Community discussions

Search found 26 matches

by marcus65
Wed May 14, 2014 4:05 am
Forum: Beginner Basics
Topic: Need help w/ new RBS2011
Replies: 5
Views: 884

Re: Need help w/ new RBS2011

which parameters are not holding your configuration changes? What are you trying to do?
by marcus65
Mon Apr 28, 2014 7:06 pm
Forum: Beginner Basics
Topic: Firewall forward chain problem
Replies: 4
Views: 3281

Re: Firewall forward chain problem

I'm surprised that all the forum experts can't answer this question!! It seems pretty basic. I went back and read the page on basic router configuration: http://wiki.mikrotik.com/wiki/How_to_configure_a_home_router#IP_firewall and reviewed the MikroTik Packet Flow Diagram http://wiki.mikrotik.com/wi...
by marcus65
Tue Apr 22, 2014 10:57 pm
Forum: Beginner Basics
Topic: Firewall forward chain problem
Replies: 4
Views: 3281

Re: Firewall forward chain problem

Thanks for the reply. How do I “allow it in input and forward chain?? I thought DST-NAT forwards desired traffic to the TO-ADDRESS and TO-PORT and records an ESTABLISHED connection. The rule in the forward chain (rule 8) allows all ESTABLISHED traffic (I thought). If this is not the case, how do I r...
by marcus65
Tue Apr 22, 2014 7:08 pm
Forum: Beginner Basics
Topic: Firewall forward chain problem
Replies: 4
Views: 3281

Firewall forward chain problem

I am learning RouterOS with the Steve Discher book and tried to setup a simple firewall configuration suggested in that book. Rules 7 thru 10 (below) forward new traffic from the LAN, then accept established and related packets. When I enable rule 10 to block everything else, all traffic from my ser...
by marcus65
Mon Apr 07, 2014 12:41 am
Forum: General
Topic: pptp vpn client cannot connect
Replies: 3
Views: 3663

Re: pptp vpn client cannot connect

Thanks for the suggestion, I upgraded to v6.11 which is the most recent ROS version for the RB 2011. 6.7+ is not available for this model on the MikroTik web site. The Problem persists! I cannot connect remotely! I see GRE and TCP port 1723 connections before the VPN connection fails. But I get erro...
by marcus65
Sat Apr 05, 2014 10:52 pm
Forum: General
Topic: pptp vpn client cannot connect
Replies: 3
Views: 3663

pptp vpn client cannot connect

I cannot get a pptp vpn client (laptop) to connect to a RB 2011UAS-2nD running RouterOS v6.0rc14 The pptp server is working and I can connect when any client is on the LAN. I cannot connect to the router from any remote location. I winbox into the router from the WAN and watch the connection start t...
by marcus65
Sat Mar 29, 2014 7:21 pm
Forum: Beginner Basics
Topic: PPTP VPN problem passtrought
Replies: 2
Views: 882

Re: PPTP VPN problem passtrought

I have the same problem on the same router. I posted my problem on the beginner basics forum, where did you post this??
by marcus65
Wed Mar 26, 2014 7:43 pm
Forum: Beginner Basics
Topic: L2TP VPN Server
Replies: 1
Views: 707

Re: L2TP VPN Server

I'm having trouble connecting with a pptp VPN server!

Just as a trouble shooting step, can you connect without the IPSEC configuration? If you can then you've found which part of the configuration is at fault
by marcus65
Wed Mar 26, 2014 3:45 pm
Forum: Beginner Basics
Topic: VPN does not connect
Replies: 0
Views: 994

VPN does not connect

I cannot VPN into my RB2011 over the public Internet. I setup a pptp server on my RB2011 and got it to work on my LAN. The client machine shows a p-t-p connection with the proper IP addresses and a ppp0 interface when I issue a ifconfig command and it shows up on the mikrotik router as an active con...
by marcus65
Thu Jan 16, 2014 9:03 pm
Forum: Beginner Basics
Topic: How to Configure PPTP in RB 1100 AH
Replies: 2
Views: 727

Re: How to Configure PPTP in RB 1100 AH

Have you looked at the manual page? is there anything you don't undertand there?

This is the Mikrotik manual info:
http://wiki.mikrotik.com/wiki/Manual:Interface/PPTP
by marcus65
Tue Dec 10, 2013 9:18 pm
Forum: Beginner Basics
Topic: port forwarding don't work
Replies: 4
Views: 1699

Re: port forwarding don't work

I don't understand why the to-port=22 and the dst-port=24??
by marcus65
Tue Dec 10, 2013 9:00 pm
Forum: Beginner Basics
Topic: Hairpin NAT on RB2011UAS-2HnD-IN
Replies: 5
Views: 2667

Re: Hairpin NAT on RB2011UAS-2HnD-IN

I'm a beginner but hairpin nat worksfor me on my RB2011 with an out interface, not a dst-address. I'm sending local traffic (192.168.1.0/24) to the local bridge. 6 ;;; Hairpin NAT chain=srcnat action=masquerade protocol=tcp src-address=192.168.1.0/24 out-interface=bridge-local dst-port=21,22,25,80,1...
by marcus65
Tue May 14, 2013 5:14 pm
Forum: Beginner Basics
Topic: Problem with virtualAP on separate Network
Replies: 5
Views: 1609

Re: Problem with virtualAP on separate Network

I feel lke a jerk! Last night I could not connect,or draw an IP address from the dhcp server I setup on wlan2. The netwok (192.168.2.0) and interface were marked unreahable with a distance of 255 in the webfig. IP Route page (attached). It all looked rhe same this morning. I just tried to connect an...
by marcus65
Tue May 14, 2013 4:09 pm
Forum: Beginner Basics
Topic: Problem with virtualAP on separate Network
Replies: 5
Views: 1609

Re: Problem with virtualAP on separate Network

I made wlan1 the master as shown below [admin@kp-router] /interface wireless> pr Flags: X - disabled, R - running 0 R name="wlan1" mtu=1500 mac-address=D4:CA:6D:7B:BC:5F arp=enabled interface-type=Atheros AR9300 mode=ap-bridge ssid="kp-private" frequency=2412 band=2ghz-b/g/n channel-width=20/40mhz-h...
by marcus65
Tue May 14, 2013 6:20 am
Forum: Beginner Basics
Topic: Problem with virtualAP on separate Network
Replies: 5
Views: 1609

Problem with virtualAP on separate Network

I setup a virtual AP but deleted because of problems with a laptop. The Laptop was the problem and when I reconfigured the virtual AP the router is telling me the separate LAN I created for the Virtual AP (wlan2) is unreachable. 1. I created the Virtual AP with a SSID & Open security 2. I gave the w...
by marcus65
Fri May 10, 2013 11:39 pm
Forum: Beginner Basics
Topic: Need help configuring Cloud Core Simple Queue
Replies: 2
Views: 866

Re: Need help configuring Cloud Core Simple Queue

Did you look at this page from the wiki? I was checking it out because I want to setup a simple queue on my virtual AP subnet

http://wiki.mikrotik.com/wiki/Manual:Qu ... ple_Queues
by marcus65
Fri May 10, 2013 11:01 pm
Forum: Beginner Basics
Topic: Wireless channel question
Replies: 1
Views: 576

Wireless channel question

I have a RB 2011with wireless AP. I configured a second wireless interface (a virtual AP) for public and private network access. I wanted to know if there would be any advantage to putting the two wireless interfaces on separate wireless channels ( i.e: 1 and 5 or 1 and 11). would this reduce possib...
by marcus65
Sat May 04, 2013 11:20 pm
Forum: Beginner Basics
Topic: Quick Dumb Qusetion
Replies: 15
Views: 2257

Re: Quick Dumb Qusetion

I tried to ues wine a long time ago and it didn't run reliably or well. Maybe I'll try again. I wanted to access the ROS GUI from the Internet but the Webfig won't work because I have dst-natted my web server and all port 80 trffic goes there. I do use ssh and the CLI but like to look at the GUI to ...
by marcus65
Sat May 04, 2013 8:42 pm
Forum: Beginner Basics
Topic: Quick Dumb Qusetion
Replies: 15
Views: 2257

Quick Dumb Qusetion

Is there or will there be a Linux eqiuivalent of Winbox?
I use Ubuntu 95% of the time.
by marcus65
Sat May 04, 2013 8:35 pm
Forum: Beginner Basics
Topic: Differences between bridge proxy-arp and ip firewall srcnat?
Replies: 5
Views: 2181

Re: Differences between bridge proxy-arp and ip firewall src

I'm a real beginner, but one thing I see is that ether1 can't be the DHCP client of the ISP and hold your LAN address (192.168.3.1) at the same time.

It seems that you should put the LAN address on ether2 & bridge 2-10
by marcus65
Thu Apr 11, 2013 10:53 pm
Forum: General
Topic: InterVLAN routing with MikroTik router and Cisco Switch
Replies: 5
Views: 11148

Re: InterVLAN routing with MikroTik router and Cisco Switch

have heard that VLAN 1 should not be the management nor native VLAN but never saw documentation. And your right Cisco Academy actually instructs this use of VLAN 1 in many exercises

I'll look for information on the proper configuration of VLAN 1
Thanks
by marcus65
Thu Apr 11, 2013 9:57 pm
Forum: General
Topic: RB2011UAS
Replies: 5
Views: 745

Re: RB2011UAS

I don't know the answer but since no one has responded yet, i'll ruminate on a possible solution. A firewall filter rule might work. here are the ports CDP uses: CDP units use the following ports for TCP/IP communications: 22/TCP: When working with support, may be needed for SSH/console access. 443/...
by marcus65
Thu Apr 11, 2013 9:47 pm
Forum: General
Topic: InterVLAN routing with MikroTik router and Cisco Switch
Replies: 5
Views: 11148

InterVLAN routing with MikroTik router and Cisco Switch

I couldn't find a good straight forward example of how to do "Router on a stick with a MikroTik and Cisco Switch. This worked for me and I was wondering if anyone had any ideas on how to make it better? I have a MikroTik 751G – Router/Wireless Access Point/5 Port Switch running Router OS 5.2. I'm t...
by marcus65
Mon Mar 25, 2013 10:03 pm
Forum: Beginner Basics
Topic: Can't access second router
Replies: 2
Views: 1318

Re: Can't access second router

Yes, You're right. The default configuation has a DROP on the INPUT chain for traffic entering ether1-gateway. I disabled this rule and I can now access the router. Now I have to learn to build firewall filter rules. Thank you /ip firewall filter add action=accept chain=input comment="default config...
by marcus65
Mon Mar 25, 2013 9:00 pm
Forum: Beginner Basics
Topic: Can't access second router
Replies: 2
Views: 1318

Can't access second router

LAN routing I have 2 MikroTiks on my LAN to experiment with and test. My RB2011 is my gateway which is configured to accept a dhcp address from my ISP and has 1 LAN attached with the address range of 192.168.1.0/24. this router is configured with 2 static routes: one quad 0 default route to the WAN ...
by marcus65
Sun Feb 24, 2013 9:40 pm
Forum: Beginner Basics
Topic: NAT problem
Replies: 14
Views: 4853

Re: NAT problem

I posted this response without enough understanding of hairpin NAT.
I removed this response 4/11/2013