Community discussions

Search found 22 matches

by abjornson
Thu Aug 02, 2018 9:31 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 244
Views: 31054

Re: Winbox vulnerability: please upgrade

I'd also really like confirmation on whether the latest bugfix ( 6.40.8 ) release has been patched for this vulnerability.
by abjornson
Fri Jan 26, 2018 10:24 pm
Forum: General
Topic: performance impact of simple queues for SNMP monitoring only?
Replies: 3
Views: 172

Re: performance impact of simple queues for SNMP monitoring only?

Thanks for the feedback. In this particular case, the number of queues i need is low...which is why I'm considering this option. For this scenario, I'm not actually interested in tracking per individual IP. I want to monitor a network which serves 3-5 different types of customers....and customers of...
by abjornson
Fri Jan 26, 2018 9:51 pm
Forum: General
Topic: performance impact of simple queues for SNMP monitoring only?
Replies: 3
Views: 172

performance impact of simple queues for SNMP monitoring only?

I love the ability to use SNMP to monitor bytes-in / bytes-out of simple queues via SNMP. I'm considering using simple queues only for monitoring in a situation where I'm not actually using simple queues to manage bandwidth. I'm aware of netflow, but for my current needs this actually seems much sim...
by abjornson
Fri Jul 07, 2017 6:21 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Feature request DHCP Server - Support DCHP options determined by client option 60
Replies: 0
Views: 482

Feature request DHCP Server - Support DCHP options determined by client option 60

RFCs 3925 and 2131 (https://tools.ietf.org/html/rfc2131) (https://tools.ietf.org/html/rfc3925) Allow for the use of DHCP clients to send client option 60 to identify the equipment or vendor type, and for the DHCP server to send different vendor specific information in option 43 back to clients based...
by abjornson
Sat May 13, 2017 1:30 am
Forum: General
Topic: Struggling with hotspot walled garden - hotspot only for specific sites
Replies: 0
Views: 181

Struggling with hotspot walled garden - hotspot only for specific sites

I have a fair amount of experience with Mikrotik's hotspot service - but I have an unusual requirement that I'm struggling to make work. I have a list of IP addresses for a special service, lets say 1.1.1.1, 2.2.2.2. I'd like to use the hotspot to control access *only* to these special service IPs. ...
by abjornson
Tue Dec 20, 2016 8:50 pm
Forum: General
Topic: safe to omit "ip neighbor discovery" section from configuration files?
Replies: 4
Views: 312

Re: safe to omit "ip neighbor discovery" section from configuration files?

Cool to hear it's been fixed. I'm running 6.36.4 (bugfix) rather than the latest rc because this is for production.

I'm glad this behavior will be changed! It's been like this for so long, I didn't know it was considered a bug.
by abjornson
Tue Dec 20, 2016 7:24 pm
Forum: General
Topic: safe to omit "ip neighbor discovery" section from configuration files?
Replies: 4
Views: 312

Re: safe to omit "ip neighbor discovery" section from configuration files?

Thanks @mrz, It seems like modifying an interface comment (under ip interfaces comment) also modifies ip neighbor discovery in the .rsc config. What I've generally seen is that, if i load a config that contains an interface comment under ip interfaces comment.....the corresponding ip neighbor discov...
by abjornson
Tue Dec 20, 2016 6:49 pm
Forum: General
Topic: safe to omit "ip neighbor discovery" section from configuration files?
Replies: 4
Views: 312

safe to omit "ip neighbor discovery" section from configuration files?

When I make big changes to routers, I do a fair bit of external editing of .rsc configuration files and reloading of configs. I've always wondered: is it safe to omit the section "ip neighbor discovery" from the .rsc file when loading / restoring a config? I think from what I've seen, this is setup ...
by abjornson
Tue Jul 12, 2016 4:12 pm
Forum: General
Topic: CCR packet-sniffer streaming stops for unknown reason?
Replies: 7
Views: 694

Re: CCR packet-sniffer streaming stops for unknown reason?

Yes - this is what I thought, thank you for confirming pe1chl. Doing only "known port" analysis leaves out a lot of powerful tools to identify the protocols and applications being used.  For example bittorrent and other p2p protocols that don't stick to known ports will be identified by L7 analysis ...
by abjornson
Tue Jul 12, 2016 2:56 am
Forum: General
Topic: CCR packet-sniffer streaming stops for unknown reason?
Replies: 7
Views: 694

Re: CCR packet-sniffer streaming stops for unknown reason?

Thanks for the suggestions - I will try this. Can you comment on any performance difference between using tool sniffer for the streaming and using the mangle rule for this? Also - regarding traffic streaming vs netFlow....I think that the L7 analysis capabilities of ntopng are less if ntopng doesn't...
by abjornson
Sat Jul 09, 2016 12:46 am
Forum: General
Topic: CCR packet-sniffer streaming stops for unknown reason?
Replies: 7
Views: 694

CCR packet-sniffer streaming stops for unknown reason?

I just recently started using tools like ntop to do traffic analysis of the traffic flowing through my core router.  I had originally planned to use port mirroring, but by core router is a CCR1036 and I realized that without a switch chip, it is unable to perform port mirroring.  I found the recomme...
by abjornson
Tue Feb 23, 2016 12:32 am
Forum: General
Topic: bandwidth-test vs speedtest.net? Different results?
Replies: 5
Views: 1188

Re: bandwidth-test vs speedtest.net? Different results?

Thanks Arcee - Sometimes explaining things to others help you find problems yourself :) I think this was the issue, I did not realize that bandwidth-test was defaulting to udp. I actually realized that before reading your post....once I started setting protocol=tcp and seeing very similar results to...
by abjornson
Mon Feb 22, 2016 10:56 pm
Forum: General
Topic: bandwidth-test vs speedtest.net? Different results?
Replies: 5
Views: 1188

Re: bandwidth-test vs speedtest.net? Different results?

Thanks for your reply Revelation: Those are helpful suggestions, unfortunately I've thought of and tried many/most of them. Regarding customer test device - The customer has done tests, and my tech has done tests on different devices. In particular, my tech's device is known good, and has successful...
by abjornson
Mon Feb 22, 2016 9:20 pm
Forum: General
Topic: bandwidth-test vs speedtest.net? Different results?
Replies: 5
Views: 1188

bandwidth-test vs speedtest.net? Different results?

Hello, I love the builtin bandwidth-test in mikrotik, and now that i have a mikrotik CHR in the cloud to test to, I'm very happy with my ability to remote test speeds. Customers love speedtest.net, of course. Have any of you run into situations when the two measure dramatically different things? I h...
by abjornson
Thu Oct 01, 2015 4:38 pm
Forum: General
Topic: RouterOS Virtual Labs
Replies: 79
Views: 97218

Re: RouterOS Virtual Labs

If anyone else finds this question - I solved my problem through some assistance in the GNS3 forum: https://community.gns3.com/message/48849#48849 The version of qemu bundled with GNS3 1.3.10 on OSX was older (0.14.1). I installed a newer version of qemu via homebrew (qemu 2.3.0) and everything work...
by abjornson
Thu Oct 01, 2015 1:12 am
Forum: General
Topic: RouterOS Virtual Labs
Replies: 79
Views: 97218

Re: RouterOS Virtual Labs

I'm loving simulating Mikrotik networks in GNS3. I'm having a trouble simulating Mikrotiks with more than 8 interfaces. I am currently running Mikrotik's official cloud hosted router (CHR) image Cloud Hosted Router - MikroTik RouterOS I am running GNS 1.3.10 on MacOS with the bundled qemu 0.14.1-gns...
by abjornson
Mon Aug 10, 2015 8:21 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 583
Views: 166901

Re: Cloud Hosted Router

This is very cool! Great job Mikrotik for releasing this!

Has anyone tried running this on an AWS virtual machine? Are the kernel virtualization options required within this image?
by abjornson
Fri Jul 24, 2015 3:09 am
Forum: Virtualization
Topic: RouterOS on Amazon EC2
Replies: 35
Views: 16785

Re: RouterOS on Amazon EC2

+1 for this idea - I can think of a million versions of this. I would love to get a ROS box on AWS working...and yes, I would definitely buy the routerOS license to make it possible. A ROS AMI would be fantastic.
by abjornson
Fri Jun 05, 2015 7:57 pm
Forum: General
Topic: simple queues in ROS 6, total-limit-at vs limit-at
Replies: 5
Views: 1032

Re: simple queues in ROS 6, total-limit-at vs limit-at

Ok, thanks! Will have to do some testing and see what I come up with. Currently, I'm having a related issue i don't understand. I have a physical interface with 2 VLAN interfaces. I made a simple queue structure like this: sfp1-queue: destination sfp1, target 0.0.0.0/0 --sfp1-vlan700-queue: destinat...
by abjornson
Thu Jun 04, 2015 10:49 pm
Forum: General
Topic: simple queues in ROS 6, total-limit-at vs limit-at
Replies: 5
Views: 1032

Re: simple queues in ROS 6, total-limit-at vs limit-at

i think this can be useful for you http://wiki.mikrotik.com/wiki/Manual:HTB Thanks for the link....however this doesn't make any mention of the parameters total-max-limit and total-limit-at i was asking about. I also don't see any mention of *total* rate limiting that I was asking about. In other w...
by abjornson
Thu Jun 04, 2015 2:45 am
Forum: General
Topic: simple queues in ROS 6, total-limit-at vs limit-at
Replies: 5
Views: 1032

simple queues in ROS 6, total-limit-at vs limit-at

Hello, I haven't found an answer to this anywhere so far. Hoping someone can help. I am very familiar with the user of limit-at and max-limit in simple queues. What I am trying to understand is how those settings relate to total-limit-at and total-max-limit settings. If I have a queue and parent que...
by abjornson
Thu Aug 14, 2014 12:37 pm
Forum: General
Topic: Simple queues, contention, and ROSv6
Replies: 0
Views: 487

Simple queues, contention, and ROSv6

Hi all, I'm trying to get my head around the queuing changes in ROSv6. I've spent some time thinking about what I want to do, and I think I've got a plan. I'd like to run an approach by someone more knowledgable than I to get a second opinion. I'd like to implement two classes of service (business a...