MikroTik

erlinden

Each channel is 20MHz wide, so you do the math. If I remember correct 40MHz is giving less problems...

erlinden

I probably would choose for cAP ac: https://mikrotik.com/product/cap_ac
But it depends on a lot more than being able to broadcast 6 SSID's (this gives overhead...sure you need 6?).
How many concurrent users per radio?
What are the performance requirements?

erlinden

It depends on the set country code (regulations) and channelwidth:

erlinden

Can you please post a /export hide-sensitive?
Assuming this is a serious topic?

erlinden

I prefer to use an internal DNS server to resolve private (internal) IP addresses instead of public IP addresses. This can be easily achieved by adding static entries.

erlinden

Please provide your config (export hide-sensitive).

erlinden

Who says I haven't sent the sup out info in already regarding the crash? You haven't said you did...and it does make sense to give the advice. Based on the information you supplied...this is not normal operation. Could you please share your config (as per requested by Dude2048)? What version are yo...

erlinden

You can have a site-2-site vpn with dynamic IP addresses.
In my situation I used this blog.: https://blog.pessoft.com/2016/05/29/mik ... s-and-nat/

In your case you have to run the script (for updating DDNS) only at the 20 sites.

erlinden

There is a WiKi page on how to upgrade a RB:
https://wiki.mikrotik.com/wiki/Manual:U ... g_RouterOS

I know that 6.45.2 (current stable) works flawless...not sure why the beta isn't.

Upgrading is not without risks. Make sure you have a backup before performing the upgrade.

erlinden

That's strange, especially as this seems to be a (your?) public IP address...
Your provider uses ns0.proxad.net and ns1.proxad.net (212.27.32.2 and 212.27.32.130).

Can you post a /export hide-sensitive please?
What version are you running?

erlinden

Can you show /ip dns print?

WebFig might have an caching thingie...

erlinden

/ip dhcp-client set use-peer-dns=no

(client is 0)

erlinden

Can you please share all hardware included (especially routers involved) and number of clients? To answer your question: it depends. You can switch this into on big network where you don't have to bother about routing. If you want to keep current configuration, your routing has to be done over the w...

erlinden

Can you please show all wireless settings (including security, password is not relevant)? At what speed is the client connected? Is there a line of sight while testing? How are you testing, iperf3 (preferably)? I prefer to avoid using auto: select a channel that is least used. And use WPA2 AES only....

erlinden

First: Reset your device, make sure "No Default Configuration" is checked. Then: - Reconnect (use MAC instead of IP, WinBox will find your device) - Create bridge and add all interfaces - Add DHCP client to your bridge (then your Mikoritk will be accessible through an IP address) - Configure your wi...

erlinden

Can you please share your current settings?

erlinden

Found this topic (have you tried the search option?): https://forum.mikrotik.com/viewtopic.php?t=86734 By selecting Ceee (or any orther 4 digit option) you will get 80MHz channel width. Make sure you select the channel manually ( I totaly dislike the auto option) and turn down tranmission power (sea...

erlinden

I prefer using fixed channels. That would definitely be my first change in this configuration. Why did you choose the hAP AC over i.e. the RB951G-HnD? How is the interference in your situation? Don’t you have 5G capable devices?

erlinden

You might want to consider turning off fouter functionality on the Mikoritik. Just use it as switch and accesspoint (by removing NAT and creating a bridge where all interfaces should be part of).

erlinden

If I enabled the default firewall in the Quick Config screen and I then went to IP->Cloud and setup a CNAME on my domain what rule to I need to add to the firewall to allow myself to access the router with WinBox remotely from (xxx.xxx.xx.xxx - my office IP) You don't because it is highly unwise. I...

erlinden

FTP uses both port 21 and a range of passive ports. Only forwarding port 21 will not be sufficient.

erlinden

http://lmgtfy.com/?q=how+to+configure+l2tp+mikrotik

erlinden

please tell me how to do. I use winbox only, not console.

From Winbox you can start a terminal, just use the /export hide-sensitive command.

erlinden

Can you please share your config?
What UAP do you use? Is it updated?

erlinden

Can you share your WiFi settings?

erlinden

Could you please provide channel/channelwidth/transmissionpower settings?

erlinden

What is the purpose of the RB if you already have an Asus router?

erlinden

Please correct me if I'm wrong, I would: 1) create a brdige on the hAP-ac and place the SFP and a network port in it 2) create a bridge on the hAP-ac and place the wireless interfaces together with a (different) port in it -> connect this with the hAP-ac2 3) configure the hAP-ac2 as a normal wifi ro...

erlinden

Besides name and password, also security settings have to be equal. And make sure that you choose different channels (don't use auto, 1,6 or 11 on the 2G radio).

Roaming can be achieved by setting the optimum tranmission power (again, don't use auto). Set it as low as possible.

erlinden

I would start by selecting channels manually. For 2G radio use either 1, 6 or 11 and make sure bandwidth is set to 20MHz.

erlinden

Could it be that 5G radio channel is set to auto and that the selected channel is not supported by your device? Or that it was in a DFS waiting state? Perhaps you can share your settings?

erlinden

If you want to configure your cAP ac as accesspoint, you shouldn't configure a DHCP server on it. If you create a bridge and add all interfaces to it (like you did), all devices will get the IP address from the corporate DHCP server (as well as the cAP ac if you define a DHCP client). Two additional...

erlinden

Have you rebooted the router yet?

erlinden

Haven't had problems with this. Could you please supply some information, how is the 2G radio configured? And what is "really bad performance"?

erlinden

What country have you selected? And have you selected regulatory-domain?

erlinden

It depends. What Internet bandwidth do you have, up- and downstream? What will your firewall look like? To summarize, what are your requirements besides number of users!

erlinden

Mikrotik would not give us WPS if it was not secure.

LOL! Do you really think Mikrotik will only provide functionality if it is secure!?

WPS is very secure as it is switched off after that.

Sounds like a valid reason, indeed WPS is only secure if it turned off.

erlinden

You are very wellcome, glad to hear about your progress.

I prefer to use DHCP reservation, this will give you static IP addresses as well.

erlinden

What version are you running on the mAP?
Please don't use the quicksettings...just don't.

erlinden

Reset the mAP (option in the menu), select no configuration

Login the mAP after it is rebooted

Create a bridge

Add all interfaces to the bridge

Add DHCP client if you want to have the mAP an IP address

So...leave the GL 750 as is, nothing to do there

erlinden

Reset it to default, no configuration. Afterwards, you can connect it to the router and configure it (connect to the mAP on MAC address). Next: Make a bridge and have all interfaces part of this bridge. Add a DHCP client (if you want the mAP to have an IP address. Configure your WiFi interfaces as w...

erlinden

I prefer to solve these problems with DNS, just have the service resolved to your internal IP address on your network (and your public IP address for the rest of the world).

erlinden

What client are you using for testing?
At what speed is the client connected?
Can you test with fixed channel?

erlinden

Why not do it properly and run a VPN service? Are you aware that there was (and still is depending on the version of RouterOS you are running) a huge security issue?

erlinden

Are you using fixed channels?
Why do you have two (overlapping) DHCP pools?
Why UPnP?

erlinden

I found this blog to be very helpfull:
https://justinho.com/blog/2017/07/15/hap-ac-lite.html

The benefit of the hAP ac² is CPU power. In the end it all depends on your requirements.

erlinden

[Update] It seems to work with the settings shown underneath... I want to use the Rate Limit in combination with Time For Rate Limited. My preferred schedule would be: 24x7 Internet access Every day, limit at these times: 00:00:00-07:30:00 11:30:00-16:00:00 20:00:00-00:00:00 Though it seems obvious,...

erlinden

It is not a problem, it is unexpected behaviour (for you). Switching channels is de Dynamic part in DFS. The Wiki: https://en.wikipedia.org/wiki/List_of_WLAN_channels gives you an overview on all allowed channels you can select. Perhaps you can do a WiFi scan with a client to find out the best chann...

erlinden

Why do you think the port is limited? What is the CPU load while testing? Could it be cable related (do you see a lot of CRC errors)?

erlinden

Can you please share your wireless settings?

Search found 158 matches