Community discussions

Search found 173 matches

by peson
Wed Sep 25, 2019 10:48 am
Forum: RouterBOARD hardware
Topic: CRS125-24G-1S-RM brick
Replies: 9
Views: 668

Re: CRS125-24G-1S-RM brick

Disconnect console before install of course disconnected Have you tried this 20s reset? "Release the button after LED is no longer lit (~20 seconds) to cause a device to look for Netinstall servers " Use a switch in between the CRS and the Netinstall PC and disabled firewall on the PC. Follow the g...
by peson
Wed Sep 25, 2019 10:02 am
Forum: General
Topic: CRS125-24G-1S TCP (and other?) traffic exiting access port is sometimes tagged and sometimes not
Replies: 5
Views: 548

Re: CRS125-24G-1S TCP (and other?) traffic exiting access port is sometimes tagged and sometimes not

Thanks for replying. You'll notice in my original post I mentioned the link that you have provided here as my source for example configuration. Could you point out what from the configuration you saw as being out of step with the 1xx series examples? First, this switch chip is awesome in terms of c...
by peson
Tue Jul 30, 2019 7:36 pm
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol


I don't see your issue....
Me neither.


Rudy: Tried to PM you, but failed
by peson
Tue May 21, 2019 12:26 pm
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol

@peson Try TCP test. NV2 no scale properly for TCP. I try external machines 2x CCR for tests NO BOTTLENECK FROM CPU just NV2 scale like shiet.
Will expand the test with CCR1036.
by peson
Tue May 21, 2019 12:27 am
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol

Now time for fix 40 MHz channel in this moment max speed only 150 Mbit for TCP :( + 1 Tried to use 40MHz instead of 20MHz using nv2 many years ago on a link that was up for nearly 7 years. It was rock solid but it did not become faster than 20MHz, in fact no differences at all. Flat out speed was a...
by peson
Tue Apr 16, 2019 8:51 am
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

Also on advice of MT support I decided to go with CVID tag stacking instead of c-vlan within s-vlan. I build following config: /interface bridge add ingress-filtering=yes name=bridge vlan-filtering=yes /interface vlan add interface=sfp-sfpplus1 name=vlan-gs-ser vlan-id=309 add interface=bridge name...
by peson
Sat Apr 13, 2019 12:17 am
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

Hi there, I'm looking for a qinad solution aswell. Currently I'm running 2 x CRS317 with a metro vlan provider in between them. There are several vlans on both sides that require to be connected by the s-vlan together. I'm running the vlan aware bridge configuration on both CRS'es. Some of the vlan...
by peson
Sun Apr 07, 2019 4:45 pm
Forum: SwOS
Topic: ACLs on CSS106
Replies: 3
Views: 921

Re: ACLs on CSS106

Am I right in saying that ACLs do not work at all on the CSS106? I've just replaced a RB260GSP and cannot even successfully enter an ACL, let alone test it.
Has anybody else been able to use them?
Not working!
by peson
Thu Apr 04, 2019 11:01 pm
Forum: Wireless Networking
Topic: Mikrotik Intercell LTE APs
Replies: 44
Views: 5026

Re: Mikrotik Intercell LTE APs

Currently products supports only TDD Band38 and Band39. You need the LTE Base Station for 3.5ghz? For which country and which exact LTE bands Band 42, 43 or 48? Also what other requirements you have like output power, any other hardware/software features? Here is info on the LTE bands: http://niviu...
by peson
Sat Mar 02, 2019 12:39 am
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol

Now i´ve an AP with 26 ARM CPE. I wounder if i can do a stress test to all units at the same time, like high BW. You can, but you'll have to login to every unit and run it. You need a lot of open windows in your management PC..... And you'll find the maximum throughput is relatively low since the A...
by peson
Sun Feb 10, 2019 3:52 am
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol

A sector with 15 clients a/n/40mhz and the one I've tested is old single core .ac. Under each picture you can find the protocol used. Sadly in 802.11 is not stable and clients gets a lot of disconnections so I'm sticking with nstreme. The conclusion is Mikrotik have lost speed in any protocol, a lo...
by peson
Fri Feb 08, 2019 11:39 pm
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60160

Re: ARM devices and NV2 protocol

A sector with 15 clients a/n/40mhz and the one I've tested is old single core .ac. Under each picture you can find the protocol used. Sadly in 802.11 is not stable and clients gets a lot of disconnections so I'm sticking with nstreme. The conclusion is Mikrotik have lost speed in any protocol, a lo...
by peson
Fri Sep 14, 2018 2:06 am
Forum: RouterBOARD hardware
Topic: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload
Replies: 5
Views: 2012

Re: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload

I'm on latest ROS (6.43.7 i think) and I have HW accelerated xor bonding between CRS317 and CRS326. It happened to me that bonding interface acceleration sometimes "derps" after you perform reconfiguration of interfaces and looses HW state. Putting interface down and up or rebooting device usually ...
by peson
Tue Sep 11, 2018 5:56 pm
Forum: RouterBOARD hardware
Topic: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload
Replies: 5
Views: 2012

Re: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload

I'm on latest ROS (6.43.7 i think) and I have HW accelerated xor bonding between CRS317 and CRS326. It happened to me that bonding interface acceleration sometimes "derps" after you perform reconfiguration of interfaces and looses HW state. Putting interface down and up or rebooting device usually ...
by peson
Tue Sep 11, 2018 3:59 am
Forum: RouterBOARD hardware
Topic: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload
Replies: 5
Views: 2012

Re: CRS326 and 802.3ad / LACP bonding with VLANs, no HW offload

I got the same problem on 6.42.7.
Hardware offloading for bonding interface not working in CRS326.
Have you tried it on the CRS317?
Did you solve it?
by peson
Wed Jun 20, 2018 9:39 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

Split horizon is covered in the MTCINE training (https://mikrotik.com/pdf/MTCINE_Outline.pdf) I teaching it in the MTCNA classes I have since it's a very useful feature when configuring port isolation which is common used in ISPs networks. Of topic: I still have only one pair of glasses, but I need ...
by peson
Tue Jun 19, 2018 4:52 am
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

This might be helpful: /interface bridge add name=br-QinQ vlan-filtering=yes /interface vlan add interface=ether1 name=vl10-QinQ use-service-tag=yes vlan-id=10 /interface bridge port add bridge=br-QinQ interface=vl10-QinQ add bridge=br-QinQ interface=ether2 add bridge=br-QinQ interface=ether3 add br...
by peson
Mon Jun 18, 2018 11:21 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

@peson, correct, it is a deployment / project that i got involved late, asked info and got very little, i.e. network design, etc
Do you need to interfere with the customers vlans on layer 3. or is it only L2 tunneling you need.?
Any queuing or shaping involved?
by peson
Mon Jun 18, 2018 11:13 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

@peson, Sorry, cant answer for equipment other side, I asked numerous occasions but still did not get answer, have meeting with collocation engineers in the morning at 10:00
But they request you to have a s-vlan 10 carrying the customers inside with c-vlan 20, 30 and 40?
by peson
Mon Jun 18, 2018 11:05 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

Those configs won't work for you. Please, try to explain the whole chain of what you're trying to achieve. Review my questions above. Is it something like this: Cust2 -- untagged -- CCR:ether2 -- some core -- tagged 20@ISP router @peson, did you read my post, https://forum.mikrotik.com/viewtopic.ph...
by peson
Mon Jun 18, 2018 10:30 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

Those configs won't work for you.
Please, try to explain the whole chain of what you're trying to achieve.
Review my questions above.
Is it something like this:
Cust2 -- untagged -- CCR:ether2 -- some core -- tagged 20@ISP router
by peson
Mon Jun 18, 2018 9:50 pm
Forum: General
Topic: QinQ VLAN's Help needed [SOLVED]
Replies: 61
Views: 6638

Re: QinQ VLAN's Help needed [SOLVED]

I am treading in waters I have not done before and it is a semi live network, so I need to get my ducks in a row, below is what I need: Cust 1 ---- C-Vlan 10 ----- \ Cust 2 ---- C-Vlan 20 -------\--- CCR1036 -- S-Vlan 50 ---- Co Loc for ISP's / Cust 3 ---- C-Vlan 30 ---- / Customers coming in on th...
by peson
Tue Apr 03, 2018 1:04 am
Forum: The Dude
Topic: Request help with ros_command function [SOLVED]
Replies: 10
Views: 2262

Re: Request help with ros_command function [SOLVED]

I think you got something wrong in your settings for the Username and Password in the device settings. Check Status and RouterOS Status in the General settings tab. Router OS needs to be checked in the settings If the Username ans Password is correct, check the logged in users (/user active print) o...
by peson
Thu Jan 18, 2018 11:05 am
Forum: SwOS
Topic: CRS326-24G-2S+RM Where is CRS326-24S-2S+RM
Replies: 3
Views: 1244

Re: CRS326-24G-2S+RM Where is CRS326-24S-2S+RM

Hi, I agree with Jimmy.
A CRS326-24S-2S+RM would be great for the ISP business and maybe DX32 cascaded to a CRS352-48S-4S+RM as Jimmy wrote :-)
( http://www.marvell.com/documents/rqWmeRpkMiKHMEthCEoJ/ ).
I put this on my wishlist.
by peson
Sun Dec 31, 2017 3:15 pm
Forum: The Dude
Topic: Request help with ros_command function [SOLVED]
Replies: 10
Views: 2262

Re: Request help with ros_command function [SOLVED]

Hey, I was just trying this: [Device.Name] # of Routes: [ros_command("/ip route print count")][device_performance()][Device.ServicesDown] In the Appearance settings in for our Dude-server, it runs as a CHR with ROS 6.39.2. It shows the amount of routes (3) on the view, so it works for me. Check in s...
by peson
Wed Apr 26, 2017 11:46 pm
Forum: General
Topic: v6.39rc80 [release candidate] is released!
Replies: 63
Views: 10971

Re: v6.39rc76 [release candidate] is released!

Please provide a method of restoring previous STP mode, whereby Router OS would exclusively transmit and process BPDUs on (R)STP bridge ports. I furthermore don't see the point of having independent STP processes running for each bridge, if the STP BPDU frames are leaked to ports that aren't member...
by peson
Tue Aug 30, 2016 11:09 am
Forum: Wireless Networking
Topic: Minimum power settings for Mikrotik radios
Replies: 17
Views: 2139

Re: Re:

The object of my question is; does the radio become unstable if set to 4dBm or not? And if yes, where is the tipping point? We have a couple of short and very short links that run with 10dBm setting but still deliver -30dB at the other end. But I don't seem to be able to get 100% CCQ on these links...
by peson
Wed Aug 03, 2016 2:31 pm
Forum: SwOS
Topic: Spanning Tree Protocol
Replies: 26
Views: 16419

Re: Spanning Tree Protocol

at the market its very rare a switch under 8-10 gigabit ports to support stp or rstp, looks like there is no economically viable to implement strong features on 5 port switch, many features are only seen on 10+ ports switches. not only on mikrotik, other brands are the same, looks like chipset limi...
by peson
Tue Mar 29, 2016 12:48 pm
Forum: Wireless Networking
Topic: Netmetal and NV2 low throughput
Replies: 20
Views: 4555

Re: Netmetal and NV2 low throughput

In most of the Europe (ETSI) we are limited to 30dB EIRP (5470 to 5725 MHz) in 5GHz, it's interesting to have some data of your EIRP (RF power from the radio + antenna gain). If the antenna have 30dB gain, you are limited to 0 dB power input, how does the radios behaves then? In the upper frequency...
by peson
Sun Mar 27, 2016 7:09 pm
Forum: Wireless Networking
Topic: Netmetal and NV2 low throughput
Replies: 20
Views: 4555

Re: Netmetal and NV2 low throughput

Test by new firmware.. Can you please tell us more about the configuration. TX-power settings, show a status of registred clients, etc. /Paul Hi, Because we test higher quality shielded antenna for isolate interference & noise.. Very happy, good result, but the shielded antenna so expensive.. TX po...
by peson
Thu Mar 24, 2016 8:36 am
Forum: Wireless Networking
Topic: Netmetal and NV2 low throughput
Replies: 20
Views: 4555

Re: Netmetal and NV2 low throughput

Test by new firmware..
Can you please tell us more about the configuration.
TX-power settings, show a status of registred clients, etc.

/Paul
by peson
Wed Aug 12, 2015 12:26 am
Forum: Wireless Networking
Topic: Netmetal and NV2 low throughput
Replies: 20
Views: 4555

Re: Netmetal and NV2 low throughput

As for the wireless TX-power I've wrote this topic in the Trainers closed area. The WiFi regulations in Europe limits the 5Ghz EIRP to 30dB, at least most of Europe. All the boards with built in a 5Ghz radio have the high TX-powered radios (-5HPnD). When PtP links with high gain antennas are built w...
by peson
Thu Sep 18, 2014 4:25 pm
Forum: SwOS
Topic: RB260GSP ready for prime time?
Replies: 83
Views: 24229

Re: RB260GSP ready for prime time?

Can the ppl who had problems with POE report whether 1.14 fixed the Problem? I'm still unsure whether we should deploy a RB260GSP for our next locations. Hey, I've updated the switch and recalibrate the ports, but... I've connected the 912-radio on port 3, it was port 2, but when I recalibrated the...
by peson
Mon Sep 08, 2014 12:44 pm
Forum: SwOS
Topic: RB260GSP ready for prime time?
Replies: 83
Views: 24229

Re: RB260GSP ready for prime time?

The major RB260GSP PoE out problems have been fixed in SwOS v1.14: http://www.mikrotik.com/download After upgrade it is recommended to do recalibration with "calibr" option in PoE out settings. Calibration process will ask to disconnect device from the port and return in auto mode when process is d...
by peson
Mon Aug 25, 2014 5:59 pm
Forum: Wireless Networking
Topic: CAPs Manager
Replies: 165
Views: 56523

Re: CAPs Manager

i have an (MTU?) problem with CAPsMAN using manager forwarding mode; i already sent a mail to support@ and i'm awaiting response; thought i'd post here in the meantime. my setup is: CCR1036-12G-4S as CAPsMAN mixed devices as CAP: mostly RB2011UAS-2HnD, RB2011UiAS-2HnD, RB951-2n everything is runnin...
by peson
Fri Jul 04, 2014 3:51 pm
Forum: General
Topic: Dell 5600 WWAN - Gobi1000 - Drivers
Replies: 1
Views: 1700

Re: Dell 5600 WWAN - Gobi1000 - Drivers

(so it looks like the card is a Qualcom). Power-cycled the board and I still get exactly the same "Failed to load Gobi firmware" error message. Does anybody have any ideas? Alternatively, does anybody have any recommendations for cards which work in RB912s, which are readily available and which are...
by peson
Tue Apr 01, 2014 10:19 pm
Forum: Wireless Networking
Topic: Ubiquiti vs Mikrotik
Replies: 75
Views: 60294

Re: Ubiquiti vs Mikrotik

Are we just talking about the difficulty to work on or is the fiber which is ran along electricity HT cables unreliable and prone to failure. Both, the cables are better now but the early installations showed bad cable quality and the need of repair or servicing the cables is hard because the elect...
by peson
Tue Apr 01, 2014 4:11 pm
Forum: Wireless Networking
Topic: Ubiquiti vs Mikrotik
Replies: 75
Views: 60294

Re: Ubiquiti vs Mikrotik

Unless I am totally incorrect, fiber ran along with the overhead electricity HT cables on pylons has been very successful. That´s a big problem. Fiber cables running along with high power cables is very hard to do work on because of the problem with shutting down a high power line. We have this pro...
by peson
Tue Oct 16, 2012 10:11 am
Forum: Wireless Networking
Topic: Vlans through a wireless PTP (rocket M5 WDS) with mikrotik
Replies: 1
Views: 1225

Re: Vlans through a wireless PTP (rocket M5 WDS) with mikrot

Please send more information of the setup.
Is the MT AP or Station?
Is the Rocket AP or Station?
How is the WDS setup?
by peson
Fri Sep 28, 2012 3:43 pm
Forum: General
Topic: Feature Request - l2tpv3 or other MTU independend pseudowire
Replies: 3
Views: 2094

Re: Feature Request - l2tpv3 or other MTU independend pseudo

Hello, it would be _very usefull_, to have posibility to tunnel L2 transit (including QinQ) through IP network. Many our customers want us, to independend few Mbps pseudowire from some village to main peering point at our telehouse, and get it with QinQ. L2tpv3 is perfect candidate: - It is simple ...
by peson
Mon Sep 03, 2012 9:52 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: MetaROUTER stability issues on certain MIPSBE and PPC bo

AFAIK since a lot of stuff is happening in OS all the time, and guest and host has to do these things all the time, so each gets time-slice when to do stuff. If ping comes in wrong time it can miss current time-slice and get to the other one, hence the deviation. Can this be true, since the "hangs"...
by peson
Wed Aug 15, 2012 9:16 am
Forum: General
Topic: how to get srcnat modified src ip/port after postrouting
Replies: 5
Views: 1140

Re: how to get srcnat modified src ip/port after postrouti

Hi peson

it's working :)

thank you so much for the effort you applied to solve my problem.

really appreciated.

have a nice day!
Thanks for your appreciation.
by peson
Tue Aug 14, 2012 1:39 pm
Forum: RouterBOARD hardware
Topic: RB493G intermittent packet loss
Replies: 14
Views: 9081

Re: RB493G intermittent packet loss

This is common problem with 493G - we noticed as soon as we started upgrading 493 with 493G (routing masthead 411 and 711 base station units) - problem solved by replacing with RB1100AH. Normis: Why do I keep thinking of the switching chip, when there is networking issues with G-models? Most of the...
by peson
Mon Aug 13, 2012 11:55 pm
Forum: General
Topic: Why RB 1100AHx2 does not provide the stated capacity.
Replies: 16
Views: 4549

Re: Why RB 1100AHx2 does not provide the stated capacity.

Did the bonded device will increase the capacity, if the overload is on the CPU?
Have you checked?
/tool profile
by peson
Mon Aug 13, 2012 10:31 pm
Forum: RouterBOARD hardware
Topic: RB493G intermittent packet loss
Replies: 14
Views: 9081

Re: RB493G intermittent packet loss

Tried an other PC?
Tried without the SD and the mini-pci card?
And make shure that you don't have anything else connected, even if the interface are disabled.
by peson
Mon Aug 13, 2012 10:26 pm
Forum: General
Topic: how to get srcnat modified src ip/port after postrouting
Replies: 5
Views: 1140

Re: how to get srcnat modified src ip/port after postrouti

if it help to describe the solution , yes, think that we already know the src priavte ip/port and dst /port and we want to know the modified public src ip/port as built by src nat rule. The reqirement is that this natted src ip/port must be recorded/logged automaically by a firewall/filter/nat rule...
by peson
Mon Aug 13, 2012 4:32 pm
Forum: RouterBOARD hardware
Topic: RB493G intermittent packet loss
Replies: 14
Views: 9081

Re: RB493G intermittent packet loss

Have you tried a system reset and only have one PC connected with DHCP enabled?
No other connections, only one PC.
Try the ping again, is it still the same problem?
by peson
Mon Aug 13, 2012 3:01 pm
Forum: RouterBOARD hardware
Topic: RB493G intermittent packet loss
Replies: 14
Views: 9081

Re: RB493G intermittent packet loss

Bad news After more extensive testing I get no more packet lost using ping flood, but I still get random high latencies. I have been investigating more the "randomness" and I see it occurs every 70 seconds (more or less). Sometimes latencies are so high packets are lost, other times simply I get la...
by peson
Mon Aug 13, 2012 2:51 pm
Forum: General
Topic: how to get srcnat modified src ip/port after postrouting
Replies: 5
Views: 1140

Re: how to get srcnat modified src ip/port after postrouti

Hi folks do you think is possible to create a new chain, may be using a sort of trick (trough virtual interfaces, brdiges,etc) , to have extra processing just after srcnat rules (immediately after postrouting). My goal is to discover the ip used as src ip /port as applied by the src nat rules. To c...
by peson
Thu Aug 09, 2012 1:46 pm
Forum: General
Topic: PPTP forward port not working
Replies: 7
Views: 8128

Re: PPTP forward port not working

here are my setting: [tomeng@gw01] > ip firewall filter print 0 chain=forward action=accept src-address=192.168.9.5 out-interface=vl19-pub-gw 1 chain=forward action=accept protocol=gre in-interface=vl19-pub-gw [tomeng@gw01] > ip firewall nat print 13 ;;; Test PPTP chain=dstnat action=dst-nat to-add...
by peson
Thu Aug 09, 2012 12:29 pm
Forum: General
Topic: PPTP forward port not working
Replies: 7
Views: 8128

Re: PPTP forward port not working

Hi docmarius,

I have done with your setting is still not working.

PPTP is working on port 1723 and tunnel gre, so we can only forward port 1723 and can not forward protocol=gre. that why not working

any idea
Check the order of your NAT rules and your forward filter set.
by peson
Thu Aug 09, 2012 12:20 pm
Forum: General
Topic: need to change email server outgoing ip
Replies: 1
Views: 731

Re: need to change email server outgoing ip

So I have listed three IP Public IPs. All of them can be ping-ed just fine. Ex: 1.1.1.1, 1.1.1.2, 1.1.1.3 Currently all machines including Email Server are using the 1.1.1.1 when going outside. I want email server to use 1.1.1.2. add action=src-nat chain=srcnat disabled=no out-interface=internet sr...
by peson
Thu Aug 09, 2012 12:03 pm
Forum: General
Topic: OpenVPN performance, throughput odd/bad.
Replies: 5
Views: 3507

Re: OpenVPN performance, throughput odd/bad.

Finally hacked my way through setting up OpenVPN in ethernet/TAP mode. However, after doing so, and running JPerf/IPerf on machines at either end, I get really poor throughput. I'm using SHA-1 / AES-256-CBC on a RB450G - and I get at max throughput around 10Mb/s, but then have drops down to 2Mb/s f...
by peson
Thu Aug 09, 2012 11:41 am
Forum: Beginner Basics
Topic: Easiest way to limit SXT to 8Mbps on bridged network?
Replies: 2
Views: 787

Re: Easiest way to limit SXT to 8Mbps on bridged network?

What is the easiest way to limit SXT to 8Mbps on bridged network? How to create the queue?

Thanks
-Jon
Easiest way is to limit the ethernet interface.
/interface ethernet set ether1 bandwidth=8M/8M
by peson
Tue Aug 07, 2012 9:06 am
Forum: Wireless Networking
Topic: WDS and N
Replies: 20
Views: 2628

Re: WDS and N

It's a good documentation with useful information.
Read it carefully, it will help you with your questions :-)
by peson
Tue Aug 07, 2012 8:58 am
Forum: General
Topic: Firewall filter chain forward vs chain input
Replies: 5
Views: 23247

Re: Firewall filter chain forward vs chain input

I checked the manual and packet flow chart prior to posting, just to make sure I wasn't losing my mind. From log - 17:35:54 firewall,info input: in:ether1 out:(none), src-mac 00:0d:9d:a0:f2:31, proto UDP, 10.36.55.200:68->255.255.255.255:67, len 328 Do you have problem with unauthorized DHCP servers?
by peson
Tue Aug 07, 2012 4:02 am
Forum: Wireless Networking
Topic: WDS and N
Replies: 20
Views: 2628

Re: WDS and N

I am using 20mhz only. Its working perfectly in 5GHZ-A now, so will leave it alone as bandwidth increased of N are not required. If also seen the occasional WDS storm in 5.19 using 2.4 Grooves and 2.41 firmware, although nowhere near as bad as pre 5.18. In my mind there is something not 100% still....
by peson
Tue Aug 07, 2012 3:21 am
Forum: Beginner Basics
Topic: tagged and untagged vlans
Replies: 6
Views: 1799

Re: tagged and untagged vlans

eth1<(in) vlan native(untagged)+vlan100(tagged) eth2>(out) vlan native(untagged) eth3>(out) vlan native(untagged) eth4>(out) vlan 100 (tagged) eth5>(out) vlan 100 (tagged thanks It can be solved with the switching chip configuration or bridging interfaces. Do you need wire speed switching? Do you n...
by peson
Tue Aug 07, 2012 3:02 am
Forum: General
Topic: Firewall filter chain forward vs chain input
Replies: 5
Views: 23247

Re: Firewall filter chain forward vs chain input

Basically:
Input chain, filter traffic going to the router. (DST address of the router)
Forward chain, filter traffic going through the router. (SRC and DST is not on the router)

Read more:
http://wiki.mikrotik.com/wiki/Manual:IP ... ter#Chains
by peson
Wed Jul 18, 2012 2:41 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: MetaROUTER stability issues on certain MIPSBE and PPC bo

Thats why they talked about "soon" and are ignoring any request for comment in this thread. Sure... Yeah, it frustrates us too because we have to keep renaming voltage.ko modules inside mips routerboards. By the way not easy on boards without official serial port. We have a 3.3V to RS232 level conv...
by peson
Thu Jul 12, 2012 8:02 pm
Forum: General
Topic: Correct MTU for QinQ through EoIP
Replies: 5
Views: 2614

Re: Correct MTU for QinQ through EoIP

Maybe I misunderstand you, does EoIP runs over the vlan10? Then I agree that the ether2 L2MTU should be 1504 In your example, it's not QinQ you're running, since EoIP encapsulates the whole ethernet frame from ether2 I still advice you to run BCP with L2TP instead of EoIP it's less CPU intensive. BR...
by peson
Thu Jul 12, 2012 6:05 pm
Forum: General
Topic: Correct MTU for QinQ through EoIP
Replies: 5
Views: 2614

Re: Correct MTU for QinQ through EoIP


So for a QinQ packet comming from a Cisco Trunk the RoutBOARD's interface L2MTU should be 1504?
A QinQ packet have 2 VLAN tags, so the L2MTU needs to be at least 1508.
by peson
Thu Jul 12, 2012 12:05 pm
Forum: General
Topic: MTU larger than 1492 over PPPoE links
Replies: 8
Views: 11890

Re: MTU larger than 1492 over PPPoE links

I assume that you done some sniffing of the negotiation and seen that the PPP-Max-Payload aren't in PADI and PADR.

Then ok, I agree that MT should include RFC 4638 in ROS code.
Add a feature request at:
http://wiki.mikrotik.com/wiki/MikroTik_ ... e_Requests
by peson
Thu Jul 12, 2012 11:28 am
Forum: General
Topic: Multiple EOIP with bridge. How to split traffick.
Replies: 5
Views: 1754

Re: Multiple EOIP with bridge. How to split traffick.

Also did try this before. Did not actually function, because my filter, filtered DHCP on bridge, which is part of Ether1, braking DHCP on Ether1. Did not however try and fix it because i found the gateway has to be in the same network as ip range, which would any how defy the purpose. Try this: /in...
by peson
Thu Jul 12, 2012 2:20 am
Forum: General
Topic: MTU larger than 1492 over PPPoE links
Replies: 8
Views: 11890

Re: MTU larger than 1492 over PPPoE links

This is printouts from my pppoe-client and server. Client: > int pppoe-client monitor pppoe-rt-bfs-2 status: connected uptime: 16m16s idle-time: 55s active-links: 1 encoding: MPPE128 stateless service-name: rt-bfs-2 ac-name: rt-bfs-2 ac-mac: 00:0C:42:A4:7A:51 mtu: 1500 mru: 1500 local-address: 172.3...
by peson
Thu Jul 12, 2012 1:30 am
Forum: General
Topic: Multiple EOIP with bridge. How to split traffick.
Replies: 5
Views: 1754

Re: Multiple EOIP with bridge. How to split traffick.

Thanks for the reply. That is what i thought as well, however because of the bridge it is not that easy. Also Mikrotik A give ip's and is also the gateway. Did try to mark packages and route out ether 2 instead of EOIP, but you cant mark ether1 data. It is part of the bridge and the bridge just for...
by peson
Thu Jul 12, 2012 1:26 am
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

Thanks very much guys, I shall report back in a day or so and see how it goes. Is there a list of recommended hardware, NIC cards/chipsets etc? Look in: http://wiki.mikrotik.com/wiki/Supported_Hardware It will probably work on any PC, except KVM support. I recommend Intel NICs and Atheros for WiFi ...
by peson
Wed Jul 11, 2012 8:25 pm
Forum: General
Topic: Changing Interface MTU
Replies: 3
Views: 8679

Re: Changing Interface MTU

I am using DELL R210 which has interface supports Jumbo Frame. But when I try to change MTU to above 1500 in ROS. It doesn't allow. Why? I am using ROS 5.9. Thanks, Works for me: int ether set ether3 mtu=9000 [admin@MikroTik] > int eth pr Flags: X - disabled, R - running, S - slave # NAME MTU MAC-A...
by peson
Wed Jul 11, 2012 8:07 pm
Forum: Wireless Networking
Topic: Need wireless link setup p2p help
Replies: 14
Views: 2353

Re: Need wireless link setup p2p help

What is the distance from point A to the "higher location"?
by peson
Wed Jul 11, 2012 8:01 pm
Forum: General
Topic: spanning tree mikrotik + Cisco issue
Replies: 1
Views: 953

Re: spanning tree mikrotik + Cisco issue

I need some more information.

Send printout from:
/int bri exp
/int eth exp
/int vlan export
by peson
Wed Jul 11, 2012 7:53 pm
Forum: General
Topic: MTU larger than 1492 over PPPoE links
Replies: 8
Views: 11890

Re: MTU larger than 1492 over PPPoE links

It would be nice if this could be supported on Router OS so that we don't have anymore to use MLPPP over single link tunnels (and the associated overhead) for desired MTU larger than 1492.
Have you tried max-mtu=1500 and max-mru=1500?
by peson
Wed Jul 11, 2012 7:45 pm
Forum: General
Topic: Correct MTU for QinQ through EoIP
Replies: 5
Views: 2614

Re: Correct MTU for QinQ through EoIP

Read this: http://wiki.mikrotik.com/wiki/Manual:BCP_bridging_(PPP_tunnel_bridging) http://wiki.mikrotik.com/wiki/Maximum_Transmission_Unit_on_RouterBoards I advice you to use BCP over L2TP with MLPPP support over single link instead of EoIP, then you don't have to mind about the packet size through ...
by peson
Wed Jul 11, 2012 7:17 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

I actually have a spare PC with 4 NIC's in. So do I just download the ROS ISO for the PC / x86 and boot the CD, or is there some special installation requirements with a PC? Cheers Read: http://wiki.mikrotik.com/wiki/Manual:CD_Install You can install on a harddisk, USB flash, CF or whatever device ...
by peson
Wed Jul 11, 2012 5:50 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

VDSL2 :) Can the MT not just do the PPP and then pass all traffic to another router which then handles the NAT setup? Then you need to route the traffic through the MT to the NAT router and that you ISP route that NAT-IP through your MT's IP. So, I bet that the CPU is busy with the MLPPP. Do you ha...
by peson
Wed Jul 11, 2012 2:47 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

Any quick tutorial on how to do this? Would turning off connection tracking really make a noticeable difference to the CPU utilisation as I was the only PC on the network at the time of doing the speedtest? http://wiki.mikrotik.com/wiki/Manual:BCP_bridging_(PPP_tunnel_bridging) This require your IS...
by peson
Wed Jul 11, 2012 2:01 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

Just wanted to see if the switch was involved in the configuration.
I can't see anything wrong in the configuration so, the last thing to test is to configure the RB 450G as a bridge and add an other router for the NAT and firewalling.

/Paul
by peson
Wed Jul 11, 2012 12:26 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

/interface ethernet set 0 name=Gateway set 1 mtu=1520 name=LAN set 2 mtu=1520 name="Line 1" set 3 mtu=1520 name="Line 2" set 4 mtu=1520 name="Line 3" Need NAT so can't turn connection tracking off (unless I just use the RB for the MLPPP and then bridge it to another router to handle the LAN - would...
by peson
Wed Jul 11, 2012 10:22 am
Forum: General
Topic: Multiple EOIP with bridge. How to split traffick.
Replies: 5
Views: 1754

Re: Multiple EOIP with bridge. How to split traffick.

Either of:
- Use .1 as the default gateway in LAN1 and .254 in LAN2
- Setup mangle rules to route traffic directly to Internet for non local traffic.

There is many ways to do this. :-)
by peson
Wed Jul 11, 2012 10:15 am
Forum: General
Topic: L2TP, Multiple VLANs, use RADIUS to assign user to VLAN
Replies: 2
Views: 1688

Re: L2TP, Multiple VLANs, use RADIUS to assign user to VLAN

1) Is it possible to restrict users to a specific VLAN? 2) What if they needed access to more than one VLAN? 3) What attributes would I need to send from the RADIUS server to restrict traffic? 4) Any useful tutorials for the above? :) Setup filters-chains in the firewall and use the RADIUS Filter-I...
by peson
Mon Jul 09, 2012 5:54 pm
Forum: General
Topic: How to netinstall RB750gl ??????????????????????
Replies: 6
Views: 5108

Re: How to netinstall RB750gl ??????????????????????

make sure you have connected Ether1 port of the device, directly to the PC with netinstall, and that the PC has all firewall/antivirus services off. Turn off the RB750GL, hold the button, keep holding the button and turn on the device, keep holding the button for 25 seconds, then release it. ... an...
by peson
Mon Jul 09, 2012 5:50 pm
Forum: General
Topic: 3 line MLPPP working; but speed issue
Replies: 29
Views: 5203

Re: 3 line MLPPP working; but speed issue

Could you send a printout from:
/int bridge exp comp
/int pppoe-cli exp comp
/int eth exp comp

Turn off connection tracking if not needed.
by peson
Mon Jul 09, 2012 12:28 pm
Forum: General
Topic: VLAN tagget packets and 802.1p priority
Replies: 7
Views: 1786

Re: VLAN tagget packets and 802.1p priority

the correct command is:
"add action=set-priority new-priority=7 out-interface=vlan1"

Note that it applies only for RouterOS v3.0
may i know how to set vlan priority to 1 in v5.18?
Is it the switch configuration or a bridge configuration?
by peson
Fri Jul 06, 2012 1:48 am
Forum: General
Topic: Mikrotik with Hotspot and external proxy
Replies: 8
Views: 2459

Re: Mikrotik with Hotspot and external proxy

[admin@] /ip firewall nat> print Flags: X - disabled, I - invalid, D - dynamic 0 X ;;; place hotspot rules here chain=unused-hs-chain action=passthrough to-addresses=0.0.0.0 1 chain=dstnat action=dst-nat to-addresses=IP_PROXY to-ports=3128 protocol=tcp in-interface=vlan1 dst-port=80,443 Is this rul...
by peson
Mon Jun 04, 2012 2:36 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: MetaROUTER stability issues on certain MIPSBE and PPC bo

Oh, sorry, I forgot to mention that. I am only using ether1 on both units. So, yes, it is going through the first switch chip. What ports are connected directly to the SoC? ether13? Perhaps I should try running the same test again, but using ether13. Nathan: Look in "/int eth po print" and you will...
by peson
Mon May 28, 2012 9:10 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

MT tells you to 'tweak' your config or disable packages, etc. That is complete work around, if it works, and comes with no explanation. It is not a solution to a problem. The only solution to this problem is one that comes with a sane explanation. Or maybe MT has no clue where to start. I get that ...
by peson
Fri May 04, 2012 6:51 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

all Can you confirm this? I can't recall it exactly, but I think there where negative reports for RB433AH too. I have never had my AH crash on me, and I have had it running in parallel with my 450G during all of these tests. It's even running off the same 24v power supply that gives more than one o...
by peson
Mon Apr 23, 2012 1:20 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

if you didn't get an answer, paste your ticket number and I will check why. Maybe some experiment is being done, and the responsible person is waiting for result, before replying to you. My ticket: Ticket#2012012666000134 What about my suggestion in collude together in an organized way? /Paul Lates...
by peson
Mon Apr 23, 2012 12:21 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

if you didn't get an answer, paste your ticket number and I will check why. Maybe some experiment is being done, and the responsible person is waiting for result, before replying to you.
My ticket:
Ticket#2012012666000134

What about my suggestion in collude together in an organized way?

/Paul
by peson
Mon Apr 23, 2012 11:33 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Wazza, you need to contact support. Send us your image, send us problem description, and steps how to reproduce problems you are facing. If we can repeat it, we can fix it. Normunds! This is the problem, we all contribute with facts and sending you supout files. I've done this myself and haven't he...
by peson
Fri Apr 20, 2012 1:46 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

hardware watchdog on all recent (as in several years) RouterBOARD products Ok, so it's both soft- and hardware based? From the Wiki: This menu allows to configure system to reboot on kernel panic, when an IP address does not respond, or in case the system has locked up. Software watchdog timer is u...
by peson
Fri Apr 20, 2012 12:48 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Im still running my testing rb450G, power supply Sunny 12V 2A, 4 metarouters (2x ROS + 2xOpenWRT) with connected console, running TOP command and ssh connection from external machine. Now i have 4d 14h uptime. Is this with or without watchdog enabled? My 1100AH Rev. A keeps running with the watchdo...
by peson
Wed Apr 18, 2012 9:56 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

The 2 1100s that I configured from the exports that peson sent to me have not crashed/rebooted/frozen, and in about 30 minutes they will have hit the 24 hour uptime mark. I am not convinced that they will exhibit any symptoms, but I will continue to watch them. (Once they hit 48 hours at around thi...
by peson
Tue Apr 17, 2012 1:25 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

So never longer than 24 hours? And you've definitely not seen anything close to 100 hours?
No, not with watchdog enabled, without watchdog, 8d5h and still running.
I will watch for them and let you know of my results.
Sent
I'm looking forward to hear about your results

/Paul
by peson
Tue Apr 17, 2012 12:46 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

how long would you say it takes on average before one of your RB1100AH reboots?
Everything between, 1-24 hours.
Will send you an export compact from the host and guests.
/Paul
by peson
Mon Apr 16, 2012 9:32 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

I don't have your particular 1100AH, and you don't have mine. Who knows: if it is a hardware issue, maybe there is a problem with your board that my board doesn't have? I have two brand new boards acting the same. If you can describe for me exactly how yours is set up (or, better yet, send me '/sys...
by peson
Mon Apr 16, 2012 1:51 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Hmm... PPC is stable? 450G is unstable? This might be a big problem for all of us, some says this, some says that. Who are right? MT staff? No they seem to struggle with the MR implementation. We the testers and MT committed users? No, at least this is my opinion, we are testing this differently. Du...
by peson
Fri Apr 13, 2012 11:16 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

This is all useful information for the developers to know. -- Nathan I agree with Nathan, all information for the devs is useful. That's why I want to put together a "task force" with knowledge from us and MT. As I wrote in my reply: http://forum.mikrotik.com/viewtopic.php?f=15&t=60746&p=311968#p31...
by peson
Fri Apr 13, 2012 2:48 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

I am secretly hoping that both the 1100 and 1100AH either crash or reboot, because I'd hate to think that my 1100AH cannot run reliably at 1333MHz. ;) -- Nathan I'm running both my 1100AH Rev A at the factory set speed. One has the watchdog disabled and the other has it enabled. The one with the WD...
by peson
Thu Apr 12, 2012 2:40 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

new boards should have good capacitors on them and does not need replacement. about RB1100AH - what you have configured there? try to check what you have set and if recreating this with original disabled on another MR causes the same problem. Also, you could send configuration over so i can try to ...
by peson
Thu Apr 12, 2012 2:16 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

The 1100AH has rebooted 3 times today. The 450G didn't reboot at all until I put the original 24V 800mA power supply back on it. Now it has rebooted twice. I'm having the same experience from my 1100AH Rev A. routers, but after disabling the watchdog it doesn't reboot anymore, at least for last 3d1...
by peson
Wed Apr 11, 2012 11:54 am
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243080

Re: Metarouter images

That should do it. Hopefully others will find this useful. I hope to continue to find time to make changes and enhancements; ultimately, I want to get either FreePBX or some other web-based Asterisk GUI running on MetaROUTER along with Asterisk. -- Nathan Thanks for sharing the nice work Nathan :-D...
by peson
Tue Apr 10, 2012 1:49 am
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Another thing is that the Rev A have the encyption chip and the Rev B doesn't. Not to stray too far off-topic here, but...how do you know the Rev. A has the encryption engine on its CPU? I thought only the RB1000 CPU had that. -- Nathan sys resour pr uptime: 9w6d2h21m50s version: 5.12 free-memory: ...
by peson
Tue Apr 10, 2012 1:24 am
Forum: General
Topic: IPSEC + L2TP with two Mikrotik router - bridging one IP
Replies: 1
Views: 1366

Re: IPSEC + L2TP with two Mikrotik router - bridging one IP

If you are satisfied with L2TP encryption then follow the guide in: http://wiki.mikrotik.com/wiki/Manual:BCP_bridging_(PPP_tunnel_bridging) If you need IPSec, add a peer on the VPN concentrator, like: /ip ipsec peer add address=0.0.0.0/0:500 secret=secureword generate-policy=yes On the dynamic route...
by peson
Mon Apr 09, 2012 11:23 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Nathan, note that my crash-log came from the MR not from the 450G itself. The watchdog of the MR rebooted it, but the host stayed alive. I've noted the difference between 1100AH. It's sad that Mikrotik didn't put a revision note on the routers. Another thing is that the Rev A have the encyption chip...
by peson
Mon Apr 09, 2012 8:50 pm
Forum: Wireless Networking
Topic: OmniTik U-5HnD issue
Replies: 5
Views: 2231

Re: OmniTik U-5HnD issue

i love export compact :D

Thank you man!

Glad to help!
by peson
Mon Apr 09, 2012 7:19 pm
Forum: Wireless Networking
Topic: OmniTik U-5HnD issue
Replies: 5
Views: 2231

Re: OmniTik U-5HnD issue

Why do you put the wlan1 interface into the bridge on the omnitik?
Remove it!

IP-addresses must be set on the bridge, not on interface inside the bridge.
Change the IP on the omnitik to belong to the bridge!

Think this helps :-)
by peson
Mon Apr 09, 2012 5:54 pm
Forum: Wireless Networking
Topic: OmniTik U-5HnD issue
Replies: 5
Views: 2231

Re: OmniTik U-5HnD issue

You need to provide more information from your configuration.
Please post:
ip export compact
mpls export compact
int export compact

From onmitik and one of the sxt.
by peson
Mon Apr 09, 2012 5:31 pm
Forum: Wireless Networking
Topic: Active online user oid...
Replies: 4
Views: 2733

Re: Active online user oid...

Hi, i got it... the oid is 1.3.6.1.4.1.9.9.150.1.1.1.0 but i dunno where it come from, i just got it from the google. I think that is active AAA sessions in the router, so it will count hotspot, pptp, l2tp, pppoe, etc.. AAA sessions To get it to work with MRTG, you need to count the active users ta...
by peson
Mon Apr 09, 2012 5:06 pm
Forum: General
Topic: Mikrotik and Cisco STP
Replies: 3
Views: 1520

Re: Mikrotik and Cisco STP

Hello, We have 2 links, one is wireless and one is fiber, and one end there is mikrotik 1200 and other is cisco, has anybody configured STP between these two ? Please share your experience and how to achieve this. Many thanks, Watch my presentation from MuM 2009: http://mum.mikrotik.com/presentatio...
by peson
Mon Apr 09, 2012 4:41 pm
Forum: Beginner Basics
Topic: Queue CLI command
Replies: 6
Views: 1787

Re: Queue CLI command

Hello, Could someone give me the CLI (Terminal) command that will addthe following Queue? I need it in a script that will crate hundreds of simimilar queues. Thank you for accorded time! Hope this will help you: http://wiki.mikrotik.com/wiki/Automated_Usage_Script_without_usermanager#Final_Notes ht...
by peson
Mon Apr 09, 2012 4:27 pm
Forum: Wireless Networking
Topic: Active online user oid...
Replies: 4
Views: 2733

Re: Active online user oid...

Hi... Just wonder know, how can i get the active hotspot online user oid in order for me to monitor the online active user by the prtg/mrtg. thanks. Count the number of: mtxrHotspotActiveUserIndex oid=1.3.6.1.4.1.14988.1.1.5.1.1.1 You get the oid's from the command: ip hotspot active print oid. You...
by peson
Mon Apr 09, 2012 1:56 pm
Forum: Virtualization
Topic: MetaROUTER stability issues on certain MIPSBE and PPC boards
Replies: 490
Views: 123106

Re: Has MikroTik given up on MetaROUTER?

Good initiative Timberwolf :-D. Nice work Nathan :-) It looks like you've put lots of effort on this. I have a ticket at MT about the same reboot problem on RB1100AH. I've done tons of testing with different configs on the RB1100AH and nothing helped. Until now, I gave it all up with the MR testing....
by peson
Thu Mar 22, 2012 12:22 pm
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

1. Does this problem deal with only DDWRT or ROS Virtual machine too? 2. How it works on PPC architecture? 3. What device is the most stable for runing MR wit ROS Image? How long uptime they have? As you can read from my previous posts, the MR aren't useful in any platform. If you want virtualizati...
by peson
Wed Feb 08, 2012 5:50 pm
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

good, waiting for your results. Some results, or to be more precise, different config settings between MetaROUTER and KVM. Janis! correct me if I'm wrong about my assumptions and conclusions. I'm trying to understand the different configurations based on my Linux knowledge and how-to configuring tu...
by peson
Mon Feb 06, 2012 1:16 pm
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

Tweaking your configuration until the system runs stable isn't a solution. At best that's a workarround and nothing you let your customers play with. Totally agree on this. As long there aren't any description and manuals provided with confirmed and tested configurations, the MR aren't usefull. No....
by peson
Mon Feb 06, 2012 11:46 am
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

Timberwolf, so your opinion is not to use MR at all, at least not until a stable version is available? ;) Yes, that is exactly my opinion. And my impression is, that this will be never. So, your saying MR in general on all platforms including PPC platform? And you're not agree on the statement? : h...
by peson
Mon Feb 06, 2012 11:20 am
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

:D Just don't configure anything and everything will be almost fine. :lol:
Timberwolf, so your opinion is not to use MR at all, at least not until a stable version is available? ;)
by peson
Fri Feb 03, 2012 10:19 pm
Forum: Virtualization
Topic: Metarouter stability on RB800, RB1100, RB1100AH
Replies: 42
Views: 14035

Re: Metarouter stability on RB800, RB1100, RB1100AH

What Janis means is, please contact support with details about your problem. I've contacted the support and waiting for a solution for me. Is there anyone who runs MetaROUTER on RB1100AH (5.X) and it runs stable without reboots? My test now is a separate box that only runs MetaROUTERs inside, so th...
by peson
Fri Feb 03, 2012 9:27 am
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

what configuration you have? All problems about MR on PPC routers was resolved by adjusting configuration
I have a support ticket that you are familiar with.
/Paul
by peson
Thu Feb 02, 2012 10:42 am
Forum: Virtualization
Topic: RB450G + openwrt Metarouter strange problem
Replies: 221
Views: 76549

Re: RB450G + openwrt Metarouter strange problem

I guess you only could try yourself, there is extremely less feedback on Metarouters altogether. And, without wanting to bash MT, there seems to be no clear understanding of the cause on MIPSBE, so every MIPSBE based board should be viewed as affected. Even a small software update might tip those b...
by peson
Sat Aug 06, 2011 12:22 pm
Forum: General
Topic: Management VLAN over WIFI/MESH
Replies: 6
Views: 2268

Re: Management VLAN over WIFI/MESH

Yes. Although thats a more complex scenario - i simply want to run the run hotspots on vlan5 , ap management on vlan 2 rather than manage the aps via ip bindings in hotspot server Can you upload the results of: /int mesh export /int wire wds export /int bridge export Are you going to use different ...
by peson
Fri Aug 05, 2011 10:27 pm
Forum: General
Topic: Management VLAN over WIFI/MESH
Replies: 6
Views: 2268

Re: Management VLAN over WIFI/MESH

Anyone? Happy to pay for a trainer/consultant.
Is it something similar to this you want to achieve?
http://mum.mikrotik.com/presentations/2 ... ngwire.pdf

/Paul
by peson
Sun Oct 31, 2010 9:41 am
Forum: General
Topic: RouterOS v5 RC3
Replies: 39
Views: 7970

Re: RouterOS v5 RC3

Correct, the content matcher still breakes the filtering. I disabled the rules with content matcher and it works again. WARNING!!! Do not use this version in production system, at least not in x86 systems. It breakes your firewall settings. /Paul Can you be more specific? I have about 200 rules on m...
by peson
Sat Oct 30, 2010 8:18 pm
Forum: General
Topic: RouterOS v5 RC3
Replies: 39
Views: 7970

Re: RouterOS v5 RC3

I just tested NetInstall. It formated and installed the setup thing on a USB drive that had older RouterOS on it. After booting this USB drive - Setup did not find any harddrives. And with v3 this works. I also tested to upgrade RC1 to RC3 in demo mode. In log it states the package was installed. B...
by peson
Sat Oct 30, 2010 6:33 pm
Forum: General
Topic: RouterOS v5 RC3
Replies: 39
Views: 7970

Re: RouterOS v5 RC3

WARNING!!!

Do not use this version in production system, at least not in x86 systems.
It breakes your firewall settings.


/Paul
by peson
Mon Sep 29, 2008 11:28 pm
Forum: General
Topic: IPSEC doesn't work on v3
Replies: 18
Views: 5336

Re: IPSEC doesn't work on v3

I can't send the support file because i change the RB450 to rb532 with 2.9. I try doing system reset and make the config again, but still with the same problem. Is there any difference with IPSEC 2.9 with 3.0?? Max Max Can you send me the configuration? I need: /ip ipsec export /ip fire filter expo...
by peson
Mon Sep 29, 2008 10:53 pm
Forum: General
Topic: IPSEC doesn't work on v3
Replies: 18
Views: 5336

Re: IPSEC doesn't work on v3

Sergejs!
Just a note about Hide Password option in Winbox.
Why isn't the IPSec secrets hided when HP option is enabled?
/Paul
by peson
Mon Sep 29, 2008 5:28 am
Forum: General
Topic: IPSEC doesn't work on v3
Replies: 18
Views: 5336

Re: IPSEC doesn't work on v3

I got my x86 v3.14 working against a NetScreen and an old x86 2.9.38.
I had to reconfigure v3.14 from the beginning.
My advise is to reset the config and restart from the beginning.
/Paul
by peson
Sun Sep 28, 2008 10:53 am
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

Nothing sexy with this :-)
cat /proc/net/vlan/config
VLAN Dev name    | VLAN ID
Name-Type: VLAN_NAME_TYPE_PLUS_VID
vlan2          | 2  | eth0
vlan4          | 4  | eth0
vlan5          | 5  | eth0
vlan10         | 10  | eth0
by peson
Sat Sep 27, 2008 10:16 pm
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

Jesse, glad to hear that you got your configuration to work the way that you like. This confirm that there is a bug/error in the configuration of bridges and interfaces in ROS. When I'm doing this on my Debian box I create a bridge for each VLAN I want to use. This way I can put a physical interface...
by peson
Fri Sep 26, 2008 4:14 pm
Forum: General
Topic: IPSEC doesn't work on v3
Replies: 18
Views: 5336

Re: IPSEC doesn't work on v3

Sergejs, did you try te IPSec between v3 and v2.9?
/Paul
by peson
Fri Sep 26, 2008 8:00 am
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

I it's not working, ten it's something for Mikrotik developers.
It should work
by peson
Fri Sep 26, 2008 2:02 am
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

Netrat,
I have done this before, but it might have been a Linux box and not ROS.
Since ROS is Linux it should work. I will setup this config in my lab with v3.
I'll keep you informed how it works out.
/Paul
by peson
Fri Sep 26, 2008 12:11 am
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

When you make the bridges you need reassign the IP address to the bridge and NOT the interface. peson I know you don't like doing it this way, but would you post a config for this example? If you have vlans on two physical interfaces that you need to bridge how else do you configure it? True, but I...
by peson
Wed Sep 24, 2008 10:33 am
Forum: General
Topic: Bridging all tagged and untagged vlan traffic
Replies: 21
Views: 25294

Re: Bridging all tagged and untagged vlan traffic

Jesse,
As you wrote each VLAN needs it's own bridge, that's basically how a switch work.
You need to create a bridge for the native VLAN.
Read my replies in this topic:
http://forum.mikrotik.com/viewtopic.php ... 18#p125118
/Paul
by peson
Tue Sep 23, 2008 10:53 pm
Forum: Wireless Networking
Topic: Mesh, VLAN, VirtualAP
Replies: 1
Views: 1431

Re: Mesh, VLAN, VirtualAP

Hi, You need to create one bridge interface for each VLAN you want to use. On top of the WDS you create one or more VLAN interfaces. Then you put the VLAN interfaces with the same VLAN-ID into the same bridge. ie: ether1-vl2 ether1-vl10 wds1-vl2 wds1-vl10 wds2-vl2 wds2-vl10 br-vl2 = ether1-vl2, wds1...
by peson
Tue Sep 23, 2008 10:39 pm
Forum: General
Topic: IPSEC doesn't work on v3
Replies: 18
Views: 5336

Re: IPSEC doesn't work on v3

Hi Maximan, I've experienced the same between v2.9.x and v3.x. I cannot get the phase 1 to complete between a v3 and v2.9. It seems to be in the initial negotiation that it fails. Sergejs, can you confirm that the IPSec between v3 and v2.9 really works. I've been tested x86 to x86 and I have no more...
by peson
Sat Aug 09, 2008 1:51 pm
Forum: General
Topic: Configuring VLAN Trunking on MT Router to Cisco C2924 Switch
Replies: 25
Views: 76675

Re: Configuring VLAN Trunking on MT Router to Cisco C2924 Switch

rgraham! First I want to say that I like your intention :-) After you clarified your configuration and the purpose of the bonding, bridge and VLANs I get the idea of what you are doing. I think you are doing something wrong when you can't add the VLAN to the bonded interface. I think you have to cha...
by peson
Sat Aug 09, 2008 12:09 am
Forum: General
Topic: Configuring VLAN Trunking on MT Router to Cisco C2924 Switch
Replies: 25
Views: 76675

Re: Configuring VLAN Trunking on MT Router to Cisco C2924 Switch

rgraham! I just want to put some comments of your post. This is the common mistake many users are doing :-(. Adding the vlan interfaces to a bridge, wrong!!! Think of how a switch work: if you put a vlan tag (4byte extra) on an interface it adds the tag to traffic leaving the interface, not to the b...
by peson
Fri Aug 08, 2008 11:15 pm
Forum: General
Topic: Bridge, VLANs and Hotspot NAT
Replies: 2
Views: 1418

Re: Bridge, VLANs and Hotspot NAT

Stefano,
please send me more information of your configuration with IP-address settings, filter rules amy bridge rules, etc.

regards,
Paul
by peson
Fri Jun 01, 2007 12:32 am
Forum: General
Topic: 133c Beta 9 - Renders system useless
Replies: 20
Views: 5199

Re: 133c Beta 9 - Renders system useless

Just netinstalled a 133c system with only wireless package and system package of course.
The system runs smoothly until I install the NTP package.
/Paul
by peson
Tue May 29, 2007 10:25 pm
Forum: General
Topic: VLAN tagget packets and 802.1p priority
Replies: 7
Views: 1786

Re: VLAN tagget packets and 802.1p priority

sorry Uldis, I'll never call you Normis again :-)
by peson
Tue May 29, 2007 10:22 pm
Forum: General
Topic: VLAN tagget packets and 802.1p priority
Replies: 7
Views: 1786

Re: VLAN tagget packets and 802.1p priority

no, no, this way you define filter only.
You need an ACTION that can modify VLAN features like VLAN ID or priority
Ok, I missunderstod you about this.
I thought that you allready have the priority set from a switch, so it's the reverse.
Then you have to go for 3beta as Normis wrote.
by peson
Tue May 29, 2007 2:09 am
Forum: General
Topic: VLAN tagget packets and 802.1p priority
Replies: 7
Views: 1786

Re: VLAN tagget packets and 802.1p priority

Not sure if this help, but you can give it a try.
/int bridge filter add vlan-id=2 vlan-priority=7.
You may need a sniffer to figure out if it does anything with the packets.
by peson
Tue May 15, 2007 9:11 am
Forum: General
Topic: Feature Request: Real VLAN-wireless bridging
Replies: 7
Views: 2951

Vlan transport over wireless bridge (WDS) is working perfectly. No limits. Plus, you can add management vlan to bridge interface. You can read more about how to build VLAN over a wireless network from our presentation in MuM in Krakow, http://mum.mikrotik.com/presentations/2007_1/PL07_Roamingwire.p...
by peson
Mon Feb 05, 2007 8:24 am
Forum: General
Topic: High traffic at eoip tunnel
Replies: 2
Views: 735

Hey, we need to know more about your config to get an idea of the problem.
What´s the design of your network?
All those EoIP, are they between wireless systems or is it also wired system included?
by peson
Mon Feb 05, 2007 1:13 am
Forum: General
Topic: config vlan between catalyst 500G and MKT
Replies: 1
Views: 740

Hey, Have a look at our presentation from MUM in Krakkow: http://mum.mikrotik.com/presentations/2007_1/PL07_Roamingwire.pdf This will give you an advice of how to create VLAN´s and trunk those with MT´s into other switches. Some code snippet for you to look into: int vlan add name=eth1-vl2 vlan-id=2...
by peson
Mon Feb 05, 2007 12:44 am
Forum: General
Topic: Hotspot on vlan of bridge
Replies: 7
Views: 1600

Johan!
Have a look in our presentation from MUM in Krakow and it will give you some ideas of how to setup VLAN´s and HotSpot in a wireless environment.
by peson
Mon Jan 08, 2007 1:09 pm
Forum: Scripting
Topic: Configure Script
Replies: 12
Views: 7286

I suggest you to weed that script from unnecessary lines. e.g. this one. / routing bgp set enabled=no as=1 router-id=0.0.0.0 redistribute-static=no \ redistribute-connected=no redistribute-rip=no redistribute-ospf=no It is default configuration, it is even not used. Leave only those things that you...
by peson
Mon Jan 08, 2007 3:03 am
Forum: Scripting
Topic: Configure Script
Replies: 12
Views: 7286

there is a limitation of 64KB, it can't be increased, but the files are usually smaller than that. if not, try to remove some rules, and import them later via another file. Normis: I fail with scripts that have more than 29 lines, the file is only 2kB. I´m using 2.9.38, can you please verify this p...
by peson
Sun Oct 15, 2006 5:17 am
Forum: Wireless Networking
Topic: Secure vlan trunk and wisp
Replies: 12
Views: 4946

Many thanx again for many useful tips :) Have now tried some configurations but i have another question. We have a topology like this: LanSwitch - MT AP --- MT Bridge - MT AP ---- MT Bridge - LanSwitch The switches are Cisco catalyst 2950 with ports in trunk mode. In the middle are a tower with two...
by peson
Mon Sep 25, 2006 8:40 pm
Forum: General
Topic: PPTP client bug identified. Workaround anybody??
Replies: 19
Views: 3920

Peter!
Could you please contact me at e-mail periksson at roamingwire.com.
I have some ideas for you :-)
/Paul
by peson
Mon Sep 25, 2006 1:11 pm
Forum: General
Topic: PPTP client bug identified. Workaround anybody??
Replies: 19
Views: 3920

[quote="papwalker"]In case anyone still has doubts here is a screen dump of a VPN client connecting to a vpn server where the server IP is the same as the remote IP. In this instance is is not a pix box at the other end but a mikrotik howevewr if you try to connect a MT to a pix that uses this confi...
by peson
Sat Sep 16, 2006 1:14 pm
Forum: General
Topic: pppoe performance problems
Replies: 1
Views: 1151

What kind of PPPoE clients are used?

Try break the bridge and set up two PPPoE server instance with different service names, if you need traffic between the interfaces set up routing

For the RADIUS part, try reduce connection between MT and RADIUS with firewall rules.
/Paul
by peson
Thu Sep 14, 2006 9:13 am
Forum: Scripting
Topic: Netinstall configure script
Replies: 3
Views: 2406

Re: Netinstall configure script

I've noticed when using the netinstaller that if you don't specify a configuration script when installing directly to flash (usb card reader etc) the installation fails when installing upon the actual device (a wrap in my case). So is the configure script simply the exported configuration from a MT...
by peson
Wed Aug 30, 2006 7:50 pm
Forum: General
Topic: If there was a MUM in Australia would you go?
Replies: 20
Views: 2994

That´s exactly on the "other side" for me, I´ll start digging ;-)

/Paul
by peson
Sun Aug 27, 2006 2:10 pm
Forum: RouterBOARD hardware
Topic: Speed/capabiity of ethernet router
Replies: 7
Views: 2836

I installed all 7 routerboards i had and am only left with 1 on the roof... so testing still has not happened yet. Hopefully next week I will get back to this.

Sam
I´ve done some testing, read this:
http://forum.mikrotik.com//viewtopic.ph ... t=532a+564

/Paul
by peson
Sun Aug 13, 2006 11:36 am
Forum: General
Topic: Ghost in HotSpot network
Replies: 4
Views: 1470

hello, try to add ghost server IP to allowed IPs in /ip hotspot ip-binding section. This will allow communication between workstations and server. Stoned. I have allready tried adding the MAC to be logged in automatic. I think this will do the same as adding theIP. hello, In addition to this, check...
by peson
Sun Aug 13, 2006 11:21 am
Forum: Scripting
Topic: Configure Script
Replies: 12
Views: 7286

we will check this
Hey, Normis.
Have you done any testing, if so when is a correction planned.
by peson
Sat Aug 05, 2006 3:16 am
Forum: General
Topic: Ghost in HotSpot network
Replies: 4
Views: 1470

I have to mention that the HotSpot is a bridge with two interfaces one EoIP and one bonding of two physical interfaces.
by peson
Sat Aug 05, 2006 3:11 am
Forum: General
Topic: Ghost in HotSpot network
Replies: 4
Views: 1470

Ghost in HotSpot network

Hey, we got problem with ghost in a students network,which is a HotSpot. We want to have ghost running without to have the computers logged in. Ghost uses multicast to make an installation of a whole network in minutes. Is it possible to run those multicast without having to turn of the HotSpot? Doe...
by peson
Fri Jun 30, 2006 10:43 am
Forum: Scripting
Topic: Configure Script
Replies: 12
Views: 7286

Has anyone managed to get the configure script to work? Has anyone a sample that I can build on? Hey, There seems to be a limitation of the size of the script used when doing the netinstall. I have tried the same as you have and discovered it the hard way :-( Try a script that is just a few lines a...
by peson
Wed May 24, 2006 11:42 pm
Forum: General
Topic: RouterOS 2.9.24 is out
Replies: 33
Views: 7157

Ahh so is this Install issue a wide spread problem? I've got 3 routers i cant winbox too because it crash's but atleast they work Yeah, you are not the only one who have problem with crashing winbox efter upgrading to 2.9.24. Yes I´m using winbox the latest 2.2.10 version... :) but it still doesn´t...
by peson
Wed Mar 29, 2006 6:37 pm
Forum: General
Topic: Installation into a slave disc (/dev/hdb)
Replies: 13
Views: 1827

IFor such cases it's handy to just have a "standard" PC around where you can put the DOM (or CF, for that matter) in and do the installation there. As Normunds said, RouterOS doesn't even care if it's running on a different IDE port than at installation time (just tested this successfully). I now h...
by peson
Wed Mar 29, 2006 4:30 pm
Forum: General
Topic: Installation into a slave disc (/dev/hdb)
Replies: 13
Views: 1827

Normis, this was what I did: -I wrote the Install-image to the CF using USB adapter on my windoze, this is what I always do -I installed the CF into the CF socket on the iBase system. -The system booted from the slave disc in the 1:st IDE channel -I marked the packages I wanted and hit install. -The...
by peson
Wed Mar 29, 2006 3:18 pm
Forum: General
Topic: Installation into a slave disc (/dev/hdb)
Replies: 13
Views: 1827

since 2.9 it doesn't matter where you install it, it will boot from whatever drive you first install it on, includes secondary master, secondary slave etc. Normis, it didn´t work to install into /dev/hdb, but when i shorted the JP2 and the disc was handeld as a master disc the installation worked s...
by peson
Wed Mar 29, 2006 11:08 am
Forum: General
Topic: Installation into a slave disc (/dev/hdb)
Replies: 13
Views: 1827

[quote="cmit"]Then you're blown :twisted: ... RouterOS will ONLY run from /dev/hda, i.e. IDE primary master. Sorry... I got a support mail from iBase this morning saying: "About Master/Slave selection for CF, we reserved this function but we didn't solder header or jumper on MB893-B1. Please refer a...
by peson
Wed Mar 29, 2006 1:07 am
Forum: General
Topic: Bridging Vlans
Replies: 3
Views: 953

Had nobody ever done something like this before? Come on guys i know it must be something simple
You need do setup static WDS interfaces between the routers.
When done and function, add the VLAN:s you want to tied with the WDS interfaces /Paul
by peson
Wed Mar 29, 2006 12:46 am
Forum: General
Topic: Installation into a slave disc (/dev/hdb)
Replies: 13
Views: 1827

Installation into a slave disc (/dev/hdb)

I have tried to install RouterOS into a CF in a onboard adapter. The CF is handled as a slave disc on the first IDE channel. I have written (as I alwas do) the install disc image to the CF and the installation starts but fails when it tries to create the filesystem. The system is a iBase FWA9106. I ...
by peson
Sat Aug 13, 2005 12:20 pm
Forum: General
Topic: P2P Bit-torrent are detected but not dropped in 2.9RC9
Replies: 3
Views: 1610

I just want to say : if you see thousands of BitTorrent connections, verify whether these are just SYN packets sent from client and dropped by your server or whether these are actual live connections transferring data. The connections are established, so it's not only SYN packets. The connections a...
by peson
Wed Aug 10, 2005 12:41 pm
Forum: General
Topic: P2P Bit-torrent are detected but not dropped in 2.9RC9
Replies: 3
Views: 1610

P2P Bit-torrent are detected but not dropped in 2.9RC9

Hi all,
With this rule I thought I blocked all P2P connection trough the router:
0 chain=forward p2p=all-p2p action=drop.
When I check in the connection table, I see allot of bit-torrent connections.
In RC6 this worked fine, but now in RC9, it don't.
Does anyone know if this is a bug?

BR, Paul
by peson
Thu Jun 02, 2005 7:06 pm
Forum: General
Topic: PPP-Chain problem.
Replies: 5
Views: 1445

Thanks Normis! I will wait for the release of 2.9
by peson
Tue May 24, 2005 7:36 am
Forum: General
Topic: PPP-Chain problem.
Replies: 5
Views: 1445

PPP-Chain problem.

Hello, I've got problem with adding chains to my ppp chain. I got a total of 25 chains, but when I add a chain with a sequence number above 19 to a ppp-profile, the log says that the chaincould not be found. The chains above # 19 could be refered to from other chains and they works. I'm running 2.8....