Community discussions

MikroTik App

Search found 37 matches

by bommi
Thu Dec 21, 2023 3:07 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 147883

Re: v7.14beta [testing] is released!

Since RouterOS 7.7 we can use diffie-hellmann group 31: *) ike2 - added support for DH Group 31 (EC25519) (CLI only); The support is limited to ike2 / phase-1, could you please also bring this to ipsec / phase-2? Is your crypto stack already able to support DH-32 (Curve448)? This would also be a gre...
by bommi
Sun Dec 03, 2023 10:08 pm
Forum: Announcements
Topic: v7.13rc [testing] is released!
Replies: 178
Views: 49130

Re: v7.13rc [testing] is released!

I have one issue with my cap ax wifi which is controlled by my capsman controller on my hex s. Some devices aren't placed in the correct vlan. In this screenshot you can see two devices which are connected to the same interface / ssid: Screenshot_20231203_190437.png One device got placed into the c...
by bommi
Sun Dec 03, 2023 8:09 pm
Forum: Announcements
Topic: v7.13rc [testing] is released!
Replies: 178
Views: 49130

Re: v7.13rc [testing] is released!

I have one issue with my cap ax wifi which is controlled by my capsman controller on my hex s. Some devices aren't placed in the correct vlan. In this screenshot you can see two devices which are connected to the same interface / ssid: Screenshot_20231203_190437.png One device got placed into the co...
by bommi
Mon Nov 13, 2023 10:18 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 86980

Re: v7.13beta [testing] is released!

Do devices running the new wifi-qcom-ac package still have the old wifiwave2 limitation where VLANs couldn't be configured? Found it in the wiki: 802.11ac chipsets do not support this type of VLAN tagging (vlan-id), but they can be configured as VLAN access ports in bridge settings. I just did the ...
by bommi
Mon Nov 13, 2023 7:27 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 86980

Re: v7.13beta [testing] is released!

still no ed25519 private key for ssh?
Already included in 7.12.
by bommi
Fri Aug 18, 2023 5:14 pm
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 160608

Re: v7.11 [stable] is released!

Can we get a “update” to go back to 7.10.2? As downgrade seems to be broken as well. Really need my network back!
For me the downgrade worked. Uploaded the old version and hit the "Downgrade" Button in the Package Update menu.
by bommi
Thu Aug 17, 2023 4:07 pm
Forum: Announcements
Topic: v7.12beta [testing] is released!
Replies: 263
Views: 122453

Re: v7.12beta [testing] is released!

I have some more feature requests regarding encryption topics :-) Since RouterOS 7.7 we can use diffie-hellmann group 31: *) ike2 - added support for DH Group 31 (EC25519) (CLI only); But the support is just implemented in ike2 / phase-1, could you please also bring this to ipsec / phase-2? Is your ...
by bommi
Thu Aug 17, 2023 3:45 pm
Forum: Announcements
Topic: v7.12beta [testing] is released!
Replies: 263
Views: 122453

Re: v7.12beta [testing] is released!

*) ssh - added support for user ed25519 public keys;

Great to see this one!
I use my openpgp key based on ed25519 on my Yubikey for SSH logins.
by bommi
Thu Aug 17, 2023 7:54 am
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 160608

Re: v7.11 [stable] is released!

What is Wifi Wave 2 for?
You can find all information about wifiwave2 here:
https://help.mikrotik.com/docs/display/ROS/WifiWave2
by bommi
Wed Aug 16, 2023 9:40 pm
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 160608

Re: v7.11 [stable] is released!

Running Torch or Sniffer solves it because it disables bridge FastPath, the same as using: /interface bridge settings set allow-fast-path=no I thought I had the same problem on my hEX S, but disabling the fast-path didn't help. The device does not respond on all vlans interfaces on the bridge after...
by bommi
Thu Aug 10, 2023 6:33 pm
Forum: General
Topic: Year 2038 problem (32 bits)
Replies: 21
Views: 2703

Re: Year 2038 problem (32 bits)

Well, dates aren't heavily used in RouterOS.
What about certificates? ;-)
by bommi
Tue Jul 25, 2023 8:52 pm
Forum: Announcements
Topic: v7.11beta [testing] is released!
Replies: 373
Views: 104407

Re: v7.11beta [testing] is released!

The possibility to use SSH Keys based on ed25519 would be a nice Feature addition ;-)
by bommi
Fri Jul 21, 2023 10:10 am
Forum: RouterOS beta
Topic: latest firmware problem with Rb760iGs
Replies: 5
Views: 2149

Re: latest firmware problem with Rb760iGs

Do you see autosupout.rif files in the filesystem of your Routerboard?
If you find those files, just check the creation time if this is related to your outage and create a case with mikrotik.

I am also using a Rb760iGs with 7.10.2 and dont see any issues here.
by bommi
Fri Mar 15, 2019 2:41 pm
Forum: Announcements
Topic: v6.45beta [testing] is released!
Replies: 304
Views: 156647

Re: v6.45beta [testing] is released!

IKE2 rfc states the use of RSA.
What would be the client devices that support EC? Why exactly you need this?
EC key exchanges are much faster than RSA, because the keysize is much smaller.
My usecase are mobile devices on bad mobile connections.
by bommi
Tue Jun 12, 2018 10:07 pm
Forum: General
Topic: New IP cloud is coming.
Replies: 84
Views: 46567

Re: New IP cloud is coming.

Will we get IPv6 Support?
by bommi
Fri Aug 18, 2017 5:44 pm
Forum: Announcements
Topic: v6.41rc [release candidate] is released! New bridge implementation!
Replies: 561
Views: 206643

Re: v6.41rc [release candidate] is released! New bridge implementation!

*) ipsec - added DH groups 19, 20 and 21 support for phase1 and phase2 (CLI only);
Is there a chance to get support for brainpool ec curves like DH group 28, 29 and 30?
by bommi
Mon Jun 06, 2016 11:08 pm
Forum: General
Topic: IPsec Peer properties screen height too big
Replies: 1
Views: 1184

Re: IPsec Peer properties screen height too big

Hi,

cli over ssh works even at 640x480 :lol:
by bommi
Fri Feb 26, 2016 2:22 pm
Forum: Forwarding Protocols
Topic: Client unable to access ONE website since switching to MikroTik Router
Replies: 12
Views: 3211

Re: Client unable to access ONE website since switching to MikroTik Router

Hi,


could you show us the output of:

/ip firewall filter export

and

/ip firewall nat export


Regards
bommi
by bommi
Fri Jan 29, 2016 5:57 pm
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 536
Views: 177084

Re: v6.35rc is released, new wireless package!

Will this wireless-rep package also provide CAPsMAN support?
by bommi
Fri Jan 29, 2016 5:47 pm
Forum: General
Topic: wireless-rep
Replies: 1
Views: 9208

Re: wireless-rep

In changlelog I saw this: *) wireless - added new package "wireless-rep"; Where can I find more information about this package? "New version RouterOS will support single radio AP/Client for repeater support!" As noted here: http://forum.mikrotik.com/viewtopic.php?f=21&t=1042...
by bommi
Tue Jan 26, 2016 10:27 pm
Forum: Wireless Networking
Topic: Managed CAPs don't broadcast SSID if CAPsMAN is offline.
Replies: 9
Views: 4148

Re: Managed CAPs don't broadcast SSID if CAPsMAN is offline.

Any update on this?
Is this the same behavior for CAPsMAN v2?
by bommi
Tue Jan 26, 2016 12:29 pm
Forum: General
Topic: 6.34 release candidate version topic!
Replies: 200
Views: 66706

Re: 6.34 release candidate version topic!

*) sstp - allow ECDHE when pfs enabled;
Does this mean you switched to a newer openssl library in this version?
When will it be possible to connect to the webinterface using pfs with dhe or ecdhe?
by bommi
Wed Aug 05, 2015 10:56 pm
Forum: Announcements
Topic: 6.31 RC testing
Replies: 41
Views: 22025

Re: 6.31 RC testing

Could you please disable RC4 in your ssl stack? Or just give us an option to do it by ourself.
Also enabling perfect forward secrecy for www-ssl and api-ssl would be really nice.
by bommi
Wed Aug 05, 2015 10:41 am
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 579
Views: 273609

Re: Cloud Hosted Router

6.31rc13 changelog says:

*) chr - added support for virtio disks
*) chr - added support for HyperV fast ethernet

But where can we find the new images for download?
by bommi
Tue Jul 28, 2015 4:34 pm
Forum: Beginner Basics
Topic: Problem to do a VPN Ipsec between Watchguard XTM330 and Mikrotik RB2011
Replies: 8
Views: 16657

Re: Problem to do a VPN Ipsec between Watchguard XTM330 and Mikrotik RB2011

Can you provide an configuration example or config screenshots of your watchguard?
by bommi
Tue Jul 28, 2015 4:33 pm
Forum: Forwarding Protocols
Topic: IPSEC phases 1 and 2 successful, but no traffic is forwarded
Replies: 6
Views: 17897

Re: IPSEC phases 1 and 2 successful, but no traffic is forwarded

Try to get useful logs by enabling ipsec logging:

/system logging add topics=ipsec
by bommi
Mon Jul 27, 2015 9:53 pm
Forum: Virtualization
Topic: Cloud Hosted Router
Replies: 579
Views: 273609

Re: Cloud Hosted Router

Please integrate virtio drivers.
by bommi
Wed Jul 22, 2015 3:56 pm
Forum: Beginner Basics
Topic: Problem to do a VPN Ipsec between Watchguard XTM330 and Mikrotik RB2011
Replies: 8
Views: 16657

Re: Problem to do a VPN Ipsec between Watchguard XTM330 and Mikrotik RB2011

Try to get useful logs by enabling ipsec logging:

/system logging add topics=ipsec
by bommi
Tue Jul 21, 2015 4:49 pm
Forum: Announcements
Topic: v6.30.x bugfix release
Replies: 136
Views: 51764

Re: v6.30.1 bugfix release

+1 for dyndns script, 6.29.1!working and 6.30 broken more likely that your script is broken. scripting language improves over time, the scripts need to be updated. MikroTik did not make th DynDNS script, you have to ask the person who wrote it, or maybe post this question in the "Scripting&quo...
by bommi
Thu May 28, 2015 11:54 am
Forum: Announcements
Topic: v6.29 released
Replies: 191
Views: 75870

Re: v6.29 released

Hello,

is the sector writes problem fixed?

Changelog for 6.29rcXX had following note:
*) firewall - fixed sector writes rising starting since 6.28;

I cant find this note in the changelog for 6.29.
by bommi
Mon Feb 16, 2015 9:14 am
Forum: Beginner Basics
Topic: How to install RouterOS to NetGear wireless router?
Replies: 1
Views: 3162

Re: How to install RouterOS to NetGear wireless router?

Hi,

it is not possible to install RouterOS on this device.

Regards,
bommi
by bommi
Wed Feb 11, 2015 5:00 pm
Forum: Announcements
Topic: RouterOS v6.27 released
Replies: 273
Views: 133970

Re: RouterOS v6.27 released

What's new in 6.27 (2015-Feb-11 13:24):
*) ipsec - fixed crash that happened in specific situation;
In what specific situation?

I try to setup an IPSec IPv4-over-IPv6 VPN between Mikrotik and Juniper ScreenOS.
The Mikrotik Device crashes when trying to establish Phase 2.
by bommi
Thu Dec 11, 2014 2:07 pm
Forum: General
Topic: BIND ?? Important Security Advisory Posted
Replies: 1
Views: 1540

Re: BIND ?? Important Security Advisory Posted

Hello,

there is a list of used open source software in RouterOS at the end of this document :
http://www.mikrotik.com/downloadterms.html

I cant see bind9 there, but this security problem also affected other dns software like unbound or powerdns.
by bommi
Tue Nov 18, 2014 3:54 pm
Forum: General
Topic: Feature request: Per interface certificates for SSTP
Replies: 4
Views: 2458

Re: Feature request: Per interface certificates for SSTP

When using self signed certificates have a look at this:

http://wiki.cacert.org/FAQ/subjectAltName
by bommi
Tue Nov 04, 2014 10:18 am
Forum: General
Topic: v6.21.1 released
Replies: 112
Views: 38703

Re: v6.21.1 released

Any news what has changed in RouterBoot Firmware 3.19?

Nothing listed here:

http://wiki.mikrotik.com/wiki/RouterBOOT_changelog
by bommi
Fri Oct 31, 2014 2:16 pm
Forum: General
Topic: v6.21 released!
Replies: 25
Views: 9458

Re: RouterOS v6.21

There is also an firmware update for my 951G-2HnD to version 3.19.
Any news what has changed?

This site has not yet been updated:
http://wiki.mikrotik.com/wiki/RouterBOOT_changelog