Community discussions

MikroTik App

Search found 1005 matches

by jo2jo
Thu Mar 07, 2024 8:33 am
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6058

Re: Routers Coming with Default Passwords

@jo2jo ... we all (or almost all) feel your pain and understand you. How about a group hug? Now, get over it and accept the new reality. Do you disagree (or not like / not-favor) a solution where if you were to hold the reset button for a long period of time (ie 30s, so past the default-config or n...
by jo2jo
Wed Mar 06, 2024 9:49 pm
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6058

Re: Routers Coming with Default Passwords

You are not to be taken seriously when you claim that a router should be accessible for admins from the internet side by default. Or, not understanding a long press is how you get PXE boot mode (for netinstall). And that Mikrotik is not going to reverse course on the passwords. To me it seems @jo2j...
by jo2jo
Wed Mar 06, 2024 9:33 pm
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6058

Re: Routers Coming with Default Passwords

You are not to be taken seriously when you claim that a router should be accessible for admins from the internet side by default.
agreed, that is not what i was suggesting or asking for.
(also /sys reset no-defaults=yes does not equal accessible for admins from the internet side by default)
by jo2jo
Wed Mar 06, 2024 12:35 am
Forum: General
Topic: Cake Queues for multiple IPs with one queue?
Replies: 3
Views: 1400

Re: Cake Queues for multiple IPs with one queue?

we are bumping up against this same issue (ie currently using PCQ queues set to /32 Src Address mask to limit each Individual user device, in a private ip range of /23 to 50Mbit up/down). since we are now slowly moving some locations to ros7 (from v6), this is a new possibility. (and wow! both fq_co...
by jo2jo
Mon Mar 04, 2024 11:36 pm
Forum: General
Topic: Routers Coming with Default Passwords
Replies: 69
Views: 6058

Re: Routers Coming with Default Passwords

@BrianHiggins I agree totally. it's really gotten difficult and overly complicated to deploy mikrotiks as of past few years. 3x issues (in order): 1- default passwords (and no way to wipe that PW) - we can't be expected to retain these passwords for each device (or have to reach out to XYZ to get it...
by jo2jo
Sat Feb 24, 2024 7:57 am
Forum: General
Topic: new mikrotik - how to wipe it?
Replies: 6
Views: 545

Re: new mikrotik - how to wipe it?

netinstall. ok was trying to avoid netinstall so that wiping could be more "portable" but i guess ill look into setting up a rasPI to do the netinstall server side part. (maybe with something like this: https://github.com/Easen/mikrotik-netinstall ) (if i do this, i will update or post ba...
by jo2jo
Sat Feb 24, 2024 1:42 am
Forum: General
Topic: new mikrotik - how to wipe it?
Replies: 6
Views: 545

new mikrotik - how to wipe it?

For people who deal with lots of MTs , what is the current best way to wipe the config on a brand new fresh out of the box microtik (for example a hex or hex S , fresh out of box - let's say). on ros 6.49 , lets say. I'm just curious how power users are doing this now a days, please. I prefer to do:...
by jo2jo
Wed May 31, 2023 10:12 pm
Forum: General
Topic: netflow sampling rate
Replies: 7
Views: 3636

Re: netflow sampling rate

I'm in the same situation, Akvorado discards the Mikrotik flows as invalid Im seeing the exact same issue with Akvorado as well (when using a mikrotik ros v6.49.6 or v7.6 to send Netflow v5 to Akvorado :2055). it gets marked as invalid flow, and dropped as a result (so no data shows up). hoping thi...
by jo2jo
Fri May 19, 2023 9:39 am
Forum: Wireless Networking
Topic: DPSK Dynamic WPA2 PSK support [SOLVED]
Replies: 36
Views: 30213

Re: DPSK Dynamic WPA2 PSK support [SOLVED]

The more I use Mikrotik wireless... The more I love Ruckus. If you need a solution... RUCKUS. If you don't mind a hobby... Mikrotik. This is completely the opposite of Mikrotik routing. AGREED! when i first started w ros / mt back in the ros 2.9.x days, i wrongly assumed: WOW, mikrotik is so amazin...
by jo2jo
Wed Oct 26, 2022 7:51 pm
Forum: General
Topic: TZSP, Wireshark, 7zip, Windows, long term PCAP packet storage.
Replies: 1
Views: 1263

Re: TZSP, Wireshark, 7zip, Windows, long term PCAP packet storage.

very nice! thanks for posting this. Its also worth noting, that one can use standard tcpdump and then over in wireshark (when analyizing) use the TZSP "decode as" function. tcpdump -i vmx0 -tttt 'udp port 37002' -w capture.pcap this site does a good job of outlining this option: https://el...
by jo2jo
Mon Aug 01, 2022 10:39 pm
Forum: General
Topic: SNMP community in IP scan
Replies: 1
Views: 773

Re: SNMP community in IP scan

I dont think this is possible which is REALLY unfortunate. (its hard coded to use "public") its so helpful to see that snmp data in mikrotiks great IP scan tool, we have had to start using public as the snmp read-only community (and then blocking all from udp 161 / snmp on Firewall), just ...
by jo2jo
Thu Jul 21, 2022 7:37 am
Forum: General
Topic: To MT: Keep accounting (v7.x)
Replies: 50
Views: 16703

Re: To MT: Keep accounting (v7.x)

Of course there is! Do you think that MikroTik removes such a feature just to annoy you? Likely it was either relying on a kernel feature in the old kernel that no longer exists, or MikroTik developed their own solution in the old kernel for this and it is too difficult to re-do that in current ker...
by jo2jo
Sun Jul 17, 2022 1:38 am
Forum: General
Topic: To MT: Keep accounting (v7.x)
Replies: 50
Views: 16703

Re: To MT: Keep accounting (v7.x)

+100 to keep Accounting (i intentionally use netflow and traffic flow interchangeably below, to distinguish it from Traffic-Accounting , im aware trafficFlow=Netflow): Netflow does not provide the resolution (and accuracy) i have been able to achieve with custom code + mikrotiks, unique, Traffic Acc...
by jo2jo
Tue Jul 05, 2022 8:41 am
Forum: Scripting
Topic: Script global variable get from SNMP OID
Replies: 3
Views: 3652

Re: Script global variable get from SNMP OID

I agree with this, Somehow we should have the ability to only allow read access to the results of scripts (queried by an snmp oid). The main reason: the combination of the script -> oid being dynamic + requiring snmp-write access enabled on a snmp-community (ie ability to execute a script that does ...
by jo2jo
Sat Apr 09, 2022 8:57 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

Re: winbox 3.32- Crash when switched to foreground (windows)

To update this, (am now on winbox v3.35), this issue does still occur at times, however it ONLY occurs on winbox sessions where i have saved additional columns to a session file (and when making use of that session file). I do not share sessions between mikrotiks. ex: just as is the Winbox default, ...
by jo2jo
Sun Feb 13, 2022 11:03 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

Re: winbox 3.32- Crash when switched to foreground (windows)

I must admit I didn't even know about that feature. A template of columns and windows ? Something I definitely need to look into ! Yes- setup columns and windows ect (in winbox) as you like, and save (menu: Session-> save , or save as). then in future either set one of your winbox "bookmarks&q...
by jo2jo
Wed Feb 02, 2022 10:55 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

Re: winbox 3.32- Crash when switched to foreground (windows)

The issue is definitely still occuring. However i have been able to narrow to the source / problem: (tldr: the crashes are caused by winbox and use of custom session .viw files - these files are not old .viw files, ive made them in the past 12 months ) The issue seems to occur when im using a custom...
by jo2jo
Mon Jan 24, 2022 10:51 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

Re: winbox 3.32- Crash when switched to foreground (windows)

thanks all, Very helpful information from every reply. (has helped me to see that this may be unique to my setup). [b 2nd update: ISSUE is not fixed, see reply below this one [/b] (prior , incorrect info , as the issue has returned:) *(i say MIGHT as i have not had the winbox close/disappear on clic...
by jo2jo
Fri Jan 21, 2022 9:26 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

Re: winbox 3.32- Crash when switched to foreground (windows)

Very detailed problem description :) Multi monitor is not the issue since I run mostly that way as well. Either laptop with fixed monitor using hdmi, either laptop using usb-c asus zenscreen. No problem. So it can't be multi monitor on itself. Thanks for your reply, comments. Do you have winbox ses...
by jo2jo
Thu Jan 20, 2022 9:11 pm
Forum: General
Topic: winbox 3.32- Crash when switched to foreground (windows)
Replies: 10
Views: 3062

winbox 3.32- Crash when switched to foreground (windows)

Winbox issue/bug - v3.32 : frequently, when winbox is in the background, and is clicked to bring it to the foreground (focus), AND then an item on the left-side bar is clicked (such as "IP" or "System" menu's), winbox will frequently disappear (ie crash- no message/error, and wi...
by jo2jo
Mon Jan 03, 2022 11:15 pm
Forum: Announcements
Topic: WinBox v3.32 released!
Replies: 65
Views: 93148

Re: WinBox v3.32 released!

*) added "Auto Reconnect" feature; -- OH WOW!! finally! this is great, ive been hoping for this feature in winbox since 2006! now to test it / see it in action! - thanks MT for adding it!! *) added fast selection of column checkboxes in "Columns" window by simply typing column na...
by jo2jo
Tue Sep 07, 2021 12:41 am
Forum: General
Topic: mynetname.net is suspended
Replies: 80
Views: 45009

Re: mynetname.net is suspended

why would this take so long for mikrotik to resolve? (i show atleaste 6hours its been down now)

the fix should be:
make payment on the expiration, and then the service is restored (ie dns NS servers pointed back to mikrotiks cloud infra). and ~ 10min for TTL to reset.
by jo2jo
Tue Sep 07, 2021 12:29 am
Forum: Announcements
Topic: WinBox v3.29 released!
Replies: 113
Views: 35031

Re: WinBox v3.29 released!

thanks for the update! ive been waiting since early ros v2.x for the ability to re-organize winbox columns!! thank you so much MT, and please, PLEASE keep working on and improving winbox- it is the MOST critical Mikrotik software (right after rOS itself).
by jo2jo
Sun Aug 15, 2021 8:54 pm
Forum: General
Topic: FR: winbox add auto-reconnect (feature request)
Replies: 0
Views: 643

FR: winbox add auto-reconnect (feature request)

I would love to see an auto reconnect feature to be added to winbox.exe (disabled by default ofcouse). Such that when winbox.exe is connected to a rOS device, you can enable a feature /drop-down menu option (in winbox) that will auto-reconnect in the event the connection is dropped. thanks (btw- i t...
by jo2jo
Fri Aug 06, 2021 10:22 pm
Forum: The Dude
Topic: Feature request - Credentials profiles for Discovery
Replies: 4
Views: 9509

Re: Feature request - Credentials profiles for Discovery

figured out how to set UN/PW on multiple RouterOS devices at once Device list RouterOS tab Select multiple devices right click select settings (NOT device settings) Set un/PW Thanks, this is good info to have/share- however to be clear this above is not what the orginal poster was look for in terms...
by jo2jo
Sat Apr 10, 2021 10:48 am
Forum: General
Topic: WinBox global/default settings
Replies: 8
Views: 2929

Re: WinBox global/default settings

I discovered the sessions feature the other day. It's good, but it's not quite there for me... I would still like individual sessions per device. I just want to copy the default session on first connect, rather than starting from a clean slate. Im looking for exactly the same as the user above (and...
by jo2jo
Sun Mar 21, 2021 11:41 pm
Forum: General
Topic: Default Config w Mac-Telnet disabled - Change Needed?
Replies: 8
Views: 5800

Re: Default Config w Mac-Telnet disabled - Change Needed?

You can already hold reset button for ~10 seconds until user LED stops blinking. This will load CAP config, where interfaces are bridged and MAC access is allowed. This is GREAT!!! and does address my issue/request! I tried testing this on an extra hap AC Lite (works!), via directions below, and i ...
by jo2jo
Mon Nov 23, 2020 8:11 pm
Forum: General
Topic: new Winbox Log window truncation of messages (need change)
Replies: 7
Views: 1104

Re: new Winbox Log window truncation of messages (need change)

A lot of the replies in this thread show why an Option to sw between word wrap or not , is needed! (some prefer it, others do not), especially when the status quo has been changed. That screenshot is 1281px wide, adding the missing menu from winbox probably results to 1366. That again, ain't 1080p,...
by jo2jo
Fri Nov 20, 2020 9:57 pm
Forum: General
Topic: new Winbox Log window truncation of messages (need change)
Replies: 7
Views: 1104

new Winbox Log window truncation of messages (need change)

The new and frequent updates to winbox.exe , from mikrotik, have been great! (thanks mt!) however one change that me (and others i work with) have found troublesome is the truncation of log messages in the winbox Log window. This is not really an issue on high res or 4k monitors, however even on a 1...
by jo2jo
Fri Nov 20, 2020 9:39 pm
Forum: General
Topic: add new log Topic for Dhcp Script logging vs normal scripts logging
Replies: 1
Views: 690

add new log Topic for Dhcp Script logging vs normal scripts logging

hi, Goal: Have an extra Log -> "Topics" tag added to dhcp-server run scripts. (ie like "dhcp" , so that we can distinguish them in /system logging action vs normal log entries from /sys script , scripts). we have a script under /ip dhcp-server that makes a log of the "Active...
by jo2jo
Fri Nov 13, 2020 11:57 pm
Forum: Scripting
Topic: Syntax highlighting for Notepad++
Replies: 20
Views: 33616

Re: Syntax highlighting for Notepad++

I was able to get this working by manually importing the language .xml file ( i didnt want to run any of the .bat files as they looked like they installed notepad++ from scratch). in notepad++ (Version: 7.91 , 32bit) i simply went to language -> define your language. Then import (and choose the &quo...
by jo2jo
Tue Nov 03, 2020 6:47 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 100
Views: 58849

Re: WinBox v3.27 released!

I understand that as of a few winbox versions ago , the entries in the log window were truncated to not take up more than a single line (and there were some users requesting this). however im not clear on how this is a better solution than the prior multi line log window entries (where you could alw...
by jo2jo
Wed Oct 28, 2020 7:43 pm
Forum: Announcements
Topic: v6.47.6 [stable] is released!
Replies: 39
Views: 24264

Re: v6.47.6 [stable] is released!

After upgrading a CCR1009 from 6.45.x to 6.47.6 , im seeing 2x (my only 2x) GRE tunnels fail. They do show GRE connection success (both are connecting to different mikrotiks, running 6.45.6, but i cant upgrade those two MTs to 6.47.x until the weekend). While the GRE tunnels do show connect success,...
by jo2jo
Sun Oct 11, 2020 8:16 pm
Forum: General
Topic: High number of established connections for one address
Replies: 26
Views: 10996

Re: High number of established connections for one address

frequently when i have seen this in nat tables (from both external IPs and internal IPs/subnets being routed internally) , its often the results of a prior run, port scan (ie nmap). FWIW- i agree with the position that as network admins, our settings/rules should attempt to do as little damage as po...
by jo2jo
Sun Aug 02, 2020 6:30 am
Forum: General
Topic: Question about DHCP log (New feature request)
Replies: 10
Views: 5976

Re: Question about DHCP log (New feature request)

What ever you send to log in lease script is sent to offsite syslog as well (if configured in "/ system logging"). So why do you think this is required to be a native feature? IMHO this is an example where everything is fine due to extensibility by script. then why log the leases mac addr...
by jo2jo
Thu Jun 04, 2020 8:45 pm
Forum: Announcements
Topic: Winbox v3.24 released!
Replies: 103
Views: 88684

Re: Winbox v3.24 released!

Thanks for the update, i like the progress / new features on winbox! One thing i would like to see reverted back, is the log window. I preferred it when the log messages "wrapped" so that you could see the entire entry. as of this change to the log window lines are truncated to the width o...
by jo2jo
Tue Mar 31, 2020 12:58 am
Forum: General
Topic: Slow speed routing inter vlan CCR1036-12G-4S
Replies: 2
Views: 2544

Re: Slow speed routing inter vlan CCR1036-12G-4S

hi davidhs, did you ever get a resolution to this issue? also it looks like you may have left out some of your configuration maybe? ie i see you have 2x PCQ queue types setup using packet-mark= (but then i dont see any /ip firewall mangle rules, nor any /ip firewall rules at all) (nor any /queue sim...
by jo2jo
Sat Mar 07, 2020 3:04 am
Forum: General
Topic: Feature requests
Replies: 1739
Views: 624693

Re: Feature requests

we need a basic portscan tool in rOS . even the most basic , stripped down portscan tool (if abuse is a concern).

see this thread for the high demand of a portscantool:
viewtopic.php?p=775423#p775423

thanks
by jo2jo
Tue Feb 25, 2020 4:57 am
Forum: General
Topic: Question about DHCP log (New feature request)
Replies: 10
Views: 5976

Re: Question about DHCP log (New feature request)

+1 , need this in native ros logging for dhcp. (as we log all MTs to offsite syslog, and this would help alot). tks
by jo2jo
Mon Feb 17, 2020 7:17 pm
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool ( port scanner scan )

wow, i still have constant needs for even the most basic portscan tools nearly on a daily basis of managing 300+ mikrotiks. ( i constantly need to scan a private /24 or /23 for one or two ports to find IP of a service) PLS mt! pls! add this tool. even a very muted version of nmap or a portscan tool ...
by jo2jo
Mon Jan 13, 2020 10:43 pm
Forum: General
Topic: backup,critical error creating backup file, ROS 6.42.1
Replies: 32
Views: 15484

Re: backup,critical error creating backup file, ROS 6.42.1

awesome, this also worked for me on a few RBs that were having this exact same issue (ros 6.45.x and 6.46.x ). I acutally didnt even need to reboot after doing the ssh key regen command.
thanks!
by jo2jo
Mon Jan 06, 2020 10:46 pm
Forum: General
Topic: Winbox Shortcuts Keys
Replies: 6
Views: 5516

Re: Winbox Shortcuts Keys

https://forum.mikrotik.com/viewtopic.php?t=147994 thanks, but those are winbox Terminal / CLI commands i was referring to in my post, they are not commands for using winbox itself. ( ie what is winbox keyboard shortcut to disable or enable a rule - a list like that is what myself and many others on...
by jo2jo
Sun Jan 05, 2020 7:02 am
Forum: General
Topic: Winbox Shortcuts Keys
Replies: 6
Views: 5516

Re: Winbox Shortcuts Keys

control+M
to edit comments.

i wish there was a list of winbox GUI keyboard shortcuts (not terminal/cli). this info is hidden for some reason.
tks
by jo2jo
Fri Jan 03, 2020 1:12 am
Forum: RouterBOARD hardware
Topic: hex POE max power out (1a but is 12w or 50w??)
Replies: 4
Views: 4083

Re: hex POE max power out (1a but is 12w or 50w??)

BELOW Is the excellent reply i got from MT support (email) , provides great info / detail: As stated here: https://mikrotik.com/product/RB960PGS Max out per port output (input > 30 V) 450 mA Max out per port output (input < 30 V) 1A 2A is total output current for both 12V and 48V, which means that y...
by jo2jo
Wed Jan 01, 2020 11:37 pm
Forum: RouterBOARD hardware
Topic: hex POE max power out (1a but is 12w or 50w??)
Replies: 4
Views: 4083

Re: hex POE max power out (1a but is 12w or 50w??)

wow, thanks. I cant believe i missed that.

So based on that we should expect max ~ 24w max per port with AT/AF. (assuming just powering one of the 4x hex's ports, ie: im sure we should not expect to be able to hook up 4x devices to the hex, each pulling ~24w of AT for a total of ~96w)
by jo2jo
Tue Dec 31, 2019 6:22 pm
Forum: RouterBOARD hardware
Topic: hex POE max power out (1a but is 12w or 50w??)
Replies: 4
Views: 4083

hex POE max power out (1a but is 12w or 50w??)

one thing ive never been clear on, and have always wondered (and had issues with)- on the routerboard hexPOE (ie RB960PGS), in terms of what it can put out on ports 2-5: The mikrotik docs say: 1A max per eth out port (2A max total). (https://i.mt.lv/cdn/rb_files/hEX_poe-161215110435.pdf) But is that...
by jo2jo
Sun Dec 22, 2019 10:19 am
Forum: Useful user articles
Topic: Tool: Using Splunk to analyse MikroTik logs 3.3 (Graphing everything) 💾 🛠 💻 📊
Replies: 472
Views: 308276

Re: Tool: Using Splunk to analyse MikroTik logs 2.8 (Graphing everything)

wow, thanks so much for all the time and effort you have put into this! it really is an excellent splunk app, thank you! I do have your splunk app working on both of our splunk servers, when i add the "MikroTik" prefix to remote logs for a few test mikrotiks. (our splunk servers are not th...
by jo2jo
Sun Dec 22, 2019 12:59 am
Forum: General
Topic: Winbox GUI Filter Feature / Button
Replies: 17
Views: 6079

Re: Winbox GUI Filter Feature / Button

In columns that have an IP address there is a filter "in" and "not in" that you should use for those purposes. E.g. "Address in 192.168.0.0/16" thanks pe1chl, this does help as i had not tried this before (i just always assumed the winbox filter fuction is partially br...
by jo2jo
Sun Dec 01, 2019 1:15 am
Forum: Scripting
Topic: Script to convert ip to address-list
Replies: 17
Views: 11264

Re: Script to convert ip to address-list

Hi, Let say I have 7k ips in this text http://torstatus.blutmagie.de/ip_list_all.php/Tor_ip_list_ALL.csv I want to convert all those ips into address list using script something like this :do {/ip firewall address-list add address=$entry list=list-TOR} I am following this method but the script can'...
by jo2jo
Mon Aug 19, 2019 4:53 am
Forum: General
Topic: OVPN Server , move to new mikrotik (certificate export / move ??) [SOLVED]
Replies: 2
Views: 9061

Re: OVPN Server , move to new mikrotik (certificate export / move ??) [SOLVED]

>>When exporting the certificate, don't forget to set password. If you don't, only certificate without private key is exported. Sob was correct, in winbox (or cli), you must set a passphrase when exporting the cert. If you dont, then when you go to import the exported cert, it will *not* contain the...
by jo2jo
Sun Aug 18, 2019 2:12 am
Forum: General
Topic: OVPN Server , move to new mikrotik (certificate export / move ??) [SOLVED]
Replies: 2
Views: 9061

OVPN Server , move to new mikrotik (certificate export / move ??) [SOLVED]

question: how do you move OVPN Certificates from one mikrotik to another mikrotik ? Info: I have (all working for many months) a routerboard acting as a OVPN server, with certs, and a linux box acting as a OVPN client (ie linux ovpn client connects to mikrotik ovpn server). I now need to upgrade the...
by jo2jo
Mon Jun 03, 2019 12:37 am
Forum: General
Topic: Feature Request: ETA on Feature Requests
Replies: 5
Views: 2102

Re: Feature Request: ETA on Feature Requests

i know this thread is a bit old, but i agree with all the posts above (including agree with normis 's reply/ his point). but im hoping that something like this list (or wiki style?) could be implemented on MTs end. even wo dates , a implemented / rejected / being worked on / considered - list (as an...
by jo2jo
Mon Jun 03, 2019 12:32 am
Forum: General
Topic: Feature Request: Countdown TIMER on FW / NAT rules
Replies: 2
Views: 1749

Re: Feature Request: Countdown TIMER on FW / NAT rules

+1 Even if it's possible to match rules on an adress list with one IP with timeout to get a similar result it is quite cluttered. agreed, this above is one of the "rough" work-arounds i was referring to. but ofcourse this can only be taken so far (as compared to being able to put a countd...
by jo2jo
Tue May 28, 2019 1:50 am
Forum: General
Topic: Feature requests
Replies: 1739
Views: 624693

Re: Feature requests - Re Winbox , close all

The suggestion from another user session-> close all windows , only occurs when you EXIT winbox (ie the next time you connect all windows will be closed).
wrong
oh wow, you are correct, choosing session-> close all windows , does infact accomplish this (wo existing the app). thanks!
by jo2jo
Sun May 26, 2019 11:54 pm
Forum: General
Topic: Feature Request: Countdown TIMER on FW / NAT rules
Replies: 2
Views: 1749

Feature Request: Countdown TIMER on FW / NAT rules

I would really love to see an option added to the various /ip filter XX commands (FW,NAT,MANGLE), that allows you set a timeout= to disable option (ie a countdown). Exactly like we currently have on dynamic IP address-list entries. We often will have to make a quick/temporary FW or NAT rule for a cu...
by jo2jo
Sun May 26, 2019 11:43 pm
Forum: General
Topic: Feature Request: Logging of all administrator user actions
Replies: 28
Views: 16701

Re: Feature Request: Logging of all administrator user actions

+1 - def need more detailed logging of admin actions, and maybe such that they can be written to the log (thus can go out over remote syslog) and so they will persist through router reboots (if the RB device supports NV memory).
tks
by jo2jo
Sun May 26, 2019 11:42 pm
Forum: General
Topic: Feature requests
Replies: 1739
Views: 624693

Re: Feature requests - Re Winbox , close all

A feature I would like to see in Winbox is a new selection to close all winbox windows Example - many many windows open in winbox , click close-all and presto they all close and you still have your connected winbox session North Idaho Tom Jones I would love to see this also. Often on lower end RBs ...
by jo2jo
Wed May 22, 2019 9:14 pm
Forum: RouterBOARD hardware
Topic: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]
Replies: 4
Views: 3907

Re: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]

great news / great solution to this question that ive been having for over 6 months (ever since that first announcement PDF mt news-letter)! it looks like you CAN run a 24v passive device AND a 48v active poe device from these crs112-8p MTs at the same time! there is exactly what i was hoping for, a...
by jo2jo
Wed May 22, 2019 9:09 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 176125

Re: Winbox vulnerability: please upgrade

AFAIK there is no way to extract your config wo an admin password, others (more familiar with netinstall) might chime in otherwise (netinstall has that save config button/checkbox, but i think it requires your password first). You have to consider, MT does not want to make it so that someone with ev...
by jo2jo
Tue May 21, 2019 7:34 am
Forum: RouterBOARD hardware
Topic: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]
Replies: 4
Views: 3907

Re: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]

well ill have one of these units here in a day or two, and will test exactly what my question/reply above states. Ill update here when i know. It would be really nice!, if you are able to power a 24v passive poe device on eth3 , and a active ~48v af/at poe device (ie a IPcam) on eth5 , at the same t...
by jo2jo
Tue May 21, 2019 7:32 am
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool ( port scanner scan )

You could just make scan in TheDude and have results in no time. If you do this more than once per year, it is definitely worth it. That is interesting idea, but when we often need to do this, its on random customers/routers , so using dude as a "port scan" tool, would take a fair amount ...
by jo2jo
Thu May 16, 2019 2:23 am
Forum: RouterBOARD hardware
Topic: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]
Replies: 4
Views: 3907

Re: Dual voltage POE on CRS112-8P-4S-IN [SOLVED]

what im still not 100% clear on, is assuming you have 2x Power supplies connected to a CRS112-8P-4S (a 48v one and a 24v one), are you then able to power eth connected devices at BOTH 48v (active POE) *AND* devices at 24v (passive poe)? ie: could i connect a IP Camera (802.3af Active POE) to eth3 , ...
by jo2jo
Fri May 10, 2019 1:13 am
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool ( port scanner scan )

+1 (for own post), 2x times this week different customers needed us to find a cctv DVR on their system (which is behind our mikrotik). would have been so quick via port scan x/24 for port 80 via a ROS ps tool . but instead had to setup a MT + a VPN setup on both sides and a laptop with nmap (about 2...
by jo2jo
Wed May 01, 2019 1:48 am
Forum: General
Topic: simple queue missing traffic (ie not working) (simple 1 pc setup)
Replies: 4
Views: 3062

Re: simple queue missing traffic (ie not working) (simple 1 pc setup)

when i looked at the traffic more closely, i saw some was UDP , which then made me realize that the UDP traffic is mostly what is causing this. (you can only really control TCP , not udp, for the reasons you stated). Will need to look at other sites where i have seen this before to see if there is a...
by jo2jo
Sat Apr 27, 2019 2:23 am
Forum: General
Topic: simple queue missing traffic (ie not working) (simple 1 pc setup)
Replies: 4
Views: 3062

Re: simple queue missing traffic (ie not working) (simple 1 pc setup)

thanks for reply, (i have always been seting local 192 IP of the PC as the queue's target) my SS maynot have been in sync as i was trying different queues, but mainly i wanted the export to show that i dont have any other FW or mangle rules that could be interfering. even with 0.01 bucket size, stil...
by jo2jo
Fri Apr 26, 2019 3:24 am
Forum: General
Topic: simple queue missing traffic (ie not working) (simple 1 pc setup)
Replies: 4
Views: 3062

simple queue missing traffic (ie not working) (simple 1 pc setup)

i have encountered this before for clients, but now that i have a fiber line at the office im able to reproduce/test this while controlling for everything. this is only MT attached to the fiber line, there is only 1 pc behind the mikrotik (is doing NAT, no fasttrack). the Simple queue, whether on th...
by jo2jo
Tue Mar 19, 2019 5:33 am
Forum: General
Topic: CPU consumption by Horizon?
Replies: 2
Views: 1512

Re: CPU consumption by Horizon?

sorry i cant answer, but i do have this same question.

will the use of horizon on a bridge port, cause HW-offload to become disabled?

(another way to ask this- is the bridge port -> horizon feature available in SWos?)
tks
by jo2jo
Sat Mar 02, 2019 3:35 am
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool ( port scanner scan )

@dagelf Originally I thought you just came with miracle, but it does not really work. Firstly, it would take huge amount of time as it does not work in parallel and you have to interrupt each connection which gets established, secondly, it actually crashed my winbox and produced autosupout.rif ... ...
by jo2jo
Sat Mar 02, 2019 3:30 am
Forum: General
Topic: req: (winbox) add COPY to torch tool
Replies: 0
Views: 1035

req: (winbox) add COPY to torch tool

it would be very helpful if torch (and other "realtime" tools with similar interfaces) would allow / add the copy ability. ie, in torch, we need the ability to right click on a DST IP address and choose copy (so that you can paste that ip into something else, without having to retype it). ...
by jo2jo
Wed Feb 27, 2019 10:35 am
Forum: General
Topic: Default Config w Mac-Telnet disabled - Change Needed?
Replies: 8
Views: 5800

Re: Default Config w Mac-Telnet disabled - Change Needed?

boy, do we still run into this issue constantly! im talking 5-10 times a month, or more! we have mikrotik everywhere, and this default-config "update/change" a few yrs ago, really is a problem. its the difference between having customers, or non-tech (less $ / hr) installers, do installs V...
by jo2jo
Wed Feb 27, 2019 7:57 am
Forum: Scripting
Topic: [CONTRIB] UPDATED Automated Batch Commands...
Replies: 2
Views: 3272

Re: [CONTRIB] UPDATED Automated Batch Commands...

thank you for this. im gong to try it out, and hope it still works (13 yrs later, and this is still the only solution i know of to mass config/update config of many MTs)
by jo2jo
Fri Feb 22, 2019 9:54 am
Forum: General
Topic: could not make socket
Replies: 9
Views: 20053

Re: could not make socket

I actually saw this same error myself, for the first time ever (on mikrotik). I had lost a few connections on my PC so i connected to winbox, and my internet connections was fine (other VPNs were connected and 4-8mbit of BW was flowing over my internet/isp uplink) but when i tried to ping a few rand...
by jo2jo
Wed Jan 23, 2019 10:41 am
Forum: General
Topic: [Feature Request] Changing SNMP port
Replies: 2
Views: 5977

Re: [Feature Request] Changing SNMP port

I agree, i have a handful of locations where the ISP blocks udp 161. It would be nice if we could change this in the winbox interface directly. but do keep in mind you can accomplish this same thing via a NAT rule (depending upon your setup/layout). here is what im using for a MT that has a public i...
by jo2jo
Mon Dec 31, 2018 9:52 am
Forum: RouterBOARD hardware
Topic: DISC Lite5 ac
Replies: 2
Views: 1421

Re: DISC Lite5 ac

or for that short distance, the newer mikrotik 60ghz panel radios. 1gbit full duplex is possible.
by jo2jo
Wed Dec 19, 2018 9:35 pm
Forum: General
Topic: LCD Display causing packet loss... what???
Replies: 15
Views: 4672

Re: LCD Display causing packet loss... what???

as i posted above (about a year or 2 ago) i fully confirm this issue on seveal different RB2011 and rb3011s (and one other RB with an LCD screen that im forgetting). fix is always to disable/turn off LCD screen (which i do on all devices now, unfortunately) I can say that on a few CCR1009-7G-1C-1S+ ...
by jo2jo
Mon Dec 17, 2018 10:07 pm
Forum: General
Topic: IP CLOUD is down
Replies: 65
Views: 23958

Re: IP CLOUD is down

same issue here (this is 18hours now). Ive updated some routers from 6.42.7 to 6.43.7 (to new cloud system as directed) , but the issue is the same. the problem is that myhnetname.net WILL NOT resolve (ie a dns problem , not a /ip cloud problem). this is really unacceptable- only because ip cloud ha...
by jo2jo
Mon Dec 10, 2018 2:23 am
Forum: General
Topic: Feature request: Remove fasttrack dummy rule
Replies: 33
Views: 60416

Re: Feature request: Remove fasttrack dummy rule

i like the FT dummy rule. there have been a few times ive added fasttrack to older RBs that DONT support it, the ONLY way i was able to notice this was by seeing the dummy rule was not increment at all.
by jo2jo
Thu Nov 29, 2018 1:23 am
Forum: General
Topic: ros Traceroute STD DEV calculation incorrect?
Replies: 0
Views: 1062

ros Traceroute STD DEV calculation incorrect?

Ive been running several long traceroutes (long = ~ 12 hours) on various RBs i have located at different providers (im trying to gather info on ISP quality/routes/latency for future purchase decisions). However im seeing that the STD DEV value provided by the traceroute tool differs big time from wh...
by jo2jo
Thu Nov 29, 2018 1:13 am
Forum: Announcements
Topic: Newsletter 85
Replies: 30
Views: 23970

Re: Newsletter 85

i like the 4x port SFP+ switch! Also, personally, i feel the complaints about no gig eth on the new LTE product are a bit overblown. its very rare to get 100m+ on a lte C3/C4 device of any kind. Also for those saying what about using this device in a city to improve a decent lte signal to better- it...
by jo2jo
Mon Nov 26, 2018 12:52 am
Forum: Scripting
Topic: Bandwidth test daily
Replies: 15
Views: 10603

Re: Bandwidth test daily

cool, see this thread too, at the bottom i made a tiny modification to make it so repeated/scheduled BW test results can be pulled via SNMP (ie so they can be graphed over time).
viewtopic.php?f=9&t=129513&p=699739
by jo2jo
Sun Nov 25, 2018 1:48 am
Forum: Scripting
Topic: script to run manual bandwidth test and save to file
Replies: 8
Views: 15900

Re: script to run manual bandwidth test and save to file

thank you for posting this! I already had a script that ran a BW test every 5 minutes, but i was then just using SNMP to "grab" the results (ie snmp traffic with short interval, and looking for the spike). I can add this- for some of my mt scripts, one way to retrieve the value of a variab...
by jo2jo
Thu Oct 18, 2018 12:46 am
Forum: General
Topic: /ip dns servers= (cache) - how are multiple servers used?
Replies: 19
Views: 6567

Re: /ip dns servers= (cache) - how are multiple servers used?

to update everyone, i received this reply from MT support (email): Yes, once DNS servers are responding properly, the same weight is applied. In case one DNS server is not responding, its weight is decreased, then router check again if server is responding and weight is decreased or increased (wheth...
by jo2jo
Sun Oct 14, 2018 12:00 am
Forum: General
Topic: optimize FW rule by using connection-state=new ?
Replies: 6
Views: 2248

Re: optimize FW rule by using connection-state=new ?

Thanks for the replies and inputs, I do realize the pros/cons of how im doing FW vs the more standard (even default-config) of add rules to accept what you want, then DROP ALL ELSE. In regards to my main question of performance / efficiency, my idea/theory was that in using connection-state=new , th...
by jo2jo
Sat Oct 13, 2018 4:51 am
Forum: Scripting
Topic: Portknocking by script.
Replies: 10
Views: 9133

Re: Portknocking by script.

/tool fetch host=<DYNIPHOST> src-path=SOMERANDOMSTRING mode=http port=9119 keep-result=no /tool fetch host=<DYNIPHOST> src-path=ANOTHERRANDOMSTRING mode=http port=9229 keep-result=no This is a good idea to trigger the dst device of your port-knocking, however be sure to do it like this: :do {/tool ...
by jo2jo
Sun Sep 30, 2018 11:15 pm
Forum: General
Topic: /ip dns servers= (cache) - how are multiple servers used?
Replies: 19
Views: 6567

Re: /ip dns servers= (cache) - how are multiple servers used?

sob, this thread exactly shows why we NEED a formal answer to this. At some locations where 100x or 1000x users are at risk, i need a formal / official answer to something that can cause everyone internet to "stop" (or appear dead), ie DNS. The most fundamental / critical part of the servi...
by jo2jo
Sat Sep 29, 2018 10:50 pm
Forum: General
Topic: /ip dns servers= (cache) - how are multiple servers used?
Replies: 19
Views: 6567

/ip dns servers= (cache) - how are multiple servers used?

This question does not have a clear answer from mikrotik (and the manual has very little data on /ip dns , and does not specifically address this important question): With this setting how does rOS use the multiple DNS servers? (ie equal weight? failover? ratio?): /ip dns set allow-remote-requests=y...
by jo2jo
Thu Sep 27, 2018 5:33 am
Forum: General
Topic: DNS utilization
Replies: 15
Views: 11169

Re: DNS utilization

And regarding how servers for queries are chosen that is correct - router will use 1 cache server and only if it starts to not respond will go to next entry and change only if current one is not responding. guys, please add this to the manual. was searching for it for about 10 minutes because it's ...
by jo2jo
Sat Sep 22, 2018 11:46 pm
Forum: General
Topic: How control several Mikrotik`s not one by one
Replies: 26
Views: 5055

Re: How control several Mikrotik`s not one by one

davidw - do you all still offer this tool? i see the site is down ,but can see that its something we would like to use / buy (by looking at site on wayback machine). (if the tool is not around anymore, do you offer paid api development?) lmk pls , thanks (sorry there was no way to msg you directly t...
by jo2jo
Sat Sep 22, 2018 11:13 pm
Forum: General
Topic: optimize FW rule by using connection-state=new ?
Replies: 6
Views: 2248

optimize FW rule by using connection-state=new ?

i have 2 rules like this to protect management ports (ros management ports, as well as for other dst-nat ports for devices on network). /ip firewall filter add action=drop chain=input in-interface=ether1-ISP dst-port=20-55,80-445,2000,8022-8729 protocol=tcp src-address-list=!adminPublicIPs /ip firew...
by jo2jo
Sat Sep 22, 2018 10:39 pm
Forum: General
Topic: How do we filter torrent now?
Replies: 19
Views: 5645

Re: How do we filter torrent now?

2 ways come to mind (have used both w decent success). 1- assuming all your customers are using a dns server you control (ie the mt dns), you can use regex static entries, and normal static entries (and use a rule to redirect all udp 53 dns to your mt dns, to keep ppl from setting their own customer...
by jo2jo
Sat Sep 22, 2018 1:29 am
Forum: General
Topic: 6.43rc5 bricked RB1100AHx4
Replies: 16
Views: 7975

Re: 6.43rc5 bricked RB1100AHx4

is this related to / a fix for the issue u encountered possibly ? :

What's new in 6.43.2 (2018-Sep-18 12:12):
Changes in this release:
*) routerboot - fixed RouterOS booting on devices with particular NAND memory (introduced in v6.43);
by jo2jo
Wed Sep 12, 2018 1:48 am
Forum: Announcements
Topic: Newsletter #84
Replies: 47
Views: 31402

Re: Newsletter #84

Is it possible to do a license upgrade on the SXTsq Lite60 and connect two of them for a short link? They look physically a bit more suitable for outdoor mast mounting than the wAP 60G AP. That's always possible without an upgrade of the license. Just set the 'master' or AP in 'bridge' mode instead...
by jo2jo
Mon Sep 10, 2018 5:39 am
Forum: General
Topic: Simple accounting per internal address
Replies: 5
Views: 7608

Re: Simple accounting per internal address

hi, another *rough* way to do this is to add a simple queue for each internal IP (w speed 500m/500m or something very high so it wont queue the users). (you can use script + a for loop to generate many queues quickly, ie 254 of them for a /24 ), then in winbox add the columns for total-tx-bytes / rx...
by jo2jo
Wed Sep 05, 2018 11:24 pm
Forum: General
Topic: WInbox feature request: drag and drop column order and right click column menu
Replies: 24
Views: 8283

Re: WInbox feature request: drag and drop column order and right click column menu

+1 for this in winbox (ability to change column order). While most of the columns (especially extra "non-standard columns) do have a pretty good default column order, there are some that are way out of place . thus ability in winbox to re-arrange or change the column order would be very helpful...
by jo2jo
Wed Sep 05, 2018 5:19 am
Forum: General
Topic: FastTrack slow performance
Replies: 11
Views: 4653

Re: FastTrack slow performance

ive never experienced anything similar, but it would help to know what is your source of internet and its speed. Have you tried connecting to that directly (use a FW/becareful if its a modem or ISP device that directly gives your PC a public IP). Have you changed the cat patch cables? (im sure you h...
by jo2jo
Wed Sep 05, 2018 4:39 am
Forum: General
Topic: remotely manage MT's
Replies: 4
Views: 2402

Re: remotely manage MT's

You could have all remote / cpe MT's run a VPN client (add vpn interface) back to a central MT (either in a Datacenter or a cloud MT), then only allow management via the VPN network. All of this can be done in ROS at no additional charge (FYI if your new to mt / ros). The use of VPN client is nice a...
by jo2jo
Sat Sep 01, 2018 11:12 pm
Forum: Wireless Networking
Topic: RouterOS station roaming at specified signal level
Replies: 1
Views: 1715

Re: RouterOS station roaming at specified signal level

I know this is an old thread, but if you are still looking for a solution, you may want to look for APs that support 802.11k (roaming/neighbor reports). (and maybe also 802.11r) . these protocols, if the AP and client support them, allow the AP to give the client a list of "offical similar"...
by jo2jo
Fri Aug 31, 2018 12:39 am
Forum: General
Topic: enhance "check-gateway" feature - use arbitrary check IP
Replies: 34
Views: 46482

Re: enhance "check-gateway" feature - use arbitrary check IP

xqx: thanks for explination , 2 questions: 1- assuming you dont have any other static routes (ie no other entries in /ip route), could you use: add distance=3 gateway=192.168.2.254 instead of: add distance=10 gateway=192.168.2.254 (im just trying to fully understand if there is a link between the sc...
by jo2jo
Wed Aug 29, 2018 7:25 am
Forum: RouterBOARD hardware
Topic: [Woobm] - Can't see characters while typing
Replies: 4
Views: 1699

Re: [Woobm] - Can't see characters while typing

Im seeing this same issue on Termius (ios ssh/telnet client) - Im also seeing quite a few garbage characters (but ~95% of output is fine). Is it possible i need to set a specific charset in termius? (currently utf-8 ) (im testing the woobm on a CCR1009 's usb port). woobm is still a very handy / coo...
by jo2jo
Wed Aug 15, 2018 10:31 pm
Forum: Scripting
Topic: changing /system default-configuration script
Replies: 5
Views: 6644

Re: changing /system default-configuration script

I agree w pcdwarf, here is a related thread i started requesting the same thing (ie return to the prior MT default-config ability to configure a brand-new device over eth1, even if done in a secure, time limited, or otherwise, way).

viewtopic.php?f=2&t=117450
by jo2jo
Sun Aug 12, 2018 10:12 pm
Forum: General
Topic: VPN connection drops
Replies: 6
Views: 3530

Re: VPN connection drops

emma, next time this happens (ie peer failed to reply , and vpn wont connect), try this: on the vpn CLIENT side, go to ip , firewall, connections (big list of all connections). find the connection for your VPN servers's public IP (in the list above), and click REMOVE (the red "-" button) t...
by jo2jo
Sat Aug 04, 2018 8:48 pm
Forum: Scripting
Topic: Blacklist Filter (Development Topic)
Replies: 188
Views: 61610

Re: Blacklist Filter (Development Topic)

dave, maybe make a google forums entry where users (who plan to pay once you go live, which i realize may be a good while away) can submit their email address to you, easily and securely (easy for you to create/keep i mean). This way when you launch, you can send an email to all those who submitted,...
by jo2jo
Sat Aug 04, 2018 4:20 am
Forum: RouterBOARD hardware
Topic: How to PoE power CCR1009-7G-1C-1S+PC [SOLVED]
Replies: 3
Views: 4236

Re: How to PoE power CCR1009-7G-1C-1S+PC [SOLVED]

to add some info to this thread, i was disappointed to find out that my UBNT EdgeSwitch (24p / 250w) was unable to passive POE power my new CCR1009-7G-1C-1S+ (non passive cooling, full 19" version). This is the fault / limit of the UBNT Switch, as its specs show that it only allows up to 17w pe...
by jo2jo
Sat Aug 04, 2018 4:03 am
Forum: Scripting
Topic: Blacklist Filter (Development Topic)
Replies: 188
Views: 61610

Re: Blacklist Filter (Development Topic)

Hi, since I'm interested about the blacklist service and in order to evaluate whether it's useful to me, I'd like to know, what exactly is blacklisted? Who/what created such list of IPs? Thanks in advance. the dev of this script/list uses both publicly available lists of "bad" ips (spamha...
by jo2jo
Fri Aug 03, 2018 8:26 am
Forum: Scripting
Topic: Blacklist Filter (Development Topic)
Replies: 188
Views: 61610

Re: Blacklist Filter (Development Topic)

I loved your service and used it, im def. willing to pay once you are live. Do you have anywhere we can sign up for an email alert or some info once the paid service is done/live? (subbing to this thread or the other main/closed thread will produce alot of "noise") tks
by jo2jo
Fri Aug 03, 2018 8:19 am
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 211506

Re: Blacklist Filter update script

Thanks for running the service all these years and doing such a great job with the script and updates! ive really appreciated it. I too would pay 5 (maybe 10$) a month for this same service to continue. Is there anywhere we can signup for an email/alert when your paid service goes live? (other than ...
by jo2jo
Fri Aug 03, 2018 12:47 am
Forum: Scripting
Topic: Script check DNS serve is alive
Replies: 6
Views: 4991

Re: Script check DNS serve is alive

is there anyway to check a DNS request against a specific dns server? ( ie equivlent of linux: dig @192.168.1.117 -p53 netflix.com ) ? im trying to script (or netwatch) a check to confrim that a specific DNS server is working (ie its resolving dns queries) , else change the DNS the mikrotik uses. (a...
by jo2jo
Sun Jul 29, 2018 6:15 am
Forum: Scripting
Topic: Can't launch script from Netwatch
Replies: 14
Views: 11778

Re: Can't launch script from Netwatch

nothing to help yall with from me, but here is a relevant thread with more info on this same issue (i have alot of netwatch + script combos as well):
viewtopic.php?f=2&t=134538
by jo2jo
Sun Jul 29, 2018 5:54 am
Forum: General
Topic: Netwatch deprecated ? [SOLVED]
Replies: 70
Views: 30333

Re: Netwatch deprecated ? [SOLVED]

this is very concerning. netwatch is something admins depend on to keep their routers up/online and accessible. now i have a huge unknown floating around as we use netwatch to call scripts (since netwatch is too basic with a single ping to cause an action, so great mt scripts are the perfect solutio...
by jo2jo
Fri Jul 06, 2018 5:01 pm
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool ( port scanner scan )

while i know it is wrong to " bump" your own thread, but on a weekly basis ( weekly is a bare minimum, sometimes daily basis) i need a portscan tool on ros. Its ridiculous having to look up mac-address OIDs and/or use /sys telnet port=x as a rough port scan tool to ID devices. Often when i...
by jo2jo
Sun Jun 17, 2018 8:04 am
Forum: Wireless Networking
Topic: AC equipment and spectral scan problem
Replies: 174
Views: 46199

Re: AC equipment and spectral scan problem

All the discussion in here are GREAT, really useful, detailed info and stats- thanks! I hope we can also keep the focus on AC Spectral scan (and when will it come MT??). pls, any kind of ETA or info?? I mainly do APs for end user clients/devices (ie building or apartment wifi), but i can add one of ...
by jo2jo
Sat Jun 16, 2018 7:48 am
Forum: General
Topic: Bridge taking mac of Virtual AP (even if not lowest mac)
Replies: 1
Views: 1049

Re: Bridge taking mac of Virtual AP (even if not lowest mac)

to update- i got a reply from mt support- (in regurads to bridges, and them taking the mac address of a vAP over all other member ports): "currently it will assign the MAC address of the first interface that is up, virtual interfaces are a bit more likely to be up first." We do not have pl...
by jo2jo
Fri Jun 15, 2018 9:31 pm
Forum: Wireless Networking
Topic: Wireless KeepAlive Frames ? and/or super high "last activity" on clients
Replies: 5
Views: 7932

Re: Wireless KeepAlive Frames ? and/or super high "last activity" on clients

is there any update on this (or mt reply) - im still seeing this, only on vAP wireless ints, and on 6.42.3 (on all types of mt wireless devices, ie wap AC and cap AC, amoung others)- all have KeepAlive frames enabled / is checked it doesnt seem to cause any issues, that i know of, but it does cause ...
by jo2jo
Fri Jun 15, 2018 2:50 am
Forum: General
Topic: Bridge taking mac of Virtual AP (even if not lowest mac)
Replies: 1
Views: 1049

Bridge taking mac of Virtual AP (even if not lowest mac)

I have a bridge with ports: eth1 , wlan1 and a vAP (ap-bridge) interface of wlan1. (ros 6.42.3) Eth1 has the "lowest" mac of all, yet the bridge keeps taking the mac address of the vAP. (i read on the forums from user citing the manual- that a bridge with all defaults, will take the mac of...
by jo2jo
Thu Jun 07, 2018 9:53 pm
Forum: General
Topic: No POE Power Cycle @ hEX POE
Replies: 17
Views: 8448

Re: No POE Power Cycle @ hEX POE

hi, I thought I confirm this in my opening post, but yes, ping power cycle does not work also ( seems to be any kind of automatic power cycling outside of manually by the user, switching from POE off to POE auto, does NOT work). A temporary, rough, work around, that I have been using is a script i w...
by jo2jo
Tue Jun 05, 2018 6:21 am
Forum: RouterBOARD hardware
Topic: CAP ac bad Antenna design?
Replies: 95
Views: 36918

Re: CAP ac bad Antenna design?

(duplicate of my post to other related thread, but info is relevant) hi, i wanted to post my limited wifi testing so far on the cap AC (good). I bought the unit from amazon a few days ago (most standard MT US sellers are out of stock). Running latest release, 6.42.3 (updated FW also). Im very impres...
by jo2jo
Tue Jun 05, 2018 6:20 am
Forum: Wireless Networking
Topic: Mikrotik CAP AC Performance Review
Replies: 46
Views: 42707

Re: Mikrotik CAP AC Performance Review

hi, i wanted to post my limited wifi testing so far on the cap AC (good). I bought the unit from amazon a few days ago (most standard MT US sellers are out of stock). Running latest release, 6.42.3 (updated FW also). Im very impressed so far with my limited tests (and i have other threads on here wi...
by jo2jo
Mon May 28, 2018 12:50 am
Forum: General
Topic: /ip route rules and mangle load balancing issues
Replies: 1
Views: 1067

/ip route rules and mangle load balancing issues

We have been trying to stream-line the load balancing on some MTs we inheareted, however on some /ip route rules were manually added and we would like to remove them (but are having issues removing). There are 2x internet uplinks, of equal speed, both with Pub IPs. All local clients are on 192.168.4...
by jo2jo
Thu Apr 19, 2018 8:31 am
Forum: General
Topic: poe out, Power Cycle button never works
Replies: 7
Views: 3733

Re: poe out, Power Cycle button never works

interesting, well the issue /bug def. applies to all hex POE (on both 24v and 48v), ive now tested several of them. I had to end up writing a script that does a ping check and if down, will manually power cycle the ports (via /int eth poe ... on / off) . hopefully bug will be fixed soon with a rOS u...
by jo2jo
Fri Apr 13, 2018 12:42 am
Forum: General
Topic: New OID for CPU
Replies: 8
Views: 13223

Re: New OID for CPU

bump - (mt support ?) We still dont have consistency pre-CPU OID change (ie around 6.35). How do we access (via snmp OID) the CPU load % shown in /system resource print (ie the avg of X cores, instant value). This is not a minor issue, its very important to graph / have access to CPU % data. I appre...
by jo2jo
Wed Apr 04, 2018 7:41 am
Forum: General
Topic: Log all console commands [SOLVED]
Replies: 31
Views: 19091

Re: Log all console commands [SOLVED]

+1 pls
by jo2jo
Wed Apr 04, 2018 7:33 am
Forum: General
Topic: Logging topics description
Replies: 2
Views: 2351

Re: Logging topics description

we will make a list of topic explanations this week. the manual will be updated http://wiki.mikrotik.com/wiki/Log still would like to see this added to wiki. (also a more clear example or explination of effects of having multipule topics in a rule, ie is it an AND or OR that will trigger the action...
by jo2jo
Tue Apr 03, 2018 11:08 pm
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36803

Re: Wi-Fi speed issues on hAP AC Lite

On 6.40.5 wifi works with no problems. http://www.speedtest.net/result/7195844333.png Thanks for reply / info- Is this on a Hap AC (if so was the RB purchased recently)? Also, I’m assuming that this is via a three chain desktop/laptop AC adapter/client , right? ( as those are the down speeds I do s...
by jo2jo
Mon Apr 02, 2018 1:24 am
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Re: Please add basic portScan tool

Will TheDude not save the situation? Not sure how theDude is relevant to this ( or thedude is just as relevant/irrelevant as manually running nmap outside ros ) , we are looking for a port scan utility to be added to routerOS, this way it is accessible directly from/on our various routerboards/rOSd...
by jo2jo
Sun Apr 01, 2018 7:07 am
Forum: General
Topic: Feature Request: Logging of all administrator user actions
Replies: 28
Views: 16701

Re: Feature Request: Logging of all administrator user actions

Plus 1 - I agree, even detail blogginglogging for even one admin user would be very useful and helpful (Ie more than the current logging of “firewall rule changed “would be helpful, Best would be exact print out of rule change from X to Y ) .
by jo2jo
Sun Apr 01, 2018 7:04 am
Forum: General
Topic: No POE Power Cycle @ hEX POE
Replies: 17
Views: 8448

Re: No POE Power Cycle @ hEX POE

Hi, I am seeing the same issue, see my thread on the same thing ( mt says they might look into it but they seem to be aware of the issue);

viewtopic.php?f=2&t=132238
by jo2jo
Fri Mar 30, 2018 7:12 am
Forum: General
Topic: Change multiple rules at same time?
Replies: 6
Views: 6861

Re: Change multiple rules at same time?

what is posted in first reply (or quoted below) does not work, or does not work with src-addy lists. command i tried: set src-address-list="list 2 2" [find src-address-list=list1] (also tried the way that would make logical sense): set [find src-address-list=list1] src-address-list="l...
by jo2jo
Thu Mar 29, 2018 11:37 pm
Forum: General
Topic: poe out, Power Cycle button never works
Replies: 7
Views: 3733

Re: poe out, Power Cycle button never works

I've used this on hex POE and hex POE lite. both works. POE is set to force on. it used as a switch though, not a router. if that makes any difference. Interesting , When you say is used as a switch, do you mean it’s running SWOS, or is it running routerOS (and using a bridge interface) What versio...
by jo2jo
Thu Mar 29, 2018 8:13 pm
Forum: General
Topic: poe out, Power Cycle button never works
Replies: 7
Views: 3733

Re: poe out, Power Cycle button never works

to update: i got a reply from MT support, and they said the only work around is to manually set poe-out to OFF, then back to AUTO/Forced-ON, and they hope to be able to fix the button in a ROS update soon.

(i guess this button is not used very often or else MT / others would have caught this).
by jo2jo
Sat Mar 24, 2018 10:05 am
Forum: General
Topic: Fasttrack & queue tree non-global queues
Replies: 4
Views: 3856

Re: Fasttrack & queue tree non-global queues

If I enable fasttrack on the router, they see 660 / 550 which is the limit of the microwave link to that router. Pretty significant difference. But, as soon as I enable fasttrack, the 25 and 50 mbps clients see unlimited as well even though the queue tree for them is not using global. Cwachs - i’m ...
by jo2jo
Wed Mar 21, 2018 5:54 pm
Forum: General
Topic: poe out, Power Cycle button never works
Replies: 7
Views: 3733

poe out, Power Cycle button never works

Ive never been able to see or get the Power Cycle command (in winbox) to work (or do anything at all). ie i should be able to click it, select eth4 , set duration to 5s or 10s, and then poe OUT on eth4 should be set to off, for 5/10s then come back on (to thus power cycle what ever device is getting...
by jo2jo
Wed Mar 21, 2018 6:08 am
Forum: General
Topic: /ip cloud (ddns + time) = Error: request timed out (90% of time)
Replies: 9
Views: 13070

Re: /ip cloud (ddns + time) = Error: request timed out (90% of time)

So it is up to some network guy on Mikrotik's (or their ISP) side to fix the routing issue, and everything will be fine. Did you try to clear DNS cache? 91.188.51.139 does not exist anymore and cloud.mikrotik.com is resolved to 81.198.87.240 We Still constantly see Error: request timed out (althoug...
by jo2jo
Tue Mar 20, 2018 6:22 am
Forum: RouterBOARD hardware
Topic: new mt poe SW - CRS112-8P-4S-IN POE question
Replies: 2
Views: 2055

Re: new mt poe SW - CRS112-8P-4S-IN POE question

thanks for reply Mistry, I had ofcourse read that PDF and the specs page prior to posting (neither directly answer my question), however MT support replied to my email (with the same question), and the answer is: YES! this device (and i assume its 24 port version) CAN support 24v Passive POE on spec...
by jo2jo
Sun Mar 18, 2018 5:57 pm
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 80
Views: 46899

Please add basic portScan tool ( port scanner scan )

Hi, I’ve been using routerOS since v 2.x (and LOVE IT), and have hundreds of mt s deployed, a feature I’m constantly in need of is even a bare-bones/basic built in port scanner: /tool portscan (or /tool portScanner) It doesn’t have to be powerful or advanced like nmap, nor fast, just a tool that can...
by jo2jo
Tue Mar 13, 2018 8:55 am
Forum: RouterBOARD hardware
Topic: new mt poe SW - CRS112-8P-4S-IN POE question
Replies: 2
Views: 2055

new mt poe SW - CRS112-8P-4S-IN POE question

i still cant get an answer to this, on the new: CRS112-8P-4S-IN it has 2x DC plug inputs, so if you plug in a 24v DC in AND a 48v DC in, can you then *choose* Passive 24v POE on some ports, and 802.3at/af (active poe) on some ports? ie like you can do on a UBNT EdgeSwitch POE ? or is it all or nothi...
by jo2jo
Sun Feb 18, 2018 11:54 pm
Forum: General
Topic: /ip cloud (ddns + time) = Error: request timed out (90% of time)
Replies: 9
Views: 13070

/ip cloud (ddns + time) = Error: request timed out (90% of time)

Any one know what is up with /ip cloud (the mt DDNS and "update time" cloud service) and "Error: request Timed out"? Ive been seeing this over the past 12 months at just about every install i have done (installs on various ISPs ). *usually*, by hitting Force Update several times ...
by jo2jo
Fri Feb 16, 2018 10:10 pm
Forum: Beginner Basics
Topic: ip neighbor 6.41, interface, discover-interface-list
Replies: 6
Views: 11283

Re: ip neighbor 6.41, interface, discover-interface-list

I was stumped at first too after 6.41 upgrade, until i found this thread. (perhaps a message in winbox or CLI pointing to new location/use of interface list , even if temporary, would be helpful). For about a week or 2 i had to settle for Mac-telnet / neighbor info being broadcast on WAN / public in...
by jo2jo
Thu Feb 15, 2018 6:34 am
Forum: General
Topic: New OID for CPU
Replies: 8
Views: 13223

Re: New OID for CPU

Also can someone please show where in the CLI we can access these OIDs (ie at what / run Print oid at)? i never used to have an issue using the OID from /sys resource pr oid (or /sys resour cpu pr oid) but as of recent ROS versions / recent deployments the CLI is returning OID that give error. tks
by jo2jo
Wed Feb 14, 2018 1:45 am
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36803

Re: Wi-Fi speed issues on hAP AC Lite

All of the above posters seem to have in common that the half speed only happens on 2GHz. Please test 5GHz also. Also try to disable one of the chains and see what happens then. Im not sure how much real world proof you all need, but i have tested every consumer type (builtin wifi) device MT makes ...
by jo2jo
Wed Feb 14, 2018 1:43 am
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36803

Re: Wi-Fi speed issues on hAP AC Lite

All of the above posters seem to have in common that the half speed only happens on 2GHz. Please test 5GHz also. Also try to disable one of the chains and see what happens then. Im not sure how much real world proof you all need, but i have tested every consumer type (builtin wifi) device MT makes ...
by jo2jo
Thu Feb 01, 2018 6:19 am
Forum: Announcements
Topic: MikroTik News February 2018 (Issue #80)
Replies: 64
Views: 35811

Re: MikroTik News February 2018 (Issue #80)

.. * new hAP ac² Dual Band Desktop AP, $69 ... Does this device provide more real WLAN throughput as the hAP ac (i saw never more than ~130MBit even if i had a 866MBit WIFI 5GHz connection) ? See this post: https://forum.mikrotik.com/viewtopic.php?f=7&t=113830 Im seeing same max speed issues (o...
by jo2jo
Thu Jan 04, 2018 1:39 am
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36803

Re: Wi-Fi speed issues on hAP AC Lite

Notes: hAP AC Lite is 100mbps ethernet ports only. In order to go above 100mbps, I bonded 2 ports to my RB750Gr3. thanks soonwai, that is useful info and very detailed, but to be clear my speed issues/problems and testing are all on 5ghz. Ive never benchmarked 2ghz much as in most places its not ve...
by jo2jo
Sun Dec 24, 2017 3:54 am
Forum: Wireless Networking
Topic: Wi-Fi speed issues on hAP AC Lite
Replies: 39
Views: 36803

Re: Wi-Fi speed issues on hAP AC Lite

(only speaking of 5ghz performance below, we just about dont test for 2.4 bc of interference): I think this is either a HW issue (wireless chipsets used), or something in the ROS driver, but we contently see MUCH worse wifi speeds on mobile devices when comparing MT (wAP AC, hAP AC, hAP AC Lite) VS ...
by jo2jo
Mon Nov 27, 2017 11:15 am
Forum: The Dude
Topic: Dude windows .exe client change log?
Replies: 0
Views: 878

Dude windows .exe client change log?

I see the windows client (.exe) updating on download.mt.com (ie the .exe shows dude-install-6.40.5.exe) (ie it keeps with the ROS version), but the changelog here (https://wiki.mikrotik.com/wiki/Manual:The_Dude_v6/dude_v6.xx_changelog) shows only up to 6.39 , and says to watch the dude RC fourm post...
by jo2jo
Mon Nov 27, 2017 11:07 am
Forum: Announcements
Topic: MikroTik used by Amazon in their cloud datacenters
Replies: 33
Views: 32569

Re: MikroTik used by Amazon in their cloud datacenters

Super cool! MT and all us users must be on to something good finally :)

A thread with picts/notes of MT "sightings in the wild" would be miles long... for good reason!
by jo2jo
Mon Nov 20, 2017 5:17 am
Forum: General
Topic: Winbox Feature Req: Show Winbox Bandwidth usage at top
Replies: 5
Views: 2620

Re: Winbox Feature Req: Show Winbox Bandwidth usage at top

any plans to add this MT? winbox usage can easily get up into the 500k/s -1mbit range on large address-lists, dns cache, queue lists... users can forget and leave these open overtime and then wonder why their speeds at a site are taking a hit. even winbox with interface list can often use 100k/s tha...
by jo2jo
Sat Oct 28, 2017 9:14 am
Forum: General
Topic: WInbox feature request: drag and drop column order and right click column menu
Replies: 24
Views: 8283

Re: WInbox feature request: drag and drop column order and right click column menu

+1 in winbox pls! there are many columns that i like to have added, that may be long in length, so it would be great if we could arrange the columns so that we dont have to loose important columns if we want to see long length columns. (its really amazing the number of columns MT / Winbox allows us ...
by jo2jo
Sat Oct 28, 2017 3:49 am
Forum: General
Topic: My iWinbox app is released! Manage your RouterOS devices on iPhone/iPad and SNMP monitoring
Replies: 35
Views: 17452

Re: My iWinbox app is released! Manage your RouterOS devices on iPhone/iPad and SNMP monitoring

Would it ever be possible for your iWinbox app to also use Winbox port 8291 to access/communicate with a MT? or is winbox a closed protocol that MT has not released details/specs for? btw; i have bought the full , max, version of your app, mainly to support you!, as i dont have API nor API-SSL enabl...
by jo2jo
Sat Oct 28, 2017 3:25 am
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 487
Views: 269838

Re: Tik App, MikroTik android utility ALPHA test

Just wanted to put in another request for an iOS version. The only similar app on iOS requires use of the MT API which we disable on our default configs ( + the app is expensive), we would much prefer an even basic version for iOS by Mikrotik which uses winbox pt 8291 by default.

thanks
by jo2jo
Mon Oct 23, 2017 7:42 am
Forum: Scripting
Topic: Google Dynamic DNS update script
Replies: 6
Views: 9153

Re: Google Dynamic DNS update script

This is an EXCELLENT script, thanks to OP for the main script (+others who have made changes and posted here)!! my version/changes are tested working on rOS 6.40.4 and with Google Domains (Synthetic Records -> Dynamic DNS). below are some changes that I made that will maybe help others (it does what...
by jo2jo
Mon Oct 23, 2017 2:23 am
Forum: General
Topic: Feature Request: Copy Rule(s)
Replies: 3
Views: 2449

Re: Feature Request: Copy Rule(s)

add copy-from= Excellent, a few days ago i had to use my phone to SSH into a newly confg'd mt WIFI AP and needed to clone a /int wire sec profile to change a users WPA2 PSK , i was trying copy, duplicate but niether worked (nor did <tab> show them as options)... I eventually did a rough work around...
by jo2jo
Mon Oct 16, 2017 5:48 am
Forum: General
Topic: why ros SNMP returns /int comments= for name OID vs /int name= ?
Replies: 0
Views: 806

why ros SNMP returns /int comments= for name OID vs /int name= ?

Comments = comments Interface name = interface name so why does ROS return an interfaces' comments when the snmp oid for an interface name is queried? (this was a change made several ros ago, as in v4 or v5 and doesnt make any sense) ie: query name= via snmp, and you get the interfaces comment= , no...
by jo2jo
Fri Oct 13, 2017 2:19 am
Forum: The Dude
Topic: Export Map interval
Replies: 34
Views: 21637

Re: Export Map interval

I also wish this feature would return, we use various programs to display maps/graphs of network stats, and they all allow embedding/placment of iFrame and other items. Currently embeding a iframe for the WebFig based Dude map will work for a few minutes (via iframe) , but webfig login will time out...
by jo2jo
Mon Oct 09, 2017 10:45 pm
Forum: Beginner Basics
Topic: MUM presentations
Replies: 7
Views: 2739

Re: MUM presentations

Hello! I don't find any topic for this question. Therefore write here. I want to download all presentation from MUMs, but not be able found any resources with this. In MUM's presentations has many interesting information. Where may I find it? Sorry for my English. Also a good method, google search ...
by jo2jo
Sun Oct 01, 2017 9:24 am
Forum: General
Topic: LCD Display causing packet loss... what???
Replies: 15
Views: 4672

Re: LCD Display causing packet loss... what???

Im going to to a big, new thread on this tomorrow, but after 5 days of trying to figure out why only a Rb3011 was showing weird BW speed issues, the fix was to DISABLE THE LCD SCREEN. Im talking BW issues, during which CPU load is maxing at 30-40% tops, so not high load or high BW... but fix was to ...
by jo2jo
Sun Oct 01, 2017 1:51 am
Forum: RouterBOARD hardware
Topic: Redundant power inputs
Replies: 27
Views: 17417

Re: Redundant power inputs

newest RouterBOARD models support both PoE and Jack powering at the same time. When one of them will fail, other will continue to power the device. If the voltages will be different, it will use the higher one, and will switch to the other one when that one is removed. Basically redundant power. Th...
by jo2jo
Wed Sep 27, 2017 12:09 am
Forum: General
Topic: tool traffic-monitor - Interval? (ie how often executes?)
Replies: 0
Views: 781

tool traffic-monitor - Interval? (ie how often executes?)

how often does /tool traffic-monitor execute the on-event= action? ie if i set it to send an email if eth1 drops below 1mbit, is it as soon as it drops below 1mbit? will i get emails every 1s while it is below 1mbit? is it a 1min interval? also how is the bw reading calculated- is an AVG of x # of s...
by jo2jo
Tue Sep 26, 2017 10:30 pm
Forum: General
Topic: dhcp-client stuck in rebinding state when moved to new network
Replies: 7
Views: 15476

Re: dhcp-client stuck in rebinding state when moved to new network

Even as of rOS 6.40.3, Im still seeing this rebinding issue on various types of dhcp-servers (ie various types of devices that a rOS device is connected to as a dhcp-client). For example (in one configuration), if i power cycle a cable modem, in rOS the dhcp-client will go to rebinding as soon as th...
by jo2jo
Mon Sep 18, 2017 5:08 am
Forum: General
Topic: SNMP Get returns interface COMMENTS, not interface NAME
Replies: 0
Views: 1015

SNMP Get returns interface COMMENTS, not interface NAME

I noticed at some point the ROS started returning an interfaces comments instead of the interfaces name when a snmp client queries the builtin ROS snmp server. This is pretty annoying as users often add comments to interfaces that have nothing to do with the interfaces proper name (which is why they...
by jo2jo
Mon Aug 28, 2017 10:13 pm
Forum: General
Topic: snmp security... private or authorized?
Replies: 6
Views: 5785

Re: snmp security... private or authorized?

hi, any chance MT could update the manual with info on the snmp "security" setting (none, authorized, private): https://wiki.mikrotik.com/wiki/Manual:SNMP read-access (yes | no; Default: yes) Whether read access is enabled for this community security (authorized | none | private; Default: ...
by jo2jo
Wed Aug 09, 2017 7:43 pm
Forum: Announcements
Topic: v6.40.1 [current]
Replies: 74
Views: 38417

Re: v6.40.1 [current]

Everyone who sees log messages about PoE but did not see them in previous versions - There was no PoE-OUT logging topic in past RouterOS versions. It was just now introduced in 6.40 version. in my post (in regards to passive POE issues introduced only in 6.40.1) , im not referring to log messages, ...
by jo2jo
Tue Aug 08, 2017 12:51 am
Forum: Announcements
Topic: v6.40.1 [current]
Replies: 74
Views: 38417

Re: v6.40.1 [current]

After the upgrade to version 6.40.1 from 6.39.2, problems with PoE ports: 00:10:11 poe-out,warning ether4 detected poe-out status: short_circuit 00:10:13 poe-out,info ether4 detected poe-out status: wait_for_load 00:10:14 poe-out,warning ether4 detected poe-out status: short_circuit 00:10:14 poe-ou...
by jo2jo
Sun Aug 06, 2017 4:44 am
Forum: General
Topic: 802.11ac spectral scan
Replies: 157
Views: 53606

Re: 802.11ac spectral scan

I agree we still really need this , esp. on some of the latest RB hardware / products it's surprising it's not still supported.

Even an expected date or some kind of official comment would be helpful.
Thanks
by jo2jo
Tue Aug 01, 2017 11:04 pm
Forum: General
Topic: Default Config w Mac-Telnet disabled - Change Needed?
Replies: 8
Views: 5800

Re: Default Config w Mac-Telnet disabled - Change Needed?

Don't you think that the need to keep not so proficient users safe from possible security breaches outweighs your need for commodity on device deployment? Thanks for your comments and info on this topic, Yes, I do totally agree with this point above, which i why i have no issue with any of the othe...
by jo2jo
Tue Aug 01, 2017 8:13 pm
Forum: General
Topic: Default Config w Mac-Telnet disabled - Change Needed?
Replies: 8
Views: 5800

Re: Default Config w Mac-Telnet disabled - Change Needed?

If you don't like the factory default config, you can supply your own from within 'netinstall', and whatever you gaveit will become the new default for the device from then on. If you just want to make a couple minor changes to the factory default, export the factory default to an .rsc, and make wh...
by jo2jo
Thu Jul 27, 2017 1:13 am
Forum: Announcements
Topic: v6.40 [current]
Replies: 102
Views: 41067

Re: v6.40 [current]

I was SUPER happy and hopeful to see this: *) defconf - improved IPv4 default firewall configuration; but.... From the new Def_config.txt file: /ip neighbor discovery set [find name="ether1"] discover=no and filter add chain=input action=drop in-interface-list=!LAN comment="defconf: ...
by jo2jo
Thu Jul 27, 2017 1:12 am
Forum: General
Topic: Default Config w Mac-Telnet disabled - Change Needed?
Replies: 8
Views: 5800

Default Config w Mac-Telnet disabled - Change Needed?

One thing i used to love about MT devices, was how they had Mac-Telnet enabled on all interfaces, by default from the factory. this made it very easy for a remote admin, with just a single Mikrotik on a network, to allow customers to have new MTs shipped directly to the customer and provide them wit...
by jo2jo
Mon Jul 17, 2017 9:54 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 211506

Re: Blacklist Filter update script

thank you so much for putting all this work into this FREE project, that you offer for us. Its really great! Today i started getting the alarm on my rb3011 (great idea to singal updates btw!) , so i checked the log and went and found the required script update. So im now running the latest from OP o...
by jo2jo
Wed Jul 05, 2017 8:16 pm
Forum: General
Topic: Which queue type to use?
Replies: 2
Views: 1781

Re: Which queue type to use?

Thanks, This did help quite a bit and is what im using with success in my setup, however i still seem to be having issues with the "download-limit-at=Xmbit" setting, Even with "download limit at = 17500k" , Im still seeing packets queued when only 8.3mbit of data / usage are pass...
by jo2jo
Wed Jun 28, 2017 12:20 am
Forum: General
Topic: Feature Req: show Standard Deviation on Pings / in Ping Gui
Replies: 2
Views: 1701

Feature Req: show Standard Deviation on Pings / in Ping Gui

When running cli: /ping x.x.x.x (Or in winbox tool ->ping) it would be great if in addition to Min / Max / Avg stats, you would also provide the STD (standard deviation among all the pings for that run). Much like how you provide STD on the EXCELLENT ROS v6 Traceroute tool. This would be very helpfu...
by jo2jo
Sat Jun 24, 2017 8:39 pm
Forum: General
Topic: Winbox Feature Req: Show Winbox Bandwidth usage at top
Replies: 5
Views: 2620

Winbox Feature Req: Show Winbox Bandwidth usage at top

Ie, at the top (where you can right click to add CPU usage/mem usage, Time and Uptime,) allow us to show the current bandwidth utilization of the winbox session. I know the Green Bars in the top right corner show if data is being sent across the winbox connection, but we really need to be able to se...
by jo2jo
Thu Jun 22, 2017 11:54 pm
Forum: General
Topic: Which queue type to use?
Replies: 2
Views: 1781

Which queue type to use?

Assume i have a 20mbit upload connection. (im only concerned with upload in this case/post). I want to have a queue setup such that 19mbit upload is the max that can be used. (thus leaving 1mbit free, and not maxing out the line) I have one simple queue named "A" which i want to be able to...
by jo2jo
Mon Jun 19, 2017 8:17 pm
Forum: General
Topic: IP/Cloud doesn't perform auto-update
Replies: 19
Views: 22994

Re: IP/Cloud doesn't perform auto-update

Hi Please assist me with a script for No-IP portal. am currently on Version 6.39.2 (mipsbe) Thanks A simple google search for: mikrotik ddns script (or better yet i like to use on google : mikrotik ddns script site:forum.mikrotik.com ) will find your answer. here are some links from that search: ht...
by jo2jo
Sat Jun 17, 2017 11:53 pm
Forum: The Dude
Topic: Dude Network Map reset on discovery + Add default winbox password for discovery?
Replies: 8
Views: 5075

Re: Dude Network Map reset on discovery + Add default winbox password for discovery?

can anyone answer this? I dont see how a bunch of graphs of latency to mikrotik servcies (telnet ping, http ping) is useful beyond what can be done with snmp monitoring. The advantage dude provides is it can access winbox/ros data , so how do you allow dude discovery to know the login/pass to use? tks
by jo2jo
Sat Jun 17, 2017 10:41 pm
Forum: The Dude
Topic: Simple Dude Discovery Question - pls help.
Replies: 2
Views: 1615

Simple Dude Discovery Question - pls help.

HOW do i set a profile/agent/group, so that i can set the ROS username/pass and *THEN* when i run Discovery it will find all ROS RBs and i wont have to manually enter each ROS username/pass Scenario: I have a dude server (CHR , on AWS, latest version) -- i have a VPN from there to a Site with 24 Ro...
by jo2jo
Sat Jun 17, 2017 9:30 am
Forum: General
Topic: 802.11ac spectral scan
Replies: 157
Views: 53606

Re: 802.11ac spectral scan

I really hope im missing something, but after seeing the potential of /int wire spectral-scan on some of our slightly older MT equipment (ie hAPac and Sextants) , we just deployed 12 x new OmniTik5 AC poe's (48v poe ones, not the older OmniTik 5ghz) For a client, and i went to run (6.39.2) : /int wi...
by jo2jo
Thu Jun 15, 2017 9:01 am
Forum: RouterBOARD hardware
Topic: 802.3 POE and PoE Out = Forced On ? (ie on new Omnitik 5 poe)
Replies: 2
Views: 1557

Re: 802.3 POE and PoE Out = Forced On ? (ie on new Omnitik 5 poe)

Thanks, That is super helpful and informative! The main point i took away (and didnt know) was that *any* (not all) 802.3 compliant devices will accept power if they are provided with "passive" 48v. So that does help me understand how Forced-On might work @ 48v. I hope MT can chime in here...
by jo2jo
Thu Jun 15, 2017 7:59 am
Forum: Wireless Networking
Topic: New wireless registration details
Replies: 4
Views: 1874

Re: New wireless registration details

I have been wondering these same questions as well, Mikrotik- can you update the manual with an explination of the TX / RX rates as shown in /int wireless reg ?

or update this thread even?

thanks!
by jo2jo
Wed Jun 14, 2017 9:07 pm
Forum: General
Topic: IP/Cloud doesn't perform auto-update
Replies: 19
Views: 22994

Re: IP/Cloud doesn't perform auto-update

This is most certainly not meant that way. Your actual router must have the external IP. It will not detect changes on your gateways IP and we have no plans for such functionality. You can send your LAN IP if you want, via the "use-local-address" option if you want, but detection still ap...
by jo2jo
Tue Jun 06, 2017 5:16 am
Forum: General
Topic: Winbox GUI Filter Feature / Button
Replies: 17
Views: 6079

Winbox GUI Filter Feature / Button

Is my syntax off , or am i missing something when i try to filter an address , via the Winbox Filter, in /ip fire address-lists

(see attached screen shot)
reguardless of what i try to put here, i always end up with 0 results. (name filtering works fine however)

tks
winbox.JPG
by jo2jo
Tue Jun 06, 2017 2:25 am
Forum: General
Topic: Mangle Routing Mark for mt's builtin VPN Clients ?
Replies: 1
Views: 1342

Re: Mangle Routing Mark for mt's builtin VPN Clients ?

EDIT: I decided to email MT support and got this helpful, quick reply from them: "You should have rules which puts routing mark on 1701 for L2TP and another routing mark for 1723 TPC and GRE 47 traffic." I had only been marking for 1701 UDP and proto GRE, so i will re-test with also markin...
by jo2jo
Mon Jun 05, 2017 1:58 am
Forum: General
Topic: Mangle Routing Mark for mt's builtin VPN Clients ?
Replies: 1
Views: 1342

Mangle Routing Mark for mt's builtin VPN Clients ?

(mikrotik Routerboards on both sides of this connection) Side A is running MT's PPTP Server and L2TP server (both builtin Mikrotik, on this device's single, public IP) Side B (at a different location) is running PPTP-Client and L2TP-Client to Side A. (this all works great) On Side B im looking to us...
by jo2jo
Sat May 20, 2017 12:00 am
Forum: RouterBOARD hardware
Topic: 802.3 POE and PoE Out = Forced On ? (ie on new Omnitik 5 poe)
Replies: 2
Views: 1557

802.3 POE and PoE Out = Forced On ? (ie on new Omnitik 5 poe)

On a Mt device such as the excellent / versatile new OmniTIK 5 poe (RBOmniTIKPG-5HacD ) - when the RB is powered with 802.3at (or af for that matter) - and you then plug in another 802.3af device (such as an IP camera)- How does “PoE Out = Forced ON” differ from “PoE Out = Auto ON” (or does it?) - a...
by jo2jo
Mon Apr 10, 2017 8:18 am
Forum: General
Topic: Feature request: CAPsManager - roaming
Replies: 80
Views: 39118

Re: Feature request: CAPsManager - roaming

+1 - i think the prior posts (esp. the last 2 posts) make very clear how important this feature set has become now (802.11k and 802.11r ), and it def should be at or near the top of mikrotik's ROS list. if it is/isnt, i really think we should at a min. get a offical reply from MT on the features tim...
by jo2jo
Mon Apr 10, 2017 8:15 am
Forum: General
Topic: Wireless beacon interval and DTIM missing
Replies: 24
Views: 14347

Re: Wireless beacon interval and DTIM missing

+1 -- really need this feature to cut down on wasted frequency when deploying alot of APs density for coverage reasons see this amazing info on how important this feature is (and that we def. should have it in a product as advanced at ROS) http://www.revolutionwifi.net/revolutionwifi/p/ssid-overhead...
by jo2jo
Sat Apr 08, 2017 12:01 am
Forum: RouterBOARD hardware
Topic: 960PGS availability
Replies: 7
Views: 2640

Re: 960PGS availability

any chance you could post a link? Or better, a reply from MT on when 960PGS will start shipping again to dealers (or have they been discontinued)? I just went through 11 different MT re-sellers (EU/USA - google: RB960PGS ) and only found one that shows it as in stock (not sure if this one is accurat...
by jo2jo
Thu Apr 06, 2017 1:44 am
Forum: RouterBOARD hardware
Topic: 960PGS availability
Replies: 7
Views: 2640

Re: 960PGS availability

Same exact issue here, i see users posting questions as far back as nov. 2016 (ie users have them / were able to get them). but ive been looking for RB960PGS (ie hEX POE w poe AF/AT) since dec 2016 - ive not been able to find them anywhere (in US). Places that show them as out of stock keep pushing ...
by jo2jo
Tue Apr 04, 2017 2:39 am
Forum: General
Topic: l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail
Replies: 3
Views: 1323

Re: l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail

well, it was infact a MTU / MRU issue, i tried lowering the client side (l2tp-client interface) to 1300/1300 mtu/mru and the BW test works. I had stopped around 1380 when trouble shooting earlier (and lowering it incrementally and testing, but for some reason it needed to be REALLY low- so maybe its...
by jo2jo
Tue Apr 04, 2017 2:32 am
Forum: General
Topic: l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail
Replies: 3
Views: 1323

Re: l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail

that has already been in place... even tried lowering MTU / MRU on client side and rebooting both sides.. see attached for proof (note the D bc of the ppp profile creating the rule). top is server, bottom is client side (in img) EDIT: see my reply below this one, it was a MTU/MRU - just needed to be...
by jo2jo
Sun Apr 02, 2017 12:18 am
Forum: General
Topic: l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail
Replies: 3
Views: 1323

l2tp Tunnel ( 2x MTs) - enable IPsec and mt TX BW tests fail

i have a central rb1200 (as a VPN server - ROS 6.38) , into which several MTs VPN-Client into. I also have ipSEC setup on this VPN server and use it often (from MTs , Win7 , iOS). Im currently setting up a hap AC LITE ( ros 6.38.5 ) - i was trying to see if there are any speed differences between no...
by jo2jo
Thu Mar 30, 2017 6:21 am
Forum: General
Topic: [Feature Request] UPnP client for ROS
Replies: 15
Views: 5867

Re: [Feature Request] UPnP client for ROS

I agree with this feature request - Espesically with how often ISP are now providing Modem/Router combo devices, it would be nice to be able to use a upnp client on ROS to punch a hole in a router that is infront of the mikrotik (ie to punch a hole for TCP 8291 for winbox for example).

tks
by jo2jo
Tue Mar 28, 2017 8:52 pm
Forum: General
Topic: dynDNS SCRIPT THAT WORKS
Replies: 13
Views: 27147

Re: dynDNS SCRIPT THAT WORKS

IMHO RouterOS should have native DynDns and NO-IP support. It's not allways possible to get rid of ISP device or use it as a bridge.

RouterOS *DOES* already have a solution to this/your issue- (via winbox) its under IP -> CLOUD (enable ddns) or via the CLI: /IP Cloud Print
by jo2jo
Tue Mar 28, 2017 2:01 am
Forum: General
Topic: dynDNS SCRIPT THAT WORKS
Replies: 13
Views: 27147

Re: dynDNS SCRIPT THAT WORKS

For simple DDNS requirements there is the built in DDNS under /ip cloud ? It's free and it works :-)

It's url is serial_numer.sn.mynetname.net

Great solution! i had forgot about this feature that MT added a while back! tks
by jo2jo
Sat Jan 28, 2017 10:52 pm
Forum: General
Topic: Change binding port on L2TP server/client
Replies: 3
Views: 1825

Re: Change binding port on L2TP server/client

up! many reasons this is needed (esp for those that need to use a UDP based tunnel)
by jo2jo
Sat Jan 28, 2017 10:51 pm
Forum: Beginner Basics
Topic: L2TP client change destination port away from UDP 1701
Replies: 8
Views: 4987

Re: L2TP client change destination port away from UDP 1701

is this feature still not added as of 6.38.1? why can we not change the port L2TP uses?

I under stand we can add another MT but thats another point of failure and another device to have to manage (for just one simple feature request).

tks
by jo2jo
Tue Jan 10, 2017 8:34 pm
Forum: General
Topic: rOS w UPS package on APC SMT1500RM2U only getting partial UPS data (USB)
Replies: 3
Views: 2039

Re: rOS w UPS package on APC SMT1500RM2U only getting partial UPS data (USB)

I'm hoping threads (and support emails) like this might bring it to supports/my Dev's attention, it's obviously something they need to add or tweak. I emailed Support about three weeks ago with as much information as I could provide (sup out and data from APC) but I never heard back from mt support....
by jo2jo
Sun Jan 01, 2017 1:27 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 211506

Re: Blacklist Filter update script

Just wanted to say THANK YOU for all your hard work on this list! its really excellent! and your decision to use dynamic address list entries is really sharp. (dynamic address entries simply means that on the address-list rules, he sets a timeout value, so that the mikrotik stores the address list i...
by jo2jo
Fri Dec 16, 2016 9:16 pm
Forum: Beginner Basics
Topic: frequent query upgrade.mikrotik.com
Replies: 11
Views: 3185

Re: frequent query upgrade.mikrotik.com

There was a bug on 6.33 early versions. You have .3. Upgrade and it should not do this anymore. It is simply re-trying when it should not. I dont understand your reply, so are you saying i should update via the Release Candidate channel? because this router is currently running the latest rOS, 6.37...
by jo2jo
Fri Dec 16, 2016 12:57 am
Forum: Beginner Basics
Topic: frequent query upgrade.mikrotik.com
Replies: 11
Views: 3185

Re: frequent query upgrade.mikrotik.com

im having this same issue, i noticed this was poping up in my remote syslog once every minute: 12-15-2016 16:55:11 Local7.Debug 192.168.4.210 dns VALvpn_RB_433_BACKUPmt__: done query: #1 upgrade.mikrotik.com 52.222.214.132 12-15-2016 16:55:11 Local7.Debug 192.168.4.210 dns,packet VALvpn_RB_433_BACKU...
by jo2jo
Sun Dec 11, 2016 10:34 pm
Forum: General
Topic: rOS w UPS package on APC SMT1500RM2U only getting partial UPS data (USB)
Replies: 3
Views: 2039

rOS w UPS package on APC SMT1500RM2U only getting partial UPS data (USB)

hi, First off, let me say what a wonderful feature it is that MT offers the UPS extra package for rOS (and still keeps it updated going all the way back to roS 2.9.X !). It another element of how amazingly versatile rOS and mikrotik router-boards are. Im using a hAP AC Lite and rOS 6.37.3 (i have ot...
by jo2jo
Sun Nov 27, 2016 6:19 am
Forum: General
Topic: Wireless Sniffer streaming and @#$%@ TZSP
Replies: 8
Views: 5402

Re: Wireless Sniffer streaming and @#$%@ TZSP

hi, you need to have libpcap installed before you try to compile on linux (yum install libpcap-dev or apt-get ).

also look into:
https://gist.github.com/jabberd/b9d6a29098a5b8f1ee45

or see my post about stripping tzsp (wireless) here:
http://forum.mikrotik.com/viewtopic.php?f=7&t=95792
by jo2jo
Sat Nov 26, 2016 7:38 am
Forum: Wireless Networking
Topic: wireless sniffer streaming to a server
Replies: 5
Views: 5264

Re: wireless sniffer streaming to a server

hey, look into this: https://gist.github.com/jabberd/b9d6a29098a5b8f1ee45 The last step allowed me to convert tzsp captures (streaming from a mikrotik doing a streaming wireless sniff to a machine running wireshark/tcpdump , and capturing on its eth interface ) into .cap files that a fully readable ...
by jo2jo
Fri Sep 23, 2016 9:11 am
Forum: Wireless Networking
Topic: "Ghost" Clients staying in reg table for days even though they are way out of range and Last Act was days ago ??
Replies: 1
Views: 1301

"Ghost" Clients staying in reg table for days even though they are way out of range and Last Act was days ago ??

Im seeing something weird, ive never seen before: When i check in on some WIFI APs i have in an apartment complex, im seeing lots of "ghost" client registrations in the /int wireless registration-table , table (see attachment to see ) - its the ones with Several days of "up-time"...
by jo2jo
Thu Sep 22, 2016 4:31 pm
Forum: Wireless Networking
Topic: RB/SEXTANT Cable hole
Replies: 13
Views: 3765

Re: RB/SEXTANT Cable hole

I am sorry you had this experience. The SEXTANT was one of our first designs, and we have improved a lot in our newest LHG, DynaDish and QRT models. Thanks for the reply Normis, its not that big of deal on the sextant, and you are right - small mistakes like this are bound to happen especially with...
by jo2jo
Thu Sep 22, 2016 4:01 pm
Forum: Wireless Networking
Topic: RB/SEXTANT Cable hole
Replies: 13
Views: 3765

Re: RB/SEXTANT Cable hole

Everyone is justifying the foolish planning and design of the Sextant's rj45 jack and wire entrance diameter on price and cost savings and value... none of those have anything to do with an flaw that could have been fixed easily and in-expensively at initial design *or* during initial testing (ie si...
by jo2jo
Tue Sep 20, 2016 1:57 pm
Forum: The Dude
Topic: 2 Dude developers
Replies: 9
Views: 5113

Re: 2 Dude developers

Hi,

did anything ever happen with this or the requested features? there are one or 2 features on there that i know we could use. (and also some of the requested feature i think already can be done with dude and mikrotik as is, perhaps through scripts and some creative solutions)

tks
by jo2jo
Sun Sep 18, 2016 7:06 pm
Forum: General
Topic: IPsec/L2TP - opening a 2nd connection kills 1st one
Replies: 7
Views: 7887

Re: IPsec/L2TP - opening a 2nd connection kills 1st one

Thanks for the reply. I understand what you are saying and totally agree. However I can say with certainty he that I have mixed every type of VPN Micro chipped supports in the exact same scenario with success, in some cases multiples of each VPN with success. It's only once I've added the IP sec wit...
by jo2jo
Sun Sep 18, 2016 1:03 pm
Forum: General
Topic: IPsec/L2TP - opening a 2nd connection kills 1st one
Replies: 7
Views: 7887

Re: IPsec/L2TP - opening a 2nd connection kills 1st one

if you see dynamically created policy then click copy and hit apply and then it will be static ?? i think your not understanding my issue, its the dynamic policy (on the remote Mikrotik VPN server ) that is causing my local mikrotik router's L2TP client *(NOT L2TP/IPsec, just L2TP)* interface to dr...
by jo2jo
Sat Sep 17, 2016 10:13 pm
Forum: General
Topic: IPsec/L2TP - opening a 2nd connection kills 1st one
Replies: 7
Views: 7887

IPsec/L2TP - opening a 2nd connection kills 1st one

I just upgraded to iOS 10 and thus lost PPTP VPN support, so i was forced to setup IPsec / L2tp on my (data-center) collocated mikrotik VPN server so that i could again have VPN on my iPhone. I also have a mikrotik at my home as my main router (as well as mikrotiks at many other locations of mine, a...
by jo2jo
Sun Sep 04, 2016 8:54 am
Forum: Wireless Networking
Topic: Wireless KeepAlive Frames ? and/or super high "last activity" on clients
Replies: 5
Views: 7932

Wireless KeepAlive Frames ? and/or super high "last activity" on clients

Can someone please explain what ENABLING or DISABLING wireless interface -> keepalive frames does? Mainly in the context of a mikrotik being used as an Access Point to consumer wireless devices (ie Phones, Tablets, Laptops of various types). the mikrotik manual's Description for this properly is bla...
by jo2jo
Sat Sep 03, 2016 10:48 am
Forum: General
Topic: Winbox 3.5 "Connect to ALL" feature not working
Replies: 1
Views: 1510

Winbox 3.5 "Connect to ALL" feature not working

Hi, I would LOVE if this newly added (added in 3.0b releases) feature, "Connect To ALL" (when you select multiple saved or "Managed" Winbox entries. However every time ive tried to use it, it will only open a connection to one of my selections, but then does open X number of new ...
by jo2jo
Thu Sep 01, 2016 2:54 am
Forum: General
Topic: Winbox stores all your saved passwords UN ENCRYPTED locally
Replies: 7
Views: 9648

Re: Winbox stores all your saved passwords UN ENCRYPTED locally

I WAS ABLE TO REMOTE IN TO MY PC AND CONFIRM THIS!! IF YOU DO SET A MASTER PASSWORD , IT SEEMS TO ENCRYPT (OR OTHERWISE OBFUSCATE ) THE SAVED "MANAGED" ENTRIES OF WINBOX ON YOUR LOCAL COMPUTER (i tested this by looking at the .CDB file , before and after setting a " Master Password&qu...
by jo2jo
Thu Sep 01, 2016 2:49 am
Forum: General
Topic: Winbox stores all your saved passwords UN ENCRYPTED locally
Replies: 7
Views: 9648

Re: Winbox stores all your saved passwords UN ENCRYPTED locally

There already is support for master password for some time. Hmm.. maybe he is right, i will check this in a few hours when i get back to my pc.. the only reason i say that maybe he is correct (ie setting a msaster password ENCRYPTS the saved entries stored on your pc) is because i found this post f...
by jo2jo
Wed Aug 31, 2016 8:34 pm
Forum: General
Topic: Winbox stores all your saved passwords UN ENCRYPTED locally
Replies: 7
Views: 9648

Winbox stores all your saved passwords UN ENCRYPTED locally

Hi, I know in winbox, when i do an export of my "Managed" tab entries the resulting .WBX file contains all my saved device passwords, un-encrypted in plaintext. That is fine for an export (as i just encrypt that .WBX file for storage). However when i import my .WBX file into winbox (after ...
by jo2jo
Tue Aug 23, 2016 2:29 pm
Forum: General
Topic: logging ARP changes
Replies: 2
Views: 1493

Re: logging ARP changes

I would love to see this as well (arp logging option, ie when any changes are made to the arp table they can be logged via the standard mikrotik logging options)

tks
by jo2jo
Wed Jul 13, 2016 1:28 am
Forum: Wireless Networking
Topic: Mikrotik and Verizon LTE
Replies: 5
Views: 4947

Re: Mikrotik and Verizon LTE

Has anyone in the US gotten Verizon LTE to work (stable ly) on a mikrotik device? im in the same boat as the 2nd reply here,  in that we mainly (and love to) use all mikrotik devices, but have a need for a remote Verizon based access device and want to run this on mikrotik. I know there is the new S...
by jo2jo
Tue Jun 28, 2016 12:58 pm
Forum: Wireless Networking
Topic: Nest thermostat and setting the DTIM- and beacon interval
Replies: 5
Views: 5534

Re: Nest thermostat and setting the DTIM- and beacon interval

in terms of the beacon interval alone,  i dont see how that would in anyway affects the battery life of a client device (or a nest in your case).  Please correct me if im wrong but the beacon interval is essentially how often your AP transmits its SSID and other basic info like channel and B/G/N pro...
by jo2jo
Mon May 23, 2016 8:32 pm
Forum: The Dude
Topic: Dude Network Map reset on discovery + Add default winbox password for discovery?
Replies: 8
Views: 5075

Re: Dude Network Map reset on discovery + Add default winbox password for discovery?

EDIT: still dont have a solution to this beyond manually adding the same ROS login/pass over and over.

How do you tell DUDE which ROS user/pass to USE *before* it does its discovery.
by jo2jo
Mon May 23, 2016 4:10 am
Forum: Wireless Networking
Topic: Default Forward disabled, yet devices can still ping? [SOLVED]
Replies: 3
Views: 4123

Default Forward disabled, yet devices can still ping? [SOLVED]

It was my understand that when you disable (or uncheck in winbox) the Default Forward option , (for a wireless interface), this keeps any devices connected to that wireless interface from communicating DIRECTLY with each other? However, i have 2 x PCs, and connected them to a MT radio, with Default ...
by jo2jo
Mon May 23, 2016 1:03 am
Forum: The Dude
Topic: Dude Network Map reset on discovery + Add default winbox password for discovery?
Replies: 8
Views: 5075

Dude Network Map reset on discovery + Add default winbox password for discovery?

Hey ive been reading up and learning the dude and had 2 questions (im running the latest dude server 6.35.2): 1) why is it every time i run a new discovery my entire network map layout gets reset so all devices are ontop of each other , in the upper left corner? (there has to be a way to avoid this)...
by jo2jo
Mon Feb 01, 2016 11:35 am
Forum: General
Topic: Feature request: add Encryption to WiFi scan
Replies: 5
Views: 3596

Re: Feature request: add Encryption to WiFi scan

+1 for listing the type of Wireless Security used when running a Scan. While the "P" shows you that Security (or "privacy") is being used, it would be nice to know what type of Security (wep, WPA, WPA2 ect..). Just about every other type of scanner (or scan) provides this info in...
by jo2jo
Fri Dec 25, 2015 9:29 am
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Re: Firewall technique / idea - feedback?

My original suggestion does -EXACTLY- what you want. You're re-inventing the wheel. State tracking does what you want automatically. Hi, I tried your exact rule and it did not accomplish the same as my rule ( for example i was able to ping google from the server with your rule, with my rules im not...
by jo2jo
Wed Dec 23, 2015 4:16 am
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Re: Firewall technique / idea - feedback?

Thanks for your reply, I do understand your analogy (including the "reverse" part) , however i dont personally agree with it- home routers and NAT mainly deal with port access control (tcp / udp ports) and private IPs, what im doing deals mainly with public IP related access control. In te...
by jo2jo
Tue Dec 22, 2015 3:41 pm
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Re: Firewall technique / idea - feedback?

What you're doing is eminently possible. Think about it - it's just like a "home" router plugged in backwards; your home router wouldn't allow any traffic in unless it's related to an outbound connection. I get what your saying, but even with a home router your PC *is* able to outbound co...
by jo2jo
Mon Dec 21, 2015 9:16 am
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Re: Firewall technique / idea - feedback?

I had time to get this working, here are the firewall rules that accomplish what im talking about / trying to describe: (ignore that my in-interface is infact a BRIDGE, there is a reason specific to my setup that i have to use a bridge, normally on most setups this would be a normal Ethernet interfa...
by jo2jo
Mon Dec 21, 2015 7:49 am
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Re: Firewall technique / idea - feedback?

Thanks for your reply and your firewall example, Maybe I'm explaining it incorrectly, because you're one single firewall rule would not accomplish what I'm trying to do. For example if there's a virus on the server that is establishing outbound connections from the server to various other websites t...
by jo2jo
Sun Dec 20, 2015 11:22 am
Forum: General
Topic: Firewall technique / idea - feedback?
Replies: 13
Views: 3431

Firewall technique / idea - feedback?

I manage several Colo and dedicated servers at various data centers around the world, something we often do is physically place a mikrotik router inside of our Colo d server chassis and power it via a Molex and then connect the servers ethernet to the mikrotik and then the uplink from the data cente...
by jo2jo
Sun Aug 23, 2015 10:42 am
Forum: General
Topic: [6.10] Dynamic IPsec policies not deleted after disconnect
Replies: 8
Views: 5581

Re: [6.10] Dynamic IPsec policies not deleted after disconnect

Same issue here, the dynamic policy is created (as it should) from setting the l2tp server to use-ipsec and assigning a pre-shared key. however once the client disconnects from the l2tp/ipsec tunnel, the dynamic plolicy should be removed (and if the user re-connects from the same source IP, then it ...
by jo2jo
Fri Aug 14, 2015 6:13 pm
Forum: General
Topic: Feature request - DNSCrypt support...
Replies: 173
Views: 80707

Re: Feature request - DNSCrypt support...

this would be Amazing if ROS supported DNSCrypt. would really open up alot of potentail buyers to ROS just for this one feature in a home router that doesnt require alot of linux+setup.

tks
by jo2jo
Sat Jul 18, 2015 11:32 pm
Forum: General
Topic: IP address only active IF eth port is active?
Replies: 2
Views: 1038

Re: IP address only active IF eth port is active?

Jarda: that is not an option in this scenario.
by jo2jo
Fri Jul 17, 2015 10:20 am
Forum: General
Topic: IP address only active IF eth port is active?
Replies: 2
Views: 1038

IP address only active IF eth port is active?

I have a unique situation where a Mikrotik router is rack mounted onto a mobile cart (with wheels). It travels between an office and a remote location. When its at the office I need its ip address to be 192.168. 12.8 /24 , however when its at a remote location i need its IP address to be 192.168. 12...
by jo2jo
Sun Jul 12, 2015 9:15 am
Forum: RouterBOARD hardware
Topic: RB2011UAS Console Port to Cisco SW
Replies: 6
Views: 3720

Re: RB2011UAS Console Port to Cisco SW

FYI: I just purchased as CISCO Blue Rj45-to-RJ45 console cable (rj45 on both ends) and im still unable to get anything to show up on /sys serial-terminal port=serial0 on the RB2011UAS. MT: what is up with the RJ45 console ports on this specific Routerboard version (the RB2011)?? using the same, new ...
by jo2jo
Wed Jun 24, 2015 7:13 am
Forum: RouterBOARD hardware
Topic: RB2011UAS Console Port to Cisco SW
Replies: 6
Views: 3720

Re: RB2011UAS Console Port to Cisco SW

Have you tried a regular straight-through cat5? I should have stated this in my OP, but yes i have tried a regular cat5 as well as a crossover cat5 , neither give any input from the cisco SW via serial-console. thanks EDIT: i also have a db9 male to male gender changer, so i tried hooking Cisco RJ4...
by jo2jo
Tue Jun 23, 2015 4:01 am
Forum: RouterBOARD hardware
Topic: RB2011UAS Console Port to Cisco SW
Replies: 6
Views: 3720

Re: RB2011UAS Console Port to Cisco SW

Another, perhaps more clear way of asking my question is: Has anyone hooked a RB2011UAS (or any RB with a RJ45 Console port) to another device also with a RJ45 console port? (ie a cisco switch with a RJ45 console port, *not* a standard db9 console port) and if so how / what kind of cable did you use...
by jo2jo
Mon Jun 22, 2015 8:51 am
Forum: RouterBOARD hardware
Topic: RB2011UAS Console Port to Cisco SW
Replies: 6
Views: 3720

RB2011UAS Console Port to Cisco SW

Hi, the RB2011UAS has a rj45 console port on the back, im using a blue RJ45 cisco console cable to connect it to a cisco 2950 which also has a RJ45 "console port". Ive set the RB side baudrate to 9600/8/n/1 (as well as tried auto baud) and power cycle the cisco switch but i get no input on...
by jo2jo
Sun Jan 04, 2015 11:40 am
Forum: General
Topic: Updates requireing a physical power cycle??
Replies: 0
Views: 778

Updates requireing a physical power cycle??

It seems as of ROS 5.x and ROS 6.x when updating Routerboards there are several that end up needing a physical power cycle or worse, they need a full netinstall (meaning the device has to be removed from the customer, with downtime, and brought to a shop/laptop with serial cable and windows OS). Im ...
by jo2jo
Fri Sep 26, 2014 9:36 am
Forum: General
Topic: Netinstall with EoIP/PXE: Not working?
Replies: 5
Views: 3488

Re: Netinstall with EoIP/PXE: Not working?

just wanted to follow up, the data-center got my pre setup rb433 and i was successfully able to run net install across the internet (via sstp tunnel and eoip tunnel + bridge) as described above in my post. worked great! quite a few **.***..**...** when it was sending the initial kernel for the RB120...
by jo2jo
Sun Sep 21, 2014 12:39 pm
Forum: General
Topic: Netinstall with EoIP/PXE: Not working?
Replies: 5
Views: 3488

Re: Netinstall with EoIP/PXE: Not working?

I know this is an old thread, but some others may find the point of the thread useful, as i did. I had a similar situation as OP where i needed to do a REMOTE netinstall to a RB 1200 that failed after updating from (routerboot 3.10 ) 6.11 to 6.19 , im not sure why this minor updated totally wiped my...
by jo2jo
Wed Sep 17, 2014 9:59 pm
Forum: General
Topic: 3 x routerboard WIPED and locked by ROS 6.11 to 6.19 upgrade
Replies: 0
Views: 740

3 x routerboard WIPED and locked by ROS 6.11 to 6.19 upgrade

i have lots of RBs deplyed and have been upgrading and using MT RBs since 2.9.51 but only recently with ros 6.19 have i seen upgrades been going horribly wrong. earlier in the week upgrading a rb 433 and a rb 493 from ROS 6.x to 6.19 cuased the devices to be locked after rebooting. This most recent ...
by jo2jo
Wed Sep 10, 2014 4:21 pm
Forum: General
Topic: mt to mt l2tp tunnels encrypted or not?
Replies: 1
Views: 1415

Re: mt to mt l2tp tunnels encrypted or not?

To add some additional information, I did a /tool packet sniff of my public Internet interface of the packets of a mt to mt L2TP vpn tunnel connection with MPPE 128 shown as the "encoding" and then analyzed the .cap with wireshark. In wireshark I applied decode as L2TP on the entire l2tp h...
by jo2jo
Wed Sep 10, 2014 4:19 am
Forum: General
Topic: mt to mt l2tp tunnels encrypted or not?
Replies: 1
Views: 1415

mt to mt l2tp tunnels encrypted or not?

i constatly read to use Ipsec across your l2tp tunnels for true encryption (which ive slowly been adding to each of my many l2tp links), and that data flowing across a l2tp tunnel is NOT encrypted . however i do not understand this line from the MT manual: L2TP is a secure tunnel protocol for transp...
by jo2jo
Wed Jan 01, 2014 2:40 pm
Forum: General
Topic: Centos / Linux on metarouter on RouterBoard (MIPSBE)
Replies: 3
Views: 6909

Centos / Linux on metarouter on RouterBoard (MIPSBE)

Im looking for a linux distro that can be run via metarouter, that is: a MetaRouter that give a standard linux prompt when connected to via SSH. I need the 'ping' command to work on this metaRouter instance, nothing more. This may seem like an unusual request/question, however my goal is to use Paes...
by jo2jo
Fri Jul 26, 2013 9:13 am
Forum: RouterBOARD hardware
Topic: rb 951-2n pwr and act green lights ON, no ethernet lights
Replies: 1
Views: 1750

rb 951-2n pwr and act green lights ON, no ethernet lights

i have a RB 951-2n that when powered on, both the power and the act light are solid green and stay on. none of the Ethernet lights light up, nor does the other side of the Ethernet link show a link. Ive tried holding the reset button prior to powering the device, and after powering the device, nothi...
by jo2jo
Sun May 05, 2013 8:49 pm
Forum: General
Topic: Cisco Blue Serial console cable to RB 433 or CCR-1016 serial
Replies: 4
Views: 7524

Re: Cisco Blue Serial console cable to RB 433 or CCR-1016 se

Hi, There are only routerboards in this scenario, my issue/question is with the serial port of the CCR-1016 (routerboard cloud router). no windows or PCs (maybe you thought i was trying to connect from my laptop to the RB? thats incorrect, im trying to go from the RouterBoard direct to the cisco con...
by jo2jo
Sun May 05, 2013 7:00 am
Forum: General
Topic: Cisco Blue Serial console cable to RB 433 or CCR-1016 serial
Replies: 4
Views: 7524

Cisco Blue Serial console cable to RB 433 or CCR-1016 serial

Hi, ive used serial-terminal to manage some Cisco switches VIA a router-board in the past, however its been a while. I searched and could not find an answer: Im able to connect to my cisco switch via RB 433's serial port by setting baud rate to 9600. it works great and i can manage the switch. howev...
by jo2jo
Sun Mar 31, 2013 12:30 pm
Forum: Wireless Networking
Topic: Battery Powered system (w110v ac charging), battery failure?
Replies: 6
Views: 2884

Battery Powered system (w110v ac charging), battery failure?

Hi, Im setting up a MT system (wireless) that will be powered (poe) from a ubnt tough-switch (puts 24vdc passive across the cat5 cable to MT rb).- The power source for the ubnt tough-switch and thus the MT units, will be direct from a 24v DC battery using this battery/charging/power source set: (Tyc...
by jo2jo
Fri Mar 29, 2013 12:16 am
Forum: General
Topic: USA mt Consultant
Replies: 5
Views: 1632

USA mt Consultant

Hi, Can anyone suggest a mt consultant, in the USA, that they have had a good experience with? Ive contacted a few from the mt consultants list over the past 10 days but ive been having issue getting replies and/or getting pricing info (most haven't replied or reply, then dont follow up, so that has...
by jo2jo
Thu Mar 28, 2013 12:16 am
Forum: General
Topic: winbox always downloading plugins?
Replies: 2
Views: 4633

winbox always downloading plugins?

any idea what i can do to get it so that winbox doesnt always download plugins for ROS version i know ive used winbox to access before? can we just get a BIG winbox with all the plugins? its really annyoing to have to wait for 1mb of data transfers before you can admin your router. esp on slow conne...
by jo2jo
Tue Mar 19, 2013 6:50 am
Forum: Wireless Networking
Topic: 3x3 MIMO link speed problem.
Replies: 12
Views: 6134

Re: 3x3 MIMO link speed problem.

what kind of antennas / dishes?

tks
by jo2jo
Mon Feb 25, 2013 10:23 pm
Forum: Wireless Networking
Topic: Problem with mikrotik and IOS6
Replies: 46
Views: 43717

Re: Problem with mikrotik and IOS6

We are seeing this same issue. only solution that seems to be working on this issue is to not use Mikrotik for CPE (or anything that will be serving consumer devices as that WILL BE AN APPLE DEVICE of some kind). on a RB 711 n i have here for testing (actually 4 of them, all for testing), 6.0 RC9 an...