Community discussions

MUM Europe 2020

Search found 14 matches

by shiny
Tue Jul 01, 2014 12:49 pm
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 94634

Re: Feature request: OpenVPN compression LZO and UDP

Mikrotik will not implement this. I asked 5 years ago. They give a reason of openvpn being hard to develop, bad coding ang so forth, yet UBIQ has implemented it and PfSense has as well. Mikrotik has nice features and neat stuff. Except for UDP Openvpn with compression. They give and excuse that it'...
by shiny
Mon Feb 10, 2014 4:15 pm
Forum: General
Topic: [FEATURE REQUEST] Two Factor Authentication
Replies: 22
Views: 14253

Re: [FEATURE REQUEST] Two Factor Authentication

I am using http://www.yubico.com/ for 2FA on several places, including some linux machines. Works good.
by shiny
Mon Feb 10, 2014 4:13 pm
Forum: General
Topic: RouterOS 6.10 beta
Replies: 35
Views: 11801

Re: RouterOS 6.10 beta

6.7 to 6.9 broke pptp connections on several of our systems in production. It actually works fine, however after upgrade security profiles were not working/applied ... showing <unknown> instead of the configured profile (we always set new profiles rather than "default-profile") could you please cla...
by shiny
Wed Dec 04, 2013 2:46 pm
Forum: General
Topic: Feature Request: DNS Fowarder
Replies: 12
Views: 2755

Re: Feature Request: DNS Fowarder

As i read that post, and hav watched one of the video - The problem is in your setup. You want to have the mikrotik to resolve Local addresses from the 10.x.x.x DNS and the rest from "another" DNS. To solve this, its your 10.x.x.x server that needs to forward non authorative requests to a internett...
by shiny
Thu Nov 14, 2013 1:59 pm
Forum: General
Topic: how to block https for facebook.com
Replies: 33
Views: 81226

Re: how to block https for facebook.com

It is pretty easy actually :

DO NOT use transparent proxy. If you setup the proxy in your web browser, you can deny/allow any http or https traffic. This is not possible with transparent proxy.
Yes you will have to MAKE your customers use the proxy :)
by shiny
Wed Aug 28, 2013 10:45 am
Forum: General
Topic: Broadcast traffic not being sent over L2TP
Replies: 5
Views: 3029

Re: Broadcast traffic not being sent over L2TP

I've spent the last 14 hours or so trying to find out why broadcast traffic is not being sent over my VPN (desktop client -> L2TP/IPsec). I have been using this tutorial . I need to be able to see network devices from Network Places on my PC and Network on my Mac. I have been through every Google r...
by shiny
Wed Apr 03, 2013 8:29 am
Forum: General
Topic: SSTP no longer works Mikrotik to Mikrotik?
Replies: 2
Views: 423

Re: SSTP no longer works Mikrotik to Mikrotik?

Are you running SSTP without certificate ?

From v6rc12 changelog :
*) sstp server - removed test mode which allowed running server without certificate;
by shiny
Tue Mar 26, 2013 10:46 am
Forum: General
Topic: Port forwarding driving me insane!
Replies: 19
Views: 2621

Re: Port forwarding driving me insane!

You don't need the accept rule. Only the nat rule.
by shiny
Tue Mar 26, 2013 9:42 am
Forum: General
Topic: L2tp over IPsec rebooting routerboards
Replies: 3
Views: 756

Re: L2tp over IPsec rebooting routerboards

We terminate up to 100 L2TP/IPSec peers on a 1100AHx2.

The clients are MikroTik and Android/Windows. No problems for more than half a year now.
Is it a bridged setup ? With l2tp interfaces being added to bridges ?
by shiny
Mon Mar 25, 2013 12:09 pm
Forum: General
Topic: L2tp over IPsec rebooting routerboards
Replies: 3
Views: 756

Re: L2tp over IPsec rebooting routerboards

Can anyone tell if this is supposed to work like that ? Any response at all, would be fine. "Works for me fine" etc.
by shiny
Fri Mar 22, 2013 1:51 pm
Forum: General
Topic: L2tp over IPsec rebooting routerboards
Replies: 3
Views: 756

L2tp over IPsec rebooting routerboards

Hello, I am having a weird problem with RouterOS and a few different RB's ( 2011's, but also happens on 951-n2 and so on ). Basically i have 3 sites connected with bridged L2tp interfaces. Everything is working correctly. I have set mrru=1600 and traffic is flowing just fine between the 3 sites The ...
by shiny
Fri Feb 22, 2013 5:21 pm
Forum: General
Topic: RouterOS v6rc11
Replies: 115
Views: 36616

Re: RouterOS v6rc11

Has there been at least some testing on the existing openvpn functionality ? It was completely broken in rc10.
by shiny
Thu Feb 21, 2013 7:42 pm
Forum: General
Topic: Scheduling Internet access
Replies: 1
Views: 405

Re: Scheduling Internet access

Create an Address List containing the IP's you want to have all the time access on. Create srcnat rule that srcnat's those ip's all the time Create a srcnat rule that nat's the rest of the IP's ( or everything different than the Address List from above ) ONLY at the times you want ( Time setting is ...
by shiny
Tue Feb 19, 2013 3:23 pm
Forum: General
Topic: RouterOS v6rc10 pre-released
Replies: 79
Views: 15842

Re: RouterOS v6rc10 pre-released

hello, since release .10, openvpn server @ rb2011 isnt working anymore. ive already cleaned my certificates, renewed them and so on.. my mac client ( /w tunnelblick ) always says: TCP connection established with [AF_INET]x.x.x.x:1194 2013-02-16 17:36:25 TCPv4_CLIENT link local: [undef] 2013-02-16 1...