Community discussions

Search found 35 matches

by Buster2
Mon Jul 08, 2019 8:00 pm
Forum: Announcements
Topic: Winbox v3.19 released!
Replies: 33
Views: 6916

Re: Winbox v3.19 released!

I also have weird perception problems. Works identical on Wine and Windows for me. Don't tell people they have weird perception problems only because you can't reproduce the problem at the first try. You didn't even ask about details or how to reproduce. example: In Linux Mint with MATE desktop the...
by Buster2
Sat Sep 01, 2018 2:02 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 314
Views: 87463

Re: Mikrotik VDSL / DSL Modem?

Hi folks, very interesting thread :) In Germany DTAG (Telekom) started to sell "super vectoring" (G.993.2 Annex Q, profile 35b, DTAG requirements on page 62 ). Are there any experiences out there with modems discussed in this thread? How future proof are these devices? Could there be something like ...
by Buster2
Wed Jul 11, 2018 12:33 am
Forum: General
Topic: DNSSEC
Replies: 33
Views: 10297

Re: DNSSEC

Simple: do not use the resolver in the MikroTik for clients, but let them directly use 1.1.1.1 or 8.8.8.8 or similar. I think there's a lot of reasons people wouldn't want to do that though. such as when you need to force some domain resolve into specific IP? I can imagine many situations where you...
by Buster2
Wed Jan 10, 2018 7:51 pm
Forum: Virtualization
Topic: CHR suggestions for new functionality
Replies: 157
Views: 32364

Re: CHR suggestions for new functionality

Desired features:
  • Graceful shutdown/reboot on XenServer
  • XenMotion between hosts without freezing MikroTik router. (currently will cause MikroTik to lock up)
+1
by Buster2
Fri Dec 23, 2016 9:56 pm
Forum: Virtualization
Topic: Can I install Cloud Hosted Router (CHR) on XEN server?
Replies: 9
Views: 4237

Re: Can I install Cloud Hosted Router (CHR) on XEN server?

Does live migration work with this setup? I've still issues with XenServer 6.5 and RouterOS 6.38rc52 as described in this post.
by Buster2
Mon Jul 04, 2016 4:06 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

RouterOS does not need graceful shutdown. OK, except maybe if you added some config and need to turn off immediately.  RouterOS might not need it but the virtualization host totally depends on it. No proper hypervisor will kill a VM when it signals all VM to shutdown normally. Killing a VM, as you ...
by Buster2
Fri May 13, 2016 9:29 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

CHR on XenServer 6.5 http://forum.mikrotik.com/viewtopic.php?p=524423#p524423 I can live-migrate... but without the xentools kernel module installed, the CHR is freezing on resume. I've found plenty of posts about the linux kernel freezing the same way then xentools isnt installed. I can't pull anyt...
by Buster2
Wed Feb 10, 2016 11:57 pm
Forum: General
Topic: support for RFC 6614 RadSec (Transport Layer Security (TLS) Encryption for RADIUS)?
Replies: 1
Views: 800

support for RFC 6614 RadSec (Transport Layer Security (TLS) Encryption for RADIUS)?

Hi folks, normal RADIUS protocol uses UDP packets and it's security is based on MD5. UDP might not be the best choice for not so reliable wireless networks, but MD5 is definitely a bad choice for any network nowadays. RFC 6614 Transport Layer Security (TLS) Encryption for RADIUS (RadSec) solves both...
by Buster2
Tue Dec 22, 2015 12:59 am
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

Why should hundreds of admins convert your base disk image to templates to get it imported properly, when one guy at MikroTik could do this? It's not like only one person asked here.
by Buster2
Mon Oct 05, 2015 4:34 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

I doesn't matter if the system inside the VM do not care about unclean shutdowns. The host systems do care, because they have to. They wait for signals of clean completed tasks and providing timeouts is only a fallback for unresponsive VM and shouldn't be the normal case. It's their job to provide a...
by Buster2
Tue Sep 15, 2015 1:16 am
Forum: General
Topic: [request] CoA for PPPoE/PPTP
Replies: 34
Views: 12336

Re: [request] CoA for PPPoE/PPTP

in 6.33rc7 (2015-Sep-11 17:13): *) ppp - added CoA support to PPPoE, PPTP & L2TP (Mikrotik-Recv-Limit, Mikrotik-Xmit-Limit, Mikrotik-Rate-Limit, Ascend-Data-Rate, Ascend-XMit-Rate, Session-Timeout); MT very thanks for this. Very thanks for this. We are waiting for this function. For a long time we ...
by Buster2
Tue Sep 15, 2015 1:11 am
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

new images for CHR http://www.mikrotik.com/download/share/chr_6_32.img http://www.mikrotik.com/download/share/chr_6_32.vmdk Any news for XenServer users? The following is still valid for 6.32 on XenServer6.5: Will this work on XenServer 6.5? I imported the vmdk, gave it 512Mb RAM and got the follow...
by Buster2
Fri Aug 21, 2015 2:13 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 188021

Re: Cloud Hosted Router

Janisk: would you include Xen PV-HVM drivers as well, please? - KVM works now - HyperV works now - VmWare works now - Xen still not :-* I am told that CHR will not have its PV-HVM drivers added for XEN, use non-para virtualized environment instead. That would make it useless for XenServer setups. X...
by Buster2
Mon Jul 13, 2015 1:18 am
Forum: General
Topic: HotSpot redirects https and the browser shows an SSL error
Replies: 20
Views: 18246

Re: HotSpot redirects https and the browser shows an SSL error

self-signed certificate -> browser warning server without certificate is http, not https -> browser connect error because TLS expected - in most browsers this looks more like server unreachable. Imho, any browser warning instead of showing the original page won't help you. It doesn't matter what the...
by Buster2
Fri Jul 10, 2015 1:17 pm
Forum: General
Topic: HotSpot redirects https and the browser shows an SSL error
Replies: 20
Views: 18246

Re: HotSpot redirects https and the browser shows an SSL error

How do I do that? I'm especially interested in how I configure it to use a TCP reset. In firewall rules use action "reject" instead of "drop". "Drop" means silently discard the packet without sending any notice to the requests origin. "Reject" means actively telling the source that this packet is n...
by Buster2
Mon Mar 02, 2015 6:47 pm
Forum: General
Topic: Copy all setup from one router to another. SEXTANT G-5HPnD V6.18
Replies: 7
Views: 1094

Re: Copy all setup from one router to another. SEXTANT G-5HPnD V6.18

I can comfirm that issue. Using export command on root level does not export the whole config to get a new identical device up and running without further manual steps. I prefer export over backup because it is humand readable and we put exports in a version control system on a daily basis and let i...
by Buster2
Mon Mar 02, 2015 6:41 pm
Forum: General
Topic: HotSpot redirects https and the browser shows an SSL error
Replies: 20
Views: 18246

Re: HotSpot redirects https and the browser shows an SSL error

It can't be done by design. The certificate system is designed to not allow intercepting traffic that is planned to go to facebook.com without notice . The only way to intercept that traffic without a browser warning would be to create a new certificate for facebook.com. This new certificate needs ...
by Buster2
Wed Feb 18, 2015 4:02 pm
Forum: General
Topic: [ASK] Hotspot with different dhcp-pool, differen network
Replies: 2
Views: 2048

Re: [ASK] Hotspot with different dhcp-pool, differen network

What detail you do not understand or where did you get an error and which one?
by Buster2
Mon Jan 05, 2015 11:52 pm
Forum: Scripting
Topic: Routerboard Backup scripts
Replies: 2
Views: 1472

Re: Routerboard Backup scripts

We ran into a similiar problem and couldn't solve it yet. We wrote a perl script that got device information from mysql, fetches config via ssh and put it into a subversion repository. We expect the resulting backup file to be bigger than 1000 bytes and ssh reponse should not be "closed by remote ho...
by Buster2
Fri Dec 26, 2014 4:51 am
Forum: General
Topic: New Packet flow diagram
Replies: 103
Views: 72508

Re: New Packet flow diagram

Nice comprehensive graphics! May I suggest to stick with english grammar rules for questions: auxiliary verb, then subject, then verb Decapsulation is needed? -> Is decapsulation needed? Encapsulation is needed? -> Is encapsulation needed? It's IP Traffic? -> Is it IP traffic? ("It is IP Traffic" is...
by Buster2
Sat Nov 15, 2014 4:59 am
Forum: General
Topic: 6.22 released!
Replies: 151
Views: 54798

Re: 6.22 released!

We normally wait 3-5 releases before upgrading. We have another unit on standby with the same config incase anything goes wrong. We also test it on another piece of identical hardware before upgrading. So, your advantage is to wait for others to find the failures of that specific versions. If every...
by Buster2
Wed Oct 15, 2014 12:03 am
Forum: General
Topic: [Feature request] Real ssh passwordless login
Replies: 7
Views: 1957

Re: [Feature request] Real ssh passwordless login

Strange, in my last tests several weeks ago I experienced exactly what you wished and was worried about not being able to login with private key and with password at the same time.
by Buster2
Thu Sep 04, 2014 4:26 am
Forum: Virtualization
Topic: ROS6 RC9 on Xenserver crashes on boot
Replies: 10
Views: 9905

Re: ROS6 RC9 on Xenserver crashes on boot

In the last RouterOS version my network problem vanished (only tested 5.24 before). Currently my test VM loses 2-4 pings during live migration. Other linux vm's are down to 0-1 lost packets. In general XenServer supports live migration of HVM guests. But XenCenter doesn't show any buttons to migrate...
by Buster2
Sun Aug 31, 2014 6:52 pm
Forum: General
Topic: Feature request: Stateful HA with Conntrackd
Replies: 30
Views: 7191

Re: Feature request: Stateful HA with Conntrackd

+1 for HA (msrp - mikrotik standby router protocol?)
CARP and pfsync to the rescue!
by Buster2
Sun Aug 17, 2014 8:00 pm
Forum: Virtualization
Topic: 10G support on VMware?
Replies: 9
Views: 3943

Re: 10G support on VMware?

MT just need to change their license code from being hard disk dependant. It's not very clever anyways.
by Buster2
Sun Mar 23, 2014 4:14 pm
Forum: General
Topic: Poor mans config sync: vrrp
Replies: 7
Views: 3448

Re: Poor mans config sync: vrrp

Hi, Regarding the point where the filter table would be empty when tables flushed, I see your concern, and it is valid. beside MikroTik we run a linux debian based loadbalancer with multipath routing and there we use "iptables -F" to flush rules for routing marks and set new ones as needed. We exper...
by Buster2
Fri Feb 21, 2014 12:57 pm
Forum: General
Topic: [request] CoA for PPPoE/PPTP
Replies: 34
Views: 12336

Re: [request] CoA for PPPoE/PPTP

On connect ppp daemon can apply radius authorization extension values (e.g. bandwith limits) to users. Change-of-Authorization messages are sent by radius to ppp daemon (I'd like to see it for l2tp too) without the ppp daemon asking. Using CoA RADIUS can tell PPP daemon to apply new authorization ex...
by Buster2
Sun Feb 16, 2014 10:54 pm
Forum: Virtualization
Topic: ROS6 RC9 on Xenserver crashes on boot
Replies: 10
Views: 9905

Re: ROS6 RC9 on Xenserver crashes on boot

if only problem was with the network - check mac addresses and interfaces of the "router"
What do you mean by this? Live migration doesn't change any interface nor mac in the virtual machine.
by Buster2
Thu Feb 13, 2014 3:53 pm
Forum: Virtualization
Topic: ROS6 RC9 on Xenserver crashes on boot
Replies: 10
Views: 9905

Re: ROS6 RC9 on Xenserver crashes on boot

I don't see this behaviour on my machines that were upgraded from 6.7 to 6.9. That public hotspot system is like 99% idle in tool/profile. Do you have any complex packet handling within the firewall/routing? In other threads people say resetting and reconfiguring might help and that some problems wi...
by Buster2
Fri Feb 07, 2014 11:12 pm
Forum: General
Topic: CCQ SNMP OID
Replies: 4
Views: 2038

Re: CCQ SNMP OID

+1

I didn't check - but if its missing - add SNR too, please.
by Buster2
Tue Nov 19, 2013 7:02 pm
Forum: Virtualization
Topic: ROS6 RC9 on Xenserver crashes on boot
Replies: 10
Views: 9905

Re: ROS6 RC9 on Xenserver crashes on boot

Thank you. Works like a charm.
by Buster2
Thu Oct 31, 2013 10:24 pm
Forum: General
Topic: ipv6 nat in routeros
Replies: 6
Views: 4518

Re: ipv6 nat in routeros

Why should you need any kind of NAT in IPv6? Protecting users from incoming connections? That will do any rule like "drop incoming connection if not related to any outgoing connection from client ip" you can built in iptables and ROS since ages.
by Buster2
Thu Oct 31, 2013 10:21 pm
Forum: General
Topic: V7 soon ?
Replies: 20
Views: 7782

Re: V7 soon ?

All you need is one programmer who doesn't feel like doing anything big after dinner and he can write the rest before he goes home. ;) omg, I Hope that is not the service we should expect from you, nor from MT. That might be the attitude that lead to v6 and we see in these forums how many bugs went...
by Buster2
Mon Sep 16, 2013 10:07 pm
Forum: Virtualization
Topic: ROS6 RC9 on Xenserver crashes on boot
Replies: 10
Views: 9905

Re: ROS6 RC9 on Xenserver crashes on boot

Hello, we have several ROS 5.26 installations on XenServer 6.2 in HVM mode running fine (support for xen/vmware/openvm tools would be superior for live migration support). But upgrading to 6.4 or doing a fresh install of 6.4 from ISO image leads to 100% cpu load during boot process and VM's boot pro...
by Buster2
Mon Sep 16, 2013 9:50 pm
Forum: General
Topic: v6.4 released
Replies: 170
Views: 60946

Re: v6.4 released

Hello, we have several ROS 5.26 installations on XenServer 6.2 in HVM mode running fine (support for xen/vmware/openvm tools would be superior for live migration support). But upgrading to 6.4 or doing a fresh install of 6.4 from ISO image leads to 100% cpu load during boot process and VM's boot pro...