Community discussions

MikroTik App

Search found 155 matches

by dcavni
Mon Mar 25, 2024 1:55 pm
Forum: Wireless Networking
Topic: Mikrotik LHGG LTE18 frequently unresponsive
Replies: 8
Views: 643

Re: Mikrotik LHGG LTE18 frequently unresponsive

The default IP is 192.168.88.1. You changed it to 192.168.188.1?
by dcavni
Sat Mar 09, 2024 5:40 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Supposedly fixed in 7.15beta6. There is also a workaround if you modify the logging rules to numb down those messages but in my book these shouldn't even be displayed (it's debug, not info) I was thinking the same, this does not even need to be in the log. I disabled Wireguard logging with !wiregua...
by dcavni
Sat Mar 09, 2024 5:23 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

In latest version on 5009 log is full of this messages: back-to-home-vpn: QXJZkH4qn5A***************************=: Handshake for peer did not complete after 5 seconds, retrying (try 2) and after some time Handshake for peer did not complete after 20 attempts, giving up, but it keeps on populating th...
by dcavni
Wed Feb 07, 2024 1:59 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Ok, thanks for clarification Normis. I thought that i simply became extremly stupid in the meantime because i couldn't find this option anywhere.
by dcavni
Wed Feb 07, 2024 1:57 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

It's 7.13.2. Is this only available in beta?
by dcavni
Wed Feb 07, 2024 1:52 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Where? Maybe i should try to delete this BTH profile for device again and start over. It helped last time, when options ware missing.

Edit: Nope i tried and i still don't see this option. 5009 is on 7.13.2

Image
by dcavni
Wed Feb 07, 2024 1:43 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

There is no option to add a checkmark.

Image
by dcavni
Wed Feb 07, 2024 1:07 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Not sure how the "back-to-home-lan-restricted-peers" address-list in firewall gets populated actually. This is a new feature, when you have your own BTH connection, you can make a shared connection for your friend. For this friend you can add a checkbox in the app, that only allows the fr...
by dcavni
Wed Jan 10, 2024 8:53 am
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

That is a nice possibility.
by dcavni
Tue Jan 09, 2024 2:03 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Winbox port is only needed for BTH aplication, that it can access the router and configure everything. Just like Winbox Android app does, but there you can specify port to connect to. All other traffic has nothing to do with this port afterwards.
by dcavni
Mon Jan 08, 2024 5:29 pm
Forum: Wireless Networking
Topic: Solving 20km wireless link issues
Replies: 147
Views: 220574

Re: Solving 20km wireless link issues

Since this is already on top i'm just gona use this topic. Did anyone try to make Wireless bridge on 10 km range? Today i had i bit of spare time and i tried to connect to LHG XL 52 AC that i have at home with SxtSQ 5 AC from a hill 10 km away. Best signal i got while moving both antennas was -96 an...
by dcavni
Thu Jan 04, 2024 6:12 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

dcavni you seem to have a very customised device. BTH is for people that don't want to configure their devices manually at all. So BTH works best with default config. If you are able to change ports and such things, you can create BTH setup manually too :D Not realy so much for customisation as for...
by dcavni
Thu Jan 04, 2024 1:36 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Pull up create / tunnel bar and on your selected tunnel right on the side is button for sharing. On the side of the tunnel selection bar i only have three dots, and if i press them it opens up tunnel settings. I don't see anything else. https://www.dropbox.com/scl/fi/ip5l8w57j5llvxs1hqtp8/Screensho...
by dcavni
Thu Jan 04, 2024 1:25 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

It is almost same, but you need to download the Wireguard app in your computer. 1) set up BTH via phone, just like normal 2) in BTH app click the Share button 3) Choose Wireguard config file option and send the file to your computer (iPhone to Macbook is the easiest, just AirDrop the file) 4) Open ...
by dcavni
Sat Dec 23, 2023 3:33 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

There are no loyalty problems. The one who knows why Mikrotik will use it no matter what. Those are already quite old devices but they still tried and offered us solution for them to achieve much better Wifi speeds then before. I had zero problems for now on all devices, Hap Ac² (5 devices), Ac³, Wa...
by dcavni
Fri Dec 22, 2023 11:40 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

Not realy sure what you mean with LTE not working and device Huawei. Maybe i misunderstood something.
by dcavni
Fri Dec 22, 2023 10:51 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

Cap AC is an ARM device, so you can use qcom ac driver on it and use only new Capsman. But there will be some adjustments needed considering VLANs.
by dcavni
Fri Dec 22, 2023 8:41 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

It looks like you will need to netinstall it. You have 2,5 MB of space and qcom ac driver is arround 2,9 MB. Interesting, that there are such differences between the same devices.
by dcavni
Fri Dec 22, 2023 8:17 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

my LTE doesn't work since i upgraded to 7.13.

It was working perfectly fine on previous versions
Device?
by dcavni
Fri Dec 22, 2023 8:17 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

Try to remove some files if you have them. My 3 hap ac2 all upgraded without problems. Also Wap AC and AC3.
by dcavni
Wed Dec 20, 2023 2:34 pm
Forum: Scripting
Topic: Delay start of the adguard container
Replies: 0
Views: 1024

Delay start of the adguard container

I'm running adguard container on 5009. The problem is, that when we have power loss (and that happens quite often) adguard doesn't load properly after power restore and i must reboot the 5009 once more. I'm guessing this happens because 5009 boots faster than modem gets back fiber connection and in ...
by dcavni
Wed Dec 20, 2023 1:24 pm
Forum: Wireless Networking
Topic: CAPsMAN to CAPsMAN 2 [SOLVED]
Replies: 6
Views: 2187

Re: CAPsMAN to CAPsMAN 2 [SOLVED]

I made it like that and it also works IOTBridge on Capsman device VLAN30 on SFP port that goes to switch and then to CAPs and this VLAN30 also added as port on IOTBridge Then on CAPs i have: /interface bridge add admin-mac=XX:XX:XX:XX:XX:XX auto-mac=no comment=defconf name=bridge \ port-cost-mode=sh...
by dcavni
Tue Dec 19, 2023 6:14 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Ok, i see it now, it just appeared. Thank you.
by dcavni
Tue Dec 19, 2023 3:38 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

It's not on MIPS devices.
by dcavni
Sun Dec 17, 2023 12:04 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

What is the last Android app version?
by dcavni
Sun Dec 17, 2023 10:26 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

It does not work with Zerotier on Hap Ac2. To little storage for qcom and zerotier together.

I think it's missing around 300 - 500 kB of space.
by dcavni
Sat Dec 16, 2023 5:34 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

Yup, already in beta versions. Tested it as well. I know it's a guessing game, but I cannot find what seems to be the problem. I have 2 pairs of PtP link, similar setup (apart for SSID names etc). Both pairs were on 6.49.11. I've upgraded both pairs to 7.12.1 and both were working. Now I upgraded o...
by dcavni
Sat Dec 16, 2023 4:53 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

Upgraded two LHG XL52 ac (PtP setup), settings were intact, no issue with signal (-42), devices register themselves on one another (both 2GHz and 5GHz), but can't see other LHG via Winbox. Any clues ? EDIT: on 7.12.1 was working perfectly. Are you using the new wifi package? If yes, it does not sup...
by dcavni
Sat Dec 16, 2023 4:18 pm
Forum: Announcements
Topic: NEW FEATURE: Back to Home VPN
Replies: 292
Views: 225953

Re: NEW FEATURE: Back to Home VPN

Does hole punching and relay server works if you use ordinary Wireguard app? Every time i try to connect with wireguard to device behind NAT, there is no incoming traffic. If i use BTH it works perfectly.

Also, somehow i don't get any updates to the app, what is the last version?
by dcavni
Sat Dec 16, 2023 10:10 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257690

Re: v7.13 [stable] is released!

By the way, is there likely benefit for PtP link between 2 LHG XL 52ac, to go from 6.49.11 to 7.13, considering wifiwave 2 is available now ?
Tried LHG52 with new drivers and it goes up to 600 Mbps, but that was between LHG52 and a mobile phone. I must buy something to try station bridge mode.
by dcavni
Sun Nov 26, 2023 12:23 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

Nope. Only as of 7.13b this should be possible. Thank you for answer. I will just leave all CAPS on 7.13 and install 7.12.1 with Wave2 package back on 5009. So i will get speed of Wave2 drivers and stability of 7.12.1 :) Now i only must remove remaining old MIPS and SMIPS devices from network and e...
by dcavni
Sun Nov 26, 2023 10:42 am
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

Just one quick question. Can i run both Capsmans on 7.12 on 5009? I'm having some problems with 7.13 b2.
by dcavni
Thu Nov 23, 2023 11:37 am
Forum: Wireless Networking
Topic: Can someone tell me how to make a Capsman guest network with new drivers? AX and AC devices
Replies: 4
Views: 1755

Re: Can someone tell me how to make a Capsman guest network with new drivers? AX and AC devices

Yes, guest network is the only slave interface. So i should create separate bridge on each of the CAP devices in then add it to slaves-datapath? Could you elaborate this part a bit more? "Afterwards add them to your vlan-filtering bridge on each CAP manually." Should i just enable VLAN fil...
by dcavni
Wed Nov 22, 2023 6:56 pm
Forum: Wireless Networking
Topic: Can someone tell me how to make a Capsman guest network with new drivers? AX and AC devices
Replies: 4
Views: 1755

Can someone tell me how to make a Capsman guest network with new drivers? AX and AC devices

As i understand from the video i need to set the correct datapath profile in the slaves datapath section of the CAP menu? But how do i do that? In datapath menu on CAP i can only select default bridge. Do i need to create a separate bridge and a VLAN on every CAP device for this to work? I looked at...
by dcavni
Tue Nov 21, 2023 7:06 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

So, the only way to separate guest traffic from main wifi is by using VLAN on bridge where capsman is running?
by dcavni
Tue Nov 21, 2023 4:57 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

I have static interfaces created directly under Wifi menu, i don't use provisioning because somehow i cannot separate devices by their capability (supported bands don't apply) so i then get SSID of 2 Ghz network on 5 Ghz interface.
by dcavni
Tue Nov 21, 2023 4:43 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

I'm having similar problem. Main 2.4 and 5 Ghz Interface get configuration from Capsman server automaticly but i also created seperate IOT Wifi with 2,4 Ghz interface as Master and i add it manualy to bridge on CAP. The problem is, that when i reboot Capsman server this interface disappears (because...
by dcavni
Tue Nov 21, 2023 1:34 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

I have one older WapAC, that is on MIPSBE architecture. If i see correctly there is no Wave2 drivers in 7.13beta2 for this device even if it has AC Wifi?
by dcavni
Fri Nov 17, 2023 7:23 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

On AC2 you can only have 1 of the packeges installed. After upgrade wifi still works normaly. Then you delete wireless package and install new driver for ac chipset that will give you Wave 2 driver. It supports both interfaces, 2,4 and 5 Ghz. Speeds are much better.
by dcavni
Thu Nov 16, 2023 9:05 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

Duplicate Channel option under Wifi when using Capsman. It switches between both.
by dcavni
Thu Nov 16, 2023 3:22 pm
Forum: Wireless Networking
Topic: CAPsMAN with guest (IOT) network without VLANs
Replies: 0
Views: 1745

CAPsMAN with guest (IOT) network without VLANs

I have two bridges configured on 5009. One for main network and one for guest or IOT devices. I only have 2 rules in place in IP/Firewall, to drop all acess between those two bridges (forward chain). Is that a correct way of doing it if i don't want to use VLANs? I'm not experienced in VLANs and i r...
by dcavni
Wed Nov 15, 2023 10:30 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

Not realy sure if i became stupid or i don't understand something. ... What am i doing wrong? If i upload old Wireless package back again, it installs normaly and i can see my Wifi interfaces. Probably not enough space for the new wifi package ? Export config Netinstall Import config Found the reas...
by dcavni
Wed Nov 15, 2023 7:05 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88857

Re: v7.13beta [testing] is released!

Not realy sure if i became stupid or i don't understand something. So for testing purposes i updated my old Hap Ac2 that serves as CAP. After update i deleted wireless package, made a reboot (wireless package not present anymore) and everything is ok, till now. After reboot i placed wifi-qcom-ac-7.1...
by dcavni
Sat Nov 11, 2023 6:55 pm
Forum: RouterBOARD hardware
Topic: RB5009 power IN voltage range
Replies: 10
Views: 7129

Re: RB5009 power IN voltage range

I will probably just use DDR-30L-12 from Mean Well, that should work at 89% efficiency. Then i can just supply 24V from DR-UPS20 directly to RB5009 and CapAX through POE injector and just use this aditional DDR only for Modem. I think 30 W will be more than enough for modem. Two decent 12V batteries...
by dcavni
Sat Nov 11, 2023 4:25 pm
Forum: RouterBOARD hardware
Topic: RB5009 power IN voltage range
Replies: 10
Views: 7129

Re: RB5009 power IN voltage range

Same question, still no definitive answer. I'm trying to make some small UPS based on Lead Acid batteries to keep the RB5009, modem and one AP online when the power goes out (happened too many times this year). The problem is, that modem and AP use 12V and RB5009 uses 24 volts. So what would be the ...
by dcavni
Mon Nov 06, 2023 2:37 pm
Forum: Containers
Topic: Containers won't start after power loss
Replies: 0
Views: 2895

Containers won't start after power loss

I'm having some problems with Adguard container (there is also udpxy container but for that one it's not a problem if it won't start until i reboot manualy). Without Adguard DNS isn't working, so practicly nothing is working until i reboot. We are having quite some power losses this year because of ...
by dcavni
Sat Oct 28, 2023 2:20 pm
Forum: RouterBOARD hardware
Topic: RB5009UPr+S+ SFP module not working
Replies: 19
Views: 7370

Re: RB5009UPr+S+ SFP module not working

I'm using Mikrotik's DAC cable to connect from 5009 to 24 port Zyxel switch at 1 Gbps (ports on Zyxel are only 1 Gbit). 39 days uptime and zero disconnects.

Not sure if this information is helping you in any way.

https://mikrotik.com/product/xs_da0001
by dcavni
Sat Aug 12, 2023 9:21 pm
Forum: RouterBOARD hardware
Topic: New hAP ax lite LTE
Replies: 199
Views: 25828

Re: New hAP ax lite LTE

I think it's soldered. You can find one disasembly of Hap Ax lite on YT and there you will see, that there is a space for soldered modem. It probably can be replaced if you are realy good at soldering, but i realy don't see a reason.
by dcavni
Wed Aug 09, 2023 1:21 pm
Forum: RouterBOARD hardware
Topic: New hAP ax lite LTE
Replies: 199
Views: 25828

Re: New hAP ax lite LTE

Getic still has them in stock. Already waiting for mine to see comparrison against B535.
by dcavni
Wed Aug 02, 2023 7:23 pm
Forum: Beginner Basics
Topic: Bridging VPN Network to physical port
Replies: 6
Views: 1157

Re: Bridging VPN Network to physical port

I think it should work. I have EOIP configured on a L2TP connection, because on the othere side there is PPPoE connection with changing IPs. I think that there is no problem if device is configured as switch as long as it have internet connectivity. You can take switch port out of bridge and add it ...
by dcavni
Wed Aug 02, 2023 1:12 pm
Forum: Beginner Basics
Topic: Bridging VPN Network to physical port
Replies: 6
Views: 1157

Re: Bridging VPN Network to physical port

No, server must also be Mikrotik device. It's their protocol.

Maybe someone else will have an idea how to implement this if possible.
by dcavni
Wed Aug 02, 2023 12:41 pm
Forum: Beginner Basics
Topic: Bridging VPN Network to physical port
Replies: 6
Views: 1157

Re: Bridging VPN Network to physical port

What you are searching is EOIP. I'm using it to transfer a complete VLAN with Multicast IPTV to another location. Works perfectly.

https://help.mikrotik.com/docs/display/ROS/EoIP
by dcavni
Sun Jul 30, 2023 4:50 pm
Forum: RouterBOARD hardware
Topic: Any 60 Ghz long range (4km+) in development?
Replies: 0
Views: 2606

Any 60 Ghz long range (4km+) in development?

Hi, Does Mikrotik plan to develop any long range 60 Ghz devices? In long range i mean 4km+. Curently i'm using two Nanobeams from UI, that perform quite well on a 3,4 km link, but for upgrade i was thinking of installing Mikrotik device but cannot find anything, that would work at such distance. Kin...
by dcavni
Fri Jul 28, 2023 12:07 pm
Forum: Announcements
Topic: Click here
Replies: 35
Views: 9510

Re: Click here

Nice one Normis :)
by dcavni
Fri Jul 14, 2023 1:05 pm
Forum: General
Topic: Container/Docker -Adguard/Pihole For REAL.
Replies: 34
Views: 9516

Re: Container/Docker -Adguard/Pihole For REAL.

Question... I'm using Adguard in a Container (adguard/adguardhome:v0.108.0-b.25) Everything works fine, except when i lose power for a second (storms) on the 5009 (and also on modem) where Containers are running. Then, for some reason Adguard Would not start after power is restored. I get bunch of e...
by dcavni
Fri Jul 07, 2023 5:18 pm
Forum: Wireless Networking
Topic: Wireless Bridge as a trunk link
Replies: 3
Views: 1463

Re: Wireless Bridge as a trunk link

I have a site where i used 2 SXTsq Lite5 then in the middle there is a Ubiqity passive POE switch, and then again 2 SXTsq Lite5 (no LOS situation). On one end i have Hap AC2 where i have created 9 VLANs and on the other end there is CRS326-24G-2S+IN that has 2 ports for each VLAN configured (apartme...
by dcavni
Wed Jun 14, 2023 12:09 pm
Forum: RouterBOARD hardware
Topic: Is there any plan for cheaper 5G devices?
Replies: 5
Views: 3842

Re: Is there any plan for cheaper 5G devices?

I guess we will have to wait and see if some "5G travel" option comes up . Hoping for the best :)
by dcavni
Sun Jun 11, 2023 3:23 pm
Forum: RouterBOARD hardware
Topic: Is there any plan for cheaper 5G devices?
Replies: 5
Views: 3842

Is there any plan for cheaper 5G devices?

I know that 5G costs a lot of money now that it deploys but in the long term, is there a chance, that you will announce any cheaper 5G devices? Chateau is quite over the price range for me personaly. I can see some other vendors offering 5G devices arround 300 EURos but they lack Mikrotik configurab...
by dcavni
Thu May 11, 2023 4:39 pm
Forum: Wireless Networking
Topic: LTE - Somewhat controversial technical solution
Replies: 2
Views: 1148

Re: LTE - Somewhat controversial technical solution

I think this could be achiavable but not completly sure about the speed. Please see the attached videos for options. Maybe you can lock the device to one base station. https://www.youtube.com/watch?v=pRD0rzAiGxg https://www.youtube.com/watch?v=Cv9yyW2IqRs Another option is a WiFi connection with two...
by dcavni
Sun May 07, 2023 1:47 pm
Forum: Wireless Networking
Topic: hAP ax2 wifi not detected [SOLVED]
Replies: 3
Views: 3283

Re: hAP ax2 wifi not detected [SOLVED]

Try to update RouterOS and then Firmware. If this won't help send it back and get anoter one.
by dcavni
Sun Feb 12, 2023 1:51 am
Forum: RouterBOARD hardware
Topic: Know if the product is new - rb5009 [SOLVED]
Replies: 13
Views: 3168

Re: Know if the product is new - rb5009 [SOLVED]

As i read, it's the encryption problem, because RPI CPU doesn't support encryption(not realy sure if that is real reason). It simply won't DL faster than that.

For DNS everything works, i'm realy satisfied with 5009 performance in that aspect.
by dcavni
Sun Feb 12, 2023 12:57 am
Forum: RouterBOARD hardware
Topic: Know if the product is new - rb5009 [SOLVED]
Replies: 13
Views: 3168

Re: Know if the product is new - rb5009 [SOLVED]

A humble Pi4 is really having problems running transmission and an SSD drive more than 20 MB/s when downloading on a gigabit line.

Well i guess it will realy have to be something more powerful in the end. At least i got AdGuard with Unbound working and it behaves perfectly.
by dcavni
Fri Feb 10, 2023 12:46 pm
Forum: RouterBOARD hardware
Topic: Know if the product is new - rb5009 [SOLVED]
Replies: 13
Views: 3168

Re: Know if the product is new - rb5009 [SOLVED]

5009 really is a great device. I just wish it had at least 2 if not even 4 GB of RAM. I added Unbound with Adguard with 890.000 adresses to block and i only have 400 MiB of RAM left. Not sure if i can add transmission on top of that without causing problems.
by dcavni
Mon Jan 23, 2023 3:59 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 73232

Re: v7.8beta [testing] is released!

Not realy sure. When i tested this with PING from my phone i moved from one AP to another and PING didn't drop inbetween. But sometimes i notice, that phone doesn't switch to another AP when it should. Especialy this is noticable when doing WiFi calling and call drops.
by dcavni
Mon Jan 23, 2023 3:46 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 73232

Re: v7.8beta [testing] is released!

I know that, but in this case, phones won't seamlessly switch from one device to another.
by dcavni
Mon Jan 23, 2023 3:39 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 73232

Re: v7.8beta [testing] is released!

That's a bit sad, since i have 6 non Wave 2 devices and two Wave 2 (AC3), that will now be replaced by RB5009 and left as an AP. So no way to put them on the same network. It is what it is.
by dcavni
Mon Jan 23, 2023 3:29 pm
Forum: Announcements
Topic: v7.8beta [testing] is released!
Replies: 307
Views: 73232

Re: v7.8beta [testing] is released!

Can Wave 2 CAPSMAN also control non Wave2 Wifi interfaces (devices)?
by dcavni
Sat Dec 17, 2022 12:58 pm
Forum: Announcements
Topic: v7.6 [stable] is released!
Replies: 279
Views: 142548

Re: v7.6 [stable] is released!

I'm getting "router was rebooted without proper shutdown by watchdog timer" and "kernel failure in previous boot" on AC3 (7.6) almost every night in the middle of the night usualy between 1 and 3 PM. What could be causing this? I'm also using adguard container on this device, so ...
by dcavni
Wed Dec 14, 2022 6:35 pm
Forum: Wireless Networking
Topic: hAP ax2 randomly drops WiFi SSIDs (both 2,4 and 5Ghz)
Replies: 130
Views: 25448

Re: hAP ax2 randomly drops WiFi SSIDs (both 2,4 and 5Ghz)

Is this limited to AX2? Because i have Capsman controlled network (Capsman on my main router, version 7.6, AC3) and i noticed few times, in the middle of the night, that i completly lost acess to all Wireless networks. They ware simply gone. I powered computer up at 2 AM and tried to connect to AC3 ...
by dcavni
Thu Nov 17, 2022 1:54 pm
Forum: General
Topic: How to configure a network with VLANs, apartment building
Replies: 2
Views: 719

Re: How to configure a network with VLANs, apartment building

have you already referenced the official resources ? if so what specifically do you need help with? Yes, i looked at those. In the meantime i somehow managed to separate ports into VLANs in Bridge - VLAN, so that ether1 and SFP2 are uplink ports, and then VLAN90 for ether 24,23, VLAN80 for ether 22...
by dcavni
Sun Nov 06, 2022 10:12 pm
Forum: General
Topic: How to configure a network with VLANs, apartment building
Replies: 2
Views: 719

How to configure a network with VLANs, apartment building

So, i got this task, that seems a bit over my head, since i'm not used to work with VLANs, but there is always a chance to learn something new. I'm helping a friend that build a house with 8 apartments and the main space, so totaly 9. Each of those apartments has 4 LAN sockets and all the cables end...
by dcavni
Tue Nov 01, 2022 1:36 pm
Forum: General
Topic: How to secure BtestServer?
Replies: 5
Views: 588

Re: How to secure BtestServer?

extremely basic /ip firewall filter #===accept=== add action=accept chain=input dst-port=2000-2100 protocol=udp src-address-list=lan add action=accept chain=input dst-port=2000-2100 protocol=tcp src-address-list=lan #===drop=== add action=drop chain=input dst-port=2000-2100 protocol=tcp add action=...
by dcavni
Tue Nov 01, 2022 8:08 am
Forum: General
Topic: How to secure BtestServer?
Replies: 5
Views: 588

Re: How to secure BtestServer?

with this two rule you destroy all firewall security
I know that, that is why i'm asking. I will try the rules above.
by dcavni
Mon Oct 31, 2022 4:44 pm
Forum: General
Topic: How to secure BtestServer?
Replies: 5
Views: 588

How to secure BtestServer?

Hi, Is there any way to secure BtestServer running on Mikrotik so it can be acessed without general rules: add action=accept chain=input comment="BTEST " protocol=tcp add action=accept chain=input comment="BTEST " protocol=udp Without those rules firewall on device doesn't allow ...
by dcavni
Sun Oct 30, 2022 7:25 pm
Forum: General
Topic: Acess to a device with a different IP adress than main router through VPN
Replies: 6
Views: 910

Re: Acess to a device with a different IP adress than main router through VPN

No, nothing worked. Friend went down there on vacation now and reset both antennas. Then we started from no configuration, added bridge, ports and dhcp client on bridge, set Wireless bridge and everything works now without any problem, also from remote. Thank you for all help.
by dcavni
Thu Oct 27, 2022 12:27 pm
Forum: General
Topic: Acess to a device with a different IP adress than main router through VPN
Replies: 6
Views: 910

Re: Acess to a device with a different IP adress than main router through VPN

Yes, as soon as i enable masquarade, ping to the adress 192.168.95.1 works. But i still cannot connect to that ip, not from computer, not from Mikrotik's internal Telnet, Mac Telnet, SSH,nothing works. At the end of the week, friend will go there and check this directly on site, maybe he can connect...
by dcavni
Wed Oct 26, 2022 6:31 pm
Forum: General
Topic: Acess to a device with a different IP adress than main router through VPN
Replies: 6
Views: 910

Re: Acess to a device with a different IP adress than main router through VPN

Ok, i tried with this on Mikrotik, that has antenna connected to ether2 /ip firewall nat add chain=dstnat dst-address=192.168.80.1 protocol=tcp dst-port=80 action=dst-nat to-addresses=192.168.95.1 add chain=srcnat dst-address=192.168.95.1 action=masquerade but nothing changes. Only difference is, th...
by dcavni
Wed Oct 26, 2022 5:09 pm
Forum: General
Topic: Acess to a device with a different IP adress than main router through VPN
Replies: 6
Views: 910

Acess to a device with a different IP adress than main router through VPN

So, i'm having a situation that i try to solve remotely for a friend. They have a vacation house with Mikrotik router, that is connecting to the internet through mobile network using Huawei 4G modem on eth1. On eth2 there are two sxtsq5 AC in bridge mode to another Mikrotik at the neighbour. Almost ...
by dcavni
Tue May 17, 2022 1:17 pm
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: Problems with L2TP VPN with Mangle rules [SOLVED]

OK, i found the solution here: https://forum.mikrotik.com/viewtopic.php?t=161158 It's the anwer from Sindy: The thing is that if a packet has got a routing-mark, and a route whose dst-address matches the packet's destination address and whose routing-mark matches the one attached to the packet exist...
by dcavni
Tue May 17, 2022 11:36 am
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: Problems with L2TP VPN with Mangle rules [SOLVED]

Yes, this works. Specialy this Tadej route you mentioned is only used to take one request from one device on my network through the VPN. Here DNS isn't used, because this adress is already in adress list with the name and IP. Problem is with all the others, Janko, Koroska, Sejanci etc. On Sejanci L2...
by dcavni
Mon May 16, 2022 12:52 pm
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: v7.2.2 [stable] and v7.2.3 [stable] are released! [SOLVED]

As your issue isn't release related, but a bad config, please open another topic with your issue where you'll be attaching a sanitized export of your config(s).
Done.
by dcavni
Mon May 16, 2022 12:45 pm
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Problems with L2TP VPN with Mangle rules [SOLVED]

Hi, For testing purposes i use L2TP connection between two Mikrotik devices and then Mangle rules, to only select one client, that must use internet acess through VPN. For quite some time this worked pretty well. Now when i checked it has stopped working. As soon as i enable Mangle rule i loose conn...
by dcavni
Mon May 16, 2022 12:05 am
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: v7.2.2 [stable] and v7.2.3 [stable] are released! [SOLVED]

As much as i could find out is, that as soon as i turn on mangle rule for a client to use a specific VPN, this client looses connection to my own network with DNS on my router. And because there is no such DNS server in remote network everything stops working. Any ideas?
by dcavni
Sun May 15, 2022 7:30 pm
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: v7.2.2 [stable] and v7.2.3 [stable] are released! [SOLVED]

No, i have Mangle rule, that marks all PPP connections and then i exclude them in fasttrack rule. It's the same if i disable fasttrack. The strange thing is, that everything worked maybe a month or two back. Now, as soon as i enable mangle rule to send some client through the VPN i loose connection ...
by dcavni
Sun May 15, 2022 6:29 pm
Forum: General
Topic: Problems with L2TP VPN with Mangle rules [SOLVED]
Replies: 9
Views: 2499

Re: v7.2.2 [stable] and v7.2.3 [stable] are released! [SOLVED]

Hi, For testing purposes i use L2TP connection to other Mikrotik and then Mangle rules, to only select one client, that must use internet acess through VPN. For quite some time this worked pretty well. Now when i checked it has stopped working. As soon as i enable mangle rule i loose connection to m...
by dcavni
Sat Apr 23, 2022 6:46 pm
Forum: Scripting
Topic: Scrip for relase/renew IP DHCP Client
Replies: 22
Views: 42511

Re: Scrip for relase/renew IP DHCP Client

Do it correctly, this do not need to specific the interface. :if ([/ping 1.1.1.1 count=10] = 0) do={/ip dhcp-client release [find]} Do not execute ping too often, or you risk to be putted sooner or later on blacklist... Ok, now i set this: :if ([/ping 1.1.1.1 count=5] = 0) do={/ip dhcp-client relea...
by dcavni
Sat Apr 23, 2022 5:20 pm
Forum: Scripting
Topic: Scrip for relase/renew IP DHCP Client
Replies: 22
Views: 42511

Re: Scrip for relase/renew IP DHCP Client

Ok, thank you very much for help. Will do it as soon as i get to computer.
by dcavni
Sat Apr 23, 2022 5:15 pm
Forum: Scripting
Topic: Scrip for relase/renew IP DHCP Client
Replies: 22
Views: 42511

Re: Scrip for relase/renew IP DHCP Client

Try this friend


:if condition=([/ping 1.1.1.1  count=6] =0) do={/ip dhcp-client release [ find interface ="ether1"]}

I hope it helps you



EL DONCITO.
Please only tell me, where should i put this script?
by dcavni
Sat Apr 23, 2022 4:55 pm
Forum: Scripting
Topic: Scrip for relase/renew IP DHCP Client
Replies: 22
Views: 42511

Re: Scrip for relase/renew IP DHCP Client

Can you please give me a bit more detailed instruction where to put the script? I'm completly new at scripts. I also looked at netwatch, can this be used in any way?
by dcavni
Sat Apr 23, 2022 4:43 pm
Forum: Scripting
Topic: Scrip for relase/renew IP DHCP Client
Replies: 22
Views: 42511

Re: Scrip for relase/renew IP DHCP Client

this script :if ( [/ping 8.8.8.8 interface=wan count=6 ] = 0 ) do={/ip dhcp-client renew wan} and scheduler for the script with interval 5 min Let me bring this old topic up a bit. I have the same problem on one cable modem. If you restart the modem, Mikrotik doesn't let go of the WAN DHCP IP and t...
by dcavni
Mon Feb 28, 2022 11:06 am
Forum: Wireless Networking
Topic: [SOLVED] => [wifiwave2] for cAP ac, hAP ac2
Replies: 85
Views: 47194

Re: [wifiwave2] for cAP ac, hAP ac2

I tried yesterday with Note 10+ I disabled all other networks in 2 Ghz range and tested the speed. It was arround 70 Mbit/s with connection rate 144 Mbit. So possibly, that the phone doesn't support 40 Mhz on 2.4 Ghz. Also, what is the best option for 20/40? Only 20/40 or option with EC, CE, or XX? ...
by dcavni
Mon Feb 28, 2022 1:39 am
Forum: Wireless Networking
Topic: [SOLVED] => [wifiwave2] for cAP ac, hAP ac2
Replies: 85
Views: 47194

Re: [wifiwave2] for cAP ac, hAP ac2

Ok, thank you for confirmation :)
by dcavni
Sun Feb 27, 2022 11:48 pm
Forum: Wireless Networking
Topic: [SOLVED] => [wifiwave2] for cAP ac, hAP ac2
Replies: 85
Views: 47194

Re: [wifiwave2] for cAP ac, hAP ac2

Already did this. But still speed on the 2 Ghz interface is realy quite low. I have 2 Hap Ac3 routers. The one with regular Wifi driver and CAPSMAN achieves arround 45 Mbit/s near router on 2 Ghz and arround 240 Mbit/s on 5 Ghz. And the other with Wave2 packega achieves around 70 Mbit/s on 2 Ghz and...
by dcavni
Sun Feb 27, 2022 11:35 pm
Forum: Wireless Networking
Topic: [SOLVED] => [wifiwave2] for cAP ac, hAP ac2
Replies: 85
Views: 47194

Re: [wifiwave2] for cAP ac, hAP ac2

So... How to actualy achieve this With Hap Ac3? According to https://help.mikrotik.com/docs/display/ROS/WifiWave2 "400Mb/s maximum data rate in the 2.4GHz band for IPQ4019 interfaces" is possible. Because on 5 Ghz i get 600 Mbit/s and on 2.4 Ghz i can only get arround 60 Mbit/s and this is...
by dcavni
Mon Feb 07, 2022 3:12 pm
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 161681

Re: v7.1rc3 adds Docker (TM) compatible container support

Any news about Container function? I would like to add Pihole directly to Mikrotik, because now i have to run 2 RPIs for that because one of them tends to fail from time to time and i don't wan't to use public DNS servers as backup in Mikrotik because then from time to time, some ads get through.
by dcavni
Tue Jan 18, 2022 7:44 pm
Forum: Forwarding Protocols
Topic: UDPXY alternative for mikrotik
Replies: 14
Views: 11474

Re: UDPXY alternative for mikrotik

I know that. I would change it to Unicast before with UDPXY.
by dcavni
Tue Jan 18, 2022 5:47 pm
Forum: Forwarding Protocols
Topic: UDPXY alternative for mikrotik
Replies: 14
Views: 11474

Re: UDPXY alternative for mikrotik

I'm already using it. But still it would be easier in some cases, to just convert Multicast to Unicast, to send it over WiFi or over internet.
by dcavni
Tue Jan 18, 2022 12:18 am
Forum: Forwarding Protocols
Topic: UDPXY alternative for mikrotik
Replies: 14
Views: 11474

Re: UDPXY alternative for mikrotik

We will probaby never see that alive. Maybe with the new Container function, when it starts to work, that would be possible.
by dcavni
Sun Jan 02, 2022 5:25 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

Hi y'all, I'm getting an error message trying to configure Zerotier on RB4011, running 7.1.1; I have two other clients in the pool which work well - an iPhone and RB5009. I have the new interface enabled online. I upgraded the RB4011 from 6.48.4 to 7.1.1 and after completing the Zerotier installati...
by dcavni
Fri Dec 24, 2021 6:22 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

Fair question. Bridging the ZT interface be fine, to get you the LAN on your phone from anywhere. But the phone using ZT as its default route, that take CLIENT settings in the app. Dunno the specific android client settings for ZT, but you'd want to look at the "Send All Traffic" and/or &...
by dcavni
Fri Dec 17, 2021 10:11 pm
Forum: General
Topic: Wave2 Wifi Hardware
Replies: 16
Views: 3620

Re: Wave2 Wifi Hardware

Well, that's a bit shame. Was planning to buy one for long time use as outside AP but if that is the case i will rather buy something less powerfull for now.
by dcavni
Fri Dec 17, 2021 7:08 pm
Forum: General
Topic: Wave2 Wifi Hardware
Replies: 16
Views: 3620

Re: Wave2 Wifi Hardware

Any chance that Wave2 package would work on mANTBox 52 15s? It has enough ram, but storage space is a bit tiny, only 16MB.
by dcavni
Fri Dec 17, 2021 12:12 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

Everyone who uses Zerotier on Mikrotik, can you acces devices in ZT network from your LAN devices on 7.1? Somehow i can't seem to manage to get this to work. I can ping ZT network from Mikrotik but only in i don't select interface. If i select bridge as interface, ping stops working. What am i missi...
by dcavni
Thu Dec 16, 2021 3:21 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

As skylark told you, this is considered as normal for now. What problems to you have with traffic?
by dcavni
Thu Dec 16, 2021 3:15 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

I know that. This is normal since there is no support for zerotier in winbox yet. If you check firewall rules in terminal they should be correct. In Winbox you see "unknown".
by dcavni
Thu Dec 16, 2021 2:18 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

I don't know if i'm being stupid, but somehow my acess to zerotier network from my LAN devices doesn't work anymore. It worked before, so i'm not sure if it's caused by the upgrade to 7.1 stable or something else. Everything is set by the manual, there are two firewall rules ZT in firewall and an ad...
by dcavni
Thu Dec 09, 2021 10:15 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 224874

Re: v7.1 is released!

Image



If i can just borrow that picture from another user... In version 6, while adding Route you had a drop down menu to select Gateway. Now in version 7 you must enter it manualy. Is this considered normal behaviour?
by dcavni
Sun Dec 05, 2021 10:04 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

That doesn't realy change anything. So you actualy wan't to use Mikrotik as just another device on your network, no routing functions or anything?
by dcavni
Sun Dec 05, 2021 9:25 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

Well, from the data you provided it seem's that you have a double NAT configuration. Your modem already work's as a router and it provides your Mikrotik with internal IP adress (not public IP). Usualy this isn't realy desired situation. Also, where is your current DHCP server for LAN network?
by dcavni
Tue Nov 30, 2021 11:41 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

I'm using it to get to zerotier network from my home network. You would probably like exactly the opposite, to get to internal network from the zerotier? I don't know exactly how to set this up.
by dcavni
Tue Nov 30, 2021 8:00 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

I'm using it like that if i understood you correctly. I have ZT instance running on one of the acess points in the network and this gives me acces to my whole ZT network through it.
by dcavni
Fri Nov 26, 2021 1:48 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

You should realy start here: https://www.zerotier.com/

It work's ok and it's safe.
by dcavni
Sun Nov 07, 2021 3:08 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 309628

Re: ZeroTier added to RouterOS v7.1rc2

Is the fact, that i can see zerotier1 interface only in CLI and not in Winbox and that adding firewall rules shows "unknown" under In.Interface normal? The device is Ac2 and apparently acess to device through zerotier works.
by dcavni
Tue Jan 12, 2021 6:37 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

I was thinking more in a way of full port range to one client. But it's not a problem if it isn't possible. I will probably never use it in such way anyway. Thank you again for all your help.
by dcavni
Tue Jan 12, 2021 2:10 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

Just follow the the instructions for source NAT here: https://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT#Source_NAT You have to follow the instructions on your ac2 with the out-interface being your LAN interface. This will "hide" your WireGuard clients "behind" the local IP a...
by dcavni
Mon Jan 11, 2021 11:36 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

How can i do this? I don't realy need acces to clients. Sorry for begginers questions, i'm still learning.
by dcavni
Thu Jan 07, 2021 11:28 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

Ok, mystery solved. I had to disable the drop forward invalid rule on my main router and everything started to work. So i added an exception for Wireguard IP range and now it works. The question that still remains is, why is my main router (Ac3) dropping this connections from Wireguard on (Ac2) as i...
by dcavni
Thu Jan 07, 2021 7:12 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

The issue might be that there is no route from your devices back to the WireGuard subnet (10.0.0.0/24). When a WireGuard client is sending traffic to a local device, the packets will go client -> ac2 -> local device and then the local devices will try to send an answer to the 10.0.0.0/24 network. T...
by dcavni
Wed Jan 06, 2021 1:53 am
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Re: Wireguard on Ac2 behind Ac3

Hi, Perhaps try the following. /ip firewall nat add action=masquerade chain=srcnat src-address=10.0.0.0/24 out-interface=bridge-local And probably change where the local network ip address is placed (on bridge-local rather than ether2) ** Probably not exactly this (would need to remove/disable exis...
by dcavni
Tue Jan 05, 2021 11:39 pm
Forum: RouterOS beta
Topic: Wireguard on Ac2 behind Ac3
Replies: 12
Views: 3916

Wireguard on Ac2 behind Ac3

Hi I already posted this in another older topic, but apparenly it's not visible enough. I'm having some problems with Wireguard on Hap Ac2 (7.1 beta3). I manage to get port forwarding working on my main router (Hap AC3) and now i would like to make a wireguard server on one of the CAPsMAN client (Ha...
by dcavni
Mon Jan 04, 2021 1:26 am
Forum: RouterOS beta
Topic: Wireguard not working behind internet facing router with DSTNAT v7.1beta2
Replies: 57
Views: 18631

Re: Wireguard not working behind internet facing router with DSTNAT v7.1beta2

Hi I'm having some problems with Wireguard on Hap Ac2 (7.1 beta3). I somehow manage to get port forwarding working on my main router (Hap AC3) and now i would like to make a wireguard server on one of the CAPsMAN client (HapAC2). It seems, that connection is working, since i can ping my phone's IP f...
by dcavni
Wed Dec 09, 2020 11:58 pm
Forum: Beginner Basics
Topic: HAP Ac3 5 Ghz speed problem
Replies: 7
Views: 3479

Re: HAP Ac3 5 Ghz speed problem

Ok. I tried the proposed option but no firewall rules was imported. So i did everything manualy. But i am still quite disappointed because AC2 with internal antennas gave me 200 Mbit without problem, but AC3 on the same location now gives me arround 130 Mbit. And this is with external antennas. When...
by dcavni
Wed Dec 09, 2020 8:21 pm
Forum: Beginner Basics
Topic: HAP Ac3 5 Ghz speed problem
Replies: 7
Views: 3479

Re: HAP Ac3 5 Ghz speed problem

Yes i see. So exporting configuration is not the same thing as backup? Ok, i will try this in about two hours when i get back inside. I must load backup to ac2 first because i changed some things before. Then export this configuration, reset ac3 to factory default and then import this configuration ...
by dcavni
Wed Dec 09, 2020 7:54 pm
Forum: Beginner Basics
Topic: HAP Ac3 5 Ghz speed problem
Replies: 7
Views: 3479

Re: HAP Ac3 5 Ghz speed problem

I transfered configuration with backup since devices are not so different so that seemed like a good idea. What would be the correct way to transfer all configuration, because i have quite a few rules in firewall. Version is latest on both devices. I can export wireless config after i come back in h...
by dcavni
Wed Dec 09, 2020 7:38 pm
Forum: Beginner Basics
Topic: HAP Ac3 5 Ghz speed problem
Replies: 7
Views: 3479

HAP Ac3 5 Ghz speed problem

Hi, I bought Hap Ac3 to replace Ac2, that i plan to use when traveling. I transferred all the settings that was on Ac2 5 ghz wifi to Ac3 5 ghz wifi but this thing simply don't work ok. I have 200 Mbit DL speed on 5 Ghz wifi of Ac2 (connection speed 866 Mbit). When i connect to Ac3 connection speed i...
by dcavni
Sat Dec 05, 2020 11:55 am
Forum: General
Topic: L2TP with IPSEC terminating connection exactly every 30 minutes
Replies: 7
Views: 1582

Re: L2TP with IPSEC terminating connection exactly every 30 minutes

I tried that, first with ping and tunnel survived the 30 minutes disconnection. After that i added L2TP server IP in Netwatch as suggested and it works perfectly. I already have 13 hours uptime without disconnection. Thank you for advice and all the help.
by dcavni
Fri Dec 04, 2020 4:07 pm
Forum: General
Topic: L2TP with IPSEC terminating connection exactly every 30 minutes
Replies: 7
Views: 1582

Re: L2TP with IPSEC terminating connection exactly every 30 minutes

Probably. Is there any option to generate some traffic in Mikrotik and send it through L2TP every 25 minutes? The user of the other Hap Ac² is saying that he didn't use the tunnel for 10 hours, because we only use it to authenticate one web page with the correct ip adress through mangle rules, but y...
by dcavni
Fri Dec 04, 2020 3:51 pm
Forum: General
Topic: L2TP with IPSEC terminating connection exactly every 30 minutes
Replies: 7
Views: 1582

Re: L2TP with IPSEC terminating connection exactly every 30 minutes

Thank you for the answer.

Apparently there is an idle timeout option in USG, that cannot be changed. Interesting thing is, that even keepalive packets don't help in maintaining the connection and that the other Hap Ac² has no problems with disconnections.
by dcavni
Fri Dec 04, 2020 2:27 pm
Forum: General
Topic: L2TP with IPSEC terminating connection exactly every 30 minutes
Replies: 7
Views: 1582

L2TP with IPSEC terminating connection exactly every 30 minutes

Hi I have an L2TP with IPSEC from HAP Ac2 to Ubiqiti USG L2TP server. The connection drops exactly every 30 minutes and i can't find the reason why. There is also another client from different IP adress to this server using completly the same setup (HAP Ac2, L2TP with IPSEC) and he has no problems w...
by dcavni
Fri Nov 06, 2020 7:24 pm
Forum: Wireless Networking
Topic: hap ac^2 - Group Key Exchange timeout / No Reconnect possible
Replies: 63
Views: 29526

Re: hap ac^2 - Group Key Exchange timeout / No Reconnect possible

Now here is something new...

wlan1: reject 10:44:00:51:56:56, banned (last failure - unicast key exchange timeout)

And on phone: Acces to network has been rejected.

Is this wrong password at the phone?
by dcavni
Thu Nov 05, 2020 9:38 pm
Forum: Wireless Networking
Topic: hap ac^2 - Group Key Exchange timeout / No Reconnect possible
Replies: 63
Views: 29526

Re: hap ac^2 - Group Key Exchange timeout / No Reconnect possible

I did not try that yet, because the router is 300 km from me. They usualy just pull the plug and then it works again for a day or two. There are mostly just two clients. One LG G7 phone and one Huawei phone. I also have Hap Ac2 at home and it works flawlessly so i don't realy know what could be the ...
by dcavni
Thu Nov 05, 2020 2:45 pm
Forum: Wireless Networking
Topic: hap ac^2 - Group Key Exchange timeout / No Reconnect possible
Replies: 63
Views: 29526

Re: hap ac^2 - Group Key Exchange timeout / No Reconnect possible

Anything new around this topic? I have a case of Hap AC2 with newest firmware, that has this error: wlan1: disconnected, group key exchange timeout For now i tried to enable WMM and change group key timeout to 1 hour, but i doubt this will help, phones are just stuck on Acquiering IP adress. Sometim...
by dcavni
Wed Apr 29, 2020 7:40 pm
Forum: RouterOS beta
Topic: Feature Request - Wireguard Protocol
Replies: 167
Views: 84217

Re: Feature Request - Wireguard Protocol

+1 Here also. Now i'm running wireguard on SBC behind Mikrotik.
by dcavni
Wed Jun 29, 2016 2:18 pm
Forum: General
Topic: IGMP Snooping
Replies: 134
Views: 81772

Re: IGMP Snooping

At least we know you are working on it :) 

I used cheapest 8 port TPLink smart switch for that purpose, since it has IGMP snooping. It worked as aspected, no IPTV traffic flood on Mikrotik.
by dcavni
Fri Dec 11, 2015 9:23 pm
Forum: Beginner Basics
Topic: /ip adress Adresses keep disapearing
Replies: 6
Views: 2075

Re: /ip adress Adresses keep disapearing

Thank you. Please check configuration when you will find time, to see if everything is in order. For now it seems stable. I'm guessing, that there is a chance, that those adresses get lost, when i'm changing anything on router or network. Also they get lost sometimes on Router updates and sometimes ...
by dcavni
Fri Dec 11, 2015 9:23 am
Forum: Beginner Basics
Topic: /ip adress Adresses keep disapearing
Replies: 6
Views: 2075

Re: /ip adress Adresses keep disapearing

I checked it and that option is disabled. It's also a default configuration (preset from when RB2011 was new). Should i delete that?
by dcavni
Fri Dec 11, 2015 8:19 am
Forum: Beginner Basics
Topic: /ip adress Adresses keep disapearing
Replies: 6
Views: 2075

Re: /ip adress Adresses keep disapearing

Can you tell me where is this set? In /ip address i'm using static IP 192.168.1.2 on ether1 that i can acess modem that has an IP 192.168.1.1 to check the DSL connection. Otherwise i'm using PPPoE through ether1 to get to internet. IPv6 is using DHCP client through PPPoE connection to get the IPv6 a...
by dcavni
Fri Dec 11, 2015 1:29 am
Forum: Beginner Basics
Topic: /ip adress Adresses keep disapearing
Replies: 6
Views: 2075

/ip adress Adresses keep disapearing

Hi I'm setting quite complicated (for me) settings on RB2011. Im using RB2011 as my main router and acess to internet. I have 2 bridges set, one is on 192.168.3.0 (ports from 2-5) and the other one on 192.168.4.0 on port 6. Ether1 is used for PPPoE connection to my ISP. I use this configuration to D...
by dcavni
Mon Aug 24, 2015 12:41 am
Forum: Announcements
Topic: 6.31 released
Replies: 227
Views: 78016

Re: 6.31 released

Well, i waited a few days before upgrading from 6.30, to 6.31 stupidly thinking, that everything should be ok. Well, that was a bad idea. After an upgrade RB2011 worked until i tried to manualy add adress in adress list. Then it rebooted itself and after reboot PPPoE connection didn't work anymore. ...
by dcavni
Sat Apr 25, 2015 10:23 pm
Forum: Announcements
Topic: RouterOS v6.28 released
Replies: 229
Views: 92695

Re: RouterOS v6.28 released

Every update of RouterOS kills my Ip Adress list, so i have to manualy reconfigure it. Is this a bug or a feature? Is your Address List dynamic or have a timeout? I have have an Address List of 3900 IP's (my blacklist), I have never lost it during an update. One entry is dynamic (PPPoE connection) ...
by dcavni
Fri Apr 24, 2015 11:51 pm
Forum: Announcements
Topic: RouterOS v6.28 released
Replies: 229
Views: 92695

Re: RouterOS v6.28 released

Every update of RouterOS kills my Ip Adress list, so i have to manualy reconfigure it. Is this a bug or a feature?
by dcavni
Tue Feb 24, 2015 12:25 am
Forum: General
Topic: Automatic blocking from block lists
Replies: 2
Views: 2425

Re: Automatic blocking from block lists

I solved this by using Raspberry PI as Adblocking DNS server in my network. Works perfectly. All requests for ads are returned as a blank web page.

It would be nice if Mikrotik would support something like this out of the box, since ads on internet are getting more and more annoying.
by dcavni
Thu Jan 29, 2015 12:29 pm
Forum: General
Topic: Limiting traffic for 1 IP when other devices need full conn.
Replies: 6
Views: 1880

Re: Limiting traffic for 1 IP when other devices need full c

Ok, i think that PCQ works, since my upload droped to half.

Yes, i want that one IP adress would get maximum when needed if this is possible or that it limits 1 IP to 1 Mbit for example when other computers in network need full bandwith. How can i do this?
by dcavni
Thu Jan 29, 2015 12:07 pm
Forum: General
Topic: Limiting traffic for 1 IP when other devices need full conn.
Replies: 6
Views: 1880

Re: Limiting traffic for 1 IP when other devices need full c

If i understand this correctly this would split my connection into 2 halves so that each client gets half of the connection. If this is the best option i will try it.

Can i use pcq together with packet marking? (www, p2p, other) ?
by dcavni
Thu Jan 29, 2015 11:58 am
Forum: General
Topic: Multicast traffic problem, IPTV Artifacts using RB2011
Replies: 0
Views: 1736

Multicast traffic problem, IPTV Artifacts using RB2011

Hello, My configuration: DSL modem with ports 1-Data, 2-Data, 3-Video, 4-Video port 1 from the modem connected to Ether 1 Gateway on Mikrotik with PPPoE connection for Internet, port 3 from the modem connected to the LAN part of the Mikrotik, port 4 from the modem connected to IPTV reciever in my ho...
by dcavni
Thu Jan 29, 2015 11:13 am
Forum: General
Topic: Limiting traffic for 1 IP when other devices need full conn.
Replies: 6
Views: 1880

Re: Limiting traffic for 1 IP when other devices need full c

Since nobody reply's i'm guessing that this probably can't be done :)
by dcavni
Sat Jan 24, 2015 12:53 pm
Forum: General
Topic: RouterOS v6.25
Replies: 107
Views: 45009

Re: RouterOS v6.25

When i check the "Vpn Acess" option in "Quick set" menu and press "Apply" the option doesn't stay checked. VPN still works afterwards, just the option isn't checked. RB2011UiAS-2HnD.
by dcavni
Tue Jan 20, 2015 11:36 pm
Forum: General
Topic: Limiting traffic for 1 IP when other devices need full conn.
Replies: 6
Views: 1880

Limiting traffic for 1 IP when other devices need full conn.

I have a situation on my home network, where a separate hotspot (IP for hotspot is static) makes a VPN connection through my network to the server somewhere on the other side of the country and offers free internet to anyone who want's it. My problem now is, that sometimes that hotspot is using all ...
by dcavni
Tue Oct 28, 2014 11:12 am
Forum: Beginner Basics
Topic: Problems with VPN passing through RB2011UAS-2HnD-IN
Replies: 1
Views: 1315

Re: Problems with VPN passing through RB2011UAS-2HnD-IN

Let me just anwer to myself, if anyone will have the same problem. I changed the MTU and MRU in PPPoE connection to the internet from 1480 (default) to 1492. It works much better now :) It does come to "Request time out" from time to time, but i suppose it will get better when i change int...
by dcavni
Sun Oct 26, 2014 1:38 pm
Forum: Scripting
Topic: Wget Afraid - FREEDNS script help
Replies: 17
Views: 18728

Re: Wget Afraid - FREEDNS script help

I use this simple own script. Just copy and run in command line. Than you have to update System/Scheduler script with your external interface and update key. This script gets ip address from pppoe-client interface. However, you can easily change that. /system scheduler add disabled=no interval=30s ...
by dcavni
Fri Oct 24, 2014 11:58 pm
Forum: Beginner Basics
Topic: Problems with VPN passing through RB2011UAS-2HnD-IN
Replies: 1
Views: 1315

Problems with VPN passing through RB2011UAS-2HnD-IN

Hello, I'm a complete newbie with Mikrotik Routers (just bought a first one 2 days ago), and i'm already having problems. I'm connecting to internet through modem connected to ETH1 using PPPoE connection. Everything works completly OK on the computers and phones connected directly to RB2011, but i a...
by dcavni
Wed Oct 22, 2014 1:50 pm
Forum: General
Topic: IGMP Snooping
Replies: 134
Views: 81772

Re: IGMP Snooping

I just bought an 2011 router to use it in home network and somehow i expected, that it supports IGMP snooping out of the box. It seem's to me, that i will run in to a lot of problems, since i have a lot of Multicast traffic in my network. Looking it this way, it's realy sad, that i can use IGMP snoo...
by dcavni
Thu Jul 04, 2013 6:19 pm
Forum: Wireless Networking
Topic: Metal 2 shpn Problem in WIFI
Replies: 151
Views: 99450

Re: Metal 2 shpn Problem in WIFI

It look's like support is on vacation...
by dcavni
Sun Mar 31, 2013 6:26 pm
Forum: Wireless Networking
Topic: Metal 2 shpn Problem in WIFI
Replies: 151
Views: 99450

Re: Metal 2 shpn Problem in WIFI

Just when i was thinking of buying a Metal 2 for my home AP. I will reconsider my decision now and wait for a while if they fix it.