MikroTik

gotsprings

Support got back to me a few weeks later. They duplicated the problem by logging into the webserver from more than one IP. No fix yet.

Work around... Disable and reenable webserver under /IP services.

gotsprings

Could you please provide your ticket number? Now that the issue has been clearly identified and reproduced... What sort of time table can we expect for a fix? I am sure installers and integrators would love to see some sort of progress reports. The people I answer too are pretty annoyed, looking at...

gotsprings

I had exactly the same story on a big event with 12 sxt sq lite 2, it was awe full, i tried basically everything, for 5 hours, then i just moved to another brand then it worked... I was also using CAPsMAN. I am interested to know why that can happen Thank you Because some vendors can deal with inte...

gotsprings

Got email from Mikrotik. Explained the problem and how to reproduce it.

They did... And don't currently have a fix.

So high density with interference... If you see 4-way handshake time out in Caps-man...

Don't fight it. Don't mess with support. Just buy the Ruckus radio and move on.

gotsprings

Gave up weeks ago and seteled for DMZ mode.

Found Google service at this location to be "questionable" at best.

gotsprings

Could you please provide your ticket number? My most recent one... 2019052522002091 Generated MAY 25th... has not received a single response yet. I provided the rif file in the initial email. I then provided a copy paste of the log as the problem was being observed. Here is the thread that went wit...

gotsprings

If I have a problem with Mikrotik wireless... I send support files to support and hear nothing. Weeks and even months go by. The last time I got a reply on a wireless issue... I got one email per month with "suggestions". I type suggestions... Because they were NOT solutions. It was, "try this"... I...

gotsprings

For anyone keeping score... Still no email from Mikrotik support.

gotsprings

Did the Ruckus work? I've never seem something like this, are you sure there is no jammer nearby? Jammers don't show in any of the WiFi protocol scans.

I struggle to recall an install in the last 10 years that it hasn't.

gotsprings

Mikrotik wireless is THE REASON I get complaints. They can route and I love the routing. But the switches and more specifically the wireless is not up to it. Cheap is great... And it can fit some (I mean basic installs), but as a professional... I can't play around with thing for weeks. Hard limits ...

gotsprings

Mikrotik can route... Much Like a Sony TV looks incredible.

But a Sony speaker is a piece of $h!+.

gotsprings

While I have about 150 Mikrotiks out there as wireless devices... I just can't do it anymore. Just a waste of my time trying to get support to figure out what wrong with their gear. Much like I would never expect a Sony speaker to be worth a $h!+... Mikrotik wireless has let me down too many times a...

gotsprings

Done a bunch of Caps-man installs at this point. Found a lot of "hard limits"... That Mikrotik wireless is "crippled by". As long as I stayed with in the lines... Most installs went ok. Have better than 300 Meg's WAN to LAN. No Mikrotik wireless. Really busy wireless airtime. No Mikrotik wireless. I...

gotsprings

Used one. Tried on several Wireless providers. Issues with remote access on any of them...

Gave up and tried mofi.

Back to cradlepoint now.

gotsprings

There are mesh products you may have to look into, from other vendors.

gotsprings

Still nothing from support.

gotsprings

Post your wireless settings.

gotsprings

Try all the resets listed in the directions.

Last resort... Netinstall.

gotsprings

I ran a RB4011 at home as a wireless access point only, for about a month. While it suffered from the same... "Can't go faster than about 300M on speed tests..." (This has been the case with every Mikrotik Wireless I have tried.) I can't think of a time when the 5G was not accepting clients. I set t...

gotsprings

It would seem you are coming to the same findings I am. I can't get a single test to break 330 using Mikrotik Wireless. wAP AC, cAP AC, hAP AC, RB4011. This is a consistent thing. It's to the point now where I tell people flat out... "If your internet speed is above 250M we will not be able to use M...

gotsprings

Took cAP out of caps-mode. Same result. Well sort of. Log file showed unicast key time out. Went back to caps mode and added an unencrypted SSID. Devices connected for about 10 seconds. Then I got a disconnected for extensive data loss. Looked up several old posts tagged with extensive data loss. Th...

gotsprings

This seems to have come back on me. Router OS is 6.44.3 on hEX and cAP AC devices on the 2.4 radio are disconnecting from the wifi. Log into the router and check the logs and see... (MAC of Devices) disconnect 4-way handshake timeout Devices on 5Gig radio do not show this error. Last time I reported...

gotsprings

Support just got back to me and set to set the chain in Mangle to OUTPUT. That seems odd. Hello, In RouterOS you can set QoS priority 3 to outgoing VLAN packets using this rule: /ip firewall mangle add chain=output out-interface=GoogleVLAN action=set-priority new-priority=3 Best regards, Follow up ...

gotsprings

Support just got back to me and set to set the chain in Mangle to OUTPUT.

That seems odd.

Hello,

In RouterOS you can set QoS priority 3 to outgoing VLAN packets using this rule:

/ip firewall mangle
add chain=output out-interface=GoogleVLAN action=set-priority new-priority=3

Best regards,

gotsprings

That is correct, you got an IP without that line active so you could also omit that line.
but I think we are discussing a 3011 here, right?

Correct

gotsprings

Also check if your ethernet interface negotiates to the correct speed and duplex.

Status shows as Unknown.

gotsprings

That is correct, you got an IP without that line active so you could also omit that line.

Can't test because I am not even on the same continent.

Thanks for the help.

Will get someone on site to check it.

gotsprings

So in Mangle they want this? /ip firewall mangle add chain=forward out-interface=GoogleVLAN action=set-priority \ new-priority=3 comment="All other traffic with priority 3" I added it and released the DHCP-Client and got a new address. Now if I could get a bandwidth test server to let me connect.

gotsprings

First install with GoogleFiber. After looking into several documents I found that Small Business accounts ABSOLUTELY could remove the Google Router and go straight to their own router. The install I was working on was residential so Google refused to "click that switch" or help me get around the nee...

gotsprings

Using the WAP-R with T-Mobile and Verizon... Never saw better than about 11M. I have tucked tail and given in. At 579 dollars US... the CBA850 is my standard once again. Its not worth my time for the performance hits and issues I had with the MoFi. Won't "play with the WAP-R" anymore, until they get...

gotsprings

rebooted the RB3011 running 6.44 and the webserver is working again.

Support...

Could you please take a look at the file I sent.

gotsprings

Set the Mikrotik to use a DNS other than piehole... Like 8.8.8.8, 1.1.1.1.

Then in your DHCP server... Set the DNS value under network to be piehole, Mikrotik.

If piehole doesn't work... The client will ask the Mikrotik.

gotsprings

Dumb switch and both routers being independent won't go well with the requirement to control other router's bandwidth (on first router, as I undertand it).

Which should be done per router.

But let's face it... This could / should all be done on one router.

gotsprings

I use recursive routing and ping one if the DNS servers with netwatch. When it goes down... I use the connections flush method. Works perfectly.

gotsprings

Put a dumb switch infront of the two Mikrotiks. $30 or less.

gotsprings

Sent a support file to Mikrotik about 8 days ago.

What gives?

gotsprings

@gotsprings yeah it would be great if routeros had something like mesh tunneling or "SD-VPN". something like tinc would be great, but before that, ovpn with udp ;) I meant... SUBSCRIBE TO BIG LEAF'S Service. I only dealt with them on one install so far. The customer found them himself. BigLeaf take...

gotsprings

Bigleaf sd-wan

gotsprings

Thanks for the replies. No Verizon coverage is going to be a deal breaker for me, so I ordered a Sierra Wireless MC7455 card. Will RouterOS recognize this, or is there a way to install drivers? Kind of late... But that same wAP LTE KIT-US I used on T-Mobile. Is now running on Verizon wireless. I ha...

gotsprings

I'm actually very happy with the hAP ac2. My home is of wood construction, is single story, and about 185 m^2. We have a couple of tablets, a couple of smartphones, a couple of laptops, and an Amazon Fire stick on the TV. We occasionally have house guests that add another 1 or 2 phones and perhaps ...

gotsprings

I have 2 RB3011s that the webserver seems to have stopped responding. Winbox works. I can put a firewall rule in as a pass through and see the connection come in. But I see no response. Both running 6.44 Anyone seen something like this before? (I normally turn off the webserver... but this site requ...

gotsprings

https://youtu.be/SrDSqODtEFM

gotsprings

@anav: Give it a break with in-interface, dst-address is fine. Sorry I usually talk myself through config rules. Where are you coming from my sweet little packet and so forth . :-) Is there a situation where stating in-interface=eth-1 wan could be a problem (not including multi-wan setups)?? Yes......

gotsprings

OVPN has been "Broken" on Mikrotik for as long as I have been working on Tiks.

IPSec works well.

You should do an export of your firewall. As I stated above... your PAT (Port Address Translation) in the NAT chain "looked right".

gotsprings

ANAV As I put in that other thread you comment in. I wrote that script to UPDATE THE LOCAL IP ADDRESS ON EACH ROUTER. The EoIP tunnel configuration accepts the IP cloud address and updates it with in 70 seconds on a change. The script I wrote needs a scheduler to run it. But it checks to see if the ...

gotsprings

Hey gotsprings Question: my lte suffers from frequent lte disconnects, which most of the time the modem resolves itself, but sometimes it can't and I need to recycle (stop-start) lte interface to resume connectivity. That the reason why I have netwatch to monitor remote ip. Do you experience simila...

gotsprings

I don't use quickset...

But from what you posted... looks like it is setting up the VPN connection to get a 192.168.89.0/24 address.

If this was allowed in the firewall... you would be able to reach your local network unless SPECIFICALLY blocked.

gotsprings

I would say to not use interface lists and try doing the firewall with interfaces or address lists.

Its more than doable.

gotsprings

You are welcome.

You might want to select my answer as accepted so others can find it quickly.

gotsprings

Those look right.

Search found 722 matches