Community discussions

Search found 108 matches

by whitbread
Fri Apr 19, 2019 8:01 pm
Forum: General
Topic: DNS Failover
Replies: 8
Views: 975

Re: DNS Failover

you need a good script to do what u want.
by whitbread
Wed Apr 03, 2019 4:58 pm
Forum: Wireless Networking
Topic: Single SSID multiple passwords
Replies: 8
Views: 619

Re: Single SSID multiple passwords

just follow the link in #3. I use it in the same way for my untrusted iot devices. It is not a solution for a guest network imo.
by whitbread
Fri Mar 22, 2019 12:39 am
Forum: RouterBOARD hardware
Topic: HAP AC vs HAP AC2
Replies: 7
Views: 1043

Re: HAP AC vs HAP AC2

If you need an affordable router go for the hap ac2, if you need a good wireless device think about it twice. I cannot recommend anythink really apart from the good old rb2011 for your 2G network. I use my hap ac2 primarily as a router, moved the 2G network back to my rb2011 and all my 5G devices co...
by whitbread
Thu Feb 28, 2019 12:45 am
Forum: RouterOS v7
Topic: RouterOS v7.0 beta1 - when?
Replies: 546
Views: 129812

Re: RouterOS v7.0 beta1 - when?

Sry Mikrotik - your public relations behaviour is a total desaster when it comes to this topic. This is a user forum. So I don‘t expect u guys to do the right thing nor do I expect that u even know the truth. We all know that here and there especially software projects might end in a desaster. In co...
by whitbread
Fri Feb 22, 2019 11:19 pm
Forum: Wireless Networking
Topic: hAP ac² superchannel
Replies: 5
Views: 638

Re: hAP ac² superchannel

Well - try to look at your postal address first. ;-)
by whitbread
Tue Feb 12, 2019 11:10 pm
Forum: Announcements
Topic: v6.42.12 [long-term] is released!
Replies: 27
Views: 5926

Re: v6.42.12 [long-term] is released!

This is the end Mikrotik! Regulation got u by the balls. With antenna gain and TX limitation there is no way to use Mikrotik wireless devices anymore unless u stick to a version prior to these awful changes. Even if I would tend to see the root of these changes outside of Mikrotik the devices are cr...
by whitbread
Mon Jan 21, 2019 12:27 am
Forum: Beginner Basics
Topic: Whatsapp group mikrotik
Replies: 20
Views: 2913

Re: Whatsapp group mikrotik

This in fact is ridiculous! You can add all details on your profile nobody should ever use like FB and G. but you cannot add a way to communicate one2one other than your homepage. In combination with the deactivated message service a situation to think about. Btw - I would rather give away an email ...
by whitbread
Sat Jan 19, 2019 6:20 pm
Forum: Beginner Basics
Topic: Whatsapp group mikrotik
Replies: 20
Views: 2913

Re: Whatsapp group mikrotik

100% disagree.
Go buy Cisco or Huawei products if you want to share your data to foreign ‚services‘.
This is a forum to help people solving their technical problems; if you want a dating service use a social network.
by whitbread
Fri Jan 11, 2019 1:18 am
Forum: Announcements
Topic: v6.42.11 [long-term] is released!
Replies: 42
Views: 8183

Re: v6.42.11 [long-term] is released!

Sry the actual approach is bulshit! Iam willing to comply with regulations in all areas except power. So we need a manual power setting to override. I live in an area without any neighbor wireless networks - so no big deal here. Otherwise the people are using no country setting in the future leading...
by whitbread
Tue Jan 08, 2019 8:17 am
Forum: General
Topic: Mikrotik breaking Wi-Fi Calling?
Replies: 19
Views: 1215

Re: Mikrotik breaking Wi-Fi Calling?

Use a router for routing and a switch for switching. If using one device only go for a decent router. A router can do switching with ease, a switch cannot do routing decently.
by whitbread
Sat Dec 15, 2018 10:42 pm
Forum: General
Topic: Problem with CAPsMAN, wired Yamaha receiver with Spotify Connect and Spotify iOS app on mobile device
Replies: 3
Views: 595

Re: Problem with CAPsMAN, wired Yamaha receiver with Spotify Connect and Spotify iOS app on mobile device

What kinda mobile device u r using?
How u connect to musiccast devices?
More details on your network (vlans, devices, subnets, etc,) plz
by whitbread
Wed Nov 21, 2018 6:46 pm
Forum: General
Topic: Why blacklist burteforcers VS just dropping the ports/service?
Replies: 7
Views: 552

Re: Why blacklist burteforcers VS just dropping the ports/service?

If some1 probes your router on unused well known ports you do not want him to be able to evaluate if an exploit is working on another used port. True - you can use blacklists for this either.
by whitbread
Sun Nov 11, 2018 12:17 pm
Forum: General
Topic: Killing the Mikrotik Cloud?
Replies: 4
Views: 679

Re: Killing the Mikrotik Cloud?

turn off internet detection
by whitbread
Sun Oct 28, 2018 10:02 pm
Forum: General
Topic: CRS125 poor throughput & low cpu load [SOLVED]
Replies: 41
Views: 2116

Re: CRS125 poor throughput & low cpu load [SOLVED]

Not sure what u are (not) doing with ur devices, but my rb2011´s are maxed out at about 35MBit with my configuration. So I would tend to think about adding a hap ac2 or similar as a router and you should be happy.
by whitbread
Tue Oct 23, 2018 9:12 am
Forum: RouterBOARD hardware
Topic: Upgrade recommentation from RB951G-2HnD [SOLVED]
Replies: 6
Views: 1548

Re: Upgrade recommentation from RB951G-2HnD [SOLVED]

I have 951Gˋs running as well plus a new hap ac2. As long as you can use FP routing you are happy. When it comes to vlan aware bridging the new hap ac2 makes u happy. It is a really nice and fast router and I am happy with the wireless as well. The 4011 is for those who need all cpu based routing or...
by whitbread
Tue Oct 23, 2018 12:31 am
Forum: General
Topic: CRS125 poor throughput & low cpu load [SOLVED]
Replies: 41
Views: 2116

Re: CRS125 poor throughput & low cpu load [SOLVED]

Well - the CRS is a switch...

Use a router for routing!
by whitbread
Fri Oct 19, 2018 9:08 am
Forum: General
Topic: /ip dns servers= (cache) - how are multiple servers used?
Replies: 18
Views: 1565

Re: /ip dns servers= (cache) - how are multiple servers used?

I gave up and use only 1 (virtual) IP in my DNS config. That does the trick.
by whitbread
Wed Oct 03, 2018 12:05 pm
Forum: General
Topic: Bonding with four slave interfaces and specific requirements for activation order
Replies: 5
Views: 315

Re: Bonding with four slave interfaces and specific requirements for activation order

Thx for your explanation.
To cut it short I need to use routing technologies rather than bonding. Gonna work it out...
by whitbread
Tue Oct 02, 2018 4:24 pm
Forum: General
Topic: Bonding with four slave interfaces and specific requirements for activation order
Replies: 5
Views: 315

Re: Bonding with four slave interfaces and specific requirements for activation order

Thx for answering. Well, I try to explain my setup: two redundant gateway router serve two redundant lan router; they are physically connected by a single switch and traffic is forced through a single transparent proxy. If the switch fails traffic should flow through direct connection; if the proxy ...
by whitbread
Mon Oct 01, 2018 10:04 pm
Forum: General
Topic: Bonding with four slave interfaces and specific requirements for activation order
Replies: 5
Views: 315

Bonding with four slave interfaces and specific requirements for activation order

I need to implement a active/backup szenario over 4 interfaces, which need to be activated in a specific order. So let us assume vlan10 will be the default connection. vlan11 will be the next interface to become active if available, followed by the interfaces vlan210 and vlan211. Can this be achieve...
by whitbread
Wed Sep 26, 2018 11:46 pm
Forum: RouterBOARD hardware
Topic: Hardware offload on sfp port in hEX S mmips
Replies: 11
Views: 1352

Re: Hardware offload on sfp port in hEX S mmips

Well, it is a fact, that a lot of new devices due to hardware design are not much good for the new way of how bridging in combination with vlans or bonding is impemented. Unfortunately the devices do not scale very will with cores; a fast cpu is more important than numerous cores. Thus the one and o...
by whitbread
Tue Sep 18, 2018 3:56 pm
Forum: General
Topic: restore back to identical devices never works :(
Replies: 28
Views: 1545

Re: restore back to identical devices never works :(

Same issue with my rb2011-uias's. Tried to duplicate the one in production to my lab.
After restore rb started into secondary partition. Tried again with no success and gave up.
by whitbread
Mon Sep 17, 2018 12:39 pm
Forum: General
Topic: Really simple question about RB3011UiAS-RM
Replies: 6
Views: 458

Re: Really simple question about RB3011UiAS-RM

Best advice is to buy two devices. Always use seperate ap and router/switch.
by whitbread
Fri Sep 14, 2018 4:13 pm
Forum: Wireless Networking
Topic: A survey about WiFi social captive portal
Replies: 1
Views: 295

Re: A survey about WiFi social captive portal

Sry oo is on my blacklist...
by whitbread
Fri Sep 14, 2018 2:28 pm
Forum: General
Topic: VLAN, Bridge, HW Offload and Trunk Ports [SOLVED]
Replies: 12
Views: 1505

Re: VLAN, Bridge, HW Offload and Trunk Ports [SOLVED]

if you want to use hw offloading, put every port in coresponding bridge, configure each port in switch chip as secure including switch chip. Every VLAN that needs to reach the router must be configured in switch vlan.

leave one port extra for management until everything works!
by whitbread
Fri Sep 14, 2018 2:18 pm
Forum: Announcements
Topic: v6.43 [current] is released!
Replies: 148
Views: 26758

Re: v6.43 [current] is released!

So bad you cannot use switch chip together with bridges anymore :( You can definitely use VLANs in "hybrid" mode ... do the VLAN filtering on switch chip (/interface ethernet switch) and "new bridge" (without using bridge vlan functionality) with individual ports as members. Not sure if I understan...
by whitbread
Thu Sep 13, 2018 9:59 pm
Forum: Announcements
Topic: v6.43 [current] is released!
Replies: 148
Views: 26758

Re: v6.43 [current] is released!

*) bridge - improved performance when bridge VLAN filtering is used without hardware offloading; Just testet 6.43 on a hap ac2 - everything went smooth so far. As I am struggling for the best way to deal with my setup I did performance tests anyway. Just wanted to let you know that there is a perfo...
by whitbread
Mon Sep 10, 2018 1:07 am
Forum: RouterBOARD hardware
Topic: RB4011
Replies: 354
Views: 60680

Re: RB4011

Maybe specs are meant to increase sales on RB3011... ;-)

From my perspective it is the better option as I don't see any decent performance upgrade with multicore. hap ac2 is doing only slightly faster than rb2011 in my environment (far away from wire-speed).
by whitbread
Mon Sep 10, 2018 12:18 am
Forum: RouterBOARD hardware
Topic: RB4011 - Poll - ONE thing you'd change
Replies: 15
Views: 3534

Re: RB4011 - Poll - ONE thing you'd change

Whatever we request it is too late I guess...
by whitbread
Mon Sep 03, 2018 9:25 am
Forum: General
Topic: Chinese IP Cameras
Replies: 9
Views: 730

Re: Chinese IP Cameras

Do not forget to route them through anonymous proxy or gateway.

Or use onvif cameras together with your nas and stop those cameras' outbound communication at all.

Btw - same applies for all IoT devices (including Win10 computers)!
by whitbread
Wed Jul 18, 2018 10:10 pm
Forum: Wireless Networking
Topic: poor range of 5Ghz, comparing to 2,4Ghz
Replies: 6
Views: 1054

Re: poor range of 5Ghz, comparing to 2,4Ghz

It always depends on your needs and environment. I have no noise on 2G at all but my @pple devices do not accept 40MHz on 2G, so I had to use at least one 5G AP and choose the wAPac. It is doing nice without walls but just a single wall at 10m distance does not work at all - good to have 2G for thes...
by whitbread
Mon Jul 16, 2018 11:34 pm
Forum: Wireless Networking
Topic: poor range of 5Ghz, comparing to 2,4Ghz
Replies: 6
Views: 1054

Re: poor range of 5Ghz, comparing to 2,4Ghz

From my perspective 5GHz is totally useless if you want to serve more than a single room in your house.
by whitbread
Sun Jul 15, 2018 1:17 am
Forum: Wireless Networking
Topic: RB2011UiAS-2HnD - poor wireless performance
Replies: 6
Views: 1349

Re: RB2011UiAS-2HnD - poor wireless performance

If CPU is not limiting by being used by bandwidth test, then I would start playing with the following values: - Band: my suggestion would be G/N only - Channel Width: must be 20/40 to achieve good results - power: if distance is low, high power is reducing bandwidth (use status -> ccq to determine o...
by whitbread
Sat Jul 14, 2018 10:16 am
Forum: Wireless Networking
Topic: RB2011UiAS-2HnD - poor wireless performance
Replies: 6
Views: 1349

Re: RB2011UiAS-2HnD - DO NOT USE RB's bandwidth test on device to be measured!

You must not use RB as Traffic Generator itself when trying to measure wireless performance on the same device as this uses up CPU.

So you are measuring the measuring performance instead of the wireless or whatsoever performance.
by whitbread
Thu Jun 21, 2018 7:58 am
Forum: Wireless Networking
Topic: My 5GHz is unused, is there some error?
Replies: 7
Views: 835

Re: My 5GHz is unused, is there some error?

Same issue here - I am not convinced of 5G at all! Reason is - from my not amateur perspective - that wap ac 2G power is higher than 5G power and furthermore 2G makes it so much better through walls than 5G. In fact 5G is working only in sight distance at my home. As soon as any walls come into play...
by whitbread
Tue May 01, 2018 9:21 pm
Forum: Beginner Basics
Topic: Setup DNS for local domains
Replies: 21
Views: 11266

Re: Setup DNS for local domains

I cannot use Mikrotik DNS for my internal nets either. Wether this is caused by missing knowledge or missing functionality may be concluded by others. I solved the issue by using the built-in DNS-Server of my NAS, leaving Mikrotik to take care of the public DNS-Servers only.
by whitbread
Thu Apr 26, 2018 10:08 am
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 42317

Re: v6.42.1 [current]

No significant change in disk usage nor disk writes on RB2011, Upgraded from 6.41 to 6.42.1
by whitbread
Tue Apr 24, 2018 8:41 pm
Forum: Announcements
Topic: Advisory: Vulnerability exploiting the Winbox port [SOLVED]
Replies: 204
Views: 152781

Re: Advisory: Vulnerability exploiting the Winbox port

I have a home-based installation with my small business running behind. I do have another firewall from another vendor between my wan and my lan. I wasn't hit by this bug despite the fact that winbox port was open. This might be just lucky as I blacklist any IP trying famous "attack ports" and the c...
by whitbread
Tue Apr 24, 2018 4:05 pm
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 42317

Re: v6.42.1 [current]

Can we move this double reboot discussion to a separate thread plz...
by whitbread
Mon Apr 23, 2018 12:05 pm
Forum: Beginner Basics
Topic: Disallow unknown logins from internet access
Replies: 8
Views: 662

Re: Disallow unknown logins from internet access

You can restrict access per user to IP(-ranges). So you may allow access only to a restricted user only.

I would tend to think about using port knocking - easy to configure and use and pretty safe if you use a good port combination.
by whitbread
Sat Feb 24, 2018 10:39 am
Forum: RouterBOARD hardware
Topic: HAP AC random reboots
Replies: 3
Views: 846

Re: HAP AC random reboots

Are you using IPSec?
by whitbread
Wed Jan 31, 2018 12:15 pm
Forum: General
Topic: "ARP" Security on CRS and RB2011 using HW offloading
Replies: 3
Views: 365

Re: "ARP" Security on CRS and RB2011 using HW offloading

Thx for your answer - it explains the connection between router and device A, but what about the connection between device A and B? Where is ARP needed or where can I set ARP to reply-only to enhance security? I try to draw it here: device A (edge port; vlan10) vlan10 interface - Bridge10 \ / CRS (t...
by whitbread
Tue Jan 30, 2018 3:10 pm
Forum: General
Topic: Having trouble past 6.41
Replies: 10
Views: 658

Re: Having trouble past 6.41

If you want to isolate clients on the switching chip (which is my understanding of what you want to do) you need to use the port isolation feature on CRS switches. For routerboard devices I have no idea how to resolve this though...
by whitbread
Tue Jan 30, 2018 12:57 pm
Forum: General
Topic: "ARP" Security on CRS and RB2011 using HW offloading
Replies: 3
Views: 365

"ARP" Security on CRS and RB2011 using HW offloading

My network is built primarily by a CRS125 working as a switch only, a LAN firewall and a gateway router (both RB2011's). The routers are connected thru trunked ports as I am using numerous VLAN's. All devices are on version 6.41 and I am using the new hardware offloading, both on CRS and on RB2011s....
by whitbread
Wed Jan 10, 2018 12:02 am
Forum: Beginner Basics
Topic: CRS125, ROS 6.41, VLANs
Replies: 13
Views: 2201

Re: CRS125, ROS 6.41, VLANs

Just RTFM - it is not that difficult:

Use single bridge with HW-offloading and keep VLAN filtering disabled. Now go to the switch menu and configure your VLAN's as before.
by whitbread
Thu Jan 04, 2018 7:42 pm
Forum: Wireless Networking
Topic: wAP ac - 2GHz / 5GHz roaming
Replies: 5
Views: 891

Re: wAP ac - 2GHz / 5GHz roaming

I think I am stuck between the desired and the posibble. To cut it short: The only reason I was in need for 5GHz is the Apple TV - due to Apple's policy to reject using 40MHz channel width on 2GHz. I live in a pretty calm environment and don't have problems with noise. So the wAPac resides in my liv...
by whitbread
Wed Jan 03, 2018 11:51 pm
Forum: Wireless Networking
Topic: wAP ac - 2GHz / 5GHz roaming
Replies: 5
Views: 891

Re: wAP ac - 2GHz / 5GHz roaming

Hmm - you mean I should use same SSID but different password? That won't help really. I am in the need of a high performance PtP link (wAP ac to RB951G) to another building. I know that my indoor clients would be better served with something like 17db only. That is why I started to use the wAP ac: I...
by whitbread
Tue Jan 02, 2018 12:27 am
Forum: General
Topic: Choose Two Different WAN for Facebook and Youtube
Replies: 4
Views: 1138

Re: Choose Two Different WAN for Facebook and Youtube

I would recommend using a proxy server configured by proxy.pac. This would give you the opportunity to route by source IP - everything coming from proxy goes WAN2, everything else WAN1.
by whitbread
Mon Jan 01, 2018 10:00 am
Forum: Wireless Networking
Topic: wAP ac - 2GHz / 5GHz roaming
Replies: 5
Views: 891

wAP ac - 2GHz / 5GHz roaming

I have replaced a RB951Ui-2HnD with wAP ac. The device is working as AP bridge on 2GHz and as AP on 5GHz. It is configured as CAP. As the station is placed behind some obstacles I need to use full power on 2GHz. Most clients are Apple devices which are pretty slow on 2GHz as they refuse to use 40MHz...
by whitbread
Sun Dec 17, 2017 9:52 pm
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 52
Views: 10687

Re: RB3011 port flopping - bad design

wtf - the longer you read about experience with new devices the longer you tend to keep good old RB2011's, but with every second power failure I loose one ot those either.