20:3A:59@NEW_LVR_2.4 r...

gotsprings

I have sent email to support and all I got was... try putting it in standalone.

I sent the support files and they didn't even look at it from what I can tell.

gotsprings

normis?

gotsprings

Anyone?

gotsprings

First... Connect to the windows VPN. Do whatsmyip.org Disconnect windows VPN Connect to Mikrotik to VPN Do whatsmyip.org Do the numbers match? I found with expressnet... That they did not. Windows client was openVPN, and connected to a different server than the IPSec one. So if a service provider ba...

gotsprings

Does the express VPN client use THE SAME SERVER as the mikroitk? As I pointed out... some servers get banned from a service. I tried about a dozen servers before I found one that was not blocked by netflix. I was in the US... but the client "had heard about VPNS being safer." So he wanted us to make...

gotsprings

Use this as a basis... https://support.hidemyass.com/hc/en-us/articles/204558497-Mikrotik-Client-Setup Change the info to using expressVPN and l2tp+Ipsec. But this is what I used and it worked. The problem is that the servers would get banned again and you would need to try several servers to find o...

gotsprings

You need to make sure that all data is forced over the VPN connection. And that the client requesting the info from expressVPN DOES NOT HAVE A GPS UNIT IN IT / OR THE GPS IS SPOOFED OR TURNED OFF. (Dealt with this months ago.) After I got the expressVPN to work with l2tp+ipsec and a server that was ...

gotsprings

I have an install where there are 3 wAP ACs in a building. All 3 are set up in caps mode. All 2.4 radios have been assigned 20 mhz channels on non overlapping frequencies (1,6,11). devices in one part of the building will suddenly "stop working". Going into the caps-man router and looking at the log...

gotsprings

If your webserver on the Router is turned off... none of these CVEs are exploitable? Also the word "authenticated" was used a bunch of times. 1. Yes 2. It means that a RouterOS username and password must be known. The user must log in. Then they can cause www server to crash. Basically this applies...

gotsprings

If your webserver on the Router is turned off... none of these CVEs are exploitable?
Also the word "authenticated" was used a bunch of times.

gotsprings

I get not "supported channel" when I try to set a 5ghz radio to a 2.4 frequency.

gotsprings

in mangle...

First you have to mark the connection as it came in.
Then you need to use that mark to mark routing.
Then you use that routing mark to output.

The a route that matches that routing mark.

gotsprings

If you're in the US, Baltic Networks usually has pretty good deals, such as 10% or more off Mikrotik's MSRP. https://www.balticnetworks.com/mikrotik-hap-ac2-dual-band-desktop-ap-us.html It's out of stock right now but you can still pre-order. Baltic is my regular source for Tik. But they can be out...

gotsprings

You left out
/IP route

gotsprings

That guy on Amazon only started gouging once noone had any stock.

Roc-Noc always lists the market price as higher than retail.
Not found of that sort of practice, so I don't order from them... anymore.

gotsprings

SXT has dual Sims. But no WiFi.
So SHOULD???

gotsprings

Thanks for update gotsprings!!! I was looking something modem/router 4g/lte based on mikrotik (2in1) for remote client to get connected to internet without dedicated 4g/lte modem + extra tik router. So i am guessing i will need to try same setup like you have and see how it goes. Hope it will work....

gotsprings

So caps-man doesn't consider the unit disconnected. /caps-man registration-table> print stats 0 ;;; Digital Loggers interface=cap2 ssid="My SSID" mac-address=7C:E1:FF:02:35:85 tx-rate="43.3Mbps-20MHz/1S/SGI" rx-rate="65Mbps-20MHz/1S/SGI" rx-signal=-61 uptime=1d13h46m1s270ms packets=97101,114406 byte...

gotsprings

T-Mobile got me on 4G here in the DC Metro Area. Didn't give me any complaints about putting it on a prepaid plan. Used it on and off for the month and now its expired. I had to manually enter the APN info. Before I did, the connection seemed "flakey". Once I entered the T-Mobile info... I could eas...

gotsprings

Can we use RBwAPR-2nD&R11e-LTE as modem/router for 4G/LTE connection ? I bought one and tested it on T-Mobile in the US. After I added the APN... the unit connected to the T-Mobile Network and worked like any other Mikrotik router. I used the wireless on it and it was a typical 2.4 Ghz radio. I wen...

gotsprings

If I understand this correctly.... The hAP is a "Wireless Bridge" to the UniFi WAP? You are using the 5Ghz radio to connect the hAP to the UniFi WAP's 5GHZ radio SSID? You want devices connected to the hAP to "get an IP from the UniFi router and be in that subnet"? Once you connect the hAP AC to the...

gotsprings

I am a big fan of webpower switches for cycling locked up modems. They save me from so many phone calls. Digital Loggers has put out a webpower switch with a wireless interface. https://dlidirect.com/products/new-pro-switch Just out of curiosity... I put the DLI on my wireless network. (Just for pro...

gotsprings

One of the routerOS updates KILLED the ability to run a script from netwatch.

Solution... put the entire script in netwatch in the up or down field.

gotsprings

Export your firewall and maybe we can figure it out.

/ip firewall filter export

gotsprings

- Implement a good firewall according to the article here: https://wiki.mikrotik.com/wiki/Manual:Securing_Your_Router When you setup a default NAT, it looks like that all service port are blocked from the outside. Do I still need to specify for where Windbox should be allowed? /ip service set winbo...

gotsprings

Tippenring.

I was agreeing with you. The logs were proof that 2 different attackers had the password from before the upgrade

gotsprings

Is there anymore detailed information than the old blog post? I've seen numerous routers running 6.40.8 bugfix get compromised in the last few days. Winbox was externally accessible. On Friday I updated a couple older routers that had not yet been compromised that weren't on 6.40.8 to 6.40.8, only ...

gotsprings

Try EoIP and add routes to put traffic in the tunnel. Provides for better encryption and deals better with MTU.

gotsprings

I made this to look for the common stuff. (Copy and paste into terminal.) ... Open you log and look at the results. If you have a result with "!" you might have a problem. That's not really usable, is it? Besides, you still need to fix it, and upgrade afterwards. Methinks, better to check and fix a...

gotsprings

i have found one of my customers router infected. How can i clean it remote? I have changed the socks port to default and diabled. I have not found another user like admin. The passwort is changed. But in the files are the mikrotik.php. If i delete this, after 5 seconds its new. Firmware now is 6.4...

gotsprings

I made this to look for the common stuff. (Copy and paste into terminal.) :if ([/ip socks get port] = 1080) do={:log info "Socks port is still Default."} else={:log info "Socks Port changed Possible infection!"} :if ([/ip socks get enabled] = false) do={:log info "Socks is not on."} else={:log info ...

gotsprings

anyone figure out the password for user="service"?

gotsprings

In the NAT rule...
You didn't define a dst-address.

In the Filter rule...
That is a forwarding rule in the /ip firewall filter
input terminates at the router.

Search found 581 matches