Community discussions

Search found 284 matches

by gustavomam
Thu Apr 05, 2018 1:17 pm
Forum: Scripting
Topic: How to clear ip firewall counters in script?
Replies: 3
Views: 750

Re: How to clear ip firewall counters in script?

Hi.

Try to use script only with one line
/ip firewall filter reset-counters numbers=5

It could be a problem with the previous lines in script.
by gustavomam
Tue Mar 13, 2018 5:34 pm
Forum: Wireless Networking
Topic: CAPsMAN how to keep .npk updated ? (Cap Manager auto-update)
Replies: 4
Views: 3067

Re: CAPsMAN how to keep .npk updated ?

Hi I don't understand your request. If you want to use upgrade policy require same version, is because you will put in manager files the latest version of RouterOS /caps-man manager set enabled=yes package-path=/upgrade/routeros-mipsbe-6.41.3.npk Important create a folder where you will upload the f...
by gustavomam
Tue Mar 13, 2018 5:25 pm
Forum: RouterOS v7
Topic: Feature request: 802.1x over ethernet
Replies: 5
Views: 1550

Re: Feature request: 802.1x over ethernet

+1 will be useful
by gustavomam
Tue Mar 13, 2018 5:19 pm
Forum: Beginner Basics
Topic: Hotspot setup in the Office
Replies: 1
Views: 439

Re: Hotspot setup in the Office

Hi,

Packets will go between server to clients and clients to server, RB wouldn't block communication because is local communication inside LAN (through the switch)

Client PC -> Switch -> Server PC
by gustavomam
Sat Sep 23, 2017 1:09 pm
Forum: Scripting
Topic: a script for monitoring packet loss for ping 10 times
Replies: 4
Views: 2400

Re: a script for monitoring packet loss for ping 10 times

You can use netwatch too.
But @iwankaro1 is asking for 90% lost. Netwatch is binary ping (works or not wokrs) you can't fine setup % of lost.
by gustavomam
Sat Sep 23, 2017 1:08 pm
Forum: Scripting
Topic: a script for monitoring packet loss for ping 10 times
Replies: 4
Views: 2400

Re: a script for monitoring packet loss for ping 10 times

You can use netwatch too.
But @iwankaro1 is asking for 90% lost. Netwatch is binary ping (works or not wokrs) you can't fine setup % of lost.
by gustavomam
Sat Sep 23, 2017 1:05 pm
Forum: Wireless Networking
Topic: Capsman low speed
Replies: 4
Views: 1354

Re: Capsman low speed

You should look each device wireless properties like:
Sensitive
Chains Quantity
Tx power
Band Support (2Ghz and 5 Ghz)
802.11 standard support (a,b,g,n, ac)
by gustavomam
Wed Sep 20, 2017 10:13 pm
Forum: Scripting
Topic: a script for monitoring packet loss for ping 10 times
Replies: 4
Views: 2400

Re: a script for monitoring packet loss for ping 10 times

Hi.

Try this script.
:local ipPing ("8.8.8.8")
:local pingip
:set pingip [/ping $ipPing count=10]
:if ($pingip = 1) do={
	:log info ("90% lost")
    /interface ethernet disable ether1
} else={
    /interface ethernet enable ether1
}
by gustavomam
Wed Sep 20, 2017 10:06 pm
Forum: Wireless Networking
Topic: Capsman low speed
Replies: 4
Views: 1354

Re: Capsman low speed

Hi. I guess this it not a problem with capsman. First you have to look in capsman registration table Tx/Rx rate. For example if you reach 150 Mbps data rate, then you will have aprox. 75 Mbps effective if there is only one device in this cap. The reason you won't be able to reach all the capacity of...
by gustavomam
Thu Aug 17, 2017 9:47 am
Forum: General
Topic: set primary ip for interface
Replies: 6
Views: 1106

Re: set primary ip for interface

I think it would be match with the specific mask like routing table because it is the more probability best option , /30 will be prefer than /27. As far as i know it is not possible to set primary or secondary IP in a interface, in fact have more than an IP address in a interface is not the best pra...
by gustavomam
Mon Jun 26, 2017 6:52 pm
Forum: Scripting
Topic: Failover
Replies: 6
Views: 1056

Re: Failover

You can simplify using netwatch instead scripting /tool netwatch add down-script="/ip route disable [find comment=wan1]" host=8.8.8.8 up-script="/ip route enable [find comment=wan1]" Here the router will be pinging 8.8.8.8 and when it fail will shutdown the route with comment=wan1 Play a little bit ...
by gustavomam
Mon Jun 26, 2017 6:45 pm
Forum: Beginner Basics
Topic: Whitelisted generic
Replies: 1
Views: 240

Re: Whitelisted generic

You will need a DDOS prevent firewall

New firewall raw in MikroTIk was though for this.

Check this topic in MUM will hepl you
https://mum.mikrotik.com/presentations/ ... 372820.pdf
by gustavomam
Mon Jun 26, 2017 5:32 pm
Forum: Beginner Basics
Topic: Second ISP Mikrotik and Winbox problem
Replies: 3
Views: 498

Re: Second ISP Mikrotik and Winbox problem

Ok.

Can you give more information about your firewall?

/ip firewall filter export
/ip firewall nat export
/ip firewall mangle export
by gustavomam
Fri Jun 23, 2017 5:02 pm
Forum: Beginner Basics
Topic: ping comes by WAN1, but reply goes to WAN2
Replies: 2
Views: 349

Re: ping comes by WAN1, but reply goes to WAN2

Hello mgo You should check output and input mark in mangle in order to track your connections properly and route in the correct wan. add chain=prerouting in-interface=ISP1 connection-mark=no-mark action=mark-connection new-connection-mark=ISP1_conn add chain=prerouting in-interface=ISP2 connection-m...
by gustavomam
Fri Jun 23, 2017 12:00 pm
Forum: General
Topic: Reason for autosupout
Replies: 8
Views: 1179

Re: Reason for autosupout

I think this error (hardware/software) will not be available in MikroTik log, i'm sure inside deep linux kernel we can check this log.
The same reason that we couldn't install new drivers in mikrotik, we have limited access to linux that support routerOS funcionality
by gustavomam
Fri Jun 23, 2017 11:47 am
Forum: General
Topic: Reason for autosupout
Replies: 8
Views: 1179

Re: Reason for autosupout

Hi

It looks like is automatic autosupout
Ckeck this topic.

viewtopic.php?t=24739
by gustavomam
Fri Jun 23, 2017 11:45 am
Forum: Beginner Basics
Topic: Second ISP Mikrotik and Winbox problem
Replies: 3
Views: 498

Re: Second ISP Mikrotik and Winbox problem

If you have already check all you said.

Maybe you are trying to enter in your mikrotik's ISP , it happens to me a lot in the past. Did you check your mikrotik logs? if there is not log my theory is true.
by gustavomam
Fri Jun 23, 2017 9:18 am
Forum: Wireless Networking
Topic: Wirelles can over 25mb of Download
Replies: 18
Views: 3465

Re: Wirelles can over 25mb of Download

It is not a problem It is wireless functionality, depends of many factors: Data rates negotiated How many wireless devices are connected SNR Bandwith channel Re transmissions Noise Device sensitive 802.11 standard (a,b,g,n,ac) Upload and download Etc. Even if you have a good data rate, let's said 14...
by gustavomam
Thu Jun 22, 2017 5:05 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Manage Clients to where they connecting
Replies: 4
Views: 772

Re: Manage Clients to where they connecting

Did you see the link i had sent you?.

I am really new in this topic too, but what i know it could works.
by gustavomam
Thu Jun 22, 2017 5:03 pm
Forum: Beginner Basics
Topic: Routing troubles
Replies: 6
Views: 522

Re: Routing troubles

You need this route in MikroTik Router

ip route add dst-address=192.168.10.0/24 gateway=(IP VPN on Dlink router)

and in the D-link router (in the brand syntax)

ip route add dst-address=192.168.120.0/24 gateway=(IP VPN on MikroTIk Router)
by gustavomam
Wed Jun 21, 2017 8:25 pm
Forum: Beginner Basics
Topic: Routing troubles
Replies: 6
Views: 522

Re: Routing troubles

Maybe you need to add routes between routers.

Please post a simple diagram of your two routers, networks and IPs
by gustavomam
Wed Jun 21, 2017 1:32 pm
Forum: Beginner Basics
Topic: Routing troubles
Replies: 6
Views: 522

Re: Routing troubles

If both networks have their default route pointing mikrotik router, they should see each other.

Why did you add local bridge to pptp profile?

Adding this means you have site to site VPN and you want to link routers using BCP (Bridge Control Protocol), i guess it is not your propose.
by gustavomam
Wed Jun 21, 2017 12:35 am
Forum: General
Topic: ( Solved )PCC Load Banance Router and VPN have no internet
Replies: 14
Views: 1354

Re: PCC Load Banance Router and VPN have no internet

There is a trick to ping host in local network from vpn users in the same network.

Put your lan interface in this mode arp=proxy-arp
by gustavomam
Tue Jun 20, 2017 5:30 pm
Forum: General
Topic: ( Solved )PCC Load Banance Router and VPN have no internet
Replies: 14
Views: 1354

Re: PCC Load Banance Router and VPN have no internet

Check step by step.

Can you reach other network? ping 8.8.8.8
Can you resolve dns? ping google.com
by gustavomam
Tue Jun 20, 2017 5:23 pm
Forum: General
Topic: ( Solved )PCC Load Banance Router and VPN have no internet
Replies: 14
Views: 1354

Re: PCC Load Banance Router and VPN have no internet

You are right, thanks for correct me.

It is not necessary mark-connection, my post have two action in the same rule so it couldn't work as well.

I put here the correct rule
add chain=prerouting src-address=192.168.3.101-192.168.3.150 action=accept
by gustavomam
Tue Jun 20, 2017 1:02 am
Forum: General
Topic: ( Solved )PCC Load Banance Router and VPN have no internet
Replies: 14
Views: 1354

Re: PCC Load Banance Router and VPN have no internet

I think your L2TP VPN is load balance and thats why you couldn't have internet connection as well Try to add this line and the top of your firewall mangle add action=mark-connection chain=prerouting src-address=192.168.3.101-192.168.3.150 action=accept Where 192.168.3.101-192.168.3.150 is L2TP_Pool ...
by gustavomam
Mon Jun 19, 2017 5:05 pm
Forum: General
Topic: ( Solved )PCC Load Banance Router and VPN have no internet
Replies: 14
Views: 1354

Re: PCC Load Banance Router and VPN have no internet

Hello.

Please give more information about your configuration

/ip route print

/ip route export

/ip firewall mangle

/ip firewall filter

or you can give us this full config

/export
by gustavomam
Mon Jun 19, 2017 4:59 pm
Forum: Forwarding Protocols
Topic: OSPF backup route send email
Replies: 9
Views: 863

Re: OSPF backup route send email

Hi.

Maybe you can complete your routine with a more conditions like this:
:foreach i in=[find gateway=$gateway1 && active && dst-address=0.0.0.0/0] do={
by gustavomam
Sat Jun 17, 2017 2:30 pm
Forum: General
Topic: Why turn off Neighbor Discovery (ND)?
Replies: 4
Views: 5237

Re: Why turn off Neighbor Discovery (ND)?

Hi. Is a best practice in IPv4 too. It is the way to avoid sending network discovery packets to interfaces. A premise for security is meanwhile people now you less is better for your security. Through ND packets you send information like routerOS version, software ID, plataform, interface name, upti...
by gustavomam
Fri Jun 16, 2017 9:11 pm
Forum: Forwarding Protocols
Topic: OSPF backup route send email
Replies: 9
Views: 863

Re: OSPF backup route send email

Yes I have tried it early morning

Did it work for you?
by gustavomam
Fri Jun 16, 2017 7:08 pm
Forum: Wireless Networking
Topic: hAP AC RC throughput improvements?
Replies: 1
Views: 349

Re: hAP AC RC throughput improvements?

HI.

Maybe this results is the new routerOS drivers updates.

Check this articule, where i talk about it
viewtopic.php?f=7&t=121883&hilit=MUM
by gustavomam
Fri Jun 16, 2017 6:58 pm
Forum: General
Topic: Shared Folders
Replies: 15
Views: 1973

Re: Shared Folders

Did you check windows firewall in both sides?

Revisaste que el firewall de windows estuviera desactivado en ambos extremos?
by gustavomam
Fri Jun 16, 2017 10:13 am
Forum: Beginner Basics
Topic: CRS326 - Newbee
Replies: 3
Views: 511

Re: CRS326 - Newbee

Thanks for your help Normis.

I am newbee in SwOS too, everyday we learn stuffs in forum.
by gustavomam
Fri Jun 16, 2017 10:00 am
Forum: Beginner Basics
Topic: CRS326 - Newbee
Replies: 3
Views: 511

Re: CRS326 - Newbee

Hi,

System Routerboard
Settings
Option boot OS

Here you can change RouterOs or SwOS booting
by gustavomam
Fri Jun 16, 2017 9:39 am
Forum: Forwarding Protocols
Topic: OSPF backup route send email
Replies: 9
Views: 863

Re: OSPF backup route send email

Ok Arky you can use this: :global gateway1 ("10.20.180.120") /ip route { :foreach i in=[find gateway=$gateway1] do={ :if ([/ip route get $i active]) do={ /tool e-mail send to="peter@gmail.com" subject="ALERT Gateway1 is enable" :log info ("ALERT Gateway1 is enable") ; } else={ /tool e-mail send to="...
by gustavomam
Thu Jun 15, 2017 6:52 pm
Forum: General
Topic: Shared Folders
Replies: 15
Views: 1973

Re: Shared Folders

It has to be in filter rules and chain forward.

Debe ser en el filter rules y la cadena forward.
by gustavomam
Thu Jun 15, 2017 6:33 pm
Forum: Wireless Networking
Topic: Local forwarding vs. CAPsMAN forwarding
Replies: 6
Views: 3594

Re: Local forwarding vs. CAPsMAN forwarding

I have edited my post because it was mistake. am i right now?
by gustavomam
Thu Jun 15, 2017 5:38 pm
Forum: Wireless Networking
Topic: Local forwarding vs. CAPsMAN forwarding
Replies: 6
Views: 3594

Re: Local forwarding vs. CAPsMAN forwarding

Hi. It is really simple. There are two planes in wifi: data plane and control plane. By default local forwarding is disable: it means control (capsman) and data ( data from user to internet) are going to capsman manager If you enable local forwarding: your control will be manage in capsman router an...
by gustavomam
Wed Jun 14, 2017 2:40 pm
Forum: Virtualization
Topic: CHR for wireless bridge
Replies: 7
Views: 1291

Re: CHR for wireless bridge

Hi.

As far as I know you can't install wireless adapter in virtual RouterOs machines.

Could anyone have success with this?
by gustavomam
Wed Jun 14, 2017 1:01 pm
Forum: General
Topic: Router on a stick doesn't work.
Replies: 1
Views: 596

Re: Router on a stick doesn't work.

Hi.

Hi with virtual machines you must use service tag and to put the interface (VMWARE interface) in promiscuous mode accepting all vlans from 1-4095

You can check this old post too.

viewtopic.php?f=13&t=106193&hilit=virtual+machines
by gustavomam
Wed Jun 14, 2017 11:12 am
Forum: Wireless Networking
Topic: About CAPsMan channel selection.. Again!!!!
Replies: 7
Views: 3888

Re: About CAPsMan channel selection.. Again!!!!

Good!!.Thanks Uldis

I have upgrade and tested it now. Works fine!

Image

Will be useful too have the same feature selecting multiple Channel above
by gustavomam
Wed Jun 14, 2017 10:44 am
Forum: Scripting
Topic: Add adresses with loop script
Replies: 4
Views: 913

Re: Add adresses with loop script

Hi.

I have test your script whit 3 interfaces and works
:for e from 101 to 103 do={
/ip address add address=("10.150." .$e .".1/24") \ 
interface=($e)
}
I tested vlan and bridge interface.

What RouterOs version do you have?, is it the latest?
by gustavomam
Wed Jun 14, 2017 9:46 am
Forum: Scripting
Topic: Add adresses with loop script
Replies: 4
Views: 913

Re: Add adresses with loop script

Your script works.

Do you have the correct name of your interfaces?.

I mean interface name 101,102,103...150 ?
by gustavomam
Wed Jun 14, 2017 9:40 am
Forum: General
Topic: Failover not working
Replies: 1
Views: 327

Re: Failover not working

Hi.

First of all. Upgrade your RouterOs . The latest available now is 6.39.2.

It looks that your second gateway 93.64.36.241 in not reachable, do you have check gateway by ping enable?
Please send your export for this command
/ip route print detail
by gustavomam
Wed Jun 14, 2017 9:31 am
Forum: Wireless Networking
Topic: About CAPsMan channel selection.. Again!!!!
Replies: 7
Views: 3888

Re: About CAPsMan channel selection.. Again!!!!

Hi You are right, there is not direct response from MikroTik about this topic. In fact, Capsman was not think to achieve auto channel selection when you turn on yours AP. The only response meanwhile is that we have to choose it manually for each AP , using the old frequency channel planning and tuni...
by gustavomam
Tue Jun 13, 2017 9:58 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Manage Clients to where they connecting
Replies: 4
Views: 772

Re: Manage Clients to where they connecting

Hi. Did you hear about DNS load balancing? Maybe the solution is to have your 4 routers in the same DNS name and implement load balancing, so by round robin algorithm it will choose a different IP of your routers. Check this link https://www.digitalocean.com/community/tutorials/how-to-configure-dns-...
by gustavomam
Mon Jun 12, 2017 6:46 pm
Forum: General
Topic: What router to get for the following setup
Replies: 3
Views: 340

Re: What router to get for the following setup

This RouterBoard rocks!

If you have extra money and you can afford it, buy it!

I was telling you the minimum router to achieve this traffic. As you know if you can buy a better router of course you are covered to scale your network.
by gustavomam
Mon Jun 12, 2017 6:35 pm
Forum: Wireless Networking
Topic: PTP Problem !!!
Replies: 1
Views: 390

Re: PTP Problem !!!

CCQ values doesn't have correct values when the radio is using NV2.

Remember that NV2 is a proprietary protocol based in TDMA so it is not the same way to calculate average of values Tmin/Treal of CCQ
by gustavomam
Mon Jun 12, 2017 6:30 pm
Forum: General
Topic: VRRP on VLAN
Replies: 11
Views: 1955

Re: VRRP on VLAN

Hi.

I think you have the answer in a old post.

Check this out
viewtopic.php?t=56698
by gustavomam
Mon Jun 12, 2017 6:25 pm
Forum: Wireless Networking
Topic: Problem with CAPsMAN and hotspot
Replies: 1
Views: 417

Re: Problem with CAPsMAN and hotspot

Did you try to force radio provision in capsman radio tab?