Community discussions

Search found 22 matches

by Joe1vm
Wed Oct 09, 2019 2:43 pm
Forum: Wireless Networking
Topic: CAPSMAN + Guest WiFi
Replies: 15
Views: 6195

Re: CAPSMAN + Guest WiFi

Hello,
https://www.youtube.com/watch?v=Q9h00PYEzQM
Personally, this video helped me a lot in the past....
by Joe1vm
Sat Sep 15, 2018 12:07 am
Forum: General
Topic: POE from Cisco Switch To hAP ac
Replies: 0
Views: 281

POE from Cisco Switch To hAP ac

Hello All. Maybe it is strange to ask question about something, which is working properly .But on the other hand I am curious why. I use CISCO SG300-28P as main home switch and 2 hAP ac as APs. Originally both hAP ac were powered by power adapters, but by luck I detected that they can also work with...
by Joe1vm
Tue May 08, 2018 2:25 pm
Forum: Wireless Networking
Topic: Connection between wifi clients when using CAPsMan
Replies: 2
Views: 621

Re: Connection between wifi clients when using CAPsMan

Hello, Got yesterday my cAP ac(already had hAP ac wifi router at home) Configured using simple config from here https://mum.mikrotik.com/presentations/ME16/presentation_3187_1476712660.pdf My problem is that now i can't connect between iphone/ipad and my macbook(have media server on it). What could...
by Joe1vm
Wed May 02, 2018 8:54 pm
Forum: General
Topic: "Optimal Mangle" from "RouterOS by Example" performance?
Replies: 16
Views: 2321

Re: "Optimal Mangle" from "RouterOS by Example" performance?

You may consider this video as worthy to watch. https://www.youtube.com/watch?v=mnX6Im8GlJw . I am stupid home user, but it helped me a lot to understand mangle rules and how to use marking of the packets for traffic prioritization. Than if you are still interesting in I can share some simple mangle...
by Joe1vm
Tue Apr 24, 2018 12:36 pm
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 204
Views: 164572

Re: Advisory: Vulnerability exploiting the Winbox port

6.42.1 is "newer" than 6.42rcNN, right? It's an upgrade, not a downgrade? Yes, of course. We also have 6.43rc, don't mix those up. Versions with FIX are the following: 6.42.1 (released) 6.43rc4 (released) 6.40.8 bugfix (release coming today) Firewall for Winbox port also protects your device, even ...
by Joe1vm
Sat Apr 21, 2018 10:06 pm
Forum: General
Topic: winbox vulnerable! Unusual login to routers [SOLVED]
Replies: 44
Views: 10650

Re: winbox vulnerable! Unusual login to routers [SOLVED]

BTW - interesting afternoon - 62 attempts (unique IPs) on ports 22,23,80,8291 within last 3 hours, never seen such wave before....
by Joe1vm
Tue Mar 11, 2014 9:05 pm
Forum: RouterBOARD hardware
Topic: Wish - RB2011UiAS-2HnD-RM ?
Replies: 25
Views: 9492

Re: Wish - RB2011UiAS-2HnD-RM ?

+1
home user - having switch and 2 NAS in rack and RB2011UAS-2HnD-IN on it,... ... RB2011UiAS-2HnD-RM would be definitely preferred solution.
by Joe1vm
Tue Dec 03, 2013 10:30 pm
Forum: Beginner Basics
Topic: Hairpin NAT on RB2011UAS-2HnD-IN
Replies: 5
Views: 2689

Re: Hairpin NAT on RB2011UAS-2HnD-IN

5 ;;; SERV: FTP (this is a normal nat rule that works fine) chain=dstnat action=dst-nat to-addresses=192.168.1.250 to-ports=20-21 protocol=tcp in-interface=ether1-gateway dst-port=20-21 ! Hi Mattie, I am not a specialist, but Hairpin NAT is working properly for me on the same router - since version...
by Joe1vm
Fri Oct 18, 2013 7:22 pm
Forum: Wireless Networking
Topic: Isolate two different wireless networks
Replies: 5
Views: 3504

Re: Isolate two different wireless networks

I am really a beginner, but have very similar setup as you described and it works properly - only the firewall rules need to be defined to prevent communication between wlan1 and wlan2. Maybe it is really stupid point, but similar behavior can be simulated if the IP address IP 192.168.50.1 is not ju...
by Joe1vm
Sun Sep 15, 2013 10:07 am
Forum: General
Topic: v6.4 released
Replies: 170
Views: 61237

Re: v6.4 released

Hi. I never noticed it before, so I am not sure if this is related only to 6.4. But when I am running Winbox on any computer (in this case 192.168.88.10) there is still significant packet traffic in LAN - it looks like the winbox is still broadcasting on the winbox port (20561) even if it is already...
by Joe1vm
Sun Sep 08, 2013 12:49 am
Forum: General
Topic: after upgrade to 6.3 cannot generate certificate-request
Replies: 33
Views: 26514

Re: after upgrade to 6.3 cannot generate certificate-request

+1

[admin@MikroTik] /certificate> create-certificate-request
template:
Script Error: action cancelled
by Joe1vm
Sun Jun 02, 2013 11:04 am
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

I noticed the thread in preparation yesterday... It will be GREAT!!

Thank you for your effort and looking forward to read it...

Regards...
by Joe1vm
Sat Jun 01, 2013 11:14 pm
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

pcunite, THANKS for your time, useful help, hints and interesting links. .. Got your points regarding max traffic limits as base for effective QoS control. Anyway, in the meantime I tried only a simple queue. But I am not sure if it can bring similar benefit... /queue simple add burst-limit=0/0 burs...
by Joe1vm
Wed May 29, 2013 11:48 pm
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

Thank you for the direction. I am also still learning ....:-) My General topology is WAN - (eth1) Mikrotik (eth2) -Cisco switch - IP phones (VOICE VLAN 100) & NAS+Computers (Default VLAN) Within the LAN to LAN - it is manage by CISCO switch with defined QoS ( 5) for VOICE VLAN 100. The port of the s...
by Joe1vm
Wed May 29, 2013 10:03 pm
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

Yes, it is exactly what I meant - increase the priority for packets going from specific VLAN to WAN and from WAN to VLAN (or subnet as the VLAN has a specific IP range). My question is about how to do it exactly in the most efficient way - it means how the set-up will looks like? And where is the mo...
by Joe1vm
Tue May 28, 2013 8:15 pm
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

Thanks for advice.
Do you think that there is any possibility to link the packet priority with the traffic to/from VLAN?
Regards...
by Joe1vm
Sun May 26, 2013 10:33 am
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

Re: VLAN prioritization

Now, the phones are connected to the external VOIP provider.

The local LAN PBX is considered for the future..

In fact, both options are interested..:-)

Thanks for help...
by Joe1vm
Sat May 25, 2013 10:24 am
Forum: Beginner Basics
Topic: VLAN prioritization
Replies: 15
Views: 8518

VLAN prioritization

Hi all, using MikroTik RB2011UAS , I am looking for an effective way to make priority for my VoIP phones in separate VLAN. The configuration is WAN - (eth1) Mikrotik (eth2) -Cisco switch - IP phone. I created vlan on local bridge interfaces and IP addresses are assigned appropriately from VLAN DHCP ...
by Joe1vm
Wed Apr 24, 2013 7:44 am
Forum: Beginner Basics
Topic: Security - services behind NAT
Replies: 2
Views: 733

Re: Security - services behind NAT

Synology NAS has IP block functionality driven by not successful login. So, I will use it.
Regarding port scanning detection and blacklisted IP – I will do that…
Thank you for the hints :)
by Joe1vm
Tue Apr 23, 2013 10:25 pm
Forum: Beginner Basics
Topic: Security - services behind NAT
Replies: 2
Views: 733

Security - services behind NAT

Hi all, I am looking for the way how to properly secure the RB2011uas-2hnd-in with Synology NAS behind it. The Synology runs some ftp and web services (all SSL - ftp, file station, audio station) on different ports, which I want to be accessible from the WAN. So, there is dstnat forwarding the right...
by Joe1vm
Sat Apr 06, 2013 11:29 pm
Forum: Beginner Basics
Topic: RB2001UAS-2HnD-IN - Public Virtual AP
Replies: 2
Views: 923

Re: RB2001UAS-2HnD-IN - Public Virtual AP

Thank you very much for quick response... I passed through guidelines trying to understand all details..... So my default firewall setting is Flags: X - disabled, I - invalid, D - dynamic 0 ;;; default configuration chain=input action=accept protocol=icmp 1 ;;; default configuration chain=input acti...
by Joe1vm
Sat Apr 06, 2013 10:55 pm
Forum: Beginner Basics
Topic: RB2001UAS-2HnD-IN - Public Virtual AP
Replies: 2
Views: 923

RB2001UAS-2HnD-IN - Public Virtual AP

Dear Colleagues, I am new with MikroTik RB2001UAS-2HnD-IN and trying to make friends with RouterOS. Generally, I am using default set up, but want to create public wifi through virtual AP (wlan2) in parallel with private WIFI(wlan1) and LAN. So, I was able to create wlan2, network 192.168.1.0/24 (ro...