Community discussions

Search found 56 matches

by rcourtney
Thu Apr 12, 2018 2:44 am
Forum: General
Topic: Using Peltier devices with solar panels for chip cooling
Replies: 1
Views: 254

Using Peltier devices with solar panels for chip cooling

Has anyone investigated using these devices to cool the processor rather than just a fan?
example
https://tetech.com/peltier-thermoelectr ... r-modules/
by rcourtney
Fri Jan 05, 2018 1:49 am
Forum: General
Topic: ARM processor vulnerability and Mikrotik?
Replies: 2
Views: 536

ARM processor vulnerability and Mikrotik?

Security flaw discovery released by Google Project Zero does it affect our gear?
by rcourtney
Tue Feb 14, 2017 5:34 pm
Forum: General
Topic: Blocking access to speedtest sites.
Replies: 11
Views: 2798

Re: Blocking access to speedtest sites.

I believe we already have a web SERVER in the mikrotic, what we need is a web BROWSER, really badly. Homer Yes, there is a webserver that you can get access to by installing the Hotspot module. Then change the firewall back to a normal use. You can go to your router ip then the sub folder hotspot o...
by rcourtney
Fri Dec 02, 2016 6:23 am
Forum: General
Topic: Can I allow only specific IPs to login via telnet?
Replies: 5
Views: 827

Re: Can I allow only specific IPs to login via telnet?

Port knocking
mum.mikrotik.com/presentations/US10/discher.pdf
by rcourtney
Fri Dec 02, 2016 5:56 am
Forum: General
Topic: Monitor Ubiquiti Unifi
Replies: 7
Views: 1180

Re: Monitor Ubiquiti Unifi

You could write a Python script to query Mongo and see packets transfered. If it drops below a level you set, then SMS a message to your phone.
It would not necessarily be running on your Miktotik gear.
by rcourtney
Fri Dec 02, 2016 5:47 am
Forum: General
Topic: Firewall blocking same continuous "attacks"
Replies: 3
Views: 566

Re: Firewall blocking same continuous

Locate "port knocking" in a MUM meeting presentation a few years back.
It hinders port scanning as a benefit.
by rcourtney
Thu Nov 10, 2016 6:00 pm
Forum: General
Topic: 3 public IP in cable modem
Replies: 2
Views: 451

Re: 3 public IP in cable modem

I have never tried that. You should be able to look at the netmask assigned to your router and figure out your remaining IPs
the cable modem will support. Assign fixed IP on the devices. Do not NAT those devices.
You may also need to add route entries to the ports those devices are attached to.
by rcourtney
Sat Oct 29, 2016 5:46 am
Forum: Scripting
Topic: Mikrotik Access Hardening
Replies: 1
Views: 787

Re: Mikrotik Access Hardening

We like port knocking. You must access a port other than your desired port to load the list then test to see if you are in the list before accepting.
If someone is scanning ports around the knocked port, you clear the list.

See old MUM presentations for details.
by rcourtney
Fri Oct 21, 2016 8:45 pm
Forum: General
Topic: Hacked DVR's
Replies: 12
Views: 2571

Re: Hacked DVR's

Interesting. These devices usually are running a low end linux OS. It is not hard to insert code into ram and then execute it.
Being a part of a security system that allows strangers to get access to cameras is also disturbing.
by rcourtney
Fri Oct 21, 2016 5:58 pm
Forum: Beginner Basics
Topic: how to connect four different subnet network
Replies: 3
Views: 529

Re: how to connect four different subnet network

/ip route add dst-address=192.168.X.0/24 gateway=X.X.X.X (Replace X.X.X.X with appropriate gateway) On A add a route to 192.168.3.0/24 On C add a route to 192.168.1.0/24 Customer A 192.168.1.1=======CPE 192.168.245.3 Customer C 192.168.3.1=======CPE 192.168.245.5 On B add a route to 192.168.4.0/24 O...
by rcourtney
Thu Sep 29, 2016 6:31 am
Forum: The User Manager
Topic: Logging by Radius using Userman
Replies: 6
Views: 1233

Re: Logging by Radius using Userman

Cgaspar:
This sounds like an issue another user is having. By chance is your full user the default local profile too?

This might be a bug. What are the version of your firmware?
by rcourtney
Sat Sep 24, 2016 11:27 pm
Forum: The User Manager
Topic: Hotspot login with password included when submit is clicked
Replies: 2
Views: 1613

Re: Hotspot login with password included when submit is clicked

Try this: <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="pragma" content="no-cache" /> <meta http-equiv="expires" content="-1" /> <meta name="viewport" content="width=device-width; initial-scale=1.0; maximum-scale=1.0;"/> <style type="text/css"> body {color: ...
by rcourtney
Fri Sep 23, 2016 2:28 am
Forum: The User Manager
Topic: Logging by Radius using Userman
Replies: 6
Views: 1233

Re: Logging by Radius using Userman

If I understand your situation the routers will use the local user database first and if not found will then ask your Radius server. Logging will show the local user in the local log. Remove the local user. However, if you need access when the Radius server is down, you won't be able to get in unles...
by rcourtney
Wed Sep 14, 2016 7:20 pm
Forum: The User Manager
Topic: external radius and shared users
Replies: 1
Views: 1161

Re: external radius and shared users

Set the default user profile to the value you desire on each Mikrotik. I believe um-named profiles will use "default".

Other than that, use wireshark and capture the database requests to see which data dictionary pairs you need.
by rcourtney
Tue Sep 13, 2016 4:29 am
Forum: The User Manager
Topic: What does "shared users" under "constraints" on the user details do?
Replies: 10
Views: 3896

Re: What does "shared users" under "constraints" on the user details do?

Is the unlimited users the one named "default"?
If so change it to limit max to test a theory please.
by rcourtney
Thu Sep 08, 2016 8:13 pm
Forum: The User Manager
Topic: What does "shared users" under "constraints" on the user details do?
Replies: 10
Views: 3896

Re: What does "shared users" under "constraints" on the user details do?

As others have mentioned, check on each router the IP -> Hotspot -> User Profiles tab for Shared Users count. My default profile has 2 for max users per user sign-in and is working correctly. We allow the user to sign-in for their main computer and their phone only for basic service. If they try mor...
by rcourtney
Sun Aug 21, 2016 10:54 pm
Forum: General
Topic: mikrotik configuration as a central server for multiple remote sites
Replies: 1
Views: 342

Re: mikrotik configuration as a central server for multiple remote sites

The best method in my opinion is to setup a RADIUS server. It will have a list of validated usernames and passwords that allow your customers to use your WiFI service. User Manager that is built-in is a simplified RADIUS server. You run it on only one of your gear and all others connect to it. It mu...
by rcourtney
Thu Aug 04, 2016 6:36 am
Forum: Scripting
Topic: Satellite Link Monitoring
Replies: 12
Views: 1369

Re: Satellite Link Monitoring

Has a satellite tech checked the gear? A misaligned dish. Bad coax connections. Sun outages due to sun in same position as satellite occurs twice a year.
Too many users as mentioned. User being FAPped as they near bandwidth limits.
by rcourtney
Fri Jul 29, 2016 5:26 am
Forum: The User Manager
Topic: Authorize.net payment system ready!
Replies: 15
Views: 20354

Re: Authorize.net payment system ready!

Hi...i am using a Hotel Management Software(HMS) at one Resort.I am using OS V3.16 WITH User Manager feature.I want User payments to be feed automatically to HMS User Data base without manual interaction(for prepaid users).For this,how can my Mikrotik user manager commnicate to HMS.Plz guide me... ...
by rcourtney
Fri Jul 22, 2016 4:00 am
Forum: General
Topic: A place for poetry
Replies: 32
Views: 136872

Re: A place for poetry

Can we do wrap here?
It's not very clear.
by rcourtney
Fri Jul 22, 2016 12:17 am
Forum: Wireless Networking
Topic: Getting the signal past thick walls
Replies: 4
Views: 907

Re: Getting the signal past thick walls

Survey is paramount! There is special feeder cable called "Leaky CoaX".  We used LCX cable in a tunnel between buildings and worked fine. Thick concrete along with all the iron strength rods with corners ("Z" shaped) in the tunnel made multiple APs too costly.  The cable was placed in plastic pipe a...
by rcourtney
Mon Jul 18, 2016 9:12 pm
Forum: General
Topic: Blocking Pokemon Go
Replies: 29
Views: 6390

Re: Blocking Pokemon Go

Most who use pokemon go use mobile data so perhaps you would want a jammer as well.
Perhaps a set of low power local GPS transmitters that point the student to the principal's office where they
can find Pekachu!  - LOL
by rcourtney
Mon Jul 18, 2016 8:58 pm
Forum: The User Manager
Topic: Automatically create users for MAC authentication
Replies: 4
Views: 1902

Re: Automatically create users for MAC authentication

Do you really need create a username/password? If you only want user accept term to access hotspot service you can try create a local username/password without shared users limit and edit form to user this username/password. Yes, the original poster is using "open_net" for both the username and pas...
by rcourtney
Sun Jul 17, 2016 7:52 pm
Forum: The User Manager
Topic: Automatically create users for MAC authentication
Replies: 4
Views: 1902

Re: Automatically create users for MAC authentication

I am thinking the name cannot be empty when adding a mac entry in the hotspot user list. Password is not used if method ( login-by ) is mac. Name could be generated from the current date time by the client php code. So the user only needs to accept terms. The two important fields ( mac and name ) ar...
by rcourtney
Sat Jul 16, 2016 12:00 am
Forum: The User Manager
Topic: Automatically create users for MAC authentication
Replies: 4
Views: 1902

Re: Automatically create users for MAC authentication

The challenge is to execute a CGI program or script from an external web server that does not expose API controls to the user. I would almost say write a program in C++ C# .NET  etc that acts as a web server. Once the user posts the Accepted terms, issue API or telnet commands to add a local user. U...
by rcourtney
Wed Jul 13, 2016 5:39 pm
Forum: Beginner Basics
Topic: Wireless link indicator
Replies: 2
Views: 507

Re: Wireless link indicator

Look up user LEDs in the manual there are five you can program. They can be used for antenna alignment (signal to noise) and activity etc. http://wiki.mikrotik.com/wiki/Manual:System/LEDS There are clear plastic tubes called lightpipes to get the LEDs to show outside the case. http://www.mouser.com/...
by rcourtney
Sun Jun 26, 2016 11:14 pm
Forum: The User Manager
Topic: Usage reports with MAC filtering
Replies: 3
Views: 903

Re: Usage reports with MAC filtering

If you run a separate router without wireless and use MAC authentication on it, they would not need to enter user/pass. NATting on the router closest to fiberlink.
Then radius records should be gathered for reporting.  Haven't tried it but first thing that came to my mind.
by rcourtney
Fri Jun 24, 2016 7:05 am
Forum: The User Manager
Topic: Usage reports with MAC filtering
Replies: 3
Views: 903

Re: Usage reports with MAC filtering

I am thinking users connected through the other routers are NATted.

Do you need the hotspot on just the one Mikrotik? 

More details are needed.
by rcourtney
Thu Jun 23, 2016 6:23 am
Forum: The User Manager
Topic: Script to Reporting whitout web interface
Replies: 2
Views: 830

Re: Script to Reporting whitout web interface

If you read up on using the terminal functions you can issue commands and have the raw output saved to a local file. (print) Then that file can be parsed to create a comma delimited file for you to grab later.  Either by visiting the site with a USB stick or using FTP. You can supply more details wh...
by rcourtney
Wed Jun 22, 2016 6:53 am
Forum: The User Manager
Topic: strange issue in userman
Replies: 1
Views: 688

Re: strange issue in userman

Could the user 61792721 have saved the wrong password on their browser and simply needs to correct it?

Too many failed attempts right after each other could indicate a script trying to guess passwords.
I don't think this is the case.

Nothing to get worried about yet.
by rcourtney
Tue Jun 21, 2016 6:48 pm
Forum: The User Manager
Topic: HotSpot printer
Replies: 2
Views: 3078

Re: HotSpot printer

You can buy printer mechs OEM.   They are pretty cheap on the web and if you have the ability, use an Arduino. http://bildr.org/blog/wp-content/uploads/2011/08/thermalPrinter.jpg http://bildr.org/2011/08/thermal-printer-arduino/ https://www.sparkfun.com/products/10438 I designed mine for a hotel tha...
by rcourtney
Thu Jun 16, 2016 4:26 am
Forum: General
Topic: Streaming & Hotels Free Wifi
Replies: 3
Views: 971

Re: Streaming & Hotels Free Wifi

You can limit using either Unifi or RouterOS. 
Unifi might be easier.
by rcourtney
Thu Jun 16, 2016 3:09 am
Forum: General
Topic: MOCA 2.0 SFP?
Replies: 4
Views: 1253

Re: MOCA 2.0 SFP?

If I could crowdfund the project I could see using Microsemi's IGLOO® nano low-power FPGAs http://www.microsemi.com/images/soc/products/igloo/IGLOO_3x3_finger.jpg and Analog Devices AD9364 http://www.analog.com/-/media/analog/en/evaluation-board-images/images/ad-fmcomms4-ebz_front.ashx?h=270 perhaps...
by rcourtney
Thu Jun 16, 2016 2:40 am
Forum: Scripting
Topic: Script trigger after PPP dialout
Replies: 3
Views: 860

Re: Script trigger after PPP dialout

Can you try single pinging a destination PPP address using a scheduled script.
If the ping times out, set an environment flag.
On next ping that you get a response and the flag is set,  make your changes and clear the flag.
by rcourtney
Sun May 15, 2016 12:05 pm
Forum: Scripting
Topic: beginner asking for help
Replies: 2
Views: 517

Re: beginner asking for help

Every 10 seconds may get you blacklisted by the site returning your Public IP. Consider this, have your remote APs ping a central Miktotik and use address lists. You can pull the count in a script and email or SMS your changes. Set this in your central AP to capture IPs instead: /ip firewall filter ...
by rcourtney
Sat May 07, 2016 5:52 pm
Forum: Scripting
Topic: DDOS Solutions?
Replies: 2
Views: 1024

Re: DDOS Solutions?

One thing to consider is which servers need to be exposed to the Internet. Web servers that collect payment data should behind your firewall in a vlan so that real users only can purchase time. We get SYN attacts occasionally to our wifi routers. Mostly to ports 80 and 23. We don't use those ports a...
by rcourtney
Wed Apr 27, 2016 2:17 pm
Forum: RouterBOARD hardware
Topic: RB2011 SFP module not recognized?
Replies: 8
Views: 1901

Re: RB2011 SFP module not recognized?

If this is not dark fiber then I am thinking you might need the same units at both ends
and your provider has conditioned the strands for their gear.
by rcourtney
Sun Apr 24, 2016 4:45 am
Forum: RouterBOARD hardware
Topic: RB2011 SFP module not recognized?
Replies: 8
Views: 1901

Re: RB2011 SFP module not recognized?

With the 1310/1550 one plugged in the rb2011 I get green light on connection - with the 1550/1310 one I get nothing.
Is there a chance that tx and rx use the same wavelength? (if double strand)
by rcourtney
Thu Apr 21, 2016 5:19 pm
Forum: General
Topic: What SFP module do I need?
Replies: 6
Views: 913

Re: What SFP module do I need?

Ok since your order shows SMOF (Single Mode Optical Fiber) we are further along. They are testing the light path with the same wavelength by looping and then measuring the loss for round trip. Still good so far. We still are guessing on the wavelength. Are you paying for dark strands? (they just con...
by rcourtney
Thu Apr 21, 2016 6:38 am
Forum: Beginner Basics
Topic: Hotel Room Access Page
Replies: 3
Views: 706

Re: Hotel Room Access Page

Many hotels. Limit the number of devices per login and charge extra.
So you may not get too far. We block NATed connections to be fair to
All paying guests.

In general you want bridge mode.
by rcourtney
Thu Apr 21, 2016 4:54 am
Forum: General
Topic: What SFP module do I need?
Replies: 6
Views: 913

Re: What SFP module do I need?

Singlemode and Multimode is how light internally travels through the glass strand. On the outside of the yellow cables you should see some markings. If you can post what is marked we can tell you if single or multi-mode. What is on the other end of the bulkhead connector in your photo? I will say th...
by rcourtney
Thu Apr 21, 2016 4:33 am
Forum: Wireless Networking
Topic: How сonnect mikrotik to wifi hot spot
Replies: 3
Views: 696

Re: How сonnect mikrotik to wifi hot spot

Can you draw us a picture of your setup?

Are you running the hotspot on your Mikrotik device or some other device?

Are you wanting to interconnect multiple Mikrotik devices together?
by rcourtney
Mon Apr 04, 2016 4:17 am
Forum: The User Manager
Topic: Hotspot with pin only
Replies: 6
Views: 2913

Re: Hotspot with pin only

If I understand what you are referring to, the client router must
communicate with usermanager over a secured link.
That is not the user link to associate with the AP.

Edit: Creating the virtual AP looks like the best way to go if you
need user groups that are separate and secure.
by rcourtney
Sat Apr 02, 2016 2:29 am
Forum: The User Manager
Topic: Hotspot with pin only
Replies: 6
Views: 2913

Re: Hotspot with pin only

The only thing I can think of is a virtual AP.
I haven't tried this so can't be much more of assistance.

http://wiki.mikrotik.com/wiki/Manual:In ... #VirtualAP
by rcourtney
Fri Apr 01, 2016 3:14 am
Forum: The User Manager
Topic: Hotspot with pin only
Replies: 6
Views: 2913

Re: Hotspot with pin only

You can use normal user/password and use the same "word" for both. In html or javascript you would post the same value. I'll try to include an example later if needed. $(if chap-id) <form name="sendin" action="$(link-login-only)" method="post"> <input type="hidden" name="username" /> <input type="hi...
by rcourtney
Wed Mar 23, 2016 6:13 pm
Forum: General
Topic: Help with an advanced home setup.
Replies: 1
Views: 396

Re: Help with an advanced home setup.

Using the basic setup for a hotspot will allow multiple users. You can download the Winbox program for Windows and manage the list of users allowed on your network. If your roomate does not pay, remove his/her profile. However, he/she can ask your other roomate for their credentials, bypassing your ...
by rcourtney
Mon Feb 01, 2016 6:04 am
Forum: Scripting
Topic: design a Winbox!
Replies: 6
Views: 1567

Re: design a Winbox!

The closest would be using the API for the language you code in. C, C++, etc.
Winbox is far as I know is not open source.
.
by rcourtney
Tue Jan 26, 2016 5:09 pm
Forum: General
Topic: Nee feature
Replies: 0
Views: 499

Nee feature

I would let to see global environment variables to be visible from scripting in hotspot.

Example:
http://forum.mikrotik.com/viewtopic.php ... AA#p514019
$longitude $latitude $weather $voltageà
All that are created in scripts.
by rcourtney
Sat Jan 02, 2016 6:09 am
Forum: Scripting
Topic: NOAA weather information in hotspot login
Replies: 4
Views: 844

Re: NOAA weather information in hotspot login

Thanks for taking time to help. I looked at the stickers and decided to dynamically build the login page hourly. I am bench testing now. login.html was divided into two parts and reassembled with the information. :global login1 [/file get [/file find name="hotspot/login1.txt"] contents]; :global log...
by rcourtney
Wed Dec 30, 2015 10:34 pm
Forum: Scripting
Topic: NOAA weather information in hotspot login
Replies: 4
Views: 844

Re: NOAA weather information in hotspot login

Not directly. An icon (fog, rain, sunny, snow, etc) is named in the xml. It could be copied in the script to the hotspot folder. I could dynamically build the login.html file as a last resort in the script each hour. Was hoping there was a "secret" way to get the scripting environment variable expos...
by rcourtney
Wed Dec 30, 2015 9:36 pm
Forum: Scripting
Topic: NOAA weather information in hotspot login
Replies: 4
Views: 844

NOAA weather information in hotspot login

I have written a script to grab current weather information. (See below) I would like to present the global environment variables to the user login page. I am not seeing them appear. $(weather) Any hints? /tool fetch url="http://w1.weather.gov/xml/current_obs/KIOW.xml" mode=http :global fileContents...
by rcourtney
Tue Aug 18, 2015 5:00 am
Forum: Scripting
Topic: Help needed using Query in API
Replies: 2
Views: 548

Re: Help needed using Query in API

Your post helped.
/ip/hotspot/user/getall getall instead of print
I need to filter either by numbers (I use bin position in place of the apartment number)

Thanks
by rcourtney
Mon Aug 17, 2015 8:48 pm
Forum: Scripting
Topic: Help needed using Query in API
Replies: 2
Views: 548

Help needed using Query in API

I will be using the API to upload users/passwords to the routers for apartment buildings. So far the path /ip/hotspot/users/add with numbers=n,name=userid,password=userpass (n is a number 0 to 31 reflecting bins for tennants) adds new users. /ip/hotspot/users/remove with numbers=n removes the bin en...
by rcourtney
Sun Jan 25, 2015 5:02 pm
Forum: The User Manager
Topic: Using Avery 8371 (or similiar card stock) for vouchers
Replies: 0
Views: 660

Using Avery 8371 (or similiar card stock) for vouchers

Does anyone have a template to print a batch of vouchers on paper card stock for laser printers?
Just to get the spacing 10 per page. So far every example looks like pin fed continuous
paper.
by rcourtney
Sat May 25, 2013 12:42 am
Forum: General
Topic: Reading / Writing USB drives formatted on RB2011
Replies: 0
Views: 387

Reading / Writing USB drives formatted on RB2011

I have Win7 laptops that I would like to process USB memory sticks that we use on RB2011's.
Anyone have success with a driver or program to allow this?