Community discussions

MUM Europe 2020

Search found 21 matches

by sigmasquared
Thu Dec 19, 2019 2:58 pm
Forum: General
Topic: Block Play Store / Android Updates
Replies: 14
Views: 15697

Re: Block Play Store / Android Updates

How are you populating address-lists ?
Using mangle. On prerouting it adds the IP address to an address list when the URL is looked up.
by sigmasquared
Thu Dec 19, 2019 5:47 am
Forum: General
Topic: Block Play Store / Android Updates
Replies: 14
Views: 15697

Re: Block Play Store / Android Updates

Resurrecting an old thread here, but I use address lists to block this. Much less intense on processing than L7. I have a situation where if I switch to LTE from fibre, I don't want Google Play, Youtube, Windows Update, Netflix, Steam etc accessible as I'm on a pay-per-gigabyte LTE package. Example ...
by sigmasquared
Wed Feb 27, 2019 9:12 am
Forum: General
Topic: Feature request: MQTT Subscribe/Publish
Replies: 5
Views: 2235

Re: Feature request: MQTT Subscribe/Publish

I'm using NodeRed to parse syslog messages and publish event/values to MQTT (wireless clients/dhcp lease)
I'm using SNMP at the moment but it is terribly unreliable. Really would like to just have the router comm on MQTT without a "middle-man".
by sigmasquared
Sun Dec 30, 2018 4:53 pm
Forum: Beginner Basics
Topic: Openvpn does not work on the iphone.
Replies: 9
Views: 5255

Re: Openvpn does not work on the iphone.

And after a whole afternoon of battling it would appear that I accidentally disabled the secret on the Mikrotik which was the cause of my connection resets. OpenVPN now working. Steps taken: 1. Export client certificate as PKCS on Mikrotik, CA certificate as PEM. 2. Create .ovpn file with CA cert em...
by sigmasquared
Sun Dec 30, 2018 4:24 pm
Forum: Beginner Basics
Topic: Openvpn does not work on the iphone.
Replies: 9
Views: 5255

Re: Openvpn does not work on the iphone.

So a bit more food for thought, here's an article re iOS. I'm currently seeing how I can get everything going in keychain for the certs.

https://openvpn.net/vpn-server-resource ... nnect-ios/
by sigmasquared
Sun Dec 30, 2018 4:07 pm
Forum: Beginner Basics
Topic: Openvpn does not work on the iphone.
Replies: 9
Views: 5255

Re: Openvpn does not work on the iphone.

Been trying to get this working most of the afternoon, have made some progress but getting a different error. How I made progress: Export the client certificate from the Mikrotik as a PKCS12 cert instead of PEM. In your .ovpn file, instead of the cert cert_export_client1.crt key cert_export_client1....
by sigmasquared
Thu Nov 29, 2018 12:55 pm
Forum: RouterBOARD hardware
Topic: Routerboard Spec Recommendation
Replies: 6
Views: 1137

Re: Routerboard Spec Recommendation

Thanks! Shall add the fasttrack and see how it goes, and will look into tls-matcher.
by sigmasquared
Thu Nov 29, 2018 9:49 am
Forum: RouterBOARD hardware
Topic: Routerboard Spec Recommendation
Replies: 6
Views: 1137

Re: Routerboard Spec Recommendation

Not looking to manage bandwidth, it's more to block the address lists of Netflix, Steam etc on a corporate network. /ip firewall mangle add action=add-dst-to-address-list address-list=WindowsUpdate \ address-list-timeout=5m chain=prerouting comment=\ "Identify Windows Update Address List" content=\ ...
by sigmasquared
Wed Nov 28, 2018 3:15 pm
Forum: RouterBOARD hardware
Topic: Routerboard Spec Recommendation
Replies: 6
Views: 1137

Routerboard Spec Recommendation

Hi all, wondering is someone can perhaps guide me. A client has an HP N40L Microserver running RouterOS x86 (AMD Turion II 1.5 GHz processor). They have around 40 users on a 300mbps uplink. They use around 30 mangle rules (checking content on prerouting) for adding sites like Netflix, Steam, iTunes ...
by sigmasquared
Tue Aug 07, 2018 1:08 pm
Forum: Beginner Basics
Topic: Mqtt publisher
Replies: 5
Views: 3716

Re: Mqtt publisher

Have placed a request in the feature request forum.

viewtopic.php?t=137766
by sigmasquared
Tue Aug 07, 2018 1:07 pm
Forum: General
Topic: Feature request: MQTT Subscribe/Publish
Replies: 5
Views: 2235

Feature request: MQTT Subscribe/Publish

It would be great (and I believe adding a feature that a whole community would use) if Mikrotik could add an MQTT subscriber/publisher to RouterOS for scripting. This would allow for some fantastic home automation triggers to and from a Mikrotik router - something which is becoming more and more pop...
by sigmasquared
Sat Jun 09, 2018 6:36 pm
Forum: Beginner Basics
Topic: Mqtt publisher
Replies: 5
Views: 3716

Re: Mqtt publisher

Huge +1 on this, toggling scripts by MQTT and publishing outputs would be epic epic epic.
by sigmasquared
Sat Jun 09, 2018 6:34 pm
Forum: Scripting
Topic: Extracting value after s in SNMP script
Replies: 1
Views: 808

Re: Extracting value after s in SNMP script

Also very keen on this. I'm trying to switch a guest wifi interface on and off from Home Assistant, I can write to the SNMP but it gets rather clumsy as it's a toggle without feedback. If the SNMP value could be passed to a variable in the script I could use proper payloads to affect the script.
by sigmasquared
Fri Apr 14, 2017 3:05 pm
Forum: Wireless Networking
Topic: Onion Omega2+ Cannot Connect
Replies: 0
Views: 546

Onion Omega2+ Cannot Connect

Not sure if this is a fault on Onion's side, or a fault on Mikrotik's side, but it seems the Onion Omega2+ devices just cannot join a Mikrotik AP. Any advice or thoughts from anyone who has tried the same? I'm on a Routerboard 751G-2HnD, firmware 3.33, software 6.38.5. The Omega unfortunately gives ...
by sigmasquared
Wed Feb 17, 2016 10:03 pm
Forum: General
Topic: Mikrotik and Amazon SES
Replies: 0
Views: 397

Mikrotik and Amazon SES

Hi all, I'm trying to use Amazon SES as an SMTP server for my Router. I have set up the e-mail section under /tools with the dns address for ses. On test emails, the ip of the smtp server is looked up at that given time, and I can send a test successfully. I then configured a logging event to email ...
by sigmasquared
Sun Jan 20, 2013 8:31 am
Forum: General
Topic: cant get dual WAN to work with proxy
Replies: 6
Views: 1972

Re: cant get dual WAN to work with proxy

On further playing around it looks like the Web Proxy strips the routing mark. If I add an additional gateway that does not have a routing mark, browsing then works again through that gateway. Is there a way I can force traffic from the proxy to another gateway, while not forcing the rest of the tr...
by sigmasquared
Thu Jan 17, 2013 8:45 am
Forum: General
Topic: cant get dual WAN to work with proxy
Replies: 6
Views: 1972

Re: cant get dual WAN to work with proxy

On further playing around it looks like the Web Proxy strips the routing mark. If I add an additional gateway that does not have a routing mark, browsing then works again through that gateway. Is there a way I can force traffic from the proxy to another gateway, while not forcing the rest of the tra...
by sigmasquared
Thu Jan 17, 2013 7:51 am
Forum: General
Topic: cant get dual WAN to work with proxy
Replies: 6
Views: 1972

Re: cant get dual WAN to work with proxy

I'm doing the same kind of setup, and have for the most part succeeded, however the Proxy breaks the config (I suspect it is something to do with the mangle vs the NAT redirect, but I can't put my finger on it). If I leave the transparent proxy rule out within the NAT section, everything works like ...
by sigmasquared
Wed Dec 12, 2012 9:33 pm
Forum: General
Topic: Huawei E303 HiLink
Replies: 8
Views: 16034

Huawei E303 HiLink

I've seen various threads going around on these modems, and I've been having a fair share of issues. In 5.16 it would be detected, but have no ports (it uses NDIS and a web front end). In 5.20 it was detected, and showed up as a USB port (yay! I can add a ppp interface, same for 5.22) However - No j...
by sigmasquared
Wed Nov 28, 2012 6:28 am
Forum: General
Topic: using Usb-Ethernet Adapter
Replies: 4
Views: 1415

Re: using Usb-Ethernet Adapter

Same problem on x86 with the DUB-E100 on 5.21. Specifically purchased this adapter as it is listed in the Supported Hardware section, clearly there is some regression or D-Link has changed the internal chipset.

Any plans for fixing? I see this is up in various places online.
by sigmasquared
Wed Sep 19, 2012 12:33 pm
Forum: General
Topic: Winbox wont always connect, usaully can still HTTP
Replies: 17
Views: 2239

Re: Winbox wont always connect, usaully can still HTTP

Getting the same on an RB750, winbox freezes, webfig still available, however now and then the passwords stop being accepted in webfig as well. Have to reboot the board before I can access again. Will be upgrading to 5.20 this evening, on 5.11 at the moment, but nothing in the changelog referring to...