Community discussions

Search found 801 matches

by NathanA
Sat Oct 19, 2019 12:12 pm
Forum: General
Topic: Multiple concurrent PPPoE over single ethernet [SOLVED]
Replies: 17
Views: 842

Re: Multiple concurrent PPPoE over single ethernet [SOLVED]

As I said before, I would guess you can use clever rules under "/interface bridge filter" and "/interface bridge nat" to do what you want, but that would probably get very complicated to maintain. I have not sat down and tried to work out how exactly to do this (maybe create VLANs off the WAN port, ...
by NathanA
Fri Oct 18, 2019 7:47 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

To test some of the theories in this thread, I netinstalled 6.45.6 on a spare board, with default config and then exposed SSH to the internet after setting a strong admin password. So far while there are plenty of brute force attempts, there is no sign of an exploit that can bypass authentication. ...
by NathanA
Fri Oct 18, 2019 9:14 am
Forum: General
Topic: Multiple concurrent PPPoE over single ethernet [SOLVED]
Replies: 17
Views: 842

Re: Multiple concurrent PPPoE over single ethernet [SOLVED]

I haven't tested this, but I suspect your problem is likely that all of your PPPoE connections are coming from the same MAC address. When that is the case, the server won't know how to address the individual clients (that all share same MAC, since it is transmitting to that one MAC for both of the c...
by NathanA
Thu Oct 17, 2019 8:52 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

No, but people write those exploit kits that a script kiddie can use to quicky distribute his desired attack code to many different types of router. Of course it will use a different method for different routers. ` Of course, but the implication of the post that R1CH was responding to is that there...
by NathanA
Thu Oct 17, 2019 7:53 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

so from what has been posted above it seams like some kind of ssh authentication bypass. it seams also that at least the user name must be known. ` Either SSH bypass somehow (though some sort of exploit in-band within SSH, or by first exploiting something outside of SSH, like through API etc.), or ...
by NathanA
Thu Oct 17, 2019 6:56 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

Was there anyone here using SSH keys to log in instead of passwords? For anyone exploited, did the bot add any keys for any users? ` Please read my earlier, detailed post. It itemizes exactly what got changed in the router, which *only* includes the addition of 2 new NAT rules at the very end of th...
by NathanA
Thu Oct 17, 2019 6:02 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

Normis et al., Just to make it clear: All of our clients' routers that got hit, they all got hit at virtually the exact same time, and all from the same source IP. They did admittedly all have an "admin" user, and they all obviously had SSH enabled, so that's admittedly a problem. However, they all ...
by NathanA
Wed Oct 16, 2019 11:45 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 50
Views: 5877

Re: Is there an new exploit going around?

I know Tim & I have been discussing this elsewhere but good to see a thread started here. I'll share what I know so far, having had some of our own clients' routers experience the same attack last night. The attacker is managing to log in via SSH as user 'admin'. There were zero failed login attempt...
by NathanA
Fri Jul 05, 2019 11:15 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 807

Re: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)

Logically setting priority from ingress would make more sense as a default action to me too...... ` I'd go a step farther. "Setting priority from ingress" shouldn't be a default action. How about NOT TOUCHING THE CONTENTS OF THE FRAME AT ALL UNLESS OTHERWISE REQUESTED is the "default action". That ...
by NathanA
Fri Jul 05, 2019 11:05 am
Forum: General
Topic: Changing MTU on PPPoE Client corrupts dial password
Replies: 2
Views: 219

Re: Changing MTU on PPPoE Client corrupts dial password

I have never encountered this, and we have a lot of ROS deployed client-side.

If PPPoE client in question is authing with plaintext PAP, you should be able to see what password it is sending to the NAS (via verbose logs on the RADIUS server), and thus see exactly how it is being changed.

-- Nathan
by NathanA
Wed Jul 03, 2019 10:33 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 807

Bridge is resetting CoS to 0

...however, if I find that it's another MikroTik on the network that is responsible for stripping the CoS value as VLANs pass through, I'll be sure to hit you up again. :mrgreen: ` So. Turns out the device responsible for stripping the CoS was another MikroTik on the network. After poking at this o...
by NathanA
Wed Jun 26, 2019 12:29 pm
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 807

Re: Setting CoS from DSCP on PPPoE server

NEVER MIND. This actually works exactly the way you would expect it to: create the appropriate mangle rule on the router running the PPPoE server and voila. No need to involve bridges at all. The reason I was not seeing what I expected to see is because there is apparently a device somewhere in the ...
by NathanA
Tue Jun 25, 2019 4:03 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 807

Re: Setting CoS from DSCP on PPPoE server

I haven't tried this myself, but is your setup a bridge with a VLAN on it, or is it a bridge where there is a VLAN interface as the port of the bridge? There is sometimes a difference in behavior between the two - we do some QoS stuff with bridge filters that works only with the VLAN interface as a...
by NathanA
Tue Jun 25, 2019 12:28 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 807

Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)

(3 July 2019 update and TL;DR: the PPPoE server wasn't the problem; see my most recent post where I discuss MT bridges secretly resetting CoS on forwarded VLAN frames) 'lo all, Let's hypothesize that I am running a PPPoE server on a 802.1q (ethertype 0x8100) VLAN. So, IP packets to be forwarded over...
by NathanA
Wed Apr 10, 2019 7:52 am
Forum: RouterBOARD hardware
Topic: R11e-4G vs R11e-LTE
Replies: 5
Views: 1117

Re: R11e-4G vs R11e-LTE

[...] ` For what it's worth, the R11e-4G appears to be Altair ALT3800-based. I'm guessing that it's being paired with the ALT6300 transceiver in order to support all of those bands. Although it's too bad that this is CAT4 (in the year 2019), we have deployed other ALT3800 UEs in TDD mode and had pr...
by NathanA
Wed Apr 10, 2019 12:53 am
Forum: The Dude
Topic: Dude Installation instructions don't work
Replies: 6
Views: 699

Re: Dude Installation instructions don't work

If you drag an NPK into the Files window of a router you are connected to with Winbox, it should show up as a file in the file list. Once you reboot the router, the NPK will be installed, at which point it will no longer show up in Files if you look there. But if you look in System > Packages after ...
by NathanA
Fri Apr 05, 2019 12:17 am
Forum: The Dude
Topic: Programmatically adjust devices?
Replies: 8
Views: 846

Re: Programmatically adjust devices?

I’m working on a little tool that can bulk execute any command that you would be able to execute in the CLI. ` ...but isn't the exact problem being talked about here that The Dude has virtually no CLI access whatsoever? So what good would this do? For example, try "/dude device print detail" or "/d...
by NathanA
Fri Mar 01, 2019 5:08 am
Forum: The Dude
Topic: Pulling data direct from Dude database -- proof-of-concept
Replies: 3
Views: 1362

Pulling data direct from Dude database -- proof-of-concept

We have slowly begun to rely more and more on The Dude (which some might argue is maybe a mistake?), and one of the things that is still clearly lacking (in a "big E on the eyechart" sense) is programmatic access to the data. The CLI support for Dude access on RouterOS is basically useless, and the ...
by NathanA
Fri Mar 01, 2019 2:26 am
Forum: The Dude
Topic: The Dude IS Dead, really, isn't it?
Replies: 30
Views: 5556

Re: The Dude IS Dead, really, isn't it?

Last, and it's hard to say without sounding like I'm insinuating something bad, who knows how the code looks like, i.e. if someone else would be able to do anything useful with it. It doesn't have to be bad, even some unique style can be a problem. ` I think the biggest roadblock to making Dude ope...
by NathanA
Thu Jan 24, 2019 8:50 pm
Forum: RouterBOARD hardware
Topic: InterCell
Replies: 42
Views: 5023

Re: InterCell

Another request for the CBRS band here in the US. Right now it's Telrad, Cambium or Baicells. ` Technically Cambium's 3.6GHz LTE product is not shipping yet, and is still a ways out (especially the 8x8 MIMO version where the Medusa is used as a radio head...that's even farther out than B48 support ...
by NathanA
Thu Jan 24, 2019 8:37 pm
Forum: RouterBOARD hardware
Topic: InterCell
Replies: 42
Views: 5023

Re: InterCell

Unfortunately we can't make the Product that supports both B43 and B48 so you would need to choose which one you would need. ` This doesn't make sense to me. The two bands overlap and all of your competitors who have beaten you to market already manufacture such base stations that support both band...
by NathanA
Fri Oct 05, 2018 4:55 pm
Forum: General
Topic: IPsec Mode Config and iPhone6 [SOLVED]
Replies: 11
Views: 1058

Re: IPsec Mode Config and iPhone6 [SOLVED]

... only change is firmware updates for CCR009. and IOS updates for iPhone. ` So how do you know that the fault is with RouterOS 6.43.x and not with iOS 12? If you try a device with iOS 11 still on it, does it do the same thing? What happens if you try to use the VPN over Wi-Fi instead of over Roge...
by NathanA
Thu Oct 04, 2018 4:21 pm
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 57
Views: 13110

Re: RB3011 port flopping - bad design

Hello, RB3011 Port Flapping problem is addressed by means of a new CPU Flow Control setting in RouterOS v6.43. If you have experienced this problem, it is recommended to upgrade to the v6.43 and apply following RouterOS command to prevent lockups between RB3011 switch chips and CPU. /interface ethe...
by NathanA
Thu Oct 04, 2018 1:10 pm
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

It would be nice when NAT entries in general (and for SIP in particular) were more aware of interfaces going down/up, routing to change, etc. ` Your version of the issue sounds like the "dual WAN" scenario, and the previous explanations for the underlying cause of that variant of the problem make s...
by NathanA
Thu Oct 04, 2018 12:02 pm
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

Though i have to say, the issue doesn't always come up, what seems to happen (for us) is if there is only a brief disconnection of PPoE (like really quickly, [...]). I think your disconnections are long enough, thats why the issue doesn't happen, [...] ` No, ours tend to happen after brief disconne...
by NathanA
Thu Oct 04, 2018 11:09 am
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

Chupaka wrote: In Terminal - yep, but when you paste the script via WinBox - nope :) ` Maybe I am misunderstanding you, but what you say does not appear to be true: if I take this script WITHOUT escaping the $, add it to System > Scripts in Winbox, and then highlight it and click the "Run Script" bu...
by NathanA
Wed Oct 03, 2018 12:01 pm
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

I would use 'dst-address~":5060$"' form: it doesn't touch ports 50600-50609 and it should be a bit faster :)
`
Good point. Though it apparently needs to be ":5060\$" because MikroTik CLI will try to parse $ (even when in quotes!) if it isn't escaped. :)

-- Nathan
by NathanA
Wed Oct 03, 2018 7:19 am
Forum: General
Topic: Mikrotik Router SIP Connection Blocked.
Replies: 76
Views: 37852

Re: Mikrotik Router SIP Connection Blocked.

Since I see people have still been posting in this thead, and some of the more recent responses have mentioned that they are using PPPoE, I thought I'd stop by to let people here know that as of RouterOS 6.33, if you are using PPPoE on your WAN and suffering from this problem, you can use the "on-up...
by NathanA
Wed Oct 03, 2018 7:09 am
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

I just realized/discovered today that IF you are using a PPPoE client on WAN (as I mentioned I was in my earlier post), then detecting the change (down/up event) and automatically acting on it is super-easy, and you don't have to fire off a scheduled script every 60 seconds to do it, either. In 6.33...
by NathanA
Wed Sep 26, 2018 2:33 am
Forum: RouterBOARD hardware
Topic: NetInstall Instructions
Replies: 8
Views: 2700

Re: NetInstall Instructions

NetInstall could find my router. I selected the proper ROS version. Clicking INSTALL did nothing. No formatting - no progress bar, just nothing. Trying the process again from scratch sometimes produced slightly different results - the 'ready' notation in the Hardware window would disappear for 5 se...
by NathanA
Tue Sep 25, 2018 3:10 pm
Forum: RouterBOARD hardware
Topic: NetInstall Instructions
Replies: 8
Views: 2700

Re: NetInstall Instructions

It boggles the mind how many people do not understand the principles on which Netinstall works. Perhaps the Wiki documentation is not well-written, and I am just blind to it because I understand it and have been using it for so long... "Net Booting – Change IP address back to client address: 192.168...
by NathanA
Thu Sep 20, 2018 1:30 am
Forum: RouterBOARD hardware
Topic: RB1100 dead
Replies: 12
Views: 1373

Re: RB1100 dead

Based on this topic it seems the bootloader is damaged. You may find more advice here: https://forum.mikrotik.com/viewtopic.php?t=133750 ` That's an interesting thread; thanks for unearthing it. Regardless, there should always be a backup bootloader even if the main one is damaged. That is what is ...
by NathanA
Wed Sep 19, 2018 2:24 pm
Forum: RouterBOARD hardware
Topic: RB1100 dead
Replies: 12
Views: 1373

Re: RB1100 dead

I don't think it is a hardware problem. It is a pure software problem. ` You may be right. But you also passed by all advice and requests for further information. The answers to the questions I asked would have taken 5 minutes at most for you to collect and then post here, but you decided instead t...
by NathanA
Wed Sep 19, 2018 6:16 am
Forum: RouterBOARD hardware
Topic: RB1100 dead
Replies: 12
Views: 1373

Re: RB1100 dead

Annapurna Labs stage 2: stage2_eth3_ram_loader v1.65.1 main.c:000001E9 ` Is that the only thing you see on serial console? Did you have it plugged in before powering it up, and when you powered it up it only printed those 2 lines on the console and nothing else? You said in your original post that ...
by NathanA
Mon Sep 17, 2018 2:15 pm
Forum: RouterBOARD hardware
Topic: How to set RB750Gr3 DHCP to not push Gateway address [SOLVED]
Replies: 5
Views: 556

Re: How to set RB750Gr3 DHCP to not push Gateway address [SOLVED]

It's pretty simple: just don't fill in the spaces for gateway or DNS...
mt-dhcp.png
-- Nathan
by NathanA
Mon Sep 17, 2018 2:08 pm
Forum: RouterBOARD hardware
Topic: boot problems
Replies: 6
Views: 643

Re: boot problems

Start the router with the reset button.

Once it is running, use "/system routerboard upgrade"

Then try reboot again.

-- Nathan
by NathanA
Fri Sep 14, 2018 12:59 pm
Forum: RouterBOARD hardware
Topic: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]
Replies: 8
Views: 1122

Re: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]

More so, both SW-ID & license key were visible in Netinstall too. ` ...earlier... ` [...]Netinstall still has connection to the router, but now the license key field is blank . ` I'm genuinely super happy for you, but also super confused. In your first post, you said that when you ran Netinstall, t...
by NathanA
Fri Sep 14, 2018 2:36 am
Forum: RouterBOARD hardware
Topic: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help
Replies: 12
Views: 1600

Re: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help

To be clear, the only thing that you did was to update the bootloader firmware, right? You didn't have to re-Netinstall after the firmware update? It just instantly "found" the copy of RouterOS that was already on there from previous Netinstall attempts and it started right up? The backup bootloader...
by NathanA
Thu Sep 13, 2018 9:48 am
Forum: RouterBOARD hardware
Topic: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]
Replies: 8
Views: 1122

Re: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]

I have the dime problem. I reset and after brick https://youtu.be/vBAgbNVZngs ` Sorry, but that doesn't look or sound like the same problem to me. Yours is not finishing booting, though the bootloader is definitely working (as evidenced by the fact that it beeps a single time, which means it found ...
by NathanA
Wed Sep 12, 2018 5:58 pm
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

Wow, that is crazy! If the NAND wasn't defective, the only theory I can come up with is that there is something else physically wrong with the board. Maybe one of the PCB traces between the CPU/SoC and the flash chip is faulty or broken? If your friend is as good with electronics repair as he sounds...
by NathanA
Wed Sep 12, 2018 5:54 pm
Forum: RouterBOARD hardware
Topic: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help
Replies: 12
Views: 1600

Re: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help

Cool beans, though updating the firmware really shouldn't have been "necessary" per-se. If that fixed it, that tells me that either there was a bug in the older bootloader that you somehow managed to trip and which was fixed in the updated loader, or there was actually some change in how some newer ...
by NathanA
Tue Sep 11, 2018 1:59 am
Forum: RouterBOARD hardware
Topic: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]
Replies: 8
Views: 1122

Re: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]

I believe I'm engaging 2 different bootloaders because that's how I interpret the documentation. To engage main bootloader - apply power AND THEN press RESET, wait for bootloader to kick in. To engage the backup one - press RESET BEFORE applying power. Or so I thought. ` Actually, now that I stop t...
by NathanA
Mon Sep 10, 2018 3:51 pm
Forum: RouterBOARD hardware
Topic: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]
Replies: 8
Views: 1122

Re: Help me revive my RB2011UiAS-2HnD-IN [SOLVED]

That you seem to know which bootloader is being used would seem to imply that you have a serial cable hooked up to the RJ45 RS232 console port. (If you were engaging Netinstall with the reset button every time instead of via RouterBOOT console menu, then I think you would always be using the backup ...
by NathanA
Mon Sep 10, 2018 3:34 pm
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

Did you mean the license will be lost if I replace the NAND chip. ` I am sorry if I did not explain this clearly before. If my understanding of where the license is stored is correct, then in theory, you will NOT lose the license by replacing the NAND chip. NAND chip only stores your copy of Router...
by NathanA
Mon Sep 10, 2018 9:57 am
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

Do you have a micro SD card in the board? 2048MB seems suspiciously like a card may be present. ` NAND specifically refers to on-board NAND. If the microSD slot is populated, RouterBOOT will not mention it. The number that is shown for NAND size by the bootloader should never change from what it sh...
by NathanA
Sat Sep 08, 2018 9:01 am
Forum: RouterBOARD hardware
Topic: RB4011
Replies: 371
Views: 70749

Re: RB4011

And putting 4011 label on it doesn't make it any more x011 series than any other random 10 port router ` Oh come now. You can't be serious. The 3011 and 4011 have more in common with each other than an IBM-era ThinkPad and a modern Lenovo-era ThinkPad...sheesh. :roll: I think the most strange omiss...
by NathanA
Sat Sep 08, 2018 1:41 am
Forum: RouterBOARD hardware
Topic: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help
Replies: 12
Views: 1600

Re: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help

Nathan ... Question for ya .... If you have created a primary and fallback partition, would this suspect RouterBOOT issue affect the booting of both partitions, being a low level operation? Or would just one be impacted and the other will boot normally? ` Good question, since I am mainly basing my ...
by NathanA
Fri Sep 07, 2018 4:00 pm
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

I was wondering, if I swap a new NAND chip in place of the defective one, after I do that, can I use Netinstall to install the RouterOS? If not, what should I do after I swap that NAND chip. Is that the booter will gone after I replace the NAND chip? if it's gone, is it possible for me to make it i...
by NathanA
Fri Sep 07, 2018 3:42 pm
Forum: RouterBOARD hardware
Topic: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help
Replies: 12
Views: 1600

Re: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help

It's possible that your flash did indeed fail and is physically defective. But it's also possible that this is a RouterBOOT bug...it's not exactly the same, but it is similar enough to what some CRS317 owners reported here to make me suspicious: thread link CRS3xx and RB450Gx4 are both ARM-based, so...
by NathanA
Fri Sep 07, 2018 3:30 pm
Forum: General
Topic: RB450Gx4 WAN throughput decreases
Replies: 7
Views: 952

Re: RB450Gx4 WAN throughput decreases

...and also changed IP > Address > Interface to bridge from ether2. ` Guaranteed this wasn't the issue. Although it can "work" (depending), assigning an IP address to an interface that is a member of a bridge makes no sense. Once an interface is a bridge member, it should not be individually refere...
by NathanA
Fri Sep 07, 2018 11:58 am
Forum: RouterBOARD hardware
Topic: RBM33G Voltage Monitoring
Replies: 2
Views: 494

Re: RBM33G Voltage Monitoring

I would always be wary of what a retailer claims about a product. Best to go straight to the source. And in this case, neither the product page nor the product brochure mentions anything about voltage monitoring support or any other health monitoring. Interestingly, your M33G behaves ever-so-slightl...
by NathanA
Fri Sep 07, 2018 11:31 am
Forum: RouterBOARD hardware
Topic: Mikrotik with SIP port integrated
Replies: 8
Views: 1600

Re: Mikrotik with SIP port integrated

There are many devices out there like the cambium R201P but they are not supported by FreePBX.directly (they work but you have to chose some random ATA config that works, not listed directly). ` If it speaks SIP, it will work with FreePBX. If you mean that you want FreePBX to generate the provision...
by NathanA
Fri Sep 07, 2018 4:51 am
Forum: RouterBOARD hardware
Topic: Resurrecting an RB150
Replies: 2
Views: 463

Re: Resurrecting an RB150

I know that such a thing (flashing an image via TFTP) is common with other "consumer-grade" router brands, but it is a common misconception that you can flash a RouterOS NPK directly using either serial console or TFTP. That isn't possible. Serial console XMODEM upload is only for bootloader flashin...
by NathanA
Tue Sep 04, 2018 12:45 am
Forum: RouterBOARD hardware
Topic: R450G overheating at about 51oC temperature?
Replies: 19
Views: 1476

Re: R450G overheating at about 51oC temperature?

Don't know why I am still not conviced this is a hardware issue... but I'am not expending more time on this. ` There is a very simple way to prove it to yourself beyond a doubt: Buy another 450G. Put it in the exact same environment (in the exact same physical space, even...have it take the place o...
by NathanA
Sun Sep 02, 2018 1:34 pm
Forum: RouterBOARD hardware
Topic: R450G overheating at about 51oC temperature?
Replies: 19
Views: 1476

Re: R450G overheating at about 51oC temperature?

[...] I use 5 of them in my company and I have scheduled them to reboot every 8 hours! But... for what reason do you reboot yours every 8 hours? ` I, for one, think that's nuts: Screen Shot 2018-09-02 at 3.30.40 AM.png Also, for the record: Screen Shot 2018-09-02 at 3.31.39 AM.png -- Nathan
by NathanA
Sat Sep 01, 2018 9:16 am
Forum: RouterBOARD hardware
Topic: R450G overheating at about 51oC temperature?
Replies: 19
Views: 1476

Re: R450G overheating at about 51oC temperature?

It is sounding more and more as though some physical component (perhaps caps, still without externally-visible degradation?) is defective on your board. If it isn't the caps, then it's probably not worth troubleshooting and servicing, unless you are already really adept at dealing with surface-mount...
by NathanA
Fri Aug 31, 2018 6:38 pm
Forum: RouterBOARD hardware
Topic: R450G overheating at about 51oC temperature?
Replies: 19
Views: 1476

Re: R450G overheating at about 51oC temperature?

You aren't using the MetaROUTER feature on this router, are you?

-- Nathan
by NathanA
Fri Aug 31, 2018 12:10 am
Forum: RouterBOARD hardware
Topic: Suggestion: release routers with preinstalled Factory Software from Bugfix release chain
Replies: 6
Views: 662

Re: Suggestion: release routers with preinstalled Factory Software from Bugfix release chain

The Bugfix release chain may not have the hardware support for the latest models. That is probably why you cannot downgrade lower than the minimum release, as in your other thread. If I may, I believe that the "mikruser" was suggesting that the proper hardware support be added to whatever is the cu...
by NathanA
Thu Aug 30, 2018 1:56 am
Forum: RouterBOARD hardware
Topic: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help
Replies: 12
Views: 1600

Re: RB450Gx4 "kernel not found or data is corrupted", re-install OS didn't help

Before Netinstall, you could try option 'e' in the RouterBOOT menu to format the NAND. Then attempt Netinstall again.

-- Nathan
by NathanA
Tue Aug 21, 2018 1:15 am
Forum: General
Topic: Vulnerability CVE-2018-5390 [SOLVED]
Replies: 13
Views: 2299

Re: Vulnerability CVE-2018-5390 [SOLVED]

DotTest37, go read the CVE. You are getting worked up over nothing. The published CVE has nothing to do with OpenVPN or SSTP security vulnerabilities. It has to do with possible DoS to a host via certain crafted TCP packets, not privilege escalation, not cert/data leakage, etc. The "bug" (sounds mor...
by NathanA
Mon Aug 20, 2018 3:19 pm
Forum: General
Topic: multiple lines into one
Replies: 30
Views: 1365

Re: multiple lines into one

Semicolon ;

Put it between any line that does not end in { or before a line that begins with }

EDIT: mrz beat me to it
by NathanA
Mon Aug 20, 2018 3:14 pm
Forum: General
Topic: VLAN over L2TP Bridging
Replies: 6
Views: 1193

Re: VLAN over L2TP Bridging

In the example config that you posted, you are making VLAN 10 both a slave to the bridge interface AND a *member* of the bridge interface. This makes no sense. If ether4 needs to be an access port on VLAN 10, and VLAN 10 also exists on the other side of the L2TP BCP-bridge, then the problem isn't wi...
by NathanA
Mon Aug 20, 2018 2:56 pm
Forum: RouterBOARD hardware
Topic: rb750gr3 needs rebooting ever few days to restore throughput
Replies: 2
Views: 619

Re: rb750gr3 needs rebooting ever few days to restore throughput

Do you ever check to see if the hEX is moving any traffic to the internet before you reboot it? Maybe it isn't the hEX's fault, but something on your network is consuming a ton of internet bandwidth, and rebooting the hEX terminates those connections temporarily, which is why you see the speed boost...
by NathanA
Mon Aug 20, 2018 3:53 am
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

Yeah, this is what I suspected. The NAND is defective. It isn't even detecting the right size. It probably failed while the router was still running, but it kept on running because it was already booted. When you told it to reboot after the NAND had failed, it never came back. Probably the only way ...
by NathanA
Sat Aug 18, 2018 8:07 am
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

I suspect that you are going to need to figure out how to get your serial port working, so that you can see what RouterBOOT is printing on the console. It may provide a clue about what the problem is.

-- Nathan
by NathanA
Fri Aug 17, 2018 11:19 am
Forum: General
Topic: RB2011 kind of bricked after update [SOLVED]
Replies: 9
Views: 812

Re: RB2011 kind of bricked after update [SOLVED]

Actually, it should have still booted up without the bootloader being updated. For proof of this, the "backup bootloader" version remains the same through the lifetime of the RouterBoard. It cannot be upgraded or overwritten. This is a safety precaution so that if the main bootloader becomes corrupt...
by NathanA
Fri Aug 17, 2018 11:14 am
Forum: RouterBOARD hardware
Topic: bricked RB435G netinstall stop at Formatting Harddrive
Replies: 19
Views: 2196

Re: bricked RB435G netinstall stop at Formatting Harddrive

No, you don't need a serial cable to do Netinstall. Having one just makes it easier to debug things when you run into problems. RB435G should definitely be mipsbe and not smips. I am wondering if the NAND flash chip on your board is bad? smips and mipsbe might be similar enough to each other that ma...
by NathanA
Wed Aug 15, 2018 12:21 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

Even MetaROUTER running RouterOS inside of itself seems to be a long-abandoned concept. The problems with stability are endemic to MetaROUTER itself and don't have anything to do with the OpenWRT patches. There are so many unaddressed stability bugs that affect MetaROUTER both on mipsbe and ppc that...
by NathanA
Tue Aug 14, 2018 11:29 am
Forum: General
Topic: RB2011 kind of bricked after update [SOLVED]
Replies: 9
Views: 812

Re: RB2011 kind of bricked after update [SOLVED]

Correct, if reset button is pressed while power is applied, backup bootloader is used instead of main bootloader. If RouterOS boots fine when you do this, what this actually tells us is that it's the bootloader that is corrupt, not RouterOS. And Netinstall does not fix the bootloader. So Netinstalli...
by NathanA
Sun Aug 12, 2018 6:44 am
Forum: General
Topic: Unable to upgrade
Replies: 3
Views: 379

Re: Unable to upgrade

What does the log say after reboot?

You downloaded the upgrade file for the *correct* architecture that matches this model? https://download.mikrotik.com/routeros/ ... 6.42.6.npk
by NathanA
Wed Aug 08, 2018 2:32 pm
Forum: General
Topic: Hap AC2 RAM [SOLVED]
Replies: 13
Views: 1346

Re: Hap AC2 RAM [SOLVED]

After doing some Googling and reading through the official MikroTik kernel patches, I suspect it is at least in part related to this: https://lkml.org/lkml/2018/4/18/50 https://patchwork.kernel.org/patch/10347459/ To expand on the posts above, Qualcomm SoCs have a built-in hardware feature called Tr...
by NathanA
Wed Aug 08, 2018 5:31 am
Forum: General
Topic: Hap AC2 RAM [SOLVED]
Replies: 13
Views: 1346

Re: Hap AC2 RAM [SOLVED]

No, seriously - it is hard to understand why would any software incorrectly detect 233MB instead of 256MB. ` No, seriously, it actually isn't that hard. What if it's not a detection issue but part of upper memory has to be reserved for something else and so that part isn't even reported by the kern...
by NathanA
Wed Aug 08, 2018 1:28 am
Forum: General
Topic: Hap AC2 RAM [SOLVED]
Replies: 13
Views: 1346

Re: Hap AC2 RAM [SOLVED]

That's fine. In the meantime, I was responding to the actual question that the two people who posted before you (including the one who started this particular thread) were asking. So to say that I "missed the topic" when you were the one either hijacking the thread or misunderstanding the original p...
by NathanA
Wed Aug 08, 2018 1:16 am
Forum: General
Topic: Hap AC2 RAM [SOLVED]
Replies: 13
Views: 1346

Re: Hap AC2 RAM [SOLVED]

I think you missed the topic. :) This is more about 256M boards reporting 233M. This is not new to the hAP as2, it happens quite a bit, even more on the CCR's. I don't know about other threads, but in THIS thread, the two people who posted before you said: First one, after quoting the changelog ent...
by NathanA
Wed Aug 08, 2018 12:55 am
Forum: General
Topic: Hap AC2 RAM [SOLVED]
Replies: 13
Views: 1346

Re: Hap AC2 RAM [SOLVED]

Some manufactured hAP ac2 (maybe all of them at this point?) come with 256MB of RAM instead of the stated 128. Presumably the 128MB chips were unavailable at the time of the manufacturing run so rather than hold up production, they stuck a little more on so that they could get them out the door. MT ...
by NathanA
Wed Aug 08, 2018 12:41 am
Forum: RouterBOARD hardware
Topic: Hex-s brick. Need help!
Replies: 1
Views: 537

Re: Hex-s brick. Need help!

Winbox should show you what IP address the router has, does it not? Or are you trying to get to the web interface and taking stabs in the dark about its IP address? If so, why not use Winbox instead? Did you Netinstall with "Keep old configuration" unchecked? There are two types of "default" configs...
by NathanA
Tue Aug 07, 2018 1:39 pm
Forum: RouterBOARD hardware
Topic: Bricked RB750
Replies: 8
Views: 890

Re: Bricked RB750

Fairly sure that all of the following information is present in available official documentation. However, for the sake of those here having trouble, I'll try to summarize: On the computer you are going to use for Netinstall, disable ALL network interfaces (including Wi-Fi) EXCEPT for the ethernet p...
by NathanA
Tue Jul 31, 2018 12:33 am
Forum: RouterBOARD hardware
Topic: how to upgrade the software of the RB532
Replies: 10
Views: 1660

Re: how to upgrade the software of the RB532

I am guessing you are trying to use the same package files that you have upgraded RB4xx with to upgrade your RB532. You can't do that. RB532 has a different CPU architecture than RB4xx, so you need to download the appropriate package file for that CPU architecture , not just re-use the same one you ...
by NathanA
Tue Jul 24, 2018 9:47 pm
Forum: RouterBOARD hardware
Topic: Serial console on RB450Gx4 not working
Replies: 4
Views: 1194

Re: Serial console on RB450Gx4 not working

I suspect you're missing something, but at this point I couldn't say what. Everything looks fine to me, and it "works for me". Even if your RouterOS config wasn't right, you should still be seeing output on the serial port from RouterBOOT (bootloader) during board power-up (also @ 115200bps). If you...
by NathanA
Tue Jul 24, 2018 4:56 am
Forum: RouterBOARD hardware
Topic: Serial console on RB450Gx4 not working
Replies: 4
Views: 1194

Re: Serial console on RB450Gx4 not working

If the gender changer is just straight-through and not null-modem/crossover, not sure if it will work or not... (I really should take some time to examine the cables I'm using more closely. They are not clearly labeled and I'm honestly not sure how they are wired up.) Serial console settings & featu...
by NathanA
Sat Jul 21, 2018 6:54 am
Forum: General
Topic: Weird boot failure
Replies: 3
Views: 381

Re: Weird boot failure

There are two possibilities that come to my mind: 1. The main bootloader is corrupt, and when you're depressing the reset button for a certain length of time, you are triggering the backup bootloader. 2. You managed to set the default boot mode to something like Netboot instead of Internal Flash / N...
by NathanA
Tue Jul 17, 2018 12:50 am
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

RouterOS support for PPCs will go on for a while even after the last board ceases to be manufactured, if history is any guide. MIPS-LE boards stopped being manufactured years before RouterOS officially discontinued software upgrade support for those models. So you should be pretty safe. MetaROUTER o...
by NathanA
Thu Jul 12, 2018 2:17 am
Forum: RouterBOARD hardware
Topic: RB532 on 6.10 fail
Replies: 8
Views: 732

Re: RB532 on 6.10 fail

try netinstall with a switch between your PC and the routerboard Please read the whole thread first. He can't even get the serial console to work so that he can reconfigure RouterBOOT to boot from network. It will be impossible for him to Netinstall until he figures out what is wrong on his end wit...
by NathanA
Thu Jul 12, 2018 1:09 am
Forum: RouterBOARD hardware
Topic: RB532 on 6.10 fail
Replies: 8
Views: 732

Re: RB532 on 6.10 fail

Having a serial cable plugged into the 532 should have no effect on the boot process. You will still hear a beep. The only reason why you wouldn't hear a beep is if you interrupted the boot process by pressing a key. If you plug a serial cable in and suddenly it doesn't beep when you power it on, th...
by NathanA
Wed Jul 11, 2018 11:19 am
Forum: RouterBOARD hardware
Topic: RB532 on 6.10 fail
Replies: 8
Views: 732

Re: RB532 on 6.10 fail

If it is beeping, then the board itself (hardware) is alive, as is RouterBOOT (bootloader). To use Netinstall on a 532, you really need to get the serial console working. If you tried a cable and got nothing, then you either have the wrong cable, or are using the wrong settings. Try a straight-throu...
by NathanA
Tue Jul 10, 2018 5:00 pm
Forum: RouterBOARD hardware
Topic: RB532 on 6.10 fail
Replies: 8
Views: 732

Re: RB532 on 6.10 fail

You really don't want to run 6.x on a 532. Very poor performance. There is a reason why MT's software download page now only lists 5.26 as the last officially-supported version on this hardware. Not (necessarily) related to what happened in your particular case, but if you end up Netinstalling to re...
by NathanA
Mon Jul 09, 2018 12:02 pm
Forum: RouterBOARD hardware
Topic: RB952Ui/hAP Lite, full POE voltage range?
Replies: 8
Views: 923

Re: RB952Ui/hAP Lite, full POE voltage range?

Everything vecernik87 has stated here is 100% accurate. ...that said, though MikroTik (to my knowledge) doesn't make one, there do exist in-line 3af-to-passive adapters that will allow you to power (many/most) passive-PoE devices from a 3af/3at-compliant switch. It is, of course, not guaranteed that...
by NathanA
Fri Jun 29, 2018 3:36 am
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 11949

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

Hi caiot5, If you could make it work with Debian on x86 in a similar way, I'm sure it would be doable with OpenWRT. You wouldn't even need a working/bootable OpenWRT kernel, since you'd be running RouterOS...you would just need the OpenWRT userland to live on the second partition. I have no interest...
by NathanA
Fri Jun 29, 2018 1:00 am
Forum: RouterBOARD hardware
Topic: Why has the size of HDD decreased in hAPac^2?
Replies: 1
Views: 527

Re: Why has the size of HDD decreased in hAPac^2?

I don't think this is MikroTik's fault. They source their flash chips from multiple vendors, and it would appear that one of them measures capacity in base-10 megabytes, and another measures capacity in base-2 megabytes ("mebibytes", or MiB). This problem has existed with storage for YEARS, primaril...
by NathanA
Tue Jun 26, 2018 10:50 pm
Forum: RouterBOARD hardware
Topic: Mikrotik with SIP port integrated
Replies: 8
Views: 1600

Re: Mikrotik with SIP port integrated

For the record, if a modem/router is going to have a "VoIP" combination built into it that combination is going to be based on SIP. ` Oh, for sure. The main point is that you don't call an analog T/R voice jack a "SIP port". :D If this feature were to ever appear on a RouterBoard, though, protocol ...
by NathanA
Mon Jun 25, 2018 2:56 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

None with clear mind would destroy internal nand by dude database. ` True. ` better option and cost effective: hAP ac2 + USB drive 10 us costly than rb750gr3 but with 2 wifi included and far more cpu power to move traffic in spite of the dude cpu usage, ` The CPU may or may not be better than the m...
by NathanA
Sun Jun 24, 2018 11:31 am
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

Isn't 750Gr3 more cost effective as dude server than 450gx4? ` You're right, I forgot that MMIPS can run Dude server. However, you will need to purchase and add storage for this in the form of a microSD card, whereas the Gx4 has 512MiB of NAND flash already. (Likely you could get a 2GiB microSD for...
by NathanA
Fri Jun 22, 2018 3:51 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

As far as I can tell, from a processing power perspective, the two SoCs that hAP ac^2 and RB450Gx4 use (IPQ4018 and IPQ4019) are basically identical. I suspect the only reason that 450Gx4 uses the 4019 is for the SD card interface. Unless you have specific needs that the Gx4 meets (like microSD slot...
by NathanA
Fri Jun 22, 2018 3:44 pm
Forum: RouterBOARD hardware
Topic: Mikrotik with SIP port integrated
Replies: 8
Views: 1600

Re: Mikrotik with SIP port integrated

You mean "FXS" port, not SIP port. FXS is the side of an analog line that delivers dial-tone and ring voltage, etc. SIP (for call signalling; RTP is for the actual audio) is the protocol that (most) VoIP services speak over IP. But there are many protocols other than SIP that a "VoIP-to-analog adapt...
by NathanA
Tue Jun 19, 2018 12:39 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

So, now that you have "corrupted" ( :lol: ) the 400-series with a non-MIPSBE CPU, you are faced with the challenge of efficiently communicating this on the ROS download page. Right now, if I am the proud owner of a new RB450Gx4, and I go to this page, I'm being told I need to download the MIPSBE pac...
by NathanA
Tue Jun 19, 2018 11:38 am
Forum: RouterBOARD hardware
Topic: RB1100Dx4 Crashing constantly
Replies: 3
Views: 546

Re: RB1100Dx4 Crashing constantly

In addition to autosupout.rif -- assuming that it is even being generated -- another thing that might help MT support to diagnose is if you hooked a serial cable up to the console port and tried to capture any output that might be getting written to the console when the kernel panic occurs. If you c...
by NathanA
Tue Jun 19, 2018 11:19 am
Forum: General
Topic: recovery RB450G
Replies: 1
Views: 354

Re: recovery RB450G

TFTP is only for netboot. NPK files are not bootable images, they are for installation only, therefore trying to feed the bootloader a NPK file via TFTP is not going to do you any good. The bootable image used for Netinstall is built into the Netinstall application, and is no good by itself...it has...
by NathanA
Sun Jun 17, 2018 12:58 pm
Forum: Virtualization
Topic: OpenWrt for ARM-based RB1100AHx4
Replies: 9
Views: 2842

Re: OpenWrt for ARM-based RB1100AHx4

There is no MetaROUTER for RouterOS ARM platforms. Do you see a "/metarouter" tree on the RouterOS CLI for your AHx4, or a "MetaROUTER" config option within Winbox for this model? Thought not. You might be able to eventually build OpenWRT for the SoC in the 1100AHx4, but it is going to have to run b...
by NathanA
Sun Jun 17, 2018 12:44 pm
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

@NathanA, your scenario really smells like a RouterOS bug, so support@mikrotik.com. If counting the connection timeout up actually has some special meaning, it should be stated in the documentation, which is not the case. ` Agreed, it smells like a bug. But I'm not the first one to encounter it and...
by NathanA
Sat Jun 16, 2018 11:25 pm
Forum: General
Topic: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]
Replies: 58
Views: 9694

Re: SIP client cannot re-register in the SIP server after switching ISP (different NAT) [SOLVED]

rarylson's is indeed a fantastic post and description of how UDP NAT works. However, it does not explain all of the failure states with this that I have encountered. (Besides, as ZeroByte rightly counters, ROS is so far the only routing platform that I have encountered with this issue.) There is a s...
by NathanA
Fri Jun 15, 2018 9:02 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53430

Re: Significant improvement for wireless Nv2 PtMP

Now that's really really funny. So they have invented software upload... Hah, I'm not sure where you pulled that quote from, but what they were undoubtedly referring to was the fact that it's an FPGA-based radio head ("software-defined radio"). So to use an example that you could relate to, this wo...
by NathanA
Fri Jun 15, 2018 4:03 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 245
Views: 53430

Re: Significant improvement for wireless Nv2 PtMP

Even some LTE networks use TDD based TDMA. Which LTE networks? Seriously? https://en.wikipedia.org/wiki/LTE_(telecommunication)#History_of_LTE-TDD Each LTE "band" is designated by definition to be either FDD or TDD: https://en.wikipedia.org/wiki/LTE_frequency_bands We run a LTE-TDD Band 43 network ...
by NathanA
Fri Jun 15, 2018 3:29 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

To keep you guys busy with speculations :D
`
Image

:lol:

-- Nathan
by NathanA
Fri Jun 15, 2018 1:30 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

Another question: if series has nothing to do with CPU architecture, then why wasn't RB3011 instead called RB2011x2?

-- Nathan
by NathanA
Mon Jun 11, 2018 2:39 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

...We have a wiki article about it:... ` But wait a minute, that wiki article existed back when RB850Gx2 was released, and was more-or-less the same back then as it is now, so... ` No, they haven't :) They are product series. Unrelated to architecture. [...] In the past, when naming scheme was not ...
by NathanA
Wed May 23, 2018 2:10 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 vs RB450Gx4
Replies: 49
Views: 10607

Re: RB850Gx2 vs RB450Gx4

The new products sound great, but I wish MT would stop taking model #s that mean one thing and twisting them to mean another. It's confusing. Please be consistent. RB1xxx has always meant PowerPC. Likewise, RB4xx has always meant MIPSBE. So RB1100AHx4 is nonsensical (expectation is PPC), as is RB450...
by NathanA
Mon Apr 23, 2018 2:37 pm
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 204
Views: 161709

Re: Advisory: Vulnerability exploiting the Winbox port

It has loooooong been known that ROS stores passwords using reversible encryption instead of hashes, and I'm surprised it has taken this long for this to get changed: http://manio.skyboo.net/mikrotik/ On the other hand, when you are the one that set the password and you can't log in to your own rout...
by NathanA
Wed Apr 11, 2018 3:53 am
Forum: General
Topic: Any plans to make cross-platform WinBox?
Replies: 33
Views: 2975

Re: Any plans to make cross-platform WinBox?

I find parts of this discussion funny since Webfig is practically a web version of Winbox as it is. You can even call up a windowed terminal in Webfig! The main thing that could not be implemented in a web version is the "MAC-Winbox" protocol, which is a killer feature that I use all the time. For t...
by NathanA
Fri Mar 30, 2018 8:57 am
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 86
Views: 19990

Re: Future of LTE products, user feedback requested

We operate a band 42/43 (soon be combined into a single band 48, under new CBRS rules) network in the USA, and would love to see cost-competitive CPE options from MikroTik for this band. Not just for the cost reasons, but also for the flexibility that RouterOS would bring (and also because we are fa...
by NathanA
Thu Mar 29, 2018 10:49 pm
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

Re: RouterOS making unaccounted outbound winbox connections [SOLVED]

So far my testing show that only mipsbe devices are getting exploited. Anyone notice other architectures affected? I haven't, though fully-fleshed example exploits of this vulnerability were released for both mipsbe and x86 earlier this month, and Hajime supports mipsbe, x86, and arm, so it is at l...
by NathanA
Tue Mar 27, 2018 1:42 am
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

Re: RouterOS making unaccounted outbound winbox connections [SOLVED]

Please make a security release for those old, but perfectly working boards on mipsle! In my experience, the last version of RouterOS to work *well* on RB532 was 5.x. :( When I upgrade a 532 to 6.x it starts acting like a RB100-series board that has just been upgraded from 2.9 to 3.x or anything new...
by NathanA
Mon Mar 26, 2018 12:48 pm
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

Re: RouterOS making unaccounted outbound winbox connections [SOLVED]

I finally got my hands on an infected device, spent some time with it, and can confirm that this appears to be Hajime, as maznu mentioned earlier. I haven't been able to catch the infection happening live yet, but I am now pretty confident that this is exploiting the old web server vuln that was alr...
by NathanA
Sun Mar 25, 2018 9:38 pm
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

Re: Aggressive RouterOS worm infecting our network?? [SOLVED]

Normis, I'm in the middle of some other things at the moment but me see what I can do about remote access for you in a bit here. Do you want me to just e-mail support@ or message you some other way? srosen, Interesting. I don't think HTTP is the vector (though I could be wrong), mostly because I don...
by NathanA
Sun Mar 25, 2018 12:39 pm
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

Re: Aggressive RouterOS worm infecting our network?? [SOLVED]

use netinstall for fresh start and keep update your version. :roll: Thanks. It's not like I don't know how to do a Netinstall. But we are potentially talking about a few hundred devices here. Anyway, the real question is not how to recover from it, but what this worm is precisely, and how to protec...
by NathanA
Sun Mar 25, 2018 10:03 am
Forum: General
Topic: RouterOS making unaccounted outbound winbox connections [SOLVED]
Replies: 64
Views: 30842

RouterOS making unaccounted outbound winbox connections [SOLVED]

I haven't seen any chatter about this on these forums or elsewhere... Just tonight we discovered a multitude of RouterOS devices on our network -- mostly customer devices, so far only observed on MIPS architecture -- that appear to be infected with something. The routers themselves are generating hu...
by NathanA
Mon Mar 06, 2017 7:33 am
Forum: Virtualization
Topic: MetaRouter performance/througput another ROS ?
Replies: 1
Views: 793

Re: MetaRouter performance/througput another ROS ?

I have never attempted to measure it in terms of throughput performance, but there is definitely a performance hit with even a single MetaROUTER guest, and even if that guest is doing zero work. And this performance hit significantly affects the host, too, because it turns out that if you are runnin...
by NathanA
Mon Mar 06, 2017 7:02 am
Forum: Virtualization
Topic: openwrt in METAROUTER as DHCP server
Replies: 1
Views: 757

Re: openwrt in METAROUTER as DHCP server

What you did sounds completely reasonable to me, and I would expect that to work. Have you made sure that networking between the guest and host is working at the most basic level? (e.g., set a static IP on the OpenWRT guest, set an IP in the same subnet on the bridge interface of the host, and ping ...
by NathanA
Fri Mar 03, 2017 4:19 pm
Forum: Wireless Networking
Topic: Confused about rts/cts
Replies: 64
Views: 27567

Re: Confused about rts/cts

Sorry to necro this thread, but I have looked everywhere else for an answer, have come up with zip, and given that this thread has the most relevant discussion of this subject vs. any other past thread, it seems appropriate to put it here. The collective wisdom out there seems to agree that RTS thre...
by NathanA
Fri Mar 03, 2017 3:34 pm
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 11949

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

I'm currently working on a 4.9 kernel for the B2011UiAS and I wonder if " http://www.nconx.com/~nathan/openwrt-rb_mipsbe/kamikaze-rb_mipsbe-2.6.35.txz " might be the latest available patchset? No, not anywhere close to the latest. 2.6.35 was the kernel used by MikroTik in RouterOS 5. RouterOS 6 is ...
by NathanA
Mon Oct 17, 2016 5:39 am
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

Oh, I'm sorry: I thought we were talking about a *routing* operating system here...y'know, a category of software where it would normally be considered kind of important that core features related to *routing* work properly, hence the name. I speak facetiously. But only somewhat. :? Fortunately, thi...
by NathanA
Fri Oct 14, 2016 12:45 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

I suspect a reply like "it will all be fixed in version 7".
Boy, I hope not. V7 is clearly a ways off.

-- Nathan
by NathanA
Fri Oct 14, 2016 11:10 am
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

Well, everyone, the verdict is in: Using a separate subnet for the other peer -- and thus a separate (connected) route for the nexthop -- did not fix it. Setting up the session with the second peer as a separate BGP instance *did* fix it. Once a second BGP instance was set up, at that point I did ha...
by NathanA
Thu Oct 13, 2016 5:14 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

I wonder what would happen if you were to use a filter rule to set the distance of the backup default GW to be 21 (instead of the default 20) That's a great idea! I'll try that really quickly... Sadly, this made no difference. That would have been a nice, easy work-around. I will have to try the ot...
by NathanA
Thu Oct 13, 2016 5:09 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

One question got missed: Is this one BGP instance or two instances? You must have been typing this response up while other discussion was going on. :) This is answered above (one instance). My thoughts - this sounds like the state machine in BGP is getting something wrong (i.e. it's a bug) I can't ...
by NathanA
Thu Oct 13, 2016 4:57 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

Stab in the dark here - set one of the filters on one of the peers with a higher local preference - maybe as it is on the same subnet/connected route it is seen as one? Thanks for the suggestion, but sorry, I should have mentioned earlier that we are already setting localpref via filters to differe...
by NathanA
Thu Oct 13, 2016 4:18 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

But in my router using iBGP the scope and target scope for BGP routes are different, hence the suggestion. This is eBGP (different ASes). Do you need that static default routes? I operate a number of routers where the default route is distributed via BGP, and after some teething problems it works f...
by NathanA
Thu Oct 13, 2016 3:22 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

Re: BGP + static candidate routes: ROS picks the wrong one??

It is depending on the scope and target scope of the route, I think. target-scope in all cases is the default of 10. The nexthop route for the 2 BGP gateways is a connected route, which by default has a scope of 10. The nexthop route for the static default route is also a connected route and also h...
by NathanA
Thu Oct 13, 2016 12:53 pm
Forum: Forwarding Protocols
Topic: BGP + static candidate routes: ROS picks the wrong one??
Replies: 20
Views: 2513

BGP + static candidate routes: ROS picks the wrong one??

I have searched these forums high and low, and cannot find anybody discussing the same (or similar) issue. Here is the scenario: Customer has 2 ISPs. One ISP provides 2 gateways -- both exposed to the customer on the same L2 and within the same subnet -- and uses BGP with private ASN for failover (o...
by NathanA
Wed Oct 12, 2016 12:46 pm
Forum: Virtualization
Topic: demo MetaROUTER image to crash RouterOS (with source code)
Replies: 4
Views: 1208

Re: demo MetaROUTER image to crash RouterOS (with source code)

Please send e-mail to support@mikrotik.com, either pointing them at this thread or repeating it for them in the form of an e-mail. They might not see this forum post, and I'm sure there are a lot of people who would appreciate seeing this bug fixed. As a MetaROUTER user, thanks again for going to su...
by NathanA
Tue Oct 04, 2016 9:11 am
Forum: Beginner Basics
Topic: Are multiple leases for one IP possible?
Replies: 4
Views: 2254

Re: Are multiple leases for one IP possible?

I finally found a nice, workable solution to this problem so thought I would post it for those who stumble across this thread in future with the same issue. I discovered that whilst the RouterOS DHCP server will not allow you to create multiple leases with the same IP address if you use User Manage...
by NathanA
Tue Oct 04, 2016 2:44 am
Forum: General
Topic: The "output" chain and VRFs/routing marks
Replies: 4
Views: 1514

Re: The "output" chain and VRFs/routing marks

docmarius, Thanks. I am definitely sure that the first example wouldn't work, because you can't match on out-interface until the out-interface has been determined, and it can only be determined once you have already picked and traversed a specific routing table, so by the time out-interface has been...
by NathanA
Mon Oct 03, 2016 1:30 pm
Forum: RouterBOARD hardware
Topic: HAP AC faulty seriers - very poor LAN performance? (switch problem)
Replies: 77
Views: 24083

Re: HAP AC faulty seriers - very poor LAN performance? (switch problem)

Any update on this? I have 3 units that suffer from this issue ... it also seems that reboot makes them work fine for a while, but shortly after speeds drop terribly. It sounds like this is a limited hardware defect in some of the early shipping units. Others who had this problem apparently managed...
by NathanA
Mon Oct 03, 2016 1:27 pm
Forum: RouterBOARD hardware
Topic: Problem with IPTV on RB850Gx2
Replies: 14
Views: 3828

Re: RE: Re: Problem with IPTV on RB850Gx2

RB450G has only one CPU core, but RB850Gx2 has two CPU cores.
Problem with IPTV is "reordering packets".
Ah! Got it. So the problem might manifest itself on any multicore MikroTik?

-- Nathan
by NathanA
Mon Oct 03, 2016 1:19 pm
Forum: RouterBOARD hardware
Topic: Problem with IPTV on RB850Gx2
Replies: 14
Views: 3828

Re: RE: Re: Problem with IPTV on RB850Gx2

MikroTik support knows about this issue, but they couldn't help us. They says what this issue _may be_ fixed in ROS 7.0.. This sounds very strange to me. If it works on RB450G in 6.x, why would it work any different on an RB850Gx2 if it wasn't a driver bug? Did MT support explain in detail what the...
by NathanA
Mon Oct 03, 2016 1:05 pm
Forum: General
Topic: The "output" chain and VRFs/routing marks
Replies: 4
Views: 1514

The "output" chain and VRFs/routing marks

Long time no post! :) I have a feeling that I already know the answer to this, but I'm hoping that I am overlooking some clever option or workaround. Is there any way to influence which routing table packets generated by the router itself get processed by? Here's the situation: postulate 2 VRFs on a...
by NathanA
Thu Jul 28, 2016 6:54 pm
Forum: RouterBOARD hardware
Topic: CCR1072 - M.2 SSD compatibility
Replies: 14
Views: 3120

Re: CCR1072 - M.2 SSD compatibility

You can see in the brochure, that it only supports PCIe modules in this slot:
2x M.2 slots with x4 PCIE 2.0, Key-M, module size support: 2242,2260,2280
Supports PCIe module with AHCI command-set or NVMe (or both)?

-- Nathan
by NathanA
Tue Jul 19, 2016 5:50 pm
Forum: RouterBOARD hardware
Topic: HAP AC faulty seriers - very poor LAN performance? (switch problem)
Replies: 77
Views: 24083

Re: HAP AC faulty seriers - very poor LAN performance? (switch problem)

I have 200 Mbit/s speed over fiber optic.
I don't think anybody -- even those with the problem -- have reported issues with the SFP port.  The problem has only manifested itself between copper WAN and LAN.

-- Nathan
by NathanA
Thu Jul 14, 2016 3:42 am
Forum: RouterBOARD hardware
Topic: HAP AC faulty seriers - very poor LAN performance? (switch problem)
Replies: 77
Views: 24083

Re: HAP AC faulty seriers - very poor LAN performance? (switch problem)

So I commented on this thread earlier before I had tested, and had not taken the time to come back and report on any findings.  I am happy to report that I have been unable to reproduce this problem at all on my unit, for which I am thankful, because given the past (and ongoing) relative scarcity of...
by NathanA
Sat May 28, 2016 5:55 am
Forum: RouterBOARD hardware
Topic: Is my 2011 dead after firmware update and config reset?
Replies: 11
Views: 1608

Re: Is my 2011 dead after firmware update and config reset?

The moment I deleted the bridge, I was kicked off again and could not log back in - even by MAC . I think that this and your comments below and in the other thread betray the fact that you don't understand what a bridge is. :) A bridge is simply a software-based switch of etherlike interfaces. When...
by NathanA
Sat May 28, 2016 4:46 am
Forum: RouterBOARD hardware
Topic: Is my 2011 dead after firmware update and config reset?
Replies: 11
Views: 1608

Re: Is my 2011 dead after firmware update and config reset?

After re-reading your original posts again, I *think* I understand where part of your confusion is coming from with the initial config and the worries of bricking, etc. Like I said before, when you first power up a MikroTik with its factory-default config in place, the very first time that you conne...
by NathanA
Sat May 28, 2016 4:11 am
Forum: RouterBOARD hardware
Topic: Is my 2011 dead after firmware update and config reset?
Replies: 11
Views: 1608

Re: Is my 2011 dead after firmware update and config reset?

[...] but not so absolute of a beginner that I shouldn't be able to understand. This is my first non-consumer router, and I knew I was getting into a learning curve. But one should be able to go from exhausing the feature set of a high-end consumer router to getting the basics running on a low-end ...
by NathanA
Fri May 27, 2016 12:08 pm
Forum: RouterBOARD hardware
Topic: Is my 2011 dead after firmware update and config reset?
Replies: 11
Views: 1608

Re: Is my 2011 dead after firmware update and config reset?

I think based on this post and the other one you made to the Beginner Basics forum that you may be operating under some false assumptions, not just when it comes to MikroTik but also general computer networking, and could benefit from doing some reading through the (e.g.) MikroTik wiki. Of course, i...
by NathanA
Wed May 25, 2016 3:42 pm
Forum: RouterBOARD hardware
Topic: hAP ac (and some other new rotuers) too small flash
Replies: 53
Views: 12993

Re: hAP ac (and some other new rotuers) too small flash

Nathan, MIPSLE works with 6.32.4. We stopped making new versions for MIPSLE boards because new features require a faster CPU. Right, but no new software after 6.32.4 also means no more bug fixes too. So, not supported. :) Also, RB111/112/133C/150 were unsupported after 5.26, for lack of RAM. (And f...
by NathanA
Wed May 25, 2016 1:34 pm
Forum: RouterBOARD hardware
Topic: hAP ac (and some other new rotuers) too small flash
Replies: 53
Views: 12993

Re: hAP ac (and some other new rotuers) too small flash

Is MikroTik really publicly committing to never allowing the combo package to increase in size to the point where it does not fit on a 16MB device? Do you seriously suggest that our own software will one day no longer run on our own devices? Well, it has happened before (RB111, RB112, RB133C, RB150...
by NathanA
Tue May 24, 2016 10:54 pm
Forum: RouterBOARD hardware
Topic: Serial Port (RS232) access on OpenWRT (metaRouter)
Replies: 4
Views: 1013

Re: Serial Port (RS232) access on OpenWRT (metaRouter)

So the only way to communication is virtual port? Or can I have access to the same file (routerOS and metarouter) and write script (RouterOS) that will be sending data that I save in this file from my OpenWRT? Everything has to be done over the network, not local files. You need to pretend that the...
by NathanA
Tue May 24, 2016 10:42 pm
Forum: RouterBOARD hardware
Topic: hAP ac (and some other new rotuers) too small flash
Replies: 53
Views: 12993

Re: hAP ac (and some other new rotuers) too small flash

Advanced users can have a cleaner system with no unused menus if they use their own set of packages. If somebody is annoyed with menu clutter, they can disable packages without removing them (whether combo or not combo). Then when they decide later that they want those features back, they can re-en...
by NathanA
Tue May 24, 2016 2:16 pm
Forum: RouterBOARD hardware
Topic: hAP ac (and some other new rotuers) too small flash
Replies: 53
Views: 12993

Re: hAP ac (and some other new rotuers) too small flash

the combo package should not be combined with the use of individual packages in any router, not just small flash devices I have never read such restriction. This is the first time. Precisely. This is the first time that MikroTik has publicly said this. I have, for many many years, and through many ...
by NathanA
Tue May 24, 2016 1:48 pm
Forum: RouterBOARD hardware
Topic: Serial Port (RS232) access on OpenWRT (metaRouter)
Replies: 4
Views: 1013

Re: Serial Port (RS232) access on OpenWRT (metaRouter)

MetaROUTER guests have no direct access to any hardware. Even networking is virtualized. There is no "virtual serial port", so there is no way to "bridge" the RS232 port from the host to the guest.

-- Nathan
by NathanA
Mon May 23, 2016 10:47 pm
Forum: Announcements
Topic: v6.36rc [release candidate] is released, wireless-fp package is discontinued!
Replies: 295
Views: 65213

Re: v6.36rc [release candidate] is released, wireless-fp package is discontinued!

*) arm - added Dude server support;
Very interesting! Is there a reason that you have not done a PPC build of The Dude? There are PPC RouterBoards that outclass the RB3011.

-- Nathan
by NathanA
Wed May 18, 2016 10:01 am
Forum: Beginner Basics
Topic: amazon fire tv not getting dhcp address after lease expires on mikrotik router
Replies: 39
Views: 8146

Re: amazon fire tv not getting dhcp address after lease expires on mikrotik router

I *just* ran into this problem this past week myself! I don't have a Fire TV, but a friend of mine just got one, and asked me for a router recommendation, so I told him to get a 951Ui-2HnD for his home. :) The default lease time on recent versions of RouterOS is very short: 10 minutes. And his Fire ...
by NathanA
Wed May 18, 2016 9:48 am
Forum: General
Topic: Block non-dhcp static IP on network
Replies: 8
Views: 3736

Re: Block non-dhcp static IP on network

I don't think so. How would the router know which computers had DHCP IP and which computers had statically-assigned IP if some other DHCP server assigned the addresses? If you are using Windows Server to do DHCP because you are using RADIUS, did you know that MikroTik's DHCP server can also be a RAD...
by NathanA
Wed May 18, 2016 7:38 am
Forum: RouterBOARD hardware
Topic: RB1100x2AH NetInstall
Replies: 4
Views: 801

Re: RB1100x2AH NetInstall

What is this "serial cable" of which you speak? :D I haven't used a serial cable in over 10 years. I don't think I have one anymore. Lol. Thanks for the info! RS232 lives on as an out-of-band management solution in the world of networking and embedded systems! If you plan to get into that world in ...
by NathanA
Wed May 18, 2016 3:05 am
Forum: RouterBOARD hardware
Topic: RB1100x2AH NetInstall
Replies: 4
Views: 801

Re: RB1100x2AH NetInstall

Looking at the manual, it shows a button on the board. Does that mean I need to remove the cover of the RB1100AHx2 to access the button?
You can do that, or you can hook a serial cable up to it and instruct the bootloader to boot via network that way.

-- Nathan
by NathanA
Mon May 16, 2016 3:06 pm
Forum: RouterBOARD hardware
Topic: RB1100AHx2 or RB3011UiAS-RM
Replies: 18
Views: 7476

Re: RB1100AHx2 or RB3011UiAS-RM

Plus I bought my 3011 three months ago and saw that the natural free support has expired for making contact with the official support Mikrotik from what I understand means paying a ticket. Now, it seems right that for a function not active of which I realized only now I have to pay to receive an an...
by NathanA
Mon May 16, 2016 12:44 pm
Forum: RouterBOARD hardware
Topic: RB1100AHx2 or RB3011UiAS-RM
Replies: 18
Views: 7476

Re: RB1100AHx2 or RB3011UiAS-RM

Regarding the 3 standalone interfaces of the 1100 vs the two 5-port switched groups of the 3011, would that difference make any of the two easier to configure? To clarify and to respond both to this and a later post of yours, the standalone interfaces vs. the switched groups don't constitute a "WAN...
by NathanA
Mon May 16, 2016 12:12 pm
Forum: RouterBOARD hardware
Topic: RB1100AHx2 or RB3011UiAS-RM
Replies: 18
Views: 7476

Re: RB1100AHx2 or RB3011UiAS-RM

pity that the usb3 of the RB3011 does not work when connected to a hard drive with usb3 door, and I also tried to write this thing in two different posts on this forum, but no one ever bothered to answer me ... explain me what to do to receive an answer from someone here? I repeat: the USB3 of 'RB3...
by NathanA
Wed May 11, 2016 5:00 pm
Forum: Virtualization
Topic: How to expand virtualized x86 ROS system partition
Replies: 11
Views: 6645

Re: How to expand virtualized x86 ROS system partition

Just had this issue. Had just kept the original CHR image size and my dude database filled up all the space. If you had read the previous posts, you would see that they are trying to resize a non-CHR install of RouterOS that had been installed as a virtual guest of some unspecified hypervisor. CHR ...
by NathanA
Wed May 11, 2016 3:34 pm
Forum: RouterBOARD hardware
Topic: HAP AC faulty seriers - very poor LAN performance? (switch problem)
Replies: 77
Views: 24083

Re: HAP AC faulty seriers - very poor LAN performance? (switch problem)

Just to clarify, does this only affect ethernet <-> ethernet connectivity? Eg if using the hAP AC solely as an access point bridged onto ether1, there won't be any issues? This is what it is sounding like to me, which probably means it is an issue just with transmitting on ethernet port, not receiv...
by NathanA
Wed May 11, 2016 3:21 pm
Forum: RouterBOARD hardware
Topic: RB1100AHx2 or RB3011UiAS-RM
Replies: 18
Views: 7476

Re: RB1100AHx2 or RB3011UiAS-RM

Tough call. Probably depends on your requirements and your risk tolerance: 3011 is a very new product, relatively speaking, and is also the first Routerboard of its kind (ARM CPU architecture). There could be bugs and instability this early in the game. 1100/AH has been around a while, and MikroTik ...
by NathanA
Wed May 11, 2016 2:51 pm
Forum: RouterBOARD hardware
Topic: RB2011UiAS-2HnD FLASHING LEDs after power loss
Replies: 6
Views: 1102

Re: RB2011UiAS-2HnD FLASHING LEDs after power loss

Tried with 2 different power supply same results. Any idea how to look for bad caps?
Google Images is your friend. Defective capacitors will have the top crown bulging out and likely be leaking something, or showing some corrosion on the top.

-- Nathan
by NathanA
Sat Apr 23, 2016 8:56 am
Forum: RouterBOARD hardware
Topic: RB2011UiAS-2HnD FLASHING LEDs after power loss
Replies: 6
Views: 1102

Re: RB2011UiAS-2HnD FLASHING LEDs after power loss

I would try a different power supply...the one that you were using during the outage probably just burned out.

Also, take the cover off and look for bad caps.

-- Nathan
by NathanA
Sun Aug 09, 2015 12:47 pm
Forum: General
Topic: Static DHCP for Hikvision IP Cameras
Replies: 6
Views: 2375

Re: Static DHCP for Hikvision IP Cameras

Are those ids in leases' client-id what's actually sent by cameras, or are you just misusing the field for comments? If it's the latter, just remove them and it will work. Yes, this. The original poster appears to be abusing the "client-id" field. If you want to attach a note to an object, you need...
by NathanA
Tue May 19, 2015 2:01 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

Edit: discard last two paragraphs because I didn't do my homework with reading previous posts correctly. Reboot issue is addressed in this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=86765 and I thought that Nathan fixes were applied as well but didn't read carefully how to use it. Just t...
by NathanA
Tue May 19, 2015 9:49 am
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

So, I can also confirm that the BB images floating around cause routers to crash and reboot. For me, on a test 450G, it happens approx. every 4 minutes. It turns out that it is actually causing a kernel panic on the host router. This is not 100% clear when testing on a recent version of RouterOS (6....
by NathanA
Fri May 15, 2015 2:18 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

The good news: system boots, no "unaligned" messages so far. The bad news: the whole system reboots without warning. ROS log entry: System rebooted because of kernel failure Let's not run ahead of ourselves and make assumptions. This may or may not be because of the patches. You need to do more tes...
by NathanA
Fri May 01, 2015 1:17 pm
Forum: RouterBOARD hardware
Topic: RB850Gx2 Network interface details
Replies: 36
Views: 19634

Re: RB850Gx2 Network interface details

Of course the RB850Gx2 is not compatible with RouterOS 5.x or older. It says so right in the Quick Guide ! If the last version of 5.x (5.26) was released before the Routerboard model in question, it is a sure bet that the board won't run that version: that board's SoC was never used in other product...
by NathanA
Sat Apr 18, 2015 9:28 am
Forum: Virtualization
Topic: Metarouter/ASTERIS IAX2 Trunking One-Way Voice Issue
Replies: 3
Views: 2567

Re: Metarouter/ASTERIS IAX2 Trunking One-Way Voice Issue

What the heck is with all of these spam bots that register for an account and then their first post is some random, drive-by copy-and-paste job from somebody else's old post in another thread?

-- Nathan
by NathanA
Sat Apr 18, 2015 8:45 am
Forum: General
Topic: v6.28 will be released this week!
Replies: 72
Views: 19027

Re: v6.28 will be released this week!

I use CCR's at every one of my sites, and all of my MD's have Rb2011's at their homes. We use a ShoreTel VoIP system and we do not have any issues, even with the MD's using the phones at home. I think most VoIP issues are caused by lack of a good clear understanding of the SIP & RTSP protocols, and...
by NathanA
Sat Apr 18, 2015 12:38 am
Forum: General
Topic: v6.28 will be released this week!
Replies: 72
Views: 19027

Re: v6.28 will be released this week!

...but Cisco ATAs are a complete loss... I would love to run some tests myself, and although we don't use Cisco TAs in the wild/in production, I do happen to have an older Cisco/Linksys PAP2T sitting in a closet somewhere. Is this a model that is confirmed to be broken for you? I will try another u...
by NathanA
Fri Apr 17, 2015 4:11 am
Forum: General
Topic: v6.28 will be released this week!
Replies: 72
Views: 19027

Re: v6.28 will be released this week!

EDIT - I should have also mentioned, it's not a handful of customers that drop off, it's ALL of them behind the MT. So it's a complete break, not partial. That must be somehow dependent on the configuration of your Mikrotik and/or SIP client and/or server in use. Well, you have to admit that it IS ...
by NathanA
Sat Apr 11, 2015 7:46 am
Forum: RouterBOARD hardware
Topic: RB3011 Block diagram?
Replies: 230
Views: 51040

Re: RB3011 Block diagram?

...and about 2.5x-3x faster than any kind of MIPS64 chips(including Cavium, Tilera and etc)
Wait...say what? Pretty sure Tile architecture is not related to MIPS64. But if I'm wrong, [citation needed]. ;)

-- Nathan
by NathanA
Sat Apr 11, 2015 7:44 am
Forum: RouterBOARD hardware
Topic: RB3011 Block diagram?
Replies: 230
Views: 51040

Re: RB3011 Block diagram?

This is the CPU that we will use for RB3011:
http://www.anandtech.com/show/7526/qual ... nd-ipq8062
My guess was within the ballpark, then. ;)

-- Nathan
by NathanA
Fri Apr 10, 2015 3:15 pm
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

P.S. It is somewhat strange to have dual-band AC in hAP, but not in 3011. What is worse it is still lacking ability to use two separate radios... The hAP AC models have the wifi chips soldered on the board but no mini-PCIe. The RB3011 has no on-board wifi but has a mini-PCIe slot. In this particula...
by NathanA
Fri Apr 10, 2015 3:00 pm
Forum: Announcements
Topic: v6.28 final RC testing
Replies: 92
Views: 31476

Re: v6.28 final RC testing

Why are you testing different using versions of ROS? Just check if "V6.28rc20 -> Server V6.28rc20" is OK. How can I upgrade geographicali dispersed routers at once ? If there will be no other solution I'll be forced to do that, but breaking compatiblity betwen versions is very BAD. Who said anythin...
by NathanA
Wed Apr 01, 2015 3:07 am
Forum: RouterBOARD hardware
Topic: rb3011 based on ARM CPU
Replies: 57
Views: 28443

Re: rb3011 based on ARM CPU

Except if... they actually decide to do that. 8) I wonder, what if their ARM boards are not entirely custom-made, but based on some popular prototype with some additions? There is no way that this is the case. Why would MikroTik suddenly subcontract the hardware design to somebody else when they ha...
by NathanA
Tue Mar 31, 2015 1:43 pm
Forum: General
Topic: what can cause Kernel panic - not syncing: Attempted to kill init! ?
Replies: 10
Views: 3112

Re: what can cause Kernel panic - not syncing: Attempted to kill init! ?

There are many different reasons and you have to diagnose it on a case-by-case basis. In your particular case, it seems safe to say that it is a result of filesystem corruption, or a bad NAND. You will need to re-Netinstall RouterOS, and if that doesn't work, then you have a bad board (though I'm ab...
by NathanA
Tue Mar 31, 2015 11:32 am
Forum: RouterBOARD hardware
Topic: rb3011 based on ARM CPU
Replies: 57
Views: 28443

Re: rb3011 based on ARM CPU

[...] will be packages for other boards based on ARM cpu? (like x86 package). I very much doubt that they will. MikroTik's modus operandi when it comes to different CPU architectures has always been that they license software for generic x86 hardware (probably, at this point, more for historical re...
by NathanA
Tue Mar 31, 2015 11:05 am
Forum: Virtualization
Topic: cannot install and run barrier_breaker/14.07-rc3/ar71xx/ on Mikrotik RouterBoard RB750GL
Replies: 3
Views: 2705

Re: cannot install and run barrier_breaker/14.07-rc3/ar71xx/ on Mikrotik RouterBoard RB750GL

Thank you Nathan I found the useful link: http://openwrt.pantele.com.ua/trunk/metarouter/packages/. Already work now. You are aware that the package repository that you linked to contains images and packages that are also from the Kamikaze era, right? These were made over 5 years ago...definitely n...
by NathanA
Tue Mar 31, 2015 11:03 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

It is not purely speculation, see http://forum.mikrotik.com/viewtopic.php?p=415346#p415346 I remember that post. It was made almost a year ago. Not only can a lot change in that kind of time, I have reason to believe that things have changed during that time. Also, at that time, the way that JanisK...
by NathanA
Fri Mar 27, 2015 11:53 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

mistake in the render. there is a USB on the hAP ac
Excellent; thanks for the update!

-- Nathan
by NathanA
Fri Mar 27, 2015 11:45 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

having no USB on hAP ac but having it on lite version is in fact a bit strange ... no pricetag in PDF on hAP ac, just hAP ac lite ... They haven't announced the price of the non-lite one, so what that says to me is that if leaving off USB is about potential cost-saving, then because they haven't an...
by NathanA
Fri Mar 27, 2015 11:33 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

...uhm, do my eyes deceive me or does the hAP ac lite have a USB port on it, while the hAP ac non-lite has NO USB port? That doesn't even make sense to me... -- Nathan EDIT: On second thought, is it possible that MT just Photoshopped the hAP ac sticker on the back of an RB260GS case, and that's why ...
by NathanA
Fri Mar 27, 2015 11:25 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

They can use LXC+Network Namespaces which will work on all architectures, or KVM which will work on most of them. It will be interesting to see what direction they take. I am aware that there are many different options available to them, but I am more interested in answers than speculation. ;) LXC ...
by NathanA
Fri Mar 27, 2015 10:40 am
Forum: Announcements
Topic: MUM Europe 2015 (live video)
Replies: 76
Views: 24164

Re: MUM Europe 2015 (live video)

Great announcements!! The hAP ac products look great (esp. the price of the ac lite), and RouterOS going to multicore ARM is quite the surprise. I don't suppose you have an answer for this already, but...I know you guys are working on new virtualization solutions (versions of MetaROUTER or a replace...
by NathanA
Fri Mar 27, 2015 10:17 am
Forum: Announcements
Topic: v6.28 final RC testing
Replies: 92
Views: 31476

Re: v6.28 final RC testing

basically been waiting for 6.28 and cancelled a trip to make sure i load it in person 'this week' as posted in the 1st commend. Normis, can we still expect it this week? you guys push new updates on saturdays? What's the rush? If 6.27 causes you problems, downgrade back to 6.23. Don't cancel trips ...
by NathanA
Thu Mar 26, 2015 7:30 am
Forum: General
Topic: Overwrite RADIUS' session timeout
Replies: 3
Views: 912

Re: Overwrite RADIUS' session timeout

I don't think so...if that reply attribute is included in the response from the RADIUS server then I believe that RouterOS will honor it. Why can't you change it in the RADIUS server? If it is because it's not your RADIUS server and you are just renting access to your network to other providers or s...
by NathanA
Fri Mar 20, 2015 12:05 pm
Forum: Virtualization
Topic: cannot install and run barrier_breaker/14.07-rc3/ar71xx/ on Mikrotik RouterBoard RB750GL
Replies: 3
Views: 2705

Re: cannot install and run barrier_breaker/14.07-rc3/ar71xx/ on Mikrotik RouterBoard RB750GL

Then I need to change to new version barrier_breaker/14.07-rc3/ar71xx/ on Mikrotik RouterBoard RB750GL. Using download link: http://wiki.openwrt.org/toh/mikrotik/rb750gl and https://downloads.openwrt.org/barrier_breaker/14.07-rc3/ar71xx/mikrotik/ image file : openwrt-ar71xx-mikrotik-DefaultNoWifi-r...
by NathanA
Tue Mar 17, 2015 12:12 pm
Forum: Virtualization
Topic: Metarouter/ASTERIS IAX2 Trunking One-Way Voice Issue
Replies: 3
Views: 2567

Re: Metarouter/ASTERIS IAX2 Trunking One-Way Voice Issue

Hmm, I'm going to guess that the number of Asterisk-inside-of-MetaROUTER users is rather small at this point, and the percentage of those users who are actually using IAX2 even smaller. So it is doubtful that you are going to find anybody in this forum who has both experienced this and managed to co...
by NathanA
Mon Mar 16, 2015 12:58 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

Yes, I know it but there is only eth0 in openwrt and nothing else :( Okay, you didn't explain this. Your problem is not your RouterOS configuration. You need to edit /etc/config/network in OpenWRT and make sure that there is a section for every interface. If you run "ifconfig eth1" you will see tha...
by NathanA
Mon Mar 16, 2015 8:28 am
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

I installed openwrt image from liquidcz and openwrt does not see SFP interface :( Is there a way to use in openwrt images SFP interfaces from RouterOS? A MetaROUTER doesn't see any interfaces except for the ones that you assign to that MetaROUTER. Also, MetaROUTERs do not have direct control over t...
by NathanA
Fri Mar 13, 2015 7:45 am
Forum: Virtualization
Topic: RouterOS on Amazon EC2
Replies: 35
Views: 17641

Re: RouterOS on Amazon EC2

Just thinking aloud - has anyone tried this with Azure? On a cursory look, you can import a Linux VM by uploading a VHD file. I know almost nothing about Azure, but wouldn't it be reasonable to assume that it shares code with Hyper-V? If so, wouldn't drivers for ethernet interfaces be a problem (se...
by NathanA
Fri Mar 13, 2015 7:44 am
Forum: Virtualization
Topic: Halt in MetaRouter console reboots Mikrotik Router
Replies: 5
Views: 2278

Re: Halt in MetaRouter console reboots Mikrotik Router

Is this something Mikrotik is aware of and working on?
Yes. I have a ticket open with them, and I hear from them every once in a while about it, but it apparently is not an easy problem to solve (like pretty much every other MetaROUTER bug...grrr). :-x

-- Nathan
by NathanA
Wed Mar 11, 2015 9:56 am
Forum: RouterBOARD hardware
Topic: Two fans simultaneously on CCR1016 series?
Replies: 18
Views: 3389

Re: Two fans simultaneously on CCR1016 series?

CCR with pasive cooling is not suitable for you?
http://routerboard.com/CCR1009-8G-1S-1SplusPC
In OP's defense, CCR1009 != CCR1016. A 1009 may not have fit the requirements.

-- Nathan
by NathanA
Wed Mar 11, 2015 9:51 am
Forum: General
Topic: Weird IP Address Error in select parts of RouterOS
Replies: 8
Views: 4209

Re: Weird IP Address Error in select parts of RouterOS

This is how they know that - they got burned before.
So true.

-- Nathan
by NathanA
Tue Mar 10, 2015 8:27 pm
Forum: RouterBOARD hardware
Topic: Two fans simultaneously on CCR1016 series?
Replies: 18
Views: 3389

Re: Two fans simultaneously on CCR1016 series?

So there is no way to force running both at the same time in RouterOS?
*sigh*

No.

-- Nathan
by NathanA
Tue Mar 10, 2015 8:54 am
Forum: General
Topic: feature request: VPN/PPP bonding
Replies: 3
Views: 1488

Re: feature request: VPN/PPP bonding

Isn't that already achievable with nTH packet based mangle rules (All be it rather CPU intensive). That's not really "bonding" per-se; that's just flow-based load-balancing. To me, "bonding" means being able to aggregate multiple connections together in such a way that all bonded connections are us...
by NathanA
Tue Mar 10, 2015 8:38 am
Forum: General
Topic: Mikrotik 2011, Draytek Vigor 120 and PPPoE Settings - Change from Ether 1 to Ether 2
Replies: 6
Views: 2350

Re: Mikrotik 2011, Draytek Vigor 120 and PPPoE Settings - Change from Ether 1 to Ether 2

When I first saw the original post, I thought to myself, "this guy isn't making any sense...why would ether1 specifically have a problem, and why haven't I ever heard anything about this before? where is he getting this?" But if the potential issue is with any port on that switch (ether1-ether5), th...
by NathanA
Tue Mar 10, 2015 8:32 am
Forum: General
Topic: Problem updating RouterOS 6.25 to 6.27 on a MikroTik x86 based architecture (server)
Replies: 5
Views: 2252

Re: Problem updating RouterOS 6.25 to 6.27 on a MikroTik x86 based architecture (server)

Try an update again, and after it fails to do anything, post a Winbox screenshot that has both the System -> Packages and Files windows open, or a copy+paste of a terminal window showing the output from "/system package print" and "/file print"

-- Nathan
by NathanA
Tue Mar 10, 2015 8:27 am
Forum: General
Topic: Weird IP Address Error in select parts of RouterOS
Replies: 8
Views: 4209

Re: Weird IP Address Error in select parts of RouterOS

"Use the subnet calculator, Luke!"

-- Nathan
by NathanA
Tue Mar 10, 2015 8:21 am
Forum: RouterBOARD hardware
Topic: Two fans simultaneously on CCR1016 series?
Replies: 18
Views: 3389

Re: Two fans simultaneously on CCR1016 series?

Just wondering if this is intended or a malfunction. Again, if you read the provided documentation, it should be clear that this is intended. What are the odds that you would buy and receive two devices that are both vastly different models (RB1100AHx2, CCR1016) with vastly different architectures ...
by NathanA
Tue Mar 10, 2015 8:13 am
Forum: RouterBOARD hardware
Topic: 1100AHX2 fans
Replies: 7
Views: 2124

Re: 1100AHX2 fans

Did I miss something? Yes, you apparently missed the users's manual for the device in question, where on page 4 it says this: Only one Fan in each pair will rotate, other will start when first fails. Only one pair can be connected at the same time So the second fan is designed to work as a spare. T...
by NathanA
Sun Mar 08, 2015 8:48 am
Forum: RouterBOARD hardware
Topic: Faulty RB1100AHx2?
Replies: 9
Views: 2909

Re: Faulty RB1100AHx2?

For kicks, I decided to try port 12 again, and it works now. Maybe the port problem was related to memory address layout and how ports access/utilize memory :?: Perhaps. Another thought I had had was that if you look at a block diagram for an RB1100, you will see that different ports are "lit" in d...
by NathanA
Sat Mar 07, 2015 11:33 pm
Forum: General
Topic: PPPoE Client inside PPPoE Server
Replies: 6
Views: 1768

Re: PPPoE Client inside PPPoE Server

Very confused about what you are trying to do. You have ether2 in a bridge, and a pppoe-server running on the bridge, but then you also have a pppoe-client on ether2. That is nonsense. Once ether2 is in a bridge, you should not reference it or treat it as a discrete interface. You should only ever r...
by NathanA
Sat Mar 07, 2015 7:45 am
Forum: RouterBOARD hardware
Topic: Faulty RB1100AHx2?
Replies: 9
Views: 2909

Re: Faulty RB1100AHx2?

...followed by a "live" response a day later, "Before jumping to conclusion, log into the BIOs of the bard via serial console and run memory test. Currently we can see some kind of Kernel crash, but at this point it is unclear what exactly does wrong. We need at least few more panics to determine t...
by NathanA
Sat Mar 07, 2015 4:48 am
Forum: RouterBOARD hardware
Topic: Faulty RB1100AHx2?
Replies: 9
Views: 2909

Re: Faulty RB1100AHx2?

So after you had this initial experience, you started a thread on a user forum, but then didn't follow up either with official MikroTik support channels (who even responded to your original thread with an invitation to contact them via e-mail) or with your distributor about the possibility of gettin...
by NathanA
Sat Mar 07, 2015 2:59 am
Forum: General
Topic: What difference is there between TP-link and mikrotik router
Replies: 223
Views: 48078

Re: What difference is there between TP-link and mikrotik router

Nathan, really you spent 2 minutes googling information about me. If I had known that I became so famous that you found a chance of free two minutes of your time to google information about me , then I would have given you whatever information about me to save your you two minutes. I only brought u...
by NathanA
Sat Mar 07, 2015 2:20 am
Forum: General
Topic: EoIP and OSPF
Replies: 4
Views: 1719

Re: EoIP and OSPF

It is unclear to me if you are saying that you are speaking OSPF over the EoIP tunnel or if you just want to make an EoIP tunnel between two routers that are already exchanging routes with each other via OSPF. If you aren't talking about doing OSPF over EoIP, then yes, I would use the loopback addre...
by NathanA
Fri Mar 06, 2015 10:53 pm
Forum: General
Topic: What difference is there between TP-link and mikrotik router
Replies: 223
Views: 48078

Re: What difference is there between TP-link and mikrotik router

I spent 2 minutes on Google, and came up with other web forums that he posts on, which led to an e-mail address, which led to a name, which led to further forums, which led to a picture, which led to Facebook, Blogger, Google+, and Twitter profiles, which led to a place of employment. Isn't the inte...
by NathanA
Wed Mar 04, 2015 11:51 am
Forum: General
Topic: RB2011iL after upgradeing router OS to 6.27 from 6.09 Health status not working??
Replies: 2
Views: 969

Re: RB2011iL after upgradeing router OS to 6.27 from 6.09 Health status not working??

We got this unit installed at a remote site using solar and could issue health command and get Voltage info we upgraded to the latest OS from Mikrotik Website 6.27. Now the unit does not have the HEALTH option in winbox or web GUI? Are you absolutely sure about this? I just tried logging into 2 RB2...
by NathanA
Wed Mar 04, 2015 10:27 am
Forum: Beginner Basics
Topic: Step Up from the RB2011....?
Replies: 22
Views: 4772

Re: Step Up from the RB2011....?

It is out of the question because it is a big rack unit and not fanless. The actual board inside the rackmount aluminum enclosure is about as wide as the fanless CCR1009. You could probably put it in a custom enclosure that was smaller, if you were so inclined. And the fans on the AHx2 are nothing ...
by NathanA
Wed Mar 04, 2015 10:15 am
Forum: Beginner Basics
Topic: Transparent proxy for SIP
Replies: 4
Views: 1488

Re: Transparent proxy for SIP

...connection timeouts with no answer. But maybe it is something wrong with the line I am on now. If you are trying to do this from a mobile network, I have encountered network operators that block certain types of traffic, including VPN traffic. So it is entirely possible. Also, as I am no familia...
by NathanA
Wed Mar 04, 2015 9:31 am
Forum: General
Topic: New OS v6 and above for RB SXT Lite health show problem
Replies: 7
Views: 1542

Re: New OS v6 and above for RB SXT Lite health show problem

then why in previous versions like v5 show health status in this device ??!!
You are wrong; it never showed anything in v5, either, because this model has no health sensors. You are confusing this device with some other model:
sxt-lite-health-v5.PNG
-- Nathan
by NathanA
Wed Mar 04, 2015 9:25 am
Forum: General
Topic: CCR1036 Telnet Can't login...help~
Replies: 3
Views: 859

Re: CCR1036 Telnet Can't login...help~

When Telnet and SSH stop working, does Winbox still work? If yes, can you bring up a Terminal in Winbox, and does that Terminal work fine? Either way, if you can get in with Winbox, create a SUPOUT file after Telnet/SSH dies and mail it to support@mikrotik.com along with an explanation of what is ha...
by NathanA
Wed Mar 04, 2015 9:20 am
Forum: Beginner Basics
Topic: Step Up from the RB2011....?
Replies: 22
Views: 4772

Re: Step Up from the RB2011....?

The fanless CCR seems overkill, and I am not convinced about its crypto performance compared to the RB1100AHx2, which is out of the question. The 1100AHx2 is cheaper than the new fanless CCR1009, so why is the AHx2 out of the question if you would readily buy the CCR if it weren't for your doubts a...
by NathanA
Wed Mar 04, 2015 9:11 am
Forum: Virtualization
Topic: Metarouter just crashes on RB922UAGS-5HPacD (MIPSBE)
Replies: 4
Views: 2311

Re: Metarouter just crashes on RB922UAGS-5HPacD (MIPSBE)

I don't have an RB922 or any other QCA9557-based board to play with, but it definitely sounds like a bug. If MetaROUTER were not supported, then either the menu would not show up or it would prevent you from creating a MetaROUTER, not just crash and reboot if you tried. So please report this bug to ...
by NathanA
Wed Mar 04, 2015 8:48 am
Forum: General
Topic: Re-Flashing customised RB751U-2hnD
Replies: 3
Views: 595

Re: Re-Flashing customised RB751U-2hnD

Netinstall.

-- Nathan
by NathanA
Wed Mar 04, 2015 12:05 am
Forum: General
Topic: Routing between internal interfaces?
Replies: 1
Views: 379

Re: Routing between internal interfaces?

This appears to be a duplicate post; I have responded here.

-- Nathan
by NathanA
Wed Mar 04, 2015 12:04 am
Forum: General
Topic: Routing between internal interfaces?
Replies: 17
Views: 10736

Re: Routing between internal interfaces?

The problem I am facing is that being in the 10.x network, I can communicate with other computers on the network 20.x.p Of course. It's a router; that's what routers do. With the use of Vlans this could not be happening. No, it would only not happen if you had the VLANs configured on a switch with ...
by NathanA
Tue Mar 03, 2015 11:58 pm
Forum: Virtualization
Topic: Halt in MetaRouter console reboots Mikrotik Router
Replies: 5
Views: 2278

Re: Halt in MetaRouter console reboots Mikrotik Router

Yes; please search the forums: Router reboots after MetaROUTER shutdown RB2011 crashes when metarouter shuts down I recommend that you read all posts from earlier threads; some of the initial posts claimed it only happens if you shutdown the guest, not reboot it, and only if you issue the "halt" com...
by NathanA
Tue Mar 03, 2015 3:53 am
Forum: General
Topic: PPPoE at 1500 MTU with EOIP, OSPF and future VLANS
Replies: 9
Views: 2072

Re: PPPoE at 1500 MTU with EOIP, OSPF and future VLANS

I tested it but I'm not sure because the icmp ping works different in routeros and Windows. Ah, okay, that's where the confusion is. Yes, Windows treats the "size" parameter for ping differently than other operating systems. As Microsoft documents here , Windows ping size does not include headers, ...
by NathanA
Mon Mar 02, 2015 10:11 pm
Forum: General
Topic: PPPoE at 1500 MTU with EOIP, OSPF and future VLANS
Replies: 9
Views: 2072

Re: PPPoE at 1500 MTU with EOIP, OSPF and future VLANS

Hmm, I thought we had already gone over this before. Are you doing 1500 MTU PPPoE without MRRU *over* the VLANs? Any interface you are running PPPoE over would need to be at least 1508 MTU, including VLANs. Are they correct? You tell me. Have you tested it? Does it work? Do you need external validat...
by NathanA
Mon Mar 02, 2015 8:50 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

Any news regarding the installation of asterisk-gui? I still have the error : * satisfy_dependencies_for: Cannot satisfy the following dependencies for asterisk-gui: * asterisk18-res-phoneprov * asterisk18-app-meetme * asterisk18-app-page * As the error message clearly says, this means you do not h...
by NathanA
Mon Mar 02, 2015 8:40 pm
Forum: General
Topic: RB750G Suddenly Dead
Replies: 15
Views: 2333

Re: RB750G Suddenly Dead

Open it up and look for bad/bulging capacitors.

-- Nathan
by NathanA
Mon Mar 02, 2015 8:36 pm
Forum: General
Topic: What difference is there between TP-link and mikrotik router
Replies: 223
Views: 48078

Re: What difference is there between TP-link and mikrotik router

If the provider themselves doesn't know their own product, how do you expect us to know? None of us work for them. Our guesses would be as good as yours.

-- Nathan
by NathanA
Mon Mar 02, 2015 8:33 pm
Forum: General
Topic: netinstall using DiskOn Key ?
Replies: 2
Views: 483

Re: netinstall using DiskOn Key ?

You can't use a USB flash drive as a boot disk on a RouterBoard.

-- Nathan
by NathanA
Mon Mar 02, 2015 10:04 am
Forum: Virtualization
Topic: cannot ping from/to openwrt to mikrotik interface
Replies: 5
Views: 3103

Re: cannot ping from/to openwrt to mikrotik interface

Well, I see a few things wrong. First, I see different IPs from the same subnet attached to two separate interfaces. Why did you/would you do that? That can only cause problems for you, even if you don't use MetaROUTER. In certain situations, you could get away with overlapping IP space with differe...
by NathanA
Thu Feb 26, 2015 6:30 pm
Forum: General
Topic: A Better Safe Mode
Replies: 1
Views: 975

Re: A Better Safe Mode

If you are concerned that Safe Mode is not actually getting set when you click the GUI button, try instead to open up a terminal window in Winbox and hit Ctrl-X. You will get immediate confirmation that Safe Mode took effect when the CLI prompt changes to reflect the new status. It has been a while ...
by NathanA
Tue Feb 24, 2015 10:33 am
Forum: Virtualization
Topic: Metarouter images
Replies: 365
Views: 243390

Re: Metarouter images

I just had a look into the 3.3.5-patch mentioned by Nathan - I think I will start to incorporate it piece by piece... and as far as I know any unaligned memory access on a mips box should lead to a crash. I just noticed that both in OpenWRT trunk and in the Barrier Breaker branch that it looks like...
by NathanA
Tue Feb 24, 2015 10:19 am
Forum: Beginner Basics
Topic: Step Up from the RB2011....?
Replies: 22
Views: 4772

Re: Step Up from the RB2011....?

Are you sure about the hardware crypto? Quite sure. Search the forums. You'll find this post from Normis, which you can read, as well as the posts that came after his in the same thread: Re: RB850Gx2 - Release date? . Supposedly they will be releasing an enhanced 850Gx2 with the encryption engine i...
by NathanA
Sat Feb 21, 2015 4:26 am
Forum: General
Topic: ROS 6.27 is the at the limit? So when to expect ROS 7 beta?
Replies: 10
Views: 1786

Re: ROS 6.27 is the at the limit? So when to expect ROS 7 beta?

Not sure why this is so hard to understand, and there's nothing goofy about it, past or present. Before 3.x, everything was numbered as 2.x.x. Every new "major" version of the software increased the second number instead of the first, so when they went from 2.8.x to 2.9.x (for example) in the past, ...
by NathanA
Sat Feb 21, 2015 3:54 am
Forum: Virtualization
Topic: openwrt on kvm
Replies: 11
Views: 8473

Re: openwrt on kvm

I just tried this out for myself and it works perfectly fine. You didn't bother to try my earlier suggestion, which was to connect to the console using VNC. If you had done so, you would have seen that it was crashing with this error on bootup: Please append a correct "root=" boot option Kernel pani...
by NathanA
Thu Feb 19, 2015 5:07 am
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 11949

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

If I'm not wrong the AA compiled by me with your instructions has not the problem, but I must verify.. maybe the patches used are already aware of the problem No, unfortunately, it affects all MetaROUTERs equally. Like I said (and as the other threads I linked to pointed out), it even affects Route...
by NathanA
Wed Feb 18, 2015 1:04 pm
Forum: Announcements
Topic: hAP lite
Replies: 389
Views: 164311

Re: hAP lite

The product picture shows ether1 marked as "Internet", while others are marked as "LAN". Is the first port completely independent, or can be put into the same switch group the other ports are in? I noticed that, too, but the RB750 and 751 also have that very same restriction (and maybe the 951-2n a...
by NathanA
Wed Feb 18, 2015 12:57 pm
Forum: Virtualization
Topic: Router reboots after MetaROUTER shutdown
Replies: 11
Views: 5469

Re: Router reboots after MetaROUTER shutdown

6.27 ..still there :(
Trust me: I know. :(

-- Nathan
by NathanA
Wed Feb 18, 2015 12:53 pm
Forum: General
Topic: Need help: DHCP on VLAN bridge not working, works on just an interface?
Replies: 11
Views: 7730

Re: Need help: DHCP on VLAN bridge not working, works on just an interface?

I just noticed the 'inactive' flag for the bridge port This is clearly the problem. With an "I" flag and a "disabled" status, the bridge is not going to be forwarding traffic to that member interface since it doesn't consider it to be valid for some reason. The question is why. Normally, I would on...
by NathanA
Wed Feb 18, 2015 7:13 am
Forum: General
Topic: sstp vs pptp performance
Replies: 27
Views: 9713

Re: sstp vs pptp performance

I consider TCP-based tunnels like SSTP to be tunnels "of last resort"; see Why TCP Over TCP Is A Bad Idea . You only run them if you have absolutely no other alternative (e.g., either end of the tunnel is behind a firewall that you have no direct control over, or perhaps in the case of SSTP specific...
by NathanA
Tue Feb 17, 2015 3:14 pm
Forum: Beginner Basics
Topic: RB493GAH boot trouble
Replies: 24
Views: 3628

Re: RB493GAH boot trouble

Since we appear to be in all-caps yelling mode, AGAIN I ASK: WHY NOT TRY ROUTEROS 6.27?

As far as your RouterBOOT CRC error, go to the RouterBOOT menu, and select "r - reset booter configuration".

-- Nathan
by NathanA
Tue Feb 17, 2015 1:38 pm
Forum: Beginner Basics
Topic: RB493GAH boot trouble
Replies: 24
Views: 3628

Re: RB493GAH boot trouble

ANOTHER FAILURE TEST ON FW 5.26 RB3493G
Is there a reason why you cannot try using RouterOS 6?

-- Nathan
by NathanA
Tue Feb 17, 2015 1:36 pm
Forum: General
Topic: strange problem with netinstall won't install RB
Replies: 7
Views: 1459

Re: strange problem with netinstall won't install RB

Are you running Netinstall as Administrator?

-- Nathan
by NathanA
Tue Feb 17, 2015 1:34 pm
Forum: Virtualization
Topic: openwrt on kvm
Replies: 11
Views: 8473

Re: openwrt on kvm

I have no idea since I have never tried this before. However, you can probably figure it out if you use common sense and do a little research. Like I said, if you need a kernel, you may need to extract it from the disk image. Alternatively, I see that in the directory that you pointed us to, there i...
by NathanA
Tue Feb 17, 2015 8:18 am
Forum: Beginner Basics
Topic: RB493GAH boot trouble
Replies: 24
Views: 3628

Re: RB493GAH boot trouble

Interesting. I see you are running RouterOS 5.x. Perhaps there is a bug in older versions of RouterOS on certain RouterBoard models where it tries to do something to a MicroSD card and fails if one is not present? Maybe try installing a recent version of RouterOS with Netinstall and see if the probl...
by NathanA
Tue Feb 17, 2015 12:04 am
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 11949

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

Your Kamikaze works well but sometimes RB reboot when I "halt" it so I've decided to do some lab :-) You mean when you boot it directly, or when you run it as a MetaROUTER? If you mean when you run it as a MetaROUTER, that's not a problem with "my" Kamikaze. That is a RouterOS bug. RouterOS can som...
by NathanA
Mon Feb 16, 2015 1:44 pm
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 11949

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

I posted an update to the MIPSBE architecture patches with the following changes: Fixed issues with USB port not powering up on some AR93xx SoC based boards. Updated ag71xx ethernet driver from OpenWRT trunk in order to add ethernet support for RB951Ui and RB2011UiAS. Adding support for the ethernet...
by NathanA
Mon Feb 16, 2015 12:50 pm
Forum: General
Topic: Tapatalk and Karma
Replies: 60
Views: 4839

Re: Tapatalk and Karma

We will work on those issues, thanks Nathan. Normis, I have looked at the CSS and I know how to fix the issues I reported. First, the italics BBCode uses the <em> tag, which gets reset in styles/Mobbern3.1/theme/common.css (line 6). Solution is to add this: em { font-style: italic; } ...to styles/M...
by NathanA
Mon Feb 16, 2015 12:30 pm
Forum: Beginner Basics
Topic: RB493GAH boot trouble
Replies: 24
Views: 3628

Re: RB493GAH boot trouble

Just for test you cold try microSD if it improves situation.
I'm confused about this. Why would putting a MicroSD card in fix this situation? It seems like a random solution. Is this a hardware design problem related to the SD slot?

-- Nathan
by NathanA
Sun Feb 15, 2015 6:06 pm
Forum: RouterBOARD hardware
Topic: RouterBOARD 493G - Devices seems to be dead.
Replies: 4
Views: 1344

Re: RouterBOARD 493G - Devices seems to be dead.

Could you try to put in microSD cad in slot. an see how it goes.
Why would installing a MicroSD card on the board make a difference? This seems like a very non-intuitive suggestion.

-- Nathan
by NathanA
Sun Feb 15, 2015 6:05 pm
Forum: RouterBOARD hardware
Topic: Differences between QCA9557 and QCA9558
Replies: 11
Views: 14488

Re: Differences between QCA9557 and QCA9558

Why do you care about the details of the differences between the two SoCs? Does this affect your use of RouterBoard products somehow?

-- Nathan
by NathanA
Sun Feb 15, 2015 6:04 pm
Forum: RouterBOARD hardware
Topic: Trouble with new RB493GAH
Replies: 7
Views: 983

Re: Trouble with new RB493GAH

I know what an RB493G is, and I know what an RB493AH is, but what the heck is a RB493GAH?

-- Nathan
by NathanA
Sun Feb 15, 2015 5:36 pm
Forum: General
Topic: What difference is there between TP-link and mikrotik router
Replies: 223
Views: 48078

Re: What difference is there between TP-link and mikrotik router

"On two occasions I have been asked, 'Pray, Mr. Babbage, if you put into the machine wrong figures, will the right answers come out?' [...] I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." -- Charles Babbage