Community discussions

Search found 97 matches

by aaronhun22
Fri May 01, 2015 6:55 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

It's not missing; its default which won't show in the config. Haven't you ever read or programmed these?
by aaronhun22
Fri May 01, 2015 7:12 am
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

InoX

Shows how much you know or didn't you bother with reading my posted config.

jrudrow was actually the one who caught it and CyberTod interpreted the low CCQ was due to no traffic.

Maybe YOU should concentrate on posting useful information instead of sounding like a babbling moron.
by aaronhun22
Thu Apr 30, 2015 5:46 am
Forum: Wireless Networking
Topic: Wireless problem - Noobie, help please
Replies: 4
Views: 584

Re: Wireless problem - Noobie, help please

I agree with deanMKD1; sounds like you're missing Masquerade on the out interface. Post your config for better help.
by aaronhun22
Thu Apr 30, 2015 4:28 am
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

Changing the client mode to station-bridge fixed it! I wasn't able to get more then 30Mb with Nstreme even though the ping times are shorter. Switching to NV2 I got 400Mb. Thanks everyone!
by aaronhun22
Wed Apr 29, 2015 11:41 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

I got it to connect with nstreme and the CCQ is now 66/70 but it still won't ping. No traffic across the link.
by aaronhun22
Wed Apr 29, 2015 7:40 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

Setting the distance to dynamic had no change. NV2 is the only one it will connect with but not even ping with work. CCQ is as low as 2 and as high as 10. Set AP to 20Mhz channels and 80Mhz with no difference.
by aaronhun22
Wed Apr 29, 2015 7:20 am
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

After a few days of aligning I now have the signal at -48. My connection says -52 and -53 with NV2 and the CCQ is now 6/2. NetMetal5 with mANT30 and their flex-guide and still no connection.
by aaronhun22
Fri Apr 24, 2015 8:32 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

I removed the distance setting and CCQ is still 2%.
by aaronhun22
Fri Apr 24, 2015 12:37 am
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

Yeah; when I wasn't using NV2 I kept getting disconnect messages in the log. 07:10:50 wireless,info @wlan1 established connection on 5300000, SSID 07:10:53 wireless,info @wlan1: lost connection, received deauth: class 2 frame received (6) 07:10:53 wireless,info @wlan1 established connection on 53000...
by aaronhun22
Thu Apr 23, 2015 10:00 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

Re: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

You need to realign the antenna. Same hapened to me but I moved it left to right a lot until the signal was good. The antenna has lobes and you align them on that lobes. Also the signal must be identical +-3dbi. The link must have ~ -60dbi. We actually had it at -53 before we raised it up on the po...
by aaronhun22
Thu Apr 23, 2015 8:09 pm
Forum: Wireless Networking
Topic: NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11
Replies: 19
Views: 2391

NetMetal5 mANT30 NV2 low CCQ and no connection on 802.11

We have 2 mANT30 with NetMetal5 connected and can only establish a connection with NV2. The link is 33km with the signal at -68 and -74. Noise floor is -104 and signal to noise is 39 but the CCQ is 2/2%. We've tried 20Mhz wide channels on N and 20,40, and 80 Mhz on AC all with the same result. I hav...
by aaronhun22
Wed Mar 19, 2014 3:57 am
Forum: Wireless Networking
Topic: Radio on but not transmitting
Replies: 11
Views: 1714

Re: Radio on but not transmitting

I upgraded to 6.10 and same problem. The voltage doesn't matter in my scenario because I'm running the radios on a PCI to mPCI card in my PC. RouterOS 6.10 x86
by aaronhun22
Tue Mar 11, 2014 9:24 pm
Forum: Wireless Networking
Topic: Radio on but not transmitting
Replies: 11
Views: 1714

Radio on but not transmitting

So I've setup a Wireless AP with a Dbii F50N-PRO and again with a Compex WLM200N5-26-ESD and after a week they stop transmitting until I reboot. I'm using RouterOS 6.5 L4 x86 with a StarTech PCI to mPCI adapter. Until I have to reboot they run great.
by aaronhun22
Fri Jan 10, 2014 10:22 pm
Forum: General
Topic: Block SIP attacks using Mikrotik Firewall
Replies: 7
Views: 10113

Re: Block SIP attacks using Mikrotik Firewall

I can't answer for your PBX but I do know that on Asterisk when a SIP extension connection is lost they don't reregister when the connection comes back online because Asterisk already knows the IP address of the incoming extension. So for your router SPI wouldn't treat these connections as new since...
by aaronhun22
Thu Jan 09, 2014 2:19 am
Forum: General
Topic: Block SIP attacks using Mikrotik Firewall
Replies: 7
Views: 10113

Re: Block SIP attacks using Mikrotik Firewall

You can change the timeout to more than 15 sec. Also if 1 IP already has a registered phone and a new one tries it will start a new 15 sec trial. Its like you said; connections are only blocked during the 15 sec trial. 15 is long since registration usually takes only 3 sec per device.
by aaronhun22
Tue Dec 24, 2013 2:50 am
Forum: General
Topic: Mikrotik 3G as Bridge to Router?
Replies: 9
Views: 2471

Re: Mikrotik 3G as Bridge to Router?

Add the 3G interface to the bridge of the RB acting as modem and make sure the network cable connected to the RB in the basement is connected to your WAN interface. If you're planning on utilizing both 3G and ADSL connections then you'll have to configure 2 WAN interfaces and mangle rules.
by aaronhun22
Tue Dec 24, 2013 2:42 am
Forum: Beginner Basics
Topic: Muti wan load balancing by gateway ip
Replies: 2
Views: 602

Re: Muti wan load balancing by gateway ip

The MT must have a connection in some form (ethernet, fiber, or wireless) to both DSL endpoints in order to connect to them.
by aaronhun22
Tue Dec 24, 2013 2:39 am
Forum: Beginner Basics
Topic: Need steps to configure RB912 UAG as AP with 3G Upstream
Replies: 2
Views: 881

Re: Need steps to configure RB912 UAG as AP with 3G Upstream

You need to NAT the PPP interface with:
ip firewall nat add chain=srcnat out-interface=ppp action=masquerade
by aaronhun22
Tue Dec 24, 2013 1:51 am
Forum: Beginner Basics
Topic: Blocking subnet from anything but internet access?
Replies: 2
Views: 1021

Re: Blocking subnet from anything but internet access?

This will drop all requests to webmin (assuming its still port 80) from 172.20.3.0/24 network.
ip firewall filter add chain=input protocol=tcp port=80 src-address-list=vipguests action=drop
by aaronhun22
Tue Dec 24, 2013 1:40 am
Forum: Beginner Basics
Topic: Wireless setting on routerOS v6.7
Replies: 3
Views: 792

Re: Wireless setting on routerOS v6.7

What hardware are you using; is this a custom build or a RB?
by aaronhun22
Tue Dec 24, 2013 1:29 am
Forum: Beginner Basics
Topic: Setting 750GL as a switch and VPN server
Replies: 1
Views: 748

Re: Setting 750GL as a switch and VPN server

This is doable but not over port 443. Depending on what VPN service you use (PPTP, L2TP, or OpenVPN) will determine the ports you'll need to forward.
by aaronhun22
Tue Dec 24, 2013 1:25 am
Forum: General
Topic: Load balancing question
Replies: 3
Views: 607

Re: Load balancing question

You can only use the Nth rule in routing when marking new connections because all packets need to have the correct source address when responding.
by aaronhun22
Tue Dec 24, 2013 12:42 am
Forum: General
Topic: Allow MAC get dhcp response
Replies: 2
Views: 698

Re: Allow MAC get dhcp response

You can use Wireless Access-Lists to lock down access by MAC.
interface wireless access-list
by aaronhun22
Tue Dec 24, 2013 12:33 am
Forum: General
Topic: Mikrotik 3G as Bridge to Router?
Replies: 9
Views: 2471

Re: Mikrotik 3G as Bridge to Router?

So are you trying to boost the 3G signal from your basement or are you putting the 3G in the attic and relaying to the basement? Any RB OS with License Level 3 and up can connect to a RB AP in station mode.
by aaronhun22
Tue Dec 24, 2013 12:29 am
Forum: Beginner Basics
Topic: RB450G - 2WAN and 3 LAN
Replies: 1
Views: 506

Re: RB450G - 2WAN and 3 LAN

What is your setup and why do you need BGP? If you're looking for a dual WAN setup do you have Public IP's? Any Dual WAN setup needs Mangle rules to direct the LAN devices on which route to take.
by aaronhun22
Mon Dec 23, 2013 10:07 pm
Forum: General
Topic: hotspot field in firewall filter rules
Replies: 1
Views: 901

Re: hotspot field in firewall filter rules

These are rules created by the hotspot module. They auto-populate when you create a new hotspot.
by aaronhun22
Mon Dec 23, 2013 10:03 pm
Forum: Beginner Basics
Topic: Whitelisting RB2011uas-2hnd-in
Replies: 1
Views: 504

Re: Whitelisting RB2011uas-2hnd-in

You would use an address group and then add it to the firewall allow list. ip firewall address-list add list="SIP Allowed" address=sip-address ip firewall filter add chain=forward src-address-list="SIP Allowed" action=accept dst-address=sip-network ip firewall filter add chain=forward dst-address=si...
by aaronhun22
Mon Dec 23, 2013 9:46 pm
Forum: General
Topic: Router Rebooting
Replies: 2
Views: 594

Re: Router Rebooting

If they don't have a license then they'll reboot. You'll have to reinstall to fix and then install your license.
by aaronhun22
Tue Dec 17, 2013 3:57 am
Forum: The Dude
Topic: broadcasting
Replies: 2
Views: 1159

Re: broadcasting

You could put them into different broadcast domains using VLANs if your switch will support it. Without a managed switch there really is no solution.
by aaronhun22
Tue Dec 17, 2013 3:36 am
Forum: General
Topic: IpSec issues
Replies: 5
Views: 864

Re: IpSec issues

You need to do an update to get those commands.
by aaronhun22
Tue Dec 17, 2013 3:16 am
Forum: General
Topic: Reset failed after following the wireless station guide.
Replies: 3
Views: 1120

Re: Reset failed after following the wireless station guide.

Winbox can connect to the router if using the MAC address under the router no matter what the IP is set to.
by aaronhun22
Tue Dec 17, 2013 3:12 am
Forum: General
Topic: Mikrotik router non-authoritative DNS server for local...
Replies: 1
Views: 1386

Re: Mikrotik router non-authoritative DNS server for local..

Reply from fe80::1845:e662:a9b7:70ac%38: time=1ms This is an IPv6 address better known as a Unicast address. In IPv4 they look like 169.254.x.x and are called local-link addresses. Its what happens when an interface doesn't receive an IP. As for the non-authoritative answer I don't believe the Rout...
by aaronhun22
Tue Dec 17, 2013 2:58 am
Forum: Wireless Networking
Topic: Samsung GS3 & 721U-2HnD
Replies: 1
Views: 646

Re: Samsung GS3 & 721U-2HnD

Try deleting the other wireless network. I've seen this before on a laptop. It wouldn't go away until I removed the other wireless network.
by aaronhun22
Tue Dec 17, 2013 2:52 am
Forum: Beginner Basics
Topic: How to connect RB750GL on my lan ?
Replies: 1
Views: 400

Re: How to connect RB750GL on my lan ?

What is your export?
by aaronhun22
Tue Dec 17, 2013 2:48 am
Forum: General
Topic: MT VPN L2TP and IPSec - cannot ping remote LAN and vice vers
Replies: 8
Views: 16282

Re: MT VPN L2TP and IPSec - cannot ping remote LAN and vice

Do you have static routes setup? Try pinging from the router to the LAN server.
by aaronhun22
Tue Dec 17, 2013 2:27 am
Forum: General
Topic: Multi-Access Point Coverage Configuration?
Replies: 1
Views: 507

Re: Multi-Access Point Coverage Configuration?

Yes, the 751 can act as an AP bridge. All you have to do is connect into any of ports 2-5, turn off dhcp, and set the SSID the same but on a different wireless channel.
by aaronhun22
Tue Dec 17, 2013 2:19 am
Forum: General
Topic: 951G-2HnD v6.7 interfaces strange problem
Replies: 7
Views: 1389

Re: 951G-2HnD v6.7 interfaces strange problem

From what I can see you have your WAN port in your Bridge which it shouldn't be. All you need is 1 masquerading rule on the WAN interface and remove it from the bridge. Then put your dhcp-client on the WAN as well.
by aaronhun22
Mon Dec 16, 2013 10:55 pm
Forum: General
Topic: MTU ADSL
Replies: 4
Views: 1114

Re: MTU ADSL

interface ethernet set interface l2mtu=
by aaronhun22
Thu Dec 12, 2013 8:48 pm
Forum: General
Topic: MTU ADSL
Replies: 4
Views: 1114

Re: MTU ADSL

You can set the MTU on the router that way you don't have to configure every device.
by aaronhun22
Thu Dec 12, 2013 8:43 pm
Forum: General
Topic: 951G-2HnD v6.7 interfaces strange problem
Replies: 7
Views: 1389

Re: 951G-2HnD v6.7 interfaces strange problem

What is your export?
by aaronhun22
Thu Dec 12, 2013 8:18 pm
Forum: General
Topic: Mikrotik vs Cisco advice
Replies: 12
Views: 33975

Re: Mikrotik vs Cisco advice

I've used Cisco for years and when we came across Mikrotik it really was a no-brainer for us. The tools available in the interface alone made it worth switching and we've found that deployments are quicker too thanks to the simplicity of the interface. Just because Cisco is a big name doesn't mean t...
by aaronhun22
Sat Dec 07, 2013 10:28 pm
Forum: General
Topic: mikrotik dns and ip problems ?
Replies: 7
Views: 1286

Re: mikrotik dns and ip problems ?

On your Mikrotik router get the export.
by aaronhun22
Fri Dec 06, 2013 11:56 pm
Forum: General
Topic: DUAL WAN load balanced problem
Replies: 3
Views: 772

Re: DUAL WAN load balanced problem

From your config it looks like this is your controlled LAN? Wouldn't it be easier to just bond the two interfaces then to use mangle rules? If you apply 802.3ad (LACP) to both sides it will make 1 solid link between the two sides as well as fail over.
by aaronhun22
Fri Dec 06, 2013 11:42 pm
Forum: General
Topic: mikrotik dns and ip problems ?
Replies: 7
Views: 1286

Re: mikrotik dns and ip problems ?

In the command prompt type:
/export compact
by aaronhun22
Fri Dec 06, 2013 10:21 pm
Forum: General
Topic: mikrotik dns and ip problems ?
Replies: 7
Views: 1286

Re: mikrotik dns and ip problems ?

What is your Mikrotik export?
by aaronhun22
Fri Dec 06, 2013 10:08 pm
Forum: General
Topic: Connect RB750G windows VPN, clients too
Replies: 3
Views: 1011

Re: Connect RB750G windows VPN, clients too

Sorry, proxy-arp has to go on an interface or a bridge. Try setting it on the bridge your connected to.
interface bridge set arp=proxy-arp
by aaronhun22
Thu Dec 05, 2013 2:56 am
Forum: General
Topic: PPTP local/remote address question
Replies: 4
Views: 1943

Re: PPTP local/remote address question

I've never used that option when setting up the PPTP service in Mikrotik but here is the page that explains the what they're for:

http://wiki.mikrotik.com/wiki/Manual:PPP_AAA

What you're looking for is under "User Database /ppp secret".
by aaronhun22
Thu Dec 05, 2013 2:39 am
Forum: General
Topic: Simple static routing & Hotspot
Replies: 1
Views: 540

Re: Simple static routing & Hotspot

No, they're in a different broadcast domain and MAC addresses will not flow from domain 10.0.10.0 to 10.0.0.0. You need to create 2 hotspots or bridge the 2 networks.
by aaronhun22
Thu Dec 05, 2013 2:32 am
Forum: General
Topic: mikrotik dns and ip problems ?
Replies: 7
Views: 1286

Re: mikrotik dns and ip problems ?

It sounds like you're behind a NATed connection that's running more than 1 internet connection. What is the WAN IP that your router was given?
by aaronhun22
Thu Dec 05, 2013 2:27 am
Forum: General
Topic: Connect RB750G windows VPN, clients too
Replies: 3
Views: 1011

Re: Connect RB750G windows VPN, clients too

Try setting proxy-arp on your pptp-client interface. When I setup PPTP servers on Mikrotik I have to enable the proxy-arp on the routers bridge so that clients can reach devices other than the router.
by aaronhun22
Thu Dec 05, 2013 2:11 am
Forum: General
Topic: Block SIP attacks using Mikrotik Firewall
Replies: 7
Views: 10113

Re: Block SIP attacks using Mikrotik Firewall

You can use SPI on new connections with: /ip firewall filter add chain=forward in-interface=ether1-gateway src-address-list="SIP Hacker" action=drop /ip firewall filter add chain=forward protocol=udp dst-port=5060 connection-state=new src-address-list="SIP Trial" in-interface=ether1-gateway action=a...
by aaronhun22
Thu Dec 05, 2013 1:42 am
Forum: General
Topic: Using RB750G to count traffic
Replies: 2
Views: 691

Re: Using RB750G to count traffic

What you've proposed will work; you just need to create a second bridge for your internal network. What is the current export for your switch?
by aaronhun22
Thu Dec 05, 2013 1:22 am
Forum: Beginner Basics
Topic: Basic VPN setup: server on static IP, client on Dynamic IP
Replies: 1
Views: 3370

Re: Basic VPN setup: server on static IP, client on Dynamic

You could do an IP tunnel over IPSec between site A and B and then setup pptp on either site A or B for the road warrior. Even Dynamic Public IP's won't change often and when they do you just put in the new address and everything reconnects. With PPTP guide: http://wiki.mikrotik.com/wiki/PPTPServer ...
by aaronhun22
Tue Dec 03, 2013 2:42 am
Forum: General
Topic: Cannot reach web server: I get mikrotik login unstead
Replies: 1
Views: 406

Re: Cannot reach web server: I get mikrotik login unstead

What is the webmin port set to; if its port 80 then that's your problem?
ip service print
by aaronhun22
Tue Dec 03, 2013 2:37 am
Forum: Beginner Basics
Topic: Internet not working
Replies: 3
Views: 724

Re: Internet not working

Did you set the gateway address for 0.0.0.0/0 network? If so what is your printout?
by aaronhun22
Tue Dec 03, 2013 2:35 am
Forum: Beginner Basics
Topic: Noob question about port switching
Replies: 4
Views: 710

Re: Noob question about port switching

The 951G-2HnD has a built in switch with ports 2-5 already bridged as the default.
by aaronhun22
Tue Dec 03, 2013 2:19 am
Forum: General
Topic: Help configuring interfaces WAN
Replies: 3
Views: 640

Re: Help configuring interfaces WAN

When playing with the interfaces use winbox and connect using the MAC address or leave your WAN2 interface disabled until you're done making changes to the mangle rules.
by aaronhun22
Tue Dec 03, 2013 2:10 am
Forum: General
Topic: Block all mac address except those allowed on a bridge
Replies: 3
Views: 1823

Re: Block all mac address except those allowed on a bridge

You can assign IP Addresses based on MAC with DHCP.
by aaronhun22
Tue Dec 03, 2013 1:36 am
Forum: General
Topic: how to splite download traffic from other traffics
Replies: 1
Views: 376

Re: how to splite download traffic from other traffics

If you're talking about splitting your tx/rx so that all tx are on one connection and rx on another this can't be done with two different internet connections because all packets returning to the internet must be marked with the same source address as the destination address they came in on. You can...
by aaronhun22
Tue Dec 03, 2013 1:17 am
Forum: General
Topic: Cannot Connect to hosted VoIP Server
Replies: 1
Views: 493

Re: Cannot Connect to hosted VoIP Server

What is your firewall printout?
by aaronhun22
Thu Nov 28, 2013 4:15 am
Forum: General
Topic: abnormal routing
Replies: 3
Views: 687

Re: abnormal routing

First you need to remove the routes you have and add this: ip route add dst-address=0.0.0.0/0 gateway=12.32.121.161 distance=1 Then remove your masquerade rules and the source nat rule for 12.32.121.170 and add: add action=masquerade chain=srcnat out-interface=ether1 And remove address 12.32.121.165...
by aaronhun22
Thu Nov 28, 2013 3:02 am
Forum: Beginner Basics
Topic: Please Help Beginner With Mikrotik Config
Replies: 4
Views: 1103

Re: Please Help Beginner With Mikrotik Config

Yes, plug the unmanaged switch and managed switches into ports 2 and 3. The example you've given is the same but the unifis are on bridged connections which is fine for them to reach your controller on vlan1. But vlan20 shouldn't be on a bridged connection so that you can filter traffic from reachin...
by aaronhun22
Wed Nov 27, 2013 4:13 am
Forum: Beginner Basics
Topic: Please Help Beginner With Mikrotik Config
Replies: 4
Views: 1103

Re: Please Help Beginner With Mikrotik Config

Yes, set trunking on the APs and MT. Make sure to remove nat from ip firewall nat or don't plug the switches into ether1. interface vlan add vlan-id=20 name=vlan20 interface=ether2-master-local ip address add address=192.168.20.1/24 interface=vlan20 ip pool add name=vlan20 ranges=192.168.20.100-192....
by aaronhun22
Wed Nov 27, 2013 3:29 am
Forum: General
Topic: Slow internet connection after setup an IPsec tunnel
Replies: 6
Views: 1149

Re: Slow internet connection after setup an IPsec tunnel

ip route set numbers='rule number' distance='set high for slow (ie 1 for 10mb and 10 for 2mb)' For torch if you use webmin or winbox under tools you'll find torch and from there select one of the WAN interfaces and click start and you'll see traffic. Also under the interfaces option in webmin or win...
by aaronhun22
Wed Nov 27, 2013 3:19 am
Forum: General
Topic: CRS VLAN Challenge
Replies: 1
Views: 366

Re: CRS VLAN Challenge

Create a new master port for port 7 and assign ports 8-24 to it and then masquerade them for NAT based on the LAN and ether1 address. Then if you have a routable subnet from your provider it will route to ports 2-6; otherwise if the address from ether1 is in the same subnet as ports 2-6 then you'll ...
by aaronhun22
Wed Nov 27, 2013 2:59 am
Forum: General
Topic: abnormal routing
Replies: 3
Views: 687

Re: abnormal routing

What is the print-out of your config and the gateway and public IP assigned by your ISP?
by aaronhun22
Wed Nov 27, 2013 2:54 am
Forum: General
Topic: plz
Replies: 1
Views: 289

Re: plz

Ha! LOL! I'll bite. What's wrong?
by aaronhun22
Wed Nov 27, 2013 2:50 am
Forum: RouterBOARD hardware
Topic: RB2011 does not support ethernet auto-negotiation?
Replies: 2
Views: 934

Re: RB2011 does not support ethernet auto-negotiation?

Which ports are you using because only ports 1-5 are Gb.
by aaronhun22
Wed Nov 27, 2013 2:41 am
Forum: Beginner Basics
Topic: RB751u-2HnD with usb wifi client on USB1
Replies: 5
Views: 1858

Re: RB751u-2HnD with usb wifi client on USB1

Report back if you're getting an second Wifi adapter in the interface list because I'd like to do what you're doing also.
by aaronhun22
Wed Nov 27, 2013 2:33 am
Forum: Wireless Networking
Topic: allow one MAC address to access Mikrotik router(AP) RB751
Replies: 4
Views: 3520

Re: allow one MAC address to access Mikrotik router(AP) RB75

You can assign IP addresses based on MAC in your DHCP server and assign that server to the AP only by un-bridging it.
by aaronhun22
Wed Nov 27, 2013 2:27 am
Forum: General
Topic: NAT only one port
Replies: 4
Views: 885

Re: NAT only one port

You can NAT the public IP's to your customers using the answer from this post:

http://forum.mikrotik.com/viewtopic.php?f=2&t=79253

Or you can route the public IP's by sub-netting them on a /30 network.
by aaronhun22
Wed Nov 27, 2013 2:08 am
Forum: Beginner Basics
Topic: 2 Networks on 1 Interface
Replies: 1
Views: 514

Re: 2 Networks on 1 Interface

As long as both networks route to the same provider you can assign your LAN gateway address with both IP's on eth2. I don't know if having 2,000 IP's in the same broadcast domain will be a problem but what you're proposing will work.
by aaronhun22
Wed Nov 27, 2013 1:03 am
Forum: Beginner Basics
Topic: Throughput of Mikrotik
Replies: 1
Views: 448

Re: Throughput of Mikrotik

http://routerboard.com/RB1100AHx2

It's in a table at the bottom of the page.
by aaronhun22
Wed Nov 27, 2013 12:39 am
Forum: General
Topic: Netflix and NAT
Replies: 1
Views: 798

Re: Netflix and NAT

Netflix monitors streams based on accounts. I know this because I've watched at my office while 2 tried to watch at my house and my account only supports 2 so the third was given a limit message. I know many WISPs NAT their non-business customers behind 1 public IP so I'm sure Netflix and others are...
by aaronhun22
Wed Nov 27, 2013 12:33 am
Forum: General
Topic: Slow internet connection after setup an IPsec tunnel
Replies: 6
Views: 1149

Re: Slow internet connection after setup an IPsec tunnel

When you have more than 1 default route to the internet or a network you set route costs so that connections with 10mb get used over connections with 2mb. You can do this by setting the Distance in your routes. Also I'm assuming you're load balancing the 3 connections so you could use an nth rule in...
by aaronhun22
Tue Nov 26, 2013 2:25 am
Forum: Wireless Networking
Topic: Need help making a wireless data bridge
Replies: 1
Views: 530

Re: Need help making a wireless data bridge

Set one routerboard wireless as AP Bridge or Station and configure the channel and security profile. Then set the other routerboard as station bridge with the same channel and security profile.
by aaronhun22
Tue Nov 26, 2013 2:12 am
Forum: Beginner Basics
Topic: RB 493AH vlans and dhcp Router Routerboard 6.6
Replies: 2
Views: 1138

Re: RB 493AH vlans and dhcp Router Routerboard 6.6

There is a vlan bug in version 6.6. Revert to 6.5 until they release 6.7 as stated by MT support in post:

http://forum.mikrotik.com/viewtopic.php ... 4&start=58
by aaronhun22
Tue Nov 26, 2013 1:46 am
Forum: Beginner Basics
Topic: RB751u-2HnD with usb wifi client on USB1
Replies: 5
Views: 1858

Re: RB751u-2HnD with usb wifi client on USB1

No I mean "interface print" should show a second wlan adapter: 0 ether1-gateway ether 1500 1600 4076 1 R ether2-master-local ether 1500 1598 2028 2 R ether3-slave-local ether 1500 1598 2028 3 R ether4-slave-local ether 1500 1598 2028 4 R ether5-slave-local ether 1500 1598 2028 5 R wlan1 wlan 1500 22...
by aaronhun22
Tue Nov 26, 2013 1:31 am
Forum: Beginner Basics
Topic: Firewall rule to block all connection except to VPN server
Replies: 1
Views: 3125

Re: Firewall rule to block all connection except to VPN serv

For L2TP UDP ports 500 and 4500 and protocol ipsec-esp For PPTP TCP port 1723 and protocol gre http://blogs.technet.com/b/rrasblog/archive/2006/06/14/which-ports-to-unblock-for-vpn-traffic-to-pass-through.aspx Once VPN tunnels are established clients will have access to RDP. Now if you want to filte...
by aaronhun22
Tue Nov 26, 2013 12:57 am
Forum: General
Topic: Bug report - Webfig shows 2 rules under the same number
Replies: 1
Views: 263

Re: Bug report - Webfig shows 2 rules under the same number

Its a bug in the browser. I've seen it in IE 8.
by aaronhun22
Tue Nov 26, 2013 12:46 am
Forum: Beginner Basics
Topic: RB751u-2HnD with usb wifi client on USB1
Replies: 5
Views: 1858

Re: RB751u-2HnD with usb wifi client on USB1

As far as I know the USB is for USB HD's to create an SMB or file server. Do you have more than 1 Wifi adapter listed?
by aaronhun22
Tue Nov 26, 2013 12:41 am
Forum: Beginner Basics
Topic: Chain input vs chain prerouting for Mangle
Replies: 1
Views: 5946

Re: Chain input vs chain prerouting for Mangle

Input and Output are for connections to the router (ie webfig and winbox). Prerouting, Postrouting, and Forward are for connections to the WAN or LAN. You can only load balance connections from the LAN to WAN. Going from WAN to LAN packets must be received and sent from the connection it came on bec...
by aaronhun22
Tue Nov 26, 2013 12:24 am
Forum: Wireless Networking
Topic: Mikrotik Wireless Controller
Replies: 54
Views: 17182

Re: Mikrotik Wireless Controller

Proberbly reffering to this "CONTROLLER (Level 6) $250.00"...
Yeah, that's the one.
by aaronhun22
Mon Nov 25, 2013 10:33 pm
Forum: General
Topic: Slow internet connection after setup an IPsec tunnel
Replies: 6
Views: 1149

Re: Slow internet connection after setup an IPsec tunnel

What is your CPU load? Also are you using route costs so that you're surfing out the correct connection?
by aaronhun22
Mon Nov 25, 2013 10:08 pm
Forum: RouterBOARD hardware
Topic: Internet stops working on certain IP addresses
Replies: 2
Views: 729

Re: Internet stops working on certain IP addresses

It sounds like there isn't anything wrong with the RB1100 and that its dropping packets on purpose for those IP's. Are there any firewall rules in place that are associated with those IP's?
by aaronhun22
Mon Nov 25, 2013 9:57 pm
Forum: General
Topic: Block RDP connections except over VPN
Replies: 1
Views: 3167

Re: Block RDP connections except over VPN

NAT supersedes Firewall so you need to stop NATing 3389.
by aaronhun22
Mon Nov 25, 2013 9:44 pm
Forum: General
Topic: How do I setup router for public/29 address space
Replies: 8
Views: 4149

Re: How do I setup router for public/29 address space

What a wonderful cheat! I never thought of NAT'ing the Public IP.
by aaronhun22
Mon Nov 25, 2013 9:20 pm
Forum: Wireless Networking
Topic: Mikrotik Wireless Controller
Replies: 54
Views: 17182

Re: Mikrotik Wireless Controller

I see this available for purchase as a license but does anyone know if its been released?
by aaronhun22
Thu Nov 21, 2013 3:17 am
Forum: Beginner Basics
Topic: PPTP client connected but cannot access any devices
Replies: 4
Views: 1050

Re: PPTP client connected but cannot access any devices

This is such a useful post that isn't in the wiki or any tutorial.
by aaronhun22
Sat Nov 16, 2013 9:40 pm
Forum: General
Topic: Static ip route scenario
Replies: 1
Views: 474

Re: Static ip route scenario

Can you post your configuration for router c?
by aaronhun22
Sat Nov 16, 2013 2:57 am
Forum: General
Topic: No external access to router after load balancing
Replies: 2
Views: 750

Re: No external access to router after load balancing

Thank you for your reply; it got me to think outside of the box. I found the problem was that the 0.0.0.0/0 was set to only marked routes WAN1 and WAN2 and none for the default main. All started working when I added 2 more 0.0.0.0/0 routes with the default settings.
by aaronhun22
Fri Nov 15, 2013 4:05 am
Forum: Beginner Basics
Topic: Ceiling mount
Replies: 1
Views: 628

Re: Ceiling mount

The RB951-2n and RB751U-2HnD would work. Or if you want Gigabit RB751G-2HnD (if you can find it) and RB951G-2HnD. One thing to know is Routerboard doesn't use 802.3af for PoE; it uses passive PoE.
by aaronhun22
Fri Nov 15, 2013 3:44 am
Forum: Beginner Basics
Topic: Set a Bandwidth Mikrotik Metal 2sphn
Replies: 2
Views: 1425

Re: Set a Bandwidth Mikrotik Metal 2sphn

I tried this as well with the same result. I was only able to get it to work over non-bridged connections.
by aaronhun22
Fri Nov 15, 2013 3:27 am
Forum: Beginner Basics
Topic: CRS125-24G-1S-2HnD VPN Problems
Replies: 2
Views: 1488

Re: CRS125-24G-1S-2HnD VPN Problems

UDP ports 500 and 4500 and protocol ipsec-esp
by aaronhun22
Fri Nov 15, 2013 2:56 am
Forum: Beginner Basics
Topic: NAT Problems: Port Forwarding/Hairpin - Port 80 redirected
Replies: 6
Views: 7640

Re: NAT Problems: Port Forwarding/Hairpin - Port 80 redirect

http://wiki.mikrotik.com/wiki/Hairpin_NAT has an example you could use. Instead of using dst-address use in-interface like Rudios suggested. Also you could use DNS entries on your router to resolve to the internal address of your servers instead of the Hairpin NAT.
by aaronhun22
Fri Nov 15, 2013 2:34 am
Forum: General
Topic: No external access to router after load balancing
Replies: 2
Views: 750

No external access to router after load balancing

So I setup load balancing on my RB751U-2HnD and it works great but I can't get external access to the router to work. I'm sure its replying to request from the wrong interface but I can't see why. From the router itself I can ping out successfully but pinging to the router externally or ssh, winbox,...