Community discussions

Search found 25 matches

by lrl
Mon Dec 31, 2018 11:33 am
Forum: Virtualization
Topic: CHR, Physical nics and any 40 or 100Gb experience?
Replies: 0
Views: 640

CHR, Physical nics and any 40 or 100Gb experience?

We're looking to build a robust router to handle at minimum multiple (3-5) 10G peers and we're considering future options for 40 and 100Gb. I'm really looking for experiences and suggestions before moving forward. Has anyone tried using some of the more advanced VMWare features and assigning physica...
by lrl
Tue Jul 24, 2018 10:28 am
Forum: General
Topic: Intrusion shortly after sending support file
Replies: 8
Views: 1671

Re: Intrusion shortly after sending support file

I've reviewed all our dude data on this router, back to inception as there is zero evidence that anyone had access prior to. This is a ccr1072 there's pretty much zero chance.

The reference report is what was installed on our router with the access.
by lrl
Sun Jul 22, 2018 7:37 pm
Forum: General
Topic: Intrusion shortly after sending support file
Replies: 8
Views: 1671

Re: Intrusion shortly after sending support file

We were running a vulnerable version 6.39.3, but all ports were firewalled off and port knocking used to access winbox and that's where I'm a little freaked out. I can't figure out how those details could have gotten out there without a loss of control of the config. There are some strange events ci...
by lrl
Sun Jul 22, 2018 12:01 pm
Forum: General
Topic: Intrusion shortly after sending support file
Replies: 8
Views: 1671

Intrusion shortly after sending support file

Has anyone else experienced a routerOS intrusion nearly immediately after sending support a supfile? Yesterday I sent support a support file after we'd had several kernel panic crashes and within about 2.5 hours someone managed to log into the router using my credentials on the first attempt using t...
by lrl
Sun Mar 04, 2018 11:06 am
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 579
Views: 428973

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Thanks for the resource! I can't tell you how many times it's been very useful for us! We're currently building out a new 10G datacenter in our head-end and once we have the new ESXi cluster going I'd like to host a btest server. We'll have plenty of upload available and it's not going to be used. 3...
by lrl
Sun Sep 24, 2017 12:35 am
Forum: Scripting
Topic: Can't get it to run as a script
Replies: 2
Views: 404

Re: Can't get it to run as a script

Thank you! I started playing with how and where I was defining the variable and clearly forget to re-add it at the beginning.... I now have: :global "genonvolts" "116" :global "genoffvolts" "117" :global "currentvoltage" [/system health get voltage] :global "genoffinterface" "ether4-stop" :global "g...
by lrl
Sat Sep 23, 2017 11:27 pm
Forum: Scripting
Topic: Can't get it to run as a script
Replies: 2
Views: 404

Can't get it to run as a script

I can get this to run all day long in terminal, but I can't get it to run as a script. Everything worked fine till I added the gen state. This was needed because I don't want to trigger the relays if another source is charging and reaching the turn off voltage while the generator isn't running. I've...
by lrl
Thu Sep 08, 2016 7:43 am
Forum: Forwarding Protocols
Topic: BFD + OSPF + CCR1036 Issue
Replies: 24
Views: 5737

Re: BFD + OSPF + CCR1036 Issue

I played with BFD on OSPF links for quite a while. The max stable I could get was about 8 days, but that was two routers and only one ospf link on each. As OSPF links grew the BFD went flaky quicker until we were down to mere hours. A reboot of the affected router always resolved the issue temporary...
by lrl
Sat May 02, 2015 9:33 pm
Forum: General
Topic: Problematic BFD on 6.0
Replies: 7
Views: 2831

Re: Problematic BFD on 6.0

I've ran into this on various hardware. Usually a reboot of the router solves the problem. If I have one peer having problems I reboot the peer, if it's all peers I reboot the core and problem goes away. I've seen this on: CCR-1036 RB100AHx2 RB750UP RB2011 But strangely I don't recall it happening o...
by lrl
Fri Jan 16, 2015 2:16 am
Forum: General
Topic: LPR/LPD Printing over VPN
Replies: 6
Views: 1403

LPR/LPD Printing over VPN

I have a client that we setup a VPN between two of their locations using DSL. The VPN appears to be working flawlessly. The new office (satellite office) routes everything back to the Main office for all connectivity. The satellite office egresses onto the internet at the main office too. The issue ...
by lrl
Wed Nov 05, 2014 8:49 pm
Forum: General
Topic: CCR issue
Replies: 8
Views: 2138

Re: CCR issue

The internal bandwidth test and the one core per session could affect this, but in my testing I was still able to push into the mid 200's before I reached the limit imposed by one core. In my situation the UBNT switch was off of int3 and the IPERF server off of int4 and the IPERF client off of int6....
by lrl
Fri Oct 24, 2014 9:05 am
Forum: General
Topic: CCR issue
Replies: 8
Views: 2138

Re: CCR issue

The upgrades had no effect. The problem appeared to be a weird flow control issue. I had previously turned flow control off because of some lockup issues we had with a ubiquiti switch. I had also turned flow control off on the CCR. But apparently the ubiquiti switch misbehaves even with flow control...
by lrl
Mon Oct 20, 2014 7:52 am
Forum: General
Topic: CCR issue
Replies: 8
Views: 2138

Re: CCR issue

Zeros all across. The CPU on the CCR is holding 2-3%. A bandwidth test from the CCR to another router doesn't increment the CPU more than 1% overall and usually just one core raises to 40-50% which in my mind rules out traffic rate being limited by CPU. The receiving router reaches about 65% CPU. I'...
by lrl
Mon Oct 20, 2014 12:20 am
Forum: General
Topic: CCR issue
Replies: 8
Views: 2138

Re: CCR issue

Correct. That's why I loaded iperf on a server and my laptop and conducted another test.

<Laptop> <eth3 CCR> (software bridge) <eth7 CCR> <Server>

At the time of the test the total bridge throughput was 120Mbps
by lrl
Sun Oct 19, 2014 11:04 pm
Forum: General
Topic: CCR issue
Replies: 8
Views: 2138

CCR issue

I have a weird one here. I’ve searched and can’t find anyone or any mention of this type of issues elsewhere, but if I’ve missed it please let me know. I have a CCR1036 that I use as our Core router. Recently we’ve been noticing slowdowns everywhere. So I’ve ran some speed tests using the built in M...
by lrl
Wed May 14, 2014 11:02 am
Forum: Forwarding Protocols
Topic: BGP issue
Replies: 2
Views: 1548

Re: BGP issue

All I know is it's a BSD box being used as a router, I assume it's running openBGPD.

My MTU hasn't been changed, the interface in question shows 1500. I had a brief moment of thought about ttl, but it's clearly the next hop for me since mt interface has an IP in the same block.
by lrl
Mon May 12, 2014 10:36 pm
Forum: Forwarding Protocols
Topic: BGP issue
Replies: 2
Views: 1548

BGP issue

I've got a peer that is clearly having issues, although I'm at a loss as to what the cause is. The tcp connection comes up, the tik sends the open message but we never pass any routes either way. We're peering with a router running BSD. Any suggestions or thoughts would be appreciated. The configura...
by lrl
Mon Apr 28, 2014 9:10 am
Forum: General
Topic: STP/RSTP monitoring
Replies: 1
Views: 732

STP/RSTP monitoring

I run a fair sized layer2 network with a bunch of tik devices. We've recently started having some issues with one of our back-hauls and as a result it's been causing a bunch of spanning tree flops from the main back-haul to the redundant. I was never a concern to monitor the bridge ports on our ccr ...
by lrl
Thu Mar 27, 2014 6:37 pm
Forum: Forwarding Protocols
Topic: Bad remote-as
Replies: 6
Views: 2948

Re: Bad remote-as

The remote side had configured our peer ASN to be the same as theirs.

Thanks for the help, I thought it was on their side, but I like to have another opinion before confronting a provider.
by lrl
Fri Mar 21, 2014 6:58 pm
Forum: Forwarding Protocols
Topic: Bad remote-as
Replies: 6
Views: 2948

Re: Bad remote-as

Yup. I'm leaning toward the provider doesn't have the remote ASN set correctly (my correct ASN), would this be your conclusion as well? 0 * name="default" as=55044 router-id=1.1.1.181 redistribute-connected=no redistribute-static=no redistribute-rip=no redistribute-ospf=no redistribute-other-bgp=no ...
by lrl
Fri Mar 21, 2014 4:16 pm
Forum: Forwarding Protocols
Topic: Bad remote-as
Replies: 6
Views: 2948

Re: Bad remote-as

Yes, I intentionally broke it to see if the error changed. When I intentionally misconfigured it for remote as 29950 the error is very clear that 29950 is wrong. But when I change it to the correct ASN (29951) I continue to get a remote ASN error but without anything specific mentioned as the proble...
by lrl
Fri Mar 21, 2014 8:12 am
Forum: Forwarding Protocols
Topic: Bad remote-as
Replies: 6
Views: 2948

Bad remote-as

I'm stumped. Either I'm missing something or the remote peer is configured wrong. Initially I was getting: 00:05:11 route,bgp,error Received notification 00:05:11 route,bgp,error OPEN error: bad remote-as so after a little playing I intentionally broke the remote as and got: 00:00:21 route,bgp,error...
by lrl
Thu Oct 03, 2013 9:58 am
Forum: Scripting
Topic: Script to turn off poe when voltage gets low
Replies: 4
Views: 1889

Re: Script to turn off poe when voltage gets low

I feel like an idiot. I also found an extra quote on the email line before the body. Thanks for putting up with me! :oops:
by lrl
Mon Sep 30, 2013 11:15 pm
Forum: Scripting
Topic: Script to turn off poe when voltage gets low
Replies: 4
Views: 1889

Re: Script to turn off poe when voltage gets low

I forgot to note that I'm running this on a RB750UP with 6.4 installed.
by lrl
Sat Sep 28, 2013 10:53 am
Forum: Scripting
Topic: Script to turn off poe when voltage gets low
Replies: 4
Views: 1889

Script to turn off poe when voltage gets low

Hello everyone, I'm a newbie to these forums, but I've been working with router os off and on for many years now, I've lost count how many, since 2.7.20 ;) Anyways, of to the reason for my post. Recently on of our solar sites was struck by lightning and I've had to rebuild it basically from scratch....