Community discussions

Search found 384 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 8
by butche
Fri Dec 21, 2018 6:52 pm
Forum: SwOS
Topic: CRS112-8P-4S SwOS Version
Replies: 3
Views: 1089

Re: CRS112-8P-4S SwOS Version

I would like to see this answer, too. No response at all from Mikrotik?
by butche
Thu Oct 18, 2018 7:13 pm
Forum: General
Topic: Winbox issue under wine
Replies: 3
Views: 364

Re: Winbox issue under wine

That's all great, but "it works for me" isn't any help. As I stated in my original post, " it worked for me for YEARS", so if that was the solution, I would not have had to post. I apologize if this sounds rude, but WOW!
by butche
Thu Oct 18, 2018 1:55 am
Forum: General
Topic: Winbox issue under wine
Replies: 3
Views: 364

Winbox issue under wine

Running wine 3.17. Winbox runs fine for the most part however, when it attempts to connect to a device using IP (v4 or v6), it is unable to do so. The program does not crash, but it doesn't move forward. I can cancel the attempt and the behaviour is what SHOULD happen with cancel (goes back to the c...
by butche
Tue Apr 10, 2018 9:24 am
Forum: Forwarding Protocols
Topic: BGP wierdness?
Replies: 5
Views: 806

Re: BGP wierdness?

Butche - nice to see you again (over the forums hehe) Good to see you, too, Sam. :-) I have run into this exact problem and am super happy you posted that link - its exactly what I need to do here because ospf just ain't cutting it. I want to read up more on this solution and see if it will help me...
by butche
Mon Apr 09, 2018 10:41 pm
Forum: Forwarding Protocols
Topic: BGP wierdness?
Replies: 5
Views: 806

Re: BGP wierdness?

MPLS does not simplify what I am trying to accomplish. Thanks anyway.
by butche
Fri Apr 06, 2018 8:40 pm
Forum: Forwarding Protocols
Topic: BGP wierdness?
Replies: 5
Views: 806

BGP wierdness?

I am building something similar to this: http://www.stubarea51.net/2017/05/27/wisp-design-using-ebgp-and-ospf-transit-fabric-for-traffic-engineering/ Network looks like this: netmap.jpeg In this network, there is OSPF everywhere. OSPF is all the same config (well, nearly so) as follows: /routing osp...
by butche
Fri Mar 30, 2018 5:00 am
Forum: Announcements
Topic: Urgent security advisory
Replies: 110
Views: 87491

Re: Urgent security advisory

Why isn't this NPK available for everyone? If winbox, webfig, etc can't show proper indicators of compromise then it's important that we can use CLI tools to verify there are no rogue binaries, especially as the screenshots seem to demonstrate that the updated RouterOS doesn't actually remove persi...
by butche
Thu Mar 29, 2018 11:07 pm
Forum: Announcements
Topic: Urgent security advisory
Replies: 110
Views: 87491

Re: Urgent security advisory

Hello, good morning, in case of mass update, more than 320 equipments, is there any script?
I wrote one in perl that can do this sort of thing. There are some example methods on the wiki for how to automate a bunch of this as well.
by butche
Thu May 11, 2017 12:21 am
Forum: The Dude
Topic: Downgrading
Replies: 4
Views: 627

Re: Downgrading

yeah...I would RATHER upgrade them both, but I cannot. It is not MY service. Maybe you didn't read the full post?
by butche
Wed May 10, 2017 11:08 pm
Forum: The Dude
Topic: Downgrading
Replies: 4
Views: 627

Downgrading

I have 2 customers running older versions of the Dude. One is running 3.6 and the other 4beta3. The client running version 3.6 needs some work done on a dude server and for various reasons, it is easier to do it from the machine running the 4beta3 client. SO...here is what I would like to do: 1. Imp...
by butche
Sat Mar 25, 2017 8:50 pm
Forum: Scripting
Topic: REGEX
Replies: 3
Views: 2225

Re: REGEX

I realize that is what is matches. That is the issue. What I NEED it to match is a NAME that contains "HT" in the string. What am I missing?
by butche
Sat Mar 25, 2017 7:55 pm
Forum: Scripting
Topic: REGEX
Replies: 3
Views: 2225

REGEX

I have the following test in a script: :if ($"SPEED"~"384k/1M" && !($"NAME"~".*HT*" || $"NAME"~".*CAS*" ) ) do= This correctly matches when the script name is: HTxxx xxHTxxx And other combinations. It ALSO matches for ANY name that includes a capital "H". It does NOT match a lower case "h", even whe...
by butche
Mon Jan 23, 2012 11:36 am
Forum: General
Topic: Quickset (new in v5.12)
Replies: 76
Views: 47672

Re: Quickset (new in v5.12)

Not for me, but it looks like many will find it useful. Suggestion: Add checkbox option to remove the built-in input firewall on these devices. You may want to go a bit further than that with the firewall, but still that is an option that would be needed.
by butche
Mon May 16, 2011 8:46 pm
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

[HKEY_CURRENT_USER\Software\Wine\X11 Driver]
"ClientSideWithRender"="N"
Awesome! Where in the world did you find this? I've googled for WEEKS!
by butche
Mon May 16, 2011 8:42 pm
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

it is a long shot, but if you have Intel card you should try to upgrade your drivers. There are reports of different windows programs having these black artefacts in simple UI interface using wine on different flavours of Linux. check if you are running xf86-video-intel 2.12.0 or newer if so, try t...
by butche
Tue May 10, 2011 10:06 pm
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

You might find this interesting; http://support.microsoft.com/kb/315338 Perhaps the other files are in there too. I've seen that one as well as the other one you mentioned. I don't have a windows xp (or windows anything for that matter) CD. I don't use Windows, so those are not an option. Thanks fo...
by butche
Tue May 10, 2011 10:01 pm
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

There is no hope. Cus mikritik said: "winbox and the dude working perfect on wine and you dont need linux native versions". LOL
I don't need a native Linux version. I just need to find the proper fonts.
by butche
Tue May 10, 2011 10:00 am
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

I think I'm on the track to fixing this issue. When I debug wine as it is loading winbox, it is looking for (and not finding) these font files: vgaoem.fon,vgafix.fon,serife.fon

Anyone have an idea where I can find these?
by butche
Fri Apr 22, 2011 9:27 am
Forum: General
Topic: Winbox + Wine = Black Borders
Replies: 20
Views: 9394

Re: Winbox + Wine = Black Borders

I am seeing this, too. At one time, there was a problem with the fonts (you need msttcorefonts installed). I have installed 2 versions of these fonts and still this problem persists. I just removed my .wine directory to ensure that my wine customizations were not causing this issue. I am using Fedor...
by butche
Tue Feb 01, 2011 3:42 am
Forum: General
Topic: Noob IPv6 question
Replies: 29
Views: 3436

Re: Noob IPv6 question

This firewall is NOT intended as a firewall useful for a public server network. This is a portion of the firewall used on my home/office network where I need just basic IP connectivity OUTBOUND. This simple configuratino will mimic the behavior of NAT. These first 3 rules simply define who can conne...
by butche
Mon Jan 31, 2011 10:07 pm
Forum: General
Topic: Noob IPv6 question
Replies: 29
Views: 3436

Re: Noob IPv6 question

I assume that you have the MT connected right now to the Cox network, along with a private interface on your LAN. Your XP machine would be connected via the LAN interface of the MT. (these are just my assumptions). We also have to assume (I think this is a REALLY good guess) that Cox will be offerin...
by butche
Mon Jan 31, 2011 5:51 pm
Forum: General
Topic: Noob IPv6 question
Replies: 29
Views: 3436

Re: Noob IPv6 question

It is most likely that they are using DHCPv6 PD (prefix delegation). In this way, they do not have to do static routes for each client. Does Cox use DHCP for their v4 network or is it a PPPoE connection? Either way, check out http://forum.mikrotik.com/viewtopic.php?f=2&t=47883 for a bit more informa...
by butche
Mon Jan 31, 2011 6:46 am
Forum: General
Topic: Noob IPv6 question
Replies: 29
Views: 3436

Re: Noob IPv6 question

I dont see support for DHCPv6 in the release notes for 5.0rc... As cox will do what most ISP's are doing for IPv6 it might be a good idea to have a thread or example manual page with a how to on setting up IPv6 for these situations for us noobs. There is no current support for DHCPv6 in MT. They ha...
by butche
Mon Jan 31, 2011 3:58 am
Forum: General
Topic: Noob IPv6 question
Replies: 29
Views: 3436

Re: Noob IPv6 question

I'm not certain how you would go about participating in the Cox trials. I suspect they will use DHCPv6 with prefix delegation. Do you have a link to their trial documentation?
by butche
Mon Jan 31, 2011 12:43 am
Forum: General
Topic: problem : how to control connections for one download?
Replies: 10
Views: 2503

Re: problem : how to control connections for one download?

You may want to incorporate some form at dst-limit in your match. If you want to ensure it is a download, you'll want to be certain to include a packet-size matcher. You can find documentation for dst-limit here: http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter (the others are there, too). ds...
by butche
Sat Jan 29, 2011 7:17 pm
Forum: General
Topic: What is different?!
Replies: 2
Views: 556

Re: What is different?!

You can use the USB modems from a number of manufacturers. The supported list is here: http://wiki.mikrotik.com/wiki/Supported ... e#3G_cards
Note that that is a user edited list (not MT).
by butche
Fri Jan 28, 2011 10:27 am
Forum: General
Topic: IPv6 TODO
Replies: 54
Views: 10000

Re: IPv6 TODO

- IP Pool support; for PPP and DHCP (to manage networks instead of addresses) This will help. - IPv6 Address auto-configuration from other routers Will this be something that works for all address types or just link-local? If the MT is in router mode, wouldn't this break the specification? Or is th...
by butche
Fri Jan 28, 2011 10:06 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Roadmap for IPv6?
Replies: 98
Views: 22105

Re: Roadmap for IPv6?

DHCPv6/PD is really among the most important features needed. I have sent MY request to support@mikrotik.com. If EVERY one of you who want a useful feature would do the same, then perhaps we'd get a little developer time on this. While I think this is important, there are other features that are alm...
by butche
Fri Jan 28, 2011 9:41 am
Forum: General
Topic: how to share 2 different internet connection in LAN
Replies: 2
Views: 503

Re: how to share 2 different internet connection in LAN

One method to share the lines: http://wiki.mikrotik.com/wiki/Manual:PCC Another: http://wiki.mikrotik.com/wiki/Policy_Routing_in_RouterOS_3.x (not an exact solution, but it is what you want) Still another: http://blog.butchevans.com/2008/09/mikrotik-policy-routing-implementation-example/ (a little o...
by butche
Fri Jan 28, 2011 4:25 am
Forum: General
Topic: pptp ppp attack!
Replies: 3
Views: 2875

Re: pptp ppp attack!

There are a number of methods that you could use. I am not vouching for the 100% security of any of them, but some ideas are: 1. Set up a port knocking application that will be required prior to accessing the pptp server (there's an example in the wiki here: http://wiki.mikrotik.com/wiki/Securing_Ne...
by butche
Fri Jan 28, 2011 2:42 am
Forum: General
Topic: pptp ppp attack!
Replies: 3
Views: 2875

Re: pptp ppp attack!

Do you have the pptp server running? If so, do you need it? If you do NOT need it, then:
/interface pptp-server server set enabled=no
by butche
Fri Jan 28, 2011 2:13 am
Forum: General
Topic: Layer 7 to match http by IP
Replies: 2
Views: 1040

Re: Layer 7 to match http by IP

Thanks, fewi! I have tried MANY variations without success. I can't believe I missed this one.
by butche
Thu Jan 27, 2011 11:14 pm
Forum: General
Topic: Filtering HTTPS Traffic
Replies: 3
Views: 626

Re: Filtering HTTPS Traffic

Yes
by butche
Thu Jan 27, 2011 8:43 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: FreeRadius+Mikrotik+Option 82
Replies: 11
Views: 8798

Re: FreeRadius+Mikrotik+Option 82

So you have a RouterOS DHCP relay sending option82? I'd be interested to see that config (on the MT side).
by butche
Thu Jan 27, 2011 8:36 pm
Forum: General
Topic: Filtering HTTPS Traffic
Replies: 3
Views: 626

Re: Filtering HTTPS Traffic

Hotspot is a good way to do this. Just make the hotspot splash page that says something like "The page you are trying to access is not accessible on this network".
by butche
Thu Jan 27, 2011 7:18 am
Forum: General
Topic: Layer 7 to match http by IP
Replies: 2
Views: 1040

Layer 7 to match http by IP

I am trying to build what I thought would be a very simple layer 7 filter. Turns out, it's not so simple (or I'm just too slow). I am trying to build a filter that will match on any attempt to open a website by IP. For example, I am wanting to match http://10.10.10.10. I have tried matching based on...
by butche
Mon Jan 03, 2011 9:42 pm
Forum: General
Topic: Prioritizing Traffic with Unknown Link Capacity
Replies: 20
Views: 3222

Re: Prioritizing Traffic with Unknown Link Capacity

It has been a while since I first posed this question.
Has anybody come up with a solution since?
It works as I showed early on in the thread. At least I can say it works here. I'm not sure what isn't working there. There is still no way to specify speed limits (or reservations) as a percentage.
by butche
Sat Dec 18, 2010 9:03 pm
Forum: General
Topic: PPTP + EoIP on 3 zones / 2 buildings
Replies: 7
Views: 1712

Re: PPTP + EoIP on 3 zones / 2 buildings

The interface facing the other router will need an IP address. This IP is used for the PPtP tunnel. The PPtP tunnel has an IP on both ends (of course) and this IP is used to terminate the EoIP tunnel. The Bridge that is used to bridge the EoIP tunnel and some other interface has an IP for the purpos...
by butche
Fri Dec 17, 2010 8:34 pm
Forum: General
Topic: PPTP + EoIP on 3 zones / 2 buildings
Replies: 7
Views: 1712

Re: PPTP + EoIP on 3 zones / 2 buildings

This has moved beyond what I can offer free support for. Perhaps some others can offer input. FWIW, the configuration you posted looks fine at first glance, other than IP assignments, which belong on the bridge (not the physical interface) The information I offered works here in my lab and in the 4 ...
by butche
Fri Dec 17, 2010 10:43 am
Forum: General
Topic: PPTP + EoIP on 3 zones / 2 buildings
Replies: 7
Views: 1712

Re: PPTP + EoIP on 3 zones / 2 buildings

Yes there is. You simply configure the dhcp server on the appropriate bridge interface. You can refer to the wiki for more information on that.
by butche
Thu Dec 16, 2010 9:14 pm
Forum: General
Topic: PPTP + EoIP on 3 zones / 2 buildings
Replies: 7
Views: 1712

Re: PPTP + EoIP on 3 zones / 2 buildings

One PPtP tunnel will be fine. You will create a unique EoIP tunnel (unique tunnel-id) for each "zone". You will create a unique bridge per "zone" as well. Something like: /interface bridge add name=zoneAbridge add name=zoneBbridge (and so forth) Then, you will add (under /interface bridge ports) the...
by butche
Fri Nov 05, 2010 4:59 am
Forum: General
Topic: Firewall rule
Replies: 18
Views: 3469

Re: Firewall rule

AFAIR, p2p matcher is from http://www.ipp2p.org/ This is correct. At least testing shows approximately the same counts between a standard linux install and MT. Also options look the same. p.s. wow!.. a month ago http://www.opendpi.org/ was integrated into the Linux Netfilter! MT, should we wait for...
by butche
Fri Nov 05, 2010 12:33 am
Forum: General
Topic: Firewall rule
Replies: 18
Views: 3469

Re: Firewall rule

fewi i don't understand!
What is it that you don't understand? The P2P matcher is not perfect. The best approach to "detecting" p2p is to identify all things that are NOT p2p and then assume the remainder IS p2p.
by butche
Thu Nov 04, 2010 4:51 am
Forum: General
Topic: Firewall rule
Replies: 18
Views: 3469

Re: Firewall rule

The built in P2P matcher is old. The better approach is still to not detect P2P and deal with it, but to deal with all protocols you can easily detect and prioritize and shape, and then deal with 'the rest', which will include P2P. FWIW, this is EXACTLY what my QOS does. It really is the only way. ...
by butche
Mon Aug 16, 2010 7:17 pm
Forum: General
Topic: DHCP use Wildcard MAC to select pool?
Replies: 10
Views: 2560

Re: DHCP use Wildcard MAC to select pool?

Just to clarify your post, does the MAC listed in radius have to be specific or can it be done thru a wildcard entry somehow like 0a:00:3e:*:*:*?
This depends on your radius server (not MT).
by butche
Tue Mar 09, 2010 6:36 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37196

Re: Basic router setup guide/tutorial ?

Try manually setting the DNS entry on the PC and see if it works then. That will tell you if the problem is DNS related.
by butche
Mon Mar 08, 2010 10:52 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37196

Re: Basic router setup guide/tutorial ?

Sounds like an IE problem to me. Did you try another browser? If you can get out with other programs, but not IE, then it is not a MT config issue. Try going to other web pages (http://www.google.com for example)
by butche
Mon Mar 08, 2010 9:33 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37196

Re: Basic router setup guide/tutorial ?

Set the out interface on the nat rule to "Internet"
by butche
Mon Mar 08, 2010 9:02 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37196

Re: Basic router setup guide/tutorial ?

Post the information that I requested above (Posted: Fri Mar 05, 2010 7:51 am) and I can try to help.
by butche
Mon Mar 08, 2010 7:27 pm
Forum: Beginner Basics
Topic: Basic router setup guide/tutorial ?
Replies: 97
Views: 37196

Re: Basic router setup guide/tutorial ?

Select this text, copy to clipboard, paste into a notepad. Edit the pppoe username and password. Copy and paste into a new terminal window in winbox: # Remove the portions of the config that may be a problem /interface bridge port remove [find] /interface bridge remove [find] /ip route remove [find]...
  • 1
  • 2
  • 3
  • 4
  • 5
  • 8