Community discussions

Search found 1711 matches

by efaden
Tue Sep 11, 2018 2:08 am
Forum: General
Topic: PowerBox Pro + wAPac Constantly Rebooting
Replies: 6
Views: 622

Re: PowerBox Pro + wAPac Constantly Rebooting

/interface ethernet set [ find default-name=ether1 ] speed=100Mbps set [ find default-name=ether2 ] speed=100Mbps set [ find default-name=ether3 ] speed=100Mbps set [ find default-name=ether4 ] poe-out=off speed=100Mbps set [ find default-name=ether5 ] poe-out=off speed=100Mbps set [ find default-na...
by efaden
Mon Sep 10, 2018 4:43 am
Forum: General
Topic: PowerBox Pro + wAPac Constantly Rebooting
Replies: 6
Views: 622

Re: PowerBox Pro + wAPac Constantly Rebooting

The PowerBox get's power from a POE Injector with a 24v 1.6A adapter plugged into it in another room connected via Port 1. The wsAP also gets power via the PowerBox via Port 2. The wAP ac is connected to Port 3 and is the one having the problem. All I see in the logs for the wAP ac is a message abou...
by efaden
Sun Sep 09, 2018 11:50 pm
Forum: General
Topic: PowerBox Pro + wAPac Constantly Rebooting
Replies: 6
Views: 622

Re: PowerBox Pro + wAPac Constantly Rebooting

Just says link down... Then link up. The access point says rebooted without proper shutdown.

Sent from my Pixel XL using Tapatalk

by efaden
Sun Sep 09, 2018 10:53 pm
Forum: General
Topic: PowerBox Pro + wAPac Constantly Rebooting
Replies: 6
Views: 622

PowerBox Pro + wAPac Constantly Rebooting

Hey,

I have a PowerBox Pro powered by a 1.6A 24V power brick through Port 1. Attached to Port 2 I have a wsAP ac, and a wAPac to Port 3. The wsAPac is functioning correctly, but the wAPac keeps rebooting. I'm not really clear why? Thoughts?

-Eric
by efaden
Sat May 26, 2018 8:32 pm
Forum: RouterBOARD hardware
Topic: Gigabit Internet?
Replies: 4
Views: 1430

Re: Gigabit Internet?

Handling meaning NAT at 1Gbps...
by efaden
Sat May 26, 2018 8:24 pm
Forum: RouterBOARD hardware
Topic: Gigabit Internet?
Replies: 4
Views: 1430

Gigabit Internet?

Anyone have recommendations for a router capable of handling gigabit internet?
by efaden
Wed Apr 18, 2018 2:26 am
Forum: General
Topic: Outdoor CRS?
Replies: 0
Views: 321

Outdoor CRS?

So I am buying a new house and instead of pulling the ethernet wire to the basement or somewhere logical they pulled the wires out the side of the house. Apparently they normally use Cat 5e as phone cable, so I am going to just repurpose it as ethernet. I do however need an enclosure with a ethernet...
by efaden
Thu Dec 21, 2017 3:23 am
Forum: General
Topic: CAPSMAN SNMP Monitoring
Replies: 0
Views: 378

CAPSMAN SNMP Monitoring

Hey, I currently run a RB3011 and a bunch of wAP AC access points through CAPSMAN. I normally use LibreNMS to monitor things, but it doesn't seem to be getting any useful data from either the wAP ACs or the RB3011 from any of the wireless interfaces. Does anyone know how to actually monitor that stu...
by efaden
Sun Nov 26, 2017 4:30 pm
Forum: General
Topic: ETA for wsAP ac lite?
Replies: 0
Views: 272

ETA for wsAP ac lite?

Anyone know?
by efaden
Sat Sep 09, 2017 2:01 pm
Forum: General
Topic: Force DNS Server without Loosing Source IP?
Replies: 4
Views: 1204

Force DNS Server without Loosing Source IP?

Hey, So I am thinking about running something like PiHole on my network or using OpenDNS. Ideally though if I use PiHole I would like all of the DNS from the network to be directed through the PiHole, but if the PiHole is down switch over to something like Google. Theoretically I can do this easily ...
by efaden
Sat Aug 26, 2017 12:51 pm
Forum: General
Topic: FastNetMon Integration with MikroTik (DDoS detection software)
Replies: 38
Views: 13035

Re: FastNetMon Integration with MikroTik (DDoS detection software)

Awesome.

Sent from my Pixel XL using Tapatalk
by efaden
Tue Aug 22, 2017 4:14 pm
Forum: General
Topic: WHAT DO YOU USE FOR PERFORMANCE MONITORING?
Replies: 9
Views: 1750

Re: WHAT DO YOU USE FOR PERFORMANCE MONITORING?

Oh yeah. pmacct is amazing, the issue is just the lack of a front end. I thought about pmacct -> kafka -> elasticsearch -> grafana.

-Eric
by efaden
Mon Aug 21, 2017 9:47 pm
Forum: General
Topic: WHAT DO YOU USE FOR PERFORMANCE MONITORING?
Replies: 9
Views: 1750

Re: WHAT DO YOU USE FOR PERFORMANCE MONITORING?

I use pmacct (nfacctd) for collecting flows for statistics. It's more of a tool to build a custom UI around it rather than a complete solution like Cacti or LibreNMS. There's also ntop for netflow, but I prefer it for checking realtime stuff rather than historical data. Are there any frontends? Or ...
by efaden
Mon Aug 21, 2017 6:52 pm
Forum: General
Topic: WHAT DO YOU USE FOR PERFORMANCE MONITORING?
Replies: 9
Views: 1750

Re: WHAT DO YOU USE FOR PERFORMANCE MONITORING?

Librenms... Still looking for a good use of the NetFlow/ipfix... Seems like a lack of good free/open source tools for that.

Sent from my Pixel XL using Tapatalk
by efaden
Tue Aug 15, 2017 4:35 pm
Forum: General
Topic: Bonjour/Multicast Router
Replies: 1
Views: 647

Re: Bonjour/Multicast Router

So that was more complex than I wanted.... the gist is I have a single mikrotik router... it has a single bridge on it with two networks 10.0.0.0/24 and 10.0.10.0/24.... I need to get bonjour/multicast to work across both subnets. How can I do that?

-Eric
by efaden
Tue Aug 15, 2017 4:11 pm
Forum: General
Topic: Bonjour/Multicast Router
Replies: 1
Views: 647

Bonjour/Multicast Router

Hey, So this seems simple in theory, but I can't seem to get it to work. Basically I have two different routers (statics and dynamics in same range): Router A - 10.0.0.0/24 Router B - 10.0.1.0/24 But I have run out of addresses on each router. So I need to add a range to each router, but I also util...
by efaden
Sun Aug 06, 2017 1:27 pm
Forum: Scripting
Topic: Adding dynamic interfaces to interface list.
Replies: 8
Views: 4855

Re: Adding dynamic interfaces to interface list.

On up and on down should work.

Sent from my Pixel XL using Tapatalk
by efaden
Wed Aug 02, 2017 4:47 pm
Forum: Scripting
Topic: send MikroTik Notification via WhatsApp
Replies: 7
Views: 7794

Re: send MikroTik Notification via WhatsApp

I use push over and push bullet

Sent from my Pixel XL using Tapatalk
by efaden
Wed Aug 02, 2017 3:51 pm
Forum: Announcements
Topic: Newsletter 77
Replies: 40
Views: 14193

Re: Newsletter 77

I need that little 5 port SFP in sfp+... That would be awesome

Sent from my Pixel XL using Tapatalk
by efaden
Wed Aug 02, 2017 2:38 pm
Forum: Announcements
Topic: Newsletter 77
Replies: 40
Views: 14193

Re: Newsletter 77

Time frame for the 317? I need a switch with at least 4 SFP+ ports.

Sent from my Pixel XL using Tapatalk
by efaden
Sat Jul 01, 2017 10:13 pm
Forum: Scripting
Topic: Script to disable IPSec peers
Replies: 14
Views: 4705

Re: Script to disable IPSec peers

Can't you just use the address list to block the ipsec through the firewall? It would benefit much much more efficient then running a script that frequently.

Sent from my Pixel XL using Tapatalk
by efaden
Sat Jul 01, 2017 3:01 pm
Forum: Scripting
Topic: Script to disable IPSec peers
Replies: 14
Views: 4705

Re: Script to disable IPSec peers

Hi, i need to push this thread, because i currently searching for the same solution. Is there any way to disable ipsec peers with a script which looks on the firewall address list. Background for that is, i detect bad-peers on the firewall and blacklist them. To prefent them to do more bad stuff i ...
by efaden
Wed Jun 14, 2017 2:13 pm
Forum: Announcements
Topic: Newsletter 76
Replies: 50
Views: 14953

Re: Newsletter 76

A simultaneous dial band omnitik epilepsy also be great... I have several outdoor areas that it would be great in

Sent from my Pixel XL using Tapatalk
by efaden
Wed Jun 14, 2017 2:11 pm
Forum: Announcements
Topic: Newsletter 76
Replies: 50
Views: 14953

Re: Newsletter 76

Need a small SFP+ switch... Like the CRS106 just SFP+

Sent from my Pixel XL using Tapatalk
by efaden
Tue May 30, 2017 5:43 am
Forum: RouterBOARD hardware
Topic: switch all ports not sticking/setting for RB3011
Replies: 2
Views: 833

Re: switch all ports not sticking/setting for RB3011

Because it isn't implemented on that router. All ports always go to the switch chip.

Sent from my Pixel XL using Tapatalk
by efaden
Tue May 23, 2017 7:23 pm
Forum: RouterBOARD hardware
Topic: Dual CRS Rackmount
Replies: 0
Views: 369

Dual CRS Rackmount

Anyone know if it is possible to rackmount two crs212 side by side in 1U? Is there a bracket to do it?

Sent from my Pixel XL using Tapatalk
by efaden
Tue May 23, 2017 1:34 pm
Forum: RouterBOARD hardware
Topic: Dimensions for New POE Switches
Replies: 3
Views: 616

Re: Dimensions for New POE Switches

My real question is about the depth. I'm trying to figure out if it will fit into one of my racks

Sent from my Pixel XL using Tapatalk
by efaden
Tue May 23, 2017 4:09 am
Forum: RouterBOARD hardware
Topic: Dimensions for New POE Switches
Replies: 3
Views: 616

Re: Dimensions for New POE Switches

No one?

Sent from my Pixel XL using Tapatalk
by efaden
Mon May 22, 2017 4:12 pm
Forum: RouterBOARD hardware
Topic: Dimensions for New POE Switches
Replies: 3
Views: 616

Dimensions for New POE Switches

Are there dimensions for the two new Poe switches?

Crs328 and crs112

Sent from my Pixel XL using Tapatalk
by efaden
Mon May 22, 2017 6:20 am
Forum: RouterBOARD hardware
Topic: voltage on RB260GSP
Replies: 6
Views: 795

Re: voltage on RB260GSP

I couldn't find it when I looked a few weeks back ... Mostly switching to Ros based now... Eg hex poe and eventually the new 8 and 24 port ones

Sent from my Pixel XL using Tapatalk
by efaden
Fri May 19, 2017 10:43 pm
Forum: RouterBOARD hardware
Topic: CRS317-1G-16S+RM - Hardware specification
Replies: 34
Views: 7303

Re: CRS317-1G-16S+RM - Hardware specification

Waiting for one of the >2 SFP+ port switches myself.... I'd just like a price and a timeframe.
by efaden
Wed May 17, 2017 11:45 pm
Forum: SwOS
Topic: MIB/SNMP
Replies: 4
Views: 1476

Re: MIB/SNMP

That may help? I need a template for the RB260GSP. I just have no clue what the OIDs are for. Can you post it?
by efaden
Sat May 13, 2017 6:09 pm
Forum: SwOS
Topic: MIB/SNMP
Replies: 4
Views: 1476

MIB/SNMP

Does anyone have a list of what OIDs go to what? I'm trying to add a SWOS device to Zabbix.
by efaden
Sun May 07, 2017 3:29 pm
Forum: Scripting
Topic: Scripting Programmers !
Replies: 3
Views: 608

Re: Scripting Programmers !

efaden at gmail
by efaden
Fri May 05, 2017 8:04 pm
Forum: Scripting
Topic: Scripting Programmers !
Replies: 3
Views: 608

Re: RE: Scripting Programmers !

I am well aware of network consultants but is there scripting programmers that will for a agreed fee customize scripts?
I will.

Sent from my Pixel XL using Tapatalk
by efaden
Thu Apr 27, 2017 5:58 pm
Forum: General
Topic: Port Mirror vs NetFlow
Replies: 4
Views: 738

Re: Port Mirror vs NetFlow

I have a license. It's free because it's a non profit.

Sent from my Pixel XL using Tapatalk
by efaden
Thu Apr 27, 2017 4:15 am
Forum: General
Topic: Port Mirror vs NetFlow
Replies: 4
Views: 738

Re: Port Mirror vs NetFlow

Yeah. Was looking at that. Trying to figure out something to do with a port mirror....

-Eric
by efaden
Wed Apr 26, 2017 3:08 am
Forum: General
Topic: Port Mirror vs NetFlow
Replies: 4
Views: 738

Port Mirror vs NetFlow

Anyone have suggestions for which would be better? I'm looking for a way to capture a lot of information about what is using bandwidth, etc.

Anyone have tips on good tools to analyze this data? Ideally looking for some nice graphs, etc.

Was looking at PRTG or NTOPNG
by efaden
Sun Apr 23, 2017 4:01 pm
Forum: RouterBOARD hardware
Topic: Hardware Bonding?
Replies: 2
Views: 894

Hardware Bonding?

Do any of MikroTik CRS support LACP Bonding in hardware or only on the CPU? It seems the answer is no, but just checking. I know the CRS can do "Port Trunking". Which I'm not exactly sure what that supports....
by efaden
Sun Apr 23, 2017 3:55 pm
Forum: General
Topic: Bandwidth Test Maximum?
Replies: 3
Views: 696

Re: Bandwidth Test Maximum?

Interesting update. When I use the CRS or NetMetals as the source and destination I max out at 980 Mbps. Even when it goes through the RB3011 (e.g. you can see it coming in and out the ports at 980 Mbps). When I use the RB3011 the CPU maxes out at 50% and I only get 550 Mbps. It appears to be a limi...
by efaden
Sat Apr 22, 2017 10:25 pm
Forum: General
Topic: Bandwidth Test Maximum?
Replies: 3
Views: 696

Bandwidth Test Maximum?

Anyone have an idea what I should expect as the maximum on bandwidth test between devices over gigE? I have a RB3011, CRS125, and some NetMetals. Seems to max out at around 600Mbps and then starts dropping packets. Trying to figure out if thats normal or if I should be closer to 1000Mbps.
by efaden
Sat Apr 22, 2017 9:10 pm
Forum: General
Topic: RB3011 Bonding w/ Switch Chip?
Replies: 0
Views: 537

RB3011 Bonding w/ Switch Chip?

So this is a question and I honestly have no idea what the answer is. Right now I have a RB3011 connected to a CRS125 on Port 1 on each. The RB3011 then has 2 other things connected to the Ports 4 and 5. I just pulled a second run of cable between the two devices. I would like to bond ports 1 and 2 ...
by efaden
Thu Mar 30, 2017 3:27 pm
Forum: Announcements
Topic: MUM Europe 2017 Live!
Replies: 64
Views: 12567

Re: MUM Europe 2017 Live!

What's the price on that crs317?

Sent from my Pixel XL using Tapatalk
by efaden
Thu Mar 30, 2017 3:17 pm
Forum: Announcements
Topic: MUM Europe 2017 Live!
Replies: 64
Views: 12567

Re: MUM Europe 2017 Live!

Can't get the PDF to load...

Sent from my Pixel XL using Tapatalk
by efaden
Thu Mar 30, 2017 4:41 am
Forum: RouterBOARD hardware
Topic: MUM Europe 2017: new hardware incoming!
Replies: 86
Views: 20760

Re: MUM Europe 2017: new hardware incoming!

Yay!

Sent from my Pixel XL using Tapatalk
by efaden
Fri Mar 24, 2017 8:57 pm
Forum: RouterBOARD hardware
Topic: Dead RB3011?
Replies: 10
Views: 1672

Re: Dead RB3011?

Looks like this.... So far I have tried the reset button, serial port, powering via POE, .... nothing works. All of this from the upgrade. Both the blue and green light by the USB port are on.... Nothing else. https://photos-6.dropbox.com/t/2/AAA2p14xdiZ2OJ1PfstZ9ARjkFQrwrFywVoI_y47cmBc2A/12/3797377...
by efaden
Fri Mar 24, 2017 7:15 pm
Forum: RouterBOARD hardware
Topic: Dead RB3011?
Replies: 10
Views: 1672

Re: Dead RB3011?

And what's seen on serial console?
Absolutely nothing.
by efaden
Fri Mar 24, 2017 6:38 pm
Forum: RouterBOARD hardware
Topic: Dead RB3011?
Replies: 10
Views: 1672

Re: Dead RB3011?

Was on rc19, attempted to upgrade to latest RC. Had another one that did fine.
by efaden
Fri Mar 24, 2017 6:34 pm
Forum: RouterBOARD hardware
Topic: Dead RB3011?
Replies: 10
Views: 1672

Dead RB3011?

Hey All, I have a RB3011 that I just attempted to upgrade. When it booted back up it got stuck at a white screen. Never goes any further. Won't netinstall or reset with the switch in the back.... literally just boots to the white screen and nothing else... Already emailed mikrotik and the distributo...
by efaden
Thu Mar 23, 2017 2:37 pm
Forum: General
Topic: Maltrail + Mikrotik (IDS)
Replies: 10
Views: 2251

Re: Maltrail + Mikrotik (IDS)

Interested in this myself. Once my internet gets restored I'm planning on setting up a bunch of these to test in a VM. I'll let you know what I figure out

Sent from my Pixel XL using Tapatalk
by efaden
Wed Mar 22, 2017 4:13 am
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Re: Recommendations for Antenna

I'd rather ceiling mount an antenna

Sent from my Pixel XL using Tapatalk
by efaden
Wed Mar 22, 2017 12:55 am
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Re: Recommendations for Antenna

It's not the dbi it's the quality of the antenna. They don't stay in their position... They are cracking

Sent from my Pixel XL using Tapatalk
by efaden
Tue Mar 21, 2017 8:27 pm
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Re: Recommendations for Antenna

More the issue is not a super antenna... The ones on there are horrible... I just want to put decent antennas on them.

Sent from my Pixel XL using Tapatalk
by efaden
Tue Mar 21, 2017 7:06 pm
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Re: Recommendations for Antenna

Distances are about 100 feet, but my walls are concrete.

Sent from my Pixel XL using Tapatalk
by efaden
Tue Mar 21, 2017 7:06 pm
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Re: Recommendations for Antenna

Indoors. Clients are phones and laptops. Mostly just trying to cover my house really well.

Sent from my Pixel XL using Tapatalk
by efaden
Tue Mar 21, 2017 2:22 am
Forum: Wireless Networking
Topic: Recommendations for Antenna
Replies: 9
Views: 809

Recommendations for Antenna

I'm looking for a recommendation for some antennas to use. I have NetMetal 5ac with a 2.4 GHz card in it. So a total of 5 RP-SMA antennas. 2 on 2.4 and 3 on 5Ghz. Right now I'm using junky rubber duck antennas, but I'm thinking they may be causing issues. I'm looking for some suggestions on alternat...
by efaden
Mon Mar 20, 2017 5:10 pm
Forum: Virtualization
Topic: Recommendations for CHR Specs?
Replies: 2
Views: 1102

Recommendations for CHR Specs?

I'm looking to convert my router over to a proxmox virtual server running CHR and a few other things. The question is how much power I need and if anyone has recommended vendors. E.g. Atom vs core i5 vs core i7 vs Xeon d vs Xeon e3 vs e5? How about ram? Any recommendations? Looking for 1 gbps with i...
by efaden
Sun Mar 19, 2017 5:15 pm
Forum: General
Topic: NetFlow/Per Mac Address Logs
Replies: 0
Views: 344

NetFlow/Per Mac Address Logs

I know I have posted this before, but I'm seeing if there is anything new as I haven't found a good solution. I need a way to log NetFlow traffic by Mac Address. Basically I have a public network and people get new ips all the time. I need a way to monitor how much traffic and what type each Mac is ...
by efaden
Sun Mar 19, 2017 4:57 pm
Forum: General
Topic: Some MikroTiks change their MAC
Replies: 1
Views: 356

Re: Some MikroTiks change their MAC

Bridge ports assign based on who is in the bridge and some other factors... They can vary based on the initialization order. Just set the Mac of the bridge manually to one of the interfaces.

Sent from my Pixel XL using Tapatalk
by efaden
Thu Feb 23, 2017 3:12 pm
Forum: General
Topic: 8-Port managed POE/POE+ Switch for use with Mikrotik
Replies: 2
Views: 1655

Re: 8-Port managed POE/POE+ Switch for use with Mikrotik

Issue with that is you can't remote reboot easily. I wish they made a bigger Poe switch

Sent from my XT1575 using Tapatalk
by efaden
Tue Feb 21, 2017 4:27 pm
Forum: Beginner Basics
Topic: SFP port on RB3011, where do you use it for?
Replies: 6
Views: 2346

Re: SFP port on RB3011, where do you use it for?

Checkout the block diagram


Sent from my iPad using Tapatalk
by efaden
Tue Feb 21, 2017 4:27 pm
Forum: Beginner Basics
Topic: SFP port on RB3011, where do you use it for?
Replies: 6
Views: 2346

Re: SFP port on RB3011, where do you use it for?

I use it for my gateway.... and use the first 5 ports for my main network. Yes... using it will drop the speed to the 2nd set of ports.


Sent from my iPad using Tapatalk
by efaden
Tue Jan 31, 2017 12:57 am
Forum: General
Topic: General QOS Script
Replies: 10
Views: 9055

General QOS Script

Anyone have a good general QOS with connection tracking I can use as a starting point for a Home/Office firewall?
by efaden
Sun Jan 29, 2017 6:06 pm
Forum: General
Topic: Using Splunk to analyse MikroTik logs
Replies: 98
Views: 16814

Re: Using Splunk to analyse MikroTik logs

Can you graph data usage by MAC address?


Sent from my iPad using Tapatalk
by efaden
Thu Jan 26, 2017 2:12 pm
Forum: Beginner Basics
Topic: RouterOS USB storage device support
Replies: 45
Views: 57801

Re: RouterOS USB storage device support

My USB key works until I reboot. Then it doesn't show up until I unplug and plug it in again. Running latest RC... Anyone else have this? Or he a fix

Sent from my XT1575 using Tapatalk
by efaden
Mon Jan 23, 2017 4:37 pm
Forum: General
Topic: Monitoring Traffic - Help... NetFlow vs Packet Sniffer Stream
Replies: 1
Views: 714

Monitoring Traffic - Help... NetFlow vs Packet Sniffer Stream

Hey All, So I have a network I need to get some more data about. I have an extra port on my router and a linux box. I was planning to setup the linux box and either use NetFlow, Packet Sniffer Stream, or Switch Chip Port Mirror to mirror all of the data from my network. Does anyone have any recommen...
by efaden
Sun Jan 15, 2017 10:10 pm
Forum: General
Topic: RB3011 IPSEC Hardware Encryption?
Replies: 17
Views: 5786

Re: RB3011 IPSEC Hardware Encryption?

Curious myself....
by efaden
Sun Jan 15, 2017 7:04 pm
Forum: Beginner Basics
Topic: What's the reason to use SwOS instead of RouterOS?
Replies: 11
Views: 8138

Re: What's the reason to use SwOS instead of RouterOS?

Personally I see no reason to run SwOS on a device that supports both.... Just use the Switch features in SwOS...
by efaden
Sun Jan 15, 2017 6:33 pm
Forum: Beginner Basics
Topic: What's the reason to use SwOS instead of RouterOS?
Replies: 11
Views: 8138

Re: What's the reason to use SwOS instead of RouterOS?

Unsure myself.... personally if your running a big network I think SwOS is too limited... no SNMP v3 (security)... .. dude is limited ..... no winbox.... I have switched to HEX PoE from 260GSP for this reason. As long as you use the switch chip it shouldn't be less than wirespeed anyways.

-Eric
by efaden
Thu Jan 05, 2017 3:35 pm
Forum: Wireless Networking
Topic: hAP AC throughput
Replies: 32
Views: 6405

Re: hAP AC throughput

TP-link is not running in a CAPsMAN managed network. You can't compare managed network and simple AP situation. If you use hAP ac as a simple AP without any CAPsMAN, it will work at 400Mbit easily. This was mentioned above a few times already.
Will CAPsMAN support fastpath at some point?
by efaden
Fri Dec 23, 2016 7:25 pm
Forum: General
Topic: RB3011 Switch Chip and Frustration with Support
Replies: 4
Views: 1358

Re: RB3011 Switch Chip and Frustration with Support

Sorry... I forgot to mention I completely understand that there are two switch chips. and that one splits its backbone to the CPU with the SFP port. This is the code I'm currently using. Every time I try to turn on the switch chip all traffic drops. /interface bridge add comment="Guest Bridge" mtu=1...
by efaden
Fri Dec 23, 2016 2:43 pm
Forum: General
Topic: RB3011 Switch Chip and Frustration with Support
Replies: 4
Views: 1358

RB3011 Switch Chip and Frustration with Support

I am writing to both request help with this configuration and to express frustration with MikroTik Support. I have had a few RB3011s running for a few weeks now and have been unable to properly get the switch chip working on basically any of them. The documentation in the WIKI for the switch chip is...
by efaden
Sun Dec 11, 2016 6:47 pm
Forum: General
Topic: Mikrotik to Linux VPN
Replies: 1
Views: 507

Re: Mikrotik to Linux VPN

Anyone?

Sent from my XT1575 using Tapatalk
by efaden
Sat Dec 10, 2016 7:27 pm
Forum: General
Topic: Mikrotik to Linux VPN
Replies: 1
Views: 507

Mikrotik to Linux VPN

Hey, So I have been going nuts trying to get this to work. Anyone have any tips for getting PPP/IPSec/ANY VPN to work between an Ubuntu 16.04 box and a MikroTik router. I have used IPSec and StrongSwan. It only connects, but times out at phase 1. Anyone have it working? Tutorials? Guides? -Eric
by efaden
Sat Nov 12, 2016 3:19 pm
Forum: Announcements
Topic: v6.38rc [release candidate] is released
Replies: 331
Views: 75310

Re: v6.38rc [release candidate] is released

Having a weird issue on my CRS. Running > rc10 seems to crash randomly and just stop passing all traffic (including responding to anything itself) requiring a reboot. I sent supouts. I think it is somewhere in IPSec. I wind up with 100s of SAs that keep expiring.... for a single ipsec tunnel.... -Eric
by efaden
Tue Nov 08, 2016 2:48 am
Forum: Announcements
Topic: v6.38rc [release candidate] is released
Replies: 331
Views: 75310

Re: v6.38rc [release candidate] is released

Thanks
by efaden
Tue Nov 08, 2016 2:23 am
Forum: Announcements
Topic: v6.38rc [release candidate] is released
Replies: 331
Views: 75310

Re: v6.38rc [release candidate] is released

MikroTik....

!) ipsec - added support unique policy generation which will allow multiple peers behind the same NAT (cli only);

How do we use this?
by efaden
Wed Oct 26, 2016 12:48 pm
Forum: General
Topic: Firewall Match Packets Originating from CPU
Replies: 3
Views: 485

Re: Firewall Match Packets Originating from CPU

Yeah, but I'm not blocking the output. I logged the default deny and that's where there are getting dropped.

Sent from my XT1575 using Tapatalk
by efaden
Wed Oct 26, 2016 2:52 am
Forum: General
Topic: Firewall Match Packets Originating from CPU
Replies: 3
Views: 485

Firewall Match Packets Originating from CPU

Hey,

Whats the best way to match traffic originating from the MikroTik itself? I have a default drop rule at the bottom of my input chain, but I need a way to allow mikrotik traffic itself.

I thought about src-address-type set to local, but was curious if anyone else had suggestions?

-Eric
by efaden
Fri Oct 21, 2016 5:25 pm
Forum: SwOS
Topic: VLANs with RB260, urgently need help
Replies: 2
Views: 1219

Re: VLANs with RB260, urgently need help

Unfortunately you can't export configs in SwOS. Can you post some screenshots of your configs?

-Eric
by efaden
Tue Oct 18, 2016 1:11 am
Forum: General
Topic: VPN Method Recommendation
Replies: 0
Views: 310

VPN Method Recommendation

Hey Everyone, I need a bit of a recommendation. I have two locations with MikroTik routers. Prior to today both sites had Dynamic IPs, which was fine. I had the connection setup as a EOIP over IPSec with a script to update the IPs in the Policy, Proposal, etc.... That was working just fine until one...
by efaden
Thu Oct 06, 2016 10:16 pm
Forum: Scripting
Topic: Portknocking by script.
Replies: 9
Views: 2775

Re: Portknocking by script.

Hmmm... This is interesting. I have a perl script to do the knock from unix... I'm curious if you could use the fetch.... What I'm thinking is use fetch to fetch something on a random port... use layer 7 to analyze the address and match it to a secret key.... e.g. fetch http://<YOUR IP>:<PORT 1>/som...
by efaden
Mon Oct 03, 2016 6:12 am
Forum: General
Topic: Job: Looking for a config builder...
Replies: 4
Views: 728

Re: Job: Looking for a config builder...

Contact me. Email is efaden@gmail

Sent from my XT1575 using Tapatalk
by efaden
Sun Oct 02, 2016 4:44 pm
Forum: Beginner Basics
Topic: VLAN 1003 for Airport Extreme
Replies: 12
Views: 3308

Re: VLAN 1003 for Airport Extreme

Post your full export. The interface/bridge configuration isn't in there.
by efaden
Tue Sep 20, 2016 5:29 pm
Forum: Beginner Basics
Topic: EoIP and DNS names
Replies: 1
Views: 427

Re: EoIP and DNS names

I'm curious how often it will resolve.

Sent from my XT1575 using Tapatalk
by efaden
Wed Sep 14, 2016 9:42 pm
Forum: Beginner Basics
Topic: Looking for Mikrotik Specialist for paid work
Replies: 4
Views: 582

Re: Looking for Mikrotik Specialist for paid work

I'm not in UK... but I can likely help you remotely. Email me. efaden@gmail
by efaden
Wed Sep 14, 2016 3:29 pm
Forum: General
Topic: Guru needed for paid remote support
Replies: 7
Views: 857

Re: Guru needed for paid remote support

I'm also around. efaden@gmail

Shoot me an email and we can discuss.
by efaden
Wed Sep 07, 2016 2:53 am
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Not that curious... As long as you got it working.
by efaden
Tue Sep 06, 2016 7:25 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Nice. I'm still curious why that one command I was using is returning 100 all the time.
by efaden
Tue Sep 06, 2016 4:03 am
Forum: General
Topic: Multiple DHCP Servers On One Bridge (Multiple WLANS, Same Subnet, Different DHCP Ranges) Help Please
Replies: 5
Views: 1208

Re: Multiple DHCP Servers On One Bridge (Multiple WLANS, Same Subnet, Different DHCP Ranges) Help Please

So are your APs wirelessly connected?... I'm missing something I think... Post your exports also...
by efaden
Sun Sep 04, 2016 1:14 pm
Forum: General
Topic: Multiple DHCP Servers On One Bridge (Multiple WLANS, Same Subnet, Different DHCP Ranges) Help Please
Replies: 5
Views: 1208

Re: Multiple DHCP Servers On One Bridge (Multiple WLANS, Same Subnet, Different DHCP Ranges) Help Please

There are a bunch of ways to handle this... Can you post a network diagram?


Sent from my iPad using Tapatalk
by efaden
Sat Sep 03, 2016 3:25 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Hmmm... can you give me access to the devices?... I just want to see what data I can get off the interfaces. That's really odd though? Email me efaden@gmail and I can try to figure out the right command to pull the data.
by efaden
Fri Sep 02, 2016 2:29 am
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Interesting... I haven't seen anything about that....

run

/interface ethernet { :foreach i in=[find] do={:put [get $i speed]} }

and tell me what you get back....
by efaden
Wed Aug 31, 2016 9:52 pm
Forum: Wireless Networking
Topic: CapsMan, vlan, local forwarding
Replies: 1
Views: 646

Re: CapsMan, vlan, local forwarding

Not much on the cap... Use the bridge mode and it works perfectly

Sent from my XT1575 using Tapatalk
by efaden
Wed Aug 31, 2016 1:29 am
Forum: Wireless Networking
Topic: wAP ac Mesh
Replies: 3
Views: 1164

Re: wAP ac Mesh

Not yet.
by efaden
Sun Aug 28, 2016 2:04 am
Forum: General
Topic: Block Diagram for NetMetal
Replies: 0
Views: 309

Block Diagram for NetMetal

Anyone have one for the NetMetal aka 922?


Sent from my iPad using Tapatalk
by efaden
Sat Aug 27, 2016 12:45 am
Forum: Scripting
Topic: Help with script for DNS lookups and address lists
Replies: 23
Views: 6771

Re: Help with script for DNS lookups and address lists

Glad it was helpful.
by efaden
Wed Aug 24, 2016 9:18 pm
Forum: RouterBOARD hardware
Topic: Super High End/Overkill Home Router Build
Replies: 13
Views: 3506

Re: Super High End/Overkill Home Router Build

That's going to be hard to cover with an single AP.
by efaden
Thu Aug 18, 2016 10:10 pm
Forum: Announcements
Topic: SwOS version 1.17 released
Replies: 14
Views: 7043

Re: SwOS version 1.17 released

Need hex with poe


Sent from my iPad using Tapatalk
by efaden
Wed Aug 17, 2016 5:28 am
Forum: Beginner Basics
Topic: Need help. Willing to pay.
Replies: 7
Views: 934

Re: Need help. Willing to pay.

Shoot me an email. efaden@gmail

We can talk via email and I can try to help you figure out exactly what you need help with....
by efaden
Tue Aug 16, 2016 9:39 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 106293

Re: Blacklist Filter update script

BGP seems like the way to go...

Sent from my XT1575 using Tapatalk
by efaden
Tue Aug 16, 2016 8:37 am
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 106293

Re: Blacklist Filter update script

How would bgp work for dynamic clients?


Sent from my iPad using Tapatalk
by efaden
Mon Aug 15, 2016 5:25 pm
Forum: Beginner Basics
Topic: Need help. Willing to pay.
Replies: 7
Views: 934

Re: Need help. Willing to pay.

What are you looking to fix? I may be able to help.


Sent from my iPad using Tapatalk
by efaden
Sat Aug 13, 2016 2:24 pm
Forum: Scripting
Topic: As in the script to determine whether the route is turned off?
Replies: 2
Views: 452

Re: As in the script to determine whether the route is turned off?

If no one else answers I can respond in a few days once I get my laptop fixed.


Sent from my iPad using Tapatalk
by efaden
Wed Aug 10, 2016 8:11 pm
Forum: General
Topic: CapsMAN Custom Certificate CA?
Replies: 0
Views: 327

CapsMAN Custom Certificate CA?

Hey,

Anyone have instructions for making a CA and using it for the CapsMan? I'd like to setup a simple self signed structure on the MikroTik. I want to manually create and install certificates on the CAPs so that I can have "require cert" enabled.

Anyone done this?

-Eric
by efaden
Wed Aug 10, 2016 7:55 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 106293

Re: Blacklist Filter update script

Nice. Done any benchmark comparing RAW to Filter?
by efaden
Wed Aug 10, 2016 5:01 am
Forum: Scripting
Topic: wait internet came back and send e-mail
Replies: 2
Views: 684

Re: wait internet came back and send e-mail

I can look into it later... I'm curious myself.. Not sure what type of error handling there is on sending email


Sent from my iPad using Tapatalk
by efaden
Wed Aug 10, 2016 1:52 am
Forum: General
Topic: Firewall Raw?
Replies: 3
Views: 1727

Firewall Raw?

Hey, Anyone have information on the new RAW table? The wiki is .... well... sparse.... I'm trying to modify my normal ruleset to utilize the speed of raw. Any information? Particularly the question I currently have would be what would happen if I jump from a chain on the prerouting raw table to a ch...
by efaden
Mon Aug 08, 2016 1:02 pm
Forum: The Dude
Topic: Basic Dude Configuration for Nodes?
Replies: 4
Views: 960

Re: Basic Dude Configuration for Nodes?

Anything difference between ros mode and snmp ?

Sent from my XT1575 using Tapatalk
by efaden
Sun Aug 07, 2016 7:30 pm
Forum: Beginner Basics
Topic: how to change firewall rules using script?
Replies: 9
Views: 1512

Re: how to change firewall rules using script?

The easiest way to do this is to use the "comment" on the rules you want to change. So ... for example ... add something like "+timeChange" to the end of each comment.... then you can use a command like set [find comment~"<REGEX>"] blah blah.... or you can loop... :foreach i in=[find comment~"<REGEX...
by efaden
Sat Aug 06, 2016 8:25 pm
Forum: General
Topic: IPSec AES-256-GCM
Replies: 10
Views: 2440

Re: IPSec AES-256-GCM

I can't now, but later from a computer

Sent from my XT1575 using Tapatalk
by efaden
Sat Aug 06, 2016 8:20 pm
Forum: Wireless Networking
Topic: Switch for power four Netbox 5
Replies: 5
Views: 660

Re: Switch for power four Netbox 5

I'm using 260s. But honestly I wish the hex or powerbox were gigabit

Sent from my XT1575 using Tapatalk
by efaden
Sat Aug 06, 2016 8:19 pm
Forum: General
Topic: IPSec AES-256-GCM
Replies: 10
Views: 2440

Re: IPSec AES-256-GCM

I'm using gcm

Sent from my XT1575 using Tapatalk
by efaden
Sat Aug 06, 2016 2:07 pm
Forum: The Dude
Topic: Basic Dude Configuration for Nodes?
Replies: 4
Views: 960

Re: Basic Dude Configuration for Nodes?

So far it seems that I need to have the standard winbox port open and use the admin user and password..... (although I may try to make an account for the dude specifically).... and then I need to make a SNMP community for the dude.... planning to use v3 with authentication and encryption. Any feedba...
by efaden
Sat Aug 06, 2016 1:50 pm
Forum: RouterBOARD hardware
Topic: Product Request: Wall Plug Mountable wAP AC
Replies: 9
Views: 1094

Re: Product Request: Wall Plug Mountable wAP AC

I thought about the mAP... ... but I wanted dual band.
by efaden
Sat Aug 06, 2016 3:44 am
Forum: The Dude
Topic: Basic Dude Configuration for Nodes?
Replies: 4
Views: 960

Basic Dude Configuration for Nodes?

Hey, So I am planning on running the Dude on my RB3011 to monitor a set of RouterOS Devices (wAP ac, BaseBox 2, CRS125) and SwOS Devices (RB260GSP). What services need to be enabled on the clients/nodes to get all of the data to the Dude server securely? (SNMP? API? API-SSL?) ... and how do I do it ...
by efaden
Sat Aug 06, 2016 1:27 am
Forum: RouterBOARD hardware
Topic: Product Request: Wall Plug Mountable wAP AC
Replies: 9
Views: 1094

Re: Product Request: Wall Plug Mountable wAP AC

I'd love that with mikrotik. But also need wall plug mounted for mesh.


Sent from my iPad using Tapatalk
by efaden
Sat Aug 06, 2016 12:07 am
Forum: Scripting
Topic: perl API client
Replies: 102
Views: 52437

Re: perl API client

I haven't updated it in a while.... but

https://github.com/efaden/MikroTikPerl

was working last time I looked.
by efaden
Fri Aug 05, 2016 1:15 am
Forum: SwOS
Topic: 260GSP "current too low"
Replies: 6
Views: 2707

Re: 260GSP "current too low"

I contacted the distributor.... either the power supply or switch. they are sending a new one.
by efaden
Fri Aug 05, 2016 12:45 am
Forum: SwOS
Topic: 260GSP "current too low"
Replies: 6
Views: 2707

Re: 260GSP "current too low"

you need a stronger power supply. It's telling you that the current going into the switch is not enough to power the switch and the devices connected to it. It shouldn't be though. This is using the 24V 2.5A power supply it comes with?.... It should be able to power the three devices each using 200...
by efaden
Thu Aug 04, 2016 11:48 pm
Forum: SwOS
Topic: 260GSP "current too low"
Replies: 6
Views: 2707

260GSP "current too low"

Anyone ever experience this? Was it resolved? I have two 260GSPs plugged into a CRS. Both of the 260GSPs are powered using the power supply that they come with directly plugged in. The 1st GSP is powering 3 x BaseBox 2. And it is working fine. The 260GSP is powering 2 x wAP ac and a BaseBox 2. On tw...
by efaden
Thu Aug 04, 2016 5:30 pm
Forum: RouterBOARD hardware
Topic: Product Request: Wall Plug Mountable wAP AC
Replies: 9
Views: 1094

Re: Product Request: Wall Plug Mountable wAP AC

in-wall mountable instead standard wall plug. like this one? tbh, there is not much of an use for an AP that requires separate network & power connectivity. say PL works as it supposed to, then it's a great use for places you don't want to mess things up, like historical buildings of some kind. eve...
by efaden
Thu Aug 04, 2016 5:28 pm
Forum: RouterBOARD hardware
Topic: Product Request: Wall Plug Mountable wAP AC
Replies: 9
Views: 1094

Re: Product Request: Wall Plug Mountable wAP AC

I was thinking wall plug mountable... e.g. no Ethernet. For doing a mesh.
by efaden
Thu Aug 04, 2016 1:34 am
Forum: Beginner Basics
Topic: Trying to follow guide "Basic universal firewall script" at the wiki
Replies: 7
Views: 5577

Re: Trying to follow guide "Basic universal firewall script" at the wiki

Some spacing got screwed up.... I'll fix it later when I get time....
by efaden
Thu Aug 04, 2016 1:32 am
Forum: Beginner Basics
Topic: Trying to follow guide "Basic universal firewall script" at the wiki
Replies: 7
Views: 5577

Re: Trying to follow guide "Basic universal firewall script" at the wiki

Here is my basic starting point.... The GIST.... block EVERYTHING from the internet not related.... .... allow EVERYTHING from the LAN. Allow DHCP/DNS from Guest Network. Allow IPSec/L2TP... Allow anything in the WANAllow list... I also don't take credit for this.... this is what I pieced together f...
by efaden
Wed Aug 03, 2016 11:47 pm
Forum: Beginner Basics
Topic: Trying to follow guide "Basic universal firewall script" at the wiki
Replies: 7
Views: 5577

Re: Trying to follow guide "Basic universal firewall script" at the wiki

Basically that rule doesn't block anything.... That rule merely takes matching packets and adds that address to the address list specified for 3 minutes. Likely what you want to do is change that to be only on your external interface. You then need a rule to "drop" packets in the address list. What ...
by efaden
Wed Aug 03, 2016 11:27 pm
Forum: Beginner Basics
Topic: Trying to follow guide "Basic universal firewall script" at the wiki
Replies: 7
Views: 5577

Re: Trying to follow guide "Basic universal firewall script" at the wiki

add ":packet".... See the wiki: http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter Matches packets up to a limited rate (packet rate or bit rate). Rule using this matcher will match until this limit is reached. Parameters are written in following format: count[/time],burst:mode. count - packet ...
by efaden
Wed Aug 03, 2016 3:03 am
Forum: RouterBOARD hardware
Topic: Product Request: Wall Plug Mountable wAP AC
Replies: 9
Views: 1094

Product Request: Wall Plug Mountable wAP AC

So I am working on building a few mesh networks inside of buildings. It would be really awesome to have a version of the wAP ac that had the power adapter built in and mounted directly on to the outlet.... It would make building a mesh really easy. No mounting the unit and then using a POE injector....
by efaden
Tue Aug 02, 2016 3:46 am
Forum: RouterBOARD hardware
Topic: RB3011 Switch Chip #1 Questions
Replies: 1
Views: 784

Re: RB3011 Switch Chip #1 Questions

Anyone?
by efaden
Sun Jul 31, 2016 12:44 pm
Forum: Scripting
Topic: Dyndns.org script, now to remove all log info ?
Replies: 19
Views: 6374

Re: Dyndns.org script, now to remove all log info ?

I'll have to update my scripts to do this..

Sent from my XT1575 using Tapatalk
by efaden
Sun Jul 31, 2016 12:39 pm
Forum: Wireless Networking
Topic: Capsman Registration List with Radionames
Replies: 2
Views: 454

Re: Capsman Registration List with Radionames

Curious myself. I have just been using dhcp

Sent from my XT1575 using Tapatalk
by efaden
Sun Jul 31, 2016 12:38 pm
Forum: General
Topic: LAN broadcast over VPN
Replies: 1
Views: 465

Re: LAN broadcast over VPN

Use eoip over ipsec.

Sent from my XT1575 using Tapatalk
by efaden
Sun Jul 31, 2016 4:24 am
Forum: Scripting
Topic: Web Power Switch control
Replies: 2
Views: 625

Re: Web Power Switch control

Tagging... That's awesome. I'll have to play around with this.


Sent from my iPad using Tapatalk
by efaden
Sun Jul 31, 2016 4:22 am
Forum: Beginner Basics
Topic: amazon fire tv not getting dhcp address after lease expires on mikrotik router
Replies: 39
Views: 8188

Re: amazon fire tv not getting dhcp address after lease expires on mikrotik router

Same problem... I got a roku instead when Amazon support was useless.


Sent from my iPad using Tapatalk
by efaden
Sat Jul 30, 2016 4:05 pm
Forum: Wireless Networking
Topic: wAP ac Mesh
Replies: 3
Views: 1164

Re: wAP ac Mesh

Here is what I'm thinking.... the red lines are wired... the dotted blue are wireless mesh....
Mesh.jpg
by efaden
Sat Jul 30, 2016 3:51 pm
Forum: Wireless Networking
Topic: wAP ac Mesh
Replies: 3
Views: 1164

wAP ac Mesh

Hey everyone, So I am planning on installing a wireless network into an older building that I don't particularly want to pull writes. The building is is pretty old and is made of brick exterior and wood and plaster interior. I have access to the basement so I was thinking about installing a RB3011 i...
by efaden
Sat Jul 30, 2016 4:07 am
Forum: General
Topic: Feature request: please add scrolling ability to WinBox dialog boxes
Replies: 6
Views: 883

Re: Feature request: please add scrolling ability to WinBox dialog boxes

Real problem on crs switch settings

Sent from my XT1575 using Tapatalk
by efaden
Fri Jul 29, 2016 12:01 pm
Forum: General
Topic: feature request: add Port List to firewall
Replies: 34
Views: 6912

Re: feature request: add Port List to firewall

Yep.

Sent from my XT1575 using Tapatalk
by efaden
Fri Jul 29, 2016 3:30 am
Forum: Beginner Basics
Topic: Hoiw to limit access to webfig /graphs
Replies: 6
Views: 1875

Re: Hoiw to limit access to webfig /graphs

Thanks for all advice's. 
I know that I can give different port to whole webfig and different for winbox app.

To be sure if I understand right webfig separation - is this possible to separate webfig access from webfig access/graphs on different ports ?
No.
by efaden
Thu Jul 28, 2016 8:50 pm
Forum: RouterBOARD hardware
Topic: RB3011 Switch Chip #1 Questions
Replies: 1
Views: 784

RB3011 Switch Chip #1 Questions

Hey All, So unlike some of the other boards the RB3011 doesn't have a "switch all ports" setting.  Thus all ports ether1 through ether5 are in the switch.  I want to utilize port ether1 as my gateway port and then use ether2 through ether5 as tagged vlan trunks.  I'm trying to figure out the proper ...
by efaden
Mon Jul 25, 2016 11:07 pm
Forum: Wireless Networking
Topic: 4 way handshake timeout
Replies: 7
Views: 6129

Re: 4 way handshake timeout

Ever figure this out?
by efaden
Sun Jul 24, 2016 4:19 pm
Forum: RouterBOARD hardware
Topic: RB3011 (not rackmount), Hex POE (gigabit) coming soon?
Replies: 8
Views: 1753

Re: RB3011 (not rackmount), Hex POE (gigabit) coming soon?

Hex poe or powerbox with gigabit

Sent from my XT1575 using Tapatalk
by efaden
Sat Jul 23, 2016 8:29 pm
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

Re: RB3011 Switch Chip Question

Nope.  I meant hybrid. Access Port -> Single Untagged VLAN Trunk Port -> Tagged VLANs (Single or Multiple, but all tagged) Hybrid Port -> Untagged Traffic + One or More Tagged i want to more precisely clarify Access Port -> Single Untagged VLAN Trunk Port -> Tagged VLANs only Hybrid Port -> Single ...
by efaden
Sat Jul 23, 2016 8:21 pm
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

Re: RB3011 Switch Chip Question

I did get an answer about what I needed though.  Basically since I wanted to use VLAN 1 I needed to change the default-vlan-id on the trunk ports to 0 (or something other than auto).  Since auto uses 1 which caused problems.

-Eric
by efaden
Sat Jul 23, 2016 8:19 pm
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

Re: RB3011 Switch Chip Question

Nope.  I meant hybrid.

Access Port -> Single Untagged VLAN
Trunk Port -> Tagged VLANs (Single or Multiple, but all tagged)
Hybrid Port -> Untagged Traffic + One or More Tagged
by efaden
Wed Jul 20, 2016 2:21 am
Forum: General
Topic: REQ: More Examples for Switch Chip
Replies: 2
Views: 406

Re: REQ: More Examples for Switch Chip

RB3011, RB2011, etc.  

Sorry... much clearer on a CRS.   Was looking at http://wiki.mikrotik.com/wiki/Manual:Sw ... p_Features
by efaden
Tue Jul 19, 2016 10:26 pm
Forum: General
Topic: REQ: More Examples for Switch Chip
Replies: 2
Views: 406

REQ: More Examples for Switch Chip

Hey,

I would like to request more examples of the switch chip.  I would like specifically to see examples with Hybrid ports.

-Eric
by efaden
Tue Jul 19, 2016 8:39 pm
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

Re: RB3011 Switch Chip Question

Is it possible to configure a hybrid port on the RB3011 with the switch chip?

I am still trying to get an official response from MikroTik about this.
by efaden
Mon Jul 18, 2016 12:55 am
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

Re: RB3011 Switch Chip Question

Hi, i think problem is native VLAN what is number 1. Normally not good use VLAN 1. Please use VLAN 2 -> :)
I was thinking that may be the problem.... 
by efaden
Sat Jul 16, 2016 3:03 pm
Forum: General
Topic: RB3011 Switch Chip Question
Replies: 9
Views: 1737

RB3011 Switch Chip Question

Hey, So I am trying to configure the switch chip in the RB3011 and am running in to a bit of a problem.  Is there something special about VLAN 1?... Basically I am trying to have ether01 be the gateway... ether02-ether05 be switch 1....  ether06-ether10 be switch 2.... I am trying to have vlans 1,10...
by efaden
Tue Jul 12, 2016 9:47 pm
Forum: SwOS
Topic: Need Help with Proper Configuration for VLANs
Replies: 2
Views: 889

Re: Need Help with Proper Configuration for VLANs

Last image.
by efaden
Tue Jul 12, 2016 9:46 pm
Forum: SwOS
Topic: Need Help with Proper Configuration for VLANs
Replies: 2
Views: 889

Re: Need Help with Proper Configuration for VLANs

Some more images
by efaden
Tue Jul 12, 2016 9:45 pm
Forum: SwOS
Topic: Need Help with Proper Configuration for VLANs
Replies: 2
Views: 889

Need Help with Proper Configuration for VLANs

Hey All, Basically I a couple of 260GSPs that I cannot get configured for the life of me.... every time I think it is correct I just wind up loosing access to the switches and having to rest them.  My goal is that I have three VLANs on my network 1, 100, and 1003.  All are coming in to the 260GSPs v...
by efaden
Mon Jul 11, 2016 2:42 pm
Forum: Beginner Basics
Topic: Hoiw to limit access to webfig /graphs
Replies: 6
Views: 1875

Re: Hoiw to limit access to webfig /graphs

I need a help how to limit access to my graphs shared through webfig service When I share access to my router before login I can see my graphics stats. Is there any way to limit this information after login or switch off ? No.  You can't do anything but restrict access to the interface or change th...
by efaden
Tue Jul 05, 2016 10:38 pm
Forum: General
Topic: CAPsMAN HT1 chain
Replies: 1
Views: 349

Re: CAPsMAN HT1 chain

No clue.. Curious myself

Sent from my XT1575 using Tapatalk
by efaden
Sat Jul 02, 2016 2:53 am
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

Also... why are you using BGP?...  

-Eric
by efaden
Sat Jul 02, 2016 12:26 am
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

Post the configurations for all the routers.... I think I know what you want to do... I'll work on it when I have time.
by efaden
Wed Jun 29, 2016 12:11 am
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

I was looking at it again last night... I suppose I am still confused....

So you have three networks... I'm confused what is "inside/lan" and what is outside... where does NAT take place.  What networks need to see each other.  What is the configuration on the Remote boxes?
by efaden
Sat Jun 25, 2016 7:20 pm
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

Which routers need to be configured... and where do you need NAT to be working on?
by efaden
Sat Jun 25, 2016 7:18 pm
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

I'll try to look at it in a bit.  Should be able to get it to work... 
by efaden
Sat Jun 25, 2016 3:12 pm
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

I'm slightly confused... why do you have both a public and private address on bridge1?  Also that masq rule is odd.... it doesn't have an interface?

Can you diagram what your trying to do?
by efaden
Sat Jun 25, 2016 1:26 pm
Forum: Beginner Basics
Topic: vlan and ethernet in bridge not working
Replies: 13
Views: 1285

Re: vlan and ethernet in bridge not working

Post your export

Sent from my XT1575 using Tapatalk
by efaden
Mon Jun 13, 2016 3:10 pm
Forum: Wireless Networking
Topic: Any OmniTik ac Version On Horizon?
Replies: 11
Views: 1873

Re: Any OmniTik ac Version On Horizon?

When are the specs going to be put up on routerboard.com?
by efaden
Sat Jun 11, 2016 9:44 pm
Forum: General
Topic: IPSec with dyndns
Replies: 8
Views: 2812

Re: IPSec with dyndns

#.* by RouterOS # # Dynamic Site To Site VPN Script - EoIP over IPSec Only # # Set Comments (Tunnel, Peer, Policy) = "+<HOSTNAME>" # # Variables # :local currentLocalSiteInterface "ether01-gateway" :local currentLocalSite "" :local forceUpdate false :local IPSecCyclePeers false :local IPSecFlushSAs...
by efaden
Sat Jun 11, 2016 2:50 pm
Forum: Wireless Networking
Topic: capsman dual radios, dual band
Replies: 6
Views: 2084

Re: capsman dual radios, dual band

Ah... yes... I see your problem.  My radios are specific.
by efaden
Sat Jun 11, 2016 2:57 am
Forum: Wireless Networking
Topic: capsman dual radios, dual band
Replies: 6
Views: 2084

Re: capsman dual radios, dual band

Can't you just use the HW Modes field? add action=create-dynamic-enabled comment="802.11 B/G/N" hw-supported-modes     master-configuration=Blah-2.4-Auto name-format=identity slave-configu     Blah-2.4-Guest add action=create-dynamic-enabled comment="802.11 AC" hw-supported-modes=ac     master-confi...
by efaden
Thu Jun 09, 2016 3:44 am
Forum: General
Topic: IPSec with dyndns
Replies: 8
Views: 2812

Re: IPSec with dyndns

This is basically it... I use it for dynamic to dynamic EoIP over IPSec .... I can give you one for pure IPSec too... basically the same thing.... The way I chose to do it is to place a comment on each of the parts that looks like +eoip+<HOSTNAME> ... (e.g. +eoip+blah.dyndns.com).... It runs through...
by efaden
Wed Jun 08, 2016 7:39 pm
Forum: General
Topic: IPSec with dyndns
Replies: 8
Views: 2812

I can post my script later

Sent from my XT1575 using Tapatalk
by efaden
Sat Jun 04, 2016 5:29 pm
Forum: Scripting
Topic: Need Script to auto power ON/OFF poe ports of powerbox based on ntp clock.
Replies: 2
Views: 1018

You don't need to write anything really... Just use the scheduler.... Schedule one script that powers of and another scheduled to power on...

Sent from my XT1575 using Tapatalk
by efaden
Wed Jun 01, 2016 12:51 am
Forum: Wireless Networking
Topic: Groove vs Metal Omni Distance...
Replies: 5
Views: 1356

Re: Groove vs Metal Omni Distance...

Does that work for Omnidirectional?
by efaden
Tue May 31, 2016 8:53 pm
Forum: Wireless Networking
Topic: Groove vs Metal Omni Distance...
Replies: 5
Views: 1356

Groove vs Metal Omni Distance...

Hey, Anyone give me an idea about what kind of distance I could expect to get if I were to use a pair of: http://routerboard.com/RBGrooveGA-52HPacn In 2.4 Ghz?... what about 5 Ghz? How about with a pair of http://routerboard.com/RBMetalG-52SHPacn In 2.4 Ghz?... what about 5 Ghz? Just looking for a b...
by efaden
Mon May 30, 2016 1:32 pm
Forum: General
Topic: RouterOS v7.0 beta1 - when?
Replies: 609
Views: 155343

Re: RouterOS v7.0 beta1 - when?

Easy solution - do not make any expectations :) We have already posted from time to time, that the biggest change is under the hood (minor kernel upgrade). There is no new GUI or anything. We are also working on a new routing engine. Actually we are making really cool stuff even in v6. Look at the ...
by efaden
Thu May 19, 2016 12:50 pm
Forum: RouterBOARD hardware
Topic: Q2 2016 But still no Gigabit PoE Routerboard...
Replies: 53
Views: 8780

Re: Q2 2016 But still no Gigabit PoE Routerboard...

Other unannounced models also incoming.
Please be CRS with ARM IPQ and 802.3af PoE out ;)
Please, whatever it is. With more than 4 PoE out ports :)
THIS!.... POE > 4 ports with ROS instead of SOS
by efaden
Thu May 19, 2016 12:41 pm
Forum: RouterBOARD hardware
Topic: Request... Dual Band (Simultaneous) version of Metal and OmniTik
Replies: 5
Views: 941

Re: Request... Dual Band (Simultaneous) version of Metal and OmniTik

I have a few places where I would like to use something like an omnitik (want dual band) or wAP AC (want better coverage) but would like something a bit more optimal. A Metal with sim dual band would be good too. I thought about the NetMetal, but to build a lot of sim dual band ones with antennas ge...
by efaden
Thu May 19, 2016 12:00 pm
Forum: RouterBOARD hardware
Topic: Request... Dual Band (Simultaneous) version of Metal and OmniTik
Replies: 5
Views: 941

But I still think a single sealed solution like the omni or a single antenna would be cleaner... Also it would look better..

Sent from my XT1575 using Tapatalk
by efaden
Thu May 19, 2016 11:56 am
Forum: RouterBOARD hardware
Topic: Request... Dual Band (Simultaneous) version of Metal and OmniTik
Replies: 5
Views: 941

The problem with the NetMetal is that you cannot mount omni ducks in it without removing the cover. I'm looking for something sealed with a single antenna... Or sealed with built in antenna. Just in terns of simplicity and cost is much nicer than a NetMetal solution. Sent from my XT1575 using Tapatalk
by efaden
Wed May 18, 2016 9:30 pm
Forum: RouterBOARD hardware
Topic: Request... Dual Band (Simultaneous) version of Metal and OmniTik
Replies: 5
Views: 941

Request... Dual Band (Simultaneous) version of Metal and OmniTik

I want something I can use as a dual band (simultaneous) outdoor acess point. Like the wAP AC but with weather proof antenna ports instead of built in (or at least bigger antennas like the OmniTik for covering a wider area).
by efaden
Sun May 15, 2016 2:50 pm
Forum: Wireless Networking
Topic: Channel List (for CAPsMAN)
Replies: 7
Views: 17292

Re: Channel List (for CAPsMAN)

I suppose my question is in theory you could write a 80 Mhz channel several ways.... Ceee eCee eeCe eeeC .... so does it matter which?.... Or are the all the same?
by efaden
Sun May 15, 2016 3:57 am
Forum: Wireless Networking
Topic: Channel List (for CAPsMAN)
Replies: 7
Views: 17292

Re: Channel List (for CAPsMAN)

Any difference between /caps-man channel add band=5ghz-a/n/ac name=Channel48-40Mhz frequency=5180 extension-channel=Ceee width=80 /caps-man channel add band=5ghz-a/n/ac name=Channel48-40Mhz frequency=5240 extension-channel=eeeC width=80 Basically does it matter where the extension/main channel are i...
by efaden
Thu May 12, 2016 4:50 pm
Forum: Wireless Networking
Topic: Channel List (for CAPsMAN)
Replies: 7
Views: 17292

Re: Channel List (for CAPsMAN)

Awesome... thanks...

I think I'm going to take those and add the extension channels also... I'll post back when I do.
by efaden
Tue May 10, 2016 3:34 am
Forum: Wireless Networking
Topic: Channel List (for CAPsMAN)
Replies: 7
Views: 17292

Channel List (for CAPsMAN)

It seems like a lot of people may need this, so I am surprised it doesn't exist. I'm in the process of building a full list of channels that I can bring in to caps man.... E.g. 2.4Ghz Channel 1, Channel 2, Channel 3, etc.... Does anyone know if this exists or if I have to build in manually. If I win...
by efaden
Tue May 10, 2016 2:50 am
Forum: Wireless Networking
Topic: CAPsMAN Example Configurations...
Replies: 4
Views: 1651

Re: CAPsMAN Example Configurations...

What is odd to me is that if you go into the Virtual AP on the CAP there is stuff under the wireless tab that "looks" like it should be filled in... it's just wrong... see image below... VLAN Mode and VLAN ID theoretically are use tag and 2.... which are shown on the CAPsMAN... but not on the CAP. S...
by efaden
Mon May 09, 2016 4:11 pm
Forum: Wireless Networking
Topic: CapsMAN Dual Band
Replies: 6
Views: 6105

Re: CapsMAN Dual Band

You need to make different provisioning rules.... you can provision based on protocol... e.g. ac vs b... I can post some config later.
by efaden
Mon May 09, 2016 4:32 am
Forum: Wireless Networking
Topic: CAPsMAN Example Configurations...
Replies: 4
Views: 1651

Re: CAPsMAN Example Configurations...

It seems that no matter how I configure the VLANs if I look at the settings on the CAP the interfaces always say "no tag" and "1" despite it showing as "use tag" and "2" on the CAPsMAN.
by efaden
Mon May 09, 2016 12:44 am
Forum: Wireless Networking
Topic: CAPsMAN Example Configurations...
Replies: 4
Views: 1651

CAPsMAN Example Configurations...

Hey, So I'm in the process of trying to configure CAPsMAN in an office building.... I'm looking to basically have a pile of dual band access points. Ideally I'd like to have two SSIDs available on each band (Main and Guest). I'm planning to have all of the CAPs talk to CAPsMAN via Layer2. I'm planni...
by efaden
Fri May 06, 2016 4:59 am
Forum: General
Topic: Support for ACME/Let's Encrypt certificate management [SOLVED]
Replies: 93
Views: 35650

+1 for this

Sent from my XT1575 using Tapatalk
by efaden
Tue May 03, 2016 10:34 am
Forum: General
Topic: Switch and bridged VLANs
Replies: 4
Views: 559

Yeah. If you need firewall rules beyond the rules offered in the switch chip then yes you need to use bridge. Otherwise if you use the switch chip the packets will just go through the switch chip and the main processor won't ever see them.

Sent from my XT1575 using Tapatalk
by efaden
Mon May 02, 2016 7:08 pm
Forum: General
Topic: Switch and bridged VLANs
Replies: 4
Views: 559

Re: Switch and bridged VLANs

What model is this on? Realistically you want to do as much as you can in the switch chip if your router has one. You're correct in thinking that the "master-port" method for ether2 will be faster than a bridge. This is because it is done in the switch chip instead of the main processor. The downsid...
by efaden
Sun May 01, 2016 3:59 pm
Forum: Wireless Networking
Topic: Non-Overlapping Channels?
Replies: 1
Views: 935

Non-Overlapping Channels?

Hey All, I could use a little bit of help configuring some access points. I am in the US and am looking for some help finding the proper settings for my wireless frequencies to have non-overlapping channels. Can anyone suggest configs for the following 802.11b/g/n 20Mhz 802.11b/g/n 20/40Mhz 802.11a/...
by efaden
Wed Apr 27, 2016 3:58 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44432

Re: wAP AC (General questions and experience)

Tagged. Interested myself.
by efaden
Tue Apr 12, 2016 4:49 pm
Forum: General
Topic: How to create virtual interface?
Replies: 12
Views: 2692

Re: How to create virtual interface?

If you want us to be able to help you need to post your full configuration and a network diagram of what your trying to do. Beyond that I can't for the life of me figure out what your trying to do and why....
by efaden
Sun Apr 10, 2016 3:54 pm
Forum: General
Topic: How to create virtual interface?
Replies: 12
Views: 2692

Re: How to create virtual interface?

Correct... because you should be using in-bridge-port and out-bridge-port.... not in and out interface.
by efaden
Sun Apr 10, 2016 3:40 pm
Forum: General
Topic: How to create virtual interface?
Replies: 12
Views: 2692

Re: How to create virtual interface?

You should enable "Use IP Firewall" in the Bridge Settings. Then you can use mangle with the interfaces. I don't think there is a way to make virtual interfaces like you want to.
by efaden
Sun Apr 10, 2016 3:26 pm
Forum: General
Topic: How to create virtual interface?
Replies: 12
Views: 2692

Re: How to create virtual interface?

Can you explain how exactly you intend to use this?....
by efaden
Fri Apr 01, 2016 11:23 pm
Forum: General
Topic: Feature request: CAPsManager - roaming
Replies: 79
Views: 23319

Re: Feature request: CAPsManager - roaming

Pretty sure station roaming allows the MikroTik to roam when it is in station mode.... e.g. it does nothing if the mikrotik is acting as an access point.
by efaden
Fri Feb 19, 2016 11:55 pm
Forum: General
Topic: Ubiquiti In-Wall Access Points...
Replies: 3
Views: 585

Ubiquiti In-Wall Access Points...

Anyone seen them. UAP-IW.... Would be AWESOME if Mikrotik had something similar since I loathe Ubiquiti. Hardware isn't bad, but I hate the software. If Mikrotik made these I'd buy cases of them....

-Eric
by efaden
Sun Feb 14, 2016 7:05 pm
Forum: General
Topic: Recommendations for Cheap Box to run dude server...
Replies: 4
Views: 522

Was hoping to go even cheaper... Really just want something to test dude on... But that was on my list.

Sent from my XT1575 using Tapatalk
by efaden
Sun Feb 14, 2016 6:57 pm
Forum: General
Topic: Recommendations for Cheap Box to run dude server...
Replies: 4
Views: 522

Recommendations for Cheap Box to run dude server...

Anyone have suggestions? I'm just looking for a cheap box to run the dude server on so I can treat the new version. Anyone have any thoughts?

Sent from my XT1575 using Tapatalk
by efaden
Sun Feb 07, 2016 7:00 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 632
Views: 106293

Re: Blacklist Filter update script

:foreach i in=[/ip firewall address-list find ] do={ :if ( [/ip firewall address-list get $i comment] = "intrusBlacklist" ) do={ /ip firewall address-list remove $i } } Can be simplified to /ip firewall address-list remove [/ip firewall address-list find comment = "intrusBlacklist"] Should actually...
by efaden
Wed Feb 03, 2016 10:28 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Glad it worked.

-Eric
by efaden
Sat Jan 30, 2016 3:43 pm
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 537
Views: 105910

Re: v6.35rc is released, new wireless package!

Also... if I just upgrade my routers to 6.35rc1 will they automatically get rep package or will I need to add it?

-Eric
by efaden
Sat Jan 30, 2016 3:25 pm
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 537
Views: 105910

Re: v6.35rc is released, new wireless package!

What exactly is the "station roaming for station mode" ??? Is this the start of seamless roaming?
by efaden
Sun Jan 10, 2016 12:42 am
Forum: Scripting
Topic: help with scripting
Replies: 2
Views: 1041

Re: help with scripting

You should be able to...
:local systemIdentity [/system identity get name]

:if ($systemIdentity = "Identity1") do={
....

....
}

:if ($systemIdentity = "Identity2") do={
....

....
}
by efaden
Thu Jan 07, 2016 4:31 am
Forum: General
Topic: rb2011 as switch
Replies: 2
Views: 716

Don't forget there will be a large performance hit for traffic crossing the bridge.

Sent from my XT1575 using Tapatalk
by efaden
Tue Jan 05, 2016 4:09 pm
Forum: Scripting
Topic: Working with strings and array
Replies: 1
Views: 788

Re: Working with strings and array

As far as I know the best way to do it would be to

[:pick string 0 r-1] . 'new character' . [:pick string r+1]

I don't believe you can just "replace" that character.

-Eric
by efaden
Tue Jan 05, 2016 4:07 pm
Forum: General
Topic: Need help with parsing data
Replies: 3
Views: 395

Re: Need help with parsing data

I'm always around. Just my main job takes more time now... :-)
by efaden
Tue Jan 05, 2016 4:32 am
Forum: General
Topic: Need help with parsing data
Replies: 3
Views: 395

Re: Need help with parsing data

Try
/ip dhcp-server lease
:foreach i in=[find dynamic=no] do={
   :put ([get $i comment].",".[get $i mac-address].",".[get $i address])
}
by efaden
Mon Nov 16, 2015 1:12 am
Forum: Beginner Basics
Topic: winbox user who can only enable/disable wifi network
Replies: 5
Views: 1020

Re:

Use webfig with special skin for the user via its own user group. It is not possible in winbox.
I think you could control enable/disable on all interfaces, but could you do specific ones?... I don't really use skins.
by efaden
Sun Nov 15, 2015 10:49 pm
Forum: Beginner Basics
Topic: winbox user who can only enable/disable wifi network
Replies: 5
Views: 1020

Re: winbox user who can only enable/disable wifi network

As far as I know this isn't possible. The permissions on mikrotik are not that granular. You could make a PHP script on a webserver using the API thought.
by efaden
Sun Nov 15, 2015 2:59 pm
Forum: RouterBOARD hardware
Topic: Switch with POE
Replies: 8
Views: 1727

Re: Switch with POE

I actually have a ton of places where a CRS with POE out... or some sort of device with 12 to 24 POE out ports would be awesome. Could be SwOS or routerOS. I just need a lot of POE ports with the ability to power cycle them.
by efaden
Tue Nov 10, 2015 11:50 am
Forum: Scripting
Topic: How to build a personal package for mikrotik !
Replies: 8
Views: 1356

Not that I know of

Sent from my SCH-I545 using Tapatalk
by efaden
Fri Nov 06, 2015 2:23 am
Forum: Beginner Basics
Topic: Wifi for home
Replies: 13
Views: 1358

Re: Wifi for home

Never really tested it.... at least 500 mbps... more than my internet so it isn't an issue.
by efaden
Mon Nov 02, 2015 8:43 pm
Forum: Beginner Basics
Topic: RB2011UiAS-RM x 2 for Firewall/Proxy for 300+ users
Replies: 2
Views: 1202

Re: RB2011UiAS-RM x 2 for Firewall/Proxy for 300+ users

There is also the 850GX2 and RB3011. But yeah... we need much more information than just "number of users"....
by efaden
Mon Nov 02, 2015 5:03 pm
Forum: RouterBOARD hardware
Topic: Switch with POE
Replies: 8
Views: 1727

Re: Switch with POE

A 8/16/24 Port would nice.....
by efaden
Sat Oct 31, 2015 2:53 am
Forum: Beginner Basics
Topic: Wifi for home
Replies: 13
Views: 1358

Re: Wifi for home

Just some ducks.
by efaden
Sat Oct 31, 2015 12:57 am
Forum: Beginner Basics
Topic: One Wifi Multi Lans
Replies: 5
Views: 883

Post your export

Sent from my SCH-I545 using Tapatalk
by efaden
Sat Oct 31, 2015 12:55 am
Forum: Beginner Basics
Topic: Wifi for home
Replies: 13
Views: 1358

I used netmetal 5 with a 2ghz card as dual band access points. Crs as my router. Works perfectly

Sent from my SCH-I545 using Tapatalk
by efaden
Tue Oct 27, 2015 10:29 pm
Forum: Wireless Networking
Topic: RB922UAGS-5HPacD + R11e-2HPnD
Replies: 10
Views: 1489

Re: RB922UAGS-5HPacD + R11e-2HPnD

The one it came with.
by efaden
Sat Oct 24, 2015 4:52 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Had a spare minute.... THIS IS NOT TESTED.... but should be pretty close.... Basically you set ethernetSpeeds to an array.... where the key is the ethernet name... and the value is the targeted speed. cycleNumber specifies how many times to try before it gives up, downtime specifies how long to keep...
by efaden
Sat Oct 24, 2015 4:28 pm
Forum: Wireless Networking
Topic: RB922UAGS-5HPacD + R11e-2HPnD
Replies: 10
Views: 1489

Re: RB922UAGS-5HPacD + R11e-2HPnD

I'm basically doing this myself.... Works really well... I actually have three of them powered by a 260GSP...
by efaden
Sat Oct 24, 2015 4:27 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Read the post I posted... If I get a chance I can try to piece together a script from stuff I already have written.
by efaden
Wed Oct 21, 2015 8:07 pm
Forum: Scripting
Topic: Restart up to 16 AP's with one script ?
Replies: 8
Views: 1186

Re: Restart up to 16 AP's with one script ?

Why not just write a bash script to send the command via SSH to each AP?...
by efaden
Wed Oct 21, 2015 8:02 pm
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Now that I have more time to answer, what I would do is setup a script that has two arrays in it.... One telling the script which ethernet interfaces to check and the second telling the script what speed each interface should be at... interfaces = { "ether1-gateway", "ether2-local-master", ... etc} ...
by efaden
Wed Oct 21, 2015 3:56 pm
Forum: Beginner Basics
Topic: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?
Replies: 9
Views: 871

Re: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?

No problem. The wiki page on this topic isn't exactly the clearest...
by efaden
Wed Oct 21, 2015 5:18 am
Forum: Scripting
Topic: disable/enable ethernet interface script
Replies: 20
Views: 17544

Re: disable/enable ethernet interface script

Yeah... entirely possible.
by efaden
Wed Oct 21, 2015 5:15 am
Forum: Beginner Basics
Topic: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?
Replies: 9
Views: 871

Re: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?

You will use ports ether01 and ether02 whenever you reference anything inside of routeros (e.g. firewall rules, etc)... Anything you plug into ether02, ether03, ether04, and ether05 will operate as if it was plugged into a switch that is plugged into the routeros CPU via port "ether02"... Make sense?
by efaden
Tue Oct 20, 2015 8:26 pm
Forum: Beginner Basics
Topic: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?
Replies: 9
Views: 871

Re: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?

It just depends what you need. That section of the manual is poorly worded. Basically what they are trying to say is that if you set the ports 2-5 to master-port ether1 then you should no longer reference ether2-ether5 anywhere on the config. So if you have a DHCP server... you would put it on ether...
by efaden
Tue Oct 20, 2015 3:42 pm
Forum: Beginner Basics
Topic: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?
Replies: 9
Views: 871

Re: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?

Also... look at Image

Looking at this you can see that if you set "switch all ports" then all 5 ports run through the switch chip... if not 2-5 go to the chip and 1 goes direct to the CPU.
by efaden
Tue Oct 20, 2015 3:39 pm
Forum: Beginner Basics
Topic: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?
Replies: 9
Views: 871

Re: do I loose one port 1 on RB450G/RB850Gx2 if used it is as master for 2-5 switch group?

If you set port 1 as the master port for 2-5 then they will basically operate as a 5 port switch. What type of firewalling are you trying to do? You will get wirespeed if you use the master-port setting, but firewalling will be heavily restricted (e.g. mostly all of it won't work) since when using m...
by efaden
Wed Oct 14, 2015 8:52 pm
Forum: Wireless Networking
Topic: How I got maximum wireless performance from RBs for indoor use.
Replies: 3
Views: 1163

Interesting.

Sent from my SCH-I545 using Tapatalk
by efaden
Sat Oct 10, 2015 10:12 pm
Forum: General
Topic: FastTrack security implications
Replies: 4
Views: 1711

Re: FastTrack security implications

First, thank you for your answer :) short answer: no security implication, just speedup cause fastracked sessions will avoid firewall processing, so they won't bump though the rules till they are accepted or rejected. longer version: fastrack works with connection table entries. so if you have a ne...
by efaden
Sat Oct 10, 2015 4:37 am
Forum: General
Topic: load balance with only one interface
Replies: 11
Views: 1093

Is there a reason you have your lan and wan on one interface. That's generally a horrible idea.

Sent from my SCH-I545 using Tapatalk
by efaden
Thu Oct 08, 2015 8:32 pm
Forum: Scripting
Topic: passing variable to script
Replies: 5
Views: 1253

Re: passing variable to script

You can also use functions.
by efaden
Mon Oct 05, 2015 2:23 am
Forum: General
Topic: [Feature Request] Force WebFig to HTTPS
Replies: 4
Views: 1952

Re: [Feature Request] Force WebFig to HTTPS

Do you mean add an option to automatically redirect http -> https?
Otherwise you could just disable the www service. :)
Yes.
by efaden
Sun Oct 04, 2015 6:19 pm
Forum: General
Topic: [Feature Request] Force WebFig to HTTPS
Replies: 4
Views: 1952

[Feature Request] Force WebFig to HTTPS

It would be nice if there was a way to force WebFig to go over to HTTPS..
by efaden
Sat Oct 03, 2015 9:07 am
Forum: General
Topic: UPnP port blocking
Replies: 9
Views: 2976

That's why I only use it at home... [GRINNING FACE WITH SMILING EYES]

Sent from my SCH-I545 using Tapatalk
by efaden
Fri Oct 02, 2015 11:07 pm
Forum: General
Topic: UPnP port blocking
Replies: 9
Views: 2976

Re: UPnP port blocking

Hi Guys, Had a query and wondered if anyone else had encountered this and might have a suggestion / solution. I've use UPnP on some customer facing routers to allow devices like xboxes, playstations etc to perform port mapping and get online. As part of this I've always added some dst-nat action=ac...
by efaden
Sun Sep 27, 2015 2:26 pm
Forum: Beginner Basics
Topic: CRS125-24G-1S Instead of RB2011?
Replies: 9
Views: 1382

Re: CRS125-24G-1S Instead of RB2011?

I mostly am using the CRS125-24G-1S in places where I need a RB2011 worth of power, but just needed more gigabit ports than the 2011 offers. I have also used it as a 24 port switch with some cool features. I agree that the 226 has more powerful switching.... Just depends what you need and how much y...
by efaden
Fri Sep 25, 2015 9:13 pm
Forum: General
Topic: 260GSP to 260GSP to access points?
Replies: 0
Views: 259

260GSP to 260GSP to access points?

Can I chain 260GSPs together and have them pass poe through? Basically I have one 260GSP that I want to power another 260GSP and 4 access points through it... Would that work?

Sent from my SCH-I545 using Tapatalk
by efaden
Mon Sep 21, 2015 3:47 am
Forum: Beginner Basics
Topic: CRS125-24G-1S Instead of RB2011?
Replies: 9
Views: 1382

Re: CRS125-24G-1S Instead of RB2011?

Nope. Works perfectly....
by efaden
Mon Sep 21, 2015 3:34 am
Forum: Beginner Basics
Topic: CRS125-24G-1S Instead of RB2011?
Replies: 9
Views: 1382

Re: CRS125-24G-1S Instead of RB2011?

Processor... how much speed do you need?

I use a CRS125 as a router/switch in several places and it works well.

-Eric
by efaden
Sun Sep 20, 2015 10:07 pm
Forum: Wireless Networking
Topic: Routerboard only as an access point
Replies: 12
Views: 1574

Re:

Remove config from the 951, set the wifi interface as Ap bridge and bridge all interfaces into common bridge.
What he said... basically remove everything from the 951... then just bridge everything...
by efaden
Sun Sep 13, 2015 2:09 pm
Forum: Announcements
Topic: Tik App, MikroTik android utility ALPHA test
Replies: 425
Views: 144814

Re: Tik App, MikroTik android utility ALPHA test

I registred for the beta app, but after the link to install it say that the app is not found. So I cannot install it.
You need to give it a few minutes after you sign up... it will 404 for like 5 to 10 minutes sometimes.
by efaden
Sun Sep 13, 2015 2:35 am
Forum: Scripting
Topic: Script for public ip detection
Replies: 31
Views: 5817

Re: Script for public ip detection

Worked through it via TeamViewer. For those interested... final version. # # Variables # :local currentLocalSiteInterface "pppoe-out1" :local privateRanges {192.168.0.0/16; 172.16.0.0/12; 10.0.0.0/8} :local loopCount 10 # # Script # :local hadMatch :local currentLoop 0 :if ([/interface pppoe-client ...
by efaden
Fri Sep 11, 2015 3:34 pm
Forum: RouterBOARD hardware
Topic: Nothing new this year....
Replies: 8
Views: 1510

Re: Nothing new this year....

or a Gbit POE Out Switch with more then 5 Ports, better RB/CRS with ROS and this Option??
+1
Very need this product

Ubiquiti has a 48 port 750W switch... I just MUCH prefer MikroTik... If MikroTik produced something like that even... 12, 24, or 48 port it would be awesome.

-Eric
by efaden
Fri Sep 11, 2015 1:13 pm
Forum: Scripting
Topic: Script for public ip detection
Replies: 31
Views: 5817

Re: Script for public ip detection

I don't mind at all, actually I'd be grateful.. The problem if the router is connected from a fake IP you won't be able to access it.. This is why your script comes to help here to make sure if the router is connected from a fake IP it will disconnect and try to get a public IP.. Anyway the best th...
by efaden
Fri Sep 11, 2015 2:42 am
Forum: Scripting
Topic: Script for public ip detection
Replies: 31
Views: 5817

Re: Script for public ip detection

I don't really have a setup to test and debug. If you want to give me access to your box I can try to debug it live. But it's just going to require some troubleshooting.