Community discussions

MikroTik App

Search found 8684 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 29
by Chupaka
Sun Jun 16, 2024 11:31 pm
Forum: Containers
Topic: Execute commands inside containers from RouterOS scripts
Replies: 2
Views: 4668

Re: Execute commands inside containers from RouterOS scripts

Well, when I first tried to use containers in RouterOS, I was disappointed that I can't run simple commands inside containers using scripts. Like, reloading nginx when SSL certificate was updated. I surely can restart it, but `crictl/docker exec` sounds easy enough not to miss this feature in Router...
by Chupaka
Fri Jun 14, 2024 12:30 pm
Forum: General
Topic: AmneziaWG in RouterOS?
Replies: 40
Views: 18570

Re: AmneziaWG in RouterOS?

At least, about 95%.
Well, if MikroTik uses native kernel module instead of user-space implementation of WireGuard - then probably less than 95% :)
by Chupaka
Thu May 30, 2024 3:00 pm
Forum: Announcements
Topic: v7.15.3 [stable] is released!
Replies: 655
Views: 259959

Re: v7.15 [stable] is released!

It appears that the default /ip/firewall/connection/tracking udp-timeout has changed from 10s to 30s but I do not see that in the changelog.
What's new in 7.14 (2024-Feb-29 09:10):

*) firewall - increased default "udp-timeout" value from 10s to 30s;
by Chupaka
Tue Mar 12, 2024 2:08 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14.1 [stable] is released!

"($LastHandshake > [:totime "3m"])"?..
by Chupaka
Tue Mar 12, 2024 2:06 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14.1 [stable] is released!

/interface/wireguard/peers :foreach i in=[find where disabled=no endpoint-address="" current-endpoint-address!=""] do={ :local LastHandshake [get $i last-handshake] :if ($LastHandshake > [:totime "3m"]) do={ enable $i } } This effectively unsets current-endpoint-addres...
by Chupaka
Mon Mar 11, 2024 1:48 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14.1 [stable] is released!

What's new in 7.14.1 (2024-Mar-08 14:50): *) wireguard - do not attempt to connect to peer without specified endpoint-address; Needs more work. When a peer without endpoint-address connects and then disconnects - RouterOS still floods the log with useless messages (probably because now the peer doe...
by Chupaka
Sun Mar 03, 2024 7:57 pm
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14 [stable] is released!

Re: wireguard... Why the heck it's always "try 2"? Not try 3, 4, 5... All 20 attempts are try 2 :)
by Chupaka
Fri Mar 01, 2024 11:52 am
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14 [stable] is released!

I too had an issue with CHR ethernet adapters disappearing after updating from 7.13.5 to 7.14 on a production server times two. 7.14 is supposed to be stable realease? I was prepared with a week old snapshot and suddenly my adapters reappeared. You mean, you have a VM and you don't test upgrades by...
by Chupaka
Fri Mar 01, 2024 11:50 am
Forum: Announcements
Topic: v7.14.3 [stable] is released!
Replies: 671
Views: 228171

Re: v7.14 [stable] is released!

Regarding "wireguard, debug: Sending handshake initiation to peer (0.0.0.0:0)" on passive peers. This is just pure speculation and I might be completely wrong; but after some troubleshooting it seems that MNDP might trigger passive WireGuard peers to attempt to establish a connection desp...
by Chupaka
Mon Feb 05, 2024 1:15 pm
Forum: General
Topic: Export dynamic
Replies: 3
Views: 1651

Re: Export dynamic

12 years? really?..
by Chupaka
Thu Jan 25, 2024 2:30 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13.3 [stable] is released!

*) wifi-qcom - improved system stability when using FastPath (introduced in v7.13);
Is it related to device reboots, due to kernel failure?
And... Is it only about wifi-qcom, not wifi-qcom-ac?
by Chupaka
Wed Jan 03, 2024 5:38 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

What device are you using and how is it configured?
And for how long was it up?
cAP ac, about 2 weeks uptime (first one rebooted with ~9 days uptime?..)

Will try to send a mail to support, thanks :)
by Chupaka
Wed Jan 03, 2024 2:01 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

This night I had another system,error,critical router was rebooted without proper shutdown, probably kernel failure system,error,critical kernel failure in previous boot system,error,critical out of memory condition was detected And Graphing looks innocent: Screenshot 2024-01-03 at 15.00.09.png Hey ...
by Chupaka
Wed Dec 27, 2023 11:18 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

Another cAP ac has uptime of 10 days and 22.4 MiB memory. But it has only a few clients...
by Chupaka
Wed Dec 27, 2023 10:56 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

Just got a reboot of my cAP ac 2023-12-27 01:55:10 system,error,critical router was rebooted without proper shutdown, probably kernel failure 2023-12-27 01:55:10 system,error,critical kernel failure in previous boot 2023-12-27 01:55:10 system,error,critical out of memory condition was detected And a...
by Chupaka
Wed Dec 27, 2023 10:05 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

Maybe management-protection=disabled ?
You're my hero! It worked! Thanks!
by Chupaka
Tue Dec 26, 2023 10:54 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 908
Views: 294749

Re: v7.13 [stable] is released!

I have a Xiaomi Humidifier, and after upgrade to new CAPsMAN, I see this in log: 21:38:06 wireless,info 58:B6:23:0A:5B:74@cap-Zal-Sky-IoT connected, signal strength -63 21:38:06 dhcp,info LAN deassigned 100.64.3.201 for 58:B6:23:0A:5B:74 zhimi-humidifier-ca4_mibt5B74 21:38:06 dhcp,info LAN assigned ...
by Chupaka
Thu Dec 14, 2023 3:18 pm
Forum: General
Topic: v5.5 bug: after ssh-keys password login via ssh is blocked
Replies: 28
Views: 13406

Re: v5.5 bug: after ssh-keys password login via ssh is blocked

Shouldn't you just use something like ed25519 key instead of ssh-rsa?.. They are supported already. Or even regenerate your key so it become ssh-rsa-512 instead of sha1-based (I can be wrong about that)? %)
by Chupaka
Mon Dec 11, 2023 10:41 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Could you please explain why you use 10.X.X.X (private addresses) as virtual hops?
Just because they are not used anywhere else.
and as GW for clients?
Router IP address is a GW for clients.
by Chupaka
Sat Nov 18, 2023 3:20 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Mangle-prerouting is before DST-NAT: https://help.mikrotik.com/docs/display/ROS/Packet+Flow+in+RouterOS#PacketFlowinRouterOS-Forward So yes, prerouting sees original Dst. IP Address. The best way I can think of in 10 seconds is "dst-address-type=!local", so packets to the router's addresse...
by Chupaka
Fri Nov 17, 2023 8:26 am
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

The default routes in main table seems required only for output. Forwarding was working even without. Correct. In forwarding, you have 'prerouting' step before routing decision, and in Output, the process starts from routing decision, then mangle - so there's additional "Routing adjustment&quo...
by Chupaka
Thu Nov 16, 2023 3:59 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

It should be meaningful, so router can proceed with routing the packet. If `main` route is unreachable - then sorry. So if ISP1 is down but its route is active (like the gateway/modem is reachable, and a problem is few hops away) - that should be enough. As I understand, this part selects source IP ...
by Chupaka
Sat Aug 26, 2023 6:41 pm
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 177297

Re: v7.11 [stable] is released!

...
by Chupaka
Thu Jun 29, 2023 10:41 am
Forum: Announcements
Topic: v7.11beta [testing] is released!
Replies: 373
Views: 114395

Re: v7.11beta [testing] is released!

That's WG behaviour by design, and people solve that problem with scripts: viewtopic.php?t=166214

So, your explanation brings even more questions: when does router decide that it needs to resolve the name again? With scripts, I control that; with unknown automagic - hmmm...
by Chupaka
Thu Jun 22, 2023 3:46 pm
Forum: Announcements
Topic: v7.11beta [testing] is released!
Replies: 373
Views: 114395

Re: v7.11beta [testing] is released!

*) system - reduced RAM usage for SMIPS devices;
Wow, even more!
*) wireguard - fixed peer connection using DNS name on IP change;
Any details? What case should it fix?
by Chupaka
Sun Jun 11, 2023 5:48 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

In RAW - RouterOS - MikroTik Documentation I find
It's about "dst-limit", scroll down to "limit", they are different
by Chupaka
Mon May 29, 2023 3:20 pm
Forum: Announcements
Topic: v7.10rc is released!
Replies: 183
Views: 57813

Re: v7.10rc is released!

*) system - reduced RAM usage for SMIPS devices;
Wow, hAP Lite is back on stage? Good news!
by Chupaka
Tue May 23, 2023 3:04 pm
Forum: Announcements
Topic: Announcement regarding CVE-2023-32154
Replies: 23
Views: 30217

Re: Announcement regarding CVE-2023-32154

Can we use that RCE to obtain root access to the router? For research purposes :)
by Chupaka
Wed Apr 12, 2023 11:46 am
Forum: General
Topic: Using another port than 1701 for L2TP
Replies: 15
Views: 21788

Re: Using another port than 1701 for L2TP

Previously (RouterOS v6), it was not possible to do dst-nat on router-originated connections. Has this changed?
by Chupaka
Mon Mar 06, 2023 11:40 am
Forum: RouterOS beta
Topic: Wireguard use Hostname in endpoint
Replies: 63
Views: 22826

Re: Wireguard use Hostname in endpoint

Because
I use the scheduler to run the script every 2 minutes - so 5 minutes minimum, 7 minutes maximum of downtime before a reset is attempted.
In worst case scenario, your script is run on 4:59 after last handshake (and does nothing), then on 6:59 and updates the endpoint IP address
by Chupaka
Sat Dec 10, 2022 1:41 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

How do you deal with ConnTrack? I am using NAT and every time the GW changes, NAT does not work. It is necessary to clear ConnTrack.
What are your NAT rules?
by Chupaka
Thu Dec 01, 2022 5:49 pm
Forum: RouterOS beta
Topic: Wireguard use Hostname in endpoint
Replies: 63
Views: 22826

Re: Wireguard use Hostname in endpoint

It IS brutal :)

Btw,
s/:$wgport/:$wgport\$" protocol="udp/
? So if port is 9090, no connections with port 90907 would be killed.
by Chupaka
Thu Dec 01, 2022 1:49 pm
Forum: Announcements
Topic: v7.7beta [testing] is released!
Replies: 322
Views: 130097

Re: v7.7beta [testing] is released!

What about wifiwave2 for MIPSBE (hEX PoE)?
by Chupaka
Thu Dec 01, 2022 1:08 pm
Forum: RouterOS beta
Topic: Wireguard use Hostname in endpoint
Replies: 63
Views: 22826

Re: Wireguard use Hostname in endpoint

I like this one more: https://forum.mikrotik.com/viewtopic.php?p=921026#p921026 Because you have FQDN in WG Peer, not only in a script, and you only update it when there's no connectivity. WG can automatically detect new peer IP if there are packets from new IP with the same signature, so you don't ...
by Chupaka
Wed Nov 16, 2022 1:03 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Funny thing, initially I was writing that article with this "feature" of v7 in mind. It took more than 10 years for it to actually start working :D
by Chupaka
Tue Nov 15, 2022 5:25 pm
Forum: General
Topic: RouterOS VPN types support
Replies: 8
Views: 8463

Re: RouterOS VPN types support

OpenConnect is NOT a VPN type/protocol.
by Chupaka
Sun Oct 23, 2022 1:16 am
Forum: Scripting
Topic: If else commands scripting.
Replies: 50
Views: 54019

Re: If else commands scripting.

Btw, the real one-liner is
/interface wireless set wlan1 hide-ssid=(![get wlan1 hide-ssid])
Sorry, no if-else used
by Chupaka
Tue Oct 11, 2022 1:42 pm
Forum: Announcements
Topic: v7.6rc is released!
Replies: 94
Views: 31187

Re: v7.6rc is released!

Well, they are actually negative in MikroTik App for Android :) I already reported that several months ago...
by Chupaka
Sat Sep 17, 2022 2:47 pm
Forum: Scripting
Topic: API Links
Replies: 155
Views: 224110

Re: API Links

i have a few queues and i would like to create a shortcurt to my desktop PC (Win 10) so i could enable/disable a particular queue, without user interaction. I have basic programming training, nothing special. So even a bat file would do the trick. Is there a way to do this please? SSH. Simply setup...
by Chupaka
Wed Jun 29, 2022 2:49 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 487
Views: 279328

Re: MikroTik smartphone app (ex Tik-App)

In the recent upgrade (Android, App v1.3.23) editing Wireguard's "Allowed Address" was fixed, but Tx and Rx values for Wireguard peers are still negative if greater than 2G in reality.
by Chupaka
Tue Jun 07, 2022 2:19 pm
Forum: Announcements
Topic: v7.3 and v7.3.1 [stable] is released!
Replies: 269
Views: 87050

Re: v7.3 [stable] is released!

*) winbox - made "Interface Templates" table sortable under "Routing/OSPF" menu;
Huh... It's sortable for me in 7.2.3... What exactly was changed? :)
by Chupaka
Thu May 26, 2022 3:57 pm
Forum: Announcements
Topic: v7.2.2 [stable] and v7.2.3 [stable] are released!
Replies: 401
Views: 87008

Re: v7.2.2 [stable] and v7.2.3 [stable] are released!

has been explained several times already.
cetipabo, the key words are "routing cache" - it's removed in recent Kernel versions
by Chupaka
Thu May 26, 2022 1:56 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 487
Views: 279328

Re: MikroTik smartphone app (ex Tik-App)

When I try to edit WireGuard peer to change Allowed Address, it fails: not showing current value and tries to comma-separate empty values on editing.
Also, Tx and Rx values greater than 2G are shown negative.

RouterOS 7.2.3
by Chupaka
Wed May 18, 2022 12:29 pm
Forum: Announcements
Topic: v7.3rc [testing] is released!
Replies: 452
Views: 110484

Re: v7.3beta [testing] is released!

So, I'm trying to use Cake on my WAN interface but fail:
 > queue/interface/set pppoe-out1 queue=cake-512k 
failure: non rate limit queues are useless on this interface
What's the right way to do that?
by Chupaka
Tue May 10, 2022 4:02 pm
Forum: Scripting
Topic: API Links
Replies: 155
Views: 224110

Re: API Links

What exactly do you want to do by "command concatenation or substitution"?..
by Chupaka
Wed Apr 27, 2022 1:32 pm
Forum: Announcements
Topic: v7.3rc [testing] is released!
Replies: 452
Views: 110484

Re: v7.3beta [testing] is released!

why no routing-table ??? in ROS v7.x connecting to mikrotik ros7.3b37: [admin@Ros7.3b37] > /ip/firewall/mangle/add routing-table expected end of command (line 1 column 25) question - why NO routing-table in cli??? Wow... What's "realm"? It changes when I change "Routing Table" i...
by Chupaka
Fri Apr 15, 2022 6:50 pm
Forum: RouterOS beta
Topic: Recursive Routes
Replies: 16
Views: 18972

Re: Recursive Routes

So, you have a route that points to an IP of some gateway. That is the route from which you cannot use directly: it needs to be resolved to an interface. For that, you need another route which is a route resolving the previous one. That's what I called resolving route because I don't know any other ...
by Chupaka
Fri Apr 15, 2022 1:54 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

They may have changed.
Any particular reason? That seems clear for v7 before v7.2, I can't see why it should change.
by Chupaka
Fri Apr 15, 2022 1:51 pm
Forum: RouterOS beta
Topic: Recursive Routes
Replies: 16
Views: 18972

Re: Recursive Routes

Chupaka, I believe what you meant to say is that the TARGET SCOPE of the resolving route must be one greater than the SCOPE of the recursive route. Absolutely no. Target Scope must be greater or equal to Scope, as it has always been . Target Scope should decrease on each step of recursion ( new in ...
by Chupaka
Tue Apr 05, 2022 2:35 pm
Forum: Announcements
Topic: v7.2 is released!
Replies: 359
Views: 67565

Re: v7.2 is released!

RouterOS already has such a feature, it is called /system reset-configuration.
How to safely use it on remote devices available only over L3 networks?
by Chupaka
Tue Apr 05, 2022 1:56 pm
Forum: Announcements
Topic: v7.2 is released!
Replies: 359
Views: 67565

Re: v7.2 is released!

*) backup - added "force-v6-to-v7-configuration-upgrade" option on backup load to clear RouterOS v7 configuration and trigger reimport of RouterOS v6 route configuration (CLI only); Don't we need something like "discard-v6-configuration-completely-please-I-am-from-v7" to remove ...
by Chupaka
Tue Apr 05, 2022 1:46 pm
Forum: Announcements
Topic: WinBox v3.35 released!
Replies: 97
Views: 55575

Re: WinBox v3.35 released!

Maybe this is a Mac/wine thing... I often get "multiple selection" behavior when there is only one choice. Specifically, in Winbox's login screen's neighbors. Multiple routers can be selected, even with using just "a single click". It does seem to use the last one selected, but ...
by Chupaka
Tue Apr 05, 2022 1:24 pm
Forum: Announcements
Topic: Missing RouterOS configuration after a reboot on very rare occasions [SOLVED]
Replies: 73
Views: 45644

Re: Missing RouterOS configuration after a reboot on very rare occasions [SOLVED]

Okay, I repeated that on another CHR that I almost don't use, so should not be a problem to reproduce it for you. The router was upgraded to v7.2 first. Create a WG interface named "wg-RedShield" (with an empty config) and add the following routing filter rule: /routing/filter/rule/add cha...
by Chupaka
Tue Apr 05, 2022 12:39 am
Forum: Announcements
Topic: v7.1.4 and v7.1.5 is released!
Replies: 201
Views: 43283

Re: v7.1.4 and v7.1.5 is released!

Hello,
in 6.x.x ROS there was "unreachable" property for every route in /ip route
It's gone in 7.x.x? Why? And what should I use instead of it in scripts?
Huh... "/routing/route/print where unreachable"?
by Chupaka
Sun Mar 27, 2022 11:16 pm
Forum: Announcements
Topic: v7.2rc5 is released!
Replies: 91
Views: 26059

Re: v7.2rc5 is released!

You can just switch to your other partition where you saved the 7.2rc4 before upgrading, to compare it.
Is there a good way of not forgetting to copy your current config to all partitions after any configuration changes?
by Chupaka
Thu Mar 24, 2022 12:19 pm
Forum: Announcements
Topic: v7.2rc5 is released!
Replies: 91
Views: 26059

Re: v7.2rc5 is released!

It's not like IPSec rules. It does allow any traffic to be received from this peer, but it does not force all traffic to go through this peer, routing policy must be implemented additionally in Wireguard.
by Chupaka
Mon Mar 14, 2022 12:51 pm
Forum: General
Topic: Route details [SOLVED]
Replies: 2
Views: 1383

Re: Route details [SOLVED]

You should try
/routing/route/print detail
by Chupaka
Sun Mar 13, 2022 9:08 am
Forum: General
Topic: CHR on Amazon Cloud ROS 7 upgrade server crash
Replies: 8
Views: 1907

Re: CHR on Amazon Cloud ROS 7 upgrade server crash

Hi. What do you see in VM's console during startup?
by Chupaka
Sun Mar 06, 2022 8:31 pm
Forum: RouterOS beta
Topic: v7 new CLI style VS export
Replies: 10
Views: 3582

v7 new CLI style VS export

In ROS v7 we have new CLI style (like /this/is/it), but export still generates the old one. Is it going to be changed some time soon?
by Chupaka
Tue Mar 01, 2022 7:42 pm
Forum: General
Topic: X86_64 ROS - 64bit Mikrotik [SOLVED]
Replies: 92
Views: 80244

Re: X86_64 ROS - 64bit Mikrotik [SOLVED]

At least, more RAM is available after the "conversion"
by Chupaka
Thu Feb 24, 2022 1:57 pm
Forum: Announcements
Topic: v7.2rc4 is released!
Replies: 143
Views: 45287

Re: v7.2rc4 is released!

I can't do that, it's CHR instance in Oracle Cloud Free Plan, and I can't create custom disk images anymore :(
by Chupaka
Thu Feb 24, 2022 1:48 pm
Forum: Announcements
Topic: v7.2rc4 is released!
Replies: 143
Views: 45287

Re: v7.2rc4 is released!

I noticed this in rc3, now it's reproducible in rc4. I have a Routing Filter rule that disappears after reboot: > routing/filter/rule/export # feb/24/2022 14:45:29 by RouterOS 7.2rc4 # software id = # /routing filter rule add chain=ospf-out disabled=no rule=reject add chain=ospf-out disabled=no rule...
by Chupaka
Mon Feb 21, 2022 7:24 pm
Forum: Announcements
Topic: v7.2rc2 and v7.2rc3 is released!
Replies: 222
Views: 89786

Re: v7.2rc2 and v7.2rc3 is released!

At least you should add a command to log exact IP address to be logged on next step
by Chupaka
Mon Feb 21, 2022 5:17 pm
Forum: Announcements
Topic: v7.1.3 is released!
Replies: 251
Views: 61037

Re: v7.1.3 is released!

PPPoE Client?
by Chupaka
Mon Feb 14, 2022 4:31 pm
Forum: Virtualization
Topic: CHR feature requests
Replies: 81
Views: 39065

Re: CHR feature requests

I think when they cannot do so for 3 months they get de-activated.
And that is wrong
(at least they post a "deadline date" in the license window similar to that)
You cannot upgrade ROS after that, that's the only limitation
by Chupaka
Mon Feb 14, 2022 3:59 pm
Forum: Virtualization
Topic: CHR feature requests
Replies: 81
Views: 39065

Re: CHR feature requests

Activation of license with no internet access..
Any real-life use case where you cannot have Internet access during initial setup of CHR?..
by Chupaka
Fri Feb 11, 2022 5:27 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

That doesn't mean it became unusable Actually yes, it does. For several years I am waiting for fix of the bug which disconnects my dude client everytime I hover mouse on top of monitored device as well as most of the time (but not always) when I open details. You mean, all those years it was workin...
by Chupaka
Thu Feb 10, 2022 6:15 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 and v3.34 released!

Wine is back online :) Thanks!
by Chupaka
Thu Feb 10, 2022 4:47 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

If it works for you, great, you can use it.
That's what we do. Using Crossover 21 (a free one). Please make WinBox run in it again. I doubt you need Wine 7 for hex fields or something else from v3.33...
by Chupaka
Thu Feb 10, 2022 4:30 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

Correct. Of course I found the URL, copied it and changed only in my browser, not while posting here :D
by Chupaka
Thu Feb 10, 2022 4:25 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

Dude has been discontinued (again)
That doesn't mean it became unusable
by Chupaka
Thu Feb 10, 2022 4:25 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

For anyone looking for previous version of WinBox: https://download.mikrotik.com/winbox/3.32/winbox64.exe
by Chupaka
Thu Feb 10, 2022 4:22 pm
Forum: Announcements
Topic: WinBox v3.33 and v3.34 released!
Replies: 102
Views: 28732

Re: WinBox v3.33 released!

Wine 6 (Crossover 21) - WinBox 3.33 doesn't start. If you're ready to provide 64-bit The Dude version to run on MacOS in Wine directly, without Crossover - I'm ready to switch to Wine 7 :)
by Chupaka
Wed Feb 09, 2022 11:32 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Hi. That was about ROS v6 in 2020. Now it's 2022 and you're using v7, so it should work without that PPP Profile hack.
by Chupaka
Tue Feb 08, 2022 3:11 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

there is no routing mark option..... so this could not work.
There definitely IS routing-mark option, and it works just fine.
by Chupaka
Sun Feb 06, 2022 1:59 am
Forum: General
Topic: Question about DHCP log (New feature request)
Replies: 10
Views: 6337

Re: Question about DHCP log (New feature request)

You enabled debug logging for DHCP, is has nothing to do with the script you quoted
by Chupaka
Wed Feb 02, 2022 4:17 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

I tried to search within Beta and RC forum. Topics are either very old (about betas with known problems) or useless ("something is not working"), just like in this case.
by Chupaka
Wed Feb 02, 2022 1:37 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Nope the same mangle rules do not work in ROS7...........
That doesn't explain anything. I use the same rules in v7 as I used to in v6 - and they do work.
by Chupaka
Tue Feb 01, 2022 8:12 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

I suppose that ill keep the gateway rules.. Correct And what about mangle rules that r not working on 7. What should i change? What's exactly not working in mangle? Because "works for me" :) Interesting I thought the target scopes would have to look like this........ in other words the ta...
by Chupaka
Tue Feb 01, 2022 11:56 am
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

And the initial post was edited to work with ROS7. The fastest change for you is /ip route add distance=1 gateway=1.0.0.1 routing-mark=to_WAN2 target-scope=11 add distance=1 gateway=1.1.1.1 routing-mark=to_WAN1 target-scope=11 add check-gateway=ping distance=1 gateway=1.1.1.1 target-scope=11 add che...
by Chupaka
Tue Feb 01, 2022 8:12 am
Forum: Announcements
Topic: v7.2rc2 and v7.2rc3 is released!
Replies: 222
Views: 89786

Re: v7.2rc2 and v7.2rc3 is released!

Hopefully there will be x86-based port from ZT soon...
by Chupaka
Mon Jan 31, 2022 3:58 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

You mean, like in the first post of this topic?
by Chupaka
Fri Jan 28, 2022 4:58 pm
Forum: Announcements
Topic: v7.2rc2 and v7.2rc3 is released!
Replies: 222
Views: 89786

Re: v7.2rc2 is released!

Like in
*) winbox - added ZeroTier support;
?
by Chupaka
Fri Jan 28, 2022 1:07 pm
Forum: General
Topic: Non-contigous network mask is incorrectly converted/used in firewall
Replies: 2
Views: 1082

Re: Non-contigous network mask is incorrectly converted/used in firewall

Thinking about (CG)NAT applications, Filter was just an easy example
by Chupaka
Fri Jan 28, 2022 12:55 pm
Forum: General
Topic: Non-contigous network mask is incorrectly converted/used in firewall
Replies: 2
Views: 1082

Non-contigous network mask is incorrectly converted/used in firewall

When I add a rule like this: /ip firewall filter add chain=output dst-address=192.168.0.168/255.255.0.255 it is automatically converted to this: chain=output action=accept dst-address=192.168.0.168-192.168.255.168 But this catches addresses like 192.168.1.169, not only 192.168.X.168 Where do things ...
by Chupaka
Thu Jan 27, 2022 6:16 pm
Forum: General
Topic: Feature Request: IPv6 NAT66 Support
Replies: 73
Views: 32017

Re: Feature Request: IPv6 NAT66 Support

He says that NETMAP with "to-address=2001:560:6264:201::/64" should convert 2a00:1450:401b:806::200e to something like 2001:560:6264:201::200e, not just 2001:560:6264:201::
by Chupaka
Sun Jan 23, 2022 11:32 pm
Forum: Announcements
Topic: WinBox v3.32 released!
Replies: 65
Views: 97179

Re: WinBox v3.32 released!

Yeah, sorry, I meant Ctrl+V for Hotlock. The hotkey was changed for v7 only, so it doesn't work in v6 with recent versions of WinBox.
by Chupaka
Sun Jan 23, 2022 10:57 am
Forum: Announcements
Topic: WinBox v3.32 released!
Replies: 65
Views: 97179

Re: WinBox v3.32 released!

Isn't Ctrl+X in Terminal the only way to enable HotMode in v6? Looks like it's broken after WinBox v3.30...
by Chupaka
Fri Jan 21, 2022 9:07 pm
Forum: Scripting
Topic: Built in function library
Replies: 142
Views: 154778

Re: Built in function library

o need to add include function.
Declare your functions in a script, then execute that script from another script to "include" necessary functio(s): https://wiki.mikrotik.com/wiki/Manual:S ... #Functions
by Chupaka
Fri Jan 14, 2022 1:10 am
Forum: Announcements
Topic: v7.2rc1 is released!
Replies: 240
Views: 165241

Re: v7.2rc1 is released!

There IS 'vrf' parameter for /ping in Terminal, so it's definitely not removed.
by Chupaka
Wed Jan 12, 2022 11:48 pm
Forum: RouterOS beta
Topic: Cannot set routing-mark or table for routing rule
Replies: 18
Views: 35947

Re: Cannot set routing-mark or table for routing rule

there is ability to add new routing from GUI somehow?
Sure, "Routing -> Tables"
by Chupaka
Wed Jan 12, 2022 11:16 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Q1. Just to recap, I see some using target scope of 11, some 12 some 15, as long as ALL target scopes are scope+1, on the lines where the gw is the ISPs, that is the key?? Nope. Just two rules: 1) scope of next route should be not more than target-scope of your route (can be equal or less); 2) targ...
by Chupaka
Mon Jan 10, 2022 11:59 pm
Forum: RouterOS beta
Topic: Cannot set routing-mark or table for routing rule
Replies: 18
Views: 35947

Re: Cannot set routing-mark or table for routing rule

Please describe what you're trying to do in 7.1.1 and what fails as it looks like they reverted the syntax/behaviour to be like in v6.
by Chupaka
Sun Jan 09, 2022 5:23 pm
Forum: Announcements
Topic: v7.1.1 is released!
Replies: 442
Views: 232599

Re: v7.1.1 is released!

https://prnt.sc/26bqrep BGP > Template , disable or enable on click, erorr RouterOS 7.1.1 You may want to try /routing/bgp/template/print in Terminal: it can show you the reason why it's Inactive It definitely would help if you provide more details to describe problems. Do you ask your doctor for h...
by Chupaka
Sat Jan 08, 2022 4:59 pm
Forum: General
Topic: Please add basic portScan tool ( port scanner scan )
Replies: 92
Views: 55416

Re: Please add basic portScan tool ( port scanner scan )

The optional package that should allow running all this stuff is called "container" :)
by Chupaka
Thu Jan 06, 2022 4:45 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

If you change a route with "dst-address=HostA gateway=203.1.2.3" with "dst-address=HostA gateway=203.1.2.3%ether1" - this doesn't change its "recursivity", it just binds it to the ether1 if, for example, you have 203.1.2.3 gateway IP behind both ether1 and ether2.
by Chupaka
Thu Jan 06, 2022 2:23 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

You need to add "%interface" part to the routes to you provider(s), not to those "virtual" hops
by Chupaka
Thu Jan 06, 2022 2:12 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Looks like something is wrong. What are 10.1.1.1 and 10.2.2.2?
by Chupaka
Thu Jan 06, 2022 12:18 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

It seems that it is really working! :shock: And just for sure, I should use IP like: 10.1.1.1%ETH2WAN and not the real IP of gateway there? What do you call 'real' IP of gateway? You should use your provider's gateway, not some ephemeral IP. We're talking about ethernet interface, with ARP, right? ...
by Chupaka
Wed Jan 05, 2022 10:56 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Got you. Then simply use the following syntax for gateway: "IP%interface". Like "203.1.2.3%pppoe-out1"
by Chupaka
Wed Jan 05, 2022 9:07 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

so you mean here? syntax?
Yes. Just copy and paste interface name.
by Chupaka
Wed Jan 05, 2022 9:07 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Just fyi - here is the old version that worked in 6.x - less the firewall rules, and dhcp-client commands that are identical as the new commands. In this V6 working version example - the primary desired path gw is 10.3.127.1 /ip route add check-gateway=ping distance=1 gateway=1.1.1.1 add check-gate...
by Chupaka
Wed Jan 05, 2022 7:28 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Your config has nothing to do with neither recursive routes nor checking if Internet is available behind your gateways. It's useless in this topic.
by Chupaka
Wed Jan 05, 2022 5:58 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

where to specify interface in recursive route lookup?
Sorry?..

You set the interface right in the "Gateway" parameter
by Chupaka
Wed Jan 05, 2022 4:40 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

OMG, looks like this limitation is removed in v7! Where's my Champaigne?!?
by Chupaka
Mon Jan 03, 2022 11:01 pm
Forum: Scripting
Topic: Built in function library
Replies: 142
Views: 154778

Re: Built in function library

Just wondering: where do you need this type of division?
by Chupaka
Wed Dec 22, 2021 12:27 pm
Forum: Announcements
Topic: v7.2rc1 is released!
Replies: 240
Views: 165241

Re: v7.2rc1 is released!

As there's a conversion tool for v6-to-v7 embedded in RouterOS, they can accept v6-style rules and then automagically convert them to v7 format :D

P.S. They won't
by Chupaka
Tue Dec 21, 2021 5:23 pm
Forum: RouterOS beta
Topic: socks5 not working in routeros7 ! [SOLVED]
Replies: 68
Views: 28295

Re: socks5 not working in routeros7 ! [SOLVED]

but 7.1.1 still problem
And in 7.1 still a problem, and... You may continue :)

Anyway it's fixed in 7.2rc
by Chupaka
Tue Dec 21, 2021 3:55 pm
Forum: Announcements
Topic: v7.1.1 is released!
Replies: 442
Views: 232599

Re: v7.1.1 is released!

What do you mean exactly? Currently "upgrade" channel should show this 7.1.1 release. I mean, 'testing' was an old way of upgrading from v6 to v7, now you need to use 'upgrade' channel. And there's no 'upgrade' in v7, so looks like everything works just like russelld expects, except he up...
by Chupaka
Tue Dec 21, 2021 3:14 pm
Forum: Announcements
Topic: v7.1.1 is released!
Replies: 442
Views: 232599

Re: v7.1.1 is released!

And when upgrading from v6, you need to pick 'upgrade' channel, right? Looks like it falls back to stable
by Chupaka
Mon Dec 20, 2021 6:23 pm
Forum: RouterOS beta
Topic: ros v7 beta4 recursive route
Replies: 7
Views: 5834

Re: ros v7 beta4 recursive route

Just a guess: increase target-scope of your recursive route. If that didn't help - post your config.
by Chupaka
Thu Dec 16, 2021 3:09 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

so i have to leave for example if i have 2 isp's 1 route "main" for every one? sorry for my english
You may leave both for failover reasons. The main point is you need to have an active default route in 'main' table
by Chupaka
Thu Dec 16, 2021 12:43 am
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

this is on v6.49 but is the same on 7.1: see the image, if i delete the route on "red circle" internet not work, its a config with balance pcc. So, you're deleting the only default route in 'main' table. After that (as you didn't tell what "internet is not working" means) router...
by Chupaka
Wed Dec 15, 2021 4:22 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

if i not create te default route directly connected example:dst.address:0.0.0.0/0 geteway:192.168.0.1 (eth1) wich is my modem/router and only leave these rotutes for example: dst.address:1.1.1.1-gateway:192.168.1.1 scope:11 target scope:10 dst.address:0.0.0/0-gateway:1.1.1.1 scope:12 target scope:1...
by Chupaka
Tue Dec 14, 2021 11:14 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

Same as before, but now target scope needs to be greater than scope, while in RouterOS v6 you could set target scope to the same as scope. Wrong, btw: [admin@Oracle-CHR-7] > ip/route/print detail Flags: D - dynamic; X - disabled, I - inactive, A - active; c - connect, s - static, r - rip, b - bgp, ...
by Chupaka
Tue Dec 14, 2021 10:58 pm
Forum: RouterOS beta
Topic: v7.1 recursive routes
Replies: 16
Views: 9838

Re: v7.1 recursive routes

Yeah, that's the topic where I initially commented: viewtopic.php?p=891975#p891975
by Chupaka
Tue Dec 14, 2021 10:50 pm
Forum: RouterOS beta
Topic: v7.1 recursive routes
Replies: 16
Views: 9838

Re: v7.1 recursive routes

Actually, target-scope of next route should be strictly less (or not set, as with connected routes) than target-scope of your route. So, 'target-scope=10' does match a route with 'scope=10' unless that route has target-scope >= 10
by Chupaka
Sat Dec 11, 2021 8:08 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

So, ghostzero , yes, the solution is to put your clients' traffic to a separate routing table. You create additional default routes in that table, then mark all traffic-to-be-routed-outside (like "in-interface=LAN-Bridge dst-address-type=!local" to exclude traffic destined to the router it...
by Chupaka
Tue Dec 07, 2021 10:58 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

They do work. v7 introduced a new limitation: target-scope of your route must be greater than target-scope of the route through which it should be resolved . Heh, I am not sure if I need to take a philosophy course or go to Hogwarts School of Magic to understand that sentence let alone MTs intentio...
by Chupaka
Mon Dec 06, 2021 10:10 pm
Forum: Announcements
Topic: v7.1 is released!
Replies: 785
Views: 238180

Re: v7.1 is released!

hi all, with this version recursive routes work? with 7.1rc4 not working but with 6.x yes
They do work. v7 introduced a new limitation: target-scope of your route must be greater than target-scope of the route through which it should be resolved.
by Chupaka
Mon Dec 06, 2021 10:07 pm
Forum: General
Topic: Feature requests
Replies: 1775
Views: 667376

Re: Feature requests

Please add "Packet Sniffer" and/or "Torch" buttons to the firewall rule box.
What should these buttons do in that case?
by Chupaka
Sun Dec 05, 2021 3:32 pm
Forum: RouterOS beta
Topic: Recursive Routes
Replies: 16
Views: 18972

Re: Recursive Routes

Why do I need a Target-Scope of 12 for the first route, when the second/all other have a scope of 10?! Why is 11 not enough but its enough for the second route? I mean 11 is even less than 10 ("not less or equal")? Have you read my post right above yours? https://forum.mikrotik.com/viewto...
by Chupaka
Fri Dec 03, 2021 3:10 pm
Forum: RouterOS beta
Topic: Recursive Routes
Replies: 16
Views: 18972

Re: Recursive Routes

To simplify a bit, you can set scope=10 everywhere :)
by Chupaka
Fri Nov 26, 2021 7:41 pm
Forum: RouterOS beta
Topic: socks5 not working in routeros7 ! [SOLVED]
Replies: 68
Views: 28295

Re: socks5 not working in routeros7 ! [SOLVED]

Webproxy only works for HTTP I think.
Transparent proxy, yep. But here I'll set proxy address manually, so it should work with technically any protocol... At least HTTPS :)
by Chupaka
Fri Nov 26, 2021 7:21 pm
Forum: RouterOS beta
Topic: socks5 not working in routeros7 ! [SOLVED]
Replies: 68
Views: 28295

Re: socks5 not working in routeros7 ! [SOLVED]

VPN? Not sure if I know easy ways to route some app's traffic to VPN on MacOS or Android... SSH Tunnel? Yep, that's good for running local SOCKS5, but that adds one more running app for that. Direct connection to SOCKS5 (which is protected from outside access) is much better. other options? Like HT...
by Chupaka
Fri Nov 26, 2021 7:09 pm
Forum: RouterOS beta
Topic: socks5 not working in routeros7 ! [SOLVED]
Replies: 68
Views: 28295

Re: socks5 not working in routeros7 ! [SOLVED]

Kill it, kill it with fire!
What possible use case would one have for socks in 2021? (except winter time).
I tried to proxy Telegram via my cloud server. I don't want to route by IP because I don't know all Telegram server IPs
by Chupaka
Fri Nov 26, 2021 5:05 pm
Forum: RouterOS beta
Topic: v7.1rc7 [development] is released!
Replies: 174
Views: 57258

Re: v7.1rc7 [development] is released!

Changelog is still empty in WinBox...
by Chupaka
Fri Nov 19, 2021 11:03 am
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Thanks, I've commented in that topic (viewtopic.php?p=891975#p891975) and updated the tutorial to use scopes 11 and 12 for resolving routes. Now that looks even more complex :D
by Chupaka
Fri Nov 19, 2021 11:00 am
Forum: RouterOS beta
Topic: Recursive Routes
Replies: 16
Views: 18972

Re: Recursive Routes

The target scope must be larger than the scope of the route over which you want to resolve the gateway. Set at least to 11 From what I can see, target-scope of recursive route must be greater than target-scope of resolving route. Because: 1) it still works for connected routes (target-scope of stat...
by Chupaka
Thu Nov 18, 2021 4:03 pm
Forum: Announcements
Topic: v6.49.1 [stable] is released!
Replies: 138
Views: 83806

Re: v6.49.1 [stable] is released!

*) upgrade - added new "upgrade" channel for upgrades between major versions;
Looks like v7 won't get into 'stable' or 'long-term' for v6
by Chupaka
Tue Nov 16, 2021 5:44 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Unfortunately, no: routes with interface specified do not participate in recursive route lookup, at least in RouterOS v6
by Chupaka
Mon Nov 15, 2021 11:25 pm
Forum: Scripting
Topic: Another RouterOS API Delphi Client
Replies: 150
Views: 85699

Re: Another RouterOS API Delphi Client

Thanks! Please keep me posted!
by Chupaka
Mon Nov 15, 2021 6:50 pm
Forum: Scripting
Topic: Another RouterOS API Delphi Client
Replies: 150
Views: 85699

Re: Another RouterOS API Delphi Client

That sounds like a problem with RouterOS. Sometimes when I run Torch from WinBox, it stops after some time. Probably, the root cause is the same...
by Chupaka
Sat Nov 13, 2021 2:36 pm
Forum: RouterOS beta
Topic: Zerotier to Mipsbe??
Replies: 109
Views: 38725

Re: Zerotier to Mipsbe??

OMG... What about CHR?..
by Chupaka
Mon Nov 08, 2021 12:53 pm
Forum: RouterOS beta
Topic: v7.1rc6 [development] is released!
Replies: 145
Views: 58090

Re: v7.1rc6 [development] is released!

Still no changelog shown in System -> Packages for v7...
by Chupaka
Mon Nov 08, 2021 12:43 pm
Forum: Announcements
Topic: v6.48.5 [long-term] is released!
Replies: 167
Views: 111945

Re: v6.48.5 [long-term] is released!

where is the people from Mikrotik in this forum!?!
Here, for example: viewtopic.php?p=889344#p889344
by Chupaka
Tue Oct 26, 2021 7:04 pm
Forum: Containers
Topic: v7.1rc3 adds container support
Replies: 493
Views: 176814

Re: v7.1rc3 adds Docker (TM) compatible container support

DHCP Client when you didn't create it? Maybe it's something about Internet Detect feature?
by Chupaka
Fri Oct 22, 2021 7:26 pm
Forum: General
Topic: Feature requests
Replies: 1775
Views: 667376

Re: Feature requests

Feature request: network interfaces for IPsec in Tunnel mode.
That is the about same thing as IPIP tunnel with IPsec protection...
Tell that to people trying to setup Google Cloud VPN on MikroTik...
by Chupaka
Wed Oct 13, 2021 3:43 pm
Forum: Forwarding Protocols
Topic: destination nat with dynamic ip
Replies: 19
Views: 20548

Re: destination nat with dynamic ip

But then it needs to be renamed to "dst", for example. As neither type nor interface are not addresses :)
by Chupaka
Mon Oct 11, 2021 7:54 pm
Forum: RouterOS beta
Topic: v7.1rc4 [development] is released!
Replies: 276
Views: 86820

Re: v7.1rc4 [development] is released!

if there is a child queue, then the parent queue will only receive packets that will pass by the CHILD queue TOO Hasn't it always been this way? From the docs: As soon as queue has at least one child it becomes a inner queue, all queues without children - leaf queues. Leaf queues make actual traffi...
by Chupaka
Fri Oct 08, 2021 10:46 am
Forum: Announcements
Topic: v6.49 [stable] is released!
Replies: 219
Views: 101366

Re: v6.49 [stable] is released!

*) user - added "expired" user status with suggestion to change password (WinBox v3.29 required);
*) winbox - minimal required version is v3.30;
:D
by Chupaka
Thu Oct 07, 2021 5:32 pm
Forum: Forwarding Protocols
Topic: destination nat with dynamic ip
Replies: 19
Views: 20548

Re: destination nat with dynamic ip

What's wrong with, for example,
in-interface=WAN-1 dst-address-type=local
?
by Chupaka
Fri Oct 01, 2021 6:43 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

And what do you call "LANs"?
by Chupaka
Fri Oct 01, 2021 1:31 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

Probably because now you're bridging, not routing?..
by Chupaka
Thu Sep 30, 2021 12:57 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

any hints for doing that ? on WinBox i do not see any zt interface to link on the main bridge thanks
Use Terminal
/interface bridge port add bridge=your_bridge interface=zerotier1
by Chupaka
Wed Sep 29, 2021 6:21 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 487
Views: 279328

Re: MikroTik smartphone app (ex Tik-App)

What has changed between "quickly connect" and "failed to establish a connection"? :)
by Chupaka
Mon Sep 20, 2021 7:01 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

before doing the 'bridge' stuff, the Mikrotiks saw each other, via zerotier, in:
ip neighbor/ print

but now they don't
Make sure you have Neighbor Discovery enabled for your_bridge interface.

If you pull zerotier1 out of bridges - do they start seeing each other again?
by Chupaka
Mon Sep 20, 2021 6:52 pm
Forum: General
Topic: Double extra packages :)
Replies: 0
Views: 1005

Double extra packages :)

Download page shows two "Extra packages" lines for X86 platform, the second one is actually install image
Screenshot 2021-09-20 at 18.49.48.png
by Chupaka
Mon Sep 20, 2021 12:10 am
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

/interface/bridge/port/add bridge=your_bridge interface=zt1
by Chupaka
Wed Sep 08, 2021 11:51 pm
Forum: RouterOS beta
Topic: Zerotier to Mipsbe??
Replies: 109
Views: 38725

Re: Zerotier to Mipsbe??

And x86_64 - CHR.
by Chupaka
Wed Sep 08, 2021 11:50 pm
Forum: RouterOS beta
Topic: v7.1rc3 [development] is released!
Replies: 172
Views: 53375

Re: v7.1rc3 [development] is released!

IPv6 NAT is in winbox now, but action netmap is still missing.
Omg, did they choose stateful IPv6 NAT?
Why aren't these add-on packages?
They are.
by Chupaka
Wed Sep 08, 2021 6:33 pm
Forum: RouterOS beta
Topic: v7.1rc3 [development] is released!
Replies: 172
Views: 53375

Re: v7.1rc3 [development] is released!

/interface/veth/add
and then try to open that interface with WinBox - WinBox simply disappears.
by Chupaka
Wed Sep 08, 2021 6:20 pm
Forum: RouterOS beta
Topic: ZeroTier added to RouterOS v7.1rc2
Replies: 335
Views: 318402

Re: ZeroTier added to RouterOS v7.1rc2

Are we going to have ZeroTier for CHR?
by Chupaka
Mon Sep 06, 2021 7:15 pm
Forum: General
Topic: 6-7 Sep 2021 Cloud Problem
Replies: 22
Views: 1508

Re: IP Cloud

Btw, the domain did not expire, it's suspended.

Expires Dat: Fri, 29 Apr 2022 08:21:38 GMT
by Chupaka
Mon Sep 06, 2021 6:55 pm
Forum: General
Topic: 6-7 Sep 2021 Cloud Problem
Replies: 22
Views: 1508

Re: IP Cloud

I thought it's my chinese TLD who's the reason why my monitoring system gone crazy, but then I opened this topic...
by Chupaka
Tue Aug 31, 2021 2:03 pm
Forum: RouterOS beta
Topic: v7.1rc2 [development] is released!
Replies: 194
Views: 47728

Re: v7.1rc2 [development] is released!

Doesn't show changelog in Winbox. Can this be fixed?
by Chupaka
Sat Aug 28, 2021 4:45 pm
Forum: Announcements
Topic: v6.48.4 [stable] is released!
Replies: 68
Views: 75403

Re: v6.48.4 [stable] is released!

AFAIR, on "managed" reboot (not a power failure), RouterOS saves dynamic entries on disk and restores them on boot.
by Chupaka
Sat Aug 28, 2021 4:15 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

So people that get RC2 early will have to update to RC2? Not have to, but they may need to update to a final version of rc2 to apply some changes introduced later. There will be two different RC2 floating around with the same version number? Are you sure you are making sense? Not floating around un...
by Chupaka
Sat Aug 28, 2021 2:48 pm
Forum: Announcements
Topic: WinBox v3.29 released!
Replies: 113
Views: 38039

Re: WinBox v3.29 released!

NORMIS: Note to self, dont let the gui guys drink so much vodka before work.
https://xkcd.com/323/
by Chupaka
Sat Aug 28, 2021 2:45 pm
Forum: Announcements
Topic: v6.48.4 [stable] is released!
Replies: 68
Views: 75403

Re: v6.48.4 [stable] is released!

"dst-address-type=local" and "dst-address=127.0.0.1" are not same things!
At least, the former includes the latter :)
by Chupaka
Sat Aug 28, 2021 2:42 pm
Forum: General
Topic: Feature request: Make Quickset to be separate package
Replies: 78
Views: 18511

Re: Feature request: Make Quickset to be separate package

keep the Quick Set page itself but disallow any modifications.
Move the user to "read" group :D
by Chupaka
Sat Aug 28, 2021 12:29 am
Forum: General
Topic: Feature request: Make Quickset to be separate package
Replies: 78
Views: 18511

Re: Feature request: Make Quickset to be separate package

Yep, but that's at least ready in v7, and QuickSet separation is just a long-standing (6 years!) feature request :)
by Chupaka
Sat Aug 28, 2021 12:25 am
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

Simply because it's not yet released. There can be other changes before the rc2 release.
by Chupaka
Fri Aug 27, 2021 5:01 pm
Forum: General
Topic: Feature request: Make Quickset to be separate package
Replies: 78
Views: 18511

Re: Feature request: Make Quickset to be separate package

What's new in 7.1rc1 (2021-Aug-19 13:06):

*) added skin support for WinBox (WinBox v3.29 required);
by Chupaka
Wed Aug 25, 2021 7:51 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

Hooray! now there is no more need to do queueing on the MikroTik for QoS, I just need to do a mangle "set priority from DSCP", the priority is copied into the VLAN header sent to the modem, and the modem has 8 queues to sort the priority at the moment the packets are transmitted! So, &quo...
by Chupaka
Tue Aug 24, 2021 10:49 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

Isn't that what you're looking for?..
bgp-as-path
    {regexp}
https://help.mikrotik.com/docs/pages/vi ... d=74678285
by Chupaka
Tue Aug 24, 2021 6:49 pm
Forum: Announcements
Topic: WinBox v3.29 released!
Replies: 113
Views: 38039

Re: WinBox v3.29 released!

Previously, when running Torch and double-clicking a line in the results, Torch was stopped and IP address under mouse cursor copied to corresponding field (src. or dst. address) where it was easily accessible. Now I can't repeat that. Is it WinBox 3.29 or my MacOS?..
by Chupaka
Tue Aug 24, 2021 5:08 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

Or at the very least, backport the show-sensitive option to v6 so that we can use it on v6 devices without them throwing errors.
Great idea, btw!
by Chupaka
Mon Aug 23, 2021 6:27 pm
Forum: RouterOS beta
Topic: v7.1rc1 [development] is released!
Replies: 344
Views: 83026

Re: v7.1rc1 [development] is released!

Be careful the update breaks OSPF, again... And you still have to create interface-templates by hand because the GUI adds networks="" automatically and breaks things. Yep, I had to recreate backbone area and interface-templates. Yes, WinBox adds networks="" to them, needs to be ...
by Chupaka
Fri Jul 30, 2021 3:35 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 148
Views: 24344

Re: Does quouting quotes of quotes in consecutive post make any sense?

It's about :mrgreen: the unicode 🧔 works indipendenlty... :)
I know, I know, but... Mr. Green is 9 bytes of text + 1.6kB (incl. http headers), while 🧔 is 4 bytes ;)

P.S. Omg, enabling smilies changes how emojis are displayed %)
by Chupaka
Mon Jul 26, 2021 6:26 pm
Forum: Virtualization
Topic: CHR feature requests
Replies: 81
Views: 39065

Re: CHR feature requests

At least one function did not work while the problem was active, so who knows what other functions are disabled? I only checked IP/Cloud "Update time" and that gave me a warning that my trial has expired or something along the lines and could not be enabled. Correct, I meant all the local...
by Chupaka
Thu Jul 15, 2021 3:07 pm
Forum: Virtualization
Topic: CHR feature requests
Replies: 81
Views: 39065

Re: CHR feature requests

Well, expired license means you cannot upgrade ROS version. The router itself continues to work just as before.
by Chupaka
Tue Jul 06, 2021 4:02 pm
Forum: Announcements
Topic: v6.49beta [testing] is released!
Replies: 171
Views: 94931

Re: v6.49beta [testing] is released!

This simply disables DNS Server for clients, so they need to use some other DNS (like provider's one or 8.8.8.8)
by Chupaka
Mon Jul 05, 2021 6:42 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Your Firewall Mangle rules only mark router's traffic (chain=output). For clients, you need to mark in chain=prerouting. You can see an example in the manual: https://wiki.mikrotik.com/wiki/Manual:P ... cy_routing
by Chupaka
Fri Jul 02, 2021 6:22 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

We are talking about router's traffic failover, right? Not clients' traffic?

How do you check that? What does "/ip route print details" show when you expect something to go another direction compared to what you observe?
by Chupaka
Wed Jun 23, 2021 12:39 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Ah, sorry, missed this part. Yes, you always need to have a default route in your 'main' table, because policy routing for router-originated traffic works like this: * router tries to connect to google.com * it looks up routing table 'main' looking for a route to google.com; if it can't find any - t...
by Chupaka
Tue Jun 22, 2021 6:48 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Trying to ping something on the Internet from the router returns "no route to host".
/ip route print details
by Chupaka
Wed May 19, 2021 11:16 pm
Forum: RouterOS beta
Topic: v7.1beta6 [development] is released!
Replies: 377
Views: 249522

Re: v7.1beta6 [development] is released!

In Winbox -> Check for Updates, the changelog for this version is empty, all other channels show their changelogs correctly:
Screenshot 2021-05-19 at 23.12.25.png
by Chupaka
Mon May 17, 2021 3:43 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

Well, those rules work in any direction: for me, they were protecting remote (Internet) resources from internal users with viruses :) Just like you described :D
by Chupaka
Mon May 17, 2021 2:04 pm
Forum: Announcements
Topic: v6.48.2 [stable] is released!
Replies: 141
Views: 65763

Re: v6.48.2 [stable] is released!

Looks like yes:
with verify turned on.
by Chupaka
Sun May 16, 2021 3:33 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

There can be some changes in UDP Connection tracking in v7, but I can't check it in near future...
by Chupaka
Sat May 15, 2021 7:08 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

Sorry for late response...

Well, if you're securing the router itself, not clients behind the router - shouldn't you just drop everything except what you need? Like, allow WireGuard (and probably ping?) and simply drop everything else.
by Chupaka
Sat May 01, 2021 1:43 am
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

Or you may to add "return" rule for your syslog port or syslog server
by Chupaka
Sat May 01, 2021 1:34 am
Forum: Scripting
Topic: API Links
Replies: 155
Views: 224110

Re: API Links

There are clients for C and C++ - just use them?..
by Chupaka
Fri Apr 09, 2021 1:46 pm
Forum: General
Topic: Netwatch deprecated ? [SOLVED]
Replies: 70
Views: 34146

Re: Netwatch deprecated ? [SOLVED]

uptimerobot dot com? :)
by Chupaka
Thu Apr 08, 2021 10:34 pm
Forum: General
Topic: Mikrotik hotspot must click twice to login
Replies: 5
Views: 2066

Re: Mikrotik hotspot must click twice to login

Write to support@mikrotik.com
by Chupaka
Thu Mar 25, 2021 2:05 pm
Forum: RouterOS beta
Topic: v7.1beta5 [development] is released!
Replies: 292
Views: 91143

Re: v7.1beta5 [development] is released!

Is it only me who can't find how to change OSPF Interface Cost in beta4/beta5?..
by Chupaka
Thu Mar 18, 2021 7:43 pm
Forum: RouterOS beta
Topic: v7.1beta5 [development] is released!
Replies: 292
Views: 91143

Re: v7.1beta5 [development] is released!

Yeah, so as I installed v7 initially (not upgrading from MBR's v6), looks like it created GPT from the beginning, so the upgrade from beta4 to beta5 went smoothly.

P.S. My disk size is 50G (Oracle Cloud), and 16G is shown in System -> Resources.
by Chupaka
Thu Mar 18, 2021 1:38 pm
Forum: RouterOS beta
Topic: v7.1beta5 [development] is released!
Replies: 292
Views: 91143

Re: v7.1beta5 [development] is released!

Unfortunately looks like CHR upgrade from beta4 to beta5 may break the image.
Is it a problem with beta4 or beta5?
by Chupaka
Mon Mar 15, 2021 7:14 pm
Forum: General
Topic: NetFlow. No longer showing NAT'd destination address - Something chnaged
Replies: 35
Views: 11662

Re: NetFlow. No longer showing NAT'd destination address - Something chnaged

"An issue" for you is a fix for someone else who didn't want to see semi-NAT'ed flows (with DST-NAT applied and SRC-NAT not applied), for example :)
by Chupaka
Tue Mar 09, 2021 1:53 pm
Forum: General
Topic: NetFlow. No longer showing NAT'd destination address - Something chnaged
Replies: 35
Views: 11662

Re: NetFlow. No longer showing NAT'd destination address - Something chnaged

These fields are present, but issue is also present even with latest version NetFlow Analyzer 12.5.357.
You mean, this issue?
Mikrotik device do not send NAT information in the netflow packets
So, MikroTik device sends those fields, but it doesn't send them? Schrodinger Router?
by Chupaka
Wed Feb 24, 2021 11:33 pm
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 59830

Re: v7.1beta4 [development] is released!

REST API works only over https. You need to install a certificate to use https (and REST API).
by Chupaka
Wed Feb 24, 2021 7:13 pm
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 59830

Re: v7.1beta4 [development] is released!

You have to provide a certificate, so looks like it won't be default.
by Chupaka
Tue Feb 23, 2021 8:22 pm
Forum: General
Topic: Netwatch: sms thru https ?
Replies: 5
Views: 1828

Re: Netwatch: sms thru https ?

How to send? You may use either third-party SMS provider or Tools/SMS: https://help.mikrotik.com/docs/display/ROS/SMS
by Chupaka
Wed Feb 17, 2021 11:41 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

PCC divides all connections into groups, it has nothing to do with WANs. In your case, you need 3 groups, one of them to be sent to WAN1 and another two - to WAN2 (so that it gets more traffic). f you have 3 WANs and want traffic equally distributed, you still use 3/0, 3/1 and 3/2. If you need to se...
by Chupaka
Wed Feb 17, 2021 9:46 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Yep, something is wrong with the setup. Your three rules should be 3/0, 3/1 and 3/2 instead of 2/*.
by Chupaka
Sun Feb 14, 2021 7:15 pm
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 59830

Re: v7.1beta4 [development] is released!

I run CHR v7.1 beta 4 in Oracle Cloud. It's x86 and it does work.
by Chupaka
Sat Feb 13, 2021 2:13 pm
Forum: RouterOS beta
Topic: v7.1beta4 [development] is released!
Replies: 211
Views: 59830

Re: v7.1beta4 [development] is released!

I have started a /export command now to see if it will ever complete.
Is it still exporting?..
by Chupaka
Wed Feb 10, 2021 5:39 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 148
Views: 24344

Re: Does quouting quotes of quotes in consecutive post make any sense?

The overquotes I "love" much are like:
How many fingers do you have?

By the way, if you stand on your head, what do you feel?

Did you try to stop?
8
I.e. the answer is for the first question, while all three are quoted and ignored.
by Chupaka
Wed Feb 10, 2021 12:54 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 487
Views: 279328

Re: MikroTik smartphone app (ex Tik-App)

Since there's no terminal in the app, what do people do instead?
Are you sure there's no?.. At least in Android version we have one.
by Chupaka
Wed Feb 10, 2021 12:52 pm
Forum: General
Topic: KVM Problem
Replies: 11
Views: 4826

Re: KVM Problem

Did you install kvm package?
/system package print
by Chupaka
Wed Feb 03, 2021 11:15 pm
Forum: Announcements
Topic: v6.49beta [testing] is released!
Replies: 171
Views: 94931

Re: v6.49beta [testing] is released!

Even v2.9.x had at least 2.9.51, so don't let v6.x stop at v6.50 :D
by Chupaka
Thu Jan 28, 2021 4:46 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

0.0.0.0/0 via 8.8.8.8 and 8.8.4.4 (the same you already have but without routing marks) should be good enough
by Chupaka
Thu Jan 28, 2021 12:06 pm
Forum: RouterOS beta
Topic: v7.1beta3 [development] is released!
Replies: 261
Views: 83304

Re: v7.1beta3 [development] is released!

Okay, when beta4 is out.
by Chupaka
Wed Jan 27, 2021 6:20 pm
Forum: RouterOS beta
Topic: v7.1beta3 [development] is released!
Replies: 261
Views: 83304

Re: v7.1beta3 [development] is released!

In beta4 :)
by Chupaka
Wed Jan 27, 2021 2:58 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

I cannot figure why my router can't reach mikrotik's cloud and update my public address. these are my routes https://i.imgur.com/Jf785z0.png I don't see 0.0.0.0/0 route in your 'main' table (the one that is used by the router's processes like Cloud for initial route lookup) - that can be the reason.
by Chupaka
Thu Jan 21, 2021 3:05 pm
Forum: Announcements
Topic: IP Cloud
Replies: 79
Views: 164557

Re: IP Cloud

Exactly
by Chupaka
Thu Jan 21, 2021 2:34 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

Yep, they are designed to pass good traffic for further processing by firewall
by Chupaka
Wed Jan 20, 2021 3:43 pm
Forum: Announcements
Topic: IP Cloud
Replies: 79
Views: 164557

Re: IP Cloud

From the docs: ddns-update-interval (time, minimum 60 seconds; Default: none) - If set DDNS will attempt to connect IP Cloud servers at the set interval. If set to none it will continue to internally check IP address update and connect to IP Cloud servers as needed. Useful if IP address used is not ...
by Chupaka
Wed Jan 20, 2021 12:58 am
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 295
Views: 134344

Re: v6.48 [stable] is released!

Thus I've removed MT from the center of my network and using them only as access devices. Even there are issues, always.
As you're in 6.48 discussion topic, looks like you don't use long-term release channel...
by Chupaka
Fri Jan 15, 2021 11:41 pm
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 295
Views: 134344

Re: v6.48 [stable] is released!

I can confirm that and add the fact that this has to do with firmware 6.48. RouterOS 6.48 with Firmware 6.47.8 on a hEX PoE has health info as it should.
And it's still available in CLI...
by Chupaka
Sat Jan 09, 2021 11:29 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

It will use your PPPoE Interface. You should select your new profile in PPPoE Client properties.

P.S. Not sure if setting local-address won't break anything.
by Chupaka
Sat Jan 09, 2021 11:10 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

And then you set remote-address to the host you want to check. On connection establishment, a route to the remote-address will be automagically added to the 'main' routing table.
by Chupaka
Sat Jan 09, 2021 4:07 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Yep, generally that's how it works. If you need the router connectivity - you should either create a rule for its traffic to go to 'exit' table, or add default route(s) to 'main' table.
by Chupaka
Tue Jan 05, 2021 1:36 pm
Forum: General
Topic: DDOS Rules when Connection tracking is Off
Replies: 9
Views: 2802

Re: DDOS Rules when Connection tracking is Off

So again, why don't you filter on CGNAT devices? They already have Connection Tracking on, and those rules use "connection-state=new", so CPU load should not be noticable.

What do you mean by "rectify"?..
by Chupaka
Thu Dec 24, 2020 11:59 am
Forum: General
Topic: DDOS Rules when Connection tracking is Off
Replies: 9
Views: 2802

Re: DDOS Rules when Connection tracking is Off

Well, first, why don't you want to place those rules on your CGNAT device? :)
by Chupaka
Wed Dec 23, 2020 3:35 pm
Forum: Announcements
Topic: v6.48 [stable] is released!
Replies: 295
Views: 134344

Re: v6.48 [stable] is released!

dns - fixed listening for DNS queries when only dynamic static entries exist (introduced in v6.47);
Only dynamic static?..
by Chupaka
Tue Dec 22, 2020 6:36 pm
Forum: Announcements
Topic: v6.48rc [testing] is released!
Replies: 18
Views: 16315

Re: v6.48rc [testing] is released!

The Trusted checkbox at the top doesn't do anything?
It does! It mimics the state of the bottom one! :)
by Chupaka
Thu Dec 17, 2020 3:12 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Great, now I know they reworked my article without even mentioning me... That's a bit depressing :)
by Chupaka
Mon Dec 14, 2020 10:57 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Thanks =)

I'm a bit out of networking/ISP for a couple of years already, but still doing my best to support the community :D
by Chupaka
Mon Dec 14, 2020 3:28 pm
Forum: General
Topic: Public-Mikrotik-Bandwidth-Test-Server(s)
Replies: 1058
Views: 1205020

Re: Public-Mikrotik-Bandwidth-Test-Server(s)

Notice; The public access btest server I manage was re-numbered into new/different IP addresses. This public btest server is now at the following IP addresses:
Maybe some FQDN can help in long-term? :) Not the IP Cloud one (it's hard to remember), but custom one would be nice.
by Chupaka
Mon Dec 14, 2020 11:43 am
Forum: RouterOS beta
Topic: v7.1beta3 [development] is released!
Replies: 261
Views: 83304

Re: v7.1beta3 [development] is released!

Approximately in 2020s
by Chupaka
Thu Dec 10, 2020 4:24 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

There's no connection-state=new in RAW, so I'm not sure what is more efficient: checking each and every packet by two address lists or involving Connection Tracking in 'forward' chain to detect connection state...

More testing is needed :)
by Chupaka
Thu Dec 10, 2020 12:03 pm
Forum: General
Topic: DDoS story, or WARNING: use 'conection-limit' with caution!
Replies: 168
Views: 115750

Re: DDoS story, or WARNING: use 'conection-limit' with caution!

At top is good. It works for "connection-state=new", so doesn't add much load for CPU during normal work. And it passes all "good" packets for further processing by other rules.
by Chupaka
Thu Dec 03, 2020 2:44 pm
Forum: RouterOS beta
Topic: v7.1beta3 [development] is released!
Replies: 261
Views: 83304

Re: v7.1beta3 [development] is released!

After upgrade, all my OSPF settings disappeared (except of Instance)

And I cannot change it or create a new instance via WinBox setting "version": it saus, incorrect version. If I add a new instance via Terminal, WinBox shows "unknown" under Version
by Chupaka
Tue Dec 01, 2020 3:48 pm
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 159648

Re: v7.1beta2 [development] is released!

Does anyone have CHR version of beta3 to share? :)
by Chupaka
Tue Dec 01, 2020 10:57 am
Forum: Scripting
Topic: Complete DELPHI API client: update 4
Replies: 69
Views: 51166

Re: Complete DELPHI API client: update 4

So, you're trying to get "/interface/monitor-traffic" output by executing "/interface/print" command? Really? :) Here's the command you need: /interface/monitor-traffic =interface=wlan1 =.proplist=rx-bits-per-second,tx-bits-per-second You run it with "Query & Listen"...
by Chupaka
Mon Nov 30, 2020 9:58 pm
Forum: General
Topic: RB4011 and RB1100 AHx4 "bricks" randomly
Replies: 222
Views: 82698

Re: RB4011 and RB1100 AHx4 "bricks" randomly

I just checked all correspondence you had with MikroTik, and it was not said that there is a "low quality component" or anything like that.
Looks like he quoted the answer from his reseller or something.
by Chupaka
Mon Nov 30, 2020 9:55 pm
Forum: Announcements
Topic: v6.48beta [testing] is released!
Replies: 184
Views: 118928

Re: v6.48beta [testing] is released!

Both times failed to upgrade, and rebooted back into build 48 instead of 58.
And the reason is..?
P.S. It's in Log
by Chupaka
Thu Nov 26, 2020 6:47 pm
Forum: Announcements
Topic: v6.47.8 [stable] is released!
Replies: 54
Views: 33434

Re: v6.47.8 [stable] is released!

On the version 6.47.8 command "system telnet" does not work with parametr "routing-table". Error "telnet: Unknown argument"
The same for 6.47.7, so it's not a problem of 6.47.8.
by Chupaka
Wed Nov 25, 2020 4:44 pm
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 159648

Re: v7.1beta2 [development] is released!

That's because it's beta. It's betta than nothin'...
by Chupaka
Mon Nov 16, 2020 1:40 pm
Forum: Virtualization
Topic: Routeros docker container image
Replies: 12
Views: 26331

Re: Routeros docker container image

That's actually routeros in qemu in docker, that's not fair :)
by Chupaka
Thu Nov 12, 2020 1:36 pm
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 159648

Re: v7.1beta2 [development] is released!

It would be different if it delayed it for weeks.
7.1beta2 (2020-Aug-21 12:29)
by Chupaka
Wed Nov 11, 2020 12:18 am
Forum: Announcements
Topic: v6.46.8 [long-term] is released!
Replies: 36
Views: 31979

Re: v6.46.8 [long-term] is released!

Correct. It's by design :)
by Chupaka
Tue Nov 10, 2020 2:07 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

I have two ISPs (156.x.x.x is GW1, 82.x.x.x is GW2), and I just want to use ISP2/GW2 as a failover, not for load balancing. My question is: do I need a second default route with distance=2 for each HostN? /ip route add check-gateway=ping distance=1 gateway=8.8.8.8 add check-gateway=ping distance=2 ...
by Chupaka
Tue Nov 03, 2020 10:52 pm
Forum: Announcements
Topic: WinBox v3.27 released!
Replies: 100
Views: 63589

Re: WinBox v3.27 released!

am i missing something maybe?
Yeah, just double-click it - it will be opened in separate window :D
by Chupaka
Tue Nov 03, 2020 10:49 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Right now, the DHCP clients for each are setup to create default routes. Doing this, if I unplug ether1 I get failover to ether2, and back when ether1 is plugged back in. I want to go to the next step and failover/back when the connected modem is still up, but the provider is out. What do you recom...
by Chupaka
Fri Oct 30, 2020 12:44 am
Forum: RouterOS beta
Topic: My Backup to Mail script dont work anymore with ROS7 [SOLVED]
Replies: 4
Views: 3953

Re: My Backup to Mail script dont work anymore with ROS7 [SOLVED]

/tool e-mail send to=$adminemail subject="$date $time $identity Backup" body="$identity, RouterOS $rosver - $backupfiles" file=$backupfiles start-tls=yes
Looks like you need to replace "start-tls=yes" with something like "tls=starttls"
by Chupaka
Thu Oct 29, 2020 5:23 pm
Forum: Useful user articles
Topic: Advanced Routing Failover without Scripting
Replies: 272
Views: 152076

Re: Advanced Routing Failover without Scripting

Good point. In balancing mode you don't face this because all traffic is marked, and there's no marked routes to the checking hosts...

Well, you need to add some kind of traffic marking then :) It will be a single routing table, but it's needed in that case...
by Chupaka
Thu Oct 29, 2020 5:14 pm
Forum: Announcements
Topic: v6.47.7 [stable] is released!
Replies: 45
Views: 28730

Re: v6.47.7 [stable] is released!

Is the company going to correct this error?
Did you write to support with that problem?
by Chupaka
Tue Oct 27, 2020 9:54 pm
Forum: Scripting
Topic: Built in function library
Replies: 142
Views: 154778

Re: Built in function library

Catch error messages
You mean, in here? https://wiki.mikrotik.com/wiki/Manual:S ... ime_errors
by Chupaka
Thu Oct 22, 2020 7:04 pm
Forum: Scripting
Topic: Parse ip scan output
Replies: 7
Views: 5924

Re: Parse ip scan output

since it is interactive, and it is terminal-formatted output and not pure text output, you get several copies in the file. Something to be worked on.
Can "freeze-frame-interval=9s" help? (Looks like setting freeze-frame-interval= to the same value as duration= produces empty output)
by Chupaka
Sun Oct 18, 2020 10:58 pm
Forum: Scripting
Topic: API Links
Replies: 155
Views: 224110

Re: API Links

Added a link to the first post
by Chupaka
Wed Oct 07, 2020 4:57 pm
Forum: Announcements
Topic: v6.47.4 [stable] is released!
Replies: 68
Views: 39017

Re: traffic-flow missing source port 99% of the time now

Recently we upgraded to 6.47.4
From what version?
  • 1
  • 2
  • 3
  • 4
  • 5
  • 29