MikroTik

doneware

I am afraid this is a misconception. If you use BCP in PPP connections, it doesn't switch the tunnel over from L3 mode to L2 one. It creates an L2 tunnel in addition to the basic L3 one, which is totally independent from it. So the IP address indicated in secret or profile is assigned to the L3 int...

doneware

the problem is with the ppp profile definition: /ppp profile add bridge=hangmaffia_vpn_bridge comment=SITE-TO-SITE-Layer2-VPN local-address=10.11.0.1 name=hangmaffia_vpn if you do BCP, you may not have _any_ IP address configured on any PPP interfaces. so if you want to have IP addresses, just stick...

doneware

strange, mine did work well, albeit it was an upgrade from 44.3 to 45.1 also included flash usage to see how much free space you usually ought to have with a clean setup. this one has almost literally no config in it: /interface bridge add name=bridge1 protocol-mode=none /interface ethernet set [ fi...

doneware

when speaking of native winbox for unices, i might opt for native netinstall instead of winbox.
it mustn't even be GUI based, in fact i'd prefer a scriptable version

doneware

not strictly a [testing] topic, but the routerboot changelog looks kinda deserted: https://wiki.mikrotik.com/wiki/RouterBOOT_changelog now since 6.3-something the routerboot numbering is according to routerOS releases, its version keep on increasing, and we (or I) don't know what has been changed, e...

doneware

CEPT has opened from 57 to 71 GHz

sadly CEPT =/= local regulator

doneware

but ipv6 fastrack is a must.

btw, instead of ds-lite i'd have a nat64 gw

and xlat464 & dns64 resolver in the clients.

doneware

hAP ac2 (and all new IPQ401x based gear) happily can do up to 1Gbps.
i test this regularly with the on-board speedtest (tool speedtest) command.

doneware

soon a new boy will join the party:

https://fccid.io/TV7R11ELT6L

this is the modem we'll have in the LTE version of audience. this is LTE Cat 6, so will support carrier aggregation.

doneware

The well-know NAT64 prefix is only a choice. I typically suggest to our customers, to use their own prefixes, and use several in different NAT64 servers, for some HA. this is a 'me too' moment. although the 'anycast' NAT64 seems to be more or less ok, it gives you less control. with actual unicast ...

doneware

for me DNS64/NAT64 works as expected. with modern devices, that support DS. Apple, Android, freeware unices, and even Windows 7+. that is enough for most folks. but the old or tiny (literally all the uController based stuff) still relies on IPv4. so XLAT464 implementation would be a must in the CPEs...

doneware

I undressed it and saw it from the inside Everything is fine and there is no break inside solder joints beneath BGA chips can easily break due to shock. i have a wAP-LTE, that was pushed off the table by the customer. now it cannot boot unless i press and hold the soldered RAM onto the board. then ...

doneware

I created an environment in routerOS, that enables IoT-like (i.e. the server doesn't talk to the router, but the router talks to the server) operation. it works in a reasonable way, but i'd think i'd be better of with a proper MQTT client implementation in the device, that enables subscribing and po...

doneware

it's not necessarily a lie.
you need a certain hw revision of your hap lites/map lites/whatevers with microUSB on them.

the best way to check this out is to upgrade them to 6.44.x+ and if you have an /interface pwr-line entry after the upgrade, you have a compatible one.

doneware

I want to create a function on my dude server, the function should be able to retrieve the string value of the user from the l2tp interface. I don't know if this is possible, can someone please help? i am not 100% sure how you'd do it on the dude, but i can give you the commands inside routeros for...

doneware

tx-packet-error-rate: 12% this error rate is way too high. also notice that the AP side uses lower modulation scheme (7 vs 8). most probably you get quite some noise there. i don't know your setup, but it you line up your relays back-to-back, and use the same frequency on both of them, you might ge...

doneware

Why to print this info now? Maybe in the future we 'll have another tx-mode

https://blog.mikrotik.com/announcements ... graph.html

doneware

All Mikrotik 60G hardware is so far compatible, so you can mix LHGs and WAPs as you like. But don't expect it to work with other vendors, even if it uses common 802.11ad platform. Everyone is playing on it's own playground, there is no intercompatibility due to customized protocols and different ve...

doneware

Does it out POE power on both ports? that'll be my question too. it would be so nice to have poe out on both ports, so you could just have the indoor CPE connected by a single ethernet and hide the wall wart. also, it would bring more straightforward troubleshooting: - if power is connected, both d...

doneware

Hello. There are new r2 versions LHG60 on the market. the image of "old design" is actually a bit different for the LHG60. the LEDs are on the side populated, and there's no DC barrel jack on the PCB. see images from an actual LHG60 i took apart. with regards to the internals (the block diagram on ...

doneware

there’s a way to enable support for more ram. i have an installation with 24GB RAM, and ROS sees it all. there was a 6.3x version rc that enabled switching on 64bit support, and afterwards all subsequent upgrades retained this setting. i am however sure that this is not supported at all. it does run...

doneware

Wap has 3 Antenna Elements but uses only one Channel, the maximum is 8 Clients not 24. All distances over 150m with WAP to WAP. Or WAP to sXT needs 5 GHz Backup, with LHG with more then 500m, but they need it too. So why in the hell they don’t make it useable? For my business it is impossible to of...

doneware

they are digging their own grave!

sub 6GHz is not always necessary. we have a reasonably big - 145 links in one of the networks - 60GHz routed mesh (with a different equipment) without any 5GHz backup links, without any problems.

doneware

This thing looks great from the inside. I'm just guessing, but the photos i was able to take in Vienna tell some story. now here's my theory: It is very likely this box is built around QCA6335 baseband, which has support 8 (!) phased array antennas. if you look closely, you can see the unpopulated p...

doneware

Can be integrated in any RouterBOARD product with mPCIe slot that has USB support. For example LTAP mini, M11, M33 and others. Requires LoRa package installation. to me, the M33 and LTAP (not mini) integration makes the most sense, because i can add LTE uplink (but might be that 2G is more than eno...

doneware

- new, improved SXT LTE kit with two Ethernet ports Same price but ....inferior....:( Yes, hope MT stops recycling those old modems, and give us some LTE product with LTE 6+ category maybe this will make your day https://fccid.io/TV711ELTE6 no visible specs so far, but the 6 at the end looks promis...

doneware

Just spotted on fcc.io a new model: RBLtAP-2HnD

this must be the long awaited LTAP, the big brother of LTAP mini - wondering what it packs for CPU... i'd love to see an arm or mmips based one. reason: hw crypto.

doneware

Whats about smaller Channels?

you can be OK with this channel mapping. you can have the 100Mbps clients run the same high MCS, and ultimately serve more safely and do buffering on the FE part. i'm more interested in TDD - cause this is the key to boost client numbers.

doneware

channel capacity is so much higher than what we can use currently. let's be easy with that. if you can't have more than MCS9 (SC), then 1Gbps is just ok. .11ad doesn't have channel bonding, so in general you couldn't use the available extra juice anyway. .11ad has at least channel bonding, they sai...

doneware

chipset limit is 8 there was a press announcement from Qualcomm and Mikrotik back in october around the 17th or so, emphasising Qualcomm's upcoming QCA64x8 and QCA64x1 chipsets, promising .11ay. https://www.qualcomm.com/news/releases/2018/10/16/qualcomm-dramatically-extends-wi-fi-experiences-5g-era...

doneware

the 4011 doesn’t have 2 sfp+ ports, but you can squeeze out way more than 1gbps. and it has no fans. there is one thing i don’t quite understand: 10Gbps internet connnectivity for home? this is quite an overkill square! but let’s assume you need this bw, but why’d you place the router into your livi...

doneware

the EU doesn’t certify anything. the just pass the laws, and the technology working groups create documents describing the requirements the device mst comply. testing is usually done by the vendor or an independent lab. then you put together the documentation with the results. but each country in th...

doneware

in general you don't have specificly LAN or WAN ports in routeros. those are just ports, and they act as you configure them. you can have all ports as wan if you wish so. with regards if throughput: you can get 1Gbps pppoe+routing+nat with hex, hex-s, hap ac, hap ac2, 4011 and anything of the ccr se...

doneware

Ok, so I managed to get the SFP to work. Turns out, you need to force it to 1000M by turning off auto negotiation. Furthermore, you need to power down the CRS, plug in the SFP, and then power up the CRS. It might take a few power down/up cycles, but eventually, the CRS will bring the SFP up and it ...

doneware

If so, it it possible to remove the supplied 1.5dBi antennas and upgrade them to something more substantial? i added external LTE antennas a while ago to one. there is a good pdf describing the process with some internal pictures on mikrotik's hw section https://i.mt.lv/cdn/rb_files/Ltap_guide-1807...

doneware

subscriber-number: +CME ERROR: 100

btw, this translates to:

CME ERROR: 100 Unknown error

source: CME ERROR (GSM Equipment Related errors) - https://www.micromedia-int.com/en/gsm-2 ... ted-errors

doneware

/interface lte info 0 once the look for the uicc device info: RouterBOARD wAP R-2nD, 6.42.9 (long-term) as per experience, uicc is only available in 6.43+ Need to get a phone number if you're looking for MSISDN (i.e. the number you dial), as far as i know you can't. you can query the IMSI, which co...

doneware

and usually the same filtering applies as with IPv4 on the MNO side: you can not reach the endpoint over ipv6 if the device just connects to the internet via the mobile operators. they just allow sessions that have been initiated by the mobile end device. so in general it’s not just the NAT that sto...

doneware

and finaly you can get ipv6 address for this device? yes, your MNO must support dual stack or ipv6only access, and the sim card (i.e. your mobile subscription) must be also ipv6/DS enabled on a particular APN you want to connect to. you should know that most (if not every) operator just provide a /...

doneware

yes,
i have both devices (ltap mini, wap lte kit) in operation running 6.43 with dual stack on lte interface.

doneware

consider the following code: admin@mfx-XXXXXXXXXXX] /system gps> :global ttt [/interface bridge host print detail as-value where bridge=bridge1 ] it produces this variable data: [admin@mfx-XXXXXXXXXXX] /system gps> :put $ttt .id=*23;age=00:00:54;bridge=bridge1;comment=;interface=*7;mac-address=00:00...

doneware

those cards are essentially USB devices. your wi-fi is a PCIe device.

check under /system routerboard usb what is set as type. it shall be mini-PCIe

[admin@router] /system routerboard usb> set type=
USB-type-A mini-PCIe

this is just a wild guess, i faced similar issue with a basebox

doneware

i don't understand the outrage about the switch chip functional. with the recent (6.41) bridge changes you can easily do whatever you require on these "more router-ish" devices. stuff will be done in hw, whenever it is possible, and here we have a quite beefy CPU to deal with. yes, it would give mor...

doneware

I'm desperately looking for one with WiFi in Europe

this is a non-wifi unit. i was also told that wireless ones are almost impossible to come by for now.

doneware

sorry for the delay, i have a bunch of other things to focus on. but here's something many were curious about. yes, it does work with DAC cables.

dac4011.png

doneware

just tested a 4011 - i paired it up with a CCR1009-8G-1S-1S+ using GE only. with regards to its single-core CPU performance, i'd say it is at par with the 1.2GHz tilera core, or i might say it is superior just a tiny little bit. i tested it for a project where we use a cr*pload of tunnel/encapsulati...

doneware

I do not see any security problem with this

ok, what abouth the command

/user set admin password=dragon

or doing the same for your bgp passwords, ipsec secrets, etc

doneware

but yeah, at lest the object name in question could be included in the message.
i asked the same with system history

doneware

sadly logging a complete command could ezpose sensitive information to
- all cli/winboz users
- anyone who has access to the syslog server
- anyone who can intervept the traffic between the router and the syslog server, as syslog communication is not encrypted

doneware

Without an example we can not comment why you are not being able to import .rsc file. in case of big export files you can run into situations, when the next command is just not accepted. like you add an object as nameA, then try to set something on the same object by its name, and CLI responds as "...

Search found 462 matches