Community discussions

Search found 50 matches

by daggerCVN
Mon Jul 01, 2019 4:21 pm
Forum: Announcements
Topic: v6.43.16 [long-term] is released!
Replies: 12
Views: 7566

Re: v6.43.16 [long-term] is released!

Ditto on the recent Linux DOS vulnerabilities update - will Long-Term receive it and when. If not, please provide recommended Firewall filter rules. Thank you.
by daggerCVN
Tue Jan 15, 2019 5:37 pm
Forum: General
Topic: Chipset max temp for PowerboxPro
Replies: 4
Views: 339

Re: Chipset max temp for PowerboxPro

Thank you Normis - good to know the chipset capability. I am assuming that Mikrotik has tested/confirmed this product will not fail in an environment where the ambient air reached 70*C (as per the product sheet), so we should be confident with ambient temps below 51*C...
by daggerCVN
Tue Jan 15, 2019 3:48 pm
Forum: General
Topic: Chipset max temp for PowerboxPro
Replies: 4
Views: 339

Re: Chipset max temp for PowerboxPro

Hi Normis - thanks for the inputs. In the field I will not have real time ambient air sensors to monitor, thus I must rely on the information the Mikrotik can provide. The previous switch that was used here was having power supply failures due to overheating, and when we serviced the units we measur...
by daggerCVN
Tue Jan 15, 2019 12:44 am
Forum: General
Topic: Chipset max temp for PowerboxPro
Replies: 4
Views: 339

Chipset max temp for PowerboxPro

I did not find this in searches or in the Mikrotik product literature (I believe this should be available for all Routerboards). I am deploying PowerboxPro routers (RB960PGS-PB) which are outdoor hardened router/switches and are rated for ambient air temperature range of "-40*C .. +70*C tested", but...
by daggerCVN
Tue Dec 11, 2018 3:13 pm
Forum: General
Topic: RB960PGS as a smart switch with VLANing
Replies: 0
Views: 286

RB960PGS as a smart switch with VLANing

Took me a bit to get this working, though it seemed simple enough at first for this configuration: - Uplink from RB960 to network switch/router is fiber using SFP1 port and is a Trunk port; uses VLAN10 for management IP address - ether5 will connect to an Access Point; is a Hybrid trunk port with na...
by daggerCVN
Mon Oct 15, 2018 4:43 pm
Forum: General
Topic: L2TP IPSec speed [SOLVED]
Replies: 18
Views: 5085

Re: L2TP IPSec speed [SOLVED]

Ran thru a different device at a different location. Got as high as 145Mbps. I watched the CPU load on the four vCores, and cpu0 was hitting 95% - 100% during the speed tests, so this looks like device dependent and router model cpu load levels. Thanks again.
by daggerCVN
Mon Oct 15, 2018 1:08 am
Forum: General
Topic: L2TP IPSec speed [SOLVED]
Replies: 18
Views: 5085

Re: L2TP IPSec speed [SOLVED]

I tried another client device and it got 135Mbps. these are default windows machines with default MTU settings. That said, it looks like it's client related, thank you again for your inputs and guidance.

Cheers - dagger
by daggerCVN
Sun Oct 14, 2018 6:41 pm
Forum: General
Topic: L2TP IPSec speed [SOLVED]
Replies: 18
Views: 5085

Re: L2TP IPSec speed [SOLVED]

Thanks sindy. The installed-sa check shows all connections as HE I did note the 3des encryption and I just followed one of the guides to setup the vpn, so I just changed it to only use aes encryption and retested/reconnected and now the installed-sa shows aes. No change in speed, so may be device (l...
by daggerCVN
Sun Oct 14, 2018 5:49 pm
Forum: General
Topic: L2TP IPSec speed [SOLVED]
Replies: 18
Views: 5085

Re: L2TP IPSec speed [SOLVED]

All - using this existing thread as I'm having the same issue: I have a L2TP IPSEC VPN setup on my hEX r3 router and am only getting about 65Mbps throughput (its connected to a 500M fiber circuit). Here are the ipsec config outputs: [admin@MikroTik Lab] > /ip ipsec export hide-sensitive # oct/14/201...
by daggerCVN
Wed Jul 18, 2018 7:59 pm
Forum: General
Topic: Unknown admin user created?!
Replies: 1
Views: 419

Unknown admin user created?!

All - my suspicion is that some of my Mikrotik (RB750Gs) routers during the vulnerability windows back in April/May that the User file was compromised/accessed. What I am seeing is that yesterday someone logged in with the admin credentials, created a new admin account called "adminf" and changed my...
by daggerCVN
Mon Jun 18, 2018 7:16 pm
Forum: The Dude
Topic: Complete list of Dude Terminal/CLI commands?
Replies: 2
Views: 1139

Re: Complete list of Dude Terminal/CLI commands?

Thanks sid for the input even though disappointing to hear. I was hoping I just wasn't bright enough to find it on my own. My challenge is to find (an affordable) mass Mikrotik management tool that allows for me to input many existing Mikrotik routers. The Dude's discovery tool isn't really feasible...
by daggerCVN
Mon Jun 18, 2018 5:10 pm
Forum: The Dude
Topic: Complete list of Dude Terminal/CLI commands?
Replies: 2
Views: 1139

Complete list of Dude Terminal/CLI commands?

All, I can't seem to find a complete list of all of the available command lines allowed within The Dude. Specifically, I want to add a Device via CLI commands, but I can't seem to find out how to specify the DNS Name. For example I can only see how to create a new Device with a name by "/dude device...
by daggerCVN
Mon May 21, 2018 4:20 pm
Forum: The Dude
Topic: Help with XML batch scripting to import devices
Replies: 0
Views: 469

Help with XML batch scripting to import devices

Hi all, I have over 1K RB750Gs deployed where each are connected to the internet via a cable modem. I use dynamic DNS to manage their (changing) IP addresses and thus must use a host name versus a static IP address to identify and import the routers. From searches on this site there appears to be no...
by daggerCVN
Mon Apr 30, 2018 1:47 am
Forum: General
Topic: Help: Lost access to many Mikrotiks
Replies: 2
Views: 420

Re: Help: Lost access to many Mikrotiks

jspool - oh yes, 'tis a learning experience. Anybody use the API ports with a different application (although I didn't see those ports open on the scan I did on my couple of infected units..)? Sure would be nice to get a small miracle here :-) Thanks again.
by daggerCVN
Mon Apr 30, 2018 12:40 am
Forum: General
Topic: Help: Lost access to many Mikrotiks
Replies: 2
Views: 420

Help: Lost access to many Mikrotiks

I have many Mikrotik RB750Gs deployed in many different locations. When the recent vulnerabilities were announced I began updating them as quickly as possible. However, I have many (100's) that are no longer accessible. (Yes - my Firewall and port and security settings were obviously not strong enou...
by daggerCVN
Thu Jan 19, 2017 12:10 am
Forum: General
Topic: Single URL redirect without using Web Proxy?
Replies: 1
Views: 645

Re: Single URL redirect without using Web Proxy?

Just bumping this query up to see if anyone has done anything similar to this without using the Web Proxy method?

Thanks - David
by daggerCVN
Tue Dec 20, 2016 11:38 pm
Forum: General
Topic: Single URL redirect without using Web Proxy?
Replies: 1
Views: 645

Single URL redirect without using Web Proxy?

From what I have read, and I certainly do not understand all the details of how Web Proxying is implemented, but it appears that it can be a resource drain if used. I've read thru about a hundred posts trying to search for a clear answer to my specific scenario, but if I missed it my apologies up fr...
by daggerCVN
Fri Oct 28, 2016 6:23 pm
Forum: General
Topic: Guidance with replacing an Adtran router with a CCR please
Replies: 1
Views: 398

Guidance with replacing an Adtran router with a CCR please

I have a bit of analysis paralysis...we have an older Adtran router in our company network that needs to replaced. I suggested using a Mikrotik CCR :-) I am not a router pro. I've been staring at the way Adtran configures all of its routing rules and trying to map that to how a CCR-1036-8G would nee...
by daggerCVN
Wed Jul 20, 2016 11:10 pm
Forum: General
Topic: Unable to Downgrade new RB750Gr2 routers
Replies: 3
Views: 665

Unable to Downgrade new RB750Gr2 routers

All - my current standard release firmware for my RB750Gr2 routers is 6.32.4   However, my programming team came to me saying they can no longer install our standard firmware package. I verified that the latest shipment of the RB750G's now come factory installed with v6.34.2.  None of these will all...
by daggerCVN
Thu Jun 16, 2016 8:48 pm
Forum: The Dude
Topic: Semi repost: How to Discover and Connect to default RB750Gv2s?
Replies: 4
Views: 919

Feature Request: How to Discover and Connect to default RB750Gv2s?

Things are getting serious here.  We have a property where I will deploy over 500 RG750s.   Since it appears that the ability to connect and Batch firmware upgrade default/out-of-the-box Mikrotiks is not supported on The Dude, I need to make this a (urgent) Feature Request.  Thank you.
by daggerCVN
Mon Jun 06, 2016 8:15 pm
Forum: The Dude
Topic: Semi repost: How to Discover and Connect to default RB750Gv2s?
Replies: 4
Views: 919

Re: Semi repost: How to Discover and Connect to default RB750Gv2s?

Hi SEM - I have gone thru the Wiki and The Dude interface, and cannot see how to discover based on MAC address - it only gives me an option to specify a IP subnet (under Local/Discover, the Device Discovery window only gives me a "Scan Networks" option where it asks for an IP subnet.) Can you let me...
by daggerCVN
Fri Jun 03, 2016 6:06 pm
Forum: The Dude
Topic: Semi repost: How to Discover and Connect to default RB750Gv2s?
Replies: 4
Views: 919

Semi repost: How to Discover and Connect to default RB750Gv2s?

I have another thread in the General forum that includes this question plus additional bulk configuration questions. Thought I'd post this directly related question which pertains only to The Dude in this forum as well: I need to do bulk upgrade of firmware of many RB750Gv2 routers. Using Dude v4b3 ...
by daggerCVN
Fri Jun 03, 2016 5:07 pm
Forum: General
Topic: Suggestions for mass RB750 firmware updating and script configuring
Replies: 1
Views: 405

Re: Suggestions for mass RB750 firmware updating and script configuring

Well, after a couple of mugs of coffee this morning, I believe I know why the connect function is failing in the Dude: The default configs on RB750s do not allow any logins on the WAN port due to no Firewall settings that allow port 80...! OK, so now the question is how is everyone who has used Dude...
by daggerCVN
Fri Jun 03, 2016 4:12 pm
Forum: General
Topic: Suggestions for mass RB750 firmware updating and script configuring
Replies: 1
Views: 405

Suggestions for mass RB750 firmware updating and script configuring

All, I've been pouring thru many posts, but I'm not having any luck yet trying to accomplish the following: We have 500+ Mikrotik RB750Gv2 to deploy in the next 8 weeks. Want I want to do is automate this process as much as possible. Stage 1 will be updating all RB750s to our v6.32.4 firmware standa...
by daggerCVN
Fri Apr 01, 2016 5:04 pm
Forum: General
Topic: CRL size limit exceeded, ignoring
Replies: 15
Views: 3430

Re: CRL size limit exceeded, ignoring

Thanks mrz - that is consistent with what I observe on my memory consumption - my HDD space decreases by about 2MB when I Import the certs. Do you know how low on HDD Flash memory I can go before the RB750Gr2 will start to see performance degradation?
by daggerCVN
Fri Apr 01, 2016 4:59 pm
Forum: General
Topic: Where did all the HDD memory go on the RB750Gr2 routers?????
Replies: 2
Views: 587

Re: Where did all the HDD memory go on the RB750Gr2 routers?????

Hi doc, I'm not confusing RAM with HDD, but they are both types of memory. I am solely talking about the HDD memory. Depending on how you use and configure these RB750's, HDD memory IS used. For example, take one of your units and install a purchased SSL certificate and watch what happens to the HDD...
by daggerCVN
Fri Apr 01, 2016 12:39 am
Forum: General
Topic: Where did all the HDD memory go on the RB750Gr2 routers?????
Replies: 2
Views: 587

Where did all the HDD memory go on the RB750Gr2 routers?????

My scripts for configuring all of our RB750G routers stopped working when I tested on the 6.32.4 Stable Bug Fix image. So just spent a couple of days re-writing them/verification (we have over 2K routers deployed and rapidly growing). I am in the Resources menu just to do a quick check there, and it...
by daggerCVN
Thu Mar 31, 2016 11:32 pm
Forum: General
Topic: CRL size limit exceeded, ignoring
Replies: 15
Views: 3430

Re: CRL size limit exceeded, ignoring

mrz - thanks for the response. I'm no SSL expert, so pardon my noob questions. I thought all the SSL info was installed with the cert package - the actual certificate and the 3 intermediary/whatever certs I listed above, and they all Imported correctly. Or does the Mikrotik need to communicate with ...
by daggerCVN
Thu Mar 31, 2016 4:22 pm
Forum: General
Topic: CRL size limit exceeded, ignoring
Replies: 15
Views: 3430

Re: CRL size limit exceeded, ignoring

Adding more info: [admin@MikroTik] /certificate> print Flags: K - private-key, D - dsa, L - crl, C - smart-card-key, A - authority, I - issued, R - revoked, E - expired, T - trusted # NAME COMMON-NAME SUBJECT-ALT-NAME FINGERPRINT 0 K L T cert_1 hotspot.addmydevice.com DNS:www.hotspot.addmydevice.com...
by daggerCVN
Thu Mar 31, 2016 3:43 pm
Forum: General
Topic: CRL size limit exceeded, ignoring
Replies: 15
Views: 3430

Re: CRL size limit exceeded, ignoring

Add to this older/existing thread. I've purchased an SSL certificate from PositiveSSL/Comodo and installed in on my RB750Gv1 and v2 (hEX) routers. The certificate package includes 4 files. Every hour I get the same error log message: CRL size limit exceeded, ignoring. I've used both v6.19 and v6.32....
by daggerCVN
Tue Mar 22, 2016 8:06 pm
Forum: General
Topic: Help with installing a purchased SSL certificate
Replies: 8
Views: 6748

Re: Help with installing a purchased SSL certificate

Resurrecting this SSL certificate thread due to needing to renew my (real) SSL certificate for my Mikrotiks. It has been a year with success using a RapidSSL cert, but now have created a new one with 3-year duration and used a PositiveSSL from Comodo. This cert package includes four certificates: th...
by daggerCVN
Thu Jan 21, 2016 11:57 pm
Forum: General
Topic: CCR-1036-8G-2S+EM capacity questions
Replies: 5
Views: 939

CCR-1036-8G-2S+EM capacity questions

Taking a successful distributed deployment to a large-scale solution. What I need to do and thus can the CCR1036 support the following: - Support full 4K VLANs - Support 4K DHCP servers/private IP pools - Support up to 20 HotSpot instances - Handle up to 4Gbps traffic in/out via the 10G SFP ports On...
by daggerCVN
Mon Jan 18, 2016 8:22 pm
Forum: General
Topic: Need RB2011 dimensions (height is missing)??
Replies: 4
Views: 730

Re: Need RB2011 dimensions (height is missing)??

Thanks acidsas on the independent SFP port. I'm hoping to hear Mikrotik will release a desktop RB3011 series soon.

Mikrotik support was kind enough to send me the dimensions info:
RB2011 - 230x90x25mm
RB2011 with antennas - 230x113x25mm
RB2011-RM - 443x92x44mm
by daggerCVN
Thu Jan 14, 2016 6:19 pm
Forum: General
Topic: Need RB2011 dimensions (height is missing)??
Replies: 4
Views: 730

Re: Need RB2011 dimensions (height is missing)??

Thanks chechito - I hope the 25mm/1" height dimension is correct (and not the 1RU/1.75"/44mm that the rack mount 2011 router is) as I only have 1.5" of clearance in my SWB location.. Looking at the product sheets and the quick start guides, it doesn't say if the RB2011xxS versions with the SFP port ...
by daggerCVN
Thu Jan 14, 2016 12:36 am
Forum: General
Topic: ADD DYNAMIC VLAN ASSIGNMENT.
Replies: 37
Views: 16454

Re: ADD DYNAMIC VLAN ASSIGNMENT.

Bumping this dynamic VLAN support thread, because I really need this to work with wired ports and would like to see a more standard RADIUS protocol parameter support as was captured in a previous post. I have Ruckus access points connected to Mikrotik routers deployed and the dynamic vlan'ing works ...
by daggerCVN
Wed Jan 13, 2016 11:27 pm
Forum: General
Topic: Need RB2011 dimensions (height is missing)??
Replies: 4
Views: 730

Need RB2011 dimensions (height is missing)??

Product brochure only gives LxW of 214mm x 86mm, but I can't find the Height spec anywhere (I need to calculate clearance in an IDF enclosure). Thanks!
by daggerCVN
Thu Dec 10, 2015 10:49 pm
Forum: General
Topic: ADD DYNAMIC VLAN ASSIGNMENT.
Replies: 37
Views: 16454

Re: ADD DYNAMIC VLAN ASSIGNMENT.

Please add RADIUS based dynamic VLAN support to RouterOS. Already deploying this via Ruckus access points/controller/our RADIUS AAA servers, but to also have this supported natively on the Mikrotik routers (all the AAA/Radius interfaces are there, just need to support this parameter). I'll even say ...
by daggerCVN
Fri Apr 10, 2015 6:51 pm
Forum: General
Topic: Help with installing a purchased SSL certificate
Replies: 8
Views: 6748

Re: Help with installing a purchased SSL certificate

Thanks boen-robot for the inputs. All the CA providers I've been to require you to input the actual CSR of the server you need the certificate for - they do not have any tools to create a CSR for my device that I saw. I am pretty certain the _key.pem file if used as the CSR would fail (you can verif...
by daggerCVN
Fri Apr 10, 2015 4:01 pm
Forum: General
Topic: Help with installing a purchased SSL certificate
Replies: 8
Views: 6748

Help with installing a purchased SSL certificate

All - I've been reading threads and Wiki's for the past 2 days and just cannot find how to install a legitimate SSL certificate onto a RB750GL router. I believe it has to do with the creating/installation of the KEY file. I'm currently running v6.19 - it has been a stable load for me but I'm willing...
by daggerCVN
Mon Dec 22, 2014 10:43 pm
Forum: General
Topic: VLANs not behaving as expected?
Replies: 3
Views: 903

Re: VLANs not behaving as expected?

Hi Rudios, Thanks for your thoughts and suggestions. Perhaps I misunderstood how the ROS implements VLANs, but I was under the impression that defining multiple VLANs to a port without creating a bridge would honor VLAN segregation (ie., the router would not route the VLAN traffic between them)? Whe...
by daggerCVN
Fri Dec 19, 2014 6:23 pm
Forum: General
Topic: VLANs not behaving as expected?
Replies: 3
Views: 903

VLANs not behaving as expected?

I have a RB750GL router configured with an access point connected to ether5 port. The access point has two SSIDs assigned to it, and each one 802.1q VLAN tags the packets with a unique VLAN ID (say 100 and 200) The access point also needs to send management and wireless controller packets that are u...
by daggerCVN
Wed Dec 10, 2014 5:13 pm
Forum: General
Topic: Abandoning Dynamic VLAN approach-need help switch vs bridge
Replies: 0
Views: 761

Abandoning Dynamic VLAN approach-need help switch vs bridge

Could not get the dynamic VLAN solution in my prior thread ( http://forum.mikrotik.com/viewtopic.php?f=2&t=91882 )working, so going with a more basic approach and am seeking some guidance on the best way to implement this alternation solution. Basic config is RB650GL will have ether1 as a WAN interf...
by daggerCVN
Thu Dec 04, 2014 9:55 pm
Forum: General
Topic: Dynamic VLAN support on RB750GL
Replies: 0
Views: 698

Dynamic VLAN support on RB750GL

Tons of VLAN related posts and yet I just can't get this working/configured correctly. Here's the network scenario I need to support: I have an access point that supports dynamic VLAN assignments from a RADIUS server/controller when a new/different client associates and authenticates to the wireless...
by daggerCVN
Wed Jun 04, 2014 8:44 pm
Forum: General
Topic: v6.13 cloning of RB750GL routers
Replies: 8
Views: 1557

Re: v6.13 cloning of RB750GL routers

One thing to try is to do a full system reset-configuration without defaults, then try that. It may be that its seeing the default pool and throwing the error. Seems like this is key to performing a clone procedure. However, for some reason I still needed to edit the master.rsc file and add a space...
by daggerCVN
Fri May 30, 2014 8:37 pm
Forum: General
Topic: v6.13 cloning of RB750GL routers
Replies: 8
Views: 1557

Re: v6.13 cloning of RB750GL routers

What happens when you import the original file after reset of the device?
You said you tried with the changed version only.
When I try to import the original compact file to the new RB750GL, I get the failure - IP pool already exists (I can't recall the exact wording) message.
by daggerCVN
Thu May 29, 2014 1:14 am
Forum: General
Topic: v6.13 cloning of RB750GL routers
Replies: 8
Views: 1557

Re: v6.13 cloning of RB750GL routers

Thanks Scott for the feedback - maybe it's not just me. However, when I have to do something completely not expected and I can't come up with a logical explanation as to why it would work, then that just bugs me till I find an answer I can live with (ie., why do I have to open the compact file with ...
by daggerCVN
Wed May 28, 2014 7:35 pm
Forum: General
Topic: v6.13 cloning of RB750GL routers
Replies: 8
Views: 1557

v6.13 cloning of RB750GL routers

All - our company uses the RB750-GL routers for live customer deployments. Typically a dozen or more per property (current property has 85 of these routers). My tech team needs a reliable method of cloning the configurations into many units. I've done a number of searches and found a couple of threa...
by daggerCVN
Mon Mar 17, 2014 7:17 pm
Forum: General
Topic: DHCP on WAN (ether1-gateway) in cable modem network issue
Replies: 1
Views: 1460

Re: DHCP on WAN (ether1-gateway) in cable modem network issu

So I think we may have found the issue. As we started to parse thru all the settings on the RB750GL's (running v6.7) we noticed that under menu Interfaces/ and select the WAN port (ether1-gateway), this brings up the details on this specific port. And the field "MAC Address" was showing a MAC that d...
by daggerCVN
Sat Mar 15, 2014 12:02 am
Forum: General
Topic: DHCP on WAN (ether1-gateway) in cable modem network issue
Replies: 1
Views: 1460

DHCP on WAN (ether1-gateway) in cable modem network issue

All, Been running multiple searches to see if this is a known issue but didn't find it - if I missed it my apologies. Deployment highlevel: 20+ RB-750GL installs at a single MDU property with each Mikrotik router running ROSv6.7 receiving an IP from a Motorola Surfboard SB6141 cable modem. Very basi...
by daggerCVN
Thu Feb 27, 2014 12:33 am
Forum: General
Topic: v6.10 released
Replies: 248
Views: 82794

Re: v6.10 released

Deploying RB750GL's on multiple properties. No issues running 6.7 Next property and uploaded first RB750GL fresh out of the box with latest 6.10 and have multiple issues. Random reboots occurring. Applying DHCP Option 60/43 no longer works (devices are receiving DHCP IP assignment but not being pass...