Community discussions

Search found 901 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 19
by msatter
Sun Oct 14, 2018 11:39 am
Forum: Beginner Basics
Topic: Looking up cloud.mikrotik.com every second
Replies: 10
Views: 624

Re: Looking up cloud.mikrotik.com every second

I had that with two other domains in the past weeks and will try to make a support file when it happens again.
by msatter
Sat Oct 13, 2018 1:03 am
Forum: General
Topic: Jailbreak for RouterOS 6.43.2 released [SOLVED]
Replies: 16
Views: 1084

Re: Jailbreak for RouterOS 6.43.2 released [SOLVED]

I am against giving giving root access. If you want to experiment thrn you have to get a other product.

If you want a more open router then have a look at Turris. I like their approach of a modular router that you can click together with the modules you need.
by msatter
Fri Oct 12, 2018 1:41 pm
Forum: General
Topic: Jailbreak for RouterOS 6.43.2 released [SOLVED]
Replies: 16
Views: 1084

Re: Jailbreak for RouterOS 6.43.2 released [SOLVED]

Gaining more access on your own device is these days called jailbreak/rooting. To be able to do this you need a opening/vulnerability in your device. A important criteria is the the manufacturer does not sell the device with this option default active. Apple is playing catch up all the time and Goog...
by msatter
Fri Oct 12, 2018 1:21 pm
Forum: General
Topic: Whats the difference between long term and stable?
Replies: 2
Views: 173

Re: Whats the difference between long term and stable?

release channels renamed - "bugfix" to "long-term", "current" to "stable" and "release candidate" to "testing"; "testing" release channel now can contain "beta" together with "release-candidate" versions; Would it not be a wonderful world if we had a bugfree version but we have to do with a bugfixed...
by msatter
Thu Oct 11, 2018 11:38 pm
Forum: General
Topic: Hex S SFP no link
Replies: 20
Views: 1414

Re: Hex S SFP no link

I have same problem.
I broght two HEX S devices, one is working withount any problems. On another SFP port is showing "no link".
Did you try also with auto negotiate off and speed set to 1Gb/s?
by msatter
Wed Oct 10, 2018 1:39 pm
Forum: General
Topic: SFP+ S+85DLC03DI
Replies: 8
Views: 543

Re: SFP+ S+85DLC03DI

I know, I received confirmation but no response from Mikrotik team :(
Sent your request again with the word "repeat:" as first word the subject.
by msatter
Mon Oct 08, 2018 3:57 pm
Forum: Beginner Basics
Topic: Policy Base Routing not working [SOLVED]
Replies: 7
Views: 232

Re: Policy Base Routing not working [SOLVED]

I am also not that good in this. If you only use routing then you have route also the returning package.

I use connection marking for this because I am lazy. ;-)
by msatter
Mon Oct 08, 2018 3:46 pm
Forum: General
Topic: SFP+ S+85DLC03DI
Replies: 8
Views: 543

Re: SFP+ S+85DLC03DI

That is not normal you should have receive a confirmation e-mail and after a few days a response from them.

I put a request last Friday and received today my answer. Yours is more complicated because it involves hardware so the have to check that first.
by msatter
Mon Oct 08, 2018 3:42 pm
Forum: Announcements
Topic: VPNfilter official statement
Replies: 188
Views: 57181

Re: VPNfilter official statement

[sarcasm]Mikrotik patched RouterOS so all is safe now....[/sarcasm] If it is possible to retake compromised routers, then the correct correct RouterOS can be installed and clean out the bad stuff. I a one leaves it's router open to attacks from the outside why not 'attack' it to make it safe again. ...
by msatter
Mon Oct 08, 2018 3:19 pm
Forum: General
Topic: SFP+ S+85DLC03DI
Replies: 8
Views: 543

Re: SFP+ S+85DLC03DI

The Mikrotik team can be reached at support@mikrotik.com

ps. the auto-negotiation disabled and set link speed 1G setting is commonly used by owners of Mikrotik stuff to get it working.
by msatter
Mon Oct 08, 2018 3:12 pm
Forum: Announcements
Topic: VPNfilter official statement
Replies: 188
Views: 57181

Re: VPNfilter official statement

And the saga continues and this time by Tenable:

https://github.com/tenable/routeros

These are already patched so check if you are using a safe RouterOS.
by msatter
Sun Oct 07, 2018 10:27 pm
Forum: General
Topic: Unable to get full gigabit speed on RB750Gr3
Replies: 28
Views: 1307

Re: Unable to get full gigabit speed on RB750Gr3

And don't forget the three location where FastPath is defined. I the one in the Bridge was off and my upload dropped from 750Mbit/s to 120Mbit/s and download was not affected by that and stayed at 520Mbit/s all the time. There is one also in IP Setting and don't forget to enable route cache there be...
by msatter
Tue Oct 02, 2018 5:42 pm
Forum: General
Topic: hardware acceleration on only one bridge?
Replies: 13
Views: 512

Re: hardware acceleration on only one bridge?

Only one bridge can use hardware acceleration at the same time.
by msatter
Tue Oct 02, 2018 2:02 pm
Forum: General
Topic: MikroTik hEX S high temperature
Replies: 6
Views: 236

Re: MikroTik hEX S high temperature

I run it under the same circumstances and I use also a SFP for the fiber connection to my ISP. I have mounted my RB760iGS (hEX S) and the temperature is in the 40 to 50 degrees. Check if the ventilation openings of the router are not blocked. If you look in my signature you find a link about cooling...
by msatter
Fri Sep 28, 2018 10:55 pm
Forum: RouterBOARD hardware
Topic: Hardware offload on sfp port in hEX S mmips
Replies: 11
Views: 580

Re: Hardware offload on sfp port in hEX S mmips

What happens if you don't put the SPF into the bridge. I never put the upstream/downstream in the master/slave or these days bridge.

If I look at the CPU usage I could reach 2Gbit/s if the CPU is maxed.
by msatter
Thu Sep 27, 2018 4:58 pm
Forum: General
Topic: Information about SSTP encryption
Replies: 4
Views: 187

Re: Information about SSTP encryption

It is still being encrypted as you state and otherwise it would not deserve the first "s" in SSTP. ;-)

The difference is that there is no proof that the client is talking to server the client wanted to talk to.
by msatter
Thu Sep 27, 2018 2:34 pm
Forum: General
Topic: Information about SSTP encryption
Replies: 4
Views: 187

Re: Information about SSTP encryption

From the WiKi; Between two Mikrotik routers it is also possible to set up an insecure tunnel by not using certificates at all. In this case data going through SSTP tunnel is using anonymous DH and Man-in-the-Middle attacks are easily accomplished. This scenario is not compatible with Windows clients...
by msatter
Thu Sep 27, 2018 11:37 am
Forum: General
Topic: Waiting time for new members to post links
Replies: 5
Views: 232

Re: Waiting time for new members to post links

The spam is pleasantly low and I am not a moderator but had three posts yesterday by a spanking new member posting spam or even worse, infecting links. I put warnings underneath to have not other users clicking the link and. My warnings and the BAD postings are now removed so that is good. I still s...
by msatter
Wed Sep 26, 2018 10:34 pm
Forum: General
Topic: Waiting time for new members to post links
Replies: 5
Views: 232

Waiting time for new members to post links

I propose to introduce a waiting time to post links of a to be determined period after the first posting. Ignoring subscription date to not have accounts to be created in advance.
by msatter
Wed Sep 26, 2018 9:03 pm
Forum: RouterBOARD hardware
Topic: Hardware offload on sfp port in hEX S mmips
Replies: 11
Views: 580

Re: Hardware offload on sfp port in hEX S mmips

Let us other owners of the hEX S know what Mikrotik state to you so we don't have to write Mikrotik separately on this.
by msatter
Sun Sep 23, 2018 1:04 am
Forum: General
Topic: restore back to identical devices never works :(
Replies: 28
Views: 886

Re: restore back to identical devices never works :(

In the backup the MAC are different then those in the restored to device. It could be so that restore always respect the devices MAC and use them.
by msatter
Wed Sep 19, 2018 2:15 pm
Forum: General
Topic: IPSec with preshared key security warning os. 6.43.1
Replies: 6
Views: 284

Re: IPSec with preshared key security warning os. 6.43.1

This is mainly used for VPN services and if we want to avoid this we could change to OpenVPN or IKE2 but that are not fully or not supported in RouterOS.

So we have to bear with these warnings for some time longer.
by msatter
Tue Sep 18, 2018 12:48 pm
Forum: Announcements
Topic: v6.44beta [testing] is released!
Replies: 117
Views: 17173

Re: v6.44beta [testing] is released!

Remember that in MikroTik RouterOS, backup file is for restoring past configuration on the same device, not a safeguard against a lost or damaged device, for restoring on other devices, you should be using "export" config files. Export config files is death for me. Tried everything what is mentione...
by msatter
Sat Sep 15, 2018 1:47 pm
Forum: General
Topic: DNS Server TTL problem
Replies: 14
Views: 537

Re: DNS Server TTL problem

Having problems with DNS resolves with zero or very short TTL then Mikrotik could enforce a minimal TTL applied to the cache in RouterOS. In this way address lists are limited in its frequency sending DNS requests. This can be set to a fixed time by Mikrotik or made user configurable and being disab...
by msatter
Fri Sep 14, 2018 9:35 pm
Forum: General
Topic: DNS Server TTL problem
Replies: 14
Views: 537

Re: DNS Server TTL problem

Mikrotik was beating my DNS server to death with constant requests for local domains which have a TTL of zero. I have now a separate DNS server to force DNS cache by Mikrotik, to comply by setting an longer TTL for those local domains. Why do people always expect MikroTik to fix other people's stup...
by msatter
Fri Sep 14, 2018 11:51 am
Forum: RouterBOARD hardware
Topic: SFP module is extremely hot
Replies: 25
Views: 4385

Re: SFP module is extremely hot

I got me a second RB760iGS and modified it differently. I made a heath conducting bridge between the SFP cage and the metal surrounding the network ports. This was not enough and I put again the heathsink between the power connector and the SFP module. The temperature stays below 50 degrees Celsius ...
by msatter
Fri Sep 14, 2018 11:45 am
Forum: Announcements
Topic: Security announcement blog
Replies: 110
Views: 14674

Re: Security announcement blog

Email list Now we're talking. I was subscribed to it until it stopped sending me emails, without me unsubscribing. Where can I find that list? That solves the complete issue. I just thought they've dropped the list. Is it this one? https://mikrotik.com/client/ecom_notify.php I got that link from my...
by msatter
Thu Sep 13, 2018 7:51 pm
Forum: General
Topic: DNS Server TTL problem
Replies: 14
Views: 537

Re: DNS Server TTL problem

It took me a year to convince Mikrotik that their current implementation of DNS cache is not workable. They have said that they are going to improve it but the is no TTL on that as always with Mikrotik. Mikrotik was beating my DNS server to death with constant requests for local domains which have a...
by msatter
Mon Sep 10, 2018 9:11 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 244
Views: 30578

Re: Winbox vulnerability: please upgrade

@msatter: Is it joke or not?
https://www.rdw.nl/particulier/nieuws/2 ... -rijbewijs

The internet is full of news items about Rutte rijbewijs
by msatter
Mon Sep 10, 2018 1:01 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 244
Views: 30578

Re: Winbox vulnerability: please upgrade

Our Dutch Prime Minister has also a driver license made in Poland on his name.

Darn the advertisement is removed.
by msatter
Thu Sep 06, 2018 4:21 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 244
Views: 30578

Re: Winbox vulnerability: please upgrade

How to warn user of Mikrotik products to update I made already constructive remarks and when they are up to it or are forced to be up to it it will happen. Let's start small and first get the correct information to the users and seeing today again lacking that in completeness and drive to have all t...
by msatter
Wed Sep 05, 2018 5:37 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 244
Views: 30578

Re: Winbox vulnerability: please upgrade

I deeply disappointed by Heise to not investigated further for them selves and inquire with Mikrotik. I had high regarded for Heise as a reliable and trustworthy news source. That they neglected the bugfix version and declared any version below 6.42.x as unsafe. That Heise made this blunder is shock...
by msatter
Wed Sep 05, 2018 10:58 am
Forum: Announcements
Topic: Security announcement blog
Replies: 110
Views: 14674

Re: Security announcement blog

:-)
by msatter
Sat Sep 01, 2018 10:07 pm
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 298
Views: 56764

Re: Mikrotik VDSL / DSL Modem?

Copper perfectly suited to be used in closely build area's and over cable 1Gbit/s is already used and VDSL is also available in higher speeds. Fiber is well suited to cover long distances of 20+ km and here in the Netherlands it is more and more used for people living outside the cities. The people ...
by msatter
Sat Aug 25, 2018 4:06 pm
Forum: Announcements
Topic: v6.40.9 [bugfix] is released!
Replies: 56
Views: 9965

Re: v6.40.9 [bugfix] is released!

Request to make the security section accessible from the blog menu. Noticing that did raised my blood pressure significantly. ;-) Pressure has dropped by now to more normal levels. I now see that when you scroll down you will find a mention of software and security so it is there but I would love th...
by msatter
Sat Aug 25, 2018 4:01 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Suggestion for improved ROS update/upgrade process
Replies: 4
Views: 446

Re: Suggestion for improved ROS update/upgrade process

Before we did not all times had to update the firmware. If Mikrotikvonly increase the firmware version number if there has been a change to it in real you could spare yourself a load of second reboots.
by msatter
Fri Aug 24, 2018 8:27 pm
Forum: Announcements
Topic: v6.43rc [release candidate] is released!
Replies: 558
Views: 83514

Re: v6.43rc [release candidate] is released!

osc86 , we are aware of the issue. It will be fixed until 6.43 is released in current release channel. It would be nice if that would also be communicated in the changelog if something gets broken in the process and there is knowledge about that. Preferable also in red to warn. Saves downgrades for...
by msatter
Mon Aug 20, 2018 7:10 pm
Forum: Beginner Basics
Topic: Mikrotik DNS not working [SOLVED]
Replies: 3
Views: 314

Re: Mikrotik DNS not working [SOLVED]

Note: If allow-remote-requests is used make sure that you limit access to your server over TCP and UDP protocol.

To the outside.
by msatter
Thu Aug 16, 2018 11:27 am
Forum: General
Topic: VLAN on RB750Gr3
Replies: 7
Views: 504

Re: VLAN on RB750Gr3

That about vlan support in the future for the RB750Gr3/RB760iGS is to be found here:
viewtopic.php?t=113724&start=50#p567533
by msatter
Mon Aug 13, 2018 6:27 pm
Forum: Beginner Basics
Topic: google captcha after installing mikrotik
Replies: 4
Views: 410

Re: google captcha after installing mikrotik


In the captcha window, there is a link "Why did this happen?" Check there.

My guess is you have a public IP associated with malicious activity of some type.
So Google make you now also look as criminal...thanks.
by msatter
Mon Aug 13, 2018 12:28 pm
Forum: Beginner Basics
Topic: google captcha after installing mikrotik
Replies: 4
Views: 410

Re: google captcha after installing mikrotik

Google is just bugging you because they can.

Google does not like not to be able to know everything about you moving over the internet. This message is shown, when you are doing something right.

Better is to use duckduckgo.com to conduct your searches.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 19