Community discussions

Search found 28 matches

by essele
Wed Mar 22, 2017 11:45 pm
Forum: Scripting
Topic: snmp-get in script
Replies: 0
Views: 393

snmp-get in script

Hi, Is there any way of using snmp-get in a script and getting the result in a variable? The command seems to only output results and there appears to be no easy way of capturing them, which seems to be a bit of a limitation. At the moment I've solved the problem by using :execute with file output a...
by essele
Sun Dec 20, 2015 10:29 am
Forum: RouterBOARD hardware
Topic: SXT LTE ipsec performance
Replies: 1
Views: 787

SXT LTE ipsec performance

Hi, I'm really liking the look of the SXT LTE, it may be the answer to a number of problems I have. Can anyone hazard a guess that the potential throughput capability of the device if I'm running an IPsec tunnel that terminates on the device? I'm in control of both ends so can choose encryption and ...
by essele
Mon Sep 14, 2015 8:02 am
Forum: General
Topic: 2 BUGS with GRE keepalives
Replies: 0
Views: 675

2 BUGS with GRE keepalives

Hi, I've been looking at how the GRE keepalives work and I believe I've discovered two bugs. Actually one bug and one design problem. 1. The design problem -- as far as I can tell from the Cisco documentation, the keepalive process is designed to be self-supporting, even on systems that don't unders...
by essele
Mon Aug 31, 2015 8:50 pm
Forum: General
Topic: /interface ethernet speed = 100Mbps???
Replies: 7
Views: 3540

/interface ethernet speed = 100Mbps???

Hi, I was just looking around my config on an RB1100AHx2, which has seemed to be working fine for a while and I noticed that all of the ethernet interfaces had "speed=100Mbps" (/interface ethernet print detail) This wasn't a config that I set ... and an "export" didn't show the setting, which leads ...
by essele
Thu Aug 27, 2015 7:56 am
Forum: RouterBOARD hardware
Topic: NetMetal 5 as AP ... which antennas are ok/leaky feeder?
Replies: 0
Views: 462

NetMetal 5 as AP ... which antennas are ok/leaky feeder?

Hi, I'm really keen on using some of the NetMetal 5's as access points. Am I ok just directly attaching a set of omni antenna's (i.e. the normal home router style ones) or is that going to be a problem from a power/proximity perspective? Second question ... I'm also looking at the potential of using...
by essele
Sun Aug 16, 2015 9:36 pm
Forum: General
Topic: Is there a bug with IPsec transport mode?
Replies: 1
Views: 562

Re: Is there a bug with IPsec transport mode?

Further digging shows that the policies on linux are installed with the port 500 bit... src <mikrotik>/32 dst <linux>/32 proto gre sport 500 dport 500 dir in priority 2816 ptype main tmpl src 0.0.0.0 dst 0.0.0.0 proto esp reqid 1 mode transport src <linux>/32 dst <mikrotik>/32 proto gre sport 500 dp...
by essele
Sun Aug 16, 2015 9:03 pm
Forum: General
Topic: Is there a bug with IPsec transport mode?
Replies: 1
Views: 562

Is there a bug with IPsec transport mode?

Hi, I'm trying to setup a transport mode IPsec encrypted GRE tunnel, from one Mikrotik device to a Linux box running strongswan. If I use tunnel mode (all other configs the same) then it's fine, but transport mode has a strange behaviour that causes the linux->mikrotik GRE packets to leave without b...
by essele
Mon Feb 23, 2015 5:26 pm
Forum: Beginner Basics
Topic: Step Up from the RB2011....?
Replies: 22
Views: 4678

Re: Step Up from the RB2011....?

RB850Gx2 was originally advertised to contain an SoC part that implemented hardware-accelerated IPsec, but this SoC was swapped out at the last minute with a different Freescale SKU that does not contain the hardware encryption engine, and any references to it in the promotional and advertising mat...
by essele
Sun Jan 26, 2014 5:11 pm
Forum: General
Topic: IPsec with no encryption ... why is the firewall involved?
Replies: 2
Views: 710

Re: IPsec with no encryption ... why is the firewall involve

Hi dasiu, I've been messing around with a different device and don't have the original one online to confirm everything you have suggested, I'll revalidate in the next day or so. But to answer some of your questions... 1. /ip firewall nat -- had some disabled entries, but nothing enabled. I'm assumi...
by essele
Sat Jan 25, 2014 11:16 am
Forum: Virtualization
Topic: Awful throughput when metarouter running
Replies: 0
Views: 1793

Awful throughput when metarouter running

Hi, I think there is something wrong with the Metarouter implementation. I've got a non-encrypting IPsec setup that manages about 80-90Mbps. However once I enable an OpenWRT metarouter the throughput drops to 40Mbps. The metarouter isn't doing anything and has an unbridged network interface so shoul...
by essele
Sat Jan 25, 2014 9:20 am
Forum: General
Topic: IPsec with no encryption ... why is the firewall involved?
Replies: 2
Views: 710

IPsec with no encryption ... why is the firewall involved?

Hi, I've been experimenting with various IPsec options with a RB951G, using v6.7. For most of my traffic I really just need a kind of proxy, but I'm dealing with a nasty ISP that shapes all sorts of stuff, so I've finally settled on an unencrypted IPsec tunnel. I can get pretty good performance, clo...
by essele
Fri Jan 24, 2014 3:00 pm
Forum: Scripting
Topic: Event driven scripting?
Replies: 3
Views: 963

Re: Event driven scripting?

Thanks for the response, but you've nicely indicated my point. This checks every five minutes, which has two problems... 1. There could be a 5 min (I know it could be one min) delay. 2. We're polling! The router knows exactly when the link has come up ... why not have an option to run a script at th...
by essele
Tue Jan 21, 2014 2:19 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

I try to work with the patch for 1209 instead of the official metarouter-1.2 but when I run make menuconfig I cant find Mikrotik MetaROUTER MIPS at Target System. Do i make something wrong? Hi, You need to download the 12.09 release from OpenWRT using either git or svn... git clone git://git.openwr...
by essele
Tue Jan 21, 2014 6:03 am
Forum: Virtualization
Topic: Metarouter filesystem permissions problem
Replies: 1
Views: 2404

Metarouter filesystem permissions problem

Hi, It seems that there is a permission issue with the way the filesystem works on metarouter ... dnsmasq switches to the 'nobody' user once it gets going, and after that it doesn't seem to be able to access anything on the filesystem. Jan 1 00:01:03 dnsmasq[1480]: failed to access /tmp/resolv.conf....
by essele
Mon Jan 20, 2014 6:24 am
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

There are still problems with this ... at least on trunk... [EDIT] This does appear to be only a problem on trunk, it seems ok on 12.09. root@OpenWrt:/# [ 0.000000] skbuff: skb_over_panic: text:c0256bc4 len:518080 put:518080 head:c0958e80 data:c0958ec0 tail:0xc09d7680 end:0xc0959500 dev:<NULL> [ 0.0...
by essele
Mon Jan 13, 2014 8:14 am
Forum: Scripting
Topic: Event driven scripting?
Replies: 3
Views: 963

Event driven scripting?

Hi, I can't seem to find any mechanism for automatically calling a script as a result of certain events? (Other than traffic monitor and netwatch) I would like to run a script when a pppoe link comes up, I know I can achieve the same result using netwatch or a regularly scheduled script, but I thoug...
by essele
Sat Jan 11, 2014 3:12 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

OK, final post for a while (hopefully) ... I effectively started again only putting in the 3_3_5 patch stuff that I though was necessary, so all of the extra stuff is now removed, this is a much simpler patch, and much closer in spirit to the original 1.2 patch from Mikrotik. I have produced two pat...
by essele
Sat Jan 11, 2014 8:39 am
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

Here is an initial patch ... a few comments: 1. This is against Attitude Adjustment (12.09) r39154. 2. I have only looked at mips, the ppc code is in there but I haven't tested a build or created the target stuff for it (I don't have a ppc system, so can't test this anyway) 3. This is based on the M...
by essele
Fri Jan 10, 2014 9:57 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

OK ... now it seems to be working ... I've deleted lots of the MikroTik patch, which is a bit of a shame, but now I have a fully functional (at least as far as I have tested) mips Attitude Adjutment build.

I'll try to get back to a controlled state and then post a patch tomorrow.

Regards,

Lee.
by essele
Fri Jan 10, 2014 5:14 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

I've cut a load of stuff out of the patch to try to get back to basics, but I'm still struggling with a bridge related problem: _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D ...
by essele
Fri Jan 10, 2014 10:38 am
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

Ok ... not sure what was happening with the console, it's behaving as expected now. I have a build of OpenWRT now working with the 3.3.8 kernel, unfortunately there are still issues to be resolved. The failsafe mode works ok, but once it starts trying to load modules you get this: [ 0.000000] ------...
by essele
Fri Jan 10, 2014 8:00 am
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

MikroTik's own kernels have always been configured/patched to not print out boot messages. They do this by redefining the DEFAULT_CONSOLE_LOGLEVEL preprocessor constant in printk.c from 7 to 1. This is really interesting because I left this patch in yet I seem to be having full messages on the cons...
by essele
Thu Jan 09, 2014 2:13 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

Update: I've fixed the console by doing a clean build, so it was a problem caused by adding .config items as I was testing. For reference: [ 0.000000] Linux version 3.3.5 (essele@XXXXXXXXX) (gcc version 4.6.4 (OpenWrt/Linaro GCC 4.6-2013.05 r39203) ) #13 Thu Jan 9 12:04:48 GMT 2014 [ 0.000000] CPU r...
by essele
Thu Jan 09, 2014 2:04 pm
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

Ok, I've made some progress ... I now have a 3.3.5 kernel which appears to boot. The console isn't working properly, so I don't get any of the boot messages, however I do get the following: [Ctrl-A is the prefix key] init started: BusyBox v1.16.1 (2010-04-13 10:25:42 EEST) /etc/init.d/rcS: line 17: ...
by essele
Thu Jan 09, 2014 6:13 am
Forum: Virtualization
Topic: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and tgz]
Replies: 25
Views: 14108

Re: OpenWRT MetaROUTER with 12.09 and Linux 3.3 [PATCH and t

I've just recreated this exact issue, tested a RB951G originally on 5.25 and now on 6.7. The MikroTik provided image works fine, a manually built image from OpenWRT svn (as per MikroTik) and patch 1.2 also works fine, but attitude adjustment with the 1.3 patch has absolutely no output at all. I've b...
by essele
Wed Jan 08, 2014 12:21 pm
Forum: Beginner Basics
Topic: Do I really have to lose a port?
Replies: 9
Views: 2891

Re: Do I really have to lose a port?

Hi, Ok to take a really simple example ... I have a 5-port device, if I want it to act as a 5-port switch with wire-speed switching, then I can set ether1 as a master with ether2-5 as slaves. According to that documentation I won't be able to use ether1 now as it's designated as a master, i.e. I won...
by essele
Wed Jan 08, 2014 8:50 am
Forum: Beginner Basics
Topic: Do I really have to lose a port?
Replies: 9
Views: 2891

Do I really have to lose a port?

Hi, I'm looking at the documentation around switch features, and the following text is there: Switching feature allows wire speed traffic passing among a group of ports, like the ports were a regular ethernet switch. You configure this feature by setting a "master-port" property to one ore more port...
by essele
Tue Jan 07, 2014 6:31 am
Forum: Virtualization
Topic: OpenWRT metarouter patch v1.2
Replies: 40
Views: 29786

Linux Kernel questions for MikroTik

Hi, I'm relatively new to Routerboards, but a long time user of OpenWRT trunk builds on a variety of different hardware. I'm really interested in the metarouter concept to run OpenWRT as a VM, but I like using trunk and certainly don't want to be way out of date. I see there is a patch (v1.2) discus...