MikroTik

doneware

Whats about smaller Channels?

you can be OK with this channel mapping. you can have the 100Mbps clients run the same high MCS, and ultimately serve more safely and do buffering on the FE part. i'm more interested in TDD - cause this is the key to boost client numbers.

doneware

channel capacity is so much higher than what we can use currently. let's be easy with that. if you can't have more than MCS9 (SC), then 1Gbps is just ok. .11ad doesn't have channel bonding, so in general you couldn't use the available extra juice anyway. .11ad has at least channel bonding, they sai...

doneware

chipset limit is 8 there was a press announcement from Qualcomm and Mikrotik back in october around the 17th or so, emphasising Qualcomm's upcoming QCA64x8 and QCA64x1 chipsets, promising .11ay. https://www.qualcomm.com/news/releases/2018/10/16/qualcomm-dramatically-extends-wi-fi-experiences-5g-era...

doneware

the 4011 doesn’t have 2 sfp+ ports, but you can squeeze out way more than 1gbps. and it has no fans. there is one thing i don’t quite understand: 10Gbps internet connnectivity for home? this is quite an overkill square! but let’s assume you need this bw, but why’d you place the router into your livi...

doneware

the EU doesn’t certify anything. the just pass the laws, and the technology working groups create documents describing the requirements the device mst comply. testing is usually done by the vendor or an independent lab. then you put together the documentation with the results. but each country in th...

doneware

in general you don't have specificly LAN or WAN ports in routeros. those are just ports, and they act as you configure them. you can have all ports as wan if you wish so. with regards if throughput: you can get 1Gbps pppoe+routing+nat with hex, hex-s, hap ac, hap ac2, 4011 and anything of the ccr se...

doneware

Ok, so I managed to get the SFP to work. Turns out, you need to force it to 1000M by turning off auto negotiation. Furthermore, you need to power down the CRS, plug in the SFP, and then power up the CRS. It might take a few power down/up cycles, but eventually, the CRS will bring the SFP up and it ...

doneware

If so, it it possible to remove the supplied 1.5dBi antennas and upgrade them to something more substantial? i added external LTE antennas a while ago to one. there is a good pdf describing the process with some internal pictures on mikrotik's hw section https://i.mt.lv/cdn/rb_files/Ltap_guide-1807...

doneware

subscriber-number: +CME ERROR: 100

btw, this translates to:

CME ERROR: 100 Unknown error

source: CME ERROR (GSM Equipment Related errors) - https://www.micromedia-int.com/en/gsm-2 ... ted-errors

doneware

/interface lte info 0 once the look for the uicc device info: RouterBOARD wAP R-2nD, 6.42.9 (long-term) as per experience, uicc is only available in 6.43+ Need to get a phone number if you're looking for MSISDN (i.e. the number you dial), as far as i know you can't. you can query the IMSI, which co...

doneware

and usually the same filtering applies as with IPv4 on the MNO side: you can not reach the endpoint over ipv6 if the device just connects to the internet via the mobile operators. they just allow sessions that have been initiated by the mobile end device. so in general it’s not just the NAT that sto...

doneware

and finaly you can get ipv6 address for this device? yes, your MNO must support dual stack or ipv6only access, and the sim card (i.e. your mobile subscription) must be also ipv6/DS enabled on a particular APN you want to connect to. you should know that most (if not every) operator just provide a /...

doneware

yes,
i have both devices (ltap mini, wap lte kit) in operation running 6.43 with dual stack on lte interface.

doneware

consider the following code: admin@mfx-XXXXXXXXXXX] /system gps> :global ttt [/interface bridge host print detail as-value where bridge=bridge1 ] it produces this variable data: [admin@mfx-XXXXXXXXXXX] /system gps> :put $ttt .id=*23;age=00:00:54;bridge=bridge1;comment=;interface=*7;mac-address=00:00...

doneware

those cards are essentially USB devices. your wi-fi is a PCIe device.

check under /system routerboard usb what is set as type. it shall be mini-PCIe

[admin@router] /system routerboard usb> set type=
USB-type-A mini-PCIe

this is just a wild guess, i faced similar issue with a basebox

doneware

i don't understand the outrage about the switch chip functional. with the recent (6.41) bridge changes you can easily do whatever you require on these "more router-ish" devices. stuff will be done in hw, whenever it is possible, and here we have a quite beefy CPU to deal with. yes, it would give mor...

doneware

I'm desperately looking for one with WiFi in Europe

this is a non-wifi unit. i was also told that wireless ones are almost impossible to come by for now.

doneware

sorry for the delay, i have a bunch of other things to focus on. but here's something many were curious about. yes, it does work with DAC cables.

dac4011.png

doneware

just tested a 4011 - i paired it up with a CCR1009-8G-1S-1S+ using GE only. with regards to its single-core CPU performance, i'd say it is at par with the 1.2GHz tilera core, or i might say it is superior just a tiny little bit. i tested it for a project where we use a cr*pload of tunnel/encapsulati...

doneware

I do not see any security problem with this

ok, what abouth the command

/user set admin password=dragon

or doing the same for your bgp passwords, ipsec secrets, etc

doneware

but yeah, at lest the object name in question could be included in the message.
i asked the same with system history

doneware

sadly logging a complete command could ezpose sensitive information to
- all cli/winboz users
- anyone who has access to the syslog server
- anyone who can intervept the traffic between the router and the syslog server, as syslog communication is not encrypted

doneware

Without an example we can not comment why you are not being able to import .rsc file. in case of big export files you can run into situations, when the next command is just not accepted. like you add an object as nameA, then try to set something on the same object by its name, and CLI responds as "...

doneware

Why can't device-specific stuff like MAC-addresses simply be removed from the backup files? i'd like to have something like '/sys backup load name="filename.backup" password="dragon" keep-mac-addresses=yes or an ability to auto-run commands upon successful restore (like a cli command to restore ori...

doneware

yes, 1 file slot per router and it is free for all the platforms that can use IP Cloud will there maybe an API we could use to interact with the backup file? my aim is to have a "remote controlled" set of CPEs... i make changes to the "cloud-twin" and it is (pulled) "replicated" to the physical one...

doneware

Just ran into this issue today.

opened a support request for it earlier today:

Ticket#2018090722004616

doneware

rfc 6286 - AS-wide Unique BGP Identifier for BGP-4 support for routerOS BGP. it relaxes some strict definitions: routerid can be now an arbitrary 32 bit unsigned integer, while the older definition restricts it to "valid unicast address". this breaks BGP compatibility with mikrotik devices right now...

doneware

you can use these: https://www.ebay.com/itm/222636570847 it uses prolific PL2303 usb to serial chip, which is supported by RouterOS. then you just use routeros' built in rfc2217 serial over tcp feature described here: https://wiki.mikrotik.com/wiki/Serial_Port_Usage#Accessing_a_serial_device_as_if_i...

doneware

I don't understand this step about 4011, since fccid made it public - many resourses already made review, publish photos and some tech specs, based on photo and fccid leaks. It's not secret anymore. Mikrotik requested specific parts (schematics, operation description, block diagram) to remain confi...

doneware

4x4 5GHz + 2x2 2Ghz

doneware

no need to wait much

https://fccid.io/TV74011GS-5HQ2HD/Exter ... os-3948604

https://fccid.io/TV74011GS-5HQ2HD/User- ... 948609.pdf

96B069CE-DDE8-4B12-9BF9-10E0CDF544A1.jpeg

doneware

You could use Splunk/syslog for some of these. Then you could make a graphical dashboard showing you when link goes up/down. If Syslog server is on Lan side, you get bot up and down message. If Syslog are on the Wan side and you monitoring Wan side, it will only show when it goes up. i don't want t...

doneware

viewtopic.php?f=1&t=135702

doneware

mikrotik its aware of CDWM importance CWDM-MIKROTIK.jpg well, you can also use OADMs, and just a single optical cable, so you can drop/add wavelengths on each pop. that is the fiber topology will be just a line or a ring, but you can have each node (or more) connected as star or dual-star logical t...

doneware

The FS.com 1310's are listed as working on the wiki page, so I can't see why the CWDM versions of those wouldn't also work. there would have been issues prior 6.31 to be honest. normal (gray) SFPs have different unit code than C/DWDM ones. so mikrotik devices couldn't even detect them. https://www....

doneware

the internal ip starts with 100.x.x.x . The external usualy are 78.x.x.x or 5.x.x.x you should create a ppp profile unique for this service, and use its "on-up" attribute to trigger your script. and the script should be something like this: :local pppoe "<insert the name of your pppoe client here>"...

doneware

True, but it is still good practice to do anti-spoofing filtering on a border router in terms of bogons, you can just blackhole them automatically via BGP. and it shall not affect fastpath. http://www.team-cymru.com/bgp-examples.html#mikrotik-trad http://www.team-cymru.com/bgp-examples.html#mikroti...

doneware

We have updated the manual with some more letters -<n>G+ number of 2.5G Ethernet ports -<n>P+ number of 2.5G Ethernet ports with PoE-out -<n>C+ number of combo 10G Ethernet/SFP+ ports -<n>S+ number of 10G SFP+ ports -<n>XG number of 5G/10G Ethernet ports -<n>XP number of 5G/10G Ethernet ports with ...

doneware

BGP IPv6 With 2 Mikrotiks unusable, eventually it just sends the link local address instead of the actual address for next hop.
OPSFv3 Broken with similar issues.

can you please share some specifics? i have working ipv6 AFI BGPs in multivendor environment with mikrotik [almost] w/o any issues.

doneware

YMMV, but we usually prefer per packet load-sharing it varies. Per packet load sharing will restrict your RTT to the worst value among your available paths/links, that severly limits tcp performance in an unpredictable way. instead, per destination/flow sharing will limit the throughput of your flo...

doneware

if MLPPP is so minor then cisco and juniper should abandoned that function.

trust me, there’s no mlppp support on ios-xr and it’s not even planned. indeed it would be nice to have it

doneware

Little bit better but the issue still present

can you show some results? i was experiencing performance varying between 250-430Mbps using SXTsq ACs with early 6.43rc builds even under excellent conditions.

doneware

i have DWDM ER SFP+ working in there, but it also works with DWDM ZR optics: [me@myswitch] /interface ethernet> monitor 16 once name: sfp-sfpplus16 status: link-ok auto-negotiation: done rate: 10Gbps full-duplex: yes tx-flow-control: no rx-flow-control: no advertising: link-partner-advertising: sfp-...

doneware

i have it running with eoipv6 on large scale with 10s of tunnes.
both ends use FQDN to resolve the other party's address.

keep in mind though, that EoIP is session-less/stateless, and cannot traverse NAT w/o specific rules (requires 1:1 mapping), unlike L2TP over UDP. or SSTP.

doneware

what is the type of the tunnel? but anyway, you can use keepalives to make sure, the tunnel is actually transmitting traffic, and it will then go "down" if it doesn't. like keepalive=10s,4 - that means keepalive message is sent every 10seconds, and after 4 consecutive misses the tunnel is declared t...

doneware

MRZ. Yes... it's a string. And the line is not processing it. It's value is supposed to be placed inline where V1 is and it is not processed as such. So what is supposed to be there to make that work? now i see what you're getting to. try this way [me@router] > :global V1 [parse ":if (($timetest>09...

doneware

My question is: How to send output from a script to syslog? Example: I would like a script to show the dynamic nat and send that to my external syslog server. /ip firewall nat print dynamic try this: :log info message=[/ip firewall nat print dynamic as-value ] it will log the rules line-by-line in ...

doneware

don't know the exact dimensions., i just had one in my hands in berlin MUM. it is at least as deep as the ccr1072 and very heavy. heavier than the 1072. i wasn't able to find a photo of it, just one of its non-poe counterpart, just to get an impression - it is maybe additional 10-12cm longer. as i r...

doneware

It is defined in my script.

can you post your script?

doneware

If you take a look at Google's IPv6 data , you will realize that IPv6 adoption in Latvia is negligible. Guess that's one of the reasons for its current state in RouterOS. last time i talked to Mikrotik employees, they said that they have almost no presence in the government network of Latvia. i was...

Search found 435 matches