Pls add in PPP attribute Address-List over RADIUS Auth.
In MikroTik Specific RADIUS Attribute Numeric Values:
Mikrotik-Address-List 14988 (Mikrotik) 19 string
But it didn`t work.
PS Mikrotik-Group 14988 (Mikrotik) 3 string - work fine!
Hi! I`ve got some troubles to integrate MFA solution to RouterOS login (admin access). At first: Client Idenity: MFA service give to me 3 parameters: Client ID, Password, Name of radius server. I can`t setup Client ID (NAS Identifier) from radius setting. Only change router name can help me... I can...
Hi! I whant to use "dynamic" firewalls rules for my VPN users from NPS. In MikroTik Specific RADIUS Attribute Numeric Values I see: Mikrotik-Address-List 14988 (Mikrotik) 19 string And it din`t working. Nothing created in address-list... I think, I made some mistake and try to use: Mikroti...
Please add to the OVPN Client (open-vpn) in "Dial Out": More than one "Connect To" Selection parameter "Remote random" or "Round robin" Input parameter "connect-timeout". When connecting to a remote server do not wait answer for more than n seconds.T...
I was able to solve it: PPP-UP script: :local localAddr $"local-address"; \ :local remoteAddr $"remote-address"; \ :local interfaceName [/interface get $interface name]; \ :log warning "$user connected: was given $remoteAddr IP (GW $localAddr) and assigned to $interfaceName ...
Hi! I have trouble with PPP-Down script. I want to use PPP-UP and PPP-Down scripts for add route to additional routing table. In PPP-DOWN I remove only one route, but I see bug in route list. In log – route removed, but I see it in route list. If I try to delete ghost route - OSPF instance go to res...
I have two routers CCR1036-8G-2S+ and both have failed psu. And yes, the C10 capacitor fails. https://lh6.googleusercontent.com/08bztQ2r1FvYXhFJzIUUUSiBhDFpK0P4N_dceVmh8_ehGShjuP9Z0lfe4oQla3yczKsolbZGe7cnRkMzGqeKvQ=w1920-h948-rw Link to g.drive if photo can't load I can't do RMA, becouse warranty wa...
I asked a question about the connection to several servers for backup and load balancing in the General forum and did not get an answer. I think it’s be a good feature. And for SSTP connection too. My mspaint: https://3.downloader.disk.yandex.ru/disk/2f2b01ae5833a4e92af7760062eafbb34af9f72ab4e29f504...
Hi all! Right now I use linux-box for create VPN connection. In my openvpn configuration: remote HOSTA PORT remote HOSTB PORT remote HOSTC PORT remote-random How can I do this config in Mikrotik? I can do DNS record with multipy IP addresses. How Mikrotik will choose one? DNS records: VPNHOST.CO 1.1...
I see around following design: #Block scanner IP chain=forward src-address-list=ScanBlocked action=Drop #GoToScanCheck chain=forward out-interface=eth2 protocol=ICMP action=jump jump-target=ScanCheckStage1 #Stage1 chain=ScanCheckStage1 dst-address-list=!dst_stage1 src-address-list=!src_stage1 action...
Hi! I have mikrotik between networks 10.0.0.0/24 and 192.168.0.0/24. By using a firewall, I want to protect networks from scanning live hosts. Computer from 10.0.0.0/24 subnet initiates scanning by ICMP to hosts in network 192.168.0.0/24. When it sended 10 ICMP packets to random hosts - I want to bl...
[youtube]http://www.youtube.com/watch?v=Mka4HpJQfZM[/youtube] 2:15 - rate limit (total) Parameter can be like this: "2m/2m" or "100k/1m"... In "user porfiles" you can use "rate limit" (per user in this profile) like above. For block torrent and other - you nee...
Hi! I have RB951G-2HnD and baby wireless monitor. If I turn on baby monitor - WiFi stop working. I see wireless lan, but can't connect. Always have error - wrong password. But if i change channel on baby wireless monitor (for 1 to 4) - WiFi start work again. This means that the baby monitor can brea...
Hi all! I Have RB2011UiAS-2HnD-IN and next config: ISP1 - low cost, high speed, address 3.3.3.90/30 nexthop 3.3.3.89 ISP2 - high cost, low speed, address 5.5.5.98/30 nexthop 5.5.5.97 LocalLan - 172.16.0.0/24 PC with OpenVPN - 172.16.0.25 OpenVPN server - 9.9.9.188:1194 /ip address add address=3.3.3....
Hi! I have two routers. One mikrotik and second Linux with quagga. Mikrotik should be distribute default route, linux should distribute the route to network behind it. Network: 0/0|10.8.2.10/24 (gateway) <-> 10.8.2.252/24|10.10.15.8/24 (mikrotik) <-> 10.10.15.10/24|10.9.6.1/24 (linux) After start th...
Hi! 1. Sync sections of config between 2 or more routers. I have 15 routers with same config in ip firewall section. Some one like this: /system sync add section=ip-firewall auth=Secret destination=4.4.4.4 2. HighAvailability services. You have VRRP for HA. Now we need checkbox services to use it. N...
Hi! I have error with lcd max-speed setup via winbox https://downloader-default6h.disk.yandex.ru/rdisk/09eb5813b55859eca68cdcdcdd6e61eb/mpfs/XMxZX4s-_oLiclB2VjJMNXkZ1ULbaY7URlq40qQ-SBENxf5wo7H_Vuts2IXrGxQwMV1HuieP7b_7H9SGomybJw==?uid=209678132&filename=Mik1.png&disposition=inline&hash=&a...